, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x4}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @remote}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x3a}, @IPVS_CMD_ATTR_SERVICE={0x14, 0x1, [@IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x400}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}]}, @IPVS_CMD_ATTR_DEST={0x14, 0x2, [@IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0xfff}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e22}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x1}, @IPVS_CMD_ATTR_SERVICE={0x18, 0x1, [@IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x0, 0x2}}, @IPVS_SVC_ATTR_AF={0x8, 0x1, 0xa}]}, @IPVS_CMD_ATTR_DAEMON={0x30, 0x3, [@IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x7c1c57c3}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @remote}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x1}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14}]}, @IPVS_CMD_ATTR_SERVICE={0xc, 0x1, [@IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x1e}]}]}, 0x10c}, 0x1, 0x0, 0x0, 0x840}, 0x1)
r2 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000023000)={&(0x7f0000024000), 0xc, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="20000024f3002e00ff0a00000000000000040000000000000000000000000000"], 0x1d9}}, 0x0)

23:56:10 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xbf, 0x0, 0x0)

23:56:11 executing program 5:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x257}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xbc0, 0x0, 0x0)

23:56:11 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x183, 0x0, 0x0)

23:56:11 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
bind$unix(0xffffffffffffffff, &(0x7f00000001c0)=@abs, 0x6e)
r2 = creat(&(0x7f0000000240)='./control\x00', 0x2)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffffff, 0xc0206434, &(0x7f0000000280)={0x1f, <r3=>0x0, 0x10000, 0x8ae2})
ioctl$DRM_IOCTL_AGP_FREE(r2, 0x40206435, &(0x7f00000002c0)={0x8, r3, 0x3, 0x401})
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
umount2(&(0x7f00000007c0)='./control\x00', 0x0)
syz_open_dev$sndseq(&(0x7f0000000140)='/dev/snd/seq\x00', 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f00000000c0)={0x2, &(0x7f0000000100)=[{0x50}, {0x6}]}, 0x10)
sendmmsg(r0, &(0x7f0000003840)=[{{0x0, 0x0, &(0x7f0000002240), 0x1ba, &(0x7f00000022c0)}}, {{0x0, 0x0, &(0x7f00000026c0), 0x0, &(0x7f0000002700)}}], 0x75a, 0x0)

23:56:11 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='smaps_rollup\x00')
exit(0x20)
read(r0, &(0x7f0000000000)=""/56, 0x38)
write$FUSE_NOTIFY_STORE(r0, &(0x7f0000000040)={0x31, 0x4, 0x0, {0x3, 0xff, 0x9, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, 0x31)

23:56:11 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x3c, 0x0, 0x0)

23:56:11 executing program 0:
syz_open_dev$loop(&(0x7f0000000700)='/dev/loop#\x00', 0xffffffff80000001, 0x0)
socket$inet6(0xa, 0x1000000000002, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x80, 0x0)
ioctl$EVIOCGMASK(r0, 0x80104592, &(0x7f0000000600)={0x17, 0xd5, &(0x7f0000000500)="d5e0fdb03af47ad31edb9daa557f397fa017c783ad58203509f2d0d245c970dbebbcf838d03229e4adcc654fb13cc9fc4adfca549a3b3ebdaea4360c141475c4a6a6fcb7368c26cd8a17b2d8e1cb6759f52b74f491ba4558dd0c4da6fcba56659d1809348c79fff75360eebb70cec2279da095e9ec7a3e4090a92ad1e0aefb0df7e1fdf39f4756dcecede590e5d5df3e0039ba34679a0fb776030ae99a1464f23f9a4de2cb4ff7823fd39c4987d13642f4f33bf71a21f54bce3e847c20a51f43a91819c7d7c2a4131cc28fdf024adda8c35853201f"})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000640)='/dev/ptmx\x00', 0x10300, 0x0)
syz_open_dev$audion(&(0x7f0000000300)='/dev/audio#\x00', 0x8, 0x140)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f0000000680))
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ptrace$cont(0x18, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text16={0x10, &(0x7f0000000180)="2e65f32efe0a6766c7442400008000006766c7442402000000006766c744240600000000670f011c24b866000f00d066b88044a2b20f23c80f21f866350400d0000f23f80f0766b80500000066b9080000000f01c10f0766b8010000000f01c10f01dfb835008ee0", 0x68}], 0x1, 0x0, &(0x7f00000000c0), 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000380)="0f070f20616426660fe855090f350f22e4c4e205a622f20f5a2666baf80cb8ccae358eef66bafc0cb872000000efb805000000b9000000000f01d9b9800000c00f3235000800000f30", 0x49}], 0x1, 0x40, &(0x7f0000000180), 0x0)
ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0xdf5)
r4 = getpid()
ptrace(0x4207, r4)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000480)=[@text64={0x40, &(0x7f0000000400)="360f009c7b01000000c4227920b955a4868ac4627d05b50e00000066baf80cb8a0c76588ef66bafc0ced8f88789760d40066baf80cb8b0f38d8bef66bafc0c66ed460f228642f448b8d005e6dc000000000f23c80f21f835000060000f23f80f01c8", 0x62}], 0x1, 0x10, &(0x7f00000004c0)=[@efer={0x2, 0xb000}], 0x1)
ioctl$KVM_SET_ONE_REG(r3, 0x4010aeac, &(0x7f0000000000)={0x0, 0x5})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
add_key$user(&(0x7f00000000c0)='user\x00', &(0x7f0000000200)={0x73, 0x79, 0x7a, 0x0}, &(0x7f0000000240)="c383e63a766a0d3505336a31d810524fae012ec9dc04ba8341e4fbe603d624dae8e978bc85f446ef1285", 0x2a, 0xfffffffffffffff8)
ioctl$TCSETSF(r2, 0x5404, &(0x7f00000002c0)={0x2, 0x1, 0x9, 0x2, 0x2, 0xffffffff00000000, 0x7fff, 0xffffffffffff7fff, 0xffff, 0x9, 0x100000000, 0x100000001})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r5 = perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x8000003e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair(0x1, 0x20000000000002, 0x0, &(0x7f0000000100))
ioctl$PERF_EVENT_IOC_SET_FILTER(r5, 0x541b, &(0x7f00000003c0)="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")

23:56:11 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x24d, 0x0, 0x0)

23:56:11 executing program 5:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x283}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xbc0, 0x0, 0x0)

23:56:11 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x1f6, 0x0, 0x0)

23:56:11 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xde, 0x0, 0x0)

23:56:11 executing program 5:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x11c}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xbc0, 0x0, 0x0)

[  597.306705] *** Guest State ***
[  597.323927] CR0: actual=0x0000000000000031, shadow=0x0000000060000011, gh_mask=fffffffffffffff7
23:56:11 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x10a, 0x0, 0x0)

[  597.357339] CR4: actual=0x0000000000002060, shadow=0x0000000000000020, gh_mask=ffffffffffffe871
23:56:12 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x45, 0x0, 0x0)

[  597.425472] CR3 = 0x0000000000002000
[  597.460880] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  597.501682] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  597.517362] RSP = 0x0000000000000f80  RIP = 0x0000000000000000
[  597.524355] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  597.531700] Sysenter RSP=0000000000000f80 CS:RIP=0050:0000000000002810
23:56:12 executing program 1:
r0 = socket(0x10, 0x80002, 0x2)
bind$netlink(r0, &(0x7f0000177ff4)={0x10, 0x0, 0x1}, 0xc)
connect$netlink(r0, &(0x7f0000e8f000)=@proc={0x10, 0x0, 0x1}, 0xc)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0), 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[]}}, 0x0)
set_tid_address(&(0x7f0000000000))
sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0)

[  597.548417] CS:   sel=0x0030, attr=0x0409b, limit=0x000fffff, base=0x0000000000000000
23:56:12 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x249, 0x0, 0x0)

[  597.580812] DS:   sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000
[  597.639261] SS:   sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000
[  597.678599] ES:   sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000
[  597.701078] FS:   sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000
[  597.729543] GS:   sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000
[  597.758140] GDTR:                           limit=0x000007ff, base=0x0000000000001000
[  597.770050] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800
[  597.787136] IDTR:                           limit=0x000001ff, base=0x0000000000003800
[  597.795702] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  597.804153] EFER =     0x000000000000b001  PAT = 0x0007040600070406
[  597.811438] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  597.819518] Interruptibility = 00000000  ActivityState = 00000000
[  597.826188] *** Host State ***
[  597.832002] RIP = 0xffffffff81212522  RSP = 0xffff880192d57350
[  597.838828] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  597.845514] FSBase=00007fa919071700 GSBase=ffff8801dad00000 TRBase=fffffe0000003000
[  597.853838] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  597.860451] CR0=0000000080050033 CR3=000000017cd3d000 CR4=00000000001426e0
[  597.868171] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  597.875149] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  597.881730] *** Control State ***
[  597.885366] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca
[  597.892853] EntryControls=0000d1ff ExitControls=002fefff
[  597.898511] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
23:56:12 executing program 2:
r0 = socket$inet_dccp(0x2, 0x6, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffff9c, 0x29, 0x23, &(0x7f0000000140)={{{@in6=@local, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r1=>0x0}}, {{@in=@rand_addr}, 0x0, @in6=@loopback}}, &(0x7f0000000040)=0xe8)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'gretap0\x00', r1})
modify_ldt$read(0x0, &(0x7f0000000240)=""/3, 0x3)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='smaps_rollup\x00')
exit(0x0)
sendmmsg$nfc_llcp(r2, &(0x7f00000000c0), 0x0, 0x40)
read(r2, &(0x7f0000000000)=""/56, 0x38)
write$UHID_GET_REPORT_REPLY(r0, &(0x7f00000000c0)={0xa, 0x4, 0x1, 0xff9}, 0xa)
setsockopt$bt_BT_FLUSHABLE(r2, 0x112, 0x8, &(0x7f0000000280)=0x5, 0x4)

23:56:12 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x127, 0x0, 0x0)

[  597.905537] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  597.912536] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  597.919311]         reason=80000021 qualification=0000000000000000
[  597.925793] IDTVectoring: info=00000000 errcode=00000000
[  597.931389] TSC Offset = 0xfffffebdf35b3303
[  597.935777] EPT pointer = 0x00000001bcd8801e
[  597.983800] *** Guest State ***
[  597.997729] CR0: actual=0x0000000000000031, shadow=0x0000000060000011, gh_mask=fffffffffffffff7
[  598.009722] CR4: actual=0x0000000000002060, shadow=0x0000000000000020, gh_mask=ffffffffffffe871
[  598.021180] CR3 = 0x0000000000002000
[  598.025262] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  598.044119] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  598.053501] RSP = 0x0000000000000f80  RIP = 0x0000000000000000
[  598.063117] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  598.069669] Sysenter RSP=0000000000000f80 CS:RIP=0050:0000000000002810
[  598.077910] CS:   sel=0x0030, attr=0x0409b, limit=0x000fffff, base=0x0000000000000000
[  598.086013] DS:   sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000
[  598.095896] SS:   sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000
[  598.104392] ES:   sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000
[  598.112620] FS:   sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000
[  598.120868] GS:   sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000
[  598.129126] GDTR:                           limit=0x000007ff, base=0x0000000000001000
[  598.137740] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800
[  598.146014] IDTR:                           limit=0x000001ff, base=0x0000000000003800
[  598.154260] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  598.162485] EFER =     0x000000000000b001  PAT = 0x0007040600070406
[  598.169185] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  598.176831] Interruptibility = 00000000  ActivityState = 00000000
[  598.183308] *** Host State ***
[  598.186700] RIP = 0xffffffff81212522  RSP = 0xffff880196447350
[  598.186724] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  598.199475] FSBase=00007fa91902f700 GSBase=ffff8801dad00000 TRBase=fffffe0000003000
[  598.207567] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  598.213696] CR0=0000000080050033 CR3=000000017cd3d000 CR4=00000000001426e0
[  598.221556] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  598.228355] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  598.234420] *** Control State ***
[  598.237933] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca
23:56:12 executing program 0:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000003c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = socket$packet(0x11, 0x3, 0x300)
r2 = socket$netlink(0x10, 0x3, 0x4)
remap_file_pages(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x1000004, 0x3, 0x8000)
setsockopt$packet_int(r1, 0x107, 0x9, &(0x7f0000000000)=0x5, 0x4)
write(r2, &(0x7f0000005c00)="2700000014000707030e0000120f0a0011000100f5fe0012ff000000078a151f75080039000500", 0x27)
socket$packet(0x11, 0x2, 0x300)
clock_gettime(0x0, &(0x7f00000066c0)={0x0, <r3=>0x0})
recvmmsg(r2, &(0x7f0000006500), 0x2c7, 0x40010000, &(0x7f0000006700)={0x0, r3+30000000})

23:56:12 executing program 5:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0xeb}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xbc0, 0x0, 0x0)

23:56:12 executing program 1:
r0 = open(&(0x7f0000000080)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x565d, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8a}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write(r0, &(0x7f0000000600)="bb8f9f640903127a53527c6fbfe65d43b0e0586f2d40c7e7df58cac83420e83662d6e39bb6d5430622431454eedeeaee423d8f210bc3525fa7927c18d5fbc91ab13c2041136047d8da9375934d00f325499bfe7712208d387d41c31821c2a22d1325b556528e9b790b74053d1ed631c6ec8126d37c87216173138c00cef396868029af5b76bebac5e38b74d8bbc6ae66b6e202b6d505710377710ea7d43edf00e1a4c1c670bb4c263ce777da81abdd5ba5a5c82f67232f9b4d6f21b2e6afa8b38e4642b0daa2acbc0478d89b88e8b2094d4248855e5e81992e60be3afff0f3c3799350615489a901a659abdeca0c615a622ebf64175f990320e0356d4a11ed62eff72b709c23dd65942e8b534d7d775d370c1e435654a2634e6ee3649c4c3bcbe39e866f1eb9972af1a9cef42e701798a53dc92a242aadbac343e1765cf8ea5665e22deda69777e52b1e9e5d3edc022256939e1eee013448294911139d5b9c6241049fecdf9b31f4cdf6cff65d71b5071ef70e1798347c8846aa5b905e83050e3e606986ed3f603d18c5cdeb11cda1ce3abddea9376231af130e19fc7601ec1ab8cb5a7de9e2174547f18225b09a54fc8720dbb91eb69c1be88e601c3c9df4f2758f39a5151951b9c6dbb419ffd783a34c9fad10f201b8724d31865e2fc1fcf48db2be713053b43a0e3943c1e2b08e8a26e946c439d891db2a80b5ffa054bc8d", 0x200)
getsockname$unix(r0, &(0x7f00000000c0)=@abs, &(0x7f0000000040)=0x6e)
setsockopt$inet_buf(r0, 0x0, 0x2d, &(0x7f0000000200)="d7b320fba78b332180c9f5c09f5fc7371414b8eb2b270d13791b8e37dab6a3f0c378c095f30073348c22cd96c7b05e6ba81d6334022103670dc92cfbb630f85328dc6666f0ede7fe8e673338aa0f6aec91a032392253f2d08e042ef5375b31dab447aea40f17b7776b8c232861cd4860fcb1d6f45e5e1f8c0227eb60974a1c91a26ae27f4ba1bceefb7ac1ac35564bbedfd8687e257314f4a9ad48dbfcdc8bfa3baf61c14d180fad75ee6a0262d600037491b7e7556ce88e7dffa30645230bb0535c6784766db4e2a3c46cf5", 0xcc)

23:56:12 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x14c, 0x0, 0x0)

23:56:12 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xf1, 0x0, 0x0)

[  598.244616] EntryControls=0000d1ff ExitControls=002fefff
[  598.244634] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  598.244645] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  598.244656] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  598.244666]         reason=80000021 qualification=0000000000000000
[  598.244674] IDTVectoring: info=00000000 errcode=00000000
[  598.244687] TSC Offset = 0xfffffebd8883fbf8
[  598.244696] EPT pointer = 0x00000001d233a01e
23:56:13 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x273, 0x0, 0x0)

23:56:13 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x102, 0x0, 0x0)

23:56:13 executing program 1:
r0 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r0, &(0x7f0000000240)={0x2, 0x4e21, @multicast1}, 0xa)
listen(r0, 0xfc0004)
r1 = accept4(r0, &(0x7f0000000000)=@ethernet={0x0, @local}, &(0x7f0000000040)=0x10, 0x0)
setsockopt$inet_sctp6_SCTP_RECVNXTINFO(r1, 0x84, 0x21, &(0x7f00000001c0)=0x4, 0x169)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000600)='/dev/hwrng\x00', 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000640)={<r3=>0xffffffffffffffff}, 0xe00e83fa648c153b, 0x9}}, 0x20)
write$RDMA_USER_CM_CMD_DISCONNECT(r2, &(0x7f00000006c0)={0xa, 0x4, 0xfa00, {r3}}, 0xc)
setsockopt$inet_sctp6_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f, 0x0, 0xf4}, 0xb)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x200000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clock_gettime(0x0, &(0x7f0000000200)={0x0, <r4=>0x0})
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f0000000500)={<r5=>0x0, 0xfffffffffffffffb}, &(0x7f0000000540)=0x8)
getsockopt$inet_sctp_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000580)={r5, 0x80, 0x1, [0x6]}, &(0x7f00000005c0)=0xa)
getsockopt$llc_int(r1, 0x10c, 0x3, &(0x7f0000000340), &(0x7f0000000380)=0x4)
r6 = syz_open_dev$adsp(&(0x7f0000000180)='/dev/adsp#\x00', 0x80, 0x1)
getsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, &(0x7f00000007c0), &(0x7f0000000800)=0x4)
ioctl$SNDRV_SEQ_IOCTL_RUNNING_MODE(r6, 0xc0105303, &(0x7f0000000280)={0x5, 0x81, 0x6})
recvmmsg(r1, &(0x7f0000004300)=[{{&(0x7f00000002c0)=@in, 0x80, &(0x7f00000027c0), 0x1, &(0x7f0000000080)=""/210, 0xfffffd94}}], 0x684, 0x0, &(0x7f0000004480)={0x0, r4+30000000})
ioctl$BLKTRACETEARDOWN(r6, 0x1276, 0x0)
ioctl$TIOCGSID(r6, 0x5429, &(0x7f00000003c0)=<r7=>0x0)
ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000400)=<r8=>0x0)
setpgid(r7, r8)
mq_getsetattr(r6, &(0x7f0000000480)={0x7, 0x0, 0x1, 0x39, 0x9, 0x18, 0x5, 0x7}, &(0x7f00000004c0))
perf_event_open(&(0x7f0000000740)={0x3, 0x70, 0x2, 0x4, 0x3, 0x3, 0x0, 0x8, 0x1, 0x8, 0x0, 0x1f, 0xffff, 0x1ff, 0x1, 0xffffffffffffff00, 0x100000001, 0xffffffffffffffc0, 0x81, 0x10001, 0xcd81, 0x8, 0x1, 0x75739757, 0x200, 0x3f, 0x5, 0x80, 0xfc4, 0x0, 0x9553, 0x7, 0x4, 0x4, 0x7, 0x3, 0x5, 0x101, 0x0, 0x200, 0x4, @perf_bp={&(0x7f0000000700), 0x4}, 0x2083, 0x1, 0x1, 0x1, 0x5, 0x9, 0x5}, r8, 0xe, r1, 0x9)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000840)={'erspan0\x00', 0x400})

23:56:13 executing program 0:
r0 = inotify_init1(0x0)
flock(r0, 0x81cf71e160540b36)
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x200000, 0x0)
ioctl$SG_GET_NUM_WAITING(r1, 0x227d, &(0x7f0000000080))
r2 = syz_open_procfs(0x0, &(0x7f0000000180)='fdinfo/3\x00')
preadv(r2, &(0x7f0000000000)=[{&(0x7f00000001c0)=""/246, 0xf6}], 0x1, 0x0)
openat$dsp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x40280, 0x0)
setsockopt$XDP_UMEM_FILL_RING(r2, 0x11b, 0x5, &(0x7f00000000c0)=0x8000, 0x4)
ioctl$KDGETKEYCODE(r2, 0x4b4c, &(0x7f0000000140)={0x6, 0x100000001})
syz_open_dev$sg(&(0x7f00000002c0)='/dev/sg#\x00', 0x5, 0x208000)
ioctl$UI_SET_RELBIT(r1, 0x40045566, 0x7)

23:56:13 executing program 5:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2ce}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xbc0, 0x0, 0x0)

23:56:13 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x96, 0x0, 0x0)

23:56:13 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x23a, 0x0, 0x0)

23:56:13 executing program 2:
r0 = syz_open_dev$dmmidi(&(0x7f0000000040)='/dev/dmmidi#\x00', 0x28b0000, 0xc00)
ioctl$EVIOCSABS20(r0, 0x401845e0, &(0x7f00000000c0)={0x2, 0x344, 0x4, 0x8, 0x80, 0x7ff})
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='smaps_rollup\x00')
exit(0x0)
read(r1, &(0x7f0000000000)=""/56, 0x38)

23:56:13 executing program 0:
r0 = memfd_create(&(0x7f0000000240)="73656c660167726f7570655568317472757374656400", 0x4)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, &(0x7f0000000280)={<r1=>0x0, 0x80000, 0xffffffffffffff9c})
ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, &(0x7f00000002c0)={<r2=>0x0, 0x0, 0xfff})
ioctl$DRM_IOCTL_GEM_FLINK(r0, 0xc008640a, &(0x7f0000000300)={r1, r2})
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000080), 0xffffffffffffffff)
r3 = getpid()
ptrace$getenv(0x4201, r3, 0xfcc, &(0x7f0000000000))
sched_setscheduler(r3, 0x5, &(0x7f0000000200))
r4 = add_key(&(0x7f0000000040)='rxrpc_s\x00', &(0x7f00000000c0)={0x73, 0x79, 0x7a, 0x1}, &(0x7f0000000100)="4323bfe38ccadc0faa7553e1dde4d56d3ef7447b9e55435ef76f09a697edc41fb5646e1b7bc37e496193f3601c2dcd7eab6698ffda2b52f66a802f039e4c93685b144b7333dbaa939f936a03f763006dfbe4b998b6478b0cb18eb661d33fdf91210b9b45eaafe1cf13840b53273d253e06db14d5697d3904899860c29a79246ca18b4d6aef55be7e780ce824faa096edd8b2ff9a3c65272a26713a67d18cda6f884b50707fbf08bf17316311df38a0a0cdbcdcfe884ddb3b3070be48d9d209d9709c336d31fbfd5e940f563af24e892def8b6e9730f4278cffae37df0b1c955bd29c35ad61be", 0xe6, 0xfffffffffffffff9)
keyctl$negate(0xd, r4, 0xfffffffffffffffd, 0x0)
unlink(&(0x7f0000000400)='./file0\x00')
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000380)={r0, 0x0, 0x1, 0x4, &(0x7f0000000340)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x8}, 0x20)
fcntl$F_GET_FILE_RW_HINT(r0, 0x40d, &(0x7f00000003c0))

23:56:13 executing program 1:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'skcipher\x00', 0x0, 0x0, 'ctr-aes-aesni\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r1 = pkey_alloc(0x0, 0x1)
pkey_mprotect(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x5, r1)
r2 = accept$alg(r0, 0x0, 0x0)
write$binfmt_script(r2, &(0x7f0000000300)=ANY=[], 0xffffffaa)

23:56:13 executing program 5:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x25b}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xbc0, 0x0, 0x0)

23:56:13 executing program 0:
r0 = creat(&(0x7f0000000000)='./file0\x00', 0x50)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000080)=[@in={0x2, 0x4e21, @multicast1}, @in6={0xa, 0x4e21, 0x2, @dev={0xfe, 0x80, [], 0xc}, 0x1}, @in={0x2, 0x4e21, @rand_addr=0x80}, @in={0x2, 0x4e24, @broadcast}, @in={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0xb}}, @in={0x2, 0x4e24, @multicast1}, @in={0x2, 0x4e21, @multicast2}, @in={0x2, 0x4e23}], 0x8c)
syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
clone(0x6000, 0x0, 0xfffffffffffffffe, &(0x7f0000000140), 0xffffffffffffffff)
sched_setscheduler(0x0, 0x5, &(0x7f0000000200))
ioctl$LOOP_SET_FD(r0, 0x4c00, r0)

23:56:13 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x236, 0x0, 0x0)

23:56:13 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x94, 0x0, 0x0)

23:56:13 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f0000000a80), &(0x7f0000000b40)=0x8)
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff})
setsockopt$inet6_tcp_int(r0, 0x6, 0x1f, &(0x7f0000000100)=0x6, 0x4)
syz_mount_image$xfs(&(0x7f0000000bc0)='xfs\x00', &(0x7f0000000c00)='./file0\x00', 0x0, 0x1, &(0x7f0000001300)=[{&(0x7f00000010c0)}], 0x0, &(0x7f0000001400)={[{@bsdgroups='bsdgroups'}, {@allocsize={'allocsize', 0x3d, [0x30]}}, {@dax='dax'}]})

23:56:13 executing program 5:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x99}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xbc0, 0x0, 0x0)

23:56:13 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x119, 0x0, 0x0)

23:56:13 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xdb, 0x0, 0x0)

23:56:13 executing program 1:
timer_create(0x3, &(0x7f0000000180)={0x0, 0x17, 0x0, @thr={&(0x7f00000006c0), &(0x7f00000000c0)}}, &(0x7f0000000080))
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$ntfs(&(0x7f0000000200)='ntfs\x00', &(0x7f0000000240)='./file0\x00', 0x0, 0x0, &(0x7f0000000380), 0x0, &(0x7f00000004c0)=ANY=[])
timer_settime(0x0, 0x100000001, &(0x7f0000000040)={{0x77359400}, {0x0, 0x7}}, &(0x7f00000000c0))
getresgid(&(0x7f0000000100), &(0x7f0000000140), &(0x7f0000000280))

23:56:14 executing program 2:
r0 = dup2(0xffffffffffffff9c, 0xffffffffffffffff)
bind$inet(r0, &(0x7f0000000180)={0x2, 0x4e20, @multicast2}, 0x10)
ioctl$LOOP_GET_STATUS64(r0, 0x4c05, &(0x7f0000000200))
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='net/softnet_stat\x00')
exit(0x800)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x2, 0x0)
read(r1, &(0x7f0000000000)=""/56, 0x38)
getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f0000000840)={{{@in6=@mcast1, @in6=@ipv4={[], [], @rand_addr}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}}, {{@in=@dev}, 0x0, @in6=@mcast2}}, &(0x7f0000000940)=0xe8)
recvfrom$packet(r1, &(0x7f0000000040)=""/185, 0xb9, 0x0, &(0x7f0000000980)={0x11, 0x1b, r2, 0x1, 0x6, 0x6, @random="c61a06721935"}, 0x14)

23:56:14 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x2e3, 0x0, 0x0)

23:56:14 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x190, 0x0, 0x0)

23:56:14 executing program 1:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
clone(0x210007fe, 0x0, 0xfffffffffffffffe, &(0x7f00000000c0), 0xffffffffffffffff)
r1 = getpid()
r2 = fcntl$dupfd(r0, 0x406, r0)
getsockname(r0, &(0x7f0000002d00)=@ll={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000002d80)=0x80)
sendmsg$can_raw(r2, &(0x7f0000002e80)={&(0x7f0000002dc0)={0x1d, r3}, 0x10, &(0x7f0000002e40)={&(0x7f0000002e00)=@can={{0x3, 0x5, 0x7ff, 0x2}, 0x8, 0x2, 0x0, 0x0, "ba48875555c7fffb"}, 0x10}, 0x1, 0x0, 0x0, 0x20000000}, 0x40)
sched_setscheduler(r1, 0x5, &(0x7f0000000340))
setsockopt$sock_void(r0, 0x29, 0x20, 0x0, 0x300)

23:56:14 executing program 5:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x9f}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xbc0, 0x0, 0x0)

23:56:14 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
pipe2(&(0x7f0000000440)={<r0=>0xffffffffffffffff}, 0x84800)
openat$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000580)='cgroup.subtree_control\x00', 0x2, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000480)={'teql0\x00', 0x2000})
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c81, 0x0)
add_key$user(&(0x7f0000000140)='user\x00', &(0x7f0000000180)={0x73, 0x79, 0x7a, 0x1}, &(0x7f0000000200), 0x0, 0xfffffffffffffff9)
perf_event_open(&(0x7f0000000040)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GSTATUS(0xffffffffffffffff, 0xc0505405, &(0x7f0000000100)={{}, 0x20})
ioctl(0xffffffffffffffff, 0x0, &(0x7f00000000c0))
r1 = socket(0x10, 0x802, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8914, &(0x7f00000003c0)={'gre0\x00', 0x3})
mount$9p_fd(0x0, &(0x7f00000001c0)='./file1\x00', &(0x7f0000000340)='9p\x00', 0x40, &(0x7f0000000640)=ANY=[@ANYBLOB="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"])
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000500)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000004c0)={<r2=>0xffffffffffffffff}, 0x106, 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_JOIN_IP_MCAST(0xffffffffffffffff, &(0x7f0000000540)={0x10, 0x30, 0xfa00, {&(0x7f0000000400), 0x0, {0xa, 0x4e23, 0xd90, @dev={0xfe, 0x80, [], 0x16}, 0x6a}, r2}}, 0x38)
pipe2$9p(&(0x7f0000000180), 0x0)
write$P9_RUNLINKAT(r0, &(0x7f0000000600)={0x3b, 0x4d, 0x1}, 0x7)
r3 = gettid()
perf_event_open(&(0x7f0000000200)={0x5, 0x70, 0x1, 0x0, 0x80000001, 0x2, 0x0, 0x100000001, 0x0, 0x1, 0x200, 0x0, 0xfffffffffffffff7, 0x3, 0x4, 0x7, 0x188, 0x6, 0x6, 0x2, 0xff, 0x4, 0x0, 0xffffffff, 0x7, 0x27, 0x3, 0x756, 0x3, 0x1ff, 0x80000001, 0x5, 0xfff, 0xb5b, 0x1000, 0x4, 0x800, 0x1, 0x0, 0x100, 0x2, @perf_bp={&(0x7f00000000c0), 0x1}, 0x4300, 0x100000000, 0x1, 0x2, 0x4, 0x401, 0xfffffffffffffbff}, r3, 0x2, 0xffffffffffffffff, 0x2)
ioctl$LOOP_GET_STATUS64(r0, 0x4c05, &(0x7f0000000800))

23:56:14 executing program 0:
r0 = syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
r1 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
close(r1)
socket$kcm(0x2, 0x3, 0x2)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400202)
ioctl(r0, 0xc1004110, &(0x7f0000000000))

23:56:14 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x194, 0x0, 0x0)

23:56:14 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xb0, 0x0, 0x0)

23:56:14 executing program 1:
bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000480)={&(0x7f0000000000)='./file0/file0\x00'}, 0x10)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xeb6f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000240)='./file0\x00', 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x12, 0x8, &(0x7f0000000140)=ANY=[@ANYBLOB="7a0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000bd120000000000008500000006000000b7000000000000009500000000000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0xa}, 0x48)
getpid()
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup\x00syz1\x00', 0x200002, 0x0)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000000c0)={r1, r0, 0xa}, 0x10)
bpf$BPF_PROG_ATTACH(0x9, &(0x7f0000000640)={r1}, 0x10)
socketpair$inet_sctp(0x2, 0x0, 0x84, &(0x7f00000005c0))
r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000200)='/dev/sequencer2\x00', 0x200, 0x0)
getpeername$packet(0xffffffffffffff9c, &(0x7f0000000280)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f00000002c0)=0x14)
sendmsg$can_raw(r2, &(0x7f0000000400)={&(0x7f0000000300)={0x1d, r3}, 0x10, &(0x7f00000003c0)={&(0x7f0000000340)=@canfd={{0x4, 0x1, 0x9, 0xff}, 0xc, 0x1, 0x0, 0x0, "4bd339149af3f07124c4692a29f083878fd0d7a43c9aa57ae9971b4a2cc89b62006096ead649ae582320fcefc3d6533f0645e22429e0a553352341466e251969"}, 0x48}, 0x1, 0x0, 0x0, 0x20000010}, 0x4000000)
gettid()
recvmsg$kcm(0xffffffffffffff9c, &(0x7f0000002180)={&(0x7f0000000b40)=@hci, 0x80, &(0x7f0000002000)=[{&(0x7f0000000bc0)=""/144, 0x90}, {&(0x7f0000000d40)=""/4096, 0x1000}], 0x2, &(0x7f0000002080)=""/224, 0xe0}, 0x0)
close(0xffffffffffffffff)

23:56:14 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x2ac, 0x0, 0x0)

23:56:14 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x26b, 0x0, 0x0)

23:56:15 executing program 5:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x291}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xbc0, 0x0, 0x0)

23:56:15 executing program 0:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='memory.stat\x00', 0x0, 0x0)
bind$bt_sco(r1, &(0x7f0000000040)={0x1f, {0x0, 0x7, 0x10000, 0x100000001, 0x20, 0x6}}, 0x8)
r2 = fcntl$dupfd(r0, 0x0, r0)
ioctl$HCIINQUIRY(r2, 0x400448e1, &(0x7f00000000c0)={0x0, 0x0, 0x40000000})
ioctl$FITRIM(r2, 0xc0185879, &(0x7f0000000080)={0x2, 0x7, 0x2db})

23:56:15 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x1b, 0x0, 0x0)

23:56:15 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x14b, 0x0, 0x0)

23:56:15 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='smaps_rollup\x00')
r1 = syz_genetlink_get_family_id$team(&(0x7f0000000080)='team\x00')
getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f00000000c0)={<r2=>0x0, @rand_addr, @multicast2}, &(0x7f0000000140)=0xc)
accept4$packet(r0, &(0x7f0000000180)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @random}, &(0x7f00000001c0)=0x14, 0x800)
recvmmsg(r0, &(0x7f0000000600)=[{{&(0x7f0000000200)=@generic, 0x80, &(0x7f0000000340)=[{&(0x7f0000000280)=""/152, 0x98}], 0x1, &(0x7f0000000380)=""/150, 0x96, 0xd1d}, 0xa22}, {{&(0x7f0000000440)=@xdp={0x2c, 0x0, <r4=>0x0}, 0x80, &(0x7f0000000580)=[{&(0x7f00000004c0)=""/186, 0xba}], 0x1, &(0x7f00000005c0)=""/58, 0x3a, 0x5}, 0x2}], 0x2, 0x100, &(0x7f0000000680))
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000006c0)={'vcan0\x00', <r5=>0x0})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000700)={'ip6gretap0\x00', <r6=>0x0})
getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000740)={{{@in=@broadcast, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r7=>0x0}}, {{@in6}, 0x0, @in6=@ipv4={[], [], @broadcast}}}, &(0x7f0000000840)=0xe8)
getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f00000011c0)={{{@in, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r8=>0x0}}, {{@in=@multicast2}, 0x0, @in=@loopback}}, &(0x7f00000012c0)=0xe8)
getsockopt$inet_mreqn(r0, 0x0, 0x24, &(0x7f0000001380)={@loopback, @dev, <r9=>0x0}, &(0x7f00000013c0)=0xc)
accept4$packet(r0, &(0x7f0000001400)={0x11, 0x0, <r10=>0x0}, &(0x7f0000001440)=0x14, 0x800)
getsockopt$inet6_mreq(r0, 0x29, 0x1f, &(0x7f0000001600)={@ipv4={[], [], @multicast1}, <r11=>0x0}, &(0x7f0000001640)=0x14)
getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000001740)={{{@in=@remote, @in6=@ipv4={[], [], @local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r12=>0x0}}, {{@in=@local}, 0x0, @in6=@local}}, &(0x7f0000001840)=0xe8)
accept$packet(r0, &(0x7f0000001880)={0x11, 0x0, <r13=>0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f00000018c0)=0x14)
accept(r0, &(0x7f0000001900)=@xdp={0x2c, 0x0, <r14=>0x0}, &(0x7f0000001980)=0x80)
getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000002d00)={{{@in=@remote, @in=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r15=>0x0}}, {{@in=@loopback}, 0x0, @in6=@ipv4={[], [], @rand_addr}}}, &(0x7f0000002e00)=0xe8)
accept4$packet(r0, &(0x7f0000002e40)={0x11, 0x0, <r16=>0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000002e80)=0x14, 0x80000)
getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000002f40)={{{@in=@multicast1, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r17=>0x0}}, {{@in6}, 0x0, @in6=@mcast2}}, &(0x7f0000003040)=0xe8)
getsockopt$inet6_mreq(r0, 0x29, 0x15, &(0x7f0000003080)={@mcast1, <r18=>0x0}, &(0x7f00000030c0)=0x14)
getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000004380)={{{@in=@remote, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r19=>0x0}}, {{@in6=@ipv4={[], [], @rand_addr}}, 0x0, @in=@local}}, &(0x7f0000004480)=0xe8)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000044c0)={'vcan0\x00', <r20=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r0, &(0x7f0000004b80)={&(0x7f0000000040), 0xc, &(0x7f0000004b40)={&(0x7f0000004500)={0x634, r1, 0x800, 0x70bd28, 0x25dfdbfe, {}, [{{0x8, 0x1, r2}, {0x254, 0x2, [{0x3c, 0x1, @lb_tx_method={{0x24, 0x1, 'lb_tx_method\x00'}, {0x8}, {0xc, 0x4, 'hash\x00'}}}, {0x38, 0x1, @notify_peers_interval={{0x24, 0x1, 'notify_peers_interval\x00'}, {0x8}, {0x8, 0x4, 0x63}}}, {0x40, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x8}, {0x10, 0x4, 'loadbalance\x00'}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r3}}}, {0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x8}, {0x8, 0x4, 0x81}}}, {0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x8}, {0x8, 0x4, 0x1}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8}, {0x8, 0x4, 0x3}}}, {0x38, 0x1, @notify_peers_interval={{0x24, 0x1, 'notify_peers_interval\x00'}, {0x8}, {0x8, 0x4, 0x4}}}, {0x40, 0x1, @queue_id={{{0x24, 0x1, 'queue_id\x00'}, {0x8}, {0x8, 0x4, 0x5de2}}, {0x8, 0x6, r4}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8}, {0x8, 0x4, r5}}, {0x8}}}]}}, {{0x8, 0x1, r6}, {0xfc, 0x2, [{0x3c, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x8}, {0xc, 0x4, 'random\x00'}}}, {0x40, 0x1, @priority={{{0x24, 0x1, 'priority\x00'}, {0x8}, {0x8, 0x4, 0xa000000000000}}, {0x8, 0x6, r7}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r8}}}, {0x40, 0x1, @queue_id={{{0x24, 0x1, 'queue_id\x00'}, {0x8}, {0x8, 0x4, 0x5}}, {0x8, 0x6, r9}}}]}}, {{0x8, 0x1, r10}, {0x50, 0x2, [{0x4c, 0x1, @lb_tx_method={{0x24, 0x1, 'lb_tx_method\x00'}, {0x8}, {0x1c, 0x4, 'hash_to_port_mapping\x00'}}}]}}, {{0x8, 0x1, r11}, {0xf4, 0x2, [{0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r12}}}, {0x40, 0x1, @priority={{{0x24, 0x1, 'priority\x00'}, {0x8}, {0x8, 0x4, 0x3}}, {0x8, 0x6, r13}}}, {0x38, 0x1, @activeport={{0x24, 0x1, 'activeport\x00'}, {0x8}, {0x8, 0x4, r14}}}, {0x3c, 0x1, @user_linkup={{{0x24, 0x1, 'user_linkup\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r15}}}]}}, {{0x8, 0x1, r16}, {0xc4, 0x2, [{0x40, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x8}, {0x10, 0x4, 'broadcast\x00'}}}, {0x40, 0x1, @queue_id={{{0x24, 0x1, 'queue_id\x00'}, {0x8}, {0x8, 0x4, 0x4}}, {0x8, 0x6, r17}}}, {0x40, 0x1, @priority={{{0x24, 0x1, 'priority\x00'}, {0x8}, {0x8, 0x4, 0x2fba}}, {0x8, 0x6, r18}}}]}}, {{0x8, 0x1, r19}, {0x98, 0x2, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8}, {0x8, 0x4, r20}}, {0x8}}}, {0x54, 0x1, @bpf_hash_func={{0x24, 0x1, 'bpf_hash_func\x00'}, {0x8}, {0x24, 0x4, [{0x0, 0x1f, 0x3, 0xfff}, {0x8001, 0xffffffff, 0x5, 0x6}, {0x8, 0x2, 0x20, 0xfff}, {0x800, 0xcb7, 0x2b392e4d}]}}}]}}]}, 0x634}, 0x1, 0x0, 0x0, 0x24048000}, 0x4000)
exit(0x0)
read(r0, &(0x7f0000000000)=""/56, 0x38)

23:56:15 executing program 1:
r0 = syz_open_dev$dspn(&(0x7f0000000140)='/dev/dsp#\x00', 0xfffffffffffffffc, 0x400)
ioctl$NBD_CLEAR_SOCK(r0, 0xab04)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000c18000), 0x0)
r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snapshot\x00', 0x200000, 0x0)
clock_gettime(0x0, &(0x7f00000000c0)={<r3=>0x0, <r4=>0x0})
ioctl$SNDRV_RAWMIDI_IOCTL_STATUS(r2, 0xc0385720, &(0x7f0000000100)={0x1286257bd7bad374, {r3, r4+30000000}, 0x0, 0xf0c})
epoll_create(0x0)

23:56:15 executing program 1:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f00000015c0)="153f6234488dd25d766070")
socketpair$unix(0x1, 0x80005, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
sendmmsg(r1, &(0x7f0000001f80)=[{{&(0x7f0000000100)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, 0x80, &(0x7f0000000040), 0x0, &(0x7f0000002500)}}], 0x1, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
r2 = syz_init_net_socket$llc(0x1a, 0xfffffffffffffffb, 0x0)
sendto$llc(r2, &(0x7f0000000100)="7aa77f27df0fb04533efc5f0bf2ddb1d321d9f5ff46749124eb3711e82e197260b60d357ae1fbc1b397ef19fe1a55975896542c46d13890965815669b842d762e74b024bbf5cb520333767c7a722c6b5c8d303551835896955c5846555c3afe58adfef07630e965fac23f93862b71d", 0x6f, 0x1, &(0x7f0000000040)={0x1a, 0x100, 0x8, 0x0, 0x1, 0x0, @dev}, 0x10)
close(r2)

23:56:15 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x140, 0x0, 0x0)

23:56:15 executing program 0:
pipe2(&(0x7f0000000100)={<r0=>0xffffffffffffffff}, 0x80800)
ioctl$TCSETS(r0, 0x5402, &(0x7f0000000080)={0x3cef, 0x7, 0x1, 0x0, 0x30888823, 0x1, 0x40, 0x5, 0x2, 0x80000001, 0xfffffffffffffffe})
r1 = semget$private(0x0, 0x20000000102, 0x0)
semop(r1, &(0x7f00000000c0)=[{0x0, 0x4}, {0x0, 0x6}, {0xfffffffffffffffc, 0xfffffffffffffe01}], 0x3)
socket$nl_netfilter(0x10, 0x3, 0xc)
semop(r1, &(0x7f0000000000)=[{0x0, 0x7}], 0x1)

23:56:15 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x1a2, 0x0, 0x0)

23:56:15 executing program 5:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x1ad}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xbc0, 0x0, 0x0)

23:56:15 executing program 1:
r0 = socket$inet6(0xa, 0x802, 0x1)
clone(0x20002100, 0x0, 0xfffffffffffffffe, &(0x7f0000000140), 0xffffffffffffffff)
setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x30, &(0x7f0000000400)=ANY=[], 0x0)
r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080)='/dev/zero\x00', 0x0, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x5, &(0x7f0000000000))
ioctl$TIOCGLCKTRMIOS(r0, 0x5456, &(0x7f0000000280)={0x9, 0x9, 0x6, 0x6dca, 0xffffffffffffff81, 0x6, 0x1, 0x80, 0x2, 0x7b7bab3e, 0xa2, 0x100})
getsockopt$IP_VS_SO_GET_SERVICES(r1, 0x0, 0x482, &(0x7f0000000400)=""/224, &(0x7f0000000040)=0xe0)
getsockopt$inet6_opts(r1, 0x29, 0x3b, &(0x7f0000000180)=""/214, &(0x7f0000000100)=0xd6)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'team_slave_1\x00', &(0x7f00000002c0)=ANY=[@ANYBLOB="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"]})

23:56:15 executing program 0:
r0 = socket$inet6(0xa, 0x3, 0x2)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000540)=@raw={'raw\x00', 0x9, 0x3, 0x370, 0x148, 0x0, 0x148, 0x0, 0x0, 0x2a0, 0x2a0, 0x2a0, 0x2a0, 0x2a0, 0x3, &(0x7f0000000000), {[{{@uncond, 0x0, 0x120, 0x148, 0x0, {}, [@common=@ipv6header={0x28, 'ipv6header\x00', 0x0, {0x4}}, @common=@ah={0x30, 'ah\x00', 0x0, {0x4d2, 0x4d6, 0x1f, 0x1, 0x2}}]}, @common=@unspec=@NFQUEUE2={0x28, 'NFQUEUE\x00', 0x2, {0x81, 0x101, 0x2}}}, {{@uncond, 0x0, 0xf0, 0x158, 0x0, {}, [@common=@inet=@tcpmss={0x28, 'tcpmss\x00', 0x0, {0x7, 0xfffffffffffffffd}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0xa, 0x1, 0x1, 0x7ff, 'snmp\x00', 'syz1\x00', 0x1ff}}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3d0)
sendmmsg(r0, &(0x7f00000000c0)=[{{&(0x7f00000004c0)=@in6={0xa, 0x0, 0x0, @mcast2}, 0x80, &(0x7f0000000680), 0x0, &(0x7f0000000240)=[{0x28, 0x29, 0x2, "2b07df2fd0846bc0964f4ffde3d917e308"}], 0x28}}], 0x1, 0x0)

23:56:15 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x150, 0x0, 0x0)

23:56:15 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x9a, 0x0, 0x0)

23:56:15 executing program 1:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x1a2, 0x0, 0x0)

23:56:16 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='smaps_rollup\x00')
exit(0xfffbffdffffeffff)
read(r0, &(0x7f0000000000)=""/56, 0x38)

23:56:16 executing program 0:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x5, 0x82, 0x3, 0x401, 0x1}, 0x4c)
r1 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
close(r1)
socket$kcm(0x29, 0x5, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0xa8)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000500)={r0, &(0x7f0000000180), &(0x7f0000000300)}, 0x20)

23:56:16 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x57, 0x0, 0x0)

23:56:16 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x2a7, 0x0, 0x0)

23:56:16 executing program 5:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x157}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xbc0, 0x0, 0x0)

23:56:16 executing program 1:
syz_open_pts(0xffffffffffffffff, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/net/tun\x00', 0x0, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f0000000400), 0xc)
ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, &(0x7f0000000580))
r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/net/tun\x00', 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000a80)=ANY=[], 0x0)
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/rfkill\x00', 0x2, 0x0)
write$uinput_user_dev(r2, &(0x7f00000006c0)={'syz1\x00', {0x4, 0x3b868000000000, 0x3ff, 0x7}, 0xe, [0x9, 0x7, 0x6, 0x9, 0x5e3, 0x6, 0x400, 0x100, 0x6, 0x751, 0x6, 0x7, 0x7f, 0x5, 0x3ed, 0xffff, 0x9, 0x40, 0x13, 0x5, 0x8, 0x3ff, 0xff, 0x1, 0x80000000, 0x9, 0x80000000, 0xc097633, 0x7, 0xffff, 0xfffffffffffffffe, 0x2, 0x0, 0x800, 0x6, 0x4, 0x7fff, 0x80000001, 0xfffffffffffffffd, 0x1, 0x1, 0x0, 0x6, 0x435, 0x1, 0x7, 0x3, 0x3f, 0x80000000, 0x9, 0x1000, 0x81, 0xfffffffffffffffe, 0x5, 0x8, 0x4bf, 0xfffffffffffffffb, 0x12c, 0x0, 0x74dc, 0x41ed33b5, 0x9, 0x2], [0x7, 0x24c, 0x9, 0x3, 0x5, 0x8, 0x7ff, 0x3f, 0x0, 0x800, 0x1, 0x4, 0x80000001, 0x5, 0x6, 0x2, 0xfffffffffffffff7, 0x10001, 0x7, 0x5, 0x4c, 0x1, 0x8, 0xffff, 0x3ff, 0xff, 0x3, 0x8, 0x0, 0xffffffff, 0x0, 0x8000, 0x10000, 0x91, 0x1000, 0x0, 0x80000000, 0xaf, 0x4e, 0x5, 0x4, 0x7f, 0xffff, 0x0, 0xc6, 0x1, 0x792, 0x5, 0x99, 0x62, 0x800, 0x2, 0x7fffffff, 0xd6, 0xffffffffffffffc1, 0x9a24, 0x5, 0x200, 0x1, 0xffffffff, 0x6, 0x1000, 0x7f, 0xf3a], [0x3, 0x2, 0xa48a, 0x5, 0x7, 0x9, 0x8, 0x8, 0xd45, 0x7, 0x7, 0x7, 0x0, 0x9, 0xc7f9, 0x7, 0x4, 0x6, 0x80000000, 0x4, 0x6, 0x200, 0xffffffffffffffff, 0x7, 0x40, 0x1, 0x5, 0x6, 0x7, 0x5, 0x7fff, 0x2, 0x7, 0x3, 0x3f, 0xf30113, 0x1000000000000000, 0xfffffffffffffffd, 0x4, 0x1, 0x3, 0x100, 0x0, 0x2, 0x7bf, 0xff, 0x1, 0x2, 0xe315, 0x1ff, 0xffff, 0x18, 0x5, 0x5, 0x3, 0xb9e, 0x1f, 0x100000001, 0x2e3, 0x7f, 0x2, 0xffffffffffffff9f, 0x32, 0x4], [0xffffffff, 0x9, 0x8001, 0xfaf1, 0x9, 0x101, 0x7b, 0x3ff, 0x3, 0x8, 0x4, 0xf25, 0x7fff, 0xa058, 0x9, 0xeff0, 0x1000, 0x9, 0x2, 0x2, 0x280000000, 0x14, 0x8, 0x1, 0x5, 0x2, 0xdf86, 0x9, 0x43, 0xb2, 0x1, 0x7, 0x5, 0xfffffffffffffffc, 0xaa7, 0x0, 0x7, 0x7, 0x100000001, 0x9, 0x2, 0xfffffffffffffff7, 0x5, 0x6, 0x1, 0x7fffffff, 0x3f, 0x2, 0x9, 0x7fff, 0x499c, 0x69af, 0xdb, 0x1b0, 0x7, 0x4c94ec6, 0x0, 0x6, 0xf6, 0x3f, 0x4, 0x7fffffff, 0x8]}, 0x45c)
syz_open_dev$dspn(&(0x7f0000000380)='/dev/dsp#\x00', 0x3, 0x1000)
socketpair$inet(0x2, 0x3, 0x15e, &(0x7f00000003c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f0000000300))
getsockopt$inet_sctp_SCTP_RESET_STREAMS(r4, 0x84, 0x77, &(0x7f0000000680)=ANY=[@ANYRES32=0x0, @ANYBLOB='\x00\x00E\x00'], &(0x7f0000000200)=0x8)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000000)={"760000000000000002000000bd6800", 0x43732e5398416f13})
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$TUNSETVNETHDRSZ(r3, 0x400454d8, &(0x7f0000000280))
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pread64(r1, &(0x7f0000000340)=""/39, 0x27, 0x500000000000000)
sendmsg$nl_route(r5, &(0x7f0000000140)={&(0x7f00000000c0), 0xc, &(0x7f0000000100)={&(0x7f0000000180)=@newlink={0x28, 0x10, 0xc362e63b3f31ba5f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x3}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0)
dup2(r0, r1)
ioctl$FS_IOC_FIEMAP(r5, 0xc020660b, &(0x7f0000000440)={0xeb, 0x7f, 0x2, 0x100, 0x9, [{0x6, 0x71a, 0xbfc, 0x0, 0x0, 0x480}, {0x0, 0x2, 0x9, 0x0, 0x0, 0x2100}, {0xae4, 0x7, 0x7fff, 0x0, 0x0, 0x1802}, {0x3, 0x5, 0x6}, {0x5, 0x4, 0x81, 0x0, 0x0, 0x3300}, {0x4, 0x8, 0x1f, 0x0, 0x0, 0x100}, {0x101, 0x8001, 0x2, 0x0, 0x0, 0x1000}, {0x8001, 0xfffffffffffffe00, 0xffffffffffffffff, 0x0, 0x0, 0x501}, {0x0, 0x7, 0x1ff, 0x0, 0x0, 0x110a}]})

23:56:16 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x12d, 0x0, 0x0)

23:56:16 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x12d, 0x0, 0x0)

23:56:16 executing program 0:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r1 = userfaultfd(0x0)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000003fe8))
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f00000000c0)={{&(0x7f0000012000/0x1000)=nil, 0x1000}})
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r2, 0x84, 0x65, &(0x7f0000013e95), 0x4)
connect$inet6(r2, &(0x7f0000000040)={0xa, 0x0, 0x0, @ipv4={[], [], @multicast1}}, 0x1c)
close(r2)
ioctl$sock_FIOGETOWN(r2, 0x8903, &(0x7f0000000000)=<r3=>0x0)
r4 = getpid()
r5 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000080)='/dev/rfkill\x00', 0x2000, 0x0)
kcmp$KCMP_EPOLL_TFD(r3, r4, 0x7, r0, &(0x7f0000000100)={r5, r1})
close(r1)

[  601.773569] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  601.794709] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
23:56:16 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x12f, 0x0, 0x0)

23:56:16 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x1db, 0x0, 0x0)

[  601.901337] IPv6: ADDRCONF(NETDEV_UP): tap0: link is not ready
23:56:16 executing program 5:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0xe6}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xbc0, 0x0, 0x0)

23:56:17 executing program 2:
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000000c0)=<r0=>0x0)
r1 = syz_open_procfs(r0, &(0x7f0000000080)='smaps_rollup\x00')
exit(0x0)
read(r1, &(0x7f0000000040)=""/56, 0x38)

23:56:17 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x1e5, 0x0, 0x0)

23:56:17 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x22e, 0x0, 0x0)

23:56:17 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x12c, 0x0, 0x0)

23:56:17 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x216, 0x0, 0x0)

[  603.595522] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
23:56:18 executing program 1:
r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0)
ioctl$SG_IO(r0, 0x2282, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, @buffer={0xee, 0xee, &(0x7f00000002c0)=""/238}, &(0x7f0000000000), &(0x7f00000003c0)=""/95, 0x0, 0x0, 0x0, &(0x7f0000000100)})

23:56:18 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x16c, 0x0, 0x0)

23:56:18 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='smaps_rollup\x00')
exit(0x0)
read(r0, &(0x7f0000000040)=""/56, 0x38)

23:56:18 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x4)
sendmsg$nl_generic(r0, &(0x7f0000005000)={&(0x7f0000000040)={0x10, 0xf0ffffff00000f00}, 0xc, &(0x7f0000000240)={&(0x7f00000000c0)={0x14, 0x14, 0x207, 0x0, 0x0, {0x2, 0xf0ffff, 0x600}}, 0x14}}, 0x0)
r1 = syz_genetlink_get_family_id$nbd(&(0x7f0000000080)='nbd\x00')
r2 = syz_open_dev$sndpcmc(&(0x7f0000000100)='/dev/snd/pcmC#D#c\x00', 0x7, 0x2000)
socketpair$nbd(0x2, 0x1, 0x0, &(0x7f0000000400)={<r3=>0xffffffffffffffff})
r4 = accept4(r0, &(0x7f0000000180)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @remote}}}, &(0x7f0000000200)=0x80, 0x80800)
r5 = fcntl$dupfd(r0, 0x406, r0)
r6 = syz_open_dev$mice(&(0x7f0000000280)='/dev/input/mice\x00', 0x0, 0x301280)
sendmsg$NBD_CMD_STATUS(r0, &(0x7f0000000380)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000340)={&(0x7f00000002c0)={0x80, r1, 0x600, 0x70bd26, 0x25dfdbfe, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x14, 0x7, [{0x8, 0x1, r2}, {0x8, 0x1, r3}]}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0xa74e}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0xfffffffffffffffa}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0xcc}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0x7}, @NBD_ATTR_SOCKETS={0x1c, 0x7, [{0x8, 0x1, r4}, {0x8, 0x1, r5}, {0x8, 0x1, r6}]}]}, 0x80}, 0x1, 0x0, 0x0, 0x4}, 0x4008010)
ioctl$SNDRV_TIMER_IOCTL_START(r2, 0x54a0)
ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f00000003c0)={0x0, r6, 0x401, 0x2, 0x4, 0x80000000})

23:56:18 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x190, 0x0, 0x0)

23:56:18 executing program 5:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x328}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xbc0, 0x0, 0x0)

23:56:18 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="baa100b000eef36cba2100ec66b9800000c00f326635001000000f30bad104ecc80080d267d9f8f30f1bb429000f20c06635200000000f22c067f3af", 0x3c}], 0x0, 0x0, &(0x7f0000000100), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000100)={0x1, 0x0, @pic={0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x63, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x5}})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x0, 0x680})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

23:56:18 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x1ca, 0x0, 0x0)

23:56:18 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x1fa, 0x0, 0x0)

23:56:18 executing program 1:
r0 = socket(0x1e, 0x805, 0x0)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000040)=@req3={0x80000000}, 0xfeda)
connect$can_bcm(r0, &(0x7f0000000000), 0x10)
r1 = socket$unix(0x1, 0x5, 0x0)
bind$unix(r1, &(0x7f0000000080)=@file={0x1, "e91f7189591e9233614b00"}, 0x6e)
listen(r1, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x80000000004)
write(r2, &(0x7f000058bfe4)="29000000140005b7ff000000040860eb0100100006a40e07fff00fd57f25ffffff0100002a00f3ff09", 0x29)

23:56:18 executing program 5:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x22a}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xbc0, 0x0, 0x0)

23:56:18 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x185, 0x0, 0x0)

23:56:18 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x214, 0x0, 0x0)

23:56:18 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff})
r1 = syz_open_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0x8, 0x20000)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(0xffffffffffffffff, 0x84, 0x6, &(0x7f0000000200)={<r2=>0x0, @in={{0x2, 0x4e23, @loopback}}}, &(0x7f0000000180)=0x84)
getsockopt$inet_sctp6_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000002c0)={r2, 0x7, 0x8000, 0x4000000000000, 0x8, 0x81}, &(0x7f0000000300)=0x14)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000001c0)={'veth0_to_bond\x00', &(0x7f0000000340)=ANY=[@ANYBLOB="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"]})

23:56:19 executing program 5:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x130}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xbc0, 0x0, 0x0)

23:56:19 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='smaps_rollup\x00')
exit(0x0)
read(r0, &(0x7f0000000040)=""/56, 0x38)

23:56:19 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x125, 0x0, 0x0)

23:56:19 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x21d, 0x0, 0x0)

23:56:19 executing program 0:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0x5, 0x101102)
ioctl$EVIOCGNAME(r1, 0x80404506, &(0x7f0000000140)=""/224)
prctl$void(0x17)

23:56:19 executing program 1:
r0 = socket$inet6(0xa, 0x401000000000002, 0x0)
mount$9p_unix(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000180)='9p\x00', 0x800, &(0x7f00000001c0)={'trans=unix,', {[{@nodevmap='nodevmap'}]}})
ioctl(r0, 0x8912, &(0x7f0000000280)="153f6234488dd25d766070")
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000140), 0xffffffffffffffff)
r1 = getpid()
r2 = syz_open_dev$usb(&(0x7f00000000c0)='/dev/bus/usb/00#/00#\x00', 0x40000ffffff, 0x1)
sched_setscheduler(r1, 0x5, &(0x7f0000000040))
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x41045508, &(0x7f0000000100))

23:56:19 executing program 1:
r0 = socket$l2tp(0x18, 0x1, 0x1)
ioctl(r0, 0x8912, &(0x7f0000001280)="151f5d76c25200000000004397fc008fb3c28b248278bdeb870614830dc938c3d06f47370bac2798386e0753232eba2fcadf2eb9659381bd26101fc44165e40225198e691751f9565fa3443e59244c363bef22a095aa4ca9bb6aec77effaa8a9fb7ef53b02f3663385a179a13e7e4826da359676fabed027fa9f9f4ac163eb4588d043df0b063199722299ca201b15f2eb4eb4c86c")
r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000100)='/dev/null\x00', 0x10001, 0x0)
r2 = syz_open_dev$dmmidi(&(0x7f0000000180)='/dev/dmmidi#\x00', 0x7f, 0x0)
ioctl$NBD_SET_SOCK(r1, 0xab00, r2)
getsockopt$packet_buf(r1, 0x107, 0x1f, &(0x7f0000000280)=""/4096, &(0x7f00000001c0)=0x1000)
r3 = open(&(0x7f0000000200)='./file0\x00', 0x2, 0x160)
ioctl$KVM_INTERRUPT(r3, 0x4004ae86, &(0x7f0000000140)=0x4)
r4 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r4, 0x107, 0xa, &(0x7f0000000240)=0x2, 0x4)
setsockopt$packet_tx_ring(r4, 0x107, 0x5, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r5, &(0x7f0000000280), 0xffffffee, 0x20000004, &(0x7f0000000080), 0x1c)
poll(&(0x7f00000000c0)=[{r4, 0x4060}], 0x1, 0x7fff)

23:56:19 executing program 0:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
sendmsg$inet_sctp(r0, &(0x7f0000001880)={&(0x7f00000000c0)=@in={0x2, 0x0, @local}, 0x10, &(0x7f0000001600)=[{&(0x7f0000000100)="93", 0x1}], 0x1, &(0x7f0000000000)=ANY=[@ANYBLOB="30000000000000008400000001000000000000000a0000000000100000000000000000000fb8705afa52b1e60185a619de9cf4222fdb6b7148fa87fc169a5ff00ae3c675f7da7215", @ANYRES32=0x0], 0x30}, 0x0)

23:56:19 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x11, 0x0, 0x0)

23:56:19 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xe, 0x0, 0x0)

23:56:19 executing program 0:
r0 = socket$rds(0x15, 0x5, 0x0)
r1 = dup2(r0, r0)
r2 = syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0x7, 0x292180)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0x4, 0x5, 0x1, r2})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140))
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000180), 0xffffffffffffffff)
r3 = getpid()
sched_setscheduler(r3, 0x5, &(0x7f0000000140))
setsockopt$RDS_FREE_MR(r0, 0x114, 0x7, &(0x7f00000002c0), 0x10)

23:56:19 executing program 5:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x4a}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xbc0, 0x0, 0x0)

23:56:19 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x30f, 0x0, 0x0)

23:56:19 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)="6e6002")
fcntl$getownex(r0, 0x10, &(0x7f0000000100)={0x0, <r1=>0x0})
sendmsg$nl_generic(r0, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="1c00000017df250000000008005800000000000000000000", @ANYRES32=r1], 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x40)
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fstat(r0, &(0x7f0000000040))
getsockopt$IP_VS_SO_GET_VERSION(r0, 0x0, 0x480, &(0x7f0000000280), &(0x7f00000002c0)=0x40)
getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000440)={0x0, 0x1f}, &(0x7f0000000480)=0x8)

23:56:20 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='smaps_rollup\x00')
exit(0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r0, 0x29, 0x2a, &(0x7f0000000140)={0x1f, {{0xa, 0x4e21, 0x7fffffff, @empty, 0x2}}}, 0x88)
syz_open_dev$mice(&(0x7f0000000080)='/dev/input/mice\x00', 0x0, 0x20000)
syz_open_dev$vcsa(&(0x7f0000000040)='/dev/vcsa#\x00', 0x2, 0x2000)
read(r0, &(0x7f0000000000)=""/56, 0x38)

23:56:20 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xb8, 0x0, 0x0)

23:56:20 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xc6, 0x0, 0x0)

23:56:20 executing program 5:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2be}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xbc0, 0x0, 0x0)

23:56:20 executing program 0:
r0 = socket$kcm(0x29, 0x5, 0x0)
r1 = syz_open_dev$adsp(&(0x7f0000000000)='/dev/adsp#\x00', 0xb4, 0x121400)
ioctl$PERF_EVENT_IOC_QUERY_BPF(r1, 0xc008240a, &(0x7f0000000480)={0x1, 0x0, [0x0]})
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f00000002c0)={{{@in=@broadcast, @in6=@ipv4={[], [], @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}}, {{@in=@local}}}, &(0x7f00000003c0)=0xe8)
r3 = add_key$keyring(&(0x7f0000000400)='keyring\x00', &(0x7f0000000440)={0x73, 0x79, 0x7a, 0x1}, 0x0, 0x0, 0xfffffffffffffff9)
keyctl$get_persistent(0x16, r2, r3)
r4 = syz_genetlink_get_family_id$nbd(&(0x7f00000000c0)='nbd\x00')
r5 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x2, 0x50000)
r6 = syz_open_dev$midi(&(0x7f0000000140)='/dev/midi#\x00', 0x7, 0x400000)
r7 = syz_open_dev$adsp(&(0x7f0000000180)='/dev/adsp#\x00', 0x1, 0x0)
sendmsg$NBD_CMD_STATUS(r1, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8400000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x60, r4, 0x201, 0x70bd29, 0x25dfdbfe, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0x6}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x7aac}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0x1}, @NBD_ATTR_SOCKETS={0x1c, 0x7, [{0x8, 0x1, r5}, {0x8, 0x1, r6}, {0x8, 0x1, r7}]}]}, 0x60}}, 0x4000000)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x28, &(0x7f0000000080), 0x10)

23:56:20 executing program 1:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
clone(0x820002102011ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000080), 0xffffffffffffffff)
sched_setscheduler(0x0, 0x5, &(0x7f0000000200))
getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x6d, &(0x7f0000000000), &(0x7f0000001680)=0x7)
openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcs\x00', 0x20000, 0x0)

23:56:20 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x5f, 0x0, 0x0)

23:56:20 executing program 1:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000040)="0a5cc80700315f85715070")
r1 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000), 0xc, &(0x7f0000000040)={&(0x7f00000007c0)=ANY=[@ANYBLOB="2800000012000101000000000000000007000000", @ANYRES32=0x0, @ANYBLOB="100600007f0096000099df"], 0x28}}, 0x0)
sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0)

23:56:20 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xae, 0x0, 0x0)

23:56:20 executing program 0:
r0 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={0x73, 0x79, 0x7a, 0x0}, 0x0, 0x0, 0xfffffffffffffffc)
keyctl$restrict_keyring(0x1d, r0, &(0x7f0000000080)='keyring\x00', &(0x7f00000000c0)='\x00')
creat(&(0x7f0000000700)='./bus\x00', 0x0)
mount(&(0x7f0000000180)=@nbd={'/dev/nbd'}, &(0x7f0000000240)='./bus\x00', &(0x7f00000002c0)='nfs4\x00', 0x0, &(0x7f0000000300)='rdma')

23:56:20 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x4f, 0x0, 0x0)

[  605.661229] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'.
23:56:20 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x17f, 0x0, 0x0)

[  605.719118] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'.
23:56:21 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='smaps_rollup\x00')
r1 = socket$inet6(0xa, 0x200080003, 0x8)
ioctl(r1, 0x8912, &(0x7f0000000080)="0a5cc80700315f85715070")
r2 = syz_open_dev$sndmidi(&(0x7f0000000000)='/dev/snd/midiC#D#\x00', 0x2, 0x0)
execve(&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[&(0x7f0000000180)="8c757365727d256574683100"], &(0x7f00000003c0)=[&(0x7f0000000240)='^}-/em0]vmnet1self-\x00', &(0x7f0000000280)='[-.$selinuxself\x00', &(0x7f00000002c0)='smaps_rollup\x00', &(0x7f0000000300)='/dev/sequencer\x00', &(0x7f0000000340)='/dev/sequencer\x00'])
ppoll(&(0x7f0000000380)=[{r2}], 0x1, &(0x7f0000000100)={0x0, 0x1c9c380}, &(0x7f0000000400), 0x8)
r3 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer2\x00', 0x40000007, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000200)='/dev/sequencer\x00', 0x6000, 0x0)
exit(0x0)
setsockopt$inet_sctp_SCTP_MAX_BURST(r3, 0x84, 0x14, &(0x7f0000000040)=@int=0x80, 0x4)
read(r0, &(0x7f0000000000)=""/56, 0x38)

23:56:21 executing program 1:
r0 = socket$inet6(0xa, 0x0, 0x0)
r1 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r1, 0x4000100000008912, &(0x7f0000000280)="88f96234488dd25d766070")
setsockopt$inet_sctp_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000001000)={0x10000, 0x4, 0x100, 0x400}, 0xd0)
r2 = socket(0x11, 0x3, 0x0)
setsockopt(r2, 0x107, 0xd, &(0x7f0000001000), 0x717)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000240)={'vcan0\x00', <r3=>0x0})
bind$packet(r2, &(0x7f0000000080)={0x11, 0x0, r3}, 0x1c)
sendmmsg$inet_sctp(r2, &(0x7f0000871fc8)=[{&(0x7f000086c000)=@in6={0xa, 0x0, 0x2}, 0x1c, &(0x7f0000d1e000), 0x0, &(0x7f0000dda000)}], 0x492492492492510, 0x0)

23:56:21 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xc9, 0x0, 0x0)

23:56:21 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0xcf}, {&(0x7f0000002bc0)=""/4096, 0x300f}], 0x2, &(0x7f0000003cc0)}}], 0xbc0, 0x0, 0x0)

23:56:21 executing program 5:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x149}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xbc0, 0x0, 0x0)

23:56:21 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x96, 0x0, 0x0)

23:56:21 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xfa, 0x0, 0x0)

23:56:21 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x1c, 0x0, 0x0)

23:56:21 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x7, 0x4, 0x18, 0x8, 0x0, 0xffffffffffffffff, 0x0, [0x9a02]}, 0x2c)

23:56:21 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xe2, 0x0, 0x0)

23:56:21 executing program 5:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0xdc}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xbc0, 0x0, 0x0)

23:56:21 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x66, 0x0, 0x0)

23:56:21 executing program 2:
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000000c0)=<r0=>0x0)
r1 = syz_open_procfs(r0, &(0x7f0000000080)='smaps_rollup\x00')
exit(0x0)
ioctl$VHOST_SET_VRING_BASE(r1, 0x4008af12, &(0x7f0000000040)={0x0, 0x7fffffff})
read(r1, &(0x7f0000000000)=""/56, 0x38)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
setsockopt$SO_VM_SOCKETS_CONNECT_TIMEOUT(r1, 0x28, 0x6, &(0x7f0000000140)={r2, r3/1000+30000}, 0x10)

23:56:21 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x1c3, 0x0, 0x0)

23:56:21 executing program 0:
socket$inet_sctp(0x2, 0x0, 0x84)
clone(0x820002102011ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000040), 0xffffffffffffffff)
semget(0x0, 0x7, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f00000000c0)={{{@in6=@remote, @in=@dev}}, {{@in6=@local}, 0x0, @in6=@loopback}}, &(0x7f00000001c0)=0xe8)
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000200))
unlink(&(0x7f0000000080)='./file0\x00')

23:56:21 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x6a, 0x0, &(0x7f0000000580), 0x1000000000000054)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000000)="ba6100ecf3af0f8aa100baf80c66b8f65b3e8466efbafc0cb000eeb800008ed00f5eae2bd90fc79f0100260f01cbdb4a0e2e0f525a00", 0x36}], 0x1, 0x0, &(0x7f00000000c0), 0x0)
ioctl$KVM_INTERRUPT(r2, 0x4004ae86, &(0x7f0000000180))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

23:56:21 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x10b, 0x0, 0x0)

23:56:21 executing program 5:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x21c}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xbc0, 0x0, 0x0)

23:56:22 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x17b, 0x0, 0x0)

[  607.469648] *** Guest State ***
[  607.477350] CR0: actual=0x0000000000000031, shadow=0x0000000060000011, gh_mask=fffffffffffffff7
23:56:22 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x133, 0x0, 0x0)

[  607.513630] CR4: actual=0x0000000000002060, shadow=0x0000000000000020, gh_mask=ffffffffffffe871
[  607.542201] CR3 = 0x0000000000002000
[  607.558162] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
23:56:22 executing program 0:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000280)="153f6234488dd25d766070")
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000001fd8)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x6b, 0xa, 0xff00}}, &(0x7f0000000180)="4550d4001f91eb2f57b73224433025039c3096b20c6b439348bf689c08608537d6223e63adc0624fbae2e109359dce6922324ccc13160b68cae6430697259dd52d1f73e16adc3592d02925dffae85e9cd2398c6c67c87fb5b12602f145b484be45912966e8b7e2f66069c56dd76c1dc112013c3a6b4de999cdcdc8855aee3437dcc87580cfbe546fbbfbc0eb56d8bbbea2904a7c73c2", 0x0, 0x60, &(0x7f0000000000)=""/195}, 0x16)

[  607.585608] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  607.610767] RSP = 0x0000000000000f80  RIP = 0x0000000000000000
[  607.629255] RFLAGS=0x00000002         DR7 = 0x0000000000000400
23:56:22 executing program 5:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2b}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xbc0, 0x0, 0x0)

[  607.637104] Sysenter RSP=0000000000000f80 CS:RIP=0050:0000000000002810
[  607.644177] CS:   sel=0x0030, attr=0x0409b, limit=0x000fffff, base=0x0000000000000000
[  607.652472] DS:   sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000
23:56:22 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x210, 0x0, 0x0)

[  607.677637] SS:   sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000
[  607.704030] ES:   sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000
23:56:22 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x17d, 0x0, 0x0)

[  607.721374] FS:   sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000
[  607.747596] GS:   sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000
[  607.788465] GDTR:                           limit=0x000007ff, base=0x0000000000001000
[  607.817273] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800
[  607.838372] IDTR:                           limit=0x000001ff, base=0x0000000000003800
[  607.853869] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  607.866645] EFER =     0x0000000000000001  PAT = 0x0007040600070406
[  607.874785] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  607.884100] Interruptibility = 00000000  ActivityState = 00000000
[  607.891598] *** Host State ***
[  607.895091] RIP = 0xffffffff81212522  RSP = 0xffff8801bfbaf350
[  607.901445] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  607.914421] FSBase=00007fcd253b4700 GSBase=ffff8801dac00000 TRBase=fffffe0000033000
[  607.926466] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  607.933529] CR0=0000000080050033 CR3=00000001bc494000 CR4=00000000001426f0
[  607.941712] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  607.950673] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  607.957003] *** Control State ***
[  607.960818] PinBased=0000003f CPUBased=b5986dfe SecondaryExec=000000ca
[  607.967825] EntryControls=0000d1ff ExitControls=002fefff
[  607.973656] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  607.981228] VMEntry: intr_info=80000000 errcode=00000000 ilen=00000000
[  607.988179] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  607.994812]         reason=80000021 qualification=0000000000000000
[  608.001229] IDTVectoring: info=00000000 errcode=00000000
[  608.006688] TSC Offset = 0xfffffeb875ace6e9
[  608.011091] EPT pointer = 0x00000001c57aa01e
[  608.067873] *** Guest State ***
[  608.071353] CR0: actual=0x0000000000000031, shadow=0x0000000060000011, gh_mask=fffffffffffffff7
[  608.071373] CR4: actual=0x0000000000002060, shadow=0x0000000000000020, gh_mask=ffffffffffffe871
[  608.089243] CR3 = 0x0000000000002000
[  608.092976] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  608.099571] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  608.106093] RSP = 0x0000000000000f80  RIP = 0x0000000000000000
[  608.112143] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  608.118169] Sysenter RSP=0000000000000f80 CS:RIP=0050:0000000000002810
[  608.124828] CS:   sel=0x0030, attr=0x0409b, limit=0x000fffff, base=0x0000000000000000
[  608.132868] DS:   sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000
[  608.140929] SS:   sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000
[  608.148969] ES:   sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000
[  608.157034] FS:   sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000
[  608.165155] GS:   sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000
[  608.173189] GDTR:                           limit=0x000007ff, base=0x0000000000001000
[  608.181327] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800
[  608.189372] IDTR:                           limit=0x000001ff, base=0x0000000000003800
[  608.197464] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  608.205447] EFER =     0x0000000000000001  PAT = 0x0007040600070406
[  608.211910] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  608.219424] Interruptibility = 00000000  ActivityState = 00000000
[  608.225662] *** Host State ***
[  608.228927] RIP = 0xffffffff81212522  RSP = 0xffff880192ea7350
[  608.234918] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  608.241383] FSBase=00007fcd25393700 GSBase=ffff8801dad00000 TRBase=fffffe0000033000
[  608.249234] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  608.255129] CR0=0000000080050033 CR3=00000001bc494000 CR4=00000000001426e0
[  608.262229] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  608.268939] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  608.274987] *** Control State ***
[  608.278517] PinBased=0000003f CPUBased=b5986dfe SecondaryExec=000000ca
[  608.285198] EntryControls=0000d1ff ExitControls=002fefff
[  608.290743] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  608.298060] VMEntry: intr_info=80000000 errcode=00000000 ilen=00000000
[  608.304756] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  608.311460]         reason=80000021 qualification=0000000000000000
23:56:22 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='smaps_rollup\x00')
exit(0xfffffffffffffffe)
read(r0, &(0x7f0000000000)=""/56, 0x38)

23:56:22 executing program 0:
socket$inet_sctp(0x2, 0x1, 0x84)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000640), 0xffffffffffffffff)
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000200))
mq_notify(0xffffffffffffffff, &(0x7f0000000340)={0x400000, 0x3, 0x2, @thr={&(0x7f0000000240), &(0x7f0000000280)}})

23:56:22 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xe6, 0x0, 0x0)

[  608.317848] IDTVectoring: info=00000000 errcode=00000000
[  608.323306] TSC Offset = 0xfffffeb875ace6e9
[  608.336275] EPT pointer = 0x00000001c57aa01e
23:56:23 executing program 5:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x176}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xbc0, 0x0, 0x0)

23:56:23 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x2c8, 0x0, 0x0)

23:56:23 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
setsockopt$XDP_UMEM_COMPLETION_RING(0xffffffffffffffff, 0x11b, 0x6, &(0x7f0000000140)=0x10000, 0x4)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x6a, 0x0, &(0x7f0000000580), 0x1000000000000054)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000000)="ba6100ecf3af0f8aa100baf80c66b8f65b3e8466efbafc0cb000eeb800008ed00f5eae2bd90fc79f0100260f01cbdb4a0e2e0f525a00", 0x36}], 0x1, 0x0, &(0x7f00000000c0), 0x0)
ioctl$KVM_INTERRUPT(r2, 0x4004ae86, &(0x7f0000000180))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

23:56:23 executing program 1:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = syz_open_procfs(0x0, &(0x7f00000003c0)='attr\x00')
getdents(r1, &(0x7f0000000040)=""/46, 0x2e)

23:56:23 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x20d, 0x0, 0x0)

23:56:23 executing program 1:
fcntl$getown(0xffffffffffffffff, 0x9)
fcntl$getown(0xffffffffffffff9c, 0x9)
ioctl$TIOCGPGRP(0xffffffffffffff9c, 0x540f, &(0x7f0000000000))
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000040), &(0x7f0000000080)=0xc)
r0 = getpid()
prctl$setptracer(0x59616d61, r0)

23:56:23 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x29f, 0x0, 0x0)

23:56:23 executing program 5:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x1d7}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xbc0, 0x0, 0x0)

23:56:23 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x95, 0x0, 0x0)

[  608.537058] *** Guest State ***
[  608.545119] CR0: actual=0x0000000000000031, shadow=0x0000000060000011, gh_mask=fffffffffffffff7
[  608.607883] CR4: actual=0x0000000000002060, shadow=0x0000000000000020, gh_mask=ffffffffffffe871
[  608.620834] CR3 = 0x0000000000002000
[  608.631530] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  608.656199] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  608.673145] RSP = 0x0000000000000f80  RIP = 0x0000000000000000
[  608.686996] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  608.697835] Sysenter RSP=0000000000000f80 CS:RIP=0050:0000000000002810
[  608.715965] CS:   sel=0x0030, attr=0x0409b, limit=0x000fffff, base=0x0000000000000000
[  608.726623] DS:   sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000
[  608.736752] SS:   sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000
[  608.768005] ES:   sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000
[  608.778629] FS:   sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000
[  608.786858] GS:   sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000
[  608.795889] GDTR:                           limit=0x000007ff, base=0x0000000000001000
[  608.806027] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800
[  608.814825] IDTR:                           limit=0x000001ff, base=0x0000000000003800
[  608.827985] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  608.837582] EFER =     0x0000000000000001  PAT = 0x0007040600070406
[  608.844247] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  608.852330] Interruptibility = 00000000  ActivityState = 00000000
[  608.858702] *** Host State ***
[  608.861908] RIP = 0xffffffff81212522  RSP = 0xffff88017714f350
[  608.867969] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  608.874399] FSBase=00007fa919071700 GSBase=ffff8801dac00000 TRBase=fffffe0000003000
[  608.882260] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  608.888213] CR0=0000000080050033 CR3=0000000196d4e000 CR4=00000000001426f0
[  608.895224] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  608.901964] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  608.908090] *** Control State ***
[  608.911535] PinBased=0000003f CPUBased=b5986dfe SecondaryExec=000000ca
[  608.918248] EntryControls=0000d1ff ExitControls=002fefff
[  608.923721] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  608.931510] VMEntry: intr_info=80000000 errcode=00000000 ilen=00000000
[  608.938271] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  608.944858]         reason=80000021 qualification=0000000000000000
[  608.951235] IDTVectoring: info=00000000 errcode=00000000
[  608.956698] TSC Offset = 0xfffffeb7e3dbf8be
[  608.961104] EPT pointer = 0x00000001968e801e
23:56:23 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000180)='net/ip6_tables_matches\x00')
socketpair$packet(0x11, 0x3, 0x300, &(0x7f0000000200))
exit(0x0)
ioctl$DRM_IOCTL_AGP_ALLOC(r0, 0xc0206434, &(0x7f0000000040)={0x2, <r1=>0x0, 0x0, 0x300000})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000080)={0x7f, r1})
read(r0, &(0x7f0000000000)=""/56, 0xffffffffffffffb9)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000001c0)={r0, &(0x7f00000000c0)="2fe6c15fb295073363dfbe7bba53a6be5ee29cd9a8a738760529ede57fe23c0542bd7315c771878a2f68340e67ea8557858b12850e1fef5907d54032473f6a3669ec97280287df1f60f2e9c298ef8b0c6e018dd2d4e77661cc767737"}, 0x10)
ioctl$BLKZEROOUT(r0, 0x127f, &(0x7f0000000140)={0x1, 0x100})

23:56:23 executing program 1:
pipe(&(0x7f0000000040))
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000240)='./cgroup\x00', 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f0000000080)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r1, &(0x7f0000000000), 0x12)

23:56:23 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x1c4, 0x0, 0x0)

23:56:23 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x217, 0x0, 0x0)

23:56:23 executing program 5:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x58}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xbc0, 0x0, 0x0)

23:56:23 executing program 0:
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000640), 0xffffffffffffffff)
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000200))
mq_notify(0xffffffffffffffff, &(0x7f0000000340)={0x400000, 0x0, 0x0, @thr={&(0x7f0000000240), &(0x7f0000000280)}})

23:56:23 executing program 0:
prctl$intptr(0x88008000000001d, 0xfffffffffffff5f9)
prctl$getreaper(0x40400000000001e, &(0x7f0000000040))

23:56:23 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x15c, 0x0, 0x0)

23:56:23 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x286, 0x0, 0x0)

[  609.377575] syz-executor1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=0
[  609.403577] syz-executor1 cpuset=syz1 mems_allowed=0
[  609.417012] CPU: 0 PID: 28927 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  609.425569] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  609.434935] Call Trace:
[  609.437538]  dump_stack+0x1d3/0x2c4
[  609.441186]  ? dump_stack_print_info.cold.2+0x52/0x52
[  609.446415]  dump_header+0x27b/0xf72
[  609.450156]  ? mark_held_locks+0x130/0x130
[  609.454424]  ? pagefault_out_of_memory+0x197/0x197
[  609.459375]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  609.464931]  ? check_preemption_disabled+0x48/0x200
[  609.469982]  ? graph_lock+0x170/0x170
[  609.473820]  ? graph_lock+0x170/0x170
[  609.477642]  ? print_usage_bug+0xc0/0xc0
[  609.481732]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  609.487280]  ? find_held_lock+0x36/0x1c0
[  609.491339]  ? mark_held_locks+0xc7/0x130
[  609.495482]  ? _raw_spin_unlock_irqrestore+0x82/0xd0
[  609.500575]  ? _raw_spin_unlock_irqrestore+0x82/0xd0
[  609.505684]  ? lockdep_hardirqs_on+0x421/0x5c0
[  609.510279]  ? trace_hardirqs_on+0xbd/0x310
[  609.514628]  ? kasan_check_read+0x11/0x20
[  609.518772]  ? ___ratelimit+0x36f/0x655
[  609.522740]  ? trace_hardirqs_off_caller+0x300/0x300
[  609.527834]  ? trace_hardirqs_on_caller+0x310/0x310
[  609.532852]  ? lock_downgrade+0x900/0x900
[  609.537000]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  609.542111]  ? ___ratelimit+0xaa/0x655
[  609.545995]  ? idr_get_free+0xea0/0xea0
[  609.549963]  ? kasan_check_write+0x14/0x20
[  609.554188]  ? do_raw_spin_lock+0xc1/0x200
[  609.558420]  oom_kill_process.cold.27+0x10/0x903
[  609.563172]  ? kasan_check_write+0x14/0x20
[  609.567407]  ? do_raw_spin_lock+0xc1/0x200
[  609.571653]  ? oom_evaluate_task+0x540/0x540
[  609.576058]  ? cgroup_procs_next+0x70/0x70
[  609.580307]  ? _raw_spin_unlock_irq+0x60/0x80
[  609.584796]  ? oom_badness+0xaa0/0xaa0
[  609.588700]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  609.593451]  ? mem_cgroup_iter_break+0x30/0x30
[  609.598039]  out_of_memory+0xa7f/0x1430
[  609.602014]  ? preempt_schedule+0x4d/0x60
[  609.606161]  ? oom_killer_disable+0x3a0/0x3a0
[  609.610665]  ? preempt_schedule+0x4d/0x60
[  609.614809]  ? ___preempt_schedule+0x16/0x18
[  609.619220]  mem_cgroup_out_of_memory+0x15e/0x210
[  609.624065]  ? memcg_memory_event+0x40/0x40
[  609.628399]  ? page_counter_memparse+0xb5/0x1d0
[  609.633116]  memory_max_write+0x1b4/0x3f0
[  609.637264]  ? lock_acquire+0x1ed/0x520
[  609.641229]  ? kernfs_fop_write+0x227/0x480
[  609.645566]  ? mem_cgroup_write+0x400/0x400
[  609.649922]  ? __might_fault+0x12b/0x1e0
[  609.653994]  ? graph_lock+0x170/0x170
[  609.657807]  ? mem_cgroup_write+0x400/0x400
[  609.662137]  cgroup_file_write+0x2f7/0x7e0
[  609.666370]  ? cgroup_migrate_add_task+0xcd0/0xcd0
[  609.671309]  ? __lock_is_held+0xb5/0x140
[  609.675383]  ? cgroup_migrate_add_task+0xcd0/0xcd0
[  609.680319]  kernfs_fop_write+0x2ba/0x480
[  609.684477]  __vfs_write+0x119/0x9f0
[  609.688200]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  609.693743]  ? kernfs_fop_open+0xf80/0xf80
[  609.697989]  ? kernel_read+0x120/0x120
[  609.701874]  ? __lock_is_held+0xb5/0x140
[  609.705934]  ? rcu_read_lock_sched_held+0x108/0x120
[  609.710944]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  609.716480]  ? __sb_start_write+0x1b2/0x370
[  609.720795]  vfs_write+0x1fc/0x560
[  609.724338]  ksys_write+0x101/0x260
[  609.727976]  ? __ia32_sys_read+0xb0/0xb0
[  609.732029]  ? trace_hardirqs_off_caller+0x300/0x300
[  609.737127]  __x64_sys_write+0x73/0xb0
[  609.741026]  do_syscall_64+0x1b9/0x820
[  609.744909]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  609.750276]  ? syscall_return_slowpath+0x5e0/0x5e0
[  609.755203]  ? trace_hardirqs_off+0x310/0x310
[  609.759694]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  609.764708]  ? recalc_sigpending_tsk+0x180/0x180
[  609.769472]  ? kasan_check_write+0x14/0x20
[  609.773709]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  609.778568]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  609.783750] RIP: 0033:0x457679
[  609.786934] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  609.805829] RSP: 002b:00007fcd253b3c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  609.813530] RAX: ffffffffffffffda RBX: 00007fcd253b46d4 RCX: 0000000000457679
[  609.820792] RDX: 0000000000000012 RSI: 0000000020000000 RDI: 0000000000000006
23:56:24 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xc6, 0x0, 0x0)

23:56:24 executing program 5:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x264}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xbc0, 0x0, 0x0)

23:56:24 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x25, 0x0, 0x0)

[  609.828051] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  609.835322] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  609.842579] R13: 00000000004d8bf8 R14: 00000000004c5543 R15: 0000000000000000
[  609.886720] Task in /syz1 killed as a result of limit of /syz1
[  609.918336] memory: usage 24008kB, limit 0kB, failcnt 0
[  609.930027] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  609.937610] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  609.947217] Memory cgroup stats for /syz1: cache:112KB rss:15276KB rss_huge:14336KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:15220KB inactive_file:4KB active_file:20KB unevictable:0KB
[  609.972966] Memory cgroup out of memory: Kill process 24019 (syz-executor1) score 8969000 or sacrifice child
[  610.010034] Killed process 24019 (syz-executor1) total-vm:70604kB, anon-rss:2204kB, file-rss:33548kB, shmem-rss:0kB
[  610.056003] syz-executor1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=0
[  610.073572] syz-executor1 cpuset=syz1 mems_allowed=0
[  610.084542] CPU: 1 PID: 28916 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  610.093091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  610.102450] Call Trace:
[  610.105207]  dump_stack+0x1d3/0x2c4
[  610.108831]  ? dump_stack_print_info.cold.2+0x52/0x52
[  610.114037]  dump_header+0x27b/0xf72
[  610.117773]  ? mark_held_locks+0x130/0x130
[  610.122002]  ? pagefault_out_of_memory+0x197/0x197
[  610.126942]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  610.132474]  ? check_preemption_disabled+0x48/0x200
[  610.137487]  ? graph_lock+0x170/0x170
[  610.141285]  ? graph_lock+0x170/0x170
[  610.145099]  ? print_usage_bug+0xc0/0xc0
[  610.149161]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  610.154692]  ? find_held_lock+0x36/0x1c0
[  610.158767]  ? mark_held_locks+0xc7/0x130
[  610.162923]  ? _raw_spin_unlock_irqrestore+0x82/0xd0
[  610.168015]  ? _raw_spin_unlock_irqrestore+0x82/0xd0
[  610.173110]  ? lockdep_hardirqs_on+0x421/0x5c0
[  610.177685]  ? trace_hardirqs_on+0xbd/0x310
[  610.181994]  ? kasan_check_read+0x11/0x20
[  610.186135]  ? ___ratelimit+0x36f/0x655
[  610.190110]  ? trace_hardirqs_off_caller+0x300/0x300
[  610.195209]  ? trace_hardirqs_on_caller+0x310/0x310
[  610.200235]  ? lock_downgrade+0x900/0x900
[  610.204380]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  610.209478]  ? ___ratelimit+0xaa/0x655
[  610.213362]  ? idr_get_free+0xea0/0xea0
[  610.217345]  ? kasan_check_write+0x14/0x20
[  610.221590]  ? do_raw_spin_lock+0xc1/0x200
[  610.225825]  oom_kill_process.cold.27+0x10/0x903
[  610.230577]  ? kasan_check_write+0x14/0x20
[  610.234811]  ? do_raw_spin_lock+0xc1/0x200
[  610.239043]  ? oom_evaluate_task+0x540/0x540
[  610.243448]  ? cgroup_procs_next+0x70/0x70
[  610.247676]  ? _raw_spin_unlock_irq+0x60/0x80
[  610.252295]  ? oom_badness+0xaa0/0xaa0
[  610.256182]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  610.260931]  ? mem_cgroup_iter_break+0x30/0x30
[  610.265512]  ? mark_held_locks+0xc7/0x130
[  610.269652]  out_of_memory+0xa7f/0x1430
[  610.273631]  ? lockdep_hardirqs_on+0x421/0x5c0
[  610.278222]  ? kasan_check_read+0x11/0x20
[  610.282362]  ? oom_killer_disable+0x3a0/0x3a0
[  610.286853]  ? kasan_check_write+0x14/0x20
[  610.291089]  ? do_raw_spin_lock+0xc1/0x200
[  610.295338]  mem_cgroup_out_of_memory+0x15e/0x210
[  610.300404]  ? memcg_memory_event+0x40/0x40
[  610.304743]  ? mem_cgroup_try_charge+0x5ea/0xe10
[  610.309506]  ? page_counter_try_charge+0x1c1/0x220
[  610.314433]  try_charge+0xb1a/0x1690
[  610.318149]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  610.324196]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  610.329042]  ? lock_downgrade+0x900/0x900
[  610.333210]  ? check_preemption_disabled+0x48/0x200
[  610.338236]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  610.343158]  ? kasan_check_read+0x11/0x20
[  610.347295]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  610.352566]  ? rcu_softirq_qs+0x20/0x20
[  610.356547]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  610.361397]  ? mod_memcg_state+0x230/0x230
[  610.365642]  ? __lock_is_held+0xb5/0x140
[  610.369705]  mem_cgroup_try_charge+0x5ea/0xe10
[  610.374279]  ? __anon_vma_prepare+0x325/0x6c0
[  610.378769]  ? mem_cgroup_protected+0xa60/0xa60
[  610.383431]  ? up_write+0x7b/0x220
[  610.386961]  ? down_write_nested+0x130/0x130
[  610.391376]  ? __anon_vma_prepare+0x353/0x6c0
[  610.395864]  ? pmd_val+0x88/0x100
[  610.399312]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  610.404846]  mem_cgroup_try_charge_delay+0x1d/0xa0
[  610.409783]  __handle_mm_fault+0x273a/0x53e0
[  610.414205]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  610.419052]  ? graph_lock+0x170/0x170
[  610.422869]  ? print_usage_bug+0xc0/0xc0
[  610.426937]  ? lock_downgrade+0x900/0x900
[  610.431099]  ? graph_lock+0x170/0x170
[  610.434922]  ? graph_lock+0x170/0x170
[  610.438725]  ? handle_mm_fault+0x42a/0xc70
[  610.442948]  ? lock_downgrade+0x900/0x900
[  610.447098]  ? check_preemption_disabled+0x48/0x200
[  610.452110]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  610.457035]  ? kasan_check_read+0x11/0x20
[  610.461176]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  610.466441]  ? rcu_softirq_qs+0x20/0x20
[  610.470406]  ? trace_hardirqs_off_caller+0x300/0x300
[  610.475518]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  610.481060]  ? check_preemption_disabled+0x48/0x200
[  610.486083]  handle_mm_fault+0x54f/0xc70
[  610.490145]  ? __handle_mm_fault+0x53e0/0x53e0
[  610.494718]  ? find_vma+0x34/0x190
[  610.498253]  __do_page_fault+0x673/0xec0
[  610.502311]  ? mm_fault_error+0x380/0x380
[  610.506458]  ? trace_hardirqs_off+0xb8/0x310
[  610.510873]  ? trace_hardirqs_on_caller+0x310/0x310
[  610.515880]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  610.521234]  ? trace_hardirqs_on_caller+0x310/0x310
[  610.526244]  do_page_fault+0xed/0x7d1
[  610.530060]  ? vmalloc_sync_all+0x30/0x30
[  610.534234]  ? error_entry+0x70/0xd0
[  610.537951]  ? trace_hardirqs_off_caller+0xbb/0x300
[  610.542974]  ? trace_hardirqs_on_caller+0xc0/0x310
[  610.547894]  ? syscall_return_slowpath+0x5e0/0x5e0
[  610.552813]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  610.557646]  ? trace_hardirqs_off+0x310/0x310
[  610.562131]  ? __bpf_trace_preemptirq_template+0x30/0x30
[  610.567575]  ? prepare_exit_to_usermode+0x291/0x3b0
[  610.572599]  ? page_fault+0x8/0x30
[  610.576140]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  610.580992]  ? page_fault+0x8/0x30
[  610.584531]  page_fault+0x1e/0x30
[  610.587987] RIP: 0033:0x40edaf
[  610.591180] Code: 0f 84 c8 02 00 00 48 83 bd 78 ff ff ff 00 0f 84 f9 04 00 00 48 8b 95 68 ff ff ff 44 89 95 38 ff ff ff 4c 8d ac 10 00 f7 ff ff <49> 89 85 90 06 00 00 49 8d 85 10 03 00 00 49 89 95 98 06 00 00 41
[  610.610081] RSP: 002b:00007fff9d17d710 EFLAGS: 00010206
[  610.615450] RAX: 00007fcd25373000 RBX: 0000000000020000 RCX: 00000000004576ca
[  610.622723] RDX: 0000000000021000 RSI: 0000000000021000 RDI: 0000000000000000
[  610.629981] RBP: 00007fff9d17d7f0 R08: ffffffffffffffff R09: 0000000000000000
[  610.637238] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fff9d17d8e0
[  610.644493] R13: 00007fcd25393700 R14: 0000000000000001 R15: 0000000000000001
23:56:25 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='smaps_rollup\x00')
mincore(&(0x7f0000ff9000/0x4000)=nil, 0x4000, &(0x7f0000000140)=""/192)
exit(0x0)
read(r0, &(0x7f0000000040)=""/56, 0x26)

[  610.654460] Task in /syz1 killed as a result of limit of /syz1
[  610.660688] memory: usage 21492kB, limit 0kB, failcnt 8
[  610.666061] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  610.672903] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  610.679194] Memory cgroup stats for /syz1: cache:112KB rss:13164KB rss_huge:12288KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:13040KB inactive_file:8KB active_file:16KB unevictable:0KB
[  610.701069] Memory cgroup out of memory: Kill process 23789 (syz-executor1) score 8967000 or sacrifice child
[  610.712968] Killed process 23789 (syz-executor1) total-vm:70608kB, anon-rss:2192kB, file-rss:33552kB, shmem-rss:0kB
[  610.748566] syz-executor1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=0
[  610.759541] syz-executor1 cpuset=syz1 mems_allowed=0
[  610.764730] CPU: 0 PID: 28927 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  610.773235] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  610.782600] Call Trace:
[  610.785186]  dump_stack+0x1d3/0x2c4
[  610.788810]  ? dump_stack_print_info.cold.2+0x52/0x52
[  610.794020]  dump_header+0x27b/0xf72
[  610.797791]  ? mark_held_locks+0x130/0x130
[  610.802033]  ? pagefault_out_of_memory+0x197/0x197
[  610.806989]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  610.812540]  ? check_preemption_disabled+0x48/0x200
[  610.817562]  ? graph_lock+0x170/0x170
[  610.821383]  ? graph_lock+0x170/0x170
[  610.825191]  ? print_usage_bug+0xc0/0xc0
[  610.829259]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  610.834791]  ? find_held_lock+0x36/0x1c0
[  610.838867]  ? mark_held_locks+0xc7/0x130
[  610.843019]  ? _raw_spin_unlock_irqrestore+0x82/0xd0
[  610.848139]  ? _raw_spin_unlock_irqrestore+0x82/0xd0
[  610.853249]  ? lockdep_hardirqs_on+0x421/0x5c0
[  610.857835]  ? trace_hardirqs_on+0xbd/0x310
[  610.862167]  ? kasan_check_read+0x11/0x20
[  610.866324]  ? ___ratelimit+0x36f/0x655
[  610.870308]  ? trace_hardirqs_off_caller+0x300/0x300
[  610.875438]  ? trace_hardirqs_on_caller+0x310/0x310
[  610.880464]  ? lock_downgrade+0x900/0x900
[  610.884627]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  610.889746]  ? ___ratelimit+0xaa/0x655
[  610.893657]  ? idr_get_free+0xea0/0xea0
[  610.897638]  ? kasan_check_write+0x14/0x20
[  610.901864]  ? do_raw_spin_lock+0xc1/0x200
[  610.906136]  oom_kill_process.cold.27+0x10/0x903
[  610.910904]  ? kasan_check_write+0x14/0x20
[  610.915144]  ? do_raw_spin_lock+0xc1/0x200
[  610.919394]  ? oom_evaluate_task+0x540/0x540
[  610.923794]  ? cgroup_procs_next+0x70/0x70
[  610.928045]  ? _raw_spin_unlock_irq+0x60/0x80
[  610.932538]  ? oom_badness+0xaa0/0xaa0
[  610.936422]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  610.941178]  ? mem_cgroup_iter_break+0x30/0x30
[  610.945769]  ? mark_held_locks+0xc7/0x130
[  610.949923]  out_of_memory+0xa7f/0x1430
[  610.953891]  ? lockdep_hardirqs_on+0x421/0x5c0
[  610.958491]  ? kasan_check_read+0x11/0x20
[  610.962642]  ? oom_killer_disable+0x3a0/0x3a0
[  610.967132]  ? do_raw_spin_lock+0xc1/0x200
[  610.971387]  mem_cgroup_out_of_memory+0x15e/0x210
[  610.976230]  ? memcg_memory_event+0x40/0x40
[  610.980551]  ? page_counter_memparse+0xb5/0x1d0
[  610.985255]  memory_max_write+0x1b4/0x3f0
[  610.989401]  ? lock_acquire+0x1ed/0x520
[  610.993381]  ? kernfs_fop_write+0x227/0x480
[  610.997704]  ? mem_cgroup_write+0x400/0x400
[  611.002032]  ? __might_fault+0x12b/0x1e0
[  611.006100]  ? graph_lock+0x170/0x170
[  611.009899]  ? mem_cgroup_write+0x400/0x400
[  611.014215]  cgroup_file_write+0x2f7/0x7e0
[  611.018465]  ? cgroup_migrate_add_task+0xcd0/0xcd0
[  611.023402]  ? __lock_is_held+0xb5/0x140
[  611.027484]  ? cgroup_migrate_add_task+0xcd0/0xcd0
[  611.032425]  kernfs_fop_write+0x2ba/0x480
[  611.036571]  __vfs_write+0x119/0x9f0
[  611.040294]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  611.045825]  ? kernfs_fop_open+0xf80/0xf80
[  611.050056]  ? kernel_read+0x120/0x120
[  611.053954]  ? __lock_is_held+0xb5/0x140
[  611.058030]  ? rcu_read_lock_sched_held+0x108/0x120
[  611.063083]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  611.068626]  ? __sb_start_write+0x1b2/0x370
[  611.072944]  vfs_write+0x1fc/0x560
[  611.076480]  ksys_write+0x101/0x260
[  611.080120]  ? __ia32_sys_read+0xb0/0xb0
[  611.084176]  ? trace_hardirqs_off_caller+0x300/0x300
[  611.089277]  __x64_sys_write+0x73/0xb0
[  611.093160]  do_syscall_64+0x1b9/0x820
[  611.097044]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  611.102400]  ? syscall_return_slowpath+0x5e0/0x5e0
[  611.107326]  ? trace_hardirqs_off+0x310/0x310
[  611.111821]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  611.116949]  ? recalc_sigpending_tsk+0x180/0x180
[  611.121697]  ? kasan_check_write+0x14/0x20
[  611.125928]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  611.130767]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  611.135970] RIP: 0033:0x457679
[  611.139168] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  611.158093] RSP: 002b:00007fcd253b3c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  611.165812] RAX: ffffffffffffffda RBX: 00007fcd253b46d4 RCX: 0000000000457679
[  611.173080] RDX: 0000000000000012 RSI: 0000000020000000 RDI: 0000000000000006
[  611.180351] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  611.187625] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  611.194903] R13: 00000000004d8bf8 R14: 00000000004c5543 R15: 0000000000000000
[  611.204841] Task in /syz1 killed as a result of limit of /syz1
[  611.211065] memory: usage 19164kB, limit 0kB, failcnt 15
[  611.216557] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  611.223363] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  611.229665] Memory cgroup stats for /syz1: cache:112KB rss:10936KB rss_huge:10240KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:10876KB inactive_file:8KB active_file:12KB unevictable:0KB
[  611.250778] Memory cgroup out of memory: Kill process 23947 (syz-executor1) score 8967000 or sacrifice child
[  611.260854] Killed process 23947 (syz-executor1) total-vm:70604kB, anon-rss:2196kB, file-rss:33548kB, shmem-rss:0kB
[  611.273407] oom_reaper: reaped process 23947 (syz-executor1), now anon-rss:0kB, file-rss:32780kB, shmem-rss:0kB
[  611.284321] syz-executor1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=0
[  611.295277] syz-executor1 cpuset=syz1 mems_allowed=0
[  611.300589] CPU: 0 PID: 28927 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  611.309111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  611.318473] Call Trace:
[  611.321092]  dump_stack+0x1d3/0x2c4
[  611.324749]  ? dump_stack_print_info.cold.2+0x52/0x52
[  611.329964]  dump_header+0x27b/0xf72
[  611.333702]  ? mark_held_locks+0x130/0x130
[  611.337960]  ? pagefault_out_of_memory+0x197/0x197
[  611.342915]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  611.348473]  ? check_preemption_disabled+0x48/0x200
[  611.353516]  ? graph_lock+0x170/0x170
[  611.357353]  ? graph_lock+0x170/0x170
[  611.361181]  ? print_usage_bug+0xc0/0xc0
[  611.365276]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  611.370837]  ? find_held_lock+0x36/0x1c0
[  611.374921]  ? mark_held_locks+0xc7/0x130
[  611.379102]  ? _raw_spin_unlock_irqrestore+0x82/0xd0
[  611.384220]  ? _raw_spin_unlock_irqrestore+0x82/0xd0
[  611.389340]  ? lockdep_hardirqs_on+0x421/0x5c0
[  611.393941]  ? trace_hardirqs_on+0xbd/0x310
[  611.398278]  ? kasan_check_read+0x11/0x20
[  611.402867]  ? ___ratelimit+0x36f/0x655
[  611.406862]  ? trace_hardirqs_off_caller+0x300/0x300
[  611.411990]  ? trace_hardirqs_on_caller+0x310/0x310
[  611.417029]  ? lock_downgrade+0x900/0x900
[  611.421198]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  611.426319]  ? ___ratelimit+0xaa/0x655
[  611.430227]  ? idr_get_free+0xea0/0xea0
[  611.434219]  ? kasan_check_write+0x14/0x20
[  611.438464]  ? do_raw_spin_lock+0xc1/0x200
[  611.442722]  oom_kill_process.cold.27+0x10/0x903
[  611.447497]  ? kasan_check_write+0x14/0x20
[  611.451755]  ? do_raw_spin_lock+0xc1/0x200
[  611.456022]  ? oom_evaluate_task+0x540/0x540
[  611.460453]  ? cgroup_procs_next+0x70/0x70
[  611.464768]  ? _raw_spin_unlock_irq+0x60/0x80
[  611.469274]  ? oom_badness+0xaa0/0xaa0
[  611.473181]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  611.477956]  ? mem_cgroup_iter_break+0x30/0x30
[  611.482566]  ? mark_held_locks+0xc7/0x130
[  611.486732]  out_of_memory+0xa7f/0x1430
[  611.490720]  ? lockdep_hardirqs_on+0x421/0x5c0
[  611.495317]  ? kasan_check_read+0x11/0x20
[  611.499486]  ? oom_killer_disable+0x3a0/0x3a0
[  611.503992]  ? kasan_check_write+0x14/0x20
[  611.508240]  ? do_raw_spin_lock+0xc1/0x200
[  611.512504]  mem_cgroup_out_of_memory+0x15e/0x210
[  611.517364]  ? memcg_memory_event+0x40/0x40
[  611.521701]  ? page_counter_memparse+0xb5/0x1d0
[  611.526398]  memory_max_write+0x1b4/0x3f0
[  611.530558]  ? lock_acquire+0x1ed/0x520
[  611.534545]  ? kernfs_fop_write+0x227/0x480
[  611.538891]  ? mem_cgroup_write+0x400/0x400
[  611.543236]  ? __might_fault+0x12b/0x1e0
[  611.547315]  ? graph_lock+0x170/0x170
[  611.551147]  ? mem_cgroup_write+0x400/0x400
[  611.555488]  cgroup_file_write+0x2f7/0x7e0
[  611.559744]  ? cgroup_migrate_add_task+0xcd0/0xcd0
[  611.564698]  ? __lock_is_held+0xb5/0x140
[  611.568801]  ? cgroup_migrate_add_task+0xcd0/0xcd0
[  611.573767]  kernfs_fop_write+0x2ba/0x480
[  611.577951]  __vfs_write+0x119/0x9f0
[  611.581682]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  611.587241]  ? kernfs_fop_open+0xf80/0xf80
[  611.591495]  ? kernel_read+0x120/0x120
[  611.595409]  ? __lock_is_held+0xb5/0x140
[  611.599498]  ? rcu_read_lock_sched_held+0x108/0x120
[  611.604529]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  611.610097]  ? __sb_start_write+0x1b2/0x370
[  611.614437]  vfs_write+0x1fc/0x560
[  611.618004]  ksys_write+0x101/0x260
[  611.621647]  ? __ia32_sys_read+0xb0/0xb0
[  611.625742]  ? trace_hardirqs_off_caller+0x300/0x300
[  611.630886]  __x64_sys_write+0x73/0xb0
[  611.634811]  do_syscall_64+0x1b9/0x820
[  611.638710]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  611.644102]  ? syscall_return_slowpath+0x5e0/0x5e0
[  611.649052]  ? trace_hardirqs_off+0x310/0x310
[  611.653574]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  611.658604]  ? recalc_sigpending_tsk+0x180/0x180
[  611.663376]  ? kasan_check_write+0x14/0x20
[  611.667634]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  611.672533]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  611.677730] RIP: 0033:0x457679
[  611.680932] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  611.699839] RSP: 002b:00007fcd253b3c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  611.707562] RAX: ffffffffffffffda RBX: 00007fcd253b46d4 RCX: 0000000000457679
[  611.714834] RDX: 0000000000000012 RSI: 0000000020000000 RDI: 0000000000000006
[  611.722117] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  611.729395] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  611.736670] R13: 00000000004d8bf8 R14: 00000000004c5543 R15: 0000000000000000
[  611.747262] Task in /syz1 killed as a result of limit of /syz1
[  611.760376] memory: usage 16944kB, limit 0kB, failcnt 15
[  611.776120] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  611.783011] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  611.789241] Memory cgroup stats for /syz1: cache:112KB rss:8756KB rss_huge:8192KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:8692KB inactive_file:4KB active_file:16KB unevictable:0KB
[  611.810109] Memory cgroup out of memory: Kill process 28484 (syz-executor1) score 8967000 or sacrifice child
[  611.820199] Killed process 28484 (syz-executor1) total-vm:70472kB, anon-rss:2196kB, file-rss:33548kB, shmem-rss:0kB
[  611.832519] oom_reaper: reaped process 28484 (syz-executor1), now anon-rss:0kB, file-rss:32780kB, shmem-rss:0kB
[  611.850976] syz-executor1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=0
[  611.862138] syz-executor1 cpuset=syz1 mems_allowed=0
[  611.867320] CPU: 0 PID: 28916 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  611.875817] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  611.885158] Call Trace:
[  611.887738]  dump_stack+0x1d3/0x2c4
[  611.891359]  ? dump_stack_print_info.cold.2+0x52/0x52
[  611.896546]  dump_header+0x27b/0xf72
[  611.900273]  ? mark_held_locks+0x130/0x130
[  611.904508]  ? pagefault_out_of_memory+0x197/0x197
[  611.909460]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  611.914993]  ? check_preemption_disabled+0x48/0x200
[  611.920005]  ? graph_lock+0x170/0x170
[  611.923835]  ? graph_lock+0x170/0x170
[  611.927644]  ? print_usage_bug+0xc0/0xc0
[  611.931756]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  611.937302]  ? find_held_lock+0x36/0x1c0
[  611.941355]  ? mark_held_locks+0xc7/0x130
[  611.945494]  ? _raw_spin_unlock_irqrestore+0x82/0xd0
[  611.950589]  ? _raw_spin_unlock_irqrestore+0x82/0xd0
[  611.955696]  ? lockdep_hardirqs_on+0x421/0x5c0
[  611.960273]  ? trace_hardirqs_on+0xbd/0x310
[  611.964586]  ? kasan_check_read+0x11/0x20
[  611.968731]  ? ___ratelimit+0x36f/0x655
[  611.972712]  ? trace_hardirqs_off_caller+0x300/0x300
[  611.977827]  ? trace_hardirqs_on_caller+0x310/0x310
[  611.982854]  ? lock_downgrade+0x900/0x900
[  611.987000]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  611.992108]  ? ___ratelimit+0xaa/0x655
[  611.995990]  ? idr_get_free+0xea0/0xea0
[  611.999962]  ? kasan_check_write+0x14/0x20
[  612.004188]  ? do_raw_spin_lock+0xc1/0x200
[  612.008418]  oom_kill_process.cold.27+0x10/0x903
[  612.013169]  ? kasan_check_write+0x14/0x20
[  612.017401]  ? do_raw_spin_lock+0xc1/0x200
[  612.021655]  ? oom_evaluate_task+0x540/0x540
[  612.026063]  ? cgroup_procs_next+0x70/0x70
[  612.030337]  ? _raw_spin_unlock_irq+0x60/0x80
[  612.034826]  ? oom_badness+0xaa0/0xaa0
[  612.038709]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  612.043455]  ? mem_cgroup_iter_break+0x30/0x30
[  612.048035]  ? mark_held_locks+0xc7/0x130
[  612.052174]  out_of_memory+0xa7f/0x1430
[  612.056137]  ? lockdep_hardirqs_on+0x421/0x5c0
[  612.060708]  ? kasan_check_read+0x11/0x20
[  612.064847]  ? oom_killer_disable+0x3a0/0x3a0
[  612.069331]  ? kasan_check_write+0x14/0x20
[  612.073558]  ? do_raw_spin_lock+0xc1/0x200
[  612.077804]  mem_cgroup_out_of_memory+0x15e/0x210
[  612.082655]  ? memcg_memory_event+0x40/0x40
[  612.086967]  ? mem_cgroup_try_charge+0x5ea/0xe10
[  612.091717]  ? page_counter_try_charge+0x1c1/0x220
[  612.096641]  try_charge+0xb1a/0x1690
[  612.100354]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  612.106400]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  612.111233]  ? lock_downgrade+0x900/0x900
[  612.115377]  ? check_preemption_disabled+0x48/0x200
[  612.120387]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  612.125313]  ? kasan_check_read+0x11/0x20
[  612.129458]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  612.134742]  ? rcu_softirq_qs+0x20/0x20
[  612.138715]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  612.143552]  ? mod_memcg_state+0x230/0x230
[  612.147780]  ? __lock_is_held+0xb5/0x140
[  612.151840]  mem_cgroup_try_charge+0x5ea/0xe10
[  612.156420]  ? __anon_vma_prepare+0x325/0x6c0
[  612.160923]  ? mem_cgroup_protected+0xa60/0xa60
[  612.165605]  ? up_write+0x7b/0x220
[  612.169143]  ? down_write_nested+0x130/0x130
[  612.173550]  ? __anon_vma_prepare+0x353/0x6c0
[  612.178067]  ? pmd_val+0x88/0x100
[  612.181548]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  612.187096]  mem_cgroup_try_charge_delay+0x1d/0xa0
[  612.192020]  __handle_mm_fault+0x273a/0x53e0
[  612.196424]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  612.201260]  ? graph_lock+0x170/0x170
[  612.205054]  ? print_usage_bug+0xc0/0xc0
[  612.209120]  ? lock_downgrade+0x900/0x900
[  612.213257]  ? graph_lock+0x170/0x170
[  612.217050]  ? graph_lock+0x170/0x170
[  612.220859]  ? handle_mm_fault+0x42a/0xc70
[  612.225098]  ? lock_downgrade+0x900/0x900
[  612.229241]  ? check_preemption_disabled+0x48/0x200
[  612.234264]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  612.239197]  ? kasan_check_read+0x11/0x20
[  612.243337]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  612.248605]  ? rcu_softirq_qs+0x20/0x20
[  612.252588]  ? trace_hardirqs_off_caller+0x300/0x300
[  612.257684]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  612.263219]  ? check_preemption_disabled+0x48/0x200
[  612.268230]  handle_mm_fault+0x54f/0xc70
[  612.272291]  ? __handle_mm_fault+0x53e0/0x53e0
[  612.276881]  ? find_vma+0x34/0x190
[  612.280416]  __do_page_fault+0x673/0xec0
[  612.284490]  ? mm_fault_error+0x380/0x380
[  612.288674]  ? trace_hardirqs_off+0xb8/0x310
[  612.293084]  ? trace_hardirqs_on_caller+0x310/0x310
[  612.298122]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  612.303494]  ? trace_hardirqs_on_caller+0x310/0x310
[  612.308511]  do_page_fault+0xed/0x7d1
[  612.312304]  ? vmalloc_sync_all+0x30/0x30
[  612.316440]  ? error_entry+0x70/0xd0
[  612.320149]  ? trace_hardirqs_off_caller+0xbb/0x300
[  612.325165]  ? trace_hardirqs_on_caller+0xc0/0x310
[  612.330118]  ? syscall_return_slowpath+0x5e0/0x5e0
[  612.335565]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  612.340420]  ? trace_hardirqs_off+0x310/0x310
[  612.344930]  ? __bpf_trace_preemptirq_template+0x30/0x30
[  612.350381]  ? prepare_exit_to_usermode+0x291/0x3b0
[  612.355387]  ? page_fault+0x8/0x30
[  612.358918]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  612.363750]  ? page_fault+0x8/0x30
[  612.367279]  page_fault+0x1e/0x30
[  612.370737] RIP: 0033:0x40edaf
[  612.373921] Code: 0f 84 c8 02 00 00 48 83 bd 78 ff ff ff 00 0f 84 f9 04 00 00 48 8b 95 68 ff ff ff 44 89 95 38 ff ff ff 4c 8d ac 10 00 f7 ff ff <49> 89 85 90 06 00 00 49 8d 85 10 03 00 00 49 89 95 98 06 00 00 41
[  612.392814] RSP: 002b:00007fff9d17d710 EFLAGS: 00010206
[  612.398167] RAX: 00007fcd25373000 RBX: 0000000000020000 RCX: 00000000004576ca
[  612.405453] RDX: 0000000000021000 RSI: 0000000000021000 RDI: 0000000000000000
[  612.419938] RBP: 00007fff9d17d7f0 R08: ffffffffffffffff R09: 0000000000000000
[  612.427202] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fff9d17d8e0
[  612.434462] R13: 00007fcd25393700 R14: 0000000000000001 R15: 0000000000000001
[  612.443218] Task in /syz1 killed as a result of limit of /syz1
[  612.449401] memory: usage 14416kB, limit 0kB, failcnt 31
[  612.454838] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  612.461635] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  612.467811] Memory cgroup stats for /syz1: cache:112KB rss:6576KB rss_huge:6144KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:6520KB inactive_file:4KB active_file:4KB unevictable:0KB
[  612.488512] Memory cgroup out of memory: Kill process 28655 (syz-executor1) score 8967000 or sacrifice child
[  612.498977] Killed process 28655 (syz-executor1) total-vm:70340kB, anon-rss:2188kB, file-rss:33556kB, shmem-rss:0kB
[  612.511767] oom_reaper: reaped process 28655 (syz-executor1), now anon-rss:0kB, file-rss:32788kB, shmem-rss:0kB
[  612.524674] syz-executor1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=-1000
[  612.539385] syz-executor1 cpuset=syz1 mems_allowed=0
[  612.544556] CPU: 1 PID: 23483 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  612.553063] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  612.562416] Call Trace:
[  612.564994]  dump_stack+0x1d3/0x2c4
[  612.568614]  ? dump_stack_print_info.cold.2+0x52/0x52
[  612.573837]  ? mark_held_locks+0x130/0x130
[  612.578061]  dump_header+0x27b/0xf72
[  612.581779]  ? pagefault_out_of_memory+0x197/0x197
[  612.586712]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  612.592256]  ? check_preemption_disabled+0x48/0x200
[  612.597276]  ? graph_lock+0x170/0x170
[  612.601070]  ? graph_lock+0x170/0x170
[  612.604898]  ? print_usage_bug+0xc0/0xc0
[  612.608950]  ? find_held_lock+0x36/0x1c0
[  612.613002]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  612.618532]  ? find_held_lock+0x36/0x1c0
[  612.622584]  ? mark_held_locks+0xc7/0x130
[  612.626727]  ? _raw_spin_unlock_irqrestore+0x82/0xd0
[  612.631816]  ? _raw_spin_unlock_irqrestore+0x82/0xd0
[  612.636924]  ? lockdep_hardirqs_on+0x421/0x5c0
[  612.641497]  ? trace_hardirqs_on+0xbd/0x310
[  612.645807]  ? kasan_check_read+0x11/0x20
[  612.649947]  ? ___ratelimit+0x36f/0x655
[  612.653908]  ? trace_hardirqs_off_caller+0x300/0x300
[  612.658997]  ? trace_hardirqs_on_caller+0x310/0x310
[  612.663999]  ? lock_downgrade+0x900/0x900
[  612.668142]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  612.673237]  ? ___ratelimit+0xaa/0x655
[  612.677133]  ? idr_get_free+0xea0/0xea0
[  612.681107]  ? kasan_check_write+0x14/0x20
[  612.685330]  ? do_raw_spin_lock+0xc1/0x200
[  612.689574]  oom_kill_process.cold.27+0x10/0x903
[  612.694329]  ? kasan_check_write+0x14/0x20
[  612.698554]  ? do_raw_spin_lock+0xc1/0x200
[  612.702780]  ? oom_evaluate_task+0x540/0x540
[  612.707269]  ? cgroup_procs_next+0x70/0x70
[  612.711496]  ? _raw_spin_unlock_irq+0x60/0x80
[  612.716251]  ? oom_badness+0xaa0/0xaa0
[  612.720134]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  612.724881]  ? mem_cgroup_iter_break+0x30/0x30
[  612.729459]  ? mark_held_locks+0xc7/0x130
[  612.733603]  out_of_memory+0xa7f/0x1430
[  612.737565]  ? lockdep_hardirqs_on+0x421/0x5c0
[  612.742142]  ? kasan_check_read+0x11/0x20
[  612.746281]  ? oom_killer_disable+0x3a0/0x3a0
[  612.750766]  ? kasan_check_write+0x14/0x20
[  612.754986]  ? do_raw_spin_lock+0xc1/0x200
[  612.759218]  mem_cgroup_out_of_memory+0x15e/0x210
[  612.764049]  ? memcg_memory_event+0x40/0x40
[  612.768361]  ? mem_cgroup_try_charge+0x5ea/0xe10
[  612.773131]  ? page_counter_try_charge+0x1c1/0x220
[  612.778050]  try_charge+0xb1a/0x1690
[  612.781764]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  612.787811]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  612.792642]  ? lock_downgrade+0x900/0x900
[  612.796774]  ? check_preemption_disabled+0x48/0x200
[  612.801782]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  612.806700]  ? kasan_check_read+0x11/0x20
[  612.810844]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  612.816107]  ? rcu_softirq_qs+0x20/0x20
[  612.820085]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  612.824918]  ? mod_memcg_state+0x230/0x230
[  612.829146]  ? __lock_is_held+0xb5/0x140
[  612.833202]  mem_cgroup_try_charge+0x5ea/0xe10
[  612.837768]  ? rcu_softirq_qs+0x20/0x20
[  612.841749]  ? mem_cgroup_protected+0xa60/0xa60
[  612.846410]  ? print_usage_bug+0xc0/0xc0
[  612.850468]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  612.855995]  ? reuse_swap_page+0x4bd/0x1520
[  612.860308]  ? swp_swapcount+0x530/0x530
[  612.864367]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  612.869923]  mem_cgroup_try_charge_delay+0x1d/0xa0
[  612.874851]  wp_page_copy+0x492/0x18a0
[  612.878732]  ? lock_downgrade+0x900/0x900
[  612.882868]  ? check_preemption_disabled+0x48/0x200
[  612.887893]  ? pmd_pfn+0x1c0/0x1c0
[  612.891424]  ? lock_downgrade+0x900/0x900
[  612.895559]  ? check_preemption_disabled+0x48/0x200
[  612.900582]  ? find_held_lock+0x36/0x1c0
[  612.904641]  ? do_wp_page+0x76c/0x1690
[  612.908517]  ? lock_downgrade+0x900/0x900
[  612.912651]  ? kasan_check_write+0x14/0x20
[  612.916875]  ? kasan_check_read+0x11/0x20
[  612.921014]  ? do_raw_spin_unlock+0xa7/0x2f0
[  612.925428]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  612.930012]  ? __pte_alloc_kernel+0x220/0x220
[  612.934510]  ? __lock_acquire+0x7ec/0x4ec0
[  612.938733]  ? __lock_acquire+0x7ec/0x4ec0
[  612.942960]  do_wp_page+0x774/0x1690
[  612.946665]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  612.951328]  ? lock_release+0x970/0x970
[  612.955287]  ? rcu_softirq_qs+0x20/0x20
[  612.959253]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  612.964808]  ? kasan_check_write+0x14/0x20
[  612.969030]  ? do_raw_spin_lock+0xc1/0x200
[  612.973257]  __handle_mm_fault+0x2c60/0x53e0
[  612.977658]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  612.982487]  ? graph_lock+0x170/0x170
[  612.986275]  ? print_usage_bug+0xc0/0xc0
[  612.990324]  ? __might_fault+0x12b/0x1e0
[  612.994373]  ? graph_lock+0x170/0x170
[  612.998161]  ? graph_lock+0x170/0x170
[  613.001956]  ? handle_mm_fault+0x42a/0xc70
[  613.006177]  ? lock_downgrade+0x900/0x900
[  613.010312]  ? check_preemption_disabled+0x48/0x200
[  613.015317]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  613.020231]  ? kasan_check_read+0x11/0x20
[  613.024364]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  613.029637]  ? rcu_softirq_qs+0x20/0x20
[  613.033598]  ? trace_hardirqs_off_caller+0x300/0x300
[  613.038691]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  613.044215]  ? check_preemption_disabled+0x48/0x200
[  613.049223]  handle_mm_fault+0x54f/0xc70
[  613.053274]  ? __handle_mm_fault+0x53e0/0x53e0
[  613.057847]  ? find_vma+0x34/0x190
[  613.061376]  __do_page_fault+0x673/0xec0
[  613.065423]  ? __do_sys_newfstatat+0x110/0x110
[  613.069997]  ? mm_fault_error+0x380/0x380
[  613.074133]  ? trace_hardirqs_off+0xb8/0x310
[  613.078532]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  613.083883]  ? trace_hardirqs_on_caller+0x310/0x310
[  613.088890]  do_page_fault+0xed/0x7d1
[  613.092678]  ? vmalloc_sync_all+0x30/0x30
[  613.096815]  ? error_entry+0x70/0xd0
[  613.100518]  ? trace_hardirqs_off_caller+0xbb/0x300
[  613.105522]  ? trace_hardirqs_on_caller+0xc0/0x310
[  613.110454]  ? syscall_return_slowpath+0x5e0/0x5e0
[  613.115372]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  613.120206]  ? trace_hardirqs_off+0x310/0x310
[  613.124690]  ? __bpf_trace_preemptirq_template+0x30/0x30
[  613.130148]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  613.135674]  ? prepare_exit_to_usermode+0x291/0x3b0
[  613.140681]  ? page_fault+0x8/0x30
[  613.144213]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  613.149045]  ? page_fault+0x8/0x30
[  613.152576]  page_fault+0x1e/0x30
[  613.156023] RIP: 0033:0x42ea1a
[  613.159293] Code: 48 29 e8 31 c9 48 81 fb 40 c6 70 00 0f 95 c1 48 8d 34 2a 48 83 cd 01 48 c1 e1 02 48 83 c8 01 48 09 e9 48 89 73 58 48 89 4a 08 <48> 89 46 08 48 8d 4a 10 8b 05 4c 62 61 00 85 c0 0f 84 3a f7 ff ff
[  613.178186] RSP: 002b:00007fff9d17d810 EFLAGS: 00010206
[  613.183537] RAX: 0000000000018691 RBX: 000000000070c640 RCX: 0000000000008041
[  613.190809] RDX: 0000000000ea8930 RSI: 0000000000eb0970 RDI: 0000000000000003
[  613.198065] RBP: 0000000000008041 R08: 0000000000000001 R09: 0000000000ea7940
[  613.205331] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000070c698
[  613.212605] R13: 000000000070c698 R14: 00000000000000c8 R15: 0000000000002710
[  613.220190] Task in /syz1 killed as a result of limit of /syz1
[  613.226275] memory: usage 9736kB, limit 0kB, failcnt 38
[  613.231916] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  613.238917] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  613.245070] Memory cgroup stats for /syz1: cache:112KB rss:2268KB rss_huge:2048KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:2220KB inactive_file:4KB active_file:4KB unevictable:0KB
[  613.265829] Memory cgroup out of memory: Kill process 28387 (syz-executor1) score 8965000 or sacrifice child
[  613.275932] Killed process 28387 (syz-executor1) total-vm:70340kB, anon-rss:2188kB, file-rss:33548kB, shmem-rss:0kB
[  613.287541] oom_reaper: reaped process 28387 (syz-executor1), now anon-rss:0kB, file-rss:32780kB, shmem-rss:0kB
[  613.292065] syz-executor1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=-1000
[  613.309658] syz-executor1 cpuset=syz1 mems_allowed=0
[  613.314796] CPU: 0 PID: 23483 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  613.323268] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  613.332611] Call Trace:
[  613.335196]  dump_stack+0x1d3/0x2c4
[  613.338815]  ? dump_stack_print_info.cold.2+0x52/0x52
[  613.343997]  dump_header+0x27b/0xf72
[  613.347702]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  613.352616]  ? kasan_check_read+0x11/0x20
[  613.356754]  ? pagefault_out_of_memory+0x197/0x197
[  613.361679]  ? rcu_read_unlock+0x33/0x60
[  613.365740]  ? mem_cgroup_iter+0x514/0x1160
[  613.370113]  ? find_held_lock+0x36/0x1c0
[  613.374183]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  613.378976]  ? mark_held_locks+0xc7/0x130
[  613.383118]  ? _raw_spin_unlock_irq+0x27/0x80
[  613.387604]  ? _raw_spin_unlock_irq+0x27/0x80
[  613.392209]  ? lockdep_hardirqs_on+0x421/0x5c0
[  613.396790]  ? trace_hardirqs_on+0xbd/0x310
[  613.401106]  ? kasan_check_read+0x11/0x20
[  613.405241]  ? css_task_iter_end+0x222/0x490
[  613.409641]  ? trace_hardirqs_off_caller+0x300/0x300
[  613.415037]  ? kasan_check_write+0x14/0x20
[  613.419266]  ? do_raw_spin_lock+0xc1/0x200
[  613.423496]  ? _raw_spin_unlock_irq+0x60/0x80
[  613.427984]  ? css_task_iter_end+0x2ce/0x490
[  613.432394]  ? cgroup_procs_next+0x70/0x70
[  613.436625]  ? _raw_spin_unlock_irq+0x60/0x80
[  613.441115]  ? oom_badness+0xaa0/0xaa0
[  613.444995]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  613.449742]  ? mem_cgroup_iter_break+0x30/0x30
[  613.454325]  ? mark_held_locks+0xc7/0x130
[  613.458479]  out_of_memory.cold.30+0xf/0x184
[  613.462874]  ? lockdep_hardirqs_on+0x421/0x5c0
[  613.467456]  ? kasan_check_read+0x11/0x20
[  613.471619]  ? oom_killer_disable+0x3a0/0x3a0
[  613.476111]  ? kasan_check_write+0x14/0x20
[  613.480357]  ? do_raw_spin_lock+0xc1/0x200
[  613.484590]  mem_cgroup_out_of_memory+0x15e/0x210
[  613.489425]  ? memcg_memory_event+0x40/0x40
[  613.493734]  ? mem_cgroup_try_charge+0x5ea/0xe10
[  613.498480]  ? page_counter_try_charge+0x1c1/0x220
[  613.503399]  try_charge+0xb1a/0x1690
[  613.507112]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  613.513163]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  613.518102]  ? lock_downgrade+0x900/0x900
[  613.522245]  ? check_preemption_disabled+0x48/0x200
[  613.527258]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  613.532178]  ? kasan_check_read+0x11/0x20
[  613.536311]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  613.541577]  ? rcu_softirq_qs+0x20/0x20
[  613.545546]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  613.550378]  ? mod_memcg_state+0x230/0x230
[  613.554605]  ? __lock_is_held+0xb5/0x140
[  613.558666]  mem_cgroup_try_charge+0x5ea/0xe10
[  613.563252]  ? rcu_softirq_qs+0x20/0x20
[  613.567217]  ? mem_cgroup_protected+0xa60/0xa60
[  613.571898]  ? print_usage_bug+0xc0/0xc0
[  613.575956]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  613.581499]  ? reuse_swap_page+0x4bd/0x1520
[  613.585811]  ? swp_swapcount+0x530/0x530
[  613.589870]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  613.595420]  mem_cgroup_try_charge_delay+0x1d/0xa0
[  613.600343]  wp_page_copy+0x492/0x18a0
[  613.604216]  ? lock_downgrade+0x900/0x900
[  613.608352]  ? check_preemption_disabled+0x48/0x200
[  613.613361]  ? pmd_pfn+0x1c0/0x1c0
[  613.616892]  ? lock_downgrade+0x900/0x900
[  613.621034]  ? check_preemption_disabled+0x48/0x200
[  613.626056]  ? find_held_lock+0x36/0x1c0
[  613.630131]  ? do_wp_page+0x76c/0x1690
[  613.634011]  ? lock_downgrade+0x900/0x900
[  613.638149]  ? kasan_check_write+0x14/0x20
[  613.642376]  ? kasan_check_read+0x11/0x20
[  613.646538]  ? do_raw_spin_unlock+0xa7/0x2f0
[  613.650936]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  613.655504]  ? __pte_alloc_kernel+0x220/0x220
[  613.659988]  ? __lock_acquire+0x7ec/0x4ec0
[  613.664213]  ? __lock_acquire+0x7ec/0x4ec0
[  613.668440]  do_wp_page+0x774/0x1690
[  613.672145]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  613.676806]  ? lock_release+0x970/0x970
[  613.680786]  ? rcu_softirq_qs+0x20/0x20
[  613.684759]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  613.690286]  ? kasan_check_write+0x14/0x20
[  613.694507]  ? do_raw_spin_lock+0xc1/0x200
[  613.698734]  __handle_mm_fault+0x2c60/0x53e0
[  613.703138]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  613.707970]  ? graph_lock+0x170/0x170
[  613.711761]  ? print_usage_bug+0xc0/0xc0
[  613.715896]  ? __might_fault+0x12b/0x1e0
[  613.719948]  ? graph_lock+0x170/0x170
[  613.723736]  ? graph_lock+0x170/0x170
[  613.727538]  ? handle_mm_fault+0x42a/0xc70
[  613.731761]  ? lock_downgrade+0x900/0x900
[  613.735894]  ? check_preemption_disabled+0x48/0x200
[  613.740905]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  613.745822]  ? kasan_check_read+0x11/0x20
[  613.749960]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  613.755224]  ? rcu_softirq_qs+0x20/0x20
[  613.759185]  ? trace_hardirqs_off_caller+0x300/0x300
[  613.764277]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  613.769810]  ? check_preemption_disabled+0x48/0x200
[  613.774823]  handle_mm_fault+0x54f/0xc70
[  613.778883]  ? __handle_mm_fault+0x53e0/0x53e0
[  613.783456]  ? find_vma+0x34/0x190
[  613.786989]  __do_page_fault+0x673/0xec0
[  613.791040]  ? __do_sys_newfstatat+0x110/0x110
[  613.795615]  ? mm_fault_error+0x380/0x380
[  613.799752]  ? trace_hardirqs_off+0xb8/0x310
[  613.804152]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  613.809507]  ? trace_hardirqs_on_caller+0x310/0x310
[  613.814515]  do_page_fault+0xed/0x7d1
[  613.818303]  ? vmalloc_sync_all+0x30/0x30
[  613.822490]  ? error_entry+0x70/0xd0
[  613.826196]  ? trace_hardirqs_off_caller+0xbb/0x300
[  613.831222]  ? trace_hardirqs_on_caller+0xc0/0x310
[  613.836143]  ? syscall_return_slowpath+0x5e0/0x5e0
[  613.841060]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  613.845899]  ? trace_hardirqs_off+0x310/0x310
[  613.850382]  ? __bpf_trace_preemptirq_template+0x30/0x30
[  613.855841]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  613.861369]  ? prepare_exit_to_usermode+0x291/0x3b0
[  613.866379]  ? page_fault+0x8/0x30
[  613.869914]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  613.874757]  ? page_fault+0x8/0x30
[  613.878290]  page_fault+0x1e/0x30
[  613.881730] RIP: 0033:0x42ea1a
[  613.884912] Code: 48 29 e8 31 c9 48 81 fb 40 c6 70 00 0f 95 c1 48 8d 34 2a 48 83 cd 01 48 c1 e1 02 48 83 c8 01 48 09 e9 48 89 73 58 48 89 4a 08 <48> 89 46 08 48 8d 4a 10 8b 05 4c 62 61 00 85 c0 0f 84 3a f7 ff ff
[  613.903800] RSP: 002b:00007fff9d17d810 EFLAGS: 00010206
[  613.909150] RAX: 0000000000018691 RBX: 000000000070c640 RCX: 0000000000008041
[  613.916406] RDX: 0000000000ea8930 RSI: 0000000000eb0970 RDI: 0000000000000003
[  613.923663] RBP: 0000000000008041 R08: 0000000000000001 R09: 0000000000ea7940
[  613.930917] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000070c698
[  613.938180] R13: 000000000070c698 R14: 00000000000000c8 R15: 0000000000002710
[  613.947459] Memory limit reached of cgroup /syz1
[  613.952272] memory: usage 7368kB, limit 0kB, failcnt 44
[  613.957751] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  613.964540] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
23:56:28 executing program 1:
pipe(&(0x7f0000000040))
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000240)='./cgroup\x00', 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f0000000080)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r1, &(0x7f0000000000), 0x12)

23:56:28 executing program 0:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
clone(0x820002102011ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000080), 0xffffffffffffffff)
r1 = getpid()
sched_setscheduler(r1, 0x5, &(0x7f0000000200))
setsockopt$EBT_SO_SET_COUNTERS(r0, 0x0, 0x81, &(0x7f0000000340)=ANY=[], 0x0)

23:56:28 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xe3, 0x0, 0x0)

23:56:28 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x1fe, 0x0, 0x0)

23:56:28 executing program 5:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x31}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xbc0, 0x0, 0x0)

23:56:28 executing program 2:
r0 = creat(&(0x7f0000000080)='./file0\x00', 0x2)
ioctl$EXT4_IOC_RESIZE_FS(r0, 0x40086610, &(0x7f0000000040)=0x1)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='smaps_rollup\x00')
exit(0x0)

[  613.970738] Memory cgroup stats for /syz1: cache:112KB rss:176KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:52KB inactive_file:4KB active_file:4KB unevictable:0KB
[  613.990991] Out of memory and no killable processes...
[  614.029321] EXT4-fs (sda1): resizing filesystem from 524032 to 1 blocks
[  614.035965] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=3, oom_score_adj=-1000
[  614.056125] syz-executor1 cpuset=syz1 mems_allowed=0
[  614.070983] CPU: 0 PID: 23483 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
23:56:28 executing program 0:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
clone(0x820002102011ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000080), 0xffffffffffffffff)
r1 = getpid()
sched_setscheduler(r1, 0x5, &(0x7f0000000200))
setsockopt$inet_mreqn(r0, 0x0, 0x32, &(0x7f0000000380)={@broadcast, @remote}, 0xc)

[  614.079777] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  614.089139] Call Trace:
[  614.091747]  dump_stack+0x1d3/0x2c4
[  614.095399]  ? dump_stack_print_info.cold.2+0x52/0x52
[  614.097215] EXT4-fs warning (device sda1): ext4_resize_fs:1930: can't shrink FS - resize aborted
[  614.100618]  dump_header+0x27b/0xf72
[  614.100639]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  614.100654]  ? kasan_check_read+0x11/0x20
[  614.100678]  ? pagefault_out_of_memory+0x197/0x197
[  614.100704]  ? rcu_read_unlock+0x33/0x60
[  614.131380]  ? mem_cgroup_iter+0x514/0x1160
[  614.135721]  ? find_held_lock+0x36/0x1c0
[  614.139804]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  614.144575]  ? mark_held_locks+0xc7/0x130
[  614.148741]  ? _raw_spin_unlock_irq+0x27/0x80
[  614.153243]  ? _raw_spin_unlock_irq+0x27/0x80
[  614.157733]  ? lockdep_hardirqs_on+0x421/0x5c0
[  614.162308]  ? trace_hardirqs_on+0xbd/0x310
[  614.166619]  ? kasan_check_read+0x11/0x20
[  614.170755]  ? css_task_iter_end+0x222/0x490
[  614.175157]  ? trace_hardirqs_off_caller+0x300/0x300
[  614.180254]  ? kasan_check_write+0x14/0x20
[  614.184488]  ? do_raw_spin_lock+0xc1/0x200
[  614.188728]  ? _raw_spin_unlock_irq+0x60/0x80
[  614.193212]  ? css_task_iter_end+0x2ce/0x490
[  614.197611]  ? cgroup_procs_next+0x70/0x70
[  614.201838]  ? _raw_spin_unlock_irq+0x60/0x80
[  614.206323]  ? oom_badness+0xaa0/0xaa0
[  614.210206]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  614.214989]  ? mem_cgroup_iter_break+0x30/0x30
[  614.219608]  ? cgroup_file_notify+0x226/0x2f0
[  614.224143]  out_of_memory.cold.30+0xf/0x184
[  614.228568]  ? lockdep_hardirqs_on+0x421/0x5c0
[  614.233172]  ? kasan_check_read+0x11/0x20
[  614.237323]  ? oom_killer_disable+0x3a0/0x3a0
[  614.241816]  ? kasan_check_write+0x14/0x20
[  614.246041]  ? do_raw_spin_lock+0xc1/0x200
[  614.250381]  mem_cgroup_out_of_memory+0x15e/0x210
[  614.255216]  ? memcg_memory_event+0x40/0x40
[  614.259529]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  614.264363]  ? page_counter_try_charge+0x1c1/0x220
[  614.269308]  try_charge+0xb1a/0x1690
[  614.273037]  ? lock_downgrade+0x900/0x900
[  614.277192]  ? check_preemption_disabled+0x48/0x200
[  614.282220]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  614.288272]  ? find_held_lock+0x36/0x1c0
[  614.292329]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  614.297161]  ? lock_downgrade+0x900/0x900
[  614.301301]  ? check_preemption_disabled+0x48/0x200
[  614.306310]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  614.311235]  ? kasan_check_read+0x11/0x20
[  614.315379]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  614.320647]  ? rcu_softirq_qs+0x20/0x20
[  614.324621]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  614.329457]  memcg_kmem_charge_memcg+0x7c/0x120
[  614.334122]  ? memcg_kmem_put_cache+0xb0/0xb0
[  614.338612]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  614.343990]  memcg_kmem_charge+0x135/0x300
[  614.348236]  __alloc_pages_nodemask+0x89c/0xdd0
[  614.352894]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  614.358165]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  614.363190]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  614.368751]  ? check_preemption_disabled+0x48/0x200
[  614.373769]  ? rcu_lockdep_current_cpu_online+0x1a4/0x210
[  614.379312]  ? rcu_pm_notify+0xc0/0xc0
[  614.383197]  ? copy_process+0x1ff3/0x8780
[  614.387338]  ? rcu_read_lock_sched_held+0x108/0x120
[  614.392356]  ? kmem_cache_alloc_node+0x349/0x730
[  614.397135]  copy_process+0xa09/0x8780
[  614.401026]  ? graph_lock+0x170/0x170
[  614.404829]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  614.410381]  ? PageHuge+0x183/0x2b0
[  614.414001]  ? ring_buffer_record_is_on+0xe1/0x130
[  614.418937]  ? vma_kernel_pagesize+0xb0/0xb0
[  614.423342]  ? __cleanup_sighand+0x70/0x70
[  614.427572]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  614.433122]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  614.438668]  ? page_swapcount+0x1d0/0x1d0
[  614.442831]  ? try_to_wake_up+0x10a/0x12f0
[  614.447062]  ? lock_downgrade+0x900/0x900
[  614.451220]  ? lock_downgrade+0x900/0x900
[  614.455394]  ? trace_hardirqs_off+0xb8/0x310
[  614.459796]  ? kasan_check_read+0x11/0x20
[  614.463935]  ? do_raw_spin_unlock+0xa7/0x2f0
[  614.468346]  ? trace_hardirqs_on_caller+0x310/0x310
[  614.473379]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  614.478476]  ? try_to_wake_up+0x10a/0x12f0
[  614.482710]  ? print_usage_bug+0xc0/0xc0
[  614.486760]  ? migrate_swap_stop+0x930/0x930
[  614.491170]  ? __handle_mm_fault+0x9ab/0x53e0
[  614.495678]  ? graph_lock+0x170/0x170
[  614.499471]  ? print_usage_bug+0xc0/0xc0
[  614.503534]  ? __lock_acquire+0x7ec/0x4ec0
[  614.507779]  ? print_usage_bug+0xc0/0xc0
[  614.511848]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  614.517394]  ? reuse_swap_page+0x4bd/0x1520
[  614.521734]  ? swp_swapcount+0x530/0x530
[  614.525798]  ? __lock_acquire+0x7ec/0x4ec0
[  614.530027]  ? mark_held_locks+0x130/0x130
[  614.534269]  ? rcu_softirq_qs+0x20/0x20
[  614.538235]  ? __lock_acquire+0x7ec/0x4ec0
[  614.542475]  ? mark_held_locks+0x130/0x130
[  614.546718]  ? graph_lock+0x170/0x170
[  614.550512]  ? mark_held_locks+0x130/0x130
[  614.554743]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  614.560272]  ? check_preemption_disabled+0x48/0x200
[  614.565285]  ? find_held_lock+0x36/0x1c0
[  614.569344]  ? do_wp_page+0xa6f/0x1690
[  614.573223]  ? lock_downgrade+0x900/0x900
[  614.577375]  ? wake_up_page_bit+0x6f0/0x6f0
[  614.581708]  ? kasan_check_read+0x11/0x20
[  614.585847]  ? do_raw_spin_unlock+0xa7/0x2f0
[  614.590273]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  614.594852]  ? pgd_free+0x380/0x380
[  614.598482]  ? __lock_acquire+0x7ec/0x4ec0
[  614.602715]  ? _raw_spin_unlock+0x2c/0x50
[  614.606876]  ? do_wp_page+0x77c/0x1690
[  614.610759]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  614.615423]  ? find_held_lock+0x36/0x1c0
[  614.619491]  ? lock_release+0x970/0x970
[  614.623486]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  614.629025]  ? kasan_check_write+0x14/0x20
[  614.633251]  ? do_raw_spin_lock+0xc1/0x200
[  614.637482]  ? __handle_mm_fault+0x9ab/0x53e0
[  614.641971]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  614.646804]  ? __sb_end_write+0xd9/0x110
[  614.650859]  ? graph_lock+0x170/0x170
[  614.654660]  ? print_usage_bug+0xc0/0xc0
[  614.658717]  ? atime_needs_update+0x710/0x710
[  614.663203]  ? graph_lock+0x170/0x170
[  614.667001]  ? graph_lock+0x170/0x170
[  614.670813]  ? find_held_lock+0x36/0x1c0
[  614.674880]  ? __do_page_fault+0x6b7/0xec0
[  614.679123]  _do_fork+0x1cb/0x11c0
[  614.682656]  ? fork_idle+0x1d0/0x1d0
[  614.686363]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  614.691902]  ? check_preemption_disabled+0x48/0x200
[  614.696927]  ? kasan_check_write+0x14/0x20
[  614.701152]  ? up_read+0x225/0x2c0
[  614.704682]  ? up_read_non_owner+0x100/0x100
[  614.709098]  ? find_vma+0x34/0x190
[  614.712636]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  614.718168]  ? __do_page_fault+0x49c/0xec0
[  614.722409]  ? do_syscall_64+0x9a/0x820
[  614.726391]  ? do_syscall_64+0x9a/0x820
[  614.730375]  ? lockdep_hardirqs_on+0x421/0x5c0
[  614.734980]  ? trace_hardirqs_on+0xbd/0x310
[  614.739309]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  614.744664]  ? trace_hardirqs_off_caller+0x300/0x300
[  614.749777]  __x64_sys_clone+0xbf/0x150
[  614.753748]  do_syscall_64+0x1b9/0x820
[  614.757635]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  614.763007]  ? syscall_return_slowpath+0x5e0/0x5e0
[  614.767931]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  614.772794]  ? trace_hardirqs_off+0x310/0x310
[  614.777288]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  614.782830]  ? prepare_exit_to_usermode+0x291/0x3b0
[  614.787870]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  614.792722]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  614.797905] RIP: 0033:0x455c4a
[  614.801105] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  614.819996] RSP: 002b:00007fff9d17d960 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
23:56:29 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xaa, 0x0, 0x0)

23:56:29 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x261, 0x0, 0x0)

[  614.827693] RAX: ffffffffffffffda RBX: 00007fff9d17d960 RCX: 0000000000455c4a
[  614.834951] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  614.842206] RBP: 00007fff9d17d9a0 R08: 0000000000000001 R09: 0000000000ea7940
[  614.849466] R10: 0000000000ea7c10 R11: 0000000000000246 R12: 0000000000000001
[  614.856722] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  614.867094] Memory limit reached of cgroup /syz1
[  614.872290] memory: usage 7340kB, limit 0kB, failcnt 52
[  614.877982] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  614.884834] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  614.891152] Memory cgroup stats for /syz1: cache:112KB rss:176KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:52KB inactive_file:0KB active_file:8KB unevictable:0KB
[  614.912046] Out of memory and no killable processes...
[  614.920360] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  614.933373] syz-executor1 cpuset=syz1 mems_allowed=0
[  614.938715] CPU: 0 PID: 23483 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  614.947208] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  614.956545] Call Trace:
[  614.959146]  dump_stack+0x1d3/0x2c4
[  614.962766]  ? dump_stack_print_info.cold.2+0x52/0x52
[  614.967972]  dump_header+0x27b/0xf72
[  614.971713]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  614.976641]  ? kasan_check_read+0x11/0x20
[  614.980799]  ? pagefault_out_of_memory+0x197/0x197
[  614.985724]  ? rcu_read_unlock+0x33/0x60
[  614.989777]  ? mem_cgroup_iter+0x514/0x1160
[  614.994101]  ? find_held_lock+0x36/0x1c0
[  614.998174]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  615.002937]  ? mark_held_locks+0xc7/0x130
[  615.007105]  ? _raw_spin_unlock_irq+0x27/0x80
[  615.011616]  ? _raw_spin_unlock_irq+0x27/0x80
[  615.016131]  ? lockdep_hardirqs_on+0x421/0x5c0
[  615.020711]  ? trace_hardirqs_on+0xbd/0x310
[  615.025020]  ? kasan_check_read+0x11/0x20
[  615.029158]  ? css_task_iter_end+0x222/0x490
[  615.033581]  ? trace_hardirqs_off_caller+0x300/0x300
[  615.038700]  ? kasan_check_write+0x14/0x20
[  615.042928]  ? do_raw_spin_lock+0xc1/0x200
[  615.047157]  ? _raw_spin_unlock_irq+0x60/0x80
[  615.051639]  ? css_task_iter_end+0x2ce/0x490
[  615.056037]  ? cgroup_procs_next+0x70/0x70
[  615.060266]  ? _raw_spin_unlock_irq+0x60/0x80
[  615.064752]  ? oom_badness+0xaa0/0xaa0
[  615.068634]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  615.073384]  ? mem_cgroup_iter_break+0x30/0x30
[  615.077964]  ? cgroup_file_notify+0x226/0x2f0
[  615.082455]  out_of_memory.cold.30+0xf/0x184
[  615.086857]  ? lockdep_hardirqs_on+0x421/0x5c0
[  615.091435]  ? kasan_check_read+0x11/0x20
[  615.095577]  ? oom_killer_disable+0x3a0/0x3a0
[  615.100068]  ? kasan_check_write+0x14/0x20
[  615.104308]  ? do_raw_spin_lock+0xc1/0x200
[  615.108543]  mem_cgroup_out_of_memory+0x15e/0x210
[  615.113380]  ? memcg_memory_event+0x40/0x40
[  615.117707]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  615.122544]  ? page_counter_try_charge+0x1c1/0x220
[  615.127468]  try_charge+0xb1a/0x1690
[  615.131186]  ? lock_downgrade+0x900/0x900
[  615.135343]  ? check_preemption_disabled+0x48/0x200
[  615.140368]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  615.146424]  ? find_held_lock+0x36/0x1c0
[  615.150495]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  615.155347]  ? lock_downgrade+0x900/0x900
[  615.159495]  ? check_preemption_disabled+0x48/0x200
[  615.164504]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  615.169429]  ? kasan_check_read+0x11/0x20
[  615.173572]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  615.178852]  ? rcu_softirq_qs+0x20/0x20
[  615.182828]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  615.187670]  memcg_kmem_charge_memcg+0x7c/0x120
[  615.192357]  ? memcg_kmem_put_cache+0xb0/0xb0
[  615.196846]  ? print_usage_bug+0xc0/0xc0
[  615.200924]  memcg_kmem_charge+0x135/0x300
[  615.205176]  __alloc_pages_nodemask+0x89c/0xdd0
[  615.209841]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  615.214849]  ? lock_downgrade+0x900/0x900
[  615.218989]  ? check_preemption_disabled+0x48/0x200
[  615.223998]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  615.228919]  ? kasan_check_read+0x11/0x20
[  615.233056]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  615.238339]  ? rcu_softirq_qs+0x20/0x20
[  615.242305]  ? unwind_dump+0x190/0x190
[  615.246186]  ? is_bpf_text_address+0xd3/0x170
[  615.250680]  ? kernel_text_address+0x79/0xf0
[  615.255093]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  615.260628]  alloc_pages_current+0x10c/0x210
[  615.265033]  __get_free_pages+0xc/0x40
[  615.268913]  pgd_alloc+0x9a/0x480
[  615.272359]  ? __init_rwsem+0x1cc/0x2a0
[  615.276327]  ? pgd_page_get_mm+0x40/0x40
[  615.280385]  ? save_stack+0xa9/0xd0
[  615.284007]  ? save_stack+0x43/0xd0
[  615.287630]  ? kasan_slab_alloc+0x12/0x20
[  615.291779]  ? kmem_cache_alloc+0x12e/0x730
[  615.296100]  ? copy_process+0x3563/0x8780
[  615.300266]  ? _do_fork+0x1cb/0x11c0
[  615.304099]  ? __x64_sys_clone+0xbf/0x150
[  615.308260]  ? do_syscall_64+0x1b9/0x820
[  615.312329]  ? __lockdep_init_map+0x105/0x590
[  615.316820]  mm_init+0x726/0xc00
[  615.320179]  ? get_task_exe_file+0xd0/0xd0
[  615.324406]  ? kasan_check_read+0x11/0x20
[  615.328547]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  615.333813]  ? rcu_softirq_qs+0x20/0x20
[  615.337781]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  615.343312]  ? check_preemption_disabled+0x48/0x200
[  615.348323]  ? rcu_pm_notify+0xc0/0xc0
[  615.352208]  ? rcu_read_lock_sched_held+0x108/0x120
[  615.357217]  ? kmem_cache_alloc+0x33a/0x730
[  615.361549]  copy_process+0x35ca/0x8780
[  615.365513]  ? graph_lock+0x170/0x170
[  615.369320]  ? __cleanup_sighand+0x70/0x70
[  615.373547]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  615.379083]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  615.384643]  ? page_swapcount+0x1d0/0x1d0
[  615.388796]  ? try_to_wake_up+0x10a/0x12f0
[  615.393023]  ? lock_downgrade+0x900/0x900
[  615.397172]  ? lock_downgrade+0x900/0x900
[  615.401319]  ? trace_hardirqs_off+0xb8/0x310
[  615.405963]  ? kasan_check_read+0x11/0x20
[  615.410115]  ? trace_hardirqs_on_caller+0x310/0x310
[  615.415132]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  615.420227]  ? try_to_wake_up+0x10a/0x12f0
[  615.424471]  ? print_usage_bug+0xc0/0xc0
[  615.428539]  ? migrate_swap_stop+0x930/0x930
[  615.432939]  ? __handle_mm_fault+0x9ab/0x53e0
[  615.437443]  ? graph_lock+0x170/0x170
[  615.441250]  ? print_usage_bug+0xc0/0xc0
[  615.445307]  ? __lock_acquire+0x7ec/0x4ec0
[  615.449553]  ? print_usage_bug+0xc0/0xc0
[  615.453632]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  615.459173]  ? reuse_swap_page+0x4bd/0x1520
[  615.463487]  ? swp_swapcount+0x530/0x530
[  615.467551]  ? __lock_acquire+0x7ec/0x4ec0
[  615.471773]  ? mark_held_locks+0x130/0x130
[  615.475995]  ? rcu_softirq_qs+0x20/0x20
[  615.479960]  ? __lock_acquire+0x7ec/0x4ec0
[  615.484220]  ? mark_held_locks+0x130/0x130
[  615.488448]  ? graph_lock+0x170/0x170
[  615.492239]  ? mark_held_locks+0x130/0x130
[  615.496469]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  615.502003]  ? check_preemption_disabled+0x48/0x200
[  615.507018]  ? find_held_lock+0x36/0x1c0
[  615.511117]  ? do_wp_page+0xa6f/0x1690
[  615.515021]  ? lock_downgrade+0x900/0x900
[  615.519165]  ? wake_up_page_bit+0x6f0/0x6f0
[  615.523484]  ? kasan_check_read+0x11/0x20
[  615.527630]  ? do_raw_spin_unlock+0xa7/0x2f0
[  615.532046]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  615.536644]  ? pgd_free+0x380/0x380
[  615.540267]  ? __lock_acquire+0x7ec/0x4ec0
[  615.544516]  ? _raw_spin_unlock+0x2c/0x50
[  615.548657]  ? do_wp_page+0x77c/0x1690
[  615.552539]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  615.557202]  ? find_held_lock+0x36/0x1c0
[  615.561256]  ? lock_release+0x970/0x970
[  615.565223]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  615.570753]  ? kasan_check_write+0x14/0x20
[  615.574978]  ? do_raw_spin_lock+0xc1/0x200
[  615.579204]  ? __handle_mm_fault+0x9ab/0x53e0
[  615.583699]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  615.588536]  ? __sb_end_write+0xd9/0x110
[  615.592590]  ? graph_lock+0x170/0x170
[  615.596386]  ? print_usage_bug+0xc0/0xc0
[  615.600439]  ? atime_needs_update+0x710/0x710
[  615.604926]  ? graph_lock+0x170/0x170
[  615.608719]  ? graph_lock+0x170/0x170
[  615.612515]  ? find_held_lock+0x36/0x1c0
[  615.616584]  ? __do_page_fault+0x6b7/0xec0
[  615.620829]  _do_fork+0x1cb/0x11c0
[  615.624382]  ? fork_idle+0x1d0/0x1d0
[  615.628107]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  615.633648]  ? check_preemption_disabled+0x48/0x200
[  615.638675]  ? kasan_check_write+0x14/0x20
[  615.642900]  ? up_read+0x225/0x2c0
[  615.646429]  ? up_read_non_owner+0x100/0x100
[  615.650852]  ? find_vma+0x34/0x190
[  615.654387]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  615.659914]  ? __do_page_fault+0x49c/0xec0
[  615.664141]  ? do_syscall_64+0x9a/0x820
[  615.668111]  ? do_syscall_64+0x9a/0x820
[  615.672083]  ? lockdep_hardirqs_on+0x421/0x5c0
[  615.676665]  ? trace_hardirqs_on+0xbd/0x310
[  615.680978]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  615.686333]  ? trace_hardirqs_off_caller+0x300/0x300
[  615.691432]  __x64_sys_clone+0xbf/0x150
[  615.695403]  do_syscall_64+0x1b9/0x820
[  615.699282]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  615.704692]  ? syscall_return_slowpath+0x5e0/0x5e0
[  615.709613]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  615.714460]  ? trace_hardirqs_off+0x310/0x310
[  615.718980]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  615.724527]  ? prepare_exit_to_usermode+0x291/0x3b0
[  615.729538]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  615.734376]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  615.739564] RIP: 0033:0x455c4a
[  615.742754] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  615.761664] RSP: 002b:00007fff9d17d960 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  615.769360] RAX: ffffffffffffffda RBX: 00007fff9d17d960 RCX: 0000000000455c4a
[  615.776617] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  615.783881] RBP: 00007fff9d17d9a0 R08: 0000000000000001 R09: 0000000000ea7940
[  615.791154] R10: 0000000000ea7c10 R11: 0000000000000246 R12: 0000000000000001
[  615.798410] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  615.809345] Memory limit reached of cgroup /syz1
[  615.814528] memory: usage 7264kB, limit 0kB, failcnt 60
[  615.820085] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  615.826992] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  615.833505] Memory cgroup stats for /syz1: cache:112KB
[  615.849787]  rss:176KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:52KB inactive_file:4KB active_file:4KB unevictable:0KB
23:56:30 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='smaps_rollup\x00')
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000040)={r0, &(0x7f0000000140)="52702ce9c409cd3d29b0f9f262422de86a7fcdc4cecba40781584dd3347e4574e9c8e14d84f8477aa83ebe87467b6daf86a4bd437fa87984d8ac48709b43ee88588e969ce48ff775f158cbc8065e24085a310dfdbfa72da3a9b65a36bf304727d293bd6436be1a65d02d787bedb831c22e663b4949fdf5222cc4519ed8a5c09ada4fa875c9993c6761becea027de7c3495987790e420feebc54e7199931c5e69b562cc6a9ed35b4d6e108b1807a1ba57e8c3c675b5b5aa5378339a450773b71b214898741559"}, 0x10)
exit(0x0)
ioctl$EVIOCGPROP(r0, 0x80404509, &(0x7f0000000080)=""/112)
read(r0, &(0x7f0000000000)=""/56, 0x38)
fcntl$setsig(r0, 0xa, 0xf)
sendfile(r0, r0, 0x0, 0xc9)

23:56:30 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x141, 0x0, 0x0)

23:56:30 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x6e, 0x0, 0x0)

[  615.920579] Out of memory and no killable processes...
[  615.949199] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  616.006671] syz-executor1 cpuset=syz1 mems_allowed=0
[  616.039133] CPU: 0 PID: 23483 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  616.047653] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  616.057017] Call Trace:
[  616.059621]  dump_stack+0x1d3/0x2c4
[  616.063273]  ? dump_stack_print_info.cold.2+0x52/0x52
[  616.068492]  dump_header+0x27b/0xf72
[  616.072262]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  616.077206]  ? kasan_check_read+0x11/0x20
[  616.081375]  ? pagefault_out_of_memory+0x197/0x197
[  616.086327]  ? rcu_read_unlock+0x33/0x60
[  616.090392]  ? mem_cgroup_iter+0x514/0x1160
[  616.094720]  ? find_held_lock+0x36/0x1c0
[  616.098806]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  616.103624]  ? mark_held_locks+0xc7/0x130
[  616.107831]  ? _raw_spin_unlock_irq+0x27/0x80
[  616.112342]  ? _raw_spin_unlock_irq+0x27/0x80
[  616.112362]  ? lockdep_hardirqs_on+0x421/0x5c0
[  616.112383]  ? trace_hardirqs_on+0xbd/0x310
[  616.112397]  ? kasan_check_read+0x11/0x20
[  616.112417]  ? css_task_iter_end+0x222/0x490
[  616.134349]  ? trace_hardirqs_off_caller+0x300/0x300
[  616.139478]  ? kasan_check_write+0x14/0x20
[  616.143732]  ? do_raw_spin_lock+0xc1/0x200
[  616.147990]  ? _raw_spin_unlock_irq+0x60/0x80
[  616.152502]  ? css_task_iter_end+0x2ce/0x490
[  616.156933]  ? cgroup_procs_next+0x70/0x70
[  616.161192]  ? _raw_spin_unlock_irq+0x60/0x80
[  616.165708]  ? oom_badness+0xaa0/0xaa0
[  616.169627]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  616.174406]  ? mem_cgroup_iter_break+0x30/0x30
[  616.179030]  ? mark_held_locks+0xc7/0x130
[  616.183218]  out_of_memory.cold.30+0xf/0x184
[  616.187644]  ? lockdep_hardirqs_on+0x421/0x5c0
[  616.192240]  ? kasan_check_read+0x11/0x20
[  616.196405]  ? oom_killer_disable+0x3a0/0x3a0
[  616.200920]  ? kasan_check_write+0x14/0x20
[  616.205177]  ? do_raw_spin_lock+0xc1/0x200
[  616.209441]  mem_cgroup_out_of_memory+0x15e/0x210
[  616.209459]  ? memcg_memory_event+0x40/0x40
[  616.209476]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  616.209498]  ? page_counter_try_charge+0x1c1/0x220
[  616.209519]  try_charge+0xb1a/0x1690
[  616.218679]  ? lock_downgrade+0x900/0x900
[  616.218696]  ? check_preemption_disabled+0x48/0x200
[  616.218723]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  616.218748]  ? find_held_lock+0x36/0x1c0
[  616.251494]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  616.256359]  ? lock_downgrade+0x900/0x900
[  616.260530]  ? check_preemption_disabled+0x48/0x200
[  616.265572]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  616.270516]  ? kasan_check_read+0x11/0x20
[  616.274678]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  616.279963]  ? rcu_softirq_qs+0x20/0x20
[  616.283973]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  616.288846]  memcg_kmem_charge_memcg+0x7c/0x120
[  616.288866]  ? memcg_kmem_put_cache+0xb0/0xb0
[  616.288885]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  616.288909]  memcg_kmem_charge+0x135/0x300
[  616.298546]  __alloc_pages_nodemask+0x89c/0xdd0
[  616.298572]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  616.298591]  ? find_held_lock+0x36/0x1c0
[  616.298612]  ? print_usage_bug+0xc0/0xc0
[  616.298646]  ? find_held_lock+0x36/0x1c0
[  616.330748]  ? print_usage_bug+0xc0/0xc0
[  616.334819]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  616.340350]  alloc_pages_current+0x10c/0x210
[  616.344751]  get_zeroed_page+0x14/0x50
[  616.348630]  __pud_alloc+0x3b/0x240
[  616.352249]  pud_alloc+0xe1/0x150
[  616.355714]  copy_page_range+0x439/0x26f0
[  616.359874]  ? rb_insert_color_cached+0x14b0/0x14b0
[  616.364905]  ? mark_held_locks+0x130/0x130
[  616.369147]  ? pmd_alloc+0x180/0x180
[  616.372863]  ? graph_lock+0x170/0x170
[  616.376662]  ? kasan_slab_alloc+0x12/0x20
[  616.380810]  ? kmem_cache_alloc+0x12e/0x730
[  616.385144]  ? graph_lock+0x170/0x170
[  616.388934]  ? __x64_sys_clone+0xbf/0x150
[  616.393104]  ? do_syscall_64+0x1b9/0x820
[  616.397171]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  616.402535]  ? find_held_lock+0x36/0x1c0
[  616.406590]  ? graph_lock+0x170/0x170
[  616.410933]  ? graph_lock+0x170/0x170
[  616.414731]  ? lock_downgrade+0x900/0x900
[  616.418874]  ? lock_release+0x970/0x970
[  616.422844]  ? find_held_lock+0x36/0x1c0
[  616.426914]  ? copy_process+0x454a/0x8780
[  616.431053]  ? lock_downgrade+0x900/0x900
[  616.435231]  ? lock_release+0x970/0x970
[  616.439196]  ? ttwu_stat+0x5c0/0x5c0
[  616.442911]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  616.447932]  ? vma_compute_subtree_gap+0x160/0x240
[  616.452869]  ? validate_mm_rb+0xaa/0xc0
[  616.456840]  ? __vma_link_rb+0x26c/0x370
[  616.460894]  copy_process+0x4720/0x8780
[  616.464878]  ? __cleanup_sighand+0x70/0x70
[  616.469118]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  616.474649]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  616.480185]  ? page_swapcount+0x1d0/0x1d0
[  616.484343]  ? try_to_wake_up+0x10a/0x12f0
[  616.488583]  ? lock_downgrade+0x900/0x900
[  616.492729]  ? lock_downgrade+0x900/0x900
[  616.496882]  ? trace_hardirqs_off+0xb8/0x310
[  616.501287]  ? kasan_check_read+0x11/0x20
[  616.505431]  ? trace_hardirqs_on_caller+0x310/0x310
[  616.510446]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  616.515539]  ? try_to_wake_up+0x10a/0x12f0
[  616.519787]  ? print_usage_bug+0xc0/0xc0
[  616.523852]  ? migrate_swap_stop+0x930/0x930
[  616.528252]  ? __handle_mm_fault+0x9ab/0x53e0
[  616.532744]  ? graph_lock+0x170/0x170
[  616.536538]  ? print_usage_bug+0xc0/0xc0
[  616.540596]  ? __lock_acquire+0x7ec/0x4ec0
[  616.544837]  ? print_usage_bug+0xc0/0xc0
[  616.548906]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  616.554435]  ? reuse_swap_page+0x4bd/0x1520
[  616.558753]  ? swp_swapcount+0x530/0x530
[  616.562808]  ? __lock_acquire+0x7ec/0x4ec0
[  616.567032]  ? mark_held_locks+0x130/0x130
[  616.571254]  ? rcu_softirq_qs+0x20/0x20
[  616.575227]  ? __lock_acquire+0x7ec/0x4ec0
[  616.579457]  ? mark_held_locks+0x130/0x130
[  616.583683]  ? graph_lock+0x170/0x170
[  616.587474]  ? mark_held_locks+0x130/0x130
[  616.591703]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  616.597247]  ? check_preemption_disabled+0x48/0x200
[  616.602275]  ? find_held_lock+0x36/0x1c0
[  616.606342]  ? do_wp_page+0xa6f/0x1690
[  616.610236]  ? lock_downgrade+0x900/0x900
[  616.614387]  ? wake_up_page_bit+0x6f0/0x6f0
[  616.618707]  ? kasan_check_read+0x11/0x20
[  616.622844]  ? do_raw_spin_unlock+0xa7/0x2f0
[  616.627244]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  616.631816]  ? pgd_free+0x380/0x380
[  616.635452]  ? __lock_acquire+0x7ec/0x4ec0
[  616.639679]  ? _raw_spin_unlock+0x2c/0x50
[  616.643849]  ? do_wp_page+0x77c/0x1690
[  616.647746]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  616.652405]  ? find_held_lock+0x36/0x1c0
[  616.656473]  ? lock_release+0x970/0x970
[  616.660450]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  616.665981]  ? kasan_check_write+0x14/0x20
[  616.670209]  ? do_raw_spin_lock+0xc1/0x200
[  616.674436]  ? __handle_mm_fault+0x9ab/0x53e0
[  616.678925]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  616.683764]  ? __sb_end_write+0xd9/0x110
[  616.687833]  ? graph_lock+0x170/0x170
[  616.691629]  ? print_usage_bug+0xc0/0xc0
[  616.695723]  ? atime_needs_update+0x710/0x710
[  616.700209]  ? graph_lock+0x170/0x170
[  616.704000]  ? graph_lock+0x170/0x170
[  616.707801]  ? find_held_lock+0x36/0x1c0
[  616.711904]  ? __do_page_fault+0x6b7/0xec0
[  616.716135]  _do_fork+0x1cb/0x11c0
[  616.719671]  ? fork_idle+0x1d0/0x1d0
[  616.723376]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  616.728925]  ? check_preemption_disabled+0x48/0x200
[  616.733936]  ? kasan_check_write+0x14/0x20
[  616.738163]  ? up_read+0x225/0x2c0
[  616.741719]  ? up_read_non_owner+0x100/0x100
[  616.746134]  ? find_vma+0x34/0x190
[  616.749681]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  616.755245]  ? __do_page_fault+0x49c/0xec0
[  616.759475]  ? do_syscall_64+0x9a/0x820
[  616.763445]  ? do_syscall_64+0x9a/0x820
[  616.767418]  ? lockdep_hardirqs_on+0x421/0x5c0
[  616.771992]  ? trace_hardirqs_on+0xbd/0x310
[  616.776304]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  616.781664]  ? trace_hardirqs_off_caller+0x300/0x300
[  616.786765]  __x64_sys_clone+0xbf/0x150
[  616.790748]  do_syscall_64+0x1b9/0x820
[  616.794632]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  616.799986]  ? syscall_return_slowpath+0x5e0/0x5e0
[  616.804905]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  616.809741]  ? trace_hardirqs_off+0x310/0x310
[  616.814241]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  616.819771]  ? prepare_exit_to_usermode+0x291/0x3b0
[  616.824795]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  616.829646]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  616.834822] RIP: 0033:0x455c4a
[  616.838006] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  616.856894] RSP: 002b:00007fff9d17d960 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  616.864592] RAX: ffffffffffffffda RBX: 00007fff9d17d960 RCX: 0000000000455c4a
[  616.871850] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  616.879131] RBP: 00007fff9d17d9a0 R08: 0000000000000001 R09: 0000000000ea7940
[  616.886422] R10: 0000000000ea7c10 R11: 0000000000000246 R12: 0000000000000001
[  616.893682] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  616.904165] Memory limit reached of cgroup /syz1
[  616.909461] memory: usage 7216kB, limit 0kB, failcnt 68
[  616.914846] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  616.922163] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  616.928383] Memory cgroup stats for /syz1: cache:112KB rss:176KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:52KB inactive_file:0KB active_file:8KB unevictable:0KB
[  616.949014] Out of memory and no killable processes...
[  616.957178] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  616.970229] syz-executor1 cpuset=syz1 mems_allowed=0
[  616.975370] CPU: 0 PID: 23483 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  616.983852] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  616.993222] Call Trace:
[  616.995802]  dump_stack+0x1d3/0x2c4
[  616.999420]  ? dump_stack_print_info.cold.2+0x52/0x52
[  617.004608]  dump_header+0x27b/0xf72
[  617.008315]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  617.013233]  ? kasan_check_read+0x11/0x20
[  617.017400]  ? pagefault_out_of_memory+0x197/0x197
[  617.022336]  ? rcu_read_unlock+0x33/0x60
[  617.026405]  ? mem_cgroup_iter+0x514/0x1160
[  617.030723]  ? find_held_lock+0x36/0x1c0
[  617.034783]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  617.039547]  ? mark_held_locks+0xc7/0x130
[  617.043688]  ? _raw_spin_unlock_irq+0x27/0x80
[  617.048170]  ? _raw_spin_unlock_irq+0x27/0x80
[  617.052655]  ? lockdep_hardirqs_on+0x421/0x5c0
[  617.057225]  ? trace_hardirqs_on+0xbd/0x310
[  617.061535]  ? kasan_check_read+0x11/0x20
[  617.065671]  ? css_task_iter_end+0x222/0x490
[  617.070068]  ? trace_hardirqs_off_caller+0x300/0x300
[  617.075172]  ? kasan_check_write+0x14/0x20
[  617.079399]  ? do_raw_spin_lock+0xc1/0x200
[  617.083622]  ? _raw_spin_unlock_irq+0x60/0x80
[  617.088109]  ? css_task_iter_end+0x2ce/0x490
[  617.092504]  ? cgroup_procs_next+0x70/0x70
[  617.096725]  ? _raw_spin_unlock_irq+0x60/0x80
[  617.101209]  ? oom_badness+0xaa0/0xaa0
[  617.105099]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  617.109844]  ? mem_cgroup_iter_break+0x30/0x30
[  617.114422]  ? mark_held_locks+0xc7/0x130
[  617.118561]  out_of_memory.cold.30+0xf/0x184
[  617.122955]  ? lockdep_hardirqs_on+0x421/0x5c0
[  617.127553]  ? kasan_check_read+0x11/0x20
[  617.131694]  ? oom_killer_disable+0x3a0/0x3a0
[  617.136179]  ? kasan_check_write+0x14/0x20
[  617.140422]  ? do_raw_spin_lock+0xc1/0x200
[  617.144654]  mem_cgroup_out_of_memory+0x15e/0x210
[  617.149486]  ? memcg_memory_event+0x40/0x40
[  617.153797]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  617.158632]  ? page_counter_try_charge+0x1c1/0x220
[  617.163551]  try_charge+0xb1a/0x1690
[  617.167252]  ? lock_downgrade+0x900/0x900
[  617.171390]  ? check_preemption_disabled+0x48/0x200
[  617.176402]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  617.182450]  ? find_held_lock+0x36/0x1c0
[  617.186522]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  617.191358]  ? lock_downgrade+0x900/0x900
[  617.195492]  ? check_preemption_disabled+0x48/0x200
[  617.200498]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  617.205412]  ? kasan_check_read+0x11/0x20
[  617.209548]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  617.214811]  ? rcu_softirq_qs+0x20/0x20
[  617.218780]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  617.223616]  memcg_kmem_charge_memcg+0x7c/0x120
[  617.228273]  ? memcg_kmem_put_cache+0xb0/0xb0
[  617.232756]  ? __lock_is_held+0xb5/0x140
[  617.236807]  memcg_kmem_charge+0x135/0x300
[  617.241034]  __alloc_pages_nodemask+0x89c/0xdd0
[  617.245700]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  617.250717]  ? lock_downgrade+0x900/0x900
[  617.254859]  ? kasan_check_read+0x11/0x20
[  617.258996]  ? do_raw_spin_unlock+0xa7/0x2f0
[  617.263394]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  617.267966]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  617.273516]  alloc_pages_current+0x10c/0x210
[  617.277922]  __pmd_alloc+0x3e/0x450
[  617.281543]  ? pmd_val+0x100/0x100
[  617.285071]  pmd_alloc+0x10f/0x180
[  617.288618]  copy_page_range+0x6cf/0x26f0
[  617.292780]  ? rb_insert_color_cached+0x14b0/0x14b0
[  617.297795]  ? mark_held_locks+0x130/0x130
[  617.302026]  ? pmd_alloc+0x180/0x180
[  617.305731]  ? graph_lock+0x170/0x170
[  617.309520]  ? kasan_slab_alloc+0x12/0x20
[  617.313669]  ? kmem_cache_alloc+0x12e/0x730
[  617.317985]  ? graph_lock+0x170/0x170
[  617.321772]  ? __x64_sys_clone+0xbf/0x150
[  617.325910]  ? do_syscall_64+0x1b9/0x820
[  617.329994]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  617.335353]  ? find_held_lock+0x36/0x1c0
[  617.339406]  ? graph_lock+0x170/0x170
[  617.343196]  ? graph_lock+0x170/0x170
[  617.346983]  ? lock_downgrade+0x900/0x900
[  617.351122]  ? lock_release+0x970/0x970
[  617.355096]  ? find_held_lock+0x36/0x1c0
[  617.359153]  ? copy_process+0x454a/0x8780
[  617.363289]  ? lock_downgrade+0x900/0x900
[  617.367433]  ? lock_release+0x970/0x970
[  617.371397]  ? ttwu_stat+0x5c0/0x5c0
[  617.375113]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  617.380122]  ? vma_compute_subtree_gap+0x160/0x240
[  617.385038]  ? validate_mm_rb+0xaa/0xc0
[  617.389133]  ? __vma_link_rb+0x26c/0x370
[  617.393188]  copy_process+0x4720/0x8780
[  617.397166]  ? __cleanup_sighand+0x70/0x70
[  617.401396]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  617.406918]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  617.412675]  ? page_swapcount+0x1d0/0x1d0
[  617.416816]  ? try_to_wake_up+0x10a/0x12f0
[  617.421039]  ? lock_downgrade+0x900/0x900
[  617.425173]  ? lock_downgrade+0x900/0x900
[  617.429313]  ? trace_hardirqs_off+0xb8/0x310
[  617.433708]  ? kasan_check_read+0x11/0x20
[  617.437844]  ? trace_hardirqs_on_caller+0x310/0x310
[  617.442880]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  617.447977]  ? try_to_wake_up+0x10a/0x12f0
[  617.452201]  ? print_usage_bug+0xc0/0xc0
[  617.456246]  ? migrate_swap_stop+0x930/0x930
[  617.460645]  ? __handle_mm_fault+0x9ab/0x53e0
[  617.465127]  ? graph_lock+0x170/0x170
[  617.468913]  ? print_usage_bug+0xc0/0xc0
[  617.472967]  ? __lock_acquire+0x7ec/0x4ec0
[  617.477193]  ? print_usage_bug+0xc0/0xc0
[  617.481246]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  617.486771]  ? reuse_swap_page+0x4bd/0x1520
[  617.491094]  ? swp_swapcount+0x530/0x530
[  617.495149]  ? __lock_acquire+0x7ec/0x4ec0
[  617.499372]  ? mark_held_locks+0x130/0x130
[  617.503593]  ? rcu_softirq_qs+0x20/0x20
[  617.507563]  ? __lock_acquire+0x7ec/0x4ec0
[  617.511790]  ? mark_held_locks+0x130/0x130
[  617.516010]  ? graph_lock+0x170/0x170
[  617.519798]  ? mark_held_locks+0x130/0x130
[  617.524022]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  617.529548]  ? check_preemption_disabled+0x48/0x200
[  617.534559]  ? find_held_lock+0x36/0x1c0
[  617.538613]  ? do_wp_page+0xa6f/0x1690
[  617.542490]  ? lock_downgrade+0x900/0x900
[  617.546624]  ? wake_up_page_bit+0x6f0/0x6f0
[  617.550935]  ? kasan_check_read+0x11/0x20
[  617.555079]  ? do_raw_spin_unlock+0xa7/0x2f0
[  617.559493]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  617.564060]  ? pgd_free+0x380/0x380
[  617.567681]  ? __lock_acquire+0x7ec/0x4ec0
[  617.571907]  ? _raw_spin_unlock+0x2c/0x50
[  617.576040]  ? do_wp_page+0x77c/0x1690
[  617.579914]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  617.584570]  ? find_held_lock+0x36/0x1c0
[  617.588624]  ? lock_release+0x970/0x970
[  617.592593]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  617.598123]  ? kasan_check_write+0x14/0x20
[  617.602345]  ? do_raw_spin_lock+0xc1/0x200
[  617.606594]  ? __handle_mm_fault+0x9ab/0x53e0
[  617.611094]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  617.615938]  ? __sb_end_write+0xd9/0x110
[  617.619994]  ? graph_lock+0x170/0x170
[  617.623784]  ? print_usage_bug+0xc0/0xc0
[  617.627854]  ? atime_needs_update+0x710/0x710
[  617.632339]  ? graph_lock+0x170/0x170
[  617.636131]  ? graph_lock+0x170/0x170
[  617.639927]  ? find_held_lock+0x36/0x1c0
[  617.644011]  ? __do_page_fault+0x6b7/0xec0
[  617.648238]  _do_fork+0x1cb/0x11c0
[  617.651767]  ? fork_idle+0x1d0/0x1d0
[  617.655467]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  617.660991]  ? check_preemption_disabled+0x48/0x200
[  617.665996]  ? kasan_check_write+0x14/0x20
[  617.670220]  ? up_read+0x225/0x2c0
[  617.673746]  ? up_read_non_owner+0x100/0x100
[  617.678142]  ? find_vma+0x34/0x190
[  617.681692]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  617.687218]  ? __do_page_fault+0x49c/0xec0
[  617.691441]  ? do_syscall_64+0x9a/0x820
[  617.695402]  ? do_syscall_64+0x9a/0x820
[  617.699363]  ? lockdep_hardirqs_on+0x421/0x5c0
[  617.703932]  ? trace_hardirqs_on+0xbd/0x310
[  617.708241]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  617.713595]  ? trace_hardirqs_off_caller+0x300/0x300
[  617.718688]  __x64_sys_clone+0xbf/0x150
[  617.722653]  do_syscall_64+0x1b9/0x820
[  617.726526]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  617.731887]  ? syscall_return_slowpath+0x5e0/0x5e0
[  617.736850]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  617.741701]  ? trace_hardirqs_off+0x310/0x310
[  617.746192]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  617.751720]  ? prepare_exit_to_usermode+0x291/0x3b0
[  617.756725]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  617.761561]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  617.766735] RIP: 0033:0x455c4a
[  617.769917] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  617.788852] RSP: 002b:00007fff9d17d960 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  617.796555] RAX: ffffffffffffffda RBX: 00007fff9d17d960 RCX: 0000000000455c4a
[  617.803813] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  617.811082] RBP: 00007fff9d17d9a0 R08: 0000000000000001 R09: 0000000000ea7940
[  617.818351] R10: 0000000000ea7c10 R11: 0000000000000246 R12: 0000000000000001
[  617.825616] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  617.834205] Memory limit reached of cgroup /syz1
[  617.839138] memory: usage 7220kB, limit 0kB, failcnt 76
[  617.844520] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  617.851415] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  617.857596] Memory cgroup stats for /syz1: cache:112KB rss:176KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:52KB inactive_file:4KB active_file:4KB unevictable:0KB
[  617.877845] Out of memory and no killable processes...
[  617.884577] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  617.897579] syz-executor1 cpuset=syz1 mems_allowed=0
[  617.902718] CPU: 0 PID: 23483 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  617.911199] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  617.920547] Call Trace:
[  617.923134]  dump_stack+0x1d3/0x2c4
[  617.926752]  ? dump_stack_print_info.cold.2+0x52/0x52
[  617.931962]  dump_header+0x27b/0xf72
[  617.935667]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  617.940586]  ? kasan_check_read+0x11/0x20
[  617.944734]  ? pagefault_out_of_memory+0x197/0x197
[  617.949681]  ? rcu_read_unlock+0x33/0x60
[  617.953735]  ? mem_cgroup_iter+0x514/0x1160
[  617.958047]  ? find_held_lock+0x36/0x1c0
[  617.962111]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  617.966853]  ? mark_held_locks+0xc7/0x130
[  617.970993]  ? _raw_spin_unlock_irq+0x27/0x80
[  617.975476]  ? _raw_spin_unlock_irq+0x27/0x80
[  617.979963]  ? lockdep_hardirqs_on+0x421/0x5c0
[  617.984532]  ? trace_hardirqs_on+0xbd/0x310
[  617.988840]  ? kasan_check_read+0x11/0x20
[  617.992972]  ? css_task_iter_end+0x222/0x490
[  617.997378]  ? trace_hardirqs_off_caller+0x300/0x300
[  618.002482]  ? kasan_check_write+0x14/0x20
[  618.006704]  ? do_raw_spin_lock+0xc1/0x200
[  618.011055]  ? _raw_spin_unlock_irq+0x60/0x80
[  618.015555]  ? css_task_iter_end+0x2ce/0x490
[  618.019954]  ? cgroup_procs_next+0x70/0x70
[  618.024180]  ? _raw_spin_unlock_irq+0x60/0x80
[  618.028664]  ? oom_badness+0xaa0/0xaa0
[  618.032541]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  618.037287]  ? mem_cgroup_iter_break+0x30/0x30
[  618.041867]  ? mark_held_locks+0xc7/0x130
[  618.046009]  out_of_memory.cold.30+0xf/0x184
[  618.050406]  ? lockdep_hardirqs_on+0x421/0x5c0
[  618.054979]  ? kasan_check_read+0x11/0x20
[  618.059170]  ? oom_killer_disable+0x3a0/0x3a0
[  618.063671]  ? kasan_check_write+0x14/0x20
[  618.067895]  ? do_raw_spin_lock+0xc1/0x200
[  618.072130]  mem_cgroup_out_of_memory+0x15e/0x210
[  618.076959]  ? memcg_memory_event+0x40/0x40
[  618.081274]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  618.086109]  ? page_counter_try_charge+0x1c1/0x220
[  618.091037]  try_charge+0xb1a/0x1690
[  618.094745]  ? lock_downgrade+0x900/0x900
[  618.098881]  ? check_preemption_disabled+0x48/0x200
[  618.103895]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  618.109944]  ? find_held_lock+0x36/0x1c0
[  618.114001]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  618.118840]  ? lock_downgrade+0x900/0x900
[  618.122975]  ? check_preemption_disabled+0x48/0x200
[  618.127980]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  618.132898]  ? kasan_check_read+0x11/0x20
[  618.137044]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  618.142314]  ? rcu_softirq_qs+0x20/0x20
[  618.146308]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  618.151156]  memcg_kmem_charge_memcg+0x7c/0x120
[  618.155826]  ? memcg_kmem_put_cache+0xb0/0xb0
[  618.160331]  ? kasan_kmalloc+0xc7/0xe0
[  618.164209]  ? kmem_cache_alloc+0x12e/0x730
[  618.168517]  ? __pmd_alloc+0xc2/0x450
[  618.172305]  ? copy_page_range+0x6cf/0x26f0
[  618.176615]  memcg_kmem_charge+0x135/0x300
[  618.180845]  __alloc_pages_nodemask+0x89c/0xdd0
[  618.185502]  ? find_held_lock+0x36/0x1c0
[  618.189557]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  618.194563]  ? find_held_lock+0x36/0x1c0
[  618.198619]  ? lock_downgrade+0x900/0x900
[  618.202754]  ? __lock_is_held+0xb5/0x140
[  618.206806]  ? kasan_check_read+0x11/0x20
[  618.210941]  ? do_raw_spin_unlock+0xa7/0x2f0
[  618.215337]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  618.219913]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  618.225440]  alloc_pages_current+0x10c/0x210
[  618.229841]  pte_alloc_one+0x1b/0x1a0
[  618.233650]  __pte_alloc+0x2a/0x350
[  618.237266]  copy_page_range+0x18a2/0x26f0
[  618.241493]  ? rb_insert_color_cached+0x14b0/0x14b0
[  618.246521]  ? pmd_alloc+0x180/0x180
[  618.250226]  ? graph_lock+0x170/0x170
[  618.254013]  ? kasan_slab_alloc+0x12/0x20
[  618.258149]  ? kmem_cache_alloc+0x12e/0x730
[  618.262459]  ? graph_lock+0x170/0x170
[  618.266244]  ? __x64_sys_clone+0xbf/0x150
[  618.270379]  ? do_syscall_64+0x1b9/0x820
[  618.274429]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  618.279787]  ? find_held_lock+0x36/0x1c0
[  618.283840]  ? graph_lock+0x170/0x170
[  618.287637]  ? graph_lock+0x170/0x170
[  618.291425]  ? lock_downgrade+0x900/0x900
[  618.295562]  ? lock_release+0x970/0x970
[  618.299672]  ? find_held_lock+0x36/0x1c0
[  618.303724]  ? copy_process+0x454a/0x8780
[  618.307862]  ? lock_downgrade+0x900/0x900
[  618.312002]  ? lock_release+0x970/0x970
[  618.315960]  ? ttwu_stat+0x5c0/0x5c0
[  618.319672]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  618.324674]  ? vma_compute_subtree_gap+0x160/0x240
[  618.329596]  ? validate_mm_rb+0xaa/0xc0
[  618.333558]  ? __vma_link_rb+0x26c/0x370
[  618.337610]  copy_process+0x4720/0x8780
[  618.341593]  ? __cleanup_sighand+0x70/0x70
[  618.345821]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  618.351348]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  618.356890]  ? page_swapcount+0x1d0/0x1d0
[  618.361030]  ? try_to_wake_up+0x10a/0x12f0
[  618.365251]  ? lock_downgrade+0x900/0x900
[  618.369387]  ? lock_downgrade+0x900/0x900
[  618.373542]  ? trace_hardirqs_off+0xb8/0x310
[  618.377953]  ? kasan_check_read+0x11/0x20
[  618.382097]  ? trace_hardirqs_on_caller+0x310/0x310
[  618.387112]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  618.392203]  ? try_to_wake_up+0x10a/0x12f0
[  618.396429]  ? print_usage_bug+0xc0/0xc0
[  618.400476]  ? migrate_swap_stop+0x930/0x930
[  618.404870]  ? __handle_mm_fault+0x9ab/0x53e0
[  618.409359]  ? graph_lock+0x170/0x170
[  618.413169]  ? print_usage_bug+0xc0/0xc0
[  618.417223]  ? __lock_acquire+0x7ec/0x4ec0
[  618.421448]  ? print_usage_bug+0xc0/0xc0
[  618.425500]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  618.431038]  ? reuse_swap_page+0x4bd/0x1520
[  618.435352]  ? swp_swapcount+0x530/0x530
[  618.439408]  ? __lock_acquire+0x7ec/0x4ec0
[  618.443628]  ? mark_held_locks+0x130/0x130
[  618.447845]  ? rcu_softirq_qs+0x20/0x20
[  618.451808]  ? __lock_acquire+0x7ec/0x4ec0
[  618.456033]  ? mark_held_locks+0x130/0x130
[  618.460258]  ? graph_lock+0x170/0x170
[  618.464046]  ? mark_held_locks+0x130/0x130
[  618.468271]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  618.473800]  ? check_preemption_disabled+0x48/0x200
[  618.478814]  ? find_held_lock+0x36/0x1c0
[  618.482864]  ? do_wp_page+0xa6f/0x1690
[  618.486758]  ? lock_downgrade+0x900/0x900
[  618.490908]  ? wake_up_page_bit+0x6f0/0x6f0
[  618.495220]  ? kasan_check_read+0x11/0x20
[  618.499355]  ? do_raw_spin_unlock+0xa7/0x2f0
[  618.503752]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  618.508331]  ? pgd_free+0x380/0x380
[  618.511955]  ? __lock_acquire+0x7ec/0x4ec0
[  618.516199]  ? _raw_spin_unlock+0x2c/0x50
[  618.520343]  ? do_wp_page+0x77c/0x1690
[  618.524232]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  618.528891]  ? find_held_lock+0x36/0x1c0
[  618.532941]  ? lock_release+0x970/0x970
[  618.536907]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  618.542448]  ? kasan_check_write+0x14/0x20
[  618.546672]  ? do_raw_spin_lock+0xc1/0x200
[  618.550898]  ? __handle_mm_fault+0x9ab/0x53e0
[  618.555383]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  618.560210]  ? __sb_end_write+0xd9/0x110
[  618.564259]  ? graph_lock+0x170/0x170
[  618.568052]  ? print_usage_bug+0xc0/0xc0
[  618.572115]  ? atime_needs_update+0x710/0x710
[  618.576598]  ? graph_lock+0x170/0x170
[  618.580397]  ? graph_lock+0x170/0x170
[  618.584189]  ? find_held_lock+0x36/0x1c0
[  618.588242]  ? __do_page_fault+0x6b7/0xec0
[  618.592469]  _do_fork+0x1cb/0x11c0
[  618.596003]  ? fork_idle+0x1d0/0x1d0
[  618.599704]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  618.605229]  ? check_preemption_disabled+0x48/0x200
[  618.610241]  ? kasan_check_write+0x14/0x20
[  618.614477]  ? up_read+0x225/0x2c0
[  618.618005]  ? up_read_non_owner+0x100/0x100
[  618.622403]  ? find_vma+0x34/0x190
[  618.625930]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  618.631453]  ? __do_page_fault+0x49c/0xec0
[  618.635691]  ? do_syscall_64+0x9a/0x820
[  618.639664]  ? do_syscall_64+0x9a/0x820
[  618.643624]  ? lockdep_hardirqs_on+0x421/0x5c0
[  618.648197]  ? trace_hardirqs_on+0xbd/0x310
[  618.652507]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  618.657855]  ? trace_hardirqs_off_caller+0x300/0x300
[  618.662966]  __x64_sys_clone+0xbf/0x150
[  618.666930]  do_syscall_64+0x1b9/0x820
[  618.670809]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  618.676179]  ? syscall_return_slowpath+0x5e0/0x5e0
[  618.681103]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  618.685948]  ? trace_hardirqs_off+0x310/0x310
[  618.690434]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  618.695957]  ? prepare_exit_to_usermode+0x291/0x3b0
[  618.700964]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  618.705798]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  618.710975] RIP: 0033:0x455c4a
[  618.714166] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  618.733071] RSP: 002b:00007fff9d17d960 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  618.740805] RAX: ffffffffffffffda RBX: 00007fff9d17d960 RCX: 0000000000455c4a
[  618.748059] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  618.755340] RBP: 00007fff9d17d9a0 R08: 0000000000000001 R09: 0000000000ea7940
[  618.762596] R10: 0000000000ea7c10 R11: 0000000000000246 R12: 0000000000000001
[  618.769850] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  618.779733] Memory limit reached of cgroup /syz1
[  618.784545] memory: usage 7204kB, limit 0kB, failcnt 84
[  618.789979] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  618.796745] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  618.802946] Memory cgroup stats for /syz1: cache:112KB rss:176KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:52KB inactive_file:4KB active_file:4KB unevictable:0KB
[  618.823259] Out of memory and no killable processes...
[  618.830189] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  618.843162] syz-executor1 cpuset=syz1 mems_allowed=0
[  618.848409] CPU: 0 PID: 23483 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  618.856892] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  618.866229] Call Trace:
[  618.868810]  dump_stack+0x1d3/0x2c4
[  618.872426]  ? dump_stack_print_info.cold.2+0x52/0x52
[  618.877613]  dump_header+0x27b/0xf72
[  618.881317]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  618.886247]  ? kasan_check_read+0x11/0x20
[  618.890384]  ? pagefault_out_of_memory+0x197/0x197
[  618.895305]  ? rcu_read_unlock+0x33/0x60
[  618.899358]  ? mem_cgroup_iter+0x514/0x1160
[  618.903669]  ? find_held_lock+0x36/0x1c0
[  618.907722]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  618.912467]  ? mark_held_locks+0xc7/0x130
[  618.916603]  ? _raw_spin_unlock_irq+0x27/0x80
[  618.921096]  ? _raw_spin_unlock_irq+0x27/0x80
[  618.925580]  ? lockdep_hardirqs_on+0x421/0x5c0
[  618.930153]  ? trace_hardirqs_on+0xbd/0x310
[  618.934465]  ? kasan_check_read+0x11/0x20
[  618.938599]  ? css_task_iter_end+0x222/0x490
[  618.942995]  ? trace_hardirqs_off_caller+0x300/0x300
[  618.948101]  ? kasan_check_write+0x14/0x20
[  618.952321]  ? do_raw_spin_lock+0xc1/0x200
[  618.956586]  ? _raw_spin_unlock_irq+0x60/0x80
[  618.961083]  ? css_task_iter_end+0x2ce/0x490
[  618.965500]  ? cgroup_procs_next+0x70/0x70
[  618.969738]  ? _raw_spin_unlock_irq+0x60/0x80
[  618.974221]  ? oom_badness+0xaa0/0xaa0
[  618.978117]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  618.982866]  ? mem_cgroup_iter_break+0x30/0x30
[  618.987446]  ? mark_held_locks+0xc7/0x130
[  618.991602]  out_of_memory.cold.30+0xf/0x184
[  618.996023]  ? lockdep_hardirqs_on+0x421/0x5c0
[  619.000594]  ? kasan_check_read+0x11/0x20
[  619.004729]  ? oom_killer_disable+0x3a0/0x3a0
[  619.009210]  ? kasan_check_write+0x14/0x20
[  619.013430]  ? do_raw_spin_lock+0xc1/0x200
[  619.017660]  mem_cgroup_out_of_memory+0x15e/0x210
[  619.022490]  ? memcg_memory_event+0x40/0x40
[  619.026796]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  619.031630]  ? page_counter_try_charge+0x1c1/0x220
[  619.036548]  try_charge+0xb1a/0x1690
[  619.040251]  ? lock_downgrade+0x900/0x900
[  619.044385]  ? check_preemption_disabled+0x48/0x200
[  619.049393]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  619.055438]  ? find_held_lock+0x36/0x1c0
[  619.059490]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  619.064320]  ? lock_downgrade+0x900/0x900
[  619.068458]  ? check_preemption_disabled+0x48/0x200
[  619.073465]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  619.078383]  ? kasan_check_read+0x11/0x20
[  619.082516]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  619.087780]  ? rcu_softirq_qs+0x20/0x20
[  619.091760]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  619.096607]  memcg_kmem_charge_memcg+0x7c/0x120
[  619.101265]  ? memcg_kmem_put_cache+0xb0/0xb0
[  619.105745]  ? kmem_cache_alloc+0x12e/0x730
[  619.110063]  ? print_usage_bug+0xc0/0xc0
[  619.114125]  memcg_kmem_charge+0x135/0x300
[  619.118354]  __alloc_pages_nodemask+0x89c/0xdd0
[  619.123014]  ? __lock_acquire+0x7ec/0x4ec0
[  619.127247]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  619.132261]  ? print_usage_bug+0xc0/0xc0
[  619.136322]  ? find_held_lock+0x36/0x1c0
[  619.140374]  ? __lock_acquire+0x7ec/0x4ec0
[  619.144600]  ? is_bpf_text_address+0xac/0x170
[  619.149098]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  619.154632]  alloc_pages_current+0x10c/0x210
[  619.159030]  pte_alloc_one+0x1b/0x1a0
[  619.162817]  __pte_alloc+0x2a/0x350
[  619.166432]  copy_page_range+0x18a2/0x26f0
[  619.170657]  ? rb_insert_color_cached+0x14b0/0x14b0
[  619.175681]  ? pmd_alloc+0x180/0x180
[  619.179395]  ? graph_lock+0x170/0x170
[  619.183182]  ? kasan_slab_alloc+0x12/0x20
[  619.187325]  ? kmem_cache_alloc+0x12e/0x730
[  619.191638]  ? graph_lock+0x170/0x170
[  619.195425]  ? __x64_sys_clone+0xbf/0x150
[  619.199558]  ? do_syscall_64+0x1b9/0x820
[  619.203605]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  619.208964]  ? find_held_lock+0x36/0x1c0
[  619.213018]  ? anon_vma_fork+0x5ef/0x820
[  619.217063]  ? lock_downgrade+0x900/0x900
[  619.221212]  ? lock_release+0x970/0x970
[  619.225171]  ? ttwu_stat+0x5c0/0x5c0
[  619.228873]  ? __lock_is_held+0xb5/0x140
[  619.232927]  ? up_write+0x7b/0x220
[  619.236471]  ? down_write_nested+0x130/0x130
[  619.240873]  ? anon_vma_interval_tree_insert+0x2c9/0x370
[  619.246318]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  619.251320]  ? vma_compute_subtree_gap+0x160/0x240
[  619.256235]  ? validate_mm_rb+0xaa/0xc0
[  619.260199]  ? __vma_link_rb+0x26c/0x370
[  619.264250]  copy_process+0x4720/0x8780
[  619.268230]  ? __cleanup_sighand+0x70/0x70
[  619.272460]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  619.277983]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  619.283515]  ? page_swapcount+0x1d0/0x1d0
[  619.287653]  ? try_to_wake_up+0x10a/0x12f0
[  619.291874]  ? lock_downgrade+0x900/0x900
[  619.296007]  ? lock_downgrade+0x900/0x900
[  619.300156]  ? trace_hardirqs_off+0xb8/0x310
[  619.304552]  ? kasan_check_read+0x11/0x20
[  619.308686]  ? trace_hardirqs_on_caller+0x310/0x310
[  619.313701]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  619.318827]  ? try_to_wake_up+0x10a/0x12f0
[  619.323057]  ? print_usage_bug+0xc0/0xc0
[  619.327114]  ? migrate_swap_stop+0x930/0x930
[  619.331517]  ? __handle_mm_fault+0x9ab/0x53e0
[  619.336033]  ? graph_lock+0x170/0x170
[  619.339824]  ? print_usage_bug+0xc0/0xc0
[  619.343877]  ? __lock_acquire+0x7ec/0x4ec0
[  619.348115]  ? print_usage_bug+0xc0/0xc0
[  619.352172]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  619.357704]  ? reuse_swap_page+0x4bd/0x1520
[  619.362014]  ? swp_swapcount+0x530/0x530
[  619.366068]  ? __lock_acquire+0x7ec/0x4ec0
[  619.370300]  ? mark_held_locks+0x130/0x130
[  619.374522]  ? rcu_softirq_qs+0x20/0x20
[  619.378489]  ? __lock_acquire+0x7ec/0x4ec0
[  619.382716]  ? mark_held_locks+0x130/0x130
[  619.386942]  ? graph_lock+0x170/0x170
[  619.390745]  ? mark_held_locks+0x130/0x130
[  619.394970]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  619.400500]  ? check_preemption_disabled+0x48/0x200
[  619.405510]  ? find_held_lock+0x36/0x1c0
[  619.409563]  ? do_wp_page+0xa6f/0x1690
[  619.413642]  ? lock_downgrade+0x900/0x900
[  619.417778]  ? wake_up_page_bit+0x6f0/0x6f0
[  619.422101]  ? kasan_check_read+0x11/0x20
[  619.426234]  ? do_raw_spin_unlock+0xa7/0x2f0
[  619.430630]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  619.435199]  ? pgd_free+0x380/0x380
[  619.438815]  ? __lock_acquire+0x7ec/0x4ec0
[  619.443042]  ? _raw_spin_unlock+0x2c/0x50
[  619.447175]  ? do_wp_page+0x77c/0x1690
[  619.451055]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  619.455724]  ? find_held_lock+0x36/0x1c0
[  619.459774]  ? lock_release+0x970/0x970
[  619.463742]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  619.469273]  ? kasan_check_write+0x14/0x20
[  619.473499]  ? do_raw_spin_lock+0xc1/0x200
[  619.477729]  ? __handle_mm_fault+0x9ab/0x53e0
[  619.482216]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  619.487047]  ? __sb_end_write+0xd9/0x110
[  619.491110]  ? graph_lock+0x170/0x170
[  619.494946]  ? print_usage_bug+0xc0/0xc0
[  619.499000]  ? atime_needs_update+0x710/0x710
[  619.503486]  ? graph_lock+0x170/0x170
[  619.507271]  ? graph_lock+0x170/0x170
[  619.511063]  ? find_held_lock+0x36/0x1c0
[  619.515127]  ? __do_page_fault+0x6b7/0xec0
[  619.519364]  _do_fork+0x1cb/0x11c0
[  619.522896]  ? fork_idle+0x1d0/0x1d0
[  619.526598]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  619.532139]  ? check_preemption_disabled+0x48/0x200
[  619.537150]  ? kasan_check_write+0x14/0x20
[  619.541375]  ? up_read+0x225/0x2c0
[  619.544903]  ? up_read_non_owner+0x100/0x100
[  619.549301]  ? find_vma+0x34/0x190
[  619.552829]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  619.558358]  ? __do_page_fault+0x49c/0xec0
[  619.562581]  ? do_syscall_64+0x9a/0x820
[  619.566540]  ? do_syscall_64+0x9a/0x820
[  619.570503]  ? lockdep_hardirqs_on+0x421/0x5c0
[  619.575085]  ? trace_hardirqs_on+0xbd/0x310
[  619.579404]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  619.584773]  ? trace_hardirqs_off_caller+0x300/0x300
[  619.589871]  __x64_sys_clone+0xbf/0x150
[  619.593834]  do_syscall_64+0x1b9/0x820
[  619.597709]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  619.603059]  ? syscall_return_slowpath+0x5e0/0x5e0
[  619.607986]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  619.612817]  ? trace_hardirqs_off+0x310/0x310
[  619.617300]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  619.622823]  ? prepare_exit_to_usermode+0x291/0x3b0
[  619.627834]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  619.632687]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  619.637863] RIP: 0033:0x455c4a
[  619.641053] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  619.659949] RSP: 002b:00007fff9d17d960 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  619.667645] RAX: ffffffffffffffda RBX: 00007fff9d17d960 RCX: 0000000000455c4a
[  619.674901] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  619.682175] RBP: 00007fff9d17d9a0 R08: 0000000000000001 R09: 0000000000ea7940
[  619.689448] R10: 0000000000ea7c10 R11: 0000000000000246 R12: 0000000000000001
[  619.696708] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  619.705736] Memory limit reached of cgroup /syz1
[  619.710647] memory: usage 7192kB, limit 0kB, failcnt 92
[  619.716015] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  619.722832] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  619.729021] Memory cgroup stats for /syz1: cache:112KB rss:176KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:52KB inactive_file:4KB active_file:4KB unevictable:0KB
[  619.749239] Out of memory and no killable processes...
[  619.756063] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  619.769060] syz-executor1 cpuset=syz1 mems_allowed=0
[  619.774224] CPU: 0 PID: 23483 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  619.782695] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  619.792031] Call Trace:
[  619.794618]  dump_stack+0x1d3/0x2c4
[  619.798235]  ? dump_stack_print_info.cold.2+0x52/0x52
[  619.803431]  dump_header+0x27b/0xf72
[  619.807131]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  619.812044]  ? kasan_check_read+0x11/0x20
[  619.816189]  ? pagefault_out_of_memory+0x197/0x197
[  619.821131]  ? rcu_read_unlock+0x33/0x60
[  619.825177]  ? mem_cgroup_iter+0x514/0x1160
[  619.829493]  ? find_held_lock+0x36/0x1c0
[  619.833545]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  619.838287]  ? mark_held_locks+0xc7/0x130
[  619.842427]  ? _raw_spin_unlock_irq+0x27/0x80
[  619.846905]  ? _raw_spin_unlock_irq+0x27/0x80
[  619.851390]  ? lockdep_hardirqs_on+0x421/0x5c0
[  619.855958]  ? trace_hardirqs_on+0xbd/0x310
[  619.860266]  ? kasan_check_read+0x11/0x20
[  619.864399]  ? css_task_iter_end+0x222/0x490
[  619.868799]  ? trace_hardirqs_off_caller+0x300/0x300
[  619.873891]  ? kasan_check_write+0x14/0x20
[  619.878117]  ? do_raw_spin_lock+0xc1/0x200
[  619.882344]  ? _raw_spin_unlock_irq+0x60/0x80
[  619.886824]  ? css_task_iter_end+0x2ce/0x490
[  619.891245]  ? cgroup_procs_next+0x70/0x70
[  619.895467]  ? _raw_spin_unlock_irq+0x60/0x80
[  619.899950]  ? oom_badness+0xaa0/0xaa0
[  619.903830]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  619.908577]  ? mem_cgroup_iter_break+0x30/0x30
[  619.913163]  ? mark_held_locks+0xc7/0x130
[  619.917301]  out_of_memory.cold.30+0xf/0x184
[  619.921699]  ? lockdep_hardirqs_on+0x421/0x5c0
[  619.926291]  ? kasan_check_read+0x11/0x20
[  619.930427]  ? oom_killer_disable+0x3a0/0x3a0
[  619.934935]  ? kasan_check_write+0x14/0x20
[  619.939164]  ? do_raw_spin_lock+0xc1/0x200
[  619.943481]  mem_cgroup_out_of_memory+0x15e/0x210
[  619.948312]  ? memcg_memory_event+0x40/0x40
[  619.952623]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  619.957454]  ? page_counter_try_charge+0x1c1/0x220
[  619.962372]  try_charge+0xb1a/0x1690
[  619.966070]  ? lock_downgrade+0x900/0x900
[  619.970218]  ? check_preemption_disabled+0x48/0x200
[  619.975246]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  619.981293]  ? find_held_lock+0x36/0x1c0
[  619.985348]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  619.990179]  ? lock_downgrade+0x900/0x900
[  619.994322]  ? check_preemption_disabled+0x48/0x200
[  619.999358]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  620.004305]  ? kasan_check_read+0x11/0x20
[  620.008445]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  620.013707]  ? rcu_softirq_qs+0x20/0x20
[  620.017680]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  620.022517]  memcg_kmem_charge_memcg+0x7c/0x120
[  620.027178]  ? memcg_kmem_put_cache+0xb0/0xb0
[  620.031686]  ? kmem_cache_alloc+0x12e/0x730
[  620.035999]  ? print_usage_bug+0xc0/0xc0
[  620.040057]  memcg_kmem_charge+0x135/0x300
[  620.044291]  __alloc_pages_nodemask+0x89c/0xdd0
[  620.048950]  ? __lock_acquire+0x7ec/0x4ec0
[  620.053178]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  620.058198]  ? print_usage_bug+0xc0/0xc0
[  620.062275]  ? find_held_lock+0x36/0x1c0
[  620.066348]  ? __lock_acquire+0x7ec/0x4ec0
[  620.070572]  ? is_bpf_text_address+0xac/0x170
[  620.075061]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  620.080604]  alloc_pages_current+0x10c/0x210
[  620.085004]  pte_alloc_one+0x1b/0x1a0
[  620.088791]  __pte_alloc+0x2a/0x350
[  620.092424]  copy_page_range+0x18a2/0x26f0
[  620.096647]  ? rb_insert_color_cached+0x14b0/0x14b0
[  620.101673]  ? pmd_alloc+0x180/0x180
[  620.105372]  ? graph_lock+0x170/0x170
[  620.109158]  ? kasan_slab_alloc+0x12/0x20
[  620.113291]  ? kmem_cache_alloc+0x12e/0x730
[  620.117598]  ? graph_lock+0x170/0x170
[  620.121387]  ? __x64_sys_clone+0xbf/0x150
[  620.125520]  ? do_syscall_64+0x1b9/0x820
[  620.129592]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  620.134971]  ? find_held_lock+0x36/0x1c0
[  620.139027]  ? anon_vma_fork+0x5ef/0x820
[  620.143085]  ? lock_downgrade+0x900/0x900
[  620.147225]  ? lock_release+0x970/0x970
[  620.151202]  ? ttwu_stat+0x5c0/0x5c0
[  620.154917]  ? __lock_is_held+0xb5/0x140
[  620.158970]  ? up_write+0x7b/0x220
[  620.162498]  ? down_write_nested+0x130/0x130
[  620.166896]  ? anon_vma_interval_tree_insert+0x2c9/0x370
[  620.172352]  ? anon_vma_fork+0x13c/0x820
[  620.176402]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  620.181405]  ? vma_compute_subtree_gap+0x160/0x240
[  620.186321]  ? validate_mm_rb+0xaa/0xc0
[  620.190285]  ? __vma_link_rb+0x26c/0x370
[  620.194338]  copy_process+0x4720/0x8780
[  620.198320]  ? __cleanup_sighand+0x70/0x70
[  620.202547]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  620.208082]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  620.213618]  ? page_swapcount+0x1d0/0x1d0
[  620.217755]  ? try_to_wake_up+0x10a/0x12f0
[  620.221995]  ? lock_downgrade+0x900/0x900
[  620.226128]  ? lock_downgrade+0x900/0x900
[  620.230266]  ? trace_hardirqs_off+0xb8/0x310
[  620.234662]  ? kasan_check_read+0x11/0x20
[  620.238798]  ? trace_hardirqs_on_caller+0x310/0x310
[  620.243825]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  620.248917]  ? try_to_wake_up+0x10a/0x12f0
[  620.253143]  ? print_usage_bug+0xc0/0xc0
[  620.257189]  ? migrate_swap_stop+0x930/0x930
[  620.261590]  ? __handle_mm_fault+0x9ab/0x53e0
[  620.266081]  ? graph_lock+0x170/0x170
[  620.269873]  ? print_usage_bug+0xc0/0xc0
[  620.273927]  ? __lock_acquire+0x7ec/0x4ec0
[  620.278152]  ? print_usage_bug+0xc0/0xc0
[  620.282203]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  620.287737]  ? reuse_swap_page+0x4bd/0x1520
[  620.292045]  ? swp_swapcount+0x530/0x530
[  620.296307]  ? __lock_acquire+0x7ec/0x4ec0
[  620.300530]  ? mark_held_locks+0x130/0x130
[  620.304748]  ? rcu_softirq_qs+0x20/0x20
[  620.308711]  ? __lock_acquire+0x7ec/0x4ec0
[  620.312937]  ? mark_held_locks+0x130/0x130
[  620.317161]  ? graph_lock+0x170/0x170
[  620.320976]  ? mark_held_locks+0x130/0x130
[  620.325255]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  620.330781]  ? check_preemption_disabled+0x48/0x200
[  620.335791]  ? find_held_lock+0x36/0x1c0
[  620.339846]  ? do_wp_page+0xa6f/0x1690
[  620.343720]  ? lock_downgrade+0x900/0x900
[  620.347857]  ? wake_up_page_bit+0x6f0/0x6f0
[  620.352165]  ? kasan_check_read+0x11/0x20
[  620.356301]  ? do_raw_spin_unlock+0xa7/0x2f0
[  620.360704]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  620.365272]  ? pgd_free+0x380/0x380
[  620.368889]  ? __lock_acquire+0x7ec/0x4ec0
[  620.373120]  ? _raw_spin_unlock+0x2c/0x50
[  620.377256]  ? do_wp_page+0x77c/0x1690
[  620.381141]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  620.385796]  ? find_held_lock+0x36/0x1c0
[  620.389846]  ? lock_release+0x970/0x970
[  620.393813]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  620.399338]  ? kasan_check_write+0x14/0x20
[  620.403557]  ? do_raw_spin_lock+0xc1/0x200
[  620.407784]  ? __handle_mm_fault+0x9ab/0x53e0
[  620.412276]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  620.417109]  ? __sb_end_write+0xd9/0x110
[  620.421202]  ? graph_lock+0x170/0x170
[  620.425000]  ? print_usage_bug+0xc0/0xc0
[  620.429051]  ? atime_needs_update+0x710/0x710
[  620.433549]  ? graph_lock+0x170/0x170
[  620.437337]  ? graph_lock+0x170/0x170
[  620.441138]  ? find_held_lock+0x36/0x1c0
[  620.445190]  ? __do_page_fault+0x6b7/0xec0
[  620.449418]  _do_fork+0x1cb/0x11c0
[  620.452961]  ? fork_idle+0x1d0/0x1d0
[  620.456662]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  620.462212]  ? check_preemption_disabled+0x48/0x200
[  620.467230]  ? kasan_check_write+0x14/0x20
[  620.471458]  ? up_read+0x225/0x2c0
[  620.474998]  ? up_read_non_owner+0x100/0x100
[  620.479405]  ? find_vma+0x34/0x190
[  620.482939]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  620.488475]  ? __do_page_fault+0x49c/0xec0
[  620.492708]  ? do_syscall_64+0x9a/0x820
[  620.496687]  ? do_syscall_64+0x9a/0x820
[  620.500655]  ? lockdep_hardirqs_on+0x421/0x5c0
[  620.505232]  ? trace_hardirqs_on+0xbd/0x310
[  620.509566]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  620.515017]  ? trace_hardirqs_off_caller+0x300/0x300
[  620.520128]  __x64_sys_clone+0xbf/0x150
[  620.524101]  do_syscall_64+0x1b9/0x820
[  620.527980]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  620.533332]  ? syscall_return_slowpath+0x5e0/0x5e0
[  620.538248]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  620.543084]  ? trace_hardirqs_off+0x310/0x310
[  620.547577]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  620.553126]  ? prepare_exit_to_usermode+0x291/0x3b0
[  620.558133]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  620.562967]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  620.568144] RIP: 0033:0x455c4a
[  620.571326] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  620.590217] RSP: 002b:00007fff9d17d960 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  620.597914] RAX: ffffffffffffffda RBX: 00007fff9d17d960 RCX: 0000000000455c4a
[  620.605255] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  620.612513] RBP: 00007fff9d17d9a0 R08: 0000000000000001 R09: 0000000000ea7940
[  620.619796] R10: 0000000000ea7c10 R11: 0000000000000246 R12: 0000000000000001
[  620.627052] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  620.635866] Memory limit reached of cgroup /syz1
[  620.640801] memory: usage 7196kB, limit 0kB, failcnt 100
[  620.646258] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  620.653104] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  620.659297] Memory cgroup stats for /syz1: cache:112KB rss:176KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:52KB inactive_file:4KB active_file:4KB unevictable:0KB
[  620.679689] Out of memory and no killable processes...
[  620.686539] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  620.699526] syz-executor1 cpuset=syz1 mems_allowed=0
[  620.704664] CPU: 0 PID: 23483 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  620.713140] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  620.722494] Call Trace:
[  620.725079]  dump_stack+0x1d3/0x2c4
[  620.728704]  ? dump_stack_print_info.cold.2+0x52/0x52
[  620.733900]  dump_header+0x27b/0xf72
[  620.737604]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  620.742521]  ? kasan_check_read+0x11/0x20
[  620.746656]  ? pagefault_out_of_memory+0x197/0x197
[  620.751579]  ? rcu_read_unlock+0x33/0x60
[  620.755625]  ? mem_cgroup_iter+0x514/0x1160
[  620.759938]  ? find_held_lock+0x36/0x1c0
[  620.763990]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  620.768735]  ? mark_held_locks+0xc7/0x130
[  620.772871]  ? _raw_spin_unlock_irq+0x27/0x80
[  620.777359]  ? _raw_spin_unlock_irq+0x27/0x80
[  620.781875]  ? lockdep_hardirqs_on+0x421/0x5c0
[  620.786459]  ? trace_hardirqs_on+0xbd/0x310
[  620.790766]  ? kasan_check_read+0x11/0x20
[  620.794903]  ? css_task_iter_end+0x222/0x490
[  620.799305]  ? trace_hardirqs_off_caller+0x300/0x300
[  620.804397]  ? kasan_check_write+0x14/0x20
[  620.808623]  ? do_raw_spin_lock+0xc1/0x200
[  620.812849]  ? _raw_spin_unlock_irq+0x60/0x80
[  620.817335]  ? css_task_iter_end+0x2ce/0x490
[  620.821746]  ? cgroup_procs_next+0x70/0x70
[  620.825971]  ? _raw_spin_unlock_irq+0x60/0x80
[  620.830472]  ? oom_badness+0xaa0/0xaa0
[  620.834357]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  620.839121]  ? mem_cgroup_iter_break+0x30/0x30
[  620.843704]  ? mark_held_locks+0xc7/0x130
[  620.847844]  out_of_memory.cold.30+0xf/0x184
[  620.852240]  ? lockdep_hardirqs_on+0x421/0x5c0
[  620.856816]  ? kasan_check_read+0x11/0x20
[  620.860956]  ? oom_killer_disable+0x3a0/0x3a0
[  620.865446]  ? kasan_check_write+0x14/0x20
[  620.869689]  ? do_raw_spin_lock+0xc1/0x200
[  620.873921]  mem_cgroup_out_of_memory+0x15e/0x210
[  620.878750]  ? memcg_memory_event+0x40/0x40
[  620.883056]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  620.887894]  ? page_counter_try_charge+0x1c1/0x220
[  620.892808]  try_charge+0xb1a/0x1690
[  620.896509]  ? lock_downgrade+0x900/0x900
[  620.900642]  ? check_preemption_disabled+0x48/0x200
[  620.905648]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  620.911696]  ? find_held_lock+0x36/0x1c0
[  620.915748]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  620.920581]  ? lock_downgrade+0x900/0x900
[  620.924720]  ? check_preemption_disabled+0x48/0x200
[  620.929729]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  620.934645]  ? kasan_check_read+0x11/0x20
[  620.938779]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  620.944040]  ? rcu_softirq_qs+0x20/0x20
[  620.948007]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  620.952838]  memcg_kmem_charge_memcg+0x7c/0x120
[  620.957493]  ? memcg_kmem_put_cache+0xb0/0xb0
[  620.961971]  ? save_stack+0x43/0xd0
[  620.965593]  ? kasan_slab_alloc+0x12/0x20
[  620.969726]  ? kmem_cache_alloc+0x12e/0x730
[  620.974046]  ? ptlock_alloc+0x20/0x80
[  620.977838]  memcg_kmem_charge+0x135/0x300
[  620.982064]  __alloc_pages_nodemask+0x89c/0xdd0
[  620.986732]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  620.991735]  ? print_usage_bug+0xc0/0xc0
[  620.995784]  ? __lock_acquire+0x7ec/0x4ec0
[  621.000008]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  621.005535]  ? graph_lock+0x170/0x170
[  621.009325]  ? find_held_lock+0x36/0x1c0
[  621.013563]  ? __lock_acquire+0x7ec/0x4ec0
[  621.017804]  ? print_usage_bug+0xc0/0xc0
[  621.021852]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  621.027393]  alloc_pages_current+0x10c/0x210
[  621.031804]  get_zeroed_page+0x14/0x50
[  621.035678]  __pud_alloc+0x3b/0x240
[  621.039293]  pud_alloc+0xe1/0x150
[  621.042733]  copy_page_range+0x439/0x26f0
[  621.046869]  ? rcu_softirq_qs+0x20/0x20
[  621.050833]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  621.055839]  ? vma_compute_subtree_gap+0x160/0x240
[  621.060764]  ? __rb_insert_augmented+0x3b2/0x1890
[  621.065595]  ? unwind_get_return_address+0x61/0xa0
[  621.070516]  ? __save_stack_trace+0x8d/0xf0
[  621.074825]  ? pmd_alloc+0x180/0x180
[  621.078529]  ? save_stack+0xa9/0xd0
[  621.082140]  ? save_stack+0x43/0xd0
[  621.085751]  ? kasan_kmalloc+0xc7/0xe0
[  621.089626]  ? kasan_slab_alloc+0x12/0x20
[  621.093756]  ? kmem_cache_alloc+0x12e/0x730
[  621.098065]  ? vm_area_dup+0x7a/0x230
[  621.101861]  ? copy_process+0x429f/0x8780
[  621.105994]  ? _do_fork+0x1cb/0x11c0
[  621.109696]  ? __x64_sys_clone+0xbf/0x150
[  621.113830]  ? do_syscall_64+0x1b9/0x820
[  621.117876]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  621.123231]  ? graph_lock+0x170/0x170
[  621.127019]  ? lock_downgrade+0x900/0x900
[  621.131155]  ? graph_lock+0x170/0x170
[  621.134944]  ? graph_lock+0x170/0x170
[  621.138751]  ? find_held_lock+0x36/0x1c0
[  621.142804]  ? copy_process+0x454a/0x8780
[  621.146941]  ? lock_downgrade+0x900/0x900
[  621.151115]  ? lock_release+0x970/0x970
[  621.155082]  ? ttwu_stat+0x5c0/0x5c0
[  621.158815]  ? dup_userfaultfd+0x6d8/0x890
[  621.163046]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  621.168049]  ? vma_compute_subtree_gap+0x160/0x240
[  621.172971]  ? validate_mm_rb+0xaa/0xc0
[  621.176951]  ? __vma_link_rb+0x26c/0x370
[  621.181003]  copy_process+0x4720/0x8780
[  621.184997]  ? __cleanup_sighand+0x70/0x70
[  621.189231]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  621.194756]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  621.200302]  ? page_swapcount+0x1d0/0x1d0
[  621.204454]  ? try_to_wake_up+0x10a/0x12f0
[  621.208678]  ? lock_downgrade+0x900/0x900
[  621.212812]  ? lock_downgrade+0x900/0x900
[  621.216950]  ? trace_hardirqs_off+0xb8/0x310
[  621.221344]  ? kasan_check_read+0x11/0x20
[  621.225479]  ? trace_hardirqs_on_caller+0x310/0x310
[  621.230507]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  621.235603]  ? try_to_wake_up+0x10a/0x12f0
[  621.239917]  ? print_usage_bug+0xc0/0xc0
[  621.243963]  ? migrate_swap_stop+0x930/0x930
[  621.248363]  ? __handle_mm_fault+0x9ab/0x53e0
[  621.252848]  ? graph_lock+0x170/0x170
[  621.256633]  ? print_usage_bug+0xc0/0xc0
[  621.260685]  ? __lock_acquire+0x7ec/0x4ec0
[  621.264910]  ? print_usage_bug+0xc0/0xc0
[  621.268963]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  621.274500]  ? reuse_swap_page+0x4bd/0x1520
[  621.278813]  ? swp_swapcount+0x530/0x530
[  621.282884]  ? __lock_acquire+0x7ec/0x4ec0
[  621.287108]  ? mark_held_locks+0x130/0x130
[  621.291328]  ? rcu_softirq_qs+0x20/0x20
[  621.295289]  ? __lock_acquire+0x7ec/0x4ec0
[  621.299515]  ? mark_held_locks+0x130/0x130
[  621.303739]  ? graph_lock+0x170/0x170
[  621.307527]  ? mark_held_locks+0x130/0x130
[  621.311750]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  621.317273]  ? check_preemption_disabled+0x48/0x200
[  621.322281]  ? find_held_lock+0x36/0x1c0
[  621.326357]  ? do_wp_page+0xa6f/0x1690
[  621.330249]  ? lock_downgrade+0x900/0x900
[  621.334388]  ? wake_up_page_bit+0x6f0/0x6f0
[  621.338701]  ? kasan_check_read+0x11/0x20
[  621.342837]  ? do_raw_spin_unlock+0xa7/0x2f0
[  621.347230]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  621.351800]  ? pgd_free+0x380/0x380
[  621.355430]  ? __lock_acquire+0x7ec/0x4ec0
[  621.359686]  ? _raw_spin_unlock+0x2c/0x50
[  621.363819]  ? do_wp_page+0x77c/0x1690
[  621.367695]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  621.372355]  ? find_held_lock+0x36/0x1c0
[  621.376406]  ? lock_release+0x970/0x970
[  621.380373]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  621.385900]  ? kasan_check_write+0x14/0x20
[  621.390121]  ? do_raw_spin_lock+0xc1/0x200
[  621.394349]  ? __handle_mm_fault+0x9ab/0x53e0
[  621.398851]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  621.403694]  ? __sb_end_write+0xd9/0x110
[  621.407755]  ? graph_lock+0x170/0x170
[  621.411797]  ? print_usage_bug+0xc0/0xc0
[  621.415860]  ? atime_needs_update+0x710/0x710
[  621.420344]  ? graph_lock+0x170/0x170
[  621.424132]  ? graph_lock+0x170/0x170
[  621.427926]  ? find_held_lock+0x36/0x1c0
[  621.431982]  ? __do_page_fault+0x6b7/0xec0
[  621.436205]  _do_fork+0x1cb/0x11c0
[  621.439739]  ? fork_idle+0x1d0/0x1d0
[  621.443445]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  621.448983]  ? check_preemption_disabled+0x48/0x200
[  621.453992]  ? kasan_check_write+0x14/0x20
[  621.458230]  ? up_read+0x225/0x2c0
[  621.461761]  ? up_read_non_owner+0x100/0x100
[  621.466157]  ? find_vma+0x34/0x190
[  621.469703]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  621.475229]  ? __do_page_fault+0x49c/0xec0
[  621.479457]  ? do_syscall_64+0x9a/0x820
[  621.483416]  ? do_syscall_64+0x9a/0x820
[  621.487392]  ? lockdep_hardirqs_on+0x421/0x5c0
[  621.491977]  ? trace_hardirqs_on+0xbd/0x310
[  621.496285]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  621.501637]  ? trace_hardirqs_off_caller+0x300/0x300
[  621.506736]  __x64_sys_clone+0xbf/0x150
[  621.510705]  do_syscall_64+0x1b9/0x820
[  621.514580]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  621.519934]  ? syscall_return_slowpath+0x5e0/0x5e0
[  621.524847]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  621.529681]  ? trace_hardirqs_off+0x310/0x310
[  621.534168]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  621.539705]  ? prepare_exit_to_usermode+0x291/0x3b0
[  621.544722]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  621.549560]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  621.554739] RIP: 0033:0x455c4a
[  621.557920] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  621.576813] RSP: 002b:00007fff9d17d960 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  621.584526] RAX: ffffffffffffffda RBX: 00007fff9d17d960 RCX: 0000000000455c4a
[  621.591788] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  621.599042] RBP: 00007fff9d17d9a0 R08: 0000000000000001 R09: 0000000000ea7940
[  621.606294] R10: 0000000000ea7c10 R11: 0000000000000246 R12: 0000000000000001
[  621.613588] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  621.624280] Memory limit reached of cgroup /syz1
[  621.629322] memory: usage 7100kB, limit 0kB, failcnt 108
[  621.634778] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  621.641587] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  621.648139] Memory cgroup stats for /syz1: cache:112KB rss:176KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:52KB inactive_file:4KB active_file:4KB unevictable:0KB
[  621.668561] Out of memory and no killable processes...
[  621.677621] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  621.691854] syz-executor1 cpuset=syz1 mems_allowed=0
[  621.696996] CPU: 0 PID: 23483 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  621.705471] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  621.714815] Call Trace:
[  621.717396]  dump_stack+0x1d3/0x2c4
[  621.721019]  ? dump_stack_print_info.cold.2+0x52/0x52
[  621.726206]  dump_header+0x27b/0xf72
[  621.729910]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  621.734827]  ? kasan_check_read+0x11/0x20
[  621.738963]  ? pagefault_out_of_memory+0x197/0x197
[  621.743894]  ? rcu_read_unlock+0x33/0x60
[  621.747944]  ? mem_cgroup_iter+0x514/0x1160
[  621.752257]  ? find_held_lock+0x36/0x1c0
[  621.756327]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  621.761082]  ? mark_held_locks+0xc7/0x130
[  621.765234]  ? _raw_spin_unlock_irq+0x27/0x80
[  621.769717]  ? _raw_spin_unlock_irq+0x27/0x80
[  621.774202]  ? lockdep_hardirqs_on+0x421/0x5c0
[  621.778772]  ? trace_hardirqs_on+0xbd/0x310
[  621.783098]  ? kasan_check_read+0x11/0x20
[  621.787248]  ? css_task_iter_end+0x222/0x490
[  621.791646]  ? trace_hardirqs_off_caller+0x300/0x300
[  621.796737]  ? kasan_check_write+0x14/0x20
[  621.800955]  ? do_raw_spin_lock+0xc1/0x200
[  621.805178]  ? _raw_spin_unlock_irq+0x60/0x80
[  621.809658]  ? css_task_iter_end+0x2ce/0x490
[  621.814055]  ? cgroup_procs_next+0x70/0x70
[  621.818287]  ? _raw_spin_unlock_irq+0x60/0x80
[  621.822771]  ? oom_badness+0xaa0/0xaa0
[  621.826645]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  621.831387]  ? mem_cgroup_iter_break+0x30/0x30
[  621.835971]  ? mark_held_locks+0xc7/0x130
[  621.840112]  out_of_memory.cold.30+0xf/0x184
[  621.844514]  ? lockdep_hardirqs_on+0x421/0x5c0
[  621.849100]  ? kasan_check_read+0x11/0x20
[  621.853243]  ? oom_killer_disable+0x3a0/0x3a0
[  621.857726]  ? kasan_check_write+0x14/0x20
[  621.861949]  ? do_raw_spin_lock+0xc1/0x200
[  621.866176]  mem_cgroup_out_of_memory+0x15e/0x210
[  621.871003]  ? memcg_memory_event+0x40/0x40
[  621.875325]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  621.880159]  ? page_counter_try_charge+0x1c1/0x220
[  621.885091]  try_charge+0xb1a/0x1690
[  621.888796]  ? lock_downgrade+0x900/0x900
[  621.892930]  ? check_preemption_disabled+0x48/0x200
[  621.897953]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  621.904014]  ? find_held_lock+0x36/0x1c0
[  621.908070]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  621.912912]  ? lock_downgrade+0x900/0x900
[  621.917050]  ? check_preemption_disabled+0x48/0x200
[  621.922064]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  621.926992]  ? kasan_check_read+0x11/0x20
[  621.931138]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  621.936410]  ? rcu_softirq_qs+0x20/0x20
[  621.940380]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  621.945214]  memcg_kmem_charge_memcg+0x7c/0x120
[  621.949868]  ? memcg_kmem_put_cache+0xb0/0xb0
[  621.954348]  ? __lock_is_held+0xb5/0x140
[  621.958402]  memcg_kmem_charge+0x135/0x300
[  621.962628]  __alloc_pages_nodemask+0x89c/0xdd0
[  621.967278]  ? mark_held_locks+0xc7/0x130
[  621.971411]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  621.976424]  ? lock_downgrade+0x900/0x900
[  621.980562]  ? kasan_check_read+0x11/0x20
[  621.984692]  ? do_raw_spin_unlock+0xa7/0x2f0
[  621.989097]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  621.993664]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  621.999204]  alloc_pages_current+0x10c/0x210
[  622.003601]  __pmd_alloc+0x3e/0x450
[  622.007213]  ? pmd_val+0x100/0x100
[  622.010742]  pmd_alloc+0x10f/0x180
[  622.014270]  copy_page_range+0x6cf/0x26f0
[  622.018413]  ? rcu_softirq_qs+0x20/0x20
[  622.022377]  ? vma_compute_subtree_gap+0x160/0x240
[  622.027298]  ? unwind_get_return_address+0x61/0xa0
[  622.032214]  ? __save_stack_trace+0x8d/0xf0
[  622.036530]  ? pmd_alloc+0x180/0x180
[  622.040253]  ? save_stack+0xa9/0xd0
[  622.043865]  ? save_stack+0x43/0xd0
[  622.047477]  ? kasan_kmalloc+0xc7/0xe0
[  622.051345]  ? kasan_slab_alloc+0x12/0x20
[  622.055495]  ? kmem_cache_alloc+0x12e/0x730
[  622.059807]  ? vm_area_dup+0x7a/0x230
[  622.063593]  ? copy_process+0x429f/0x8780
[  622.067725]  ? _do_fork+0x1cb/0x11c0
[  622.071420]  ? __x64_sys_clone+0xbf/0x150
[  622.075553]  ? do_syscall_64+0x1b9/0x820
[  622.079602]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  622.084975]  ? graph_lock+0x170/0x170
[  622.088766]  ? lock_downgrade+0x900/0x900
[  622.092901]  ? graph_lock+0x170/0x170
[  622.096693]  ? graph_lock+0x170/0x170
[  622.100482]  ? find_held_lock+0x36/0x1c0
[  622.104535]  ? copy_process+0x454a/0x8780
[  622.108672]  ? lock_downgrade+0x900/0x900
[  622.112809]  ? lock_release+0x970/0x970
[  622.116768]  ? ttwu_stat+0x5c0/0x5c0
[  622.120472]  ? dup_userfaultfd+0x6d8/0x890
[  622.124700]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  622.129705]  ? vma_compute_subtree_gap+0x160/0x240
[  622.134622]  ? validate_mm_rb+0xaa/0xc0
[  622.138586]  ? __vma_link_rb+0x26c/0x370
[  622.142646]  copy_process+0x4720/0x8780
[  622.146626]  ? __cleanup_sighand+0x70/0x70
[  622.150860]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  622.156386]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  622.161918]  ? page_swapcount+0x1d0/0x1d0
[  622.166070]  ? try_to_wake_up+0x10a/0x12f0
[  622.170326]  ? lock_downgrade+0x900/0x900
[  622.174462]  ? lock_downgrade+0x900/0x900
[  622.178606]  ? trace_hardirqs_off+0xb8/0x310
[  622.183012]  ? kasan_check_read+0x11/0x20
[  622.187147]  ? trace_hardirqs_on_caller+0x310/0x310
[  622.192160]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  622.197257]  ? try_to_wake_up+0x10a/0x12f0
[  622.201483]  ? print_usage_bug+0xc0/0xc0
[  622.205530]  ? migrate_swap_stop+0x930/0x930
[  622.209944]  ? __handle_mm_fault+0x9ab/0x53e0
[  622.214432]  ? graph_lock+0x170/0x170
[  622.218218]  ? print_usage_bug+0xc0/0xc0
[  622.222271]  ? __lock_acquire+0x7ec/0x4ec0
[  622.226500]  ? print_usage_bug+0xc0/0xc0
[  622.230555]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  622.236107]  ? reuse_swap_page+0x4bd/0x1520
[  622.240419]  ? swp_swapcount+0x530/0x530
[  622.244471]  ? __lock_acquire+0x7ec/0x4ec0
[  622.248690]  ? mark_held_locks+0x130/0x130
[  622.252912]  ? rcu_softirq_qs+0x20/0x20
[  622.256886]  ? __lock_acquire+0x7ec/0x4ec0
[  622.261156]  ? mark_held_locks+0x130/0x130
[  622.265434]  ? graph_lock+0x170/0x170
[  622.269237]  ? mark_held_locks+0x130/0x130
[  622.273488]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  622.279015]  ? check_preemption_disabled+0x48/0x200
[  622.284021]  ? find_held_lock+0x36/0x1c0
[  622.288072]  ? do_wp_page+0xa6f/0x1690
[  622.291963]  ? lock_downgrade+0x900/0x900
[  622.296346]  ? wake_up_page_bit+0x6f0/0x6f0
[  622.300671]  ? kasan_check_read+0x11/0x20
[  622.304804]  ? do_raw_spin_unlock+0xa7/0x2f0
[  622.309201]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  622.313770]  ? pgd_free+0x380/0x380
[  622.317392]  ? __lock_acquire+0x7ec/0x4ec0
[  622.321628]  ? _raw_spin_unlock+0x2c/0x50
[  622.325757]  ? do_wp_page+0x77c/0x1690
[  622.329648]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  622.334300]  ? find_held_lock+0x36/0x1c0
[  622.338350]  ? lock_release+0x970/0x970
[  622.342314]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  622.347841]  ? kasan_check_write+0x14/0x20
[  622.352062]  ? do_raw_spin_lock+0xc1/0x200
[  622.356297]  ? __handle_mm_fault+0x9ab/0x53e0
[  622.360795]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  622.365664]  ? __sb_end_write+0xd9/0x110
[  622.369710]  ? graph_lock+0x170/0x170
[  622.373493]  ? print_usage_bug+0xc0/0xc0
[  622.377563]  ? atime_needs_update+0x710/0x710
[  622.382058]  ? graph_lock+0x170/0x170
[  622.385853]  ? graph_lock+0x170/0x170
[  622.389646]  ? find_held_lock+0x36/0x1c0
[  622.393698]  ? __do_page_fault+0x6b7/0xec0
[  622.397925]  _do_fork+0x1cb/0x11c0
[  622.401456]  ? fork_idle+0x1d0/0x1d0
[  622.405156]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  622.410696]  ? check_preemption_disabled+0x48/0x200
[  622.415715]  ? kasan_check_write+0x14/0x20
[  622.419939]  ? up_read+0x225/0x2c0
[  622.423464]  ? up_read_non_owner+0x100/0x100
[  622.427863]  ? find_vma+0x34/0x190
[  622.431396]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  622.436917]  ? __do_page_fault+0x49c/0xec0
[  622.441139]  ? do_syscall_64+0x9a/0x820
[  622.445103]  ? do_syscall_64+0x9a/0x820
[  622.449065]  ? lockdep_hardirqs_on+0x421/0x5c0
[  622.453654]  ? trace_hardirqs_on+0xbd/0x310
[  622.457967]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  622.463321]  ? trace_hardirqs_off_caller+0x300/0x300
[  622.468418]  __x64_sys_clone+0xbf/0x150
[  622.472383]  do_syscall_64+0x1b9/0x820
[  622.476255]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  622.481610]  ? syscall_return_slowpath+0x5e0/0x5e0
[  622.486524]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  622.491357]  ? trace_hardirqs_off+0x310/0x310
[  622.496114]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  622.501641]  ? prepare_exit_to_usermode+0x291/0x3b0
[  622.506647]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  622.511482]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  622.516666] RIP: 0033:0x455c4a
[  622.519859] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  622.538760] RSP: 002b:00007fff9d17d960 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  622.546464] RAX: ffffffffffffffda RBX: 00007fff9d17d960 RCX: 0000000000455c4a
[  622.553729] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  622.561018] RBP: 00007fff9d17d9a0 R08: 0000000000000001 R09: 0000000000ea7940
[  622.568274] R10: 0000000000ea7c10 R11: 0000000000000246 R12: 0000000000000001
[  622.575550] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  622.584221] Memory limit reached of cgroup /syz1
[  622.589267] memory: usage 7076kB, limit 0kB, failcnt 116
[  622.594726] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  622.601574] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  622.607752] Memory cgroup stats for /syz1: cache:112KB rss:176KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:52KB inactive_file:4KB active_file:4KB unevictable:0KB
[  622.627938] Out of memory and no killable processes...
[  622.634835] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  622.647792] syz-executor1 cpuset=syz1 mems_allowed=0
[  622.652924] CPU: 0 PID: 23483 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  622.661391] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  622.670726] Call Trace:
[  622.673303]  dump_stack+0x1d3/0x2c4
[  622.676919]  ? dump_stack_print_info.cold.2+0x52/0x52
[  622.682109]  dump_header+0x27b/0xf72
[  622.685827]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  622.690748]  ? kasan_check_read+0x11/0x20
[  622.694898]  ? pagefault_out_of_memory+0x197/0x197
[  622.699833]  ? rcu_read_unlock+0x33/0x60
[  622.703883]  ? mem_cgroup_iter+0x514/0x1160
[  622.708193]  ? find_held_lock+0x36/0x1c0
[  622.712260]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  622.717176]  ? mark_held_locks+0xc7/0x130
[  622.721314]  ? _raw_spin_unlock_irq+0x27/0x80
[  622.725795]  ? _raw_spin_unlock_irq+0x27/0x80
[  622.730274]  ? lockdep_hardirqs_on+0x421/0x5c0
[  622.734839]  ? trace_hardirqs_on+0xbd/0x310
[  622.739166]  ? kasan_check_read+0x11/0x20
[  622.743300]  ? css_task_iter_end+0x222/0x490
[  622.747697]  ? trace_hardirqs_off_caller+0x300/0x300
[  622.752790]  ? kasan_check_write+0x14/0x20
[  622.757037]  ? do_raw_spin_lock+0xc1/0x200
[  622.761261]  ? _raw_spin_unlock_irq+0x60/0x80
[  622.765741]  ? css_task_iter_end+0x2ce/0x490
[  622.770143]  ? cgroup_procs_next+0x70/0x70
[  622.774364]  ? _raw_spin_unlock_irq+0x60/0x80
[  622.778847]  ? oom_badness+0xaa0/0xaa0
[  622.782724]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  622.787491]  ? mem_cgroup_iter_break+0x30/0x30
[  622.792103]  ? mark_held_locks+0xc7/0x130
[  622.796259]  out_of_memory.cold.30+0xf/0x184
[  622.800656]  ? lockdep_hardirqs_on+0x421/0x5c0
[  622.805228]  ? kasan_check_read+0x11/0x20
[  622.809362]  ? oom_killer_disable+0x3a0/0x3a0
[  622.813846]  ? kasan_check_write+0x14/0x20
[  622.818070]  ? do_raw_spin_lock+0xc1/0x200
[  622.822322]  mem_cgroup_out_of_memory+0x15e/0x210
[  622.827148]  ? memcg_memory_event+0x40/0x40
[  622.831469]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  622.836300]  ? page_counter_try_charge+0x1c1/0x220
[  622.841218]  try_charge+0xb1a/0x1690
[  622.844919]  ? lock_downgrade+0x900/0x900
[  622.849054]  ? check_preemption_disabled+0x48/0x200
[  622.854063]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  622.860135]  ? find_held_lock+0x36/0x1c0
[  622.864205]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  622.869035]  ? lock_downgrade+0x900/0x900
[  622.873178]  ? check_preemption_disabled+0x48/0x200
[  622.878192]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  622.883109]  ? kasan_check_read+0x11/0x20
[  622.887242]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  622.892505]  ? rcu_softirq_qs+0x20/0x20
[  622.896473]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  622.901307]  memcg_kmem_charge_memcg+0x7c/0x120
[  622.905963]  ? memcg_kmem_put_cache+0xb0/0xb0
[  622.910450]  ? kasan_kmalloc+0xc7/0xe0
[  622.914322]  ? kmem_cache_alloc+0x12e/0x730
[  622.918626]  ? __pmd_alloc+0xc2/0x450
[  622.922412]  ? copy_page_range+0x6cf/0x26f0
[  622.926722]  memcg_kmem_charge+0x135/0x300
[  622.930948]  __alloc_pages_nodemask+0x89c/0xdd0
[  622.935603]  ? find_held_lock+0x36/0x1c0
[  622.939656]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  622.944664]  ? find_held_lock+0x36/0x1c0
[  622.948717]  ? lock_downgrade+0x900/0x900
[  622.952867]  ? __lock_is_held+0xb5/0x140
[  622.956956]  ? kasan_check_read+0x11/0x20
[  622.961147]  ? do_raw_spin_unlock+0xa7/0x2f0
[  622.965541]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  622.970141]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  622.975673]  alloc_pages_current+0x10c/0x210
[  622.980109]  pte_alloc_one+0x1b/0x1a0
[  622.983901]  __pte_alloc+0x2a/0x350
[  622.987515]  copy_page_range+0x18a2/0x26f0
[  622.991740]  ? rcu_softirq_qs+0x20/0x20
[  622.995713]  ? unwind_get_return_address+0x61/0xa0
[  623.000647]  ? pmd_alloc+0x180/0x180
[  623.004361]  ? save_stack+0xa9/0xd0
[  623.007974]  ? save_stack+0x43/0xd0
[  623.011587]  ? kasan_kmalloc+0xc7/0xe0
[  623.015460]  ? kasan_slab_alloc+0x12/0x20
[  623.019591]  ? kmem_cache_alloc+0x12e/0x730
[  623.023915]  ? vm_area_dup+0x7a/0x230
[  623.027698]  ? copy_process+0x429f/0x8780
[  623.031827]  ? _do_fork+0x1cb/0x11c0
[  623.035526]  ? __x64_sys_clone+0xbf/0x150
[  623.039682]  ? do_syscall_64+0x1b9/0x820
[  623.043728]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  623.049110]  ? graph_lock+0x170/0x170
[  623.052899]  ? lock_downgrade+0x900/0x900
[  623.057036]  ? graph_lock+0x170/0x170
[  623.060823]  ? graph_lock+0x170/0x170
[  623.064614]  ? find_held_lock+0x36/0x1c0
[  623.068664]  ? copy_process+0x454a/0x8780
[  623.072813]  ? lock_downgrade+0x900/0x900
[  623.076945]  ? lock_release+0x970/0x970
[  623.080900]  ? ttwu_stat+0x5c0/0x5c0
[  623.084599]  ? dup_userfaultfd+0x6d8/0x890
[  623.088831]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  623.093833]  ? vma_compute_subtree_gap+0x160/0x240
[  623.098768]  ? validate_mm_rb+0xaa/0xc0
[  623.102731]  ? __vma_link_rb+0x26c/0x370
[  623.106782]  copy_process+0x4720/0x8780
[  623.110766]  ? __cleanup_sighand+0x70/0x70
[  623.114993]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  623.120519]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  623.126086]  ? page_swapcount+0x1d0/0x1d0
[  623.130230]  ? try_to_wake_up+0x10a/0x12f0
[  623.134453]  ? lock_downgrade+0x900/0x900
[  623.138587]  ? lock_downgrade+0x900/0x900
[  623.142730]  ? trace_hardirqs_off+0xb8/0x310
[  623.147124]  ? kasan_check_read+0x11/0x20
[  623.151260]  ? trace_hardirqs_on_caller+0x310/0x310
[  623.156274]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  623.161367]  ? try_to_wake_up+0x10a/0x12f0
[  623.165591]  ? print_usage_bug+0xc0/0xc0
[  623.169636]  ? migrate_swap_stop+0x930/0x930
[  623.174033]  ? __handle_mm_fault+0x9ab/0x53e0
[  623.178518]  ? graph_lock+0x170/0x170
[  623.182303]  ? print_usage_bug+0xc0/0xc0
[  623.186375]  ? __lock_acquire+0x7ec/0x4ec0
[  623.190603]  ? print_usage_bug+0xc0/0xc0
[  623.194659]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  623.200184]  ? reuse_swap_page+0x4bd/0x1520
[  623.204492]  ? swp_swapcount+0x530/0x530
[  623.208552]  ? __lock_acquire+0x7ec/0x4ec0
[  623.212768]  ? mark_held_locks+0x130/0x130
[  623.216986]  ? rcu_softirq_qs+0x20/0x20
[  623.220963]  ? __lock_acquire+0x7ec/0x4ec0
[  623.225208]  ? mark_held_locks+0x130/0x130
[  623.229434]  ? graph_lock+0x170/0x170
[  623.233400]  ? mark_held_locks+0x130/0x130
[  623.237629]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  623.243152]  ? check_preemption_disabled+0x48/0x200
[  623.248159]  ? find_held_lock+0x36/0x1c0
[  623.252212]  ? do_wp_page+0xa6f/0x1690
[  623.256098]  ? lock_downgrade+0x900/0x900
[  623.260242]  ? wake_up_page_bit+0x6f0/0x6f0
[  623.264554]  ? kasan_check_read+0x11/0x20
[  623.268706]  ? do_raw_spin_unlock+0xa7/0x2f0
[  623.273111]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  623.277683]  ? pgd_free+0x380/0x380
[  623.281299]  ? __lock_acquire+0x7ec/0x4ec0
[  623.285532]  ? _raw_spin_unlock+0x2c/0x50
[  623.289672]  ? do_wp_page+0x77c/0x1690
[  623.293551]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  623.298219]  ? find_held_lock+0x36/0x1c0
[  623.302270]  ? lock_release+0x970/0x970
[  623.306235]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  623.311759]  ? kasan_check_write+0x14/0x20
[  623.315979]  ? do_raw_spin_lock+0xc1/0x200
[  623.320201]  ? __handle_mm_fault+0x9ab/0x53e0
[  623.324693]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  623.329524]  ? __sb_end_write+0xd9/0x110
[  623.333575]  ? graph_lock+0x170/0x170
[  623.337362]  ? print_usage_bug+0xc0/0xc0
[  623.341426]  ? atime_needs_update+0x710/0x710
[  623.345911]  ? graph_lock+0x170/0x170
[  623.349697]  ? graph_lock+0x170/0x170
[  623.353486]  ? find_held_lock+0x36/0x1c0
[  623.357536]  ? __do_page_fault+0x6b7/0xec0
[  623.361772]  _do_fork+0x1cb/0x11c0
[  623.365328]  ? fork_idle+0x1d0/0x1d0
[  623.369034]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  623.374570]  ? check_preemption_disabled+0x48/0x200
[  623.379593]  ? kasan_check_write+0x14/0x20
[  623.383820]  ? up_read+0x225/0x2c0
[  623.387346]  ? up_read_non_owner+0x100/0x100
[  623.391743]  ? find_vma+0x34/0x190
[  623.395274]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  623.400814]  ? __do_page_fault+0x49c/0xec0
[  623.405037]  ? do_syscall_64+0x9a/0x820
[  623.408999]  ? do_syscall_64+0x9a/0x820
[  623.412987]  ? lockdep_hardirqs_on+0x421/0x5c0
[  623.417559]  ? trace_hardirqs_on+0xbd/0x310
[  623.422172]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  623.427519]  ? trace_hardirqs_off_caller+0x300/0x300
[  623.432612]  __x64_sys_clone+0xbf/0x150
[  623.436621]  do_syscall_64+0x1b9/0x820
[  623.440495]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  623.445845]  ? syscall_return_slowpath+0x5e0/0x5e0
[  623.450756]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  623.455587]  ? trace_hardirqs_off+0x310/0x310
[  623.460084]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  623.465619]  ? prepare_exit_to_usermode+0x291/0x3b0
[  623.470640]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  623.475477]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  623.480651] RIP: 0033:0x455c4a
[  623.483830] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  623.502730] RSP: 002b:00007fff9d17d960 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  623.510422] RAX: ffffffffffffffda RBX: 00007fff9d17d960 RCX: 0000000000455c4a
[  623.517706] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  623.524970] RBP: 00007fff9d17d9a0 R08: 0000000000000001 R09: 0000000000ea7940
[  623.532223] R10: 0000000000ea7c10 R11: 0000000000000246 R12: 0000000000000001
[  623.539477] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  623.549363] Memory limit reached of cgroup /syz1
[  623.554195] memory: usage 7076kB, limit 0kB, failcnt 124
[  623.559711] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  623.566482] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  623.572676] Memory cgroup stats for /syz1: cache:112KB rss:176KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:52KB inactive_file:4KB active_file:4KB unevictable:0KB
[  623.592977] Out of memory and no killable processes...
[  623.599824] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  623.612755] syz-executor1 cpuset=syz1 mems_allowed=0
[  623.618026] CPU: 0 PID: 23483 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  623.626604] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  623.635973] Call Trace:
[  623.638557]  dump_stack+0x1d3/0x2c4
[  623.642180]  ? dump_stack_print_info.cold.2+0x52/0x52
[  623.647364]  dump_header+0x27b/0xf72
[  623.651069]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  623.655994]  ? kasan_check_read+0x11/0x20
[  623.660133]  ? pagefault_out_of_memory+0x197/0x197
[  623.665114]  ? rcu_read_unlock+0x33/0x60
[  623.669164]  ? mem_cgroup_iter+0x514/0x1160
[  623.673471]  ? find_held_lock+0x36/0x1c0
[  623.677539]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  623.682286]  ? mark_held_locks+0xc7/0x130
[  623.686420]  ? _raw_spin_unlock_irq+0x27/0x80
[  623.690904]  ? _raw_spin_unlock_irq+0x27/0x80
[  623.695386]  ? lockdep_hardirqs_on+0x421/0x5c0
[  623.699954]  ? trace_hardirqs_on+0xbd/0x310
[  623.704261]  ? kasan_check_read+0x11/0x20
[  623.708395]  ? css_task_iter_end+0x222/0x490
[  623.712793]  ? trace_hardirqs_off_caller+0x300/0x300
[  623.717904]  ? kasan_check_write+0x14/0x20
[  623.722126]  ? do_raw_spin_lock+0xc1/0x200
[  623.726355]  ? _raw_spin_unlock_irq+0x60/0x80
[  623.730844]  ? css_task_iter_end+0x2ce/0x490
[  623.735248]  ? cgroup_procs_next+0x70/0x70
[  623.739471]  ? _raw_spin_unlock_irq+0x60/0x80
[  623.743950]  ? oom_badness+0xaa0/0xaa0
[  623.747842]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  623.752584]  ? mem_cgroup_iter_break+0x30/0x30
[  623.757171]  ? mark_held_locks+0xc7/0x130
[  623.761308]  out_of_memory.cold.30+0xf/0x184
[  623.765702]  ? lockdep_hardirqs_on+0x421/0x5c0
[  623.770271]  ? kasan_check_read+0x11/0x20
[  623.774410]  ? oom_killer_disable+0x3a0/0x3a0
[  623.778890]  ? kasan_check_write+0x14/0x20
[  623.783115]  ? do_raw_spin_lock+0xc1/0x200
[  623.787348]  mem_cgroup_out_of_memory+0x15e/0x210
[  623.792213]  ? memcg_memory_event+0x40/0x40
[  623.796521]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  623.801354]  ? page_counter_try_charge+0x1c1/0x220
[  623.806271]  try_charge+0xb1a/0x1690
[  623.809971]  ? lock_downgrade+0x900/0x900
[  623.814109]  ? check_preemption_disabled+0x48/0x200
[  623.819119]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  623.825164]  ? find_held_lock+0x36/0x1c0
[  623.829223]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  623.834052]  ? lock_downgrade+0x900/0x900
[  623.838207]  ? check_preemption_disabled+0x48/0x200
[  623.843211]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  623.848124]  ? kasan_check_read+0x11/0x20
[  623.852257]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  623.857523]  ? rcu_softirq_qs+0x20/0x20
[  623.861489]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  623.866324]  memcg_kmem_charge_memcg+0x7c/0x120
[  623.870981]  ? memcg_kmem_put_cache+0xb0/0xb0
[  623.875460]  ? kmem_cache_alloc+0x12e/0x730
[  623.879764]  ? pte_alloc_one+0x6b/0x1a0
[  623.883722]  ? __pte_alloc+0x2a/0x350
[  623.887502]  ? copy_page_range+0x18a2/0x26f0
[  623.891894]  ? copy_process+0x4720/0x8780
[  623.896031]  memcg_kmem_charge+0x135/0x300
[  623.900263]  __alloc_pages_nodemask+0x89c/0xdd0
[  623.904941]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  623.909948]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  623.915487]  ? graph_lock+0x170/0x170
[  623.919274]  ? find_held_lock+0x36/0x1c0
[  623.923329]  ? __lock_is_held+0xb5/0x140
[  623.927374]  ? lock_downgrade+0x900/0x900
[  623.931512]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  623.937038]  alloc_pages_current+0x10c/0x210
[  623.941436]  pte_alloc_one+0x1b/0x1a0
[  623.945246]  __pte_alloc+0x2a/0x350
[  623.948862]  copy_page_range+0x18a2/0x26f0
[  623.953134]  ? pmd_alloc+0x180/0x180
[  623.956845]  ? save_stack+0xa9/0xd0
[  623.960458]  ? save_stack+0x43/0xd0
[  623.964073]  ? kasan_slab_alloc+0x12/0x20
[  623.968217]  ? kmem_cache_alloc+0x12e/0x730
[  623.972523]  ? vm_area_dup+0x7a/0x230
[  623.976312]  ? copy_process+0x429f/0x8780
[  623.980453]  ? _do_fork+0x1cb/0x11c0
[  623.984164]  ? __x64_sys_clone+0xbf/0x150
[  623.988298]  ? do_syscall_64+0x1b9/0x820
[  623.992383]  ? graph_lock+0x170/0x170
[  623.996173]  ? lock_downgrade+0x900/0x900
[  624.000325]  ? graph_lock+0x170/0x170
[  624.004120]  ? graph_lock+0x170/0x170
[  624.007913]  ? find_held_lock+0x36/0x1c0
[  624.011989]  ? copy_process+0x454a/0x8780
[  624.016131]  ? lock_downgrade+0x900/0x900
[  624.020266]  ? lock_release+0x970/0x970
[  624.024226]  ? ttwu_stat+0x5c0/0x5c0
[  624.027938]  ? dup_userfaultfd+0x6d8/0x890
[  624.032181]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  624.037186]  ? vma_compute_subtree_gap+0x160/0x240
[  624.042110]  ? validate_mm_rb+0xaa/0xc0
[  624.046081]  ? __vma_link_rb+0x26c/0x370
[  624.050141]  copy_process+0x4720/0x8780
[  624.054125]  ? __cleanup_sighand+0x70/0x70
[  624.058351]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  624.063873]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  624.069404]  ? page_swapcount+0x1d0/0x1d0
[  624.073550]  ? try_to_wake_up+0x10a/0x12f0
[  624.077802]  ? lock_downgrade+0x900/0x900
[  624.081936]  ? lock_downgrade+0x900/0x900
[  624.086095]  ? trace_hardirqs_off+0xb8/0x310
[  624.090491]  ? kasan_check_read+0x11/0x20
[  624.094624]  ? trace_hardirqs_on_caller+0x310/0x310
[  624.099648]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  624.104777]  ? try_to_wake_up+0x10a/0x12f0
[  624.109031]  ? print_usage_bug+0xc0/0xc0
[  624.113084]  ? migrate_swap_stop+0x930/0x930
[  624.117488]  ? __handle_mm_fault+0x9ab/0x53e0
[  624.121972]  ? graph_lock+0x170/0x170
[  624.125755]  ? print_usage_bug+0xc0/0xc0
[  624.129817]  ? __lock_acquire+0x7ec/0x4ec0
[  624.134056]  ? print_usage_bug+0xc0/0xc0
[  624.138123]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  624.143677]  ? reuse_swap_page+0x4bd/0x1520
[  624.147990]  ? swp_swapcount+0x530/0x530
[  624.152046]  ? __lock_acquire+0x7ec/0x4ec0
[  624.156265]  ? mark_held_locks+0x130/0x130
[  624.160483]  ? rcu_softirq_qs+0x20/0x20
[  624.164444]  ? __lock_acquire+0x7ec/0x4ec0
[  624.168670]  ? mark_held_locks+0x130/0x130
[  624.172946]  ? graph_lock+0x170/0x170
[  624.176731]  ? mark_held_locks+0x130/0x130
[  624.180957]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  624.186482]  ? check_preemption_disabled+0x48/0x200
[  624.191492]  ? find_held_lock+0x36/0x1c0
[  624.195560]  ? do_wp_page+0xa6f/0x1690
[  624.199459]  ? lock_downgrade+0x900/0x900
[  624.203592]  ? wake_up_page_bit+0x6f0/0x6f0
[  624.207916]  ? kasan_check_read+0x11/0x20
[  624.212047]  ? do_raw_spin_unlock+0xa7/0x2f0
[  624.216440]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  624.221009]  ? pgd_free+0x380/0x380
[  624.224622]  ? __lock_acquire+0x7ec/0x4ec0
[  624.228849]  ? _raw_spin_unlock+0x2c/0x50
[  624.232985]  ? do_wp_page+0x77c/0x1690
[  624.236860]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  624.241518]  ? find_held_lock+0x36/0x1c0
[  624.245566]  ? lock_release+0x970/0x970
[  624.249545]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  624.255080]  ? kasan_check_write+0x14/0x20
[  624.259303]  ? do_raw_spin_lock+0xc1/0x200
[  624.263527]  ? __handle_mm_fault+0x9ab/0x53e0
[  624.268015]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  624.272843]  ? __sb_end_write+0xd9/0x110
[  624.276907]  ? graph_lock+0x170/0x170
[  624.280709]  ? print_usage_bug+0xc0/0xc0
[  624.284756]  ? atime_needs_update+0x710/0x710
[  624.289242]  ? graph_lock+0x170/0x170
[  624.293027]  ? graph_lock+0x170/0x170
[  624.297066]  ? find_held_lock+0x36/0x1c0
[  624.301155]  ? __do_page_fault+0x6b7/0xec0
[  624.305381]  _do_fork+0x1cb/0x11c0
[  624.308940]  ? fork_idle+0x1d0/0x1d0
[  624.312644]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  624.318185]  ? check_preemption_disabled+0x48/0x200
[  624.323193]  ? kasan_check_write+0x14/0x20
[  624.327423]  ? up_read+0x225/0x2c0
[  624.330953]  ? up_read_non_owner+0x100/0x100
[  624.335347]  ? find_vma+0x34/0x190
[  624.338876]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  624.344398]  ? __do_page_fault+0x49c/0xec0
[  624.348621]  ? do_syscall_64+0x9a/0x820
[  624.352585]  ? do_syscall_64+0x9a/0x820
[  624.356565]  ? lockdep_hardirqs_on+0x421/0x5c0
[  624.361150]  ? trace_hardirqs_on+0xbd/0x310
[  624.365461]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  624.370839]  ? trace_hardirqs_off_caller+0x300/0x300
[  624.375958]  __x64_sys_clone+0xbf/0x150
[  624.379926]  do_syscall_64+0x1b9/0x820
[  624.383800]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  624.389153]  ? syscall_return_slowpath+0x5e0/0x5e0
[  624.394066]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  624.398917]  ? trace_hardirqs_off+0x310/0x310
[  624.403401]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  624.408935]  ? prepare_exit_to_usermode+0x291/0x3b0
[  624.413947]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  624.418791]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  624.423976] RIP: 0033:0x455c4a
[  624.427155] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  624.446042] RSP: 002b:00007fff9d17d960 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  624.453838] RAX: ffffffffffffffda RBX: 00007fff9d17d960 RCX: 0000000000455c4a
[  624.461116] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  624.468369] RBP: 00007fff9d17d9a0 R08: 0000000000000001 R09: 0000000000ea7940
[  624.475622] R10: 0000000000ea7c10 R11: 0000000000000246 R12: 0000000000000001
[  624.482875] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  624.494663] Memory limit reached of cgroup /syz1
[  624.499559] memory: usage 7080kB, limit 0kB, failcnt 132
[  624.505017] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  624.511826] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  624.518017] Memory cgroup stats for /syz1: cache:112KB rss:176KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:52KB inactive_file:4KB active_file:4KB unevictable:0KB
[  624.538228] Out of memory and no killable processes...
[  624.545163] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  624.558167] syz-executor1 cpuset=syz1 mems_allowed=0
[  624.563324] CPU: 0 PID: 23483 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  624.571812] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  624.581175] Call Trace:
[  624.583756]  dump_stack+0x1d3/0x2c4
[  624.587370]  ? dump_stack_print_info.cold.2+0x52/0x52
[  624.592552]  dump_header+0x27b/0xf72
[  624.596274]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  624.601219]  ? kasan_check_read+0x11/0x20
[  624.605361]  ? pagefault_out_of_memory+0x197/0x197
[  624.610281]  ? rcu_read_unlock+0x33/0x60
[  624.614325]  ? mem_cgroup_iter+0x514/0x1160
[  624.618639]  ? find_held_lock+0x36/0x1c0
[  624.622698]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  624.627438]  ? mark_held_locks+0xc7/0x130
[  624.631584]  ? _raw_spin_unlock_irq+0x27/0x80
[  624.636069]  ? _raw_spin_unlock_irq+0x27/0x80
[  624.640565]  ? lockdep_hardirqs_on+0x421/0x5c0
[  624.645144]  ? trace_hardirqs_on+0xbd/0x310
[  624.649454]  ? kasan_check_read+0x11/0x20
[  624.653586]  ? css_task_iter_end+0x222/0x490
[  624.657988]  ? trace_hardirqs_off_caller+0x300/0x300
[  624.663092]  ? kasan_check_write+0x14/0x20
[  624.667314]  ? do_raw_spin_lock+0xc1/0x200
[  624.671557]  ? _raw_spin_unlock_irq+0x60/0x80
[  624.676043]  ? css_task_iter_end+0x2ce/0x490
[  624.680441]  ? cgroup_procs_next+0x70/0x70
[  624.684667]  ? _raw_spin_unlock_irq+0x60/0x80
[  624.689150]  ? oom_badness+0xaa0/0xaa0
[  624.693024]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  624.697771]  ? mem_cgroup_iter_break+0x30/0x30
[  624.702349]  ? mark_held_locks+0xc7/0x130
[  624.706488]  out_of_memory.cold.30+0xf/0x184
[  624.710884]  ? lockdep_hardirqs_on+0x421/0x5c0
[  624.715468]  ? kasan_check_read+0x11/0x20
[  624.719631]  ? oom_killer_disable+0x3a0/0x3a0
[  624.724117]  ? kasan_check_write+0x14/0x20
[  624.728340]  ? do_raw_spin_lock+0xc1/0x200
[  624.732569]  mem_cgroup_out_of_memory+0x15e/0x210
[  624.737407]  ? memcg_memory_event+0x40/0x40
[  624.741719]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  624.746576]  ? page_counter_try_charge+0x1c1/0x220
[  624.751492]  try_charge+0xb1a/0x1690
[  624.755194]  ? lock_downgrade+0x900/0x900
[  624.759328]  ? check_preemption_disabled+0x48/0x200
[  624.764335]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  624.770385]  ? find_held_lock+0x36/0x1c0
[  624.774441]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  624.779274]  ? lock_downgrade+0x900/0x900
[  624.783408]  ? check_preemption_disabled+0x48/0x200
[  624.788415]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  624.793330]  ? kasan_check_read+0x11/0x20
[  624.797463]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  624.802728]  ? rcu_softirq_qs+0x20/0x20
[  624.806696]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  624.811530]  memcg_kmem_charge_memcg+0x7c/0x120
[  624.816185]  ? memcg_kmem_put_cache+0xb0/0xb0
[  624.820665]  ? kmem_cache_alloc+0x12e/0x730
[  624.824973]  ? print_usage_bug+0xc0/0xc0
[  624.829023]  memcg_kmem_charge+0x135/0x300
[  624.833248]  __alloc_pages_nodemask+0x89c/0xdd0
[  624.837912]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  624.842918]  ? __lock_acquire+0x7ec/0x4ec0
[  624.847141]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  624.852678]  ? graph_lock+0x170/0x170
[  624.856474]  ? find_held_lock+0x36/0x1c0
[  624.860530]  ? __lock_is_held+0xb5/0x140
[  624.864575]  ? lock_downgrade+0x900/0x900
[  624.868713]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  624.874240]  alloc_pages_current+0x10c/0x210
[  624.878635]  pte_alloc_one+0x1b/0x1a0
[  624.882438]  __pte_alloc+0x2a/0x350
[  624.886052]  copy_page_range+0x18a2/0x26f0
[  624.890295]  ? pmd_alloc+0x180/0x180
[  624.894000]  ? save_stack+0xa9/0xd0
[  624.897630]  ? save_stack+0x43/0xd0
[  624.901252]  ? kasan_slab_alloc+0x12/0x20
[  624.905384]  ? kmem_cache_alloc+0x12e/0x730
[  624.909690]  ? vm_area_dup+0x7a/0x230
[  624.913473]  ? copy_process+0x429f/0x8780
[  624.917607]  ? _do_fork+0x1cb/0x11c0
[  624.921320]  ? __x64_sys_clone+0xbf/0x150
[  624.925453]  ? do_syscall_64+0x1b9/0x820
[  624.929518]  ? graph_lock+0x170/0x170
[  624.933303]  ? lock_downgrade+0x900/0x900
[  624.937438]  ? graph_lock+0x170/0x170
[  624.941226]  ? kasan_check_read+0x11/0x20
[  624.945359]  ? graph_lock+0x170/0x170
[  624.949161]  ? find_held_lock+0x36/0x1c0
[  624.953209]  ? copy_process+0x454a/0x8780
[  624.957342]  ? lock_downgrade+0x900/0x900
[  624.961494]  ? lock_release+0x970/0x970
[  624.965478]  ? ttwu_stat+0x5c0/0x5c0
[  624.969179]  ? dup_userfaultfd+0x6d8/0x890
[  624.973409]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  624.978412]  ? vma_compute_subtree_gap+0x160/0x240
[  624.983330]  ? validate_mm_rb+0xaa/0xc0
[  624.987295]  ? __vma_link_rb+0x26c/0x370
[  624.991350]  copy_process+0x4720/0x8780
[  624.995329]  ? __cleanup_sighand+0x70/0x70
[  624.999557]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  625.005102]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  625.010639]  ? page_swapcount+0x1d0/0x1d0
[  625.014775]  ? try_to_wake_up+0x10a/0x12f0
[  625.019001]  ? lock_downgrade+0x900/0x900
[  625.023134]  ? lock_downgrade+0x900/0x900
[  625.027274]  ? trace_hardirqs_off+0xb8/0x310
[  625.031669]  ? kasan_check_read+0x11/0x20
[  625.035814]  ? trace_hardirqs_on_caller+0x310/0x310
[  625.040839]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  625.045929]  ? try_to_wake_up+0x10a/0x12f0
[  625.050161]  ? print_usage_bug+0xc0/0xc0
[  625.054206]  ? migrate_swap_stop+0x930/0x930
[  625.058607]  ? __handle_mm_fault+0x9ab/0x53e0
[  625.063109]  ? graph_lock+0x170/0x170
[  625.066896]  ? print_usage_bug+0xc0/0xc0
[  625.070977]  ? __lock_acquire+0x7ec/0x4ec0
[  625.075205]  ? print_usage_bug+0xc0/0xc0
[  625.079260]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  625.084782]  ? reuse_swap_page+0x4bd/0x1520
[  625.089135]  ? swp_swapcount+0x530/0x530
[  625.093197]  ? __lock_acquire+0x7ec/0x4ec0
[  625.097429]  ? mark_held_locks+0x130/0x130
[  625.101652]  ? rcu_softirq_qs+0x20/0x20
[  625.105614]  ? __lock_acquire+0x7ec/0x4ec0
[  625.109841]  ? mark_held_locks+0x130/0x130
[  625.114065]  ? graph_lock+0x170/0x170
[  625.117863]  ? mark_held_locks+0x130/0x130
[  625.122098]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  625.127628]  ? check_preemption_disabled+0x48/0x200
[  625.132636]  ? find_held_lock+0x36/0x1c0
[  625.136689]  ? do_wp_page+0xa6f/0x1690
[  625.140562]  ? lock_downgrade+0x900/0x900
[  625.144695]  ? wake_up_page_bit+0x6f0/0x6f0
[  625.149004]  ? kasan_check_read+0x11/0x20
[  625.153140]  ? do_raw_spin_unlock+0xa7/0x2f0
[  625.157536]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  625.162117]  ? pgd_free+0x380/0x380
[  625.165730]  ? __lock_acquire+0x7ec/0x4ec0
[  625.169956]  ? _raw_spin_unlock+0x2c/0x50
[  625.174109]  ? do_wp_page+0x77c/0x1690
[  625.178007]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  625.182665]  ? find_held_lock+0x36/0x1c0
[  625.186717]  ? lock_release+0x970/0x970
[  625.190698]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  625.196224]  ? kasan_check_write+0x14/0x20
[  625.200446]  ? do_raw_spin_lock+0xc1/0x200
[  625.204671]  ? __handle_mm_fault+0x9ab/0x53e0
[  625.209156]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  625.213982]  ? __sb_end_write+0xd9/0x110
[  625.218032]  ? graph_lock+0x170/0x170
[  625.221830]  ? print_usage_bug+0xc0/0xc0
[  625.225878]  ? atime_needs_update+0x710/0x710
[  625.230360]  ? graph_lock+0x170/0x170
[  625.234144]  ? graph_lock+0x170/0x170
[  625.237947]  ? find_held_lock+0x36/0x1c0
[  625.242000]  ? __do_page_fault+0x6b7/0xec0
[  625.246223]  _do_fork+0x1cb/0x11c0
[  625.249752]  ? fork_idle+0x1d0/0x1d0
[  625.253465]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  625.258990]  ? check_preemption_disabled+0x48/0x200
[  625.263996]  ? kasan_check_write+0x14/0x20
[  625.268231]  ? up_read+0x225/0x2c0
[  625.271756]  ? up_read_non_owner+0x100/0x100
[  625.276152]  ? find_vma+0x34/0x190
[  625.279703]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  625.285229]  ? __do_page_fault+0x49c/0xec0
[  625.289452]  ? do_syscall_64+0x9a/0x820
[  625.293417]  ? do_syscall_64+0x9a/0x820
[  625.297393]  ? lockdep_hardirqs_on+0x421/0x5c0
[  625.301971]  ? trace_hardirqs_on+0xbd/0x310
[  625.306281]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  625.311631]  ? trace_hardirqs_off_caller+0x300/0x300
[  625.316738]  __x64_sys_clone+0xbf/0x150
[  625.320743]  do_syscall_64+0x1b9/0x820
[  625.324618]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  625.330001]  ? syscall_return_slowpath+0x5e0/0x5e0
[  625.334947]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  625.339796]  ? trace_hardirqs_off+0x310/0x310
[  625.344294]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  625.349821]  ? prepare_exit_to_usermode+0x291/0x3b0
[  625.354827]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  625.359663]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  625.364835] RIP: 0033:0x455c4a
[  625.368028] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  625.386919] RSP: 002b:00007fff9d17d960 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  625.394618] RAX: ffffffffffffffda RBX: 00007fff9d17d960 RCX: 0000000000455c4a
[  625.401887] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  625.409379] RBP: 00007fff9d17d9a0 R08: 0000000000000001 R09: 0000000000ea7940
[  625.416659] R10: 0000000000ea7c10 R11: 0000000000000246 R12: 0000000000000001
[  625.423930] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  625.432863] Memory limit reached of cgroup /syz1
[  625.437743] memory: usage 7084kB, limit 0kB, failcnt 140
[  625.443208] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  625.450033] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  625.456205] Memory cgroup stats for /syz1: cache:112KB rss:176KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:52KB inactive_file:4KB active_file:4KB unevictable:0KB
[  625.476383] Out of memory and no killable processes...
[  625.483358] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  625.496281] syz-executor1 cpuset=syz1 mems_allowed=0
[  625.501525] CPU: 0 PID: 23483 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  625.510005] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  625.519343] Call Trace:
[  625.521919]  dump_stack+0x1d3/0x2c4
[  625.525548]  ? dump_stack_print_info.cold.2+0x52/0x52
[  625.530744]  dump_header+0x27b/0xf72
[  625.534445]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  625.539384]  ? kasan_check_read+0x11/0x20
[  625.543523]  ? pagefault_out_of_memory+0x197/0x197
[  625.548495]  ? rcu_read_unlock+0x33/0x60
[  625.552569]  ? mem_cgroup_iter+0x514/0x1160
[  625.556907]  ? find_held_lock+0x36/0x1c0
[  625.560972]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  625.565733]  ? mark_held_locks+0xc7/0x130
[  625.569870]  ? _raw_spin_unlock_irq+0x27/0x80
[  625.574370]  ? _raw_spin_unlock_irq+0x27/0x80
[  625.578856]  ? lockdep_hardirqs_on+0x421/0x5c0
[  625.583423]  ? trace_hardirqs_on+0xbd/0x310
[  625.587731]  ? kasan_check_read+0x11/0x20
[  625.591863]  ? css_task_iter_end+0x222/0x490
[  625.596262]  ? trace_hardirqs_off_caller+0x300/0x300
[  625.601372]  ? kasan_check_write+0x14/0x20
[  625.605595]  ? do_raw_spin_lock+0xc1/0x200
[  625.609865]  ? _raw_spin_unlock_irq+0x60/0x80
[  625.614347]  ? css_task_iter_end+0x2ce/0x490
[  625.618743]  ? cgroup_procs_next+0x70/0x70
[  625.622966]  ? _raw_spin_unlock_irq+0x60/0x80
[  625.627450]  ? oom_badness+0xaa0/0xaa0
[  625.631356]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  625.636118]  ? mem_cgroup_iter_break+0x30/0x30
[  625.640697]  ? mark_held_locks+0xc7/0x130
[  625.644838]  out_of_memory.cold.30+0xf/0x184
[  625.649236]  ? lockdep_hardirqs_on+0x421/0x5c0
[  625.653808]  ? kasan_check_read+0x11/0x20
[  625.657944]  ? oom_killer_disable+0x3a0/0x3a0
[  625.662426]  ? kasan_check_write+0x14/0x20
[  625.666658]  ? do_raw_spin_lock+0xc1/0x200
[  625.670890]  mem_cgroup_out_of_memory+0x15e/0x210
[  625.675746]  ? memcg_memory_event+0x40/0x40
[  625.680060]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  625.684916]  ? page_counter_try_charge+0x1c1/0x220
[  625.689835]  try_charge+0xb1a/0x1690
[  625.693538]  ? lock_downgrade+0x900/0x900
[  625.697673]  ? check_preemption_disabled+0x48/0x200
[  625.702683]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  625.708733]  ? find_held_lock+0x36/0x1c0
[  625.712783]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  625.717636]  ? lock_downgrade+0x900/0x900
[  625.721780]  ? check_preemption_disabled+0x48/0x200
[  625.726785]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  625.731700]  ? kasan_check_read+0x11/0x20
[  625.735831]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  625.741105]  ? rcu_softirq_qs+0x20/0x20
[  625.745082]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  625.749921]  memcg_kmem_charge_memcg+0x7c/0x120
[  625.754581]  ? memcg_kmem_put_cache+0xb0/0xb0
[  625.759067]  ? kmem_cache_alloc+0x12e/0x730
[  625.763386]  ? print_usage_bug+0xc0/0xc0
[  625.767453]  memcg_kmem_charge+0x135/0x300
[  625.771697]  __alloc_pages_nodemask+0x89c/0xdd0
[  625.776358]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  625.781366]  ? __lock_acquire+0x7ec/0x4ec0
[  625.785591]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  625.791120]  ? graph_lock+0x170/0x170
[  625.794907]  ? find_held_lock+0x36/0x1c0
[  625.798966]  ? __lock_is_held+0xb5/0x140
[  625.803014]  ? lock_downgrade+0x900/0x900
[  625.807153]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  625.812683]  alloc_pages_current+0x10c/0x210
[  625.817086]  pte_alloc_one+0x1b/0x1a0
[  625.820881]  __pte_alloc+0x2a/0x350
[  625.824514]  copy_page_range+0x18a2/0x26f0
[  625.828755]  ? pmd_alloc+0x180/0x180
[  625.832458]  ? save_stack+0xa9/0xd0
[  625.836067]  ? save_stack+0x43/0xd0
[  625.839686]  ? kasan_slab_alloc+0x12/0x20
[  625.843818]  ? kmem_cache_alloc+0x12e/0x730
[  625.848127]  ? vm_area_dup+0x7a/0x230
[  625.851909]  ? copy_process+0x429f/0x8780
[  625.856038]  ? _do_fork+0x1cb/0x11c0
[  625.859734]  ? __x64_sys_clone+0xbf/0x150
[  625.863869]  ? do_syscall_64+0x1b9/0x820
[  625.867925]  ? graph_lock+0x170/0x170
[  625.871731]  ? lock_downgrade+0x900/0x900
[  625.875868]  ? graph_lock+0x170/0x170
[  625.879674]  ? graph_lock+0x170/0x170
[  625.883480]  ? find_held_lock+0x36/0x1c0
[  625.887533]  ? copy_process+0x454a/0x8780
[  625.891666]  ? lock_downgrade+0x900/0x900
[  625.895804]  ? lock_release+0x970/0x970
[  625.899764]  ? ttwu_stat+0x5c0/0x5c0
[  625.903481]  ? dup_userfaultfd+0x6d8/0x890
[  625.907715]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  625.912720]  ? vma_compute_subtree_gap+0x160/0x240
[  625.917637]  ? validate_mm_rb+0xaa/0xc0
[  625.921598]  ? __vma_link_rb+0x26c/0x370
[  625.925649]  copy_process+0x4720/0x8780
[  625.929640]  ? __cleanup_sighand+0x70/0x70
[  625.933863]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  625.939387]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  625.944914]  ? page_swapcount+0x1d0/0x1d0
[  625.949047]  ? try_to_wake_up+0x10a/0x12f0
[  625.953270]  ? lock_downgrade+0x900/0x900
[  625.957407]  ? lock_downgrade+0x900/0x900
[  625.961550]  ? trace_hardirqs_off+0xb8/0x310
[  625.965942]  ? kasan_check_read+0x11/0x20
[  625.970086]  ? trace_hardirqs_on_caller+0x310/0x310
[  625.975107]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  625.980216]  ? try_to_wake_up+0x10a/0x12f0
[  625.984457]  ? print_usage_bug+0xc0/0xc0
[  625.988504]  ? migrate_swap_stop+0x930/0x930
[  625.992911]  ? __handle_mm_fault+0x9ab/0x53e0
[  625.997408]  ? graph_lock+0x170/0x170
[  626.001201]  ? print_usage_bug+0xc0/0xc0
[  626.005250]  ? __lock_acquire+0x7ec/0x4ec0
[  626.009489]  ? print_usage_bug+0xc0/0xc0
[  626.013543]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  626.019093]  ? reuse_swap_page+0x4bd/0x1520
[  626.023433]  ? swp_swapcount+0x530/0x530
[  626.027492]  ? __lock_acquire+0x7ec/0x4ec0
[  626.031714]  ? mark_held_locks+0x130/0x130
[  626.035936]  ? rcu_softirq_qs+0x20/0x20
[  626.039907]  ? __lock_acquire+0x7ec/0x4ec0
[  626.044155]  ? mark_held_locks+0x130/0x130
[  626.048384]  ? graph_lock+0x170/0x170
[  626.052188]  ? mark_held_locks+0x130/0x130
[  626.056415]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  626.061943]  ? check_preemption_disabled+0x48/0x200
[  626.066955]  ? find_held_lock+0x36/0x1c0
[  626.071008]  ? do_wp_page+0xa6f/0x1690
[  626.074883]  ? lock_downgrade+0x900/0x900
[  626.079031]  ? wake_up_page_bit+0x6f0/0x6f0
[  626.083341]  ? kasan_check_read+0x11/0x20
[  626.087474]  ? do_raw_spin_unlock+0xa7/0x2f0
[  626.091868]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  626.096434]  ? pgd_free+0x380/0x380
[  626.100047]  ? __lock_acquire+0x7ec/0x4ec0
[  626.104294]  ? _raw_spin_unlock+0x2c/0x50
[  626.108430]  ? do_wp_page+0x77c/0x1690
[  626.112303]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  626.116959]  ? find_held_lock+0x36/0x1c0
[  626.121009]  ? lock_release+0x970/0x970
[  626.124972]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  626.130497]  ? kasan_check_write+0x14/0x20
[  626.134718]  ? do_raw_spin_lock+0xc1/0x200
[  626.138943]  ? __handle_mm_fault+0x9ab/0x53e0
[  626.143446]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  626.148299]  ? __sb_end_write+0xd9/0x110
[  626.152350]  ? graph_lock+0x170/0x170
[  626.156137]  ? print_usage_bug+0xc0/0xc0
[  626.160185]  ? atime_needs_update+0x710/0x710
[  626.164669]  ? graph_lock+0x170/0x170
[  626.168479]  ? graph_lock+0x170/0x170
[  626.172270]  ? find_held_lock+0x36/0x1c0
[  626.176322]  ? __do_page_fault+0x6b7/0xec0
[  626.180547]  _do_fork+0x1cb/0x11c0
[  626.184107]  ? fork_idle+0x1d0/0x1d0
[  626.187812]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  626.193339]  ? check_preemption_disabled+0x48/0x200
[  626.198344]  ? kasan_check_write+0x14/0x20
[  626.202563]  ? up_read+0x225/0x2c0
[  626.206097]  ? up_read_non_owner+0x100/0x100
[  626.210495]  ? find_vma+0x34/0x190
[  626.214022]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  626.219545]  ? __do_page_fault+0x49c/0xec0
[  626.223769]  ? do_syscall_64+0x9a/0x820
[  626.227730]  ? do_syscall_64+0x9a/0x820
[  626.231693]  ? lockdep_hardirqs_on+0x421/0x5c0
[  626.236261]  ? trace_hardirqs_on+0xbd/0x310
[  626.240573]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  626.245924]  ? trace_hardirqs_off_caller+0x300/0x300
[  626.251018]  __x64_sys_clone+0xbf/0x150
[  626.254980]  do_syscall_64+0x1b9/0x820
[  626.258855]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  626.264210]  ? syscall_return_slowpath+0x5e0/0x5e0
[  626.269136]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  626.273964]  ? trace_hardirqs_off+0x310/0x310
[  626.278451]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  626.283991]  ? prepare_exit_to_usermode+0x291/0x3b0
[  626.289019]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  626.293862]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  626.299185] RIP: 0033:0x455c4a
[  626.302368] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  626.321253] RSP: 002b:00007fff9d17d960 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  626.328947] RAX: ffffffffffffffda RBX: 00007fff9d17d960 RCX: 0000000000455c4a
[  626.336199] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  626.343452] RBP: 00007fff9d17d9a0 R08: 0000000000000001 R09: 0000000000ea7940
[  626.350709] R10: 0000000000ea7c10 R11: 0000000000000246 R12: 0000000000000001
[  626.357964] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  626.369786] Memory limit reached of cgroup /syz1
[  626.374721] memory: usage 7000kB, limit 0kB, failcnt 148
[  626.380217] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  626.386955] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  626.393145] Memory cgroup stats for /syz1: cache:112KB rss:176KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:52KB inactive_file:4KB active_file:4KB unevictable:0KB
[  626.413400] Out of memory and no killable processes...
[  626.420445] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  626.433353] syz-executor1 cpuset=syz1 mems_allowed=0
[  626.438573] CPU: 1 PID: 23483 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  626.447071] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  626.456415] Call Trace:
[  626.458992]  dump_stack+0x1d3/0x2c4
[  626.462614]  ? dump_stack_print_info.cold.2+0x52/0x52
[  626.467802]  dump_header+0x27b/0xf72
[  626.471516]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  626.476449]  ? kasan_check_read+0x11/0x20
[  626.480595]  ? pagefault_out_of_memory+0x197/0x197
[  626.485525]  ? rcu_read_unlock+0x33/0x60
[  626.489586]  ? mem_cgroup_iter+0x514/0x1160
[  626.493913]  ? find_held_lock+0x36/0x1c0
[  626.497981]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  626.502724]  ? mark_held_locks+0xc7/0x130
[  626.506861]  ? _raw_spin_unlock_irq+0x27/0x80
[  626.511342]  ? _raw_spin_unlock_irq+0x27/0x80
[  626.515823]  ? lockdep_hardirqs_on+0x421/0x5c0
[  626.520392]  ? trace_hardirqs_on+0xbd/0x310
[  626.524698]  ? kasan_check_read+0x11/0x20
[  626.528833]  ? css_task_iter_end+0x222/0x490
[  626.533233]  ? trace_hardirqs_off_caller+0x300/0x300
[  626.538323]  ? kasan_check_write+0x14/0x20
[  626.542541]  ? do_raw_spin_lock+0xc1/0x200
[  626.546764]  ? _raw_spin_unlock_irq+0x60/0x80
[  626.551257]  ? css_task_iter_end+0x2ce/0x490
[  626.555655]  ? cgroup_procs_next+0x70/0x70
[  626.559882]  ? _raw_spin_unlock_irq+0x60/0x80
[  626.564370]  ? oom_badness+0xaa0/0xaa0
[  626.568248]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  626.572992]  ? mem_cgroup_iter_break+0x30/0x30
[  626.577574]  ? mark_held_locks+0xc7/0x130
[  626.581717]  out_of_memory.cold.30+0xf/0x184
[  626.586114]  ? lockdep_hardirqs_on+0x421/0x5c0
[  626.590685]  ? kasan_check_read+0x11/0x20
[  626.594827]  ? oom_killer_disable+0x3a0/0x3a0
[  626.599312]  ? kasan_check_write+0x14/0x20
[  626.603534]  ? do_raw_spin_lock+0xc1/0x200
[  626.607766]  mem_cgroup_out_of_memory+0x15e/0x210
[  626.612619]  ? memcg_memory_event+0x40/0x40
[  626.616927]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  626.621759]  ? page_counter_try_charge+0x1c1/0x220
[  626.626692]  try_charge+0xb1a/0x1690
[  626.630397]  ? lock_downgrade+0x900/0x900
[  626.634546]  ? check_preemption_disabled+0x48/0x200
[  626.639553]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  626.645622]  ? find_held_lock+0x36/0x1c0
[  626.649675]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  626.654529]  ? lock_downgrade+0x900/0x900
[  626.658682]  ? check_preemption_disabled+0x48/0x200
[  626.663689]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  626.668608]  ? kasan_check_read+0x11/0x20
[  626.672749]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  626.678010]  ? rcu_softirq_qs+0x20/0x20
[  626.681982]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  626.686817]  memcg_kmem_charge_memcg+0x7c/0x120
[  626.691484]  ? memcg_kmem_put_cache+0xb0/0xb0
[  626.695971]  ? kmem_cache_alloc+0x12e/0x730
[  626.700281]  ? print_usage_bug+0xc0/0xc0
[  626.704336]  memcg_kmem_charge+0x135/0x300
[  626.708565]  __alloc_pages_nodemask+0x89c/0xdd0
[  626.713232]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  626.718240]  ? __lock_acquire+0x7ec/0x4ec0
[  626.722482]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  626.728011]  ? graph_lock+0x170/0x170
[  626.731801]  ? find_held_lock+0x36/0x1c0
[  626.735879]  ? __lock_is_held+0xb5/0x140
[  626.739922]  ? lock_downgrade+0x900/0x900
[  626.744057]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  626.749598]  alloc_pages_current+0x10c/0x210
[  626.753997]  pte_alloc_one+0x1b/0x1a0
[  626.757785]  __pte_alloc+0x2a/0x350
[  626.761397]  copy_page_range+0x18a2/0x26f0
[  626.765630]  ? pmd_alloc+0x180/0x180
[  626.769336]  ? save_stack+0xa9/0xd0
[  626.772948]  ? save_stack+0x43/0xd0
[  626.776572]  ? kasan_slab_alloc+0x12/0x20
[  626.780732]  ? kmem_cache_alloc+0x12e/0x730
[  626.785051]  ? vm_area_dup+0x7a/0x230
[  626.788840]  ? copy_process+0x429f/0x8780
[  626.792968]  ? _do_fork+0x1cb/0x11c0
[  626.796663]  ? __x64_sys_clone+0xbf/0x150
[  626.800797]  ? do_syscall_64+0x1b9/0x820
[  626.804853]  ? graph_lock+0x170/0x170
[  626.808642]  ? lock_downgrade+0x900/0x900
[  626.812772]  ? graph_lock+0x170/0x170
[  626.816569]  ? graph_lock+0x170/0x170
[  626.820359]  ? find_held_lock+0x36/0x1c0
[  626.824410]  ? copy_process+0x454a/0x8780
[  626.828567]  ? lock_downgrade+0x900/0x900
[  626.832732]  ? lock_release+0x970/0x970
[  626.836690]  ? ttwu_stat+0x5c0/0x5c0
[  626.840400]  ? dup_userfaultfd+0x6d8/0x890
[  626.844630]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  626.849637]  ? vma_compute_subtree_gap+0x160/0x240
[  626.854554]  ? validate_mm_rb+0xaa/0xc0
[  626.858514]  ? __vma_link_rb+0x26c/0x370
[  626.862596]  copy_process+0x4720/0x8780
[  626.866579]  ? __cleanup_sighand+0x70/0x70
[  626.870813]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  626.876342]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  626.881872]  ? page_swapcount+0x1d0/0x1d0
[  626.886020]  ? try_to_wake_up+0x10a/0x12f0
[  626.890244]  ? lock_downgrade+0x900/0x900
[  626.894377]  ? lock_downgrade+0x900/0x900
[  626.898517]  ? trace_hardirqs_off+0xb8/0x310
[  626.902910]  ? kasan_check_read+0x11/0x20
[  626.907051]  ? trace_hardirqs_on_caller+0x310/0x310
[  626.912068]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  626.917171]  ? try_to_wake_up+0x10a/0x12f0
[  626.921398]  ? print_usage_bug+0xc0/0xc0
[  626.925447]  ? migrate_swap_stop+0x930/0x930
[  626.929845]  ? __handle_mm_fault+0x9ab/0x53e0
[  626.934330]  ? graph_lock+0x170/0x170
[  626.938123]  ? print_usage_bug+0xc0/0xc0
[  626.942181]  ? __lock_acquire+0x7ec/0x4ec0
[  626.946409]  ? print_usage_bug+0xc0/0xc0
[  626.950466]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  626.955990]  ? reuse_swap_page+0x4bd/0x1520
[  626.960300]  ? swp_swapcount+0x530/0x530
[  626.964355]  ? __lock_acquire+0x7ec/0x4ec0
[  626.968576]  ? mark_held_locks+0x130/0x130
[  626.972809]  ? rcu_softirq_qs+0x20/0x20
[  626.976773]  ? __lock_acquire+0x7ec/0x4ec0
[  626.980998]  ? mark_held_locks+0x130/0x130
[  626.985219]  ? graph_lock+0x170/0x170
[  626.989010]  ? mark_held_locks+0x130/0x130
[  626.993234]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  626.998759]  ? check_preemption_disabled+0x48/0x200
[  627.003765]  ? find_held_lock+0x36/0x1c0
[  627.007816]  ? do_wp_page+0xa6f/0x1690
[  627.011708]  ? lock_downgrade+0x900/0x900
[  627.015846]  ? wake_up_page_bit+0x6f0/0x6f0
[  627.020242]  ? kasan_check_read+0x11/0x20
[  627.024376]  ? do_raw_spin_unlock+0xa7/0x2f0
[  627.028786]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  627.033359]  ? pgd_free+0x380/0x380
[  627.036972]  ? __lock_acquire+0x7ec/0x4ec0
[  627.041197]  ? _raw_spin_unlock+0x2c/0x50
[  627.045336]  ? do_wp_page+0x77c/0x1690
[  627.049224]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  627.053886]  ? find_held_lock+0x36/0x1c0
[  627.057941]  ? lock_release+0x970/0x970
[  627.061911]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  627.067454]  ? kasan_check_write+0x14/0x20
[  627.071697]  ? do_raw_spin_lock+0xc1/0x200
[  627.075928]  ? __handle_mm_fault+0x9ab/0x53e0
[  627.080421]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  627.085268]  ? __sb_end_write+0xd9/0x110
[  627.089322]  ? graph_lock+0x170/0x170
[  627.093113]  ? print_usage_bug+0xc0/0xc0
[  627.097164]  ? atime_needs_update+0x710/0x710
[  627.101662]  ? graph_lock+0x170/0x170
[  627.105449]  ? graph_lock+0x170/0x170
[  627.109258]  ? find_held_lock+0x36/0x1c0
[  627.113323]  ? __do_page_fault+0x6b7/0xec0
[  627.117546]  _do_fork+0x1cb/0x11c0
[  627.121113]  ? fork_idle+0x1d0/0x1d0
[  627.124812]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  627.130338]  ? check_preemption_disabled+0x48/0x200
[  627.135345]  ? kasan_check_write+0x14/0x20
[  627.139564]  ? up_read+0x225/0x2c0
[  627.143102]  ? up_read_non_owner+0x100/0x100
[  627.147514]  ? find_vma+0x34/0x190
[  627.151063]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  627.156604]  ? __do_page_fault+0x49c/0xec0
[  627.160831]  ? do_syscall_64+0x9a/0x820
[  627.164809]  ? do_syscall_64+0x9a/0x820
[  627.168775]  ? lockdep_hardirqs_on+0x421/0x5c0
[  627.173346]  ? trace_hardirqs_on+0xbd/0x310
[  627.177656]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  627.183005]  ? trace_hardirqs_off_caller+0x300/0x300
[  627.188109]  __x64_sys_clone+0xbf/0x150
[  627.192083]  do_syscall_64+0x1b9/0x820
[  627.195979]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  627.201333]  ? syscall_return_slowpath+0x5e0/0x5e0
[  627.206248]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  627.211089]  ? trace_hardirqs_off+0x310/0x310
[  627.215600]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  627.221124]  ? prepare_exit_to_usermode+0x291/0x3b0
[  627.226128]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  627.230964]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  627.236140] RIP: 0033:0x455c4a
[  627.239318] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  627.258204] RSP: 002b:00007fff9d17d960 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  627.265908] RAX: ffffffffffffffda RBX: 00007fff9d17d960 RCX: 0000000000455c4a
[  627.273173] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  627.280424] RBP: 00007fff9d17d9a0 R08: 0000000000000001 R09: 0000000000ea7940
[  627.287676] R10: 0000000000ea7c10 R11: 0000000000000246 R12: 0000000000000001
[  627.294931] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  627.304236] Memory limit reached of cgroup /syz1
[  627.310117] memory: usage 6992kB, limit 0kB, failcnt 156
[  627.315575] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  627.322393] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  627.328572] Memory cgroup stats for /syz1: cache:112KB rss:176KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:52KB inactive_file:4KB active_file:4KB unevictable:0KB
[  627.348758] Out of memory and no killable processes...
[  627.355744] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  627.368713] syz-executor1 cpuset=syz1 mems_allowed=0
[  627.373869] CPU: 1 PID: 23483 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  627.382345] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  627.391684] Call Trace:
[  627.394275]  dump_stack+0x1d3/0x2c4
[  627.397891]  ? dump_stack_print_info.cold.2+0x52/0x52
[  627.403074]  dump_header+0x27b/0xf72
[  627.407106]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  627.412025]  ? kasan_check_read+0x11/0x20
[  627.416164]  ? pagefault_out_of_memory+0x197/0x197
[  627.421092]  ? rcu_read_unlock+0x33/0x60
[  627.425141]  ? mem_cgroup_iter+0x514/0x1160
[  627.429450]  ? find_held_lock+0x36/0x1c0
[  627.433498]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  627.438241]  ? mark_held_locks+0xc7/0x130
[  627.442378]  ? _raw_spin_unlock_irq+0x27/0x80
[  627.446856]  ? _raw_spin_unlock_irq+0x27/0x80
[  627.451336]  ? lockdep_hardirqs_on+0x421/0x5c0
[  627.455913]  ? trace_hardirqs_on+0xbd/0x310
[  627.460216]  ? kasan_check_read+0x11/0x20
[  627.464346]  ? css_task_iter_end+0x222/0x490
[  627.468758]  ? trace_hardirqs_off_caller+0x300/0x300
[  627.473849]  ? kasan_check_write+0x14/0x20
[  627.478069]  ? do_raw_spin_lock+0xc1/0x200
[  627.482321]  ? _raw_spin_unlock_irq+0x60/0x80
[  627.486805]  ? css_task_iter_end+0x2ce/0x490
[  627.491200]  ? cgroup_procs_next+0x70/0x70
[  627.495425]  ? _raw_spin_unlock_irq+0x60/0x80
[  627.499907]  ? oom_badness+0xaa0/0xaa0
[  627.503785]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  627.508529]  ? mem_cgroup_iter_break+0x30/0x30
[  627.513111]  ? mark_held_locks+0xc7/0x130
[  627.517254]  out_of_memory.cold.30+0xf/0x184
[  627.521652]  ? lockdep_hardirqs_on+0x421/0x5c0
[  627.526227]  ? kasan_check_read+0x11/0x20
[  627.530367]  ? oom_killer_disable+0x3a0/0x3a0
[  627.534871]  ? kasan_check_write+0x14/0x20
[  627.539104]  ? do_raw_spin_lock+0xc1/0x200
[  627.543336]  mem_cgroup_out_of_memory+0x15e/0x210
[  627.548169]  ? memcg_memory_event+0x40/0x40
[  627.552477]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  627.557307]  ? page_counter_try_charge+0x1c1/0x220
[  627.562231]  try_charge+0xb1a/0x1690
[  627.565938]  ? lock_downgrade+0x900/0x900
[  627.570069]  ? check_preemption_disabled+0x48/0x200
[  627.575092]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  627.581171]  ? find_held_lock+0x36/0x1c0
[  627.585223]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  627.590054]  ? lock_downgrade+0x900/0x900
[  627.594195]  ? check_preemption_disabled+0x48/0x200
[  627.599206]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  627.604125]  ? kasan_check_read+0x11/0x20
[  627.608272]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  627.613541]  ? rcu_softirq_qs+0x20/0x20
[  627.617510]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  627.622349]  memcg_kmem_charge_memcg+0x7c/0x120
[  627.627009]  ? memcg_kmem_put_cache+0xb0/0xb0
[  627.631493]  ? kmem_cache_alloc+0x12e/0x730
[  627.635815]  ? print_usage_bug+0xc0/0xc0
[  627.639872]  memcg_kmem_charge+0x135/0x300
[  627.644106]  __alloc_pages_nodemask+0x89c/0xdd0
[  627.648787]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  627.653791]  ? __lock_acquire+0x7ec/0x4ec0
[  627.658045]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  627.663574]  ? graph_lock+0x170/0x170
[  627.667367]  ? find_held_lock+0x36/0x1c0
[  627.671439]  ? __lock_is_held+0xb5/0x140
[  627.675495]  ? lock_downgrade+0x900/0x900
[  627.679634]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  627.685161]  alloc_pages_current+0x10c/0x210
[  627.689558]  pte_alloc_one+0x1b/0x1a0
[  627.693346]  __pte_alloc+0x2a/0x350
[  627.696968]  copy_page_range+0x18a2/0x26f0
[  627.701293]  ? pmd_alloc+0x180/0x180
[  627.705003]  ? save_stack+0xa9/0xd0
[  627.708635]  ? save_stack+0x43/0xd0
[  627.712260]  ? kasan_slab_alloc+0x12/0x20
[  627.716416]  ? kmem_cache_alloc+0x12e/0x730
[  627.720724]  ? vm_area_dup+0x7a/0x230
[  627.724508]  ? copy_process+0x429f/0x8780
[  627.728639]  ? _do_fork+0x1cb/0x11c0
[  627.732335]  ? __x64_sys_clone+0xbf/0x150
[  627.736469]  ? do_syscall_64+0x1b9/0x820
[  627.740526]  ? graph_lock+0x170/0x170
[  627.744334]  ? lock_downgrade+0x900/0x900
[  627.748473]  ? graph_lock+0x170/0x170
[  627.752261]  ? graph_lock+0x170/0x170
[  627.756048]  ? find_held_lock+0x36/0x1c0
[  627.760109]  ? copy_process+0x454a/0x8780
[  627.764260]  ? lock_downgrade+0x900/0x900
[  627.768401]  ? lock_release+0x970/0x970
[  627.772365]  ? ttwu_stat+0x5c0/0x5c0
[  627.776071]  ? dup_userfaultfd+0x6d8/0x890
[  627.780311]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  627.785318]  ? vma_compute_subtree_gap+0x160/0x240
[  627.790233]  ? validate_mm_rb+0xaa/0xc0
[  627.794193]  ? __vma_link_rb+0x26c/0x370
[  627.798242]  copy_process+0x4720/0x8780
[  627.802222]  ? __cleanup_sighand+0x70/0x70
[  627.806448]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  627.811975]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  627.817504]  ? page_swapcount+0x1d0/0x1d0
[  627.821642]  ? try_to_wake_up+0x10a/0x12f0
[  627.825866]  ? lock_downgrade+0x900/0x900
[  627.830000]  ? lock_downgrade+0x900/0x900
[  627.834148]  ? trace_hardirqs_off+0xb8/0x310
[  627.838551]  ? kasan_check_read+0x11/0x20
[  627.842713]  ? trace_hardirqs_on_caller+0x310/0x310
[  627.847726]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  627.852820]  ? try_to_wake_up+0x10a/0x12f0
[  627.857050]  ? print_usage_bug+0xc0/0xc0
[  627.861111]  ? migrate_swap_stop+0x930/0x930
[  627.865507]  ? __handle_mm_fault+0x9ab/0x53e0
[  627.869990]  ? graph_lock+0x170/0x170
[  627.873776]  ? print_usage_bug+0xc0/0xc0
[  627.877828]  ? __lock_acquire+0x7ec/0x4ec0
[  627.882052]  ? print_usage_bug+0xc0/0xc0
[  627.886114]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  627.891639]  ? reuse_swap_page+0x4bd/0x1520
[  627.895949]  ? swp_swapcount+0x530/0x530
[  627.900001]  ? __lock_acquire+0x7ec/0x4ec0
[  627.904219]  ? mark_held_locks+0x130/0x130
[  627.908454]  ? rcu_softirq_qs+0x20/0x20
[  627.912436]  ? __lock_acquire+0x7ec/0x4ec0
[  627.916665]  ? mark_held_locks+0x130/0x130
[  627.920903]  ? graph_lock+0x170/0x170
[  627.924690]  ? mark_held_locks+0x130/0x130
[  627.928912]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  627.934438]  ? check_preemption_disabled+0x48/0x200
[  627.939443]  ? find_held_lock+0x36/0x1c0
[  627.943491]  ? do_wp_page+0xa6f/0x1690
[  627.947365]  ? lock_downgrade+0x900/0x900
[  627.951498]  ? wake_up_page_bit+0x6f0/0x6f0
[  627.955839]  ? kasan_check_read+0x11/0x20
[  627.959978]  ? do_raw_spin_unlock+0xa7/0x2f0
[  627.964376]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  627.968972]  ? pgd_free+0x380/0x380
[  627.972610]  ? __lock_acquire+0x7ec/0x4ec0
[  627.976853]  ? _raw_spin_unlock+0x2c/0x50
[  627.980987]  ? do_wp_page+0x77c/0x1690
[  627.984866]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  627.989521]  ? find_held_lock+0x36/0x1c0
[  627.993575]  ? lock_release+0x970/0x970
[  627.997545]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  628.003089]  ? kasan_check_write+0x14/0x20
[  628.007313]  ? do_raw_spin_lock+0xc1/0x200
[  628.011569]  ? __handle_mm_fault+0x9ab/0x53e0
[  628.016102]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  628.020937]  ? __sb_end_write+0xd9/0x110
[  628.024988]  ? graph_lock+0x170/0x170
[  628.028777]  ? print_usage_bug+0xc0/0xc0
[  628.032823]  ? atime_needs_update+0x710/0x710
[  628.037308]  ? graph_lock+0x170/0x170
[  628.041098]  ? graph_lock+0x170/0x170
[  628.044909]  ? find_held_lock+0x36/0x1c0
[  628.048984]  ? __do_page_fault+0x6b7/0xec0
[  628.053214]  _do_fork+0x1cb/0x11c0
[  628.056748]  ? fork_idle+0x1d0/0x1d0
[  628.060456]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  628.065988]  ? check_preemption_disabled+0x48/0x200
[  628.071022]  ? kasan_check_write+0x14/0x20
[  628.075251]  ? up_read+0x225/0x2c0
[  628.078780]  ? up_read_non_owner+0x100/0x100
[  628.083187]  ? find_vma+0x34/0x190
[  628.086722]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  628.092273]  ? __do_page_fault+0x49c/0xec0
[  628.096519]  ? do_syscall_64+0x9a/0x820
[  628.100486]  ? do_syscall_64+0x9a/0x820
[  628.104446]  ? lockdep_hardirqs_on+0x421/0x5c0
[  628.109019]  ? trace_hardirqs_on+0xbd/0x310
[  628.113328]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  628.118684]  ? trace_hardirqs_off_caller+0x300/0x300
[  628.123779]  __x64_sys_clone+0xbf/0x150
[  628.127743]  do_syscall_64+0x1b9/0x820
[  628.131616]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  628.136994]  ? syscall_return_slowpath+0x5e0/0x5e0
[  628.141911]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  628.146742]  ? trace_hardirqs_off+0x310/0x310
[  628.151224]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  628.156750]  ? prepare_exit_to_usermode+0x291/0x3b0
[  628.161757]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  628.166594]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  628.171781] RIP: 0033:0x455c4a
[  628.174960] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  628.193858] RSP: 002b:00007fff9d17d960 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  628.201573] RAX: ffffffffffffffda RBX: 00007fff9d17d960 RCX: 0000000000455c4a
[  628.208835] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  628.216105] RBP: 00007fff9d17d9a0 R08: 0000000000000001 R09: 0000000000ea7940
[  628.223364] R10: 0000000000ea7c10 R11: 0000000000000246 R12: 0000000000000001
[  628.230640] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  628.239102] Memory limit reached of cgroup /syz1
[  628.243939] memory: usage 6984kB, limit 0kB, failcnt 164
[  628.249491] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  628.256267] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  628.262488] Memory cgroup stats for /syz1: cache:112KB rss:176KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:52KB inactive_file:4KB active_file:4KB unevictable:0KB
[  628.282780] Out of memory and no killable processes...
[  628.289845] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  628.302964] syz-executor1 cpuset=syz1 mems_allowed=0
[  628.308203] CPU: 1 PID: 23483 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  628.316678] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  628.326028] Call Trace:
[  628.328614]  dump_stack+0x1d3/0x2c4
[  628.332235]  ? dump_stack_print_info.cold.2+0x52/0x52
[  628.337421]  dump_header+0x27b/0xf72
[  628.341233]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  628.346149]  ? kasan_check_read+0x11/0x20
[  628.350289]  ? pagefault_out_of_memory+0x197/0x197
[  628.355212]  ? rcu_read_unlock+0x33/0x60
[  628.359262]  ? mem_cgroup_iter+0x514/0x1160
[  628.363569]  ? find_held_lock+0x36/0x1c0
[  628.367626]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  628.372368]  ? mark_held_locks+0xc7/0x130
[  628.376503]  ? _raw_spin_unlock_irq+0x27/0x80
[  628.380986]  ? _raw_spin_unlock_irq+0x27/0x80
[  628.385470]  ? lockdep_hardirqs_on+0x421/0x5c0
[  628.390047]  ? trace_hardirqs_on+0xbd/0x310
[  628.394355]  ? kasan_check_read+0x11/0x20
[  628.398489]  ? css_task_iter_end+0x222/0x490
[  628.402883]  ? trace_hardirqs_off_caller+0x300/0x300
[  628.407993]  ? kasan_check_write+0x14/0x20
[  628.412214]  ? do_raw_spin_lock+0xc1/0x200
[  628.416437]  ? _raw_spin_unlock_irq+0x60/0x80
[  628.420921]  ? css_task_iter_end+0x2ce/0x490
[  628.425317]  ? cgroup_procs_next+0x70/0x70
[  628.429558]  ? _raw_spin_unlock_irq+0x60/0x80
[  628.434041]  ? oom_badness+0xaa0/0xaa0
[  628.437916]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  628.442659]  ? mem_cgroup_iter_break+0x30/0x30
[  628.447243]  ? mark_held_locks+0xc7/0x130
[  628.451382]  out_of_memory.cold.30+0xf/0x184
[  628.455779]  ? lockdep_hardirqs_on+0x421/0x5c0
[  628.460351]  ? kasan_check_read+0x11/0x20
[  628.464488]  ? oom_killer_disable+0x3a0/0x3a0
[  628.468976]  ? kasan_check_write+0x14/0x20
[  628.473212]  ? do_raw_spin_lock+0xc1/0x200
[  628.477445]  mem_cgroup_out_of_memory+0x15e/0x210
[  628.482277]  ? memcg_memory_event+0x40/0x40
[  628.486584]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  628.491428]  ? page_counter_try_charge+0x1c1/0x220
[  628.496364]  try_charge+0xb1a/0x1690
[  628.500091]  ? lock_downgrade+0x900/0x900
[  628.504231]  ? check_preemption_disabled+0x48/0x200
[  628.509240]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  628.515292]  ? find_held_lock+0x36/0x1c0
[  628.519342]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  628.524174]  ? lock_downgrade+0x900/0x900
[  628.528324]  ? check_preemption_disabled+0x48/0x200
[  628.533333]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  628.538245]  ? kasan_check_read+0x11/0x20
[  628.542378]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  628.547638]  ? rcu_softirq_qs+0x20/0x20
[  628.551606]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  628.556439]  memcg_kmem_charge_memcg+0x7c/0x120
[  628.561100]  ? memcg_kmem_put_cache+0xb0/0xb0
[  628.565583]  ? kmem_cache_alloc+0x12e/0x730
[  628.569896]  ? print_usage_bug+0xc0/0xc0
[  628.573948]  memcg_kmem_charge+0x135/0x300
[  628.578175]  __alloc_pages_nodemask+0x89c/0xdd0
[  628.582831]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  628.587848]  ? __lock_acquire+0x7ec/0x4ec0
[  628.592096]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  628.597624]  ? graph_lock+0x170/0x170
[  628.601411]  ? find_held_lock+0x36/0x1c0
[  628.605468]  ? __lock_is_held+0xb5/0x140
[  628.609525]  ? lock_downgrade+0x900/0x900
[  628.613661]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  628.619187]  alloc_pages_current+0x10c/0x210
[  628.623611]  pte_alloc_one+0x1b/0x1a0
[  628.627397]  __pte_alloc+0x2a/0x350
[  628.631030]  copy_page_range+0x18a2/0x26f0
[  628.635266]  ? pmd_alloc+0x180/0x180
[  628.638976]  ? save_stack+0xa9/0xd0
[  628.642597]  ? save_stack+0x43/0xd0
[  628.646212]  ? kasan_slab_alloc+0x12/0x20
[  628.650345]  ? kmem_cache_alloc+0x12e/0x730
[  628.654649]  ? vm_area_dup+0x7a/0x230
[  628.658436]  ? copy_process+0x429f/0x8780
[  628.662588]  ? _do_fork+0x1cb/0x11c0
[  628.666302]  ? __x64_sys_clone+0xbf/0x150
[  628.670436]  ? do_syscall_64+0x1b9/0x820
[  628.674495]  ? graph_lock+0x170/0x170
[  628.678301]  ? lock_downgrade+0x900/0x900
[  628.682442]  ? graph_lock+0x170/0x170
[  628.686249]  ? kasan_check_read+0x11/0x20
[  628.690386]  ? graph_lock+0x170/0x170
[  628.694284]  ? find_held_lock+0x36/0x1c0
[  628.698338]  ? copy_process+0x454a/0x8780
[  628.702474]  ? lock_downgrade+0x900/0x900
[  628.706652]  ? lock_release+0x970/0x970
[  628.710623]  ? ttwu_stat+0x5c0/0x5c0
[  628.714326]  ? dup_userfaultfd+0x6d8/0x890
[  628.718556]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  628.723561]  ? vma_compute_subtree_gap+0x160/0x240
[  628.728493]  ? validate_mm_rb+0xaa/0xc0
[  628.732455]  ? __vma_link_rb+0x26c/0x370
[  628.736508]  copy_process+0x4720/0x8780
[  628.740488]  ? __cleanup_sighand+0x70/0x70
[  628.744712]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  628.750234]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  628.755764]  ? page_swapcount+0x1d0/0x1d0
[  628.759899]  ? try_to_wake_up+0x10a/0x12f0
[  628.764124]  ? lock_downgrade+0x900/0x900
[  628.768267]  ? lock_downgrade+0x900/0x900
[  628.772409]  ? trace_hardirqs_off+0xb8/0x310
[  628.776805]  ? kasan_check_read+0x11/0x20
[  628.780962]  ? trace_hardirqs_on_caller+0x310/0x310
[  628.785977]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  628.791071]  ? try_to_wake_up+0x10a/0x12f0
[  628.795309]  ? print_usage_bug+0xc0/0xc0
[  628.799360]  ? migrate_swap_stop+0x930/0x930
[  628.803760]  ? __handle_mm_fault+0x9ab/0x53e0
[  628.808245]  ? graph_lock+0x170/0x170
[  628.812049]  ? print_usage_bug+0xc0/0xc0
[  628.816113]  ? __lock_acquire+0x7ec/0x4ec0
[  628.820339]  ? print_usage_bug+0xc0/0xc0
[  628.824388]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  628.829914]  ? reuse_swap_page+0x4bd/0x1520
[  628.834232]  ? swp_swapcount+0x530/0x530
[  628.838287]  ? __lock_acquire+0x7ec/0x4ec0
[  628.842522]  ? mark_held_locks+0x130/0x130
[  628.846742]  ? rcu_softirq_qs+0x20/0x20
[  628.850716]  ? __lock_acquire+0x7ec/0x4ec0
[  628.854940]  ? mark_held_locks+0x130/0x130
[  628.859161]  ? graph_lock+0x170/0x170
[  628.862948]  ? mark_held_locks+0x130/0x130
[  628.867173]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  628.872697]  ? check_preemption_disabled+0x48/0x200
[  628.877704]  ? find_held_lock+0x36/0x1c0
[  628.881770]  ? do_wp_page+0xa6f/0x1690
[  628.885662]  ? lock_downgrade+0x900/0x900
[  628.889797]  ? wake_up_page_bit+0x6f0/0x6f0
[  628.894110]  ? kasan_check_read+0x11/0x20
[  628.898245]  ? do_raw_spin_unlock+0xa7/0x2f0
[  628.902639]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  628.907208]  ? pgd_free+0x380/0x380
[  628.910838]  ? __lock_acquire+0x7ec/0x4ec0
[  628.915061]  ? _raw_spin_unlock+0x2c/0x50
[  628.919215]  ? do_wp_page+0x77c/0x1690
[  628.923102]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  628.927759]  ? find_held_lock+0x36/0x1c0
[  628.931821]  ? lock_release+0x970/0x970
[  628.935798]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  628.941325]  ? kasan_check_write+0x14/0x20
[  628.945546]  ? do_raw_spin_lock+0xc1/0x200
[  628.949782]  ? __handle_mm_fault+0x9ab/0x53e0
[  628.954278]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  628.959115]  ? __sb_end_write+0xd9/0x110
[  628.963162]  ? graph_lock+0x170/0x170
[  628.966946]  ? print_usage_bug+0xc0/0xc0
[  628.970998]  ? atime_needs_update+0x710/0x710
[  628.975477]  ? graph_lock+0x170/0x170
[  628.979261]  ? graph_lock+0x170/0x170
[  628.983052]  ? find_held_lock+0x36/0x1c0
[  628.987110]  ? __do_page_fault+0x6b7/0xec0
[  628.991337]  _do_fork+0x1cb/0x11c0
[  628.994864]  ? fork_idle+0x1d0/0x1d0
[  628.998566]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  629.004098]  ? check_preemption_disabled+0x48/0x200
[  629.009123]  ? kasan_check_write+0x14/0x20
[  629.013361]  ? up_read+0x225/0x2c0
[  629.016897]  ? up_read_non_owner+0x100/0x100
[  629.021306]  ? find_vma+0x34/0x190
[  629.024859]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  629.030399]  ? __do_page_fault+0x49c/0xec0
[  629.034628]  ? do_syscall_64+0x9a/0x820
[  629.038586]  ? do_syscall_64+0x9a/0x820
[  629.042553]  ? lockdep_hardirqs_on+0x421/0x5c0
[  629.047129]  ? trace_hardirqs_on+0xbd/0x310
[  629.051442]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  629.056794]  ? trace_hardirqs_off_caller+0x300/0x300
[  629.061895]  __x64_sys_clone+0xbf/0x150
[  629.065869]  do_syscall_64+0x1b9/0x820
[  629.069748]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  629.075113]  ? syscall_return_slowpath+0x5e0/0x5e0
[  629.080036]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  629.084887]  ? trace_hardirqs_off+0x310/0x310
[  629.089380]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  629.094917]  ? prepare_exit_to_usermode+0x291/0x3b0
[  629.099961]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  629.104821]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  629.109999] RIP: 0033:0x455c4a
[  629.113177] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  629.132061] RSP: 002b:00007fff9d17d960 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  629.139758] RAX: ffffffffffffffda RBX: 00007fff9d17d960 RCX: 0000000000455c4a
[  629.147011] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  629.154272] RBP: 00007fff9d17d9a0 R08: 0000000000000001 R09: 0000000000ea7940
[  629.161530] R10: 0000000000ea7c10 R11: 0000000000000246 R12: 0000000000000001
[  629.168788] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  629.176911] Memory limit reached of cgroup /syz1
[  629.181824] memory: usage 6988kB, limit 0kB, failcnt 172
[  629.187289] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  629.194110] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  629.200290] Memory cgroup stats for /syz1: cache:112KB rss:176KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:52KB inactive_file:4KB active_file:4KB unevictable:0KB
[  629.220466] Out of memory and no killable processes...
[  629.227670] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  629.240617] syz-executor1 cpuset=syz1 mems_allowed=0
[  629.245728] CPU: 1 PID: 23483 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  629.254200] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  629.263536] Call Trace:
[  629.266122]  dump_stack+0x1d3/0x2c4
[  629.269756]  ? dump_stack_print_info.cold.2+0x52/0x52
[  629.274938]  dump_header+0x27b/0xf72
[  629.278640]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  629.283554]  ? kasan_check_read+0x11/0x20
[  629.287708]  ? pagefault_out_of_memory+0x197/0x197
[  629.292644]  ? rcu_read_unlock+0x33/0x60
[  629.296691]  ? mem_cgroup_iter+0x514/0x1160
[  629.301002]  ? find_held_lock+0x36/0x1c0
[  629.305066]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  629.309830]  ? mark_held_locks+0xc7/0x130
[  629.313968]  ? _raw_spin_unlock_irq+0x27/0x80
[  629.318450]  ? _raw_spin_unlock_irq+0x27/0x80
[  629.322931]  ? lockdep_hardirqs_on+0x421/0x5c0
[  629.327513]  ? trace_hardirqs_on+0xbd/0x310
[  629.331837]  ? kasan_check_read+0x11/0x20
[  629.335972]  ? css_task_iter_end+0x222/0x490
[  629.340370]  ? trace_hardirqs_off_caller+0x300/0x300
[  629.345466]  ? kasan_check_write+0x14/0x20
[  629.349695]  ? do_raw_spin_lock+0xc1/0x200
[  629.353924]  ? _raw_spin_unlock_irq+0x60/0x80
[  629.358409]  ? css_task_iter_end+0x2ce/0x490
[  629.362840]  ? cgroup_procs_next+0x70/0x70
[  629.367071]  ? _raw_spin_unlock_irq+0x60/0x80
[  629.371568]  ? oom_badness+0xaa0/0xaa0
[  629.375478]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  629.380222]  ? mem_cgroup_iter_break+0x30/0x30
[  629.384801]  ? mark_held_locks+0xc7/0x130
[  629.388946]  out_of_memory.cold.30+0xf/0x184
[  629.393351]  ? lockdep_hardirqs_on+0x421/0x5c0
[  629.397932]  ? kasan_check_read+0x11/0x20
[  629.402071]  ? oom_killer_disable+0x3a0/0x3a0
[  629.406911]  ? kasan_check_write+0x14/0x20
[  629.411155]  ? do_raw_spin_lock+0xc1/0x200
[  629.415389]  mem_cgroup_out_of_memory+0x15e/0x210
[  629.420220]  ? memcg_memory_event+0x40/0x40
[  629.424525]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  629.429359]  ? page_counter_try_charge+0x1c1/0x220
[  629.434281]  try_charge+0xb1a/0x1690
[  629.437997]  ? lock_downgrade+0x900/0x900
[  629.442131]  ? check_preemption_disabled+0x48/0x200
[  629.447162]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  629.453213]  ? find_held_lock+0x36/0x1c0
[  629.457270]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  629.462114]  ? lock_downgrade+0x900/0x900
[  629.466280]  ? check_preemption_disabled+0x48/0x200
[  629.471289]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  629.476205]  ? kasan_check_read+0x11/0x20
[  629.480339]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  629.485604]  ? rcu_softirq_qs+0x20/0x20
[  629.489582]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  629.494423]  memcg_kmem_charge_memcg+0x7c/0x120
[  629.499086]  ? memcg_kmem_put_cache+0xb0/0xb0
[  629.503613]  ? kmem_cache_alloc+0x12e/0x730
[  629.507930]  ? print_usage_bug+0xc0/0xc0
[  629.512004]  memcg_kmem_charge+0x135/0x300
[  629.516234]  __alloc_pages_nodemask+0x89c/0xdd0
[  629.520898]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  629.525906]  ? __lock_acquire+0x7ec/0x4ec0
[  629.530134]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  629.535662]  ? graph_lock+0x170/0x170
[  629.539451]  ? find_held_lock+0x36/0x1c0
[  629.543510]  ? __lock_is_held+0xb5/0x140
[  629.547570]  ? lock_downgrade+0x900/0x900
[  629.551729]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  629.557260]  alloc_pages_current+0x10c/0x210
[  629.561664]  pte_alloc_one+0x1b/0x1a0
[  629.565470]  __pte_alloc+0x2a/0x350
[  629.569105]  copy_page_range+0x18a2/0x26f0
[  629.573349]  ? pmd_alloc+0x180/0x180
[  629.577057]  ? save_stack+0xa9/0xd0
[  629.580689]  ? save_stack+0x43/0xd0
[  629.584325]  ? kasan_slab_alloc+0x12/0x20
[  629.588461]  ? kmem_cache_alloc+0x12e/0x730
[  629.592770]  ? vm_area_dup+0x7a/0x230
[  629.596558]  ? copy_process+0x429f/0x8780
[  629.600705]  ? _do_fork+0x1cb/0x11c0
[  629.604404]  ? __x64_sys_clone+0xbf/0x150
[  629.608546]  ? do_syscall_64+0x1b9/0x820
[  629.612604]  ? graph_lock+0x170/0x170
[  629.616392]  ? lock_downgrade+0x900/0x900
[  629.620525]  ? graph_lock+0x170/0x170
[  629.624314]  ? graph_lock+0x170/0x170
[  629.628113]  ? find_held_lock+0x36/0x1c0
[  629.632167]  ? copy_process+0x454a/0x8780
[  629.636301]  ? lock_downgrade+0x900/0x900
[  629.640436]  ? lock_release+0x970/0x970
[  629.644407]  ? ttwu_stat+0x5c0/0x5c0
[  629.648135]  ? dup_userfaultfd+0x6d8/0x890
[  629.652367]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  629.657371]  ? vma_compute_subtree_gap+0x160/0x240
[  629.662297]  ? validate_mm_rb+0xaa/0xc0
[  629.666258]  ? __vma_link_rb+0x26c/0x370
[  629.670314]  copy_process+0x4720/0x8780
[  629.674294]  ? __cleanup_sighand+0x70/0x70
[  629.678518]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  629.684047]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  629.689585]  ? page_swapcount+0x1d0/0x1d0
[  629.693727]  ? try_to_wake_up+0x10a/0x12f0
[  629.697950]  ? lock_downgrade+0x900/0x900
[  629.702090]  ? lock_downgrade+0x900/0x900
[  629.706238]  ? trace_hardirqs_off+0xb8/0x310
[  629.710632]  ? kasan_check_read+0x11/0x20
[  629.714792]  ? trace_hardirqs_on_caller+0x310/0x310
[  629.719811]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  629.724901]  ? try_to_wake_up+0x10a/0x12f0
[  629.729131]  ? print_usage_bug+0xc0/0xc0
[  629.733192]  ? migrate_swap_stop+0x930/0x930
[  629.737602]  ? __handle_mm_fault+0x9ab/0x53e0
[  629.742115]  ? graph_lock+0x170/0x170
[  629.745919]  ? print_usage_bug+0xc0/0xc0
[  629.749981]  ? __lock_acquire+0x7ec/0x4ec0
[  629.754214]  ? print_usage_bug+0xc0/0xc0
[  629.758273]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  629.763798]  ? reuse_swap_page+0x4bd/0x1520
[  629.768112]  ? swp_swapcount+0x530/0x530
[  629.772168]  ? __lock_acquire+0x7ec/0x4ec0
[  629.776387]  ? mark_held_locks+0x130/0x130
[  629.780608]  ? rcu_softirq_qs+0x20/0x20
[  629.784572]  ? __lock_acquire+0x7ec/0x4ec0
[  629.788802]  ? mark_held_locks+0x130/0x130
[  629.793042]  ? graph_lock+0x170/0x170
[  629.796829]  ? mark_held_locks+0x130/0x130
[  629.801054]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  629.806585]  ? check_preemption_disabled+0x48/0x200
[  629.811615]  ? find_held_lock+0x36/0x1c0
[  629.815671]  ? do_wp_page+0xa6f/0x1690
[  629.819551]  ? lock_downgrade+0x900/0x900
[  629.823684]  ? wake_up_page_bit+0x6f0/0x6f0
[  629.828014]  ? kasan_check_read+0x11/0x20
[  629.832151]  ? do_raw_spin_unlock+0xa7/0x2f0
[  629.836545]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  629.841116]  ? pgd_free+0x380/0x380
[  629.844729]  ? __lock_acquire+0x7ec/0x4ec0
[  629.848959]  ? _raw_spin_unlock+0x2c/0x50
[  629.853099]  ? do_wp_page+0x77c/0x1690
[  629.856993]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  629.861649]  ? find_held_lock+0x36/0x1c0
[  629.865696]  ? lock_release+0x970/0x970
[  629.869660]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  629.875203]  ? kasan_check_write+0x14/0x20
[  629.879424]  ? do_raw_spin_lock+0xc1/0x200
[  629.883655]  ? __handle_mm_fault+0x9ab/0x53e0
[  629.888143]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  629.892973]  ? __sb_end_write+0xd9/0x110
[  629.897018]  ? graph_lock+0x170/0x170
[  629.900806]  ? print_usage_bug+0xc0/0xc0
[  629.904858]  ? atime_needs_update+0x710/0x710
[  629.909343]  ? graph_lock+0x170/0x170
[  629.913144]  ? graph_lock+0x170/0x170
[  629.916935]  ? find_held_lock+0x36/0x1c0
[  629.920988]  ? __do_page_fault+0x6b7/0xec0
[  629.925212]  _do_fork+0x1cb/0x11c0
[  629.928760]  ? fork_idle+0x1d0/0x1d0
[  629.932487]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  629.938015]  ? check_preemption_disabled+0x48/0x200
[  629.943023]  ? kasan_check_write+0x14/0x20
[  629.947243]  ? up_read+0x225/0x2c0
[  629.950771]  ? up_read_non_owner+0x100/0x100
[  629.955168]  ? find_vma+0x34/0x190
[  629.958703]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  629.964229]  ? __do_page_fault+0x49c/0xec0
[  629.968455]  ? do_syscall_64+0x9a/0x820
[  629.972413]  ? do_syscall_64+0x9a/0x820
[  629.976376]  ? lockdep_hardirqs_on+0x421/0x5c0
[  629.980947]  ? trace_hardirqs_on+0xbd/0x310
[  629.985256]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  629.990610]  ? trace_hardirqs_off_caller+0x300/0x300
[  629.995706]  __x64_sys_clone+0xbf/0x150
[  629.999682]  do_syscall_64+0x1b9/0x820
[  630.003564]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  630.008917]  ? syscall_return_slowpath+0x5e0/0x5e0
[  630.013832]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  630.018664]  ? trace_hardirqs_off+0x310/0x310
[  630.023147]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  630.028674]  ? prepare_exit_to_usermode+0x291/0x3b0
[  630.033678]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  630.038540]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  630.043731] RIP: 0033:0x455c4a
[  630.046924] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  630.065813] RSP: 002b:00007fff9d17d960 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  630.073520] RAX: ffffffffffffffda RBX: 00007fff9d17d960 RCX: 0000000000455c4a
[  630.080794] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  630.088054] RBP: 00007fff9d17d9a0 R08: 0000000000000001 R09: 0000000000ea7940
[  630.095324] R10: 0000000000ea7c10 R11: 0000000000000246 R12: 0000000000000001
[  630.102601] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  630.110058] Memory limit reached of cgroup /syz1
[  630.114911] memory: usage 6992kB, limit 0kB, failcnt 180
[  630.120469] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  630.127264] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  630.133487] Memory cgroup stats for /syz1: cache:112KB rss:176KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:52KB inactive_file:4KB active_file:4KB unevictable:0KB
[  630.153759] Out of memory and no killable processes...
[  630.160678] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  630.173606] syz-executor1 cpuset=syz1 mems_allowed=0
[  630.178822] CPU: 1 PID: 23483 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  630.187305] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  630.196641] Call Trace:
[  630.199246]  dump_stack+0x1d3/0x2c4
[  630.202864]  ? dump_stack_print_info.cold.2+0x52/0x52
[  630.208073]  dump_header+0x27b/0xf72
[  630.211793]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  630.216708]  ? kasan_check_read+0x11/0x20
[  630.220874]  ? pagefault_out_of_memory+0x197/0x197
[  630.225795]  ? rcu_read_unlock+0x33/0x60
[  630.229842]  ? mem_cgroup_iter+0x514/0x1160
[  630.234161]  ? find_held_lock+0x36/0x1c0
[  630.238233]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  630.242980]  ? mark_held_locks+0xc7/0x130
[  630.247117]  ? _raw_spin_unlock_irq+0x27/0x80
[  630.251608]  ? _raw_spin_unlock_irq+0x27/0x80
[  630.256100]  ? lockdep_hardirqs_on+0x421/0x5c0
[  630.260703]  ? trace_hardirqs_on+0xbd/0x310
[  630.265021]  ? kasan_check_read+0x11/0x20
[  630.269152]  ? css_task_iter_end+0x222/0x490
[  630.273547]  ? trace_hardirqs_off_caller+0x300/0x300
[  630.278655]  ? kasan_check_write+0x14/0x20
[  630.282874]  ? do_raw_spin_lock+0xc1/0x200
[  630.287103]  ? _raw_spin_unlock_irq+0x60/0x80
[  630.291585]  ? css_task_iter_end+0x2ce/0x490
[  630.296206]  ? cgroup_procs_next+0x70/0x70
[  630.300434]  ? _raw_spin_unlock_irq+0x60/0x80
[  630.304918]  ? oom_badness+0xaa0/0xaa0
[  630.308796]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  630.313540]  ? mem_cgroup_iter_break+0x30/0x30
[  630.318130]  ? mark_held_locks+0xc7/0x130
[  630.322271]  out_of_memory.cold.30+0xf/0x184
[  630.326668]  ? lockdep_hardirqs_on+0x421/0x5c0
[  630.331259]  ? kasan_check_read+0x11/0x20
[  630.335398]  ? oom_killer_disable+0x3a0/0x3a0
[  630.339885]  ? kasan_check_write+0x14/0x20
[  630.344109]  ? do_raw_spin_lock+0xc1/0x200
[  630.348341]  mem_cgroup_out_of_memory+0x15e/0x210
[  630.353171]  ? memcg_memory_event+0x40/0x40
[  630.357484]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  630.362344]  ? page_counter_try_charge+0x1c1/0x220
[  630.367276]  try_charge+0xb1a/0x1690
[  630.370986]  ? lock_downgrade+0x900/0x900
[  630.375122]  ? check_preemption_disabled+0x48/0x200
[  630.380141]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  630.386204]  ? find_held_lock+0x36/0x1c0
[  630.390258]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  630.395097]  ? lock_downgrade+0x900/0x900
[  630.399237]  ? check_preemption_disabled+0x48/0x200
[  630.404263]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  630.409185]  ? kasan_check_read+0x11/0x20
[  630.413324]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  630.418597]  ? rcu_softirq_qs+0x20/0x20
[  630.422601]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  630.427462]  memcg_kmem_charge_memcg+0x7c/0x120
[  630.432130]  ? memcg_kmem_put_cache+0xb0/0xb0
[  630.436614]  ? kmem_cache_alloc+0x12e/0x730
[  630.440927]  ? print_usage_bug+0xc0/0xc0
[  630.444981]  memcg_kmem_charge+0x135/0x300
[  630.449221]  __alloc_pages_nodemask+0x89c/0xdd0
[  630.453883]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  630.458890]  ? __lock_acquire+0x7ec/0x4ec0
[  630.463119]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  630.468663]  ? graph_lock+0x170/0x170
[  630.472449]  ? find_held_lock+0x36/0x1c0
[  630.476508]  ? __lock_is_held+0xb5/0x140
[  630.480560]  ? lock_downgrade+0x900/0x900
[  630.484699]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  630.490228]  alloc_pages_current+0x10c/0x210
[  630.494629]  pte_alloc_one+0x1b/0x1a0
[  630.498426]  __pte_alloc+0x2a/0x350
[  630.502043]  copy_page_range+0x18a2/0x26f0
[  630.506285]  ? pmd_alloc+0x180/0x180
[  630.509992]  ? save_stack+0xa9/0xd0
[  630.513629]  ? save_stack+0x43/0xd0
[  630.517247]  ? kasan_slab_alloc+0x12/0x20
[  630.521381]  ? kmem_cache_alloc+0x12e/0x730
[  630.525696]  ? vm_area_dup+0x7a/0x230
[  630.529487]  ? copy_process+0x429f/0x8780
[  630.533618]  ? _do_fork+0x1cb/0x11c0
[  630.537316]  ? __x64_sys_clone+0xbf/0x150
[  630.541457]  ? do_syscall_64+0x1b9/0x820
[  630.545515]  ? graph_lock+0x170/0x170
[  630.549304]  ? lock_downgrade+0x900/0x900
[  630.553438]  ? graph_lock+0x170/0x170
[  630.557233]  ? graph_lock+0x170/0x170
[  630.561024]  ? find_held_lock+0x36/0x1c0
[  630.565084]  ? copy_process+0x454a/0x8780
[  630.569228]  ? lock_downgrade+0x900/0x900
[  630.573367]  ? lock_release+0x970/0x970
[  630.577325]  ? ttwu_stat+0x5c0/0x5c0
[  630.581035]  ? dup_userfaultfd+0x6d8/0x890
[  630.585265]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  630.590269]  ? vma_compute_subtree_gap+0x160/0x240
[  630.595195]  ? validate_mm_rb+0xaa/0xc0
[  630.599169]  ? __vma_link_rb+0x26c/0x370
[  630.603223]  copy_process+0x4720/0x8780
[  630.607203]  ? __cleanup_sighand+0x70/0x70
[  630.611429]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  630.616957]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  630.622489]  ? page_swapcount+0x1d0/0x1d0
[  630.626626]  ? try_to_wake_up+0x10a/0x12f0
[  630.630849]  ? lock_downgrade+0x900/0x900
[  630.634983]  ? lock_downgrade+0x900/0x900
[  630.639126]  ? trace_hardirqs_off+0xb8/0x310
[  630.643522]  ? kasan_check_read+0x11/0x20
[  630.647662]  ? trace_hardirqs_on_caller+0x310/0x310
[  630.652676]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  630.657768]  ? try_to_wake_up+0x10a/0x12f0
[  630.661993]  ? print_usage_bug+0xc0/0xc0
[  630.666044]  ? migrate_swap_stop+0x930/0x930
[  630.670442]  ? __handle_mm_fault+0x9ab/0x53e0
[  630.674928]  ? graph_lock+0x170/0x170
[  630.678716]  ? print_usage_bug+0xc0/0xc0
[  630.682769]  ? __lock_acquire+0x7ec/0x4ec0
[  630.687042]  ? print_usage_bug+0xc0/0xc0
[  630.691109]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  630.696640]  ? reuse_swap_page+0x4bd/0x1520
[  630.700952]  ? swp_swapcount+0x530/0x530
[  630.705008]  ? __lock_acquire+0x7ec/0x4ec0
[  630.709233]  ? mark_held_locks+0x130/0x130
[  630.713452]  ? rcu_softirq_qs+0x20/0x20
[  630.717419]  ? __lock_acquire+0x7ec/0x4ec0
[  630.721667]  ? mark_held_locks+0x130/0x130
[  630.725897]  ? graph_lock+0x170/0x170
[  630.729690]  ? mark_held_locks+0x130/0x130
[  630.733917]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  630.739444]  ? check_preemption_disabled+0x48/0x200
[  630.744454]  ? find_held_lock+0x36/0x1c0
[  630.748526]  ? do_wp_page+0xa6f/0x1690
[  630.752402]  ? lock_downgrade+0x900/0x900
[  630.756545]  ? wake_up_page_bit+0x6f0/0x6f0
[  630.760857]  ? kasan_check_read+0x11/0x20
[  630.764995]  ? do_raw_spin_unlock+0xa7/0x2f0
[  630.769394]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  630.773962]  ? pgd_free+0x380/0x380
[  630.777576]  ? __lock_acquire+0x7ec/0x4ec0
[  630.781813]  ? _raw_spin_unlock+0x2c/0x50
[  630.785958]  ? do_wp_page+0x77c/0x1690
[  630.789837]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  630.794494]  ? find_held_lock+0x36/0x1c0
[  630.798548]  ? lock_release+0x970/0x970
[  630.802515]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  630.808052]  ? kasan_check_write+0x14/0x20
[  630.812293]  ? do_raw_spin_lock+0xc1/0x200
[  630.816519]  ? __handle_mm_fault+0x9ab/0x53e0
[  630.821017]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  630.825853]  ? __sb_end_write+0xd9/0x110
[  630.829913]  ? graph_lock+0x170/0x170
[  630.833712]  ? print_usage_bug+0xc0/0xc0
[  630.837774]  ? atime_needs_update+0x710/0x710
[  630.842265]  ? graph_lock+0x170/0x170
[  630.846057]  ? graph_lock+0x170/0x170
[  630.849865]  ? find_held_lock+0x36/0x1c0
[  630.853920]  ? __do_page_fault+0x6b7/0xec0
[  630.858150]  _do_fork+0x1cb/0x11c0
[  630.861683]  ? fork_idle+0x1d0/0x1d0
[  630.865405]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  630.870934]  ? check_preemption_disabled+0x48/0x200
[  630.875941]  ? kasan_check_write+0x14/0x20
[  630.880180]  ? up_read+0x225/0x2c0
[  630.883707]  ? up_read_non_owner+0x100/0x100
[  630.888112]  ? find_vma+0x34/0x190
[  630.891646]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  630.897185]  ? __do_page_fault+0x49c/0xec0
[  630.901411]  ? do_syscall_64+0x9a/0x820
[  630.905369]  ? do_syscall_64+0x9a/0x820
[  630.909332]  ? lockdep_hardirqs_on+0x421/0x5c0
[  630.913903]  ? trace_hardirqs_on+0xbd/0x310
[  630.918222]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  630.923574]  ? trace_hardirqs_off_caller+0x300/0x300
[  630.928676]  __x64_sys_clone+0xbf/0x150
[  630.932645]  do_syscall_64+0x1b9/0x820
[  630.936523]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  630.941878]  ? syscall_return_slowpath+0x5e0/0x5e0
[  630.946794]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  630.951629]  ? trace_hardirqs_off+0x310/0x310
[  630.956141]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  630.961668]  ? prepare_exit_to_usermode+0x291/0x3b0
[  630.966684]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  630.971519]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  630.976697] RIP: 0033:0x455c4a
[  630.979879] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  630.998781] RSP: 002b:00007fff9d17d960 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  631.006476] RAX: ffffffffffffffda RBX: 00007fff9d17d960 RCX: 0000000000455c4a
[  631.013731] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  631.021000] RBP: 00007fff9d17d9a0 R08: 0000000000000001 R09: 0000000000ea7940
[  631.028257] R10: 0000000000ea7c10 R11: 0000000000000246 R12: 0000000000000001
[  631.035514] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  631.044993] Memory limit reached of cgroup /syz1
[  631.049899] memory: usage 6924kB, limit 0kB, failcnt 188
[  631.055356] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  631.062170] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  631.068345] Memory cgroup stats for /syz1: cache:112KB rss:176KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:52KB inactive_file:4KB active_file:4KB unevictable:0KB
[  631.088532] Out of memory and no killable processes...
[  631.095421] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  631.108393] syz-executor1 cpuset=syz1 mems_allowed=0
[  631.113544] CPU: 1 PID: 23483 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  631.122015] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  631.131356] Call Trace:
[  631.133936]  dump_stack+0x1d3/0x2c4
[  631.137552]  ? dump_stack_print_info.cold.2+0x52/0x52
[  631.142744]  dump_header+0x27b/0xf72
[  631.146452]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  631.151376]  ? kasan_check_read+0x11/0x20
[  631.155520]  ? pagefault_out_of_memory+0x197/0x197
[  631.160445]  ? rcu_read_unlock+0x33/0x60
[  631.164491]  ? mem_cgroup_iter+0x514/0x1160
[  631.168816]  ? find_held_lock+0x36/0x1c0
[  631.172874]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  631.177621]  ? mark_held_locks+0xc7/0x130
[  631.181759]  ? _raw_spin_unlock_irq+0x27/0x80
[  631.186252]  ? _raw_spin_unlock_irq+0x27/0x80
[  631.190747]  ? lockdep_hardirqs_on+0x421/0x5c0
[  631.195326]  ? trace_hardirqs_on+0xbd/0x310
[  631.199638]  ? kasan_check_read+0x11/0x20
[  631.203776]  ? css_task_iter_end+0x222/0x490
[  631.208182]  ? trace_hardirqs_off_caller+0x300/0x300
[  631.213278]  ? kasan_check_write+0x14/0x20
[  631.217507]  ? do_raw_spin_lock+0xc1/0x200
[  631.221737]  ? _raw_spin_unlock_irq+0x60/0x80
[  631.226219]  ? css_task_iter_end+0x2ce/0x490
[  631.230621]  ? cgroup_procs_next+0x70/0x70
[  631.234845]  ? _raw_spin_unlock_irq+0x60/0x80
[  631.239326]  ? oom_badness+0xaa0/0xaa0
[  631.243201]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  631.247949]  ? mem_cgroup_iter_break+0x30/0x30
[  631.252527]  ? mark_held_locks+0xc7/0x130
[  631.256666]  out_of_memory.cold.30+0xf/0x184
[  631.261063]  ? lockdep_hardirqs_on+0x421/0x5c0
[  631.265658]  ? kasan_check_read+0x11/0x20
[  631.269800]  ? oom_killer_disable+0x3a0/0x3a0
[  631.274287]  ? kasan_check_write+0x14/0x20
[  631.278507]  ? do_raw_spin_lock+0xc1/0x200
[  631.282735]  mem_cgroup_out_of_memory+0x15e/0x210
[  631.287587]  ? memcg_memory_event+0x40/0x40
[  631.291901]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  631.296742]  ? page_counter_try_charge+0x1c1/0x220
[  631.301662]  try_charge+0xb1a/0x1690
[  631.305376]  ? lock_downgrade+0x900/0x900
[  631.309511]  ? check_preemption_disabled+0x48/0x200
[  631.314520]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  631.320568]  ? find_held_lock+0x36/0x1c0
[  631.324626]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  631.329461]  ? lock_downgrade+0x900/0x900
[  631.333600]  ? check_preemption_disabled+0x48/0x200
[  631.338609]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  631.343537]  ? kasan_check_read+0x11/0x20
[  631.347677]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  631.352962]  ? rcu_softirq_qs+0x20/0x20
[  631.356952]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  631.361790]  memcg_kmem_charge_memcg+0x7c/0x120
[  631.366464]  ? memcg_kmem_put_cache+0xb0/0xb0
[  631.370945]  ? kmem_cache_alloc+0x12e/0x730
[  631.375257]  ? print_usage_bug+0xc0/0xc0
[  631.379329]  memcg_kmem_charge+0x135/0x300
[  631.383559]  __alloc_pages_nodemask+0x89c/0xdd0
[  631.388243]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  631.393247]  ? __lock_acquire+0x7ec/0x4ec0
[  631.397469]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  631.402992]  ? graph_lock+0x170/0x170
[  631.407047]  ? find_held_lock+0x36/0x1c0
[  631.411116]  ? __lock_is_held+0xb5/0x140
[  631.415166]  ? lock_downgrade+0x900/0x900
[  631.419302]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  631.424829]  alloc_pages_current+0x10c/0x210
[  631.429230]  pte_alloc_one+0x1b/0x1a0
[  631.433019]  __pte_alloc+0x2a/0x350
[  631.436646]  copy_page_range+0x18a2/0x26f0
[  631.440893]  ? pmd_alloc+0x180/0x180
[  631.444600]  ? save_stack+0xa9/0xd0
[  631.448223]  ? save_stack+0x43/0xd0
[  631.451859]  ? kasan_slab_alloc+0x12/0x20
[  631.455992]  ? kmem_cache_alloc+0x12e/0x730
[  631.460297]  ? vm_area_dup+0x7a/0x230
[  631.464108]  ? copy_process+0x429f/0x8780
[  631.468242]  ? _do_fork+0x1cb/0x11c0
[  631.471940]  ? __x64_sys_clone+0xbf/0x150
[  631.476087]  ? do_syscall_64+0x1b9/0x820
[  631.480147]  ? graph_lock+0x170/0x170
[  631.483954]  ? lock_downgrade+0x900/0x900
[  631.488098]  ? graph_lock+0x170/0x170
[  631.491891]  ? graph_lock+0x170/0x170
[  631.495684]  ? find_held_lock+0x36/0x1c0
[  631.499737]  ? copy_process+0x454a/0x8780
[  631.503869]  ? lock_downgrade+0x900/0x900
[  631.508054]  ? lock_release+0x970/0x970
[  631.512022]  ? ttwu_stat+0x5c0/0x5c0
[  631.515720]  ? dup_userfaultfd+0x6d8/0x890
[  631.519944]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  631.524971]  ? vma_compute_subtree_gap+0x160/0x240
[  631.529894]  ? validate_mm_rb+0xaa/0xc0
[  631.533867]  ? __vma_link_rb+0x26c/0x370
[  631.537920]  copy_process+0x4720/0x8780
[  631.541899]  ? __cleanup_sighand+0x70/0x70
[  631.546122]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  631.551660]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  631.557192]  ? page_swapcount+0x1d0/0x1d0
[  631.561323]  ? try_to_wake_up+0x10a/0x12f0
[  631.565549]  ? lock_downgrade+0x900/0x900
[  631.569688]  ? lock_downgrade+0x900/0x900
[  631.573827]  ? trace_hardirqs_off+0xb8/0x310
[  631.578220]  ? kasan_check_read+0x11/0x20
[  631.582357]  ? trace_hardirqs_on_caller+0x310/0x310
[  631.587380]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  631.592487]  ? try_to_wake_up+0x10a/0x12f0
[  631.596714]  ? print_usage_bug+0xc0/0xc0
[  631.600794]  ? migrate_swap_stop+0x930/0x930
[  631.605194]  ? __handle_mm_fault+0x9ab/0x53e0
[  631.609683]  ? graph_lock+0x170/0x170
[  631.613472]  ? print_usage_bug+0xc0/0xc0
[  631.617522]  ? __lock_acquire+0x7ec/0x4ec0
[  631.621747]  ? print_usage_bug+0xc0/0xc0
[  631.625797]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  631.631324]  ? reuse_swap_page+0x4bd/0x1520
[  631.635633]  ? swp_swapcount+0x530/0x530
[  631.639684]  ? __lock_acquire+0x7ec/0x4ec0
[  631.643902]  ? mark_held_locks+0x130/0x130
[  631.648122]  ? rcu_softirq_qs+0x20/0x20
[  631.652116]  ? __lock_acquire+0x7ec/0x4ec0
[  631.656341]  ? mark_held_locks+0x130/0x130
[  631.660561]  ? graph_lock+0x170/0x170
[  631.664346]  ? mark_held_locks+0x130/0x130
[  631.668574]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  631.674109]  ? check_preemption_disabled+0x48/0x200
[  631.679119]  ? find_held_lock+0x36/0x1c0
[  631.683170]  ? do_wp_page+0xa6f/0x1690
[  631.687062]  ? lock_downgrade+0x900/0x900
[  631.691210]  ? wake_up_page_bit+0x6f0/0x6f0
[  631.695522]  ? kasan_check_read+0x11/0x20
[  631.699654]  ? do_raw_spin_unlock+0xa7/0x2f0
[  631.704050]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  631.708624]  ? pgd_free+0x380/0x380
[  631.712239]  ? __lock_acquire+0x7ec/0x4ec0
[  631.716464]  ? _raw_spin_unlock+0x2c/0x50
[  631.720604]  ? do_wp_page+0x77c/0x1690
[  631.724483]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  631.729141]  ? find_held_lock+0x36/0x1c0
[  631.733215]  ? lock_release+0x970/0x970
[  631.737183]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  631.742708]  ? kasan_check_write+0x14/0x20
[  631.746929]  ? do_raw_spin_lock+0xc1/0x200
[  631.751153]  ? __handle_mm_fault+0x9ab/0x53e0
[  631.755669]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  631.760524]  ? __sb_end_write+0xd9/0x110
[  631.764572]  ? graph_lock+0x170/0x170
[  631.768367]  ? print_usage_bug+0xc0/0xc0
[  631.772414]  ? atime_needs_update+0x710/0x710
[  631.776895]  ? graph_lock+0x170/0x170
[  631.780680]  ? graph_lock+0x170/0x170
[  631.784471]  ? find_held_lock+0x36/0x1c0
[  631.788537]  ? __do_page_fault+0x6b7/0xec0
[  631.792810]  _do_fork+0x1cb/0x11c0
[  631.796352]  ? fork_idle+0x1d0/0x1d0
[  631.800053]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  631.805622]  ? check_preemption_disabled+0x48/0x200
[  631.810656]  ? kasan_check_write+0x14/0x20
[  631.814879]  ? up_read+0x225/0x2c0
[  631.818508]  ? up_read_non_owner+0x100/0x100
[  631.822920]  ? find_vma+0x34/0x190
[  631.826463]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  631.831995]  ? __do_page_fault+0x49c/0xec0
[  631.836219]  ? do_syscall_64+0x9a/0x820
[  631.840182]  ? do_syscall_64+0x9a/0x820
[  631.844144]  ? lockdep_hardirqs_on+0x421/0x5c0
[  631.848716]  ? trace_hardirqs_on+0xbd/0x310
[  631.853029]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  631.858381]  ? trace_hardirqs_off_caller+0x300/0x300
[  631.863478]  __x64_sys_clone+0xbf/0x150
[  631.867455]  do_syscall_64+0x1b9/0x820
[  631.871348]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  631.876700]  ? syscall_return_slowpath+0x5e0/0x5e0
[  631.881618]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  631.886448]  ? trace_hardirqs_off+0x310/0x310
[  631.890938]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  631.896482]  ? prepare_exit_to_usermode+0x291/0x3b0
[  631.901507]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  631.906370]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  631.911549] RIP: 0033:0x455c4a
[  631.914758] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  631.933651] RSP: 002b:00007fff9d17d960 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  631.941356] RAX: ffffffffffffffda RBX: 00007fff9d17d960 RCX: 0000000000455c4a
[  631.948622] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  631.955919] RBP: 00007fff9d17d9a0 R08: 0000000000000001 R09: 0000000000ea7940
[  631.963199] R10: 0000000000ea7c10 R11: 0000000000000246 R12: 0000000000000001
[  631.970474] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  631.977920] Memory limit reached of cgroup /syz1
[  631.982753] memory: usage 6928kB, limit 0kB, failcnt 196
[  631.988323] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  631.995100] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  632.001389] Memory cgroup stats for /syz1: cache:112KB rss:176KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:52KB inactive_file:4KB active_file:4KB unevictable:0KB
[  632.021723] Out of memory and no killable processes...
[  632.028739] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  632.041696] syz-executor1 cpuset=syz1 mems_allowed=0
[  632.046811] CPU: 1 PID: 23483 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  632.055300] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  632.064654] Call Trace:
[  632.067236]  dump_stack+0x1d3/0x2c4
[  632.070856]  ? dump_stack_print_info.cold.2+0x52/0x52
[  632.076051]  dump_header+0x27b/0xf72
[  632.079751]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  632.084668]  ? kasan_check_read+0x11/0x20
[  632.088818]  ? pagefault_out_of_memory+0x197/0x197
[  632.093740]  ? rcu_read_unlock+0x33/0x60
[  632.097792]  ? mem_cgroup_iter+0x514/0x1160
[  632.102111]  ? find_held_lock+0x36/0x1c0
[  632.106269]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  632.111017]  ? mark_held_locks+0xc7/0x130
[  632.115173]  ? _raw_spin_unlock_irq+0x27/0x80
[  632.119652]  ? _raw_spin_unlock_irq+0x27/0x80
[  632.124137]  ? lockdep_hardirqs_on+0x421/0x5c0
[  632.128708]  ? trace_hardirqs_on+0xbd/0x310
[  632.133016]  ? kasan_check_read+0x11/0x20
[  632.137146]  ? css_task_iter_end+0x222/0x490
[  632.141547]  ? trace_hardirqs_off_caller+0x300/0x300
[  632.146643]  ? kasan_check_write+0x14/0x20
[  632.150863]  ? do_raw_spin_lock+0xc1/0x200
[  632.155117]  ? _raw_spin_unlock_irq+0x60/0x80
[  632.159621]  ? css_task_iter_end+0x2ce/0x490
[  632.164021]  ? cgroup_procs_next+0x70/0x70
[  632.168244]  ? _raw_spin_unlock_irq+0x60/0x80
[  632.172728]  ? oom_badness+0xaa0/0xaa0
[  632.176614]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  632.181368]  ? mem_cgroup_iter_break+0x30/0x30
[  632.185947]  ? mark_held_locks+0xc7/0x130
[  632.190092]  out_of_memory.cold.30+0xf/0x184
[  632.194491]  ? lockdep_hardirqs_on+0x421/0x5c0
[  632.199059]  ? kasan_check_read+0x11/0x20
[  632.203204]  ? oom_killer_disable+0x3a0/0x3a0
[  632.207685]  ? kasan_check_write+0x14/0x20
[  632.211908]  ? do_raw_spin_lock+0xc1/0x200
[  632.216143]  mem_cgroup_out_of_memory+0x15e/0x210
[  632.220974]  ? memcg_memory_event+0x40/0x40
[  632.225280]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  632.230114]  ? page_counter_try_charge+0x1c1/0x220
[  632.235036]  try_charge+0xb1a/0x1690
[  632.238751]  ? lock_downgrade+0x900/0x900
[  632.242887]  ? check_preemption_disabled+0x48/0x200
[  632.247897]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  632.253948]  ? find_held_lock+0x36/0x1c0
[  632.258004]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  632.262836]  ? lock_downgrade+0x900/0x900
[  632.266975]  ? check_preemption_disabled+0x48/0x200
[  632.271983]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  632.276915]  ? kasan_check_read+0x11/0x20
[  632.281049]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  632.286314]  ? rcu_softirq_qs+0x20/0x20
[  632.290284]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  632.295124]  memcg_kmem_charge_memcg+0x7c/0x120
[  632.299979]  ? memcg_kmem_put_cache+0xb0/0xb0
[  632.304459]  ? kmem_cache_alloc+0x12e/0x730
[  632.308781]  ? print_usage_bug+0xc0/0xc0
[  632.312857]  memcg_kmem_charge+0x135/0x300
[  632.317091]  __alloc_pages_nodemask+0x89c/0xdd0
[  632.321756]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  632.326765]  ? __lock_acquire+0x7ec/0x4ec0
[  632.330988]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  632.336513]  ? graph_lock+0x170/0x170
[  632.340304]  ? find_held_lock+0x36/0x1c0
[  632.344371]  ? __lock_is_held+0xb5/0x140
[  632.348420]  ? lock_downgrade+0x900/0x900
[  632.352570]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  632.358105]  alloc_pages_current+0x10c/0x210
[  632.362525]  pte_alloc_one+0x1b/0x1a0
[  632.366313]  __pte_alloc+0x2a/0x350
[  632.369928]  copy_page_range+0x18a2/0x26f0
[  632.374174]  ? pmd_alloc+0x180/0x180
[  632.377881]  ? save_stack+0xa9/0xd0
[  632.381495]  ? save_stack+0x43/0xd0
[  632.385122]  ? kasan_slab_alloc+0x12/0x20
[  632.389255]  ? kmem_cache_alloc+0x12e/0x730
[  632.393562]  ? vm_area_dup+0x7a/0x230
[  632.397347]  ? copy_process+0x429f/0x8780
[  632.401485]  ? _do_fork+0x1cb/0x11c0
[  632.405184]  ? __x64_sys_clone+0xbf/0x150
[  632.409327]  ? do_syscall_64+0x1b9/0x820
[  632.413380]  ? graph_lock+0x170/0x170
[  632.417169]  ? lock_downgrade+0x900/0x900
[  632.421306]  ? graph_lock+0x170/0x170
[  632.425106]  ? graph_lock+0x170/0x170
[  632.428896]  ? find_held_lock+0x36/0x1c0
[  632.432948]  ? copy_process+0x454a/0x8780
[  632.437087]  ? lock_downgrade+0x900/0x900
[  632.441226]  ? lock_release+0x970/0x970
[  632.445188]  ? ttwu_stat+0x5c0/0x5c0
[  632.448889]  ? dup_userfaultfd+0x6d8/0x890
[  632.453120]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  632.458144]  ? validate_mm_rb+0xaa/0xc0
[  632.462114]  ? __vma_link_rb+0x26c/0x370
[  632.466170]  copy_process+0x4720/0x8780
[  632.470158]  ? __cleanup_sighand+0x70/0x70
[  632.474385]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  632.479954]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  632.485485]  ? page_swapcount+0x1d0/0x1d0
[  632.489619]  ? try_to_wake_up+0x10a/0x12f0
[  632.493842]  ? lock_downgrade+0x900/0x900
[  632.498000]  ? lock_downgrade+0x900/0x900
[  632.502138]  ? trace_hardirqs_off+0xb8/0x310
[  632.506533]  ? kasan_check_read+0x11/0x20
[  632.510671]  ? trace_hardirqs_on_caller+0x310/0x310
[  632.515682]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  632.520770]  ? try_to_wake_up+0x10a/0x12f0
[  632.524996]  ? print_usage_bug+0xc0/0xc0
[  632.529042]  ? migrate_swap_stop+0x930/0x930
[  632.533437]  ? __handle_mm_fault+0x9ab/0x53e0
[  632.537921]  ? graph_lock+0x170/0x170
[  632.541708]  ? print_usage_bug+0xc0/0xc0
[  632.545760]  ? __lock_acquire+0x7ec/0x4ec0
[  632.549982]  ? print_usage_bug+0xc0/0xc0
[  632.554035]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  632.559558]  ? reuse_swap_page+0x4bd/0x1520
[  632.563886]  ? swp_swapcount+0x530/0x530
[  632.567938]  ? __lock_acquire+0x7ec/0x4ec0
[  632.572156]  ? mark_held_locks+0x130/0x130
[  632.576373]  ? rcu_softirq_qs+0x20/0x20
[  632.580338]  ? __lock_acquire+0x7ec/0x4ec0
[  632.584571]  ? mark_held_locks+0x130/0x130
[  632.588825]  ? graph_lock+0x170/0x170
[  632.592632]  ? mark_held_locks+0x130/0x130
[  632.596886]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  632.602412]  ? check_preemption_disabled+0x48/0x200
[  632.607420]  ? find_held_lock+0x36/0x1c0
[  632.611468]  ? do_wp_page+0xa6f/0x1690
[  632.615360]  ? lock_downgrade+0x900/0x900
[  632.619506]  ? wake_up_page_bit+0x6f0/0x6f0
[  632.623812]  ? kasan_check_read+0x11/0x20
[  632.627959]  ? do_raw_spin_unlock+0xa7/0x2f0
[  632.632355]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  632.636922]  ? pgd_free+0x380/0x380
[  632.640534]  ? __lock_acquire+0x7ec/0x4ec0
[  632.644781]  ? _raw_spin_unlock+0x2c/0x50
[  632.648925]  ? do_wp_page+0x77c/0x1690
[  632.652797]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  632.657471]  ? find_held_lock+0x36/0x1c0
[  632.661520]  ? lock_release+0x970/0x970
[  632.665483]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  632.671038]  ? kasan_check_write+0x14/0x20
[  632.675266]  ? do_raw_spin_lock+0xc1/0x200
[  632.679497]  ? __handle_mm_fault+0x9ab/0x53e0
[  632.683984]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  632.688811]  ? __sb_end_write+0xd9/0x110
[  632.692859]  ? graph_lock+0x170/0x170
[  632.696648]  ? print_usage_bug+0xc0/0xc0
[  632.700707]  ? atime_needs_update+0x710/0x710
[  632.705190]  ? graph_lock+0x170/0x170
[  632.708988]  ? graph_lock+0x170/0x170
[  632.712792]  ? find_held_lock+0x36/0x1c0
[  632.716840]  ? __do_page_fault+0x6b7/0xec0
[  632.721062]  _do_fork+0x1cb/0x11c0
[  632.724618]  ? fork_idle+0x1d0/0x1d0
[  632.728319]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  632.733868]  ? check_preemption_disabled+0x48/0x200
[  632.738875]  ? kasan_check_write+0x14/0x20
[  632.743100]  ? up_read+0x225/0x2c0
[  632.746625]  ? up_read_non_owner+0x100/0x100
[  632.751021]  ? find_vma+0x34/0x190
[  632.754547]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  632.760070]  ? __do_page_fault+0x49c/0xec0
[  632.764302]  ? do_syscall_64+0x9a/0x820
[  632.768261]  ? do_syscall_64+0x9a/0x820
[  632.772222]  ? lockdep_hardirqs_on+0x421/0x5c0
[  632.776793]  ? trace_hardirqs_on+0xbd/0x310
[  632.781120]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  632.786469]  ? trace_hardirqs_off_caller+0x300/0x300
[  632.791563]  __x64_sys_clone+0xbf/0x150
[  632.795530]  do_syscall_64+0x1b9/0x820
[  632.799406]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  632.804758]  ? syscall_return_slowpath+0x5e0/0x5e0
[  632.809686]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  632.814526]  ? trace_hardirqs_off+0x310/0x310
[  632.819013]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  632.824535]  ? prepare_exit_to_usermode+0x291/0x3b0
[  632.829538]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  632.834370]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  632.839548] RIP: 0033:0x455c4a
[  632.842727] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  632.861617] RSP: 002b:00007fff9d17d960 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  632.869330] RAX: ffffffffffffffda RBX: 00007fff9d17d960 RCX: 0000000000455c4a
[  632.876583] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  632.883843] RBP: 00007fff9d17d9a0 R08: 0000000000000001 R09: 0000000000ea7940
[  632.891099] R10: 0000000000ea7c10 R11: 0000000000000246 R12: 0000000000000001
[  632.898355] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  632.906185] Memory limit reached of cgroup /syz1
[  632.911054] memory: usage 6932kB, limit 0kB, failcnt 204
[  632.916523] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  632.923346] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  632.929525] Memory cgroup stats for /syz1: cache:112KB rss:176KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:52KB inactive_file:4KB active_file:4KB unevictable:0KB
[  632.949718] Out of memory and no killable processes...
[  632.956904] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  632.969902] syz-executor1 cpuset=syz1 mems_allowed=0
[  632.975041] CPU: 1 PID: 23483 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  632.983509] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  632.992848] Call Trace:
[  632.995423]  dump_stack+0x1d3/0x2c4
[  632.999060]  ? dump_stack_print_info.cold.2+0x52/0x52
[  633.004252]  dump_header+0x27b/0xf72
[  633.007954]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  633.012870]  ? kasan_check_read+0x11/0x20
[  633.017006]  ? pagefault_out_of_memory+0x197/0x197
[  633.021929]  ? rcu_read_unlock+0x33/0x60
[  633.025977]  ? mem_cgroup_iter+0x514/0x1160
[  633.030289]  ? find_held_lock+0x36/0x1c0
[  633.034341]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  633.039088]  ? mark_held_locks+0xc7/0x130
[  633.043237]  ? _raw_spin_unlock_irq+0x27/0x80
[  633.047730]  ? _raw_spin_unlock_irq+0x27/0x80
[  633.052214]  ? lockdep_hardirqs_on+0x421/0x5c0
[  633.056789]  ? trace_hardirqs_on+0xbd/0x310
[  633.061102]  ? kasan_check_read+0x11/0x20
[  633.065240]  ? css_task_iter_end+0x222/0x490
[  633.069636]  ? trace_hardirqs_off_caller+0x300/0x300
[  633.074723]  ? kasan_check_write+0x14/0x20
[  633.078946]  ? do_raw_spin_lock+0xc1/0x200
[  633.083173]  ? _raw_spin_unlock_irq+0x60/0x80
[  633.087656]  ? css_task_iter_end+0x2ce/0x490
[  633.092063]  ? cgroup_procs_next+0x70/0x70
[  633.096298]  ? _raw_spin_unlock_irq+0x60/0x80
[  633.100796]  ? oom_badness+0xaa0/0xaa0
[  633.104695]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  633.109439]  ? mem_cgroup_iter_break+0x30/0x30
[  633.114013]  ? mark_held_locks+0xc7/0x130
[  633.118151]  out_of_memory.cold.30+0xf/0x184
[  633.122555]  ? lockdep_hardirqs_on+0x421/0x5c0
[  633.127120]  ? kasan_check_read+0x11/0x20
[  633.131257]  ? oom_killer_disable+0x3a0/0x3a0
[  633.135739]  ? kasan_check_write+0x14/0x20
[  633.139976]  ? do_raw_spin_lock+0xc1/0x200
[  633.144225]  mem_cgroup_out_of_memory+0x15e/0x210
[  633.149099]  ? memcg_memory_event+0x40/0x40
[  633.153420]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  633.158277]  ? page_counter_try_charge+0x1c1/0x220
[  633.163204]  try_charge+0xb1a/0x1690
[  633.166908]  ? lock_downgrade+0x900/0x900
[  633.171050]  ? check_preemption_disabled+0x48/0x200
[  633.176073]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  633.182137]  ? find_held_lock+0x36/0x1c0
[  633.186202]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  633.191036]  ? lock_downgrade+0x900/0x900
[  633.195176]  ? check_preemption_disabled+0x48/0x200
[  633.200197]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  633.205121]  ? kasan_check_read+0x11/0x20
[  633.209268]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  633.214542]  ? rcu_softirq_qs+0x20/0x20
[  633.218514]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  633.223359]  memcg_kmem_charge_memcg+0x7c/0x120
[  633.228028]  ? memcg_kmem_put_cache+0xb0/0xb0
[  633.232509]  ? kmem_cache_alloc+0x12e/0x730
[  633.236830]  ? print_usage_bug+0xc0/0xc0
[  633.240902]  memcg_kmem_charge+0x135/0x300
[  633.245130]  __alloc_pages_nodemask+0x89c/0xdd0
[  633.249792]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  633.254805]  ? __lock_acquire+0x7ec/0x4ec0
[  633.259048]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  633.264570]  ? graph_lock+0x170/0x170
[  633.268359]  ? find_held_lock+0x36/0x1c0
[  633.272416]  ? __lock_is_held+0xb5/0x140
[  633.276462]  ? lock_downgrade+0x900/0x900
[  633.280606]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  633.286134]  alloc_pages_current+0x10c/0x210
[  633.290533]  pte_alloc_one+0x1b/0x1a0
[  633.294337]  __pte_alloc+0x2a/0x350
[  633.297953]  copy_page_range+0x18a2/0x26f0
[  633.302192]  ? pmd_alloc+0x180/0x180
[  633.305912]  ? save_stack+0xa9/0xd0
[  633.309529]  ? save_stack+0x43/0xd0
[  633.313141]  ? kasan_slab_alloc+0x12/0x20
[  633.317273]  ? kmem_cache_alloc+0x12e/0x730
[  633.321582]  ? vm_area_dup+0x7a/0x230
[  633.325373]  ? copy_process+0x429f/0x8780
[  633.329505]  ? _do_fork+0x1cb/0x11c0
[  633.333201]  ? __x64_sys_clone+0xbf/0x150
[  633.337359]  ? do_syscall_64+0x1b9/0x820
[  633.341429]  ? graph_lock+0x170/0x170
[  633.345219]  ? lock_downgrade+0x900/0x900
[  633.349358]  ? graph_lock+0x170/0x170
[  633.353150]  ? graph_lock+0x170/0x170
[  633.356939]  ? find_held_lock+0x36/0x1c0
[  633.360992]  ? copy_process+0x454a/0x8780
[  633.365127]  ? lock_downgrade+0x900/0x900
[  633.369263]  ? lock_release+0x970/0x970
[  633.373222]  ? ttwu_stat+0x5c0/0x5c0
[  633.376922]  ? dup_userfaultfd+0x6d8/0x890
[  633.381151]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  633.386158]  ? vma_compute_subtree_gap+0x160/0x240
[  633.391084]  ? validate_mm_rb+0xaa/0xc0
[  633.395051]  ? __vma_link_rb+0x26c/0x370
[  633.399111]  copy_process+0x4720/0x8780
[  633.403100]  ? __cleanup_sighand+0x70/0x70
[  633.407558]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  633.413095]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  633.418632]  ? page_swapcount+0x1d0/0x1d0
[  633.422773]  ? try_to_wake_up+0x10a/0x12f0
[  633.426998]  ? lock_downgrade+0x900/0x900
[  633.431136]  ? lock_downgrade+0x900/0x900
[  633.435295]  ? trace_hardirqs_off+0xb8/0x310
[  633.439692]  ? kasan_check_read+0x11/0x20
[  633.443831]  ? trace_hardirqs_on_caller+0x310/0x310
[  633.448843]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  633.453943]  ? try_to_wake_up+0x10a/0x12f0
[  633.458177]  ? print_usage_bug+0xc0/0xc0
[  633.462244]  ? migrate_swap_stop+0x930/0x930
[  633.466645]  ? __handle_mm_fault+0x9ab/0x53e0
[  633.471136]  ? graph_lock+0x170/0x170
[  633.474924]  ? print_usage_bug+0xc0/0xc0
[  633.478977]  ? __lock_acquire+0x7ec/0x4ec0
[  633.483202]  ? print_usage_bug+0xc0/0xc0
[  633.487252]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  633.492780]  ? reuse_swap_page+0x4bd/0x1520
[  633.497095]  ? swp_swapcount+0x530/0x530
[  633.501155]  ? __lock_acquire+0x7ec/0x4ec0
[  633.505392]  ? mark_held_locks+0x130/0x130
[  633.509617]  ? rcu_softirq_qs+0x20/0x20
[  633.513610]  ? __lock_acquire+0x7ec/0x4ec0
[  633.517845]  ? mark_held_locks+0x130/0x130
[  633.522072]  ? graph_lock+0x170/0x170
[  633.525871]  ? mark_held_locks+0x130/0x130
[  633.530103]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  633.535632]  ? check_preemption_disabled+0x48/0x200
[  633.540647]  ? find_held_lock+0x36/0x1c0
[  633.544698]  ? do_wp_page+0xa6f/0x1690
[  633.548578]  ? lock_downgrade+0x900/0x900
[  633.552723]  ? wake_up_page_bit+0x6f0/0x6f0
[  633.557037]  ? kasan_check_read+0x11/0x20
[  633.561179]  ? do_raw_spin_unlock+0xa7/0x2f0
[  633.565609]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  633.570183]  ? pgd_free+0x380/0x380
[  633.573797]  ? __lock_acquire+0x7ec/0x4ec0
[  633.578030]  ? _raw_spin_unlock+0x2c/0x50
[  633.582173]  ? do_wp_page+0x77c/0x1690
[  633.586058]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  633.590728]  ? find_held_lock+0x36/0x1c0
[  633.594783]  ? lock_release+0x970/0x970
[  633.598786]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  633.604322]  ? kasan_check_write+0x14/0x20
[  633.608550]  ? do_raw_spin_lock+0xc1/0x200
[  633.612786]  ? __handle_mm_fault+0x9ab/0x53e0
[  633.617285]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  633.622117]  ? __sb_end_write+0xd9/0x110
[  633.626169]  ? graph_lock+0x170/0x170
[  633.629958]  ? print_usage_bug+0xc0/0xc0
[  633.634010]  ? atime_needs_update+0x710/0x710
[  633.638509]  ? graph_lock+0x170/0x170
[  633.642297]  ? graph_lock+0x170/0x170
[  633.646099]  ? find_held_lock+0x36/0x1c0
[  633.650160]  ? __do_page_fault+0x6b7/0xec0
[  633.654385]  _do_fork+0x1cb/0x11c0
[  633.657920]  ? fork_idle+0x1d0/0x1d0
[  633.661626]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  633.667149]  ? check_preemption_disabled+0x48/0x200
[  633.672161]  ? kasan_check_write+0x14/0x20
[  633.676382]  ? up_read+0x225/0x2c0
[  633.679910]  ? up_read_non_owner+0x100/0x100
[  633.684308]  ? find_vma+0x34/0x190
[  633.687843]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  633.693369]  ? __do_page_fault+0x49c/0xec0
[  633.697600]  ? do_syscall_64+0x9a/0x820
[  633.701563]  ? do_syscall_64+0x9a/0x820
[  633.705540]  ? lockdep_hardirqs_on+0x421/0x5c0
[  633.710115]  ? trace_hardirqs_on+0xbd/0x310
[  633.714426]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  633.719795]  ? trace_hardirqs_off_caller+0x300/0x300
[  633.724893]  __x64_sys_clone+0xbf/0x150
[  633.728862]  do_syscall_64+0x1b9/0x820
[  633.732739]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  633.738123]  ? syscall_return_slowpath+0x5e0/0x5e0
[  633.743043]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  633.747874]  ? trace_hardirqs_off+0x310/0x310
[  633.752359]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  633.757883]  ? prepare_exit_to_usermode+0x291/0x3b0
[  633.762888]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  633.767724]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  633.772899] RIP: 0033:0x455c4a
[  633.776087] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  633.794995] RSP: 002b:00007fff9d17d960 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  633.802694] RAX: ffffffffffffffda RBX: 00007fff9d17d960 RCX: 0000000000455c4a
[  633.809950] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  633.817203] RBP: 00007fff9d17d9a0 R08: 0000000000000001 R09: 0000000000ea7940
[  633.824460] R10: 0000000000ea7c10 R11: 0000000000000246 R12: 0000000000000001
[  633.831714] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  633.839881] Memory limit reached of cgroup /syz1
[  633.844674] memory: usage 6932kB, limit 0kB, failcnt 213
[  633.850209] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  633.856969] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  633.863171] Memory cgroup stats for /syz1: cache:112KB rss:176KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:52KB inactive_file:4KB active_file:0KB unevictable:0KB
[  633.883458] Out of memory and no killable processes...
[  633.890383] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  633.903272] syz-executor1 cpuset=syz1 mems_allowed=0
[  633.908496] CPU: 1 PID: 23483 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  633.917003] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  633.926347] Call Trace:
[  633.928927]  dump_stack+0x1d3/0x2c4
[  633.932547]  ? dump_stack_print_info.cold.2+0x52/0x52
[  633.937730]  dump_header+0x27b/0xf72
[  633.941434]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  633.946350]  ? kasan_check_read+0x11/0x20
[  633.950491]  ? pagefault_out_of_memory+0x197/0x197
[  633.955421]  ? rcu_read_unlock+0x33/0x60
[  633.959474]  ? mem_cgroup_iter+0x514/0x1160
[  633.963784]  ? find_held_lock+0x36/0x1c0
[  633.967838]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  633.972580]  ? mark_held_locks+0xc7/0x130
[  633.976719]  ? _raw_spin_unlock_irq+0x27/0x80
[  633.981203]  ? _raw_spin_unlock_irq+0x27/0x80
[  633.985705]  ? lockdep_hardirqs_on+0x421/0x5c0
[  633.990276]  ? trace_hardirqs_on+0xbd/0x310
[  633.994595]  ? kasan_check_read+0x11/0x20
[  633.998747]  ? css_task_iter_end+0x222/0x490
[  634.003172]  ? trace_hardirqs_off_caller+0x300/0x300
[  634.008265]  ? kasan_check_write+0x14/0x20
[  634.012487]  ? do_raw_spin_lock+0xc1/0x200
[  634.016720]  ? _raw_spin_unlock_irq+0x60/0x80
[  634.021209]  ? css_task_iter_end+0x2ce/0x490
[  634.025614]  ? cgroup_procs_next+0x70/0x70
[  634.029846]  ? _raw_spin_unlock_irq+0x60/0x80
[  634.034333]  ? oom_badness+0xaa0/0xaa0
[  634.038212]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  634.042958]  ? mem_cgroup_iter_break+0x30/0x30
[  634.047535]  ? mark_held_locks+0xc7/0x130
[  634.051673]  out_of_memory.cold.30+0xf/0x184
[  634.056088]  ? lockdep_hardirqs_on+0x421/0x5c0
[  634.060663]  ? kasan_check_read+0x11/0x20
[  634.064800]  ? oom_killer_disable+0x3a0/0x3a0
[  634.069305]  ? kasan_check_write+0x14/0x20
[  634.073527]  ? do_raw_spin_lock+0xc1/0x200
[  634.077755]  mem_cgroup_out_of_memory+0x15e/0x210
[  634.082584]  ? memcg_memory_event+0x40/0x40
[  634.086917]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  634.091756]  ? page_counter_try_charge+0x1c1/0x220
[  634.096673]  try_charge+0xb1a/0x1690
[  634.100374]  ? lock_downgrade+0x900/0x900
[  634.104511]  ? check_preemption_disabled+0x48/0x200
[  634.109518]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  634.115567]  ? find_held_lock+0x36/0x1c0
[  634.119626]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  634.124458]  ? lock_downgrade+0x900/0x900
[  634.128598]  ? check_preemption_disabled+0x48/0x200
[  634.133610]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  634.138526]  ? kasan_check_read+0x11/0x20
[  634.142658]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  634.147934]  ? rcu_softirq_qs+0x20/0x20
[  634.151905]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  634.156745]  memcg_kmem_charge_memcg+0x7c/0x120
[  634.161403]  ? memcg_kmem_put_cache+0xb0/0xb0
[  634.165880]  ? kmem_cache_alloc+0x12e/0x730
[  634.170191]  ? print_usage_bug+0xc0/0xc0
[  634.174241]  memcg_kmem_charge+0x135/0x300
[  634.178466]  __alloc_pages_nodemask+0x89c/0xdd0
[  634.183122]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  634.188127]  ? __lock_acquire+0x7ec/0x4ec0
[  634.192353]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  634.197878]  ? graph_lock+0x170/0x170
[  634.201661]  ? find_held_lock+0x36/0x1c0
[  634.205714]  ? __lock_is_held+0xb5/0x140
[  634.209786]  ? lock_downgrade+0x900/0x900
[  634.213933]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  634.219460]  alloc_pages_current+0x10c/0x210
[  634.223856]  pte_alloc_one+0x1b/0x1a0
[  634.227646]  __pte_alloc+0x2a/0x350
[  634.231258]  copy_page_range+0x18a2/0x26f0
[  634.235492]  ? pmd_alloc+0x180/0x180
[  634.239196]  ? save_stack+0xa9/0xd0
[  634.242808]  ? save_stack+0x43/0xd0
[  634.246419]  ? kasan_slab_alloc+0x12/0x20
[  634.250555]  ? kmem_cache_alloc+0x12e/0x730
[  634.254862]  ? vm_area_dup+0x7a/0x230
[  634.258646]  ? copy_process+0x429f/0x8780
[  634.262778]  ? _do_fork+0x1cb/0x11c0
[  634.266501]  ? __x64_sys_clone+0xbf/0x150
[  634.270658]  ? do_syscall_64+0x1b9/0x820
[  634.274713]  ? graph_lock+0x170/0x170
[  634.278527]  ? lock_downgrade+0x900/0x900
[  634.282673]  ? graph_lock+0x170/0x170
[  634.286461]  ? graph_lock+0x170/0x170
[  634.290254]  ? find_held_lock+0x36/0x1c0
[  634.294307]  ? copy_process+0x454a/0x8780
[  634.298601]  ? lock_downgrade+0x900/0x900
[  634.302774]  ? lock_release+0x970/0x970
[  634.306769]  ? ttwu_stat+0x5c0/0x5c0
[  634.310469]  ? dup_userfaultfd+0x6d8/0x890
[  634.314701]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  634.319708]  ? vma_compute_subtree_gap+0x160/0x240
[  634.324635]  ? validate_mm_rb+0xaa/0xc0
[  634.328612]  ? __vma_link_rb+0x26c/0x370
[  634.332678]  copy_process+0x4720/0x8780
[  634.336659]  ? __cleanup_sighand+0x70/0x70
[  634.340887]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  634.346412]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  634.351960]  ? page_swapcount+0x1d0/0x1d0
[  634.356117]  ? try_to_wake_up+0x10a/0x12f0
[  634.360346]  ? lock_downgrade+0x900/0x900
[  634.364481]  ? lock_downgrade+0x900/0x900
[  634.368625]  ? trace_hardirqs_off+0xb8/0x310
[  634.373032]  ? kasan_check_read+0x11/0x20
[  634.377170]  ? trace_hardirqs_on_caller+0x310/0x310
[  634.382184]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  634.387274]  ? try_to_wake_up+0x10a/0x12f0
[  634.391525]  ? print_usage_bug+0xc0/0xc0
[  634.395597]  ? migrate_swap_stop+0x930/0x930
[  634.400021]  ? __handle_mm_fault+0x9ab/0x53e0
[  634.404505]  ? graph_lock+0x170/0x170
[  634.408297]  ? print_usage_bug+0xc0/0xc0
[  634.412358]  ? __lock_acquire+0x7ec/0x4ec0
[  634.416614]  ? print_usage_bug+0xc0/0xc0
[  634.420666]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  634.426194]  ? reuse_swap_page+0x4bd/0x1520
[  634.430506]  ? swp_swapcount+0x530/0x530
[  634.434560]  ? __lock_acquire+0x7ec/0x4ec0
[  634.438786]  ? mark_held_locks+0x130/0x130
[  634.443021]  ? rcu_softirq_qs+0x20/0x20
[  634.447027]  ? __lock_acquire+0x7ec/0x4ec0
[  634.451269]  ? mark_held_locks+0x130/0x130
[  634.455490]  ? graph_lock+0x170/0x170
[  634.459280]  ? mark_held_locks+0x130/0x130
[  634.463502]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  634.469044]  ? check_preemption_disabled+0x48/0x200
[  634.474059]  ? find_held_lock+0x36/0x1c0
[  634.478119]  ? do_wp_page+0xa6f/0x1690
[  634.481994]  ? lock_downgrade+0x900/0x900
[  634.486126]  ? wake_up_page_bit+0x6f0/0x6f0
[  634.490437]  ? kasan_check_read+0x11/0x20
[  634.494600]  ? do_raw_spin_unlock+0xa7/0x2f0
[  634.498998]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  634.503565]  ? pgd_free+0x380/0x380
[  634.507176]  ? __lock_acquire+0x7ec/0x4ec0
[  634.511406]  ? _raw_spin_unlock+0x2c/0x50
[  634.515542]  ? do_wp_page+0x77c/0x1690
[  634.519419]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  634.524076]  ? find_held_lock+0x36/0x1c0
[  634.528157]  ? lock_release+0x970/0x970
[  634.532125]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  634.537650]  ? kasan_check_write+0x14/0x20
[  634.541872]  ? do_raw_spin_lock+0xc1/0x200
[  634.546104]  ? __handle_mm_fault+0x9ab/0x53e0
[  634.550599]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  634.555431]  ? __sb_end_write+0xd9/0x110
[  634.559494]  ? graph_lock+0x170/0x170
[  634.563303]  ? print_usage_bug+0xc0/0xc0
[  634.567361]  ? atime_needs_update+0x710/0x710
[  634.571861]  ? graph_lock+0x170/0x170
[  634.575670]  ? graph_lock+0x170/0x170
[  634.579468]  ? find_held_lock+0x36/0x1c0
[  634.583525]  ? __do_page_fault+0x6b7/0xec0
[  634.587754]  _do_fork+0x1cb/0x11c0
[  634.591288]  ? fork_idle+0x1d0/0x1d0
[  634.594992]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  634.600520]  ? check_preemption_disabled+0x48/0x200
[  634.605527]  ? kasan_check_write+0x14/0x20
[  634.609749]  ? up_read+0x225/0x2c0
[  634.613278]  ? up_read_non_owner+0x100/0x100
[  634.617687]  ? find_vma+0x34/0x190
[  634.621220]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  634.626743]  ? __do_page_fault+0x49c/0xec0
[  634.630968]  ? do_syscall_64+0x9a/0x820
[  634.634927]  ? do_syscall_64+0x9a/0x820
[  634.638907]  ? lockdep_hardirqs_on+0x421/0x5c0
[  634.643478]  ? trace_hardirqs_on+0xbd/0x310
[  634.647794]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  634.653161]  ? trace_hardirqs_off_caller+0x300/0x300
[  634.658258]  __x64_sys_clone+0xbf/0x150
[  634.662221]  do_syscall_64+0x1b9/0x820
[  634.666105]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  634.671464]  ? syscall_return_slowpath+0x5e0/0x5e0
[  634.676378]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  634.681210]  ? trace_hardirqs_off+0x310/0x310
[  634.685693]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  634.691218]  ? prepare_exit_to_usermode+0x291/0x3b0
[  634.696227]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  634.701061]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  634.706249] RIP: 0033:0x455c4a
[  634.709455] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  634.728350] RSP: 002b:00007fff9d17d960 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  634.736050] RAX: ffffffffffffffda RBX: 00007fff9d17d960 RCX: 0000000000455c4a
[  634.743311] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  634.750567] RBP: 00007fff9d17d9a0 R08: 0000000000000001 R09: 0000000000ea7940
[  634.757826] R10: 0000000000ea7c10 R11: 0000000000000246 R12: 0000000000000001
[  634.765115] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  634.772753] Memory limit reached of cgroup /syz1
[  634.777673] memory: usage 6936kB, limit 0kB, failcnt 221
[  634.783128] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  634.789967] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  634.796122] Memory cgroup stats for /syz1: cache:112KB rss:176KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:52KB inactive_file:0KB active_file:4KB unevictable:0KB
[  634.816359] Out of memory and no killable processes...
[  634.823245] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  634.836207] syz-executor1 cpuset=syz1 mems_allowed=0
[  634.842059] CPU: 1 PID: 23483 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  634.850582] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  634.859957] Call Trace:
[  634.862543]  dump_stack+0x1d3/0x2c4
[  634.866166]  ? dump_stack_print_info.cold.2+0x52/0x52
[  634.871353]  dump_header+0x27b/0xf72
[  634.875052]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  634.879966]  ? kasan_check_read+0x11/0x20
[  634.884113]  ? pagefault_out_of_memory+0x197/0x197
[  634.889040]  ? rcu_read_unlock+0x33/0x60
[  634.893095]  ? mem_cgroup_iter+0x514/0x1160
[  634.897407]  ? find_held_lock+0x36/0x1c0
[  634.901461]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  634.906202]  ? mark_held_locks+0xc7/0x130
[  634.910346]  ? _raw_spin_unlock_irq+0x27/0x80
[  634.914830]  ? _raw_spin_unlock_irq+0x27/0x80
[  634.919322]  ? lockdep_hardirqs_on+0x421/0x5c0
[  634.923895]  ? trace_hardirqs_on+0xbd/0x310
[  634.928203]  ? kasan_check_read+0x11/0x20
[  634.932337]  ? css_task_iter_end+0x222/0x490
[  634.936746]  ? trace_hardirqs_off_caller+0x300/0x300
[  634.941863]  ? kasan_check_write+0x14/0x20
[  634.946101]  ? do_raw_spin_lock+0xc1/0x200
[  634.950328]  ? _raw_spin_unlock_irq+0x60/0x80
[  634.954810]  ? css_task_iter_end+0x2ce/0x490
[  634.959204]  ? cgroup_procs_next+0x70/0x70
[  634.963432]  ? _raw_spin_unlock_irq+0x60/0x80
[  634.967915]  ? oom_badness+0xaa0/0xaa0
[  634.971794]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  634.976543]  ? mem_cgroup_iter_break+0x30/0x30
[  634.981126]  ? mark_held_locks+0xc7/0x130
[  634.985267]  out_of_memory.cold.30+0xf/0x184
[  634.989665]  ? lockdep_hardirqs_on+0x421/0x5c0
[  634.994241]  ? kasan_check_read+0x11/0x20
[  634.998379]  ? oom_killer_disable+0x3a0/0x3a0
[  635.002863]  ? kasan_check_write+0x14/0x20
[  635.007090]  ? do_raw_spin_lock+0xc1/0x200
[  635.011323]  mem_cgroup_out_of_memory+0x15e/0x210
[  635.016156]  ? memcg_memory_event+0x40/0x40
[  635.020466]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  635.025296]  ? page_counter_try_charge+0x1c1/0x220
[  635.030221]  try_charge+0xb1a/0x1690
[  635.033921]  ? lock_downgrade+0x900/0x900
[  635.038057]  ? check_preemption_disabled+0x48/0x200
[  635.043090]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  635.049140]  ? find_held_lock+0x36/0x1c0
[  635.053192]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  635.058021]  ? lock_downgrade+0x900/0x900
[  635.062157]  ? check_preemption_disabled+0x48/0x200
[  635.067170]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  635.072093]  ? kasan_check_read+0x11/0x20
[  635.076229]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  635.081494]  ? rcu_softirq_qs+0x20/0x20
[  635.085463]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  635.090316]  memcg_kmem_charge_memcg+0x7c/0x120
[  635.094973]  ? memcg_kmem_put_cache+0xb0/0xb0
[  635.099453]  ? kmem_cache_alloc+0x12e/0x730
[  635.103763]  ? print_usage_bug+0xc0/0xc0
[  635.107832]  memcg_kmem_charge+0x135/0x300
[  635.112058]  __alloc_pages_nodemask+0x89c/0xdd0
[  635.116738]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  635.121755]  ? __lock_acquire+0x7ec/0x4ec0
[  635.125982]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  635.131507]  ? graph_lock+0x170/0x170
[  635.135291]  ? find_held_lock+0x36/0x1c0
[  635.139344]  ? __lock_is_held+0xb5/0x140
[  635.143390]  ? lock_downgrade+0x900/0x900
[  635.147561]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  635.153122]  alloc_pages_current+0x10c/0x210
[  635.157522]  pte_alloc_one+0x1b/0x1a0
[  635.161311]  __pte_alloc+0x2a/0x350
[  635.164924]  copy_page_range+0x18a2/0x26f0
[  635.169160]  ? pmd_alloc+0x180/0x180
[  635.172897]  ? save_stack+0xa9/0xd0
[  635.176510]  ? save_stack+0x43/0xd0
[  635.180124]  ? kasan_slab_alloc+0x12/0x20
[  635.184255]  ? kmem_cache_alloc+0x12e/0x730
[  635.188562]  ? vm_area_dup+0x7a/0x230
[  635.192363]  ? copy_process+0x429f/0x8780
[  635.196508]  ? _do_fork+0x1cb/0x11c0
[  635.200208]  ? __x64_sys_clone+0xbf/0x150
[  635.204343]  ? do_syscall_64+0x1b9/0x820
[  635.208400]  ? graph_lock+0x170/0x170
[  635.212186]  ? lock_downgrade+0x900/0x900
[  635.216318]  ? graph_lock+0x170/0x170
[  635.220113]  ? graph_lock+0x170/0x170
[  635.223903]  ? find_held_lock+0x36/0x1c0
[  635.227957]  ? copy_process+0x454a/0x8780
[  635.232101]  ? lock_downgrade+0x900/0x900
[  635.236242]  ? lock_release+0x970/0x970
[  635.240202]  ? ttwu_stat+0x5c0/0x5c0
[  635.243902]  ? dup_userfaultfd+0x6d8/0x890
[  635.248131]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  635.253133]  ? vma_compute_subtree_gap+0x160/0x240
[  635.258052]  ? validate_mm_rb+0xaa/0xc0
[  635.262030]  ? __vma_link_rb+0x26c/0x370
[  635.266086]  copy_process+0x4720/0x8780
[  635.270068]  ? __cleanup_sighand+0x70/0x70
[  635.274305]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  635.279838]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  635.285375]  ? page_swapcount+0x1d0/0x1d0
[  635.289521]  ? try_to_wake_up+0x10a/0x12f0
[  635.293747]  ? lock_downgrade+0x900/0x900
[  635.297880]  ? lock_downgrade+0x900/0x900
[  635.302017]  ? trace_hardirqs_off+0xb8/0x310
[  635.306408]  ? kasan_check_read+0x11/0x20
[  635.310544]  ? trace_hardirqs_on_caller+0x310/0x310
[  635.315581]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  635.320679]  ? try_to_wake_up+0x10a/0x12f0
[  635.324924]  ? print_usage_bug+0xc0/0xc0
[  635.328975]  ? migrate_swap_stop+0x930/0x930
[  635.333372]  ? __handle_mm_fault+0x9ab/0x53e0
[  635.337859]  ? graph_lock+0x170/0x170
[  635.341647]  ? print_usage_bug+0xc0/0xc0
[  635.345716]  ? __lock_acquire+0x7ec/0x4ec0
[  635.349946]  ? print_usage_bug+0xc0/0xc0
[  635.354000]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  635.359542]  ? reuse_swap_page+0x4bd/0x1520
[  635.363855]  ? swp_swapcount+0x530/0x530
[  635.367913]  ? __lock_acquire+0x7ec/0x4ec0
[  635.372136]  ? mark_held_locks+0x130/0x130
[  635.376355]  ? rcu_softirq_qs+0x20/0x20
[  635.380319]  ? __lock_acquire+0x7ec/0x4ec0
[  635.384550]  ? mark_held_locks+0x130/0x130
[  635.388775]  ? graph_lock+0x170/0x170
[  635.392564]  ? mark_held_locks+0x130/0x130
[  635.396790]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  635.402555]  ? check_preemption_disabled+0x48/0x200
[  635.407569]  ? find_held_lock+0x36/0x1c0
[  635.411629]  ? do_wp_page+0xa6f/0x1690
[  635.415512]  ? lock_downgrade+0x900/0x900
[  635.419649]  ? wake_up_page_bit+0x6f0/0x6f0
[  635.423963]  ? kasan_check_read+0x11/0x20
[  635.428104]  ? do_raw_spin_unlock+0xa7/0x2f0
[  635.432498]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  635.437067]  ? pgd_free+0x380/0x380
[  635.440698]  ? __lock_acquire+0x7ec/0x4ec0
[  635.444937]  ? _raw_spin_unlock+0x2c/0x50
[  635.449076]  ? do_wp_page+0x77c/0x1690
[  635.452969]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  635.457654]  ? find_held_lock+0x36/0x1c0
[  635.461709]  ? lock_release+0x970/0x970
[  635.465676]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  635.471230]  ? kasan_check_write+0x14/0x20
[  635.475450]  ? do_raw_spin_lock+0xc1/0x200
[  635.479692]  ? __handle_mm_fault+0x9ab/0x53e0
[  635.484204]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  635.489046]  ? __sb_end_write+0xd9/0x110
[  635.493118]  ? graph_lock+0x170/0x170
[  635.496906]  ? print_usage_bug+0xc0/0xc0
[  635.500955]  ? atime_needs_update+0x710/0x710
[  635.505438]  ? graph_lock+0x170/0x170
[  635.509232]  ? graph_lock+0x170/0x170
[  635.513025]  ? find_held_lock+0x36/0x1c0
[  635.517087]  ? __do_page_fault+0x6b7/0xec0
[  635.521316]  _do_fork+0x1cb/0x11c0
[  635.524867]  ? fork_idle+0x1d0/0x1d0
[  635.528570]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  635.534105]  ? check_preemption_disabled+0x48/0x200
[  635.539116]  ? kasan_check_write+0x14/0x20
[  635.543338]  ? up_read+0x225/0x2c0
[  635.546883]  ? up_read_non_owner+0x100/0x100
[  635.551286]  ? find_vma+0x34/0x190
[  635.554842]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  635.560370]  ? __do_page_fault+0x49c/0xec0
[  635.564596]  ? do_syscall_64+0x9a/0x820
[  635.568559]  ? do_syscall_64+0x9a/0x820
[  635.572521]  ? lockdep_hardirqs_on+0x421/0x5c0
[  635.577103]  ? trace_hardirqs_on+0xbd/0x310
[  635.581417]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  635.586770]  ? trace_hardirqs_off_caller+0x300/0x300
[  635.591882]  __x64_sys_clone+0xbf/0x150
[  635.595849]  do_syscall_64+0x1b9/0x820
[  635.599753]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  635.605112]  ? syscall_return_slowpath+0x5e0/0x5e0
[  635.610030]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  635.614861]  ? trace_hardirqs_off+0x310/0x310
[  635.619344]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  635.624871]  ? prepare_exit_to_usermode+0x291/0x3b0
[  635.629878]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  635.634732]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  635.639924] RIP: 0033:0x455c4a
[  635.643113] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  635.662004] RSP: 002b:00007fff9d17d960 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  635.669701] RAX: ffffffffffffffda RBX: 00007fff9d17d960 RCX: 0000000000455c4a
[  635.676963] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  635.684221] RBP: 00007fff9d17d9a0 R08: 0000000000000001 R09: 0000000000ea7940
[  635.691476] R10: 0000000000ea7c10 R11: 0000000000000246 R12: 0000000000000001
[  635.698731] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  635.706146] Memory limit reached of cgroup /syz1
[  635.711022] memory: usage 6940kB, limit 0kB, failcnt 229
[  635.716476] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  635.723293] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  635.729482] Memory cgroup stats for /syz1: cache:112KB rss:176KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:52KB inactive_file:4KB active_file:0KB unevictable:0KB
[  635.749702] Out of memory and no killable processes...
[  635.756600] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  635.769561] syz-executor1 cpuset=syz1 mems_allowed=0
[  635.774705] CPU: 1 PID: 23483 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  635.783180] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  635.792529] Call Trace:
[  635.795116]  dump_stack+0x1d3/0x2c4
[  635.798737]  ? dump_stack_print_info.cold.2+0x52/0x52
[  635.803949]  dump_header+0x27b/0xf72
[  635.807666]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  635.812604]  ? kasan_check_read+0x11/0x20
[  635.816774]  ? pagefault_out_of_memory+0x197/0x197
[  635.821961]  ? rcu_read_unlock+0x33/0x60
[  635.826015]  ? mem_cgroup_iter+0x514/0x1160
[  635.830329]  ? find_held_lock+0x36/0x1c0
[  635.834392]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  635.839144]  ? mark_held_locks+0xc7/0x130
[  635.843291]  ? _raw_spin_unlock_irq+0x27/0x80
[  635.847779]  ? _raw_spin_unlock_irq+0x27/0x80
[  635.852265]  ? lockdep_hardirqs_on+0x421/0x5c0
[  635.856835]  ? trace_hardirqs_on+0xbd/0x310
[  635.861143]  ? kasan_check_read+0x11/0x20
[  635.865279]  ? css_task_iter_end+0x222/0x490
[  635.869678]  ? trace_hardirqs_off_caller+0x300/0x300
[  635.874775]  ? kasan_check_write+0x14/0x20
[  635.878995]  ? do_raw_spin_lock+0xc1/0x200
[  635.883217]  ? _raw_spin_unlock_irq+0x60/0x80
[  635.887699]  ? css_task_iter_end+0x2ce/0x490
[  635.892112]  ? cgroup_procs_next+0x70/0x70
[  635.896336]  ? _raw_spin_unlock_irq+0x60/0x80
[  635.900819]  ? oom_badness+0xaa0/0xaa0
[  635.904693]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  635.909452]  ? mem_cgroup_iter_break+0x30/0x30
[  635.914030]  ? mark_held_locks+0xc7/0x130
[  635.918186]  out_of_memory.cold.30+0xf/0x184
[  635.922583]  ? lockdep_hardirqs_on+0x421/0x5c0
[  635.927157]  ? kasan_check_read+0x11/0x20
[  635.931298]  ? oom_killer_disable+0x3a0/0x3a0
[  635.935783]  ? kasan_check_write+0x14/0x20
[  635.940004]  ? do_raw_spin_lock+0xc1/0x200
[  635.944246]  mem_cgroup_out_of_memory+0x15e/0x210
[  635.949085]  ? memcg_memory_event+0x40/0x40
[  635.953401]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  635.958237]  ? page_counter_try_charge+0x1c1/0x220
[  635.963182]  try_charge+0xb1a/0x1690
[  635.966885]  ? lock_downgrade+0x900/0x900
[  635.971028]  ? check_preemption_disabled+0x48/0x200
[  635.976087]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  635.982148]  ? find_held_lock+0x36/0x1c0
[  635.986206]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  635.991038]  ? lock_downgrade+0x900/0x900
[  635.995171]  ? check_preemption_disabled+0x48/0x200
[  636.000196]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  636.005116]  ? kasan_check_read+0x11/0x20
[  636.010152]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  636.015418]  ? rcu_softirq_qs+0x20/0x20
[  636.019392]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  636.024227]  memcg_kmem_charge_memcg+0x7c/0x120
[  636.028887]  ? memcg_kmem_put_cache+0xb0/0xb0
[  636.033368]  ? kmem_cache_alloc+0x12e/0x730
[  636.037679]  ? print_usage_bug+0xc0/0xc0
[  636.041749]  memcg_kmem_charge+0x135/0x300
[  636.045979]  __alloc_pages_nodemask+0x89c/0xdd0
[  636.050656]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  636.055677]  ? __lock_acquire+0x7ec/0x4ec0
[  636.059902]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  636.065427]  ? graph_lock+0x170/0x170
[  636.069213]  ? find_held_lock+0x36/0x1c0
[  636.073272]  ? __lock_is_held+0xb5/0x140
[  636.077333]  ? lock_downgrade+0x900/0x900
[  636.081483]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  636.087012]  alloc_pages_current+0x10c/0x210
[  636.091415]  pte_alloc_one+0x1b/0x1a0
[  636.095207]  __pte_alloc+0x2a/0x350
[  636.098827]  copy_page_range+0x18a2/0x26f0
[  636.103069]  ? pmd_alloc+0x180/0x180
[  636.106782]  ? save_stack+0xa9/0xd0
[  636.110397]  ? save_stack+0x43/0xd0
[  636.114010]  ? kasan_slab_alloc+0x12/0x20
[  636.118143]  ? kmem_cache_alloc+0x12e/0x730
[  636.122448]  ? vm_area_dup+0x7a/0x230
[  636.126238]  ? copy_process+0x429f/0x8780
[  636.130372]  ? _do_fork+0x1cb/0x11c0
[  636.134076]  ? __x64_sys_clone+0xbf/0x150
[  636.138224]  ? do_syscall_64+0x1b9/0x820
[  636.142280]  ? graph_lock+0x170/0x170
[  636.146068]  ? lock_downgrade+0x900/0x900
[  636.150211]  ? graph_lock+0x170/0x170
[  636.154000]  ? kasan_check_read+0x11/0x20
[  636.158144]  ? graph_lock+0x170/0x170
[  636.161954]  ? find_held_lock+0x36/0x1c0
[  636.166012]  ? copy_process+0x454a/0x8780
[  636.170154]  ? lock_downgrade+0x900/0x900
[  636.174291]  ? lock_release+0x970/0x970
[  636.178252]  ? ttwu_stat+0x5c0/0x5c0
[  636.181955]  ? dup_userfaultfd+0x6d8/0x890
[  636.186184]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  636.191196]  ? vma_compute_subtree_gap+0x160/0x240
[  636.196119]  ? validate_mm_rb+0xaa/0xc0
[  636.200091]  ? __vma_link_rb+0x26c/0x370
[  636.204148]  copy_process+0x4720/0x8780
[  636.208135]  ? __cleanup_sighand+0x70/0x70
[  636.212369]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  636.217899]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  636.223430]  ? page_swapcount+0x1d0/0x1d0
[  636.227565]  ? try_to_wake_up+0x10a/0x12f0
[  636.231789]  ? lock_downgrade+0x900/0x900
[  636.235930]  ? lock_downgrade+0x900/0x900
[  636.240069]  ? trace_hardirqs_off+0xb8/0x310
[  636.244486]  ? kasan_check_read+0x11/0x20
[  636.248762]  ? trace_hardirqs_on_caller+0x310/0x310
[  636.253775]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  636.258867]  ? try_to_wake_up+0x10a/0x12f0
[  636.263103]  ? print_usage_bug+0xc0/0xc0
[  636.267169]  ? migrate_swap_stop+0x930/0x930
[  636.271569]  ? __handle_mm_fault+0x9ab/0x53e0
[  636.276055]  ? graph_lock+0x170/0x170
[  636.279848]  ? print_usage_bug+0xc0/0xc0
[  636.283898]  ? __lock_acquire+0x7ec/0x4ec0
[  636.288126]  ? print_usage_bug+0xc0/0xc0
[  636.292184]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  636.297901]  ? reuse_swap_page+0x4bd/0x1520
[  636.302211]  ? swp_swapcount+0x530/0x530
[  636.306263]  ? __lock_acquire+0x7ec/0x4ec0
[  636.310482]  ? mark_held_locks+0x130/0x130
[  636.314702]  ? rcu_softirq_qs+0x20/0x20
[  636.318666]  ? __lock_acquire+0x7ec/0x4ec0
[  636.322891]  ? mark_held_locks+0x130/0x130
[  636.327127]  ? graph_lock+0x170/0x170
[  636.330919]  ? mark_held_locks+0x130/0x130
[  636.335149]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  636.340678]  ? check_preemption_disabled+0x48/0x200
[  636.345683]  ? find_held_lock+0x36/0x1c0
[  636.349735]  ? do_wp_page+0xa6f/0x1690
[  636.353615]  ? lock_downgrade+0x900/0x900
[  636.357753]  ? wake_up_page_bit+0x6f0/0x6f0
[  636.362065]  ? kasan_check_read+0x11/0x20
[  636.366205]  ? do_raw_spin_unlock+0xa7/0x2f0
[  636.370605]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  636.375175]  ? pgd_free+0x380/0x380
[  636.378795]  ? __lock_acquire+0x7ec/0x4ec0
[  636.383022]  ? _raw_spin_unlock+0x2c/0x50
[  636.387168]  ? do_wp_page+0x77c/0x1690
[  636.391046]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  636.395707]  ? find_held_lock+0x36/0x1c0
[  636.399759]  ? lock_release+0x970/0x970
[  636.403727]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  636.409255]  ? kasan_check_write+0x14/0x20
[  636.413475]  ? do_raw_spin_lock+0xc1/0x200
[  636.417716]  ? __handle_mm_fault+0x9ab/0x53e0
[  636.422205]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  636.427041]  ? __sb_end_write+0xd9/0x110
[  636.431109]  ? graph_lock+0x170/0x170
[  636.434915]  ? print_usage_bug+0xc0/0xc0
[  636.438967]  ? atime_needs_update+0x710/0x710
[  636.443449]  ? graph_lock+0x170/0x170
[  636.447236]  ? graph_lock+0x170/0x170
[  636.451047]  ? find_held_lock+0x36/0x1c0
[  636.455112]  ? __do_page_fault+0x6b7/0xec0
[  636.459342]  _do_fork+0x1cb/0x11c0
[  636.462877]  ? fork_idle+0x1d0/0x1d0
[  636.466613]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  636.472151]  ? check_preemption_disabled+0x48/0x200
[  636.477188]  ? kasan_check_write+0x14/0x20
[  636.481430]  ? up_read+0x225/0x2c0
[  636.484956]  ? up_read_non_owner+0x100/0x100
[  636.489358]  ? find_vma+0x34/0x190
[  636.492888]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  636.498414]  ? __do_page_fault+0x49c/0xec0
[  636.502638]  ? do_syscall_64+0x9a/0x820
[  636.506622]  ? do_syscall_64+0x9a/0x820
[  636.510611]  ? lockdep_hardirqs_on+0x421/0x5c0
[  636.515185]  ? trace_hardirqs_on+0xbd/0x310
[  636.519501]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  636.524865]  ? trace_hardirqs_off_caller+0x300/0x300
[  636.529960]  __x64_sys_clone+0xbf/0x150
[  636.533927]  do_syscall_64+0x1b9/0x820
[  636.537803]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  636.543155]  ? syscall_return_slowpath+0x5e0/0x5e0
[  636.548107]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  636.552952]  ? trace_hardirqs_off+0x310/0x310
[  636.557438]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  636.562965]  ? prepare_exit_to_usermode+0x291/0x3b0
[  636.567988]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  636.572827]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  636.578006] RIP: 0033:0x455c4a
[  636.581191] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  636.600093] RSP: 002b:00007fff9d17d960 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  636.607799] RAX: ffffffffffffffda RBX: 00007fff9d17d960 RCX: 0000000000455c4a
[  636.615057] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  636.622317] RBP: 00007fff9d17d9a0 R08: 0000000000000001 R09: 0000000000ea7940
[  636.629603] R10: 0000000000ea7c10 R11: 0000000000000246 R12: 0000000000000001
[  636.636874] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  636.645857] Memory limit reached of cgroup /syz1
[  636.650763] memory: usage 6872kB, limit 0kB, failcnt 237
[  636.656220] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  636.663023] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  636.669238] Memory cgroup stats for /syz1: cache:112KB rss:176KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:52KB inactive_file:0KB active_file:4KB unevictable:0KB
[  636.689429] Out of memory and no killable processes...
[  636.696348] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  636.709324] syz-executor1 cpuset=syz1 mems_allowed=0
[  636.714461] CPU: 1 PID: 23483 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  636.722933] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  636.732283] Call Trace:
[  636.734860]  dump_stack+0x1d3/0x2c4
[  636.738476]  ? dump_stack_print_info.cold.2+0x52/0x52
[  636.743659]  dump_header+0x27b/0xf72
[  636.747373]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  636.752321]  ? kasan_check_read+0x11/0x20
[  636.756461]  ? pagefault_out_of_memory+0x197/0x197
[  636.761380]  ? rcu_read_unlock+0x33/0x60
[  636.765431]  ? mem_cgroup_iter+0x514/0x1160
[  636.769740]  ? find_held_lock+0x36/0x1c0
[  636.773800]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  636.778544]  ? mark_held_locks+0xc7/0x130
[  636.782678]  ? _raw_spin_unlock_irq+0x27/0x80
[  636.787156]  ? _raw_spin_unlock_irq+0x27/0x80
[  636.791640]  ? lockdep_hardirqs_on+0x421/0x5c0
[  636.796214]  ? trace_hardirqs_on+0xbd/0x310
[  636.800526]  ? kasan_check_read+0x11/0x20
[  636.804664]  ? css_task_iter_end+0x222/0x490
[  636.809062]  ? trace_hardirqs_off_caller+0x300/0x300
[  636.814181]  ? kasan_check_write+0x14/0x20
[  636.818414]  ? do_raw_spin_lock+0xc1/0x200
[  636.822644]  ? _raw_spin_unlock_irq+0x60/0x80
[  636.827131]  ? css_task_iter_end+0x2ce/0x490
[  636.831561]  ? cgroup_procs_next+0x70/0x70
[  636.835837]  ? _raw_spin_unlock_irq+0x60/0x80
[  636.840346]  ? oom_badness+0xaa0/0xaa0
[  636.844254]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  636.849020]  ? mem_cgroup_iter_break+0x30/0x30
[  636.853606]  ? mark_held_locks+0xc7/0x130
[  636.857758]  out_of_memory.cold.30+0xf/0x184
[  636.862168]  ? lockdep_hardirqs_on+0x421/0x5c0
[  636.866738]  ? kasan_check_read+0x11/0x20
[  636.870878]  ? oom_killer_disable+0x3a0/0x3a0
[  636.875364]  ? kasan_check_write+0x14/0x20
[  636.879585]  ? do_raw_spin_lock+0xc1/0x200
[  636.883822]  mem_cgroup_out_of_memory+0x15e/0x210
[  636.888671]  ? memcg_memory_event+0x40/0x40
[  636.892982]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  636.897824]  ? page_counter_try_charge+0x1c1/0x220
[  636.902742]  try_charge+0xb1a/0x1690
[  636.906443]  ? lock_downgrade+0x900/0x900
[  636.910586]  ? check_preemption_disabled+0x48/0x200
[  636.915626]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  636.921670]  ? find_held_lock+0x36/0x1c0
[  636.925722]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  636.930555]  ? lock_downgrade+0x900/0x900
[  636.934690]  ? check_preemption_disabled+0x48/0x200
[  636.939709]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  636.944622]  ? kasan_check_read+0x11/0x20
[  636.948756]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  636.954024]  ? rcu_softirq_qs+0x20/0x20
[  636.957996]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  636.962832]  memcg_kmem_charge_memcg+0x7c/0x120
[  636.967502]  ? memcg_kmem_put_cache+0xb0/0xb0
[  636.971994]  ? kmem_cache_alloc+0x12e/0x730
[  636.976305]  ? print_usage_bug+0xc0/0xc0
[  636.980358]  memcg_kmem_charge+0x135/0x300
[  636.984585]  __alloc_pages_nodemask+0x89c/0xdd0
[  636.989262]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  636.994267]  ? __lock_acquire+0x7ec/0x4ec0
[  636.998494]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  637.004021]  ? graph_lock+0x170/0x170
[  637.007809]  ? find_held_lock+0x36/0x1c0
[  637.011864]  ? __lock_is_held+0xb5/0x140
[  637.015913]  ? lock_downgrade+0x900/0x900
[  637.020067]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  637.025609]  alloc_pages_current+0x10c/0x210
[  637.030034]  pte_alloc_one+0x1b/0x1a0
[  637.033832]  __pte_alloc+0x2a/0x350
[  637.037449]  copy_page_range+0x18a2/0x26f0
[  637.041687]  ? pmd_alloc+0x180/0x180
[  637.045391]  ? save_stack+0xa9/0xd0
[  637.049008]  ? save_stack+0x43/0xd0
[  637.052620]  ? kasan_slab_alloc+0x12/0x20
[  637.056749]  ? kmem_cache_alloc+0x12e/0x730
[  637.061055]  ? vm_area_dup+0x7a/0x230
[  637.064845]  ? copy_process+0x429f/0x8780
[  637.068979]  ? _do_fork+0x1cb/0x11c0
[  637.072679]  ? __x64_sys_clone+0xbf/0x150
[  637.076813]  ? do_syscall_64+0x1b9/0x820
[  637.080868]  ? graph_lock+0x170/0x170
[  637.084679]  ? lock_downgrade+0x900/0x900
[  637.088838]  ? graph_lock+0x170/0x170
[  637.092632]  ? graph_lock+0x170/0x170
[  637.096421]  ? find_held_lock+0x36/0x1c0
[  637.100476]  ? copy_process+0x454a/0x8780
[  637.104612]  ? lock_downgrade+0x900/0x900
[  637.108752]  ? lock_release+0x970/0x970
[  637.112716]  ? ttwu_stat+0x5c0/0x5c0
[  637.116418]  ? dup_userfaultfd+0x6d8/0x890
[  637.120649]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  637.125651]  ? vma_compute_subtree_gap+0x160/0x240
[  637.130571]  ? validate_mm_rb+0xaa/0xc0
[  637.134536]  ? __vma_link_rb+0x26c/0x370
[  637.138602]  copy_process+0x4720/0x8780
[  637.142589]  ? __cleanup_sighand+0x70/0x70
[  637.146831]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  637.152361]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  637.157923]  ? page_swapcount+0x1d0/0x1d0
[  637.162075]  ? try_to_wake_up+0x10a/0x12f0
[  637.166310]  ? lock_downgrade+0x900/0x900
[  637.170442]  ? lock_downgrade+0x900/0x900
[  637.174581]  ? trace_hardirqs_off+0xb8/0x310
[  637.178998]  ? kasan_check_read+0x11/0x20
[  637.183137]  ? trace_hardirqs_on_caller+0x310/0x310
[  637.188149]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  637.193238]  ? try_to_wake_up+0x10a/0x12f0
[  637.197465]  ? print_usage_bug+0xc0/0xc0
[  637.201510]  ? migrate_swap_stop+0x930/0x930
[  637.205913]  ? __handle_mm_fault+0x9ab/0x53e0
[  637.210399]  ? graph_lock+0x170/0x170
[  637.214190]  ? print_usage_bug+0xc0/0xc0
[  637.218244]  ? __lock_acquire+0x7ec/0x4ec0
[  637.222487]  ? print_usage_bug+0xc0/0xc0
[  637.226539]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  637.232063]  ? reuse_swap_page+0x4bd/0x1520
[  637.236378]  ? swp_swapcount+0x530/0x530
[  637.240433]  ? __lock_acquire+0x7ec/0x4ec0
[  637.244676]  ? mark_held_locks+0x130/0x130
[  637.248911]  ? rcu_softirq_qs+0x20/0x20
[  637.252878]  ? __lock_acquire+0x7ec/0x4ec0
[  637.257111]  ? mark_held_locks+0x130/0x130
[  637.261339]  ? graph_lock+0x170/0x170
[  637.265139]  ? mark_held_locks+0x130/0x130
[  637.269370]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  637.274893]  ? check_preemption_disabled+0x48/0x200
[  637.279903]  ? find_held_lock+0x36/0x1c0
[  637.283952]  ? do_wp_page+0xa6f/0x1690
[  637.287842]  ? lock_downgrade+0x900/0x900
[  637.291993]  ? wake_up_page_bit+0x6f0/0x6f0
[  637.296305]  ? kasan_check_read+0x11/0x20
[  637.300440]  ? do_raw_spin_unlock+0xa7/0x2f0
[  637.304832]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  637.309417]  ? pgd_free+0x380/0x380
[  637.313028]  ? __lock_acquire+0x7ec/0x4ec0
[  637.317253]  ? _raw_spin_unlock+0x2c/0x50
[  637.321390]  ? do_wp_page+0x77c/0x1690
[  637.325287]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  637.329949]  ? find_held_lock+0x36/0x1c0
[  637.333996]  ? lock_release+0x970/0x970
[  637.337962]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  637.343505]  ? kasan_check_write+0x14/0x20
[  637.347724]  ? do_raw_spin_lock+0xc1/0x200
[  637.351946]  ? __handle_mm_fault+0x9ab/0x53e0
[  637.356434]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  637.361263]  ? __sb_end_write+0xd9/0x110
[  637.365313]  ? graph_lock+0x170/0x170
[  637.369107]  ? print_usage_bug+0xc0/0xc0
[  637.373158]  ? atime_needs_update+0x710/0x710
[  637.377645]  ? graph_lock+0x170/0x170
[  637.381449]  ? graph_lock+0x170/0x170
[  637.385239]  ? find_held_lock+0x36/0x1c0
[  637.389294]  ? __do_page_fault+0x6b7/0xec0
[  637.393521]  _do_fork+0x1cb/0x11c0
[  637.397050]  ? fork_idle+0x1d0/0x1d0
[  637.400755]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  637.406462]  ? check_preemption_disabled+0x48/0x200
[  637.411474]  ? kasan_check_write+0x14/0x20
[  637.415697]  ? up_read+0x225/0x2c0
[  637.419224]  ? up_read_non_owner+0x100/0x100
[  637.423625]  ? find_vma+0x34/0x190
[  637.427153]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  637.432681]  ? __do_page_fault+0x49c/0xec0
[  637.436903]  ? do_syscall_64+0x9a/0x820
[  637.440861]  ? do_syscall_64+0x9a/0x820
[  637.444826]  ? lockdep_hardirqs_on+0x421/0x5c0
[  637.449402]  ? trace_hardirqs_on+0xbd/0x310
[  637.453714]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  637.459067]  ? trace_hardirqs_off_caller+0x300/0x300
[  637.464167]  __x64_sys_clone+0xbf/0x150
[  637.468133]  do_syscall_64+0x1b9/0x820
[  637.472039]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  637.477407]  ? syscall_return_slowpath+0x5e0/0x5e0
[  637.482363]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  637.487199]  ? trace_hardirqs_off+0x310/0x310
[  637.491714]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  637.497269]  ? prepare_exit_to_usermode+0x291/0x3b0
[  637.502293]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  637.507166]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  637.512358] RIP: 0033:0x455c4a
[  637.515549] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  637.534473] RSP: 002b:00007fff9d17d960 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  637.542192] RAX: ffffffffffffffda RBX: 00007fff9d17d960 RCX: 0000000000455c4a
[  637.549457] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  637.556718] RBP: 00007fff9d17d9a0 R08: 0000000000000001 R09: 0000000000ea7940
[  637.563974] R10: 0000000000ea7c10 R11: 0000000000000246 R12: 0000000000000001
[  637.571230] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  637.579146] Memory limit reached of cgroup /syz1
[  637.583957] memory: usage 6876kB, limit 0kB, failcnt 245
[  637.589526] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  637.596284] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  637.602570] Memory cgroup stats for /syz1: cache:112KB rss:176KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:52KB inactive_file:4KB active_file:0KB unevictable:0KB
[  637.622912] Out of memory and no killable processes...
[  637.629807] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  637.646288] syz-executor1 cpuset=syz1 mems_allowed=0
[  637.651537] CPU: 1 PID: 23483 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  637.660016] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  637.669350] Call Trace:
[  637.671925]  dump_stack+0x1d3/0x2c4
[  637.675560]  ? dump_stack_print_info.cold.2+0x52/0x52
[  637.680746]  dump_header+0x27b/0xf72
[  637.684447]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  637.689361]  ? kasan_check_read+0x11/0x20
[  637.693497]  ? pagefault_out_of_memory+0x197/0x197
[  637.698418]  ? rcu_read_unlock+0x33/0x60
[  637.702466]  ? mem_cgroup_iter+0x514/0x1160
[  637.706790]  ? find_held_lock+0x36/0x1c0
[  637.710856]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  637.715628]  ? mark_held_locks+0xc7/0x130
[  637.719776]  ? _raw_spin_unlock_irq+0x27/0x80
[  637.724252]  ? _raw_spin_unlock_irq+0x27/0x80
[  637.728736]  ? lockdep_hardirqs_on+0x421/0x5c0
[  637.733305]  ? trace_hardirqs_on+0xbd/0x310
[  637.737613]  ? kasan_check_read+0x11/0x20
[  637.741747]  ? css_task_iter_end+0x222/0x490
[  637.746159]  ? trace_hardirqs_off_caller+0x300/0x300
[  637.751250]  ? kasan_check_write+0x14/0x20
[  637.755475]  ? do_raw_spin_lock+0xc1/0x200
[  637.759697]  ? _raw_spin_unlock_irq+0x60/0x80
[  637.764178]  ? css_task_iter_end+0x2ce/0x490
[  637.768575]  ? cgroup_procs_next+0x70/0x70
[  637.772805]  ? _raw_spin_unlock_irq+0x60/0x80
[  637.777285]  ? oom_badness+0xaa0/0xaa0
[  637.781168]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  637.785945]  ? mem_cgroup_iter_break+0x30/0x30
[  637.790523]  ? mark_held_locks+0xc7/0x130
[  637.794663]  out_of_memory.cold.30+0xf/0x184
[  637.799061]  ? lockdep_hardirqs_on+0x421/0x5c0
[  637.803637]  ? kasan_check_read+0x11/0x20
[  637.807770]  ? oom_killer_disable+0x3a0/0x3a0
[  637.812252]  ? kasan_check_write+0x14/0x20
[  637.816472]  ? do_raw_spin_lock+0xc1/0x200
[  637.820704]  mem_cgroup_out_of_memory+0x15e/0x210
[  637.825535]  ? memcg_memory_event+0x40/0x40
[  637.829842]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  637.834671]  ? page_counter_try_charge+0x1c1/0x220
[  637.839610]  try_charge+0xb1a/0x1690
[  637.843307]  ? lock_downgrade+0x900/0x900
[  637.847439]  ? check_preemption_disabled+0x48/0x200
[  637.852447]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  637.858495]  ? find_held_lock+0x36/0x1c0
[  637.862547]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  637.867377]  ? lock_downgrade+0x900/0x900
[  637.871509]  ? check_preemption_disabled+0x48/0x200
[  637.876510]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  637.881430]  ? kasan_check_read+0x11/0x20
[  637.885567]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  637.890839]  ? rcu_softirq_qs+0x20/0x20
[  637.894812]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  637.899672]  memcg_kmem_charge_memcg+0x7c/0x120
[  637.904332]  ? memcg_kmem_put_cache+0xb0/0xb0
[  637.908809]  ? kmem_cache_alloc+0x12e/0x730
[  637.913121]  ? print_usage_bug+0xc0/0xc0
[  637.917173]  memcg_kmem_charge+0x135/0x300
[  637.921397]  __alloc_pages_nodemask+0x89c/0xdd0
[  637.926055]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  637.931064]  ? __lock_acquire+0x7ec/0x4ec0
[  637.935295]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  637.940823]  ? graph_lock+0x170/0x170
[  637.944607]  ? find_held_lock+0x36/0x1c0
[  637.948662]  ? __lock_is_held+0xb5/0x140
[  637.952707]  ? lock_downgrade+0x900/0x900
[  637.956864]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  637.962388]  alloc_pages_current+0x10c/0x210
[  637.966784]  pte_alloc_one+0x1b/0x1a0
[  637.970572]  __pte_alloc+0x2a/0x350
[  637.974191]  copy_page_range+0x18a2/0x26f0
[  637.978458]  ? pmd_alloc+0x180/0x180
[  637.982180]  ? save_stack+0xa9/0xd0
[  637.985796]  ? save_stack+0x43/0xd0
[  637.989420]  ? kasan_slab_alloc+0x12/0x20
[  637.993548]  ? kmem_cache_alloc+0x12e/0x730
[  637.997874]  ? vm_area_dup+0x7a/0x230
[  638.001662]  ? copy_process+0x429f/0x8780
[  638.005792]  ? _do_fork+0x1cb/0x11c0
[  638.009490]  ? __x64_sys_clone+0xbf/0x150
[  638.013624]  ? do_syscall_64+0x1b9/0x820
[  638.017675]  ? graph_lock+0x170/0x170
[  638.021462]  ? lock_downgrade+0x900/0x900
[  638.025629]  ? graph_lock+0x170/0x170
[  638.029427]  ? graph_lock+0x170/0x170
[  638.033235]  ? find_held_lock+0x36/0x1c0
[  638.037311]  ? copy_process+0x454a/0x8780
[  638.041465]  ? lock_downgrade+0x900/0x900
[  638.045610]  ? lock_release+0x970/0x970
[  638.049587]  ? ttwu_stat+0x5c0/0x5c0
[  638.053297]  ? dup_userfaultfd+0x6d8/0x890
[  638.057524]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  638.062526]  ? vma_compute_subtree_gap+0x160/0x240
[  638.067438]  ? validate_mm_rb+0xaa/0xc0
[  638.071403]  ? __vma_link_rb+0x26c/0x370
[  638.075453]  copy_process+0x4720/0x8780
[  638.079449]  ? __cleanup_sighand+0x70/0x70
[  638.083673]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  638.089198]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  638.094726]  ? page_swapcount+0x1d0/0x1d0
[  638.098859]  ? try_to_wake_up+0x10a/0x12f0
[  638.103090]  ? lock_downgrade+0x900/0x900
[  638.107226]  ? lock_downgrade+0x900/0x900
[  638.111361]  ? trace_hardirqs_off+0xb8/0x310
[  638.115755]  ? kasan_check_read+0x11/0x20
[  638.119890]  ? trace_hardirqs_on_caller+0x310/0x310
[  638.124924]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  638.130029]  ? try_to_wake_up+0x10a/0x12f0
[  638.134261]  ? print_usage_bug+0xc0/0xc0
[  638.138329]  ? migrate_swap_stop+0x930/0x930
[  638.142726]  ? __handle_mm_fault+0x9ab/0x53e0
[  638.147221]  ? graph_lock+0x170/0x170
[  638.151008]  ? print_usage_bug+0xc0/0xc0
[  638.155074]  ? __lock_acquire+0x7ec/0x4ec0
[  638.159349]  ? print_usage_bug+0xc0/0xc0
[  638.163403]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  638.168942]  ? reuse_swap_page+0x4bd/0x1520
[  638.173274]  ? swp_swapcount+0x530/0x530
[  638.177327]  ? __lock_acquire+0x7ec/0x4ec0
[  638.181549]  ? mark_held_locks+0x130/0x130
[  638.185767]  ? rcu_softirq_qs+0x20/0x20
[  638.189735]  ? __lock_acquire+0x7ec/0x4ec0
[  638.193959]  ? mark_held_locks+0x130/0x130
[  638.198187]  ? graph_lock+0x170/0x170
[  638.201972]  ? mark_held_locks+0x130/0x130
[  638.206194]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  638.211718]  ? check_preemption_disabled+0x48/0x200
[  638.216726]  ? find_held_lock+0x36/0x1c0
[  638.220777]  ? do_wp_page+0xa6f/0x1690
[  638.224655]  ? lock_downgrade+0x900/0x900
[  638.228796]  ? wake_up_page_bit+0x6f0/0x6f0
[  638.233115]  ? kasan_check_read+0x11/0x20
[  638.237249]  ? do_raw_spin_unlock+0xa7/0x2f0
[  638.241643]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  638.246222]  ? pgd_free+0x380/0x380
[  638.249837]  ? __lock_acquire+0x7ec/0x4ec0
[  638.254065]  ? _raw_spin_unlock+0x2c/0x50
[  638.258205]  ? do_wp_page+0x77c/0x1690
[  638.262088]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  638.266753]  ? find_held_lock+0x36/0x1c0
[  638.270807]  ? lock_release+0x970/0x970
[  638.274780]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  638.280312]  ? kasan_check_write+0x14/0x20
[  638.284549]  ? do_raw_spin_lock+0xc1/0x200
[  638.288786]  ? __handle_mm_fault+0x9ab/0x53e0
[  638.293273]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  638.298109]  ? __sb_end_write+0xd9/0x110
[  638.302157]  ? graph_lock+0x170/0x170
[  638.305941]  ? print_usage_bug+0xc0/0xc0
[  638.310230]  ? atime_needs_update+0x710/0x710
[  638.314712]  ? graph_lock+0x170/0x170
[  638.318503]  ? graph_lock+0x170/0x170
[  638.322294]  ? find_held_lock+0x36/0x1c0
[  638.326347]  ? __do_page_fault+0x6b7/0xec0
[  638.330573]  _do_fork+0x1cb/0x11c0
[  638.334113]  ? fork_idle+0x1d0/0x1d0
[  638.337820]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  638.343347]  ? check_preemption_disabled+0x48/0x200
[  638.348352]  ? kasan_check_write+0x14/0x20
[  638.352572]  ? up_read+0x225/0x2c0
[  638.356106]  ? up_read_non_owner+0x100/0x100
[  638.360515]  ? find_vma+0x34/0x190
[  638.364053]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  638.369620]  ? __do_page_fault+0x49c/0xec0
[  638.373867]  ? do_syscall_64+0x9a/0x820
[  638.377835]  ? do_syscall_64+0x9a/0x820
[  638.381800]  ? lockdep_hardirqs_on+0x421/0x5c0
[  638.386370]  ? trace_hardirqs_on+0xbd/0x310
[  638.390678]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  638.396029]  ? trace_hardirqs_off_caller+0x300/0x300
[  638.401121]  __x64_sys_clone+0xbf/0x150
[  638.405089]  do_syscall_64+0x1b9/0x820
[  638.408966]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  638.414316]  ? syscall_return_slowpath+0x5e0/0x5e0
[  638.419229]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  638.424057]  ? trace_hardirqs_off+0x310/0x310
[  638.428546]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  638.434068]  ? prepare_exit_to_usermode+0x291/0x3b0
[  638.439085]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  638.443919]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  638.449099] RIP: 0033:0x455c4a
[  638.452281] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  638.471173] RSP: 002b:00007fff9d17d960 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  638.478876] RAX: ffffffffffffffda RBX: 00007fff9d17d960 RCX: 0000000000455c4a
[  638.486134] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  638.493389] RBP: 00007fff9d17d9a0 R08: 0000000000000001 R09: 0000000000ea7940
[  638.500644] R10: 0000000000ea7c10 R11: 0000000000000246 R12: 0000000000000001
[  638.507899] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  638.517486] Memory limit reached of cgroup /syz1
[  638.522406] memory: usage 6880kB, limit 0kB, failcnt 253
[  638.528831] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  638.535580] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  638.542128] Memory cgroup stats for /syz1: cache:112KB rss:176KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:52KB inactive_file:0KB active_file:4KB unevictable:0KB
[  638.562691] Out of memory and no killable processes...
[  638.571695] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  638.584616] syz-executor1 cpuset=syz1 mems_allowed=0
[  638.590272] CPU: 0 PID: 23483 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  638.598753] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  638.608104] Call Trace:
[  638.610687]  dump_stack+0x1d3/0x2c4
[  638.614304]  ? dump_stack_print_info.cold.2+0x52/0x52
[  638.619497]  dump_header+0x27b/0xf72
[  638.623204]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  638.628126]  ? kasan_check_read+0x11/0x20
[  638.632269]  ? pagefault_out_of_memory+0x197/0x197
[  638.637193]  ? rcu_read_unlock+0x33/0x60
[  638.641246]  ? mem_cgroup_iter+0x514/0x1160
[  638.645556]  ? find_held_lock+0x36/0x1c0
[  638.649609]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  638.654350]  ? mark_held_locks+0xc7/0x130
[  638.658489]  ? _raw_spin_unlock_irq+0x27/0x80
[  638.662967]  ? _raw_spin_unlock_irq+0x27/0x80
[  638.667467]  ? lockdep_hardirqs_on+0x421/0x5c0
[  638.672056]  ? trace_hardirqs_on+0xbd/0x310
[  638.676368]  ? kasan_check_read+0x11/0x20
[  638.680500]  ? css_task_iter_end+0x222/0x490
[  638.684899]  ? trace_hardirqs_off_caller+0x300/0x300
[  638.689988]  ? kasan_check_write+0x14/0x20
[  638.694207]  ? do_raw_spin_lock+0xc1/0x200
[  638.698441]  ? _raw_spin_unlock_irq+0x60/0x80
[  638.702964]  ? css_task_iter_end+0x2ce/0x490
[  638.707358]  ? cgroup_procs_next+0x70/0x70
[  638.711578]  ? _raw_spin_unlock_irq+0x60/0x80
[  638.716063]  ? oom_badness+0xaa0/0xaa0
[  638.719951]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  638.724702]  ? mem_cgroup_iter_break+0x30/0x30
[  638.729283]  ? mark_held_locks+0xc7/0x130
[  638.733433]  out_of_memory.cold.30+0xf/0x184
[  638.737829]  ? lockdep_hardirqs_on+0x421/0x5c0
[  638.742399]  ? kasan_check_read+0x11/0x20
[  638.746534]  ? oom_killer_disable+0x3a0/0x3a0
[  638.751015]  ? kasan_check_write+0x14/0x20
[  638.755237]  ? do_raw_spin_lock+0xc1/0x200
[  638.759469]  mem_cgroup_out_of_memory+0x15e/0x210
[  638.764304]  ? memcg_memory_event+0x40/0x40
[  638.768617]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  638.773457]  ? page_counter_try_charge+0x1c1/0x220
[  638.778379]  try_charge+0xb1a/0x1690
[  638.782114]  ? lock_downgrade+0x900/0x900
[  638.786263]  ? check_preemption_disabled+0x48/0x200
[  638.791275]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  638.797329]  ? find_held_lock+0x36/0x1c0
[  638.801383]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  638.806216]  ? lock_downgrade+0x900/0x900
[  638.810352]  ? check_preemption_disabled+0x48/0x200
[  638.815354]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  638.820268]  ? kasan_check_read+0x11/0x20
[  638.824404]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  638.829669]  ? rcu_softirq_qs+0x20/0x20
[  638.833642]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  638.838481]  memcg_kmem_charge_memcg+0x7c/0x120
[  638.843155]  ? memcg_kmem_put_cache+0xb0/0xb0
[  638.847642]  ? mark_held_locks+0x130/0x130
[  638.851864]  memcg_kmem_charge+0x135/0x300
[  638.856099]  __alloc_pages_nodemask+0x89c/0xdd0
[  638.860760]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  638.865767]  ? print_usage_bug+0xc0/0xc0
[  638.869828]  ? find_held_lock+0x36/0x1c0
[  638.873880]  ? __lock_acquire+0x7ec/0x4ec0
[  638.878119]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  638.883670]  alloc_pages_current+0x10c/0x210
[  638.888069]  __pmd_alloc+0x3e/0x450
[  638.891692]  ? pmd_val+0x100/0x100
[  638.895217]  pmd_alloc+0x10f/0x180
[  638.898745]  copy_page_range+0x6cf/0x26f0
[  638.902881]  ? rb_insert_color_cached+0x14b0/0x14b0
[  638.907885]  ? vma_compute_subtree_gap+0x160/0x240
[  638.912806]  ? pmd_alloc+0x180/0x180
[  638.916507]  ? graph_lock+0x170/0x170
[  638.920307]  ? kasan_slab_alloc+0x12/0x20
[  638.924455]  ? kmem_cache_alloc+0x12e/0x730
[  638.928769]  ? graph_lock+0x170/0x170
[  638.932558]  ? __x64_sys_clone+0xbf/0x150
[  638.936705]  ? do_syscall_64+0x1b9/0x820
[  638.940754]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  638.946125]  ? find_held_lock+0x36/0x1c0
[  638.950184]  ? anon_vma_fork+0x5ef/0x820
[  638.954257]  ? lock_downgrade+0x900/0x900
[  638.958423]  ? lock_release+0x970/0x970
[  638.962382]  ? ttwu_stat+0x5c0/0x5c0
[  638.966091]  ? __lock_is_held+0xb5/0x140
[  638.970154]  ? up_write+0x7b/0x220
[  638.973688]  ? down_write_nested+0x130/0x130
[  638.978100]  ? anon_vma_interval_tree_insert+0x2c9/0x370
[  638.983550]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  638.988568]  ? vma_compute_subtree_gap+0x160/0x240
[  638.993483]  ? validate_mm_rb+0xaa/0xc0
[  638.997446]  ? __vma_link_rb+0x26c/0x370
[  639.001510]  copy_process+0x4720/0x8780
[  639.005501]  ? __cleanup_sighand+0x70/0x70
[  639.009731]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  639.015264]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  639.020799]  ? page_swapcount+0x1d0/0x1d0
[  639.024937]  ? try_to_wake_up+0x10a/0x12f0
[  639.029164]  ? lock_downgrade+0x900/0x900
[  639.033295]  ? lock_downgrade+0x900/0x900
[  639.037433]  ? trace_hardirqs_off+0xb8/0x310
[  639.041827]  ? kasan_check_read+0x11/0x20
[  639.045962]  ? trace_hardirqs_on_caller+0x310/0x310
[  639.050990]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  639.056091]  ? try_to_wake_up+0x10a/0x12f0
[  639.060323]  ? print_usage_bug+0xc0/0xc0
[  639.064382]  ? migrate_swap_stop+0x930/0x930
[  639.068778]  ? __handle_mm_fault+0x9ab/0x53e0
[  639.073259]  ? graph_lock+0x170/0x170
[  639.077045]  ? print_usage_bug+0xc0/0xc0
[  639.081107]  ? __lock_acquire+0x7ec/0x4ec0
[  639.085331]  ? print_usage_bug+0xc0/0xc0
[  639.089381]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  639.094917]  ? reuse_swap_page+0x4bd/0x1520
[  639.099223]  ? swp_swapcount+0x530/0x530
[  639.103278]  ? __lock_acquire+0x7ec/0x4ec0
[  639.107498]  ? mark_held_locks+0x130/0x130
[  639.111714]  ? rcu_softirq_qs+0x20/0x20
[  639.115675]  ? __lock_acquire+0x7ec/0x4ec0
[  639.119930]  ? mark_held_locks+0x130/0x130
[  639.124152]  ? graph_lock+0x170/0x170
[  639.127939]  ? mark_held_locks+0x130/0x130
[  639.132173]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  639.137695]  ? check_preemption_disabled+0x48/0x200
[  639.142716]  ? find_held_lock+0x36/0x1c0
[  639.146766]  ? do_wp_page+0xa6f/0x1690
[  639.150639]  ? lock_downgrade+0x900/0x900
[  639.154771]  ? wake_up_page_bit+0x6f0/0x6f0
[  639.159089]  ? kasan_check_read+0x11/0x20
[  639.163243]  ? do_raw_spin_unlock+0xa7/0x2f0
[  639.167639]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  639.172209]  ? pgd_free+0x380/0x380
[  639.175819]  ? __lock_acquire+0x7ec/0x4ec0
[  639.180054]  ? _raw_spin_unlock+0x2c/0x50
[  639.184208]  ? do_wp_page+0x77c/0x1690
[  639.188090]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  639.192748]  ? find_held_lock+0x36/0x1c0
[  639.196794]  ? lock_release+0x970/0x970
[  639.200783]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  639.206306]  ? kasan_check_write+0x14/0x20
[  639.210539]  ? do_raw_spin_lock+0xc1/0x200
[  639.214760]  ? __handle_mm_fault+0x9ab/0x53e0
[  639.219257]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  639.224089]  ? __sb_end_write+0xd9/0x110
[  639.228137]  ? graph_lock+0x170/0x170
[  639.231920]  ? print_usage_bug+0xc0/0xc0
[  639.235966]  ? atime_needs_update+0x710/0x710
[  639.240443]  ? graph_lock+0x170/0x170
[  639.244226]  ? graph_lock+0x170/0x170
[  639.248033]  ? find_held_lock+0x36/0x1c0
[  639.252096]  ? __do_page_fault+0x6b7/0xec0
[  639.256319]  _do_fork+0x1cb/0x11c0
[  639.259846]  ? fork_idle+0x1d0/0x1d0
[  639.263558]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  639.269114]  ? check_preemption_disabled+0x48/0x200
[  639.274124]  ? kasan_check_write+0x14/0x20
[  639.278343]  ? up_read+0x225/0x2c0
[  639.281870]  ? up_read_non_owner+0x100/0x100
[  639.286269]  ? find_vma+0x34/0x190
[  639.289810]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  639.295346]  ? __do_page_fault+0x49c/0xec0
[  639.299583]  ? do_syscall_64+0x9a/0x820
[  639.303567]  ? do_syscall_64+0x9a/0x820
[  639.307525]  ? lockdep_hardirqs_on+0x421/0x5c0
[  639.312105]  ? trace_hardirqs_on+0xbd/0x310
[  639.316428]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  639.321776]  ? trace_hardirqs_off_caller+0x300/0x300
[  639.326867]  __x64_sys_clone+0xbf/0x150
[  639.330831]  do_syscall_64+0x1b9/0x820
[  639.334705]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  639.340077]  ? syscall_return_slowpath+0x5e0/0x5e0
[  639.345014]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  639.349845]  ? trace_hardirqs_off+0x310/0x310
[  639.354330]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  639.359854]  ? prepare_exit_to_usermode+0x291/0x3b0
[  639.364861]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  639.369698]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  639.374877] RIP: 0033:0x455c4a
[  639.378057] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  639.396956] RSP: 002b:00007fff9d17d960 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  639.404665] RAX: ffffffffffffffda RBX: 00007fff9d17d960 RCX: 0000000000455c4a
[  639.412347] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  639.419655] RBP: 00007fff9d17d9a0 R08: 0000000000000001 R09: 0000000000ea7940
[  639.426915] R10: 0000000000ea7c10 R11: 0000000000000246 R12: 0000000000000001
[  639.434171] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  639.444219] Memory limit reached of cgroup /syz1
[  639.449139] memory: usage 6884kB, limit 0kB, failcnt 261
[  639.454598] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  639.461430] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  639.467609] Memory cgroup stats for /syz1: cache:112KB rss:176KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:52KB inactive_file:4KB active_file:0KB unevictable:0KB
[  639.487798] Out of memory and no killable processes...
[  639.494486] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  639.507480] syz-executor1 cpuset=syz1 mems_allowed=0
[  639.512613] CPU: 0 PID: 23483 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  639.521089] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  639.530434] Call Trace:
[  639.533012]  dump_stack+0x1d3/0x2c4
[  639.536627]  ? dump_stack_print_info.cold.2+0x52/0x52
[  639.541836]  dump_header+0x27b/0xf72
[  639.545566]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  639.550497]  ? kasan_check_read+0x11/0x20
[  639.554640]  ? pagefault_out_of_memory+0x197/0x197
[  639.559561]  ? rcu_read_unlock+0x33/0x60
[  639.563613]  ? mem_cgroup_iter+0x514/0x1160
[  639.567928]  ? find_held_lock+0x36/0x1c0
[  639.571982]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  639.576723]  ? mark_held_locks+0xc7/0x130
[  639.580858]  ? _raw_spin_unlock_irq+0x27/0x80
[  639.585342]  ? _raw_spin_unlock_irq+0x27/0x80
[  639.589825]  ? lockdep_hardirqs_on+0x421/0x5c0
[  639.594395]  ? trace_hardirqs_on+0xbd/0x310
[  639.598701]  ? kasan_check_read+0x11/0x20
[  639.602831]  ? css_task_iter_end+0x222/0x490
[  639.607224]  ? trace_hardirqs_off_caller+0x300/0x300
[  639.612316]  ? kasan_check_write+0x14/0x20
[  639.616537]  ? do_raw_spin_lock+0xc1/0x200
[  639.620766]  ? _raw_spin_unlock_irq+0x60/0x80
[  639.625246]  ? css_task_iter_end+0x2ce/0x490
[  639.629642]  ? cgroup_procs_next+0x70/0x70
[  639.633872]  ? _raw_spin_unlock_irq+0x60/0x80
[  639.638359]  ? oom_badness+0xaa0/0xaa0
[  639.642255]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  639.647009]  ? mem_cgroup_iter_break+0x30/0x30
[  639.651594]  ? mark_held_locks+0xc7/0x130
[  639.655736]  out_of_memory.cold.30+0xf/0x184
[  639.660135]  ? lockdep_hardirqs_on+0x421/0x5c0
[  639.664707]  ? kasan_check_read+0x11/0x20
[  639.668849]  ? oom_killer_disable+0x3a0/0x3a0
[  639.673333]  ? kasan_check_write+0x14/0x20
[  639.677554]  ? do_raw_spin_lock+0xc1/0x200
[  639.681785]  mem_cgroup_out_of_memory+0x15e/0x210
[  639.686620]  ? memcg_memory_event+0x40/0x40
[  639.690946]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  639.695789]  ? page_counter_try_charge+0x1c1/0x220
[  639.700711]  try_charge+0xb1a/0x1690
[  639.704413]  ? lock_downgrade+0x900/0x900
[  639.708551]  ? check_preemption_disabled+0x48/0x200
[  639.713575]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  639.719626]  ? find_held_lock+0x36/0x1c0
[  639.723678]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  639.728510]  ? lock_downgrade+0x900/0x900
[  639.732663]  ? check_preemption_disabled+0x48/0x200
[  639.737669]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  639.742602]  ? kasan_check_read+0x11/0x20
[  639.746747]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  639.752013]  ? rcu_softirq_qs+0x20/0x20
[  639.755994]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  639.760837]  memcg_kmem_charge_memcg+0x7c/0x120
[  639.765584]  ? memcg_kmem_put_cache+0xb0/0xb0
[  639.770066]  ? kasan_kmalloc+0xc7/0xe0
[  639.773956]  ? kmem_cache_alloc+0x12e/0x730
[  639.778268]  ? __pmd_alloc+0xc2/0x450
[  639.782068]  ? copy_page_range+0x6cf/0x26f0
[  639.786410]  memcg_kmem_charge+0x135/0x300
[  639.790638]  __alloc_pages_nodemask+0x89c/0xdd0
[  639.795308]  ? find_held_lock+0x36/0x1c0
[  639.799363]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  639.804370]  ? find_held_lock+0x36/0x1c0
[  639.808425]  ? lock_downgrade+0x900/0x900
[  639.812602]  ? __lock_is_held+0xb5/0x140
[  639.816651]  ? kasan_check_read+0x11/0x20
[  639.820807]  ? do_raw_spin_unlock+0xa7/0x2f0
[  639.825226]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  639.829807]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  639.835339]  alloc_pages_current+0x10c/0x210
[  639.839749]  pte_alloc_one+0x1b/0x1a0
[  639.843539]  __pte_alloc+0x2a/0x350
[  639.847154]  copy_page_range+0x18a2/0x26f0
[  639.851389]  ? rb_insert_color_cached+0x14b0/0x14b0
[  639.856404]  ? pmd_alloc+0x180/0x180
[  639.860118]  ? graph_lock+0x170/0x170
[  639.863917]  ? kasan_slab_alloc+0x12/0x20
[  639.868052]  ? kmem_cache_alloc+0x12e/0x730
[  639.872370]  ? graph_lock+0x170/0x170
[  639.876161]  ? __x64_sys_clone+0xbf/0x150
[  639.880299]  ? do_syscall_64+0x1b9/0x820
[  639.884346]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  639.889711]  ? find_held_lock+0x36/0x1c0
[  639.893765]  ? anon_vma_fork+0x5ef/0x820
[  639.897825]  ? lock_downgrade+0x900/0x900
[  639.901958]  ? lock_release+0x970/0x970
[  639.905917]  ? ttwu_stat+0x5c0/0x5c0
[  639.909636]  ? __lock_is_held+0xb5/0x140
[  639.913687]  ? up_write+0x7b/0x220
[  639.917242]  ? down_write_nested+0x130/0x130
[  639.921638]  ? anon_vma_interval_tree_insert+0x2c9/0x370
[  639.927114]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  639.932147]  ? vma_compute_subtree_gap+0x160/0x240
[  639.937062]  ? validate_mm_rb+0xaa/0xc0
[  639.941041]  ? __vma_link_rb+0x26c/0x370
[  639.945103]  copy_process+0x4720/0x8780
[  639.949104]  ? __cleanup_sighand+0x70/0x70
[  639.953334]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  639.958859]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  639.964398]  ? page_swapcount+0x1d0/0x1d0
[  639.968547]  ? try_to_wake_up+0x10a/0x12f0
[  639.972785]  ? lock_downgrade+0x900/0x900
[  639.976921]  ? lock_downgrade+0x900/0x900
[  639.981059]  ? trace_hardirqs_off+0xb8/0x310
[  639.985468]  ? kasan_check_read+0x11/0x20
[  639.989628]  ? trace_hardirqs_on_caller+0x310/0x310
[  639.994639]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  639.999728]  ? try_to_wake_up+0x10a/0x12f0
[  640.003959]  ? print_usage_bug+0xc0/0xc0
[  640.008010]  ? migrate_swap_stop+0x930/0x930
[  640.012509]  ? __handle_mm_fault+0x9ab/0x53e0
[  640.016992]  ? graph_lock+0x170/0x170
[  640.020787]  ? print_usage_bug+0xc0/0xc0
[  640.024854]  ? __lock_acquire+0x7ec/0x4ec0
[  640.029088]  ? print_usage_bug+0xc0/0xc0
[  640.033144]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  640.038665]  ? reuse_swap_page+0x4bd/0x1520
[  640.042973]  ? swp_swapcount+0x530/0x530
[  640.047027]  ? __lock_acquire+0x7ec/0x4ec0
[  640.051266]  ? mark_held_locks+0x130/0x130
[  640.055484]  ? rcu_softirq_qs+0x20/0x20
[  640.059462]  ? __lock_acquire+0x7ec/0x4ec0
[  640.063688]  ? mark_held_locks+0x130/0x130
[  640.067912]  ? graph_lock+0x170/0x170
[  640.071727]  ? mark_held_locks+0x130/0x130
[  640.075953]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  640.081485]  ? check_preemption_disabled+0x48/0x200
[  640.086513]  ? find_held_lock+0x36/0x1c0
[  640.090566]  ? do_wp_page+0xa6f/0x1690
[  640.094439]  ? lock_downgrade+0x900/0x900
[  640.098577]  ? wake_up_page_bit+0x6f0/0x6f0
[  640.102893]  ? kasan_check_read+0x11/0x20
[  640.107025]  ? do_raw_spin_unlock+0xa7/0x2f0
[  640.111431]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  640.116002]  ? pgd_free+0x380/0x380
[  640.119615]  ? __lock_acquire+0x7ec/0x4ec0
[  640.123839]  ? _raw_spin_unlock+0x2c/0x50
[  640.127976]  ? do_wp_page+0x77c/0x1690
[  640.131888]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  640.136542]  ? find_held_lock+0x36/0x1c0
[  640.140589]  ? lock_release+0x970/0x970
[  640.144555]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  640.150090]  ? kasan_check_write+0x14/0x20
[  640.154318]  ? do_raw_spin_lock+0xc1/0x200
[  640.158543]  ? __handle_mm_fault+0x9ab/0x53e0
[  640.163027]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  640.167871]  ? __sb_end_write+0xd9/0x110
[  640.171923]  ? graph_lock+0x170/0x170
[  640.175710]  ? print_usage_bug+0xc0/0xc0
[  640.179774]  ? atime_needs_update+0x710/0x710
[  640.184271]  ? graph_lock+0x170/0x170
[  640.188057]  ? graph_lock+0x170/0x170
[  640.191853]  ? find_held_lock+0x36/0x1c0
[  640.195904]  ? __do_page_fault+0x6b7/0xec0
[  640.200129]  _do_fork+0x1cb/0x11c0
[  640.203660]  ? fork_idle+0x1d0/0x1d0
[  640.207394]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  640.212933]  ? check_preemption_disabled+0x48/0x200
[  640.217942]  ? kasan_check_write+0x14/0x20
[  640.222163]  ? up_read+0x225/0x2c0
[  640.225689]  ? up_read_non_owner+0x100/0x100
[  640.230096]  ? find_vma+0x34/0x190
[  640.233627]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  640.239149]  ? __do_page_fault+0x49c/0xec0
[  640.243381]  ? do_syscall_64+0x9a/0x820
[  640.247341]  ? do_syscall_64+0x9a/0x820
[  640.251319]  ? lockdep_hardirqs_on+0x421/0x5c0
[  640.255905]  ? trace_hardirqs_on+0xbd/0x310
[  640.260227]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  640.265580]  ? trace_hardirqs_off_caller+0x300/0x300
[  640.270678]  __x64_sys_clone+0xbf/0x150
[  640.274653]  do_syscall_64+0x1b9/0x820
[  640.278526]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  640.283889]  ? syscall_return_slowpath+0x5e0/0x5e0
[  640.288805]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  640.293637]  ? trace_hardirqs_off+0x310/0x310
[  640.298412]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  640.303937]  ? prepare_exit_to_usermode+0x291/0x3b0
[  640.308947]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  640.313786]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  640.318960] RIP: 0033:0x455c4a
[  640.322140] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  640.341039] RSP: 002b:00007fff9d17d960 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  640.348734] RAX: ffffffffffffffda RBX: 00007fff9d17d960 RCX: 0000000000455c4a
[  640.355989] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  640.363257] RBP: 00007fff9d17d9a0 R08: 0000000000000001 R09: 0000000000ea7940
[  640.370531] R10: 0000000000ea7c10 R11: 0000000000000246 R12: 0000000000000001
[  640.377787] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  640.386456] Memory limit reached of cgroup /syz1
[  640.391372] memory: usage 6888kB, limit 0kB, failcnt 269
[  640.396825] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  640.403664] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  640.409855] Memory cgroup stats for /syz1: cache:112KB rss:176KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:52KB inactive_file:0KB active_file:4KB unevictable:0KB
[  640.430105] Out of memory and no killable processes...
[  640.436750] syz-executor1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=-1000
[  640.448277] syz-executor1 cpuset=syz1 mems_allowed=0
[  640.453424] CPU: 1 PID: 29030 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  640.461903] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  640.471246] Call Trace:
[  640.473836]  dump_stack+0x1d3/0x2c4
[  640.477466]  ? dump_stack_print_info.cold.2+0x52/0x52
[  640.482658]  dump_header+0x27b/0xf72
[  640.486360]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  640.491276]  ? kasan_check_read+0x11/0x20
[  640.495415]  ? pagefault_out_of_memory+0x197/0x197
[  640.500335]  ? rcu_read_unlock+0x33/0x60
[  640.504382]  ? mem_cgroup_iter+0x514/0x1160
[  640.508695]  ? find_held_lock+0x36/0x1c0
[  640.512776]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  640.517521]  ? mark_held_locks+0xc7/0x130
[  640.521657]  ? _raw_spin_unlock_irq+0x27/0x80
[  640.526135]  ? _raw_spin_unlock_irq+0x27/0x80
[  640.530630]  ? lockdep_hardirqs_on+0x421/0x5c0
[  640.535198]  ? trace_hardirqs_on+0xbd/0x310
[  640.539506]  ? kasan_check_read+0x11/0x20
[  640.543638]  ? css_task_iter_end+0x222/0x490
[  640.548037]  ? trace_hardirqs_off_caller+0x300/0x300
[  640.553132]  ? kasan_check_write+0x14/0x20
[  640.557353]  ? do_raw_spin_lock+0xc1/0x200
[  640.561575]  ? _raw_spin_unlock_irq+0x60/0x80
[  640.566057]  ? css_task_iter_end+0x2ce/0x490
[  640.570457]  ? cgroup_procs_next+0x70/0x70
[  640.574701]  ? _raw_spin_unlock_irq+0x60/0x80
[  640.579188]  ? oom_badness+0xaa0/0xaa0
[  640.583065]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  640.587829]  ? mem_cgroup_iter_break+0x30/0x30
[  640.592409]  ? mark_held_locks+0xc7/0x130
[  640.596549]  out_of_memory.cold.30+0xf/0x184
[  640.600944]  ? lockdep_hardirqs_on+0x421/0x5c0
[  640.605515]  ? kasan_check_read+0x11/0x20
[  640.609653]  ? oom_killer_disable+0x3a0/0x3a0
[  640.614136]  ? kasan_check_write+0x14/0x20
[  640.618356]  ? do_raw_spin_lock+0xc1/0x200
[  640.622587]  mem_cgroup_out_of_memory+0x15e/0x210
[  640.627421]  ? memcg_memory_event+0x40/0x40
[  640.631729]  ? mem_cgroup_try_charge+0x5ea/0xe10
[  640.636473]  ? page_counter_try_charge+0x1c1/0x220
[  640.641390]  try_charge+0xb1a/0x1690
[  640.645103]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  640.651146]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  640.655976]  ? lock_downgrade+0x900/0x900
[  640.660110]  ? check_preemption_disabled+0x48/0x200
[  640.665117]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  640.670031]  ? kasan_check_read+0x11/0x20
[  640.674167]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  640.679427]  ? rcu_softirq_qs+0x20/0x20
[  640.683395]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  640.688226]  ? mod_memcg_state+0x230/0x230
[  640.692448]  ? __lock_is_held+0xb5/0x140
[  640.696519]  mem_cgroup_try_charge+0x5ea/0xe10
[  640.701103]  ? mem_cgroup_protected+0xa60/0xa60
[  640.705761]  ? print_usage_bug+0xc0/0xc0
[  640.709814]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  640.715351]  ? reuse_swap_page+0x4bd/0x1520
[  640.719662]  ? swp_swapcount+0x530/0x530
[  640.723740]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  640.729279]  mem_cgroup_try_charge_delay+0x1d/0xa0
[  640.734194]  wp_page_copy+0x492/0x18a0
[  640.738069]  ? pmd_pfn+0x1c0/0x1c0
[  640.741612]  ? find_held_lock+0x36/0x1c0
[  640.745664]  ? do_wp_page+0x76c/0x1690
[  640.749552]  ? lock_downgrade+0x900/0x900
[  640.753687]  ? kasan_check_write+0x14/0x20
[  640.757905]  ? kasan_check_read+0x11/0x20
[  640.762041]  ? do_raw_spin_unlock+0xa7/0x2f0
[  640.766437]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  640.771002]  ? __pte_alloc_kernel+0x220/0x220
[  640.775488]  ? __lock_acquire+0x7ec/0x4ec0
[  640.779722]  ? __lock_acquire+0x7ec/0x4ec0
[  640.783974]  do_wp_page+0x774/0x1690
[  640.787677]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  640.792344]  ? lock_release+0x970/0x970
[  640.796317]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  640.801845]  ? kasan_check_write+0x14/0x20
[  640.806066]  ? do_raw_spin_lock+0xc1/0x200
[  640.810296]  __handle_mm_fault+0x2c60/0x53e0
[  640.814696]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  640.819527]  ? graph_lock+0x170/0x170
[  640.823316]  ? print_usage_bug+0xc0/0xc0
[  640.827364]  ? __lock_acquire+0x7ec/0x4ec0
[  640.831584]  ? graph_lock+0x170/0x170
[  640.835377]  ? graph_lock+0x170/0x170
[  640.839175]  ? handle_mm_fault+0x42a/0xc70
[  640.843399]  ? lock_downgrade+0x900/0x900
[  640.847533]  ? check_preemption_disabled+0x48/0x200
[  640.852534]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  640.857451]  ? kasan_check_read+0x11/0x20
[  640.861582]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  640.866844]  ? rcu_softirq_qs+0x20/0x20
[  640.870816]  ? trace_hardirqs_off_caller+0x300/0x300
[  640.875916]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  640.881439]  ? check_preemption_disabled+0x48/0x200
[  640.886445]  handle_mm_fault+0x54f/0xc70
[  640.890493]  ? __handle_mm_fault+0x53e0/0x53e0
[  640.895069]  ? find_vma+0x34/0x190
[  640.898609]  __do_page_fault+0x673/0xec0
[  640.902660]  ? mm_fault_error+0x380/0x380
[  640.906817]  ? graph_lock+0x170/0x170
[  640.910610]  do_page_fault+0xed/0x7d1
[  640.914395]  ? vmalloc_sync_all+0x30/0x30
[  640.918531]  ? error_entry+0x76/0xd0
[  640.922234]  ? trace_hardirqs_off_caller+0xbb/0x300
[  640.927237]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  640.932068]  ? trace_hardirqs_off+0x310/0x310
[  640.936557]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  640.941470]  ? kasan_check_read+0x11/0x20
[  640.945611]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  640.950444]  page_fault+0x1e/0x30
[  640.953884] RIP: 0010:__put_user_4+0x1c/0x30
[  640.958280] Code: 1f 00 c3 90 66 2e 0f 1f 84 00 00 00 00 00 65 48 8b 1c 25 40 ee 01 00 48 8b 9b 18 14 00 00 48 83 eb 03 48 39 d9 73 3c 0f 1f 00 <89> 01 31 c0 0f 1f 00 c3 66 90 66 2e 0f 1f 84 00 00 00 00 00 65 48
[  640.977173] RSP: 0018:ffff8801b9f67f30 EFLAGS: 00010293
[  640.982529] RAX: 00000000000003a2 RBX: 00007fffffffeffd RCX: 0000000000ea7c10
[  640.989788] RDX: dffffc0000000000 RSI: 0000000000000001 RDI: ffff8801919526e8
[  640.997066] RBP: ffff8801b9f67f48 R08: 0000000000000000 R09: ffffed003b5a5b57
[  641.004330] R10: ffffed003b5a5b57 R11: ffff8801dad2dabb R12: 0000000000000000
[  641.011607] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  641.018887]  ? schedule_tail+0xd8/0x130
[  641.022854]  ret_from_fork+0x8/0x50
[  641.026465] RIP: 0033:0x455c4a
[  641.029643] Code: Bad RIP value.
[  641.032988] RSP: 002b:00007fff9d17d960 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  641.040679] RAX: 0000000000000000 RBX: 00007fff9d17d960 RCX: 0000000000455c4a
[  641.047934] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  641.055189] RBP: 00007fff9d17d9a0 R08: 0000000000000001 R09: 0000000000ea7940
[  641.062444] R10: 0000000000ea7c10 R11: 0000000000000246 R12: 0000000000000001
[  641.069706] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  641.078510] Memory limit reached of cgroup /syz1
[  641.083339] memory: usage 6844kB, limit 0kB, failcnt 285
[  641.088951] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  641.095717] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  641.101924] Memory cgroup stats for /syz1: cache:112KB rss:176KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:52KB inactive_file:0KB active_file:4KB unevictable:0KB
[  641.122293] Out of memory and no killable processes...
[  641.127769] syz-executor1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=-1000
[  641.139036] syz-executor1 cpuset=syz1 mems_allowed=0
[  641.144173] CPU: 0 PID: 23483 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  641.152644] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  641.161981] Call Trace:
[  641.164559]  dump_stack+0x1d3/0x2c4
[  641.168175]  ? dump_stack_print_info.cold.2+0x52/0x52
[  641.173357]  dump_header+0x27b/0xf72
[  641.177058]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  641.181996]  ? kasan_check_read+0x11/0x20
[  641.186135]  ? pagefault_out_of_memory+0x197/0x197
[  641.191057]  ? rcu_read_unlock+0x33/0x60
[  641.195137]  ? mem_cgroup_iter+0x514/0x1160
[  641.199452]  ? find_held_lock+0x36/0x1c0
[  641.203503]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  641.208242]  ? mark_held_locks+0xc7/0x130
[  641.212379]  ? _raw_spin_unlock_irq+0x27/0x80
[  641.216891]  ? _raw_spin_unlock_irq+0x27/0x80
[  641.221376]  ? lockdep_hardirqs_on+0x421/0x5c0
[  641.225948]  ? trace_hardirqs_on+0xbd/0x310
[  641.230260]  ? kasan_check_read+0x11/0x20
[  641.234392]  ? css_task_iter_end+0x222/0x490
[  641.238790]  ? trace_hardirqs_off_caller+0x300/0x300
[  641.243900]  ? kasan_check_write+0x14/0x20
[  641.248122]  ? do_raw_spin_lock+0xc1/0x200
[  641.252352]  ? _raw_spin_unlock_irq+0x60/0x80
[  641.256832]  ? css_task_iter_end+0x2ce/0x490
[  641.261231]  ? cgroup_procs_next+0x70/0x70
[  641.265470]  ? _raw_spin_unlock_irq+0x60/0x80
[  641.269954]  ? oom_badness+0xaa0/0xaa0
[  641.273831]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  641.278577]  ? mem_cgroup_iter_break+0x30/0x30
[  641.283154]  ? mark_held_locks+0xc7/0x130
[  641.287291]  out_of_memory.cold.30+0xf/0x184
[  641.291683]  ? lockdep_hardirqs_on+0x421/0x5c0
[  641.296249]  ? kasan_check_read+0x11/0x20
[  641.300386]  ? oom_killer_disable+0x3a0/0x3a0
[  641.304871]  ? kasan_check_write+0x14/0x20
[  641.309107]  ? do_raw_spin_lock+0xc1/0x200
[  641.313341]  mem_cgroup_out_of_memory+0x15e/0x210
[  641.318174]  ? memcg_memory_event+0x40/0x40
[  641.322481]  ? mem_cgroup_try_charge+0x5ea/0xe10
[  641.327227]  ? page_counter_try_charge+0x1c1/0x220
[  641.332144]  try_charge+0xb1a/0x1690
[  641.335850]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  641.341896]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  641.346727]  ? lock_downgrade+0x900/0x900
[  641.350862]  ? check_preemption_disabled+0x48/0x200
[  641.355865]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  641.360780]  ? kasan_check_read+0x11/0x20
[  641.364916]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  641.370184]  ? rcu_softirq_qs+0x20/0x20
[  641.374156]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  641.378986]  ? mod_memcg_state+0x230/0x230
[  641.383207]  ? __lock_is_held+0xb5/0x140
[  641.387263]  mem_cgroup_try_charge+0x5ea/0xe10
[  641.391840]  ? mem_cgroup_protected+0xa60/0xa60
[  641.396497]  ? print_usage_bug+0xc0/0xc0
[  641.400555]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  641.406087]  ? reuse_swap_page+0x4bd/0x1520
[  641.410404]  ? swp_swapcount+0x530/0x530
[  641.414462]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  641.420326]  mem_cgroup_try_charge_delay+0x1d/0xa0
[  641.425247]  wp_page_copy+0x492/0x18a0
[  641.429128]  ? enqueue_entity+0x34b/0x2000
[  641.433358]  ? pmd_pfn+0x1c0/0x1c0
[  641.436889]  ? find_held_lock+0x36/0x1c0
[  641.440942]  ? do_wp_page+0x76c/0x1690
[  641.444837]  ? lock_downgrade+0x900/0x900
[  641.449006]  ? kasan_check_write+0x14/0x20
[  641.453231]  ? kasan_check_read+0x11/0x20
[  641.457375]  ? do_raw_spin_unlock+0xa7/0x2f0
[  641.461798]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  641.466382]  ? __pte_alloc_kernel+0x220/0x220
[  641.470870]  ? __lock_acquire+0x7ec/0x4ec0
[  641.475125]  ? __lock_acquire+0x7ec/0x4ec0
[  641.479357]  do_wp_page+0x774/0x1690
[  641.483064]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  641.487736]  ? lock_release+0x970/0x970
[  641.491701]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  641.497246]  ? kasan_check_write+0x14/0x20
[  641.501472]  ? do_raw_spin_lock+0xc1/0x200
[  641.505698]  __handle_mm_fault+0x2c60/0x53e0
[  641.510132]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  641.514964]  ? graph_lock+0x170/0x170
[  641.518752]  ? print_usage_bug+0xc0/0xc0
[  641.522802]  ? wake_up_new_task+0x6fb/0xd20
[  641.527115]  ? kasan_check_read+0x11/0x20
[  641.531246]  ? graph_lock+0x170/0x170
[  641.535030]  ? graph_lock+0x170/0x170
[  641.538825]  ? handle_mm_fault+0x42a/0xc70
[  641.543049]  ? lock_downgrade+0x900/0x900
[  641.547183]  ? check_preemption_disabled+0x48/0x200
[  641.552196]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  641.557121]  ? kasan_check_read+0x11/0x20
[  641.561258]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  641.566519]  ? rcu_softirq_qs+0x20/0x20
[  641.570479]  ? trace_hardirqs_off_caller+0x300/0x300
[  641.575572]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  641.581107]  ? check_preemption_disabled+0x48/0x200
[  641.586128]  handle_mm_fault+0x54f/0xc70
[  641.590180]  ? __handle_mm_fault+0x53e0/0x53e0
[  641.594748]  ? find_vma+0x34/0x190
[  641.598282]  __do_page_fault+0x673/0xec0
[  641.602333]  ? mm_fault_error+0x380/0x380
[  641.606465]  ? trace_hardirqs_off+0xb8/0x310
[  641.610872]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  641.616221]  ? trace_hardirqs_on_caller+0x310/0x310
[  641.621232]  do_page_fault+0xed/0x7d1
[  641.625036]  ? vmalloc_sync_all+0x30/0x30
[  641.629175]  ? error_entry+0x70/0xd0
[  641.632874]  ? trace_hardirqs_off_caller+0xbb/0x300
[  641.637882]  ? trace_hardirqs_on_caller+0xc0/0x310
[  641.642793]  ? syscall_return_slowpath+0x5e0/0x5e0
[  641.647711]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  641.652538]  ? trace_hardirqs_off+0x310/0x310
[  641.657034]  ? __bpf_trace_preemptirq_template+0x30/0x30
[  641.662476]  ? prepare_exit_to_usermode+0x291/0x3b0
[  641.667476]  ? page_fault+0x8/0x30
[  641.671005]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  641.675839]  ? page_fault+0x8/0x30
[  641.679367]  page_fault+0x1e/0x30
[  641.682817] RIP: 0033:0x455d6e
[  641.686010] Code: 5c 41 5d 41 5e 5d c3 48 c7 c2 d4 ff ff ff f7 d8 41 bd ff ff ff ff 64 89 02 64 8b 04 25 d0 02 00 00 41 39 c4 0f 85 2f 01 00 00 <64> 44 89 04 25 d4 02 00 00 45 85 f6 0f 85 7f 00 00 00 48 85 db 74
[  641.704927] RSP: 002b:00007fff9d17d960 EFLAGS: 00010246
[  641.710277] RAX: 0000000000000001 RBX: 00007fff9d17d960 RCX: 0000000000455c4a
[  641.717536] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  641.724798] RBP: 00007fff9d17d9a0 R08: 0000000000000001 R09: 0000000000ea7940
[  641.732065] R10: 0000000000ea7c10 R11: 0000000000000246 R12: 0000000000000001
[  641.739334] R13: 00000000000003a2 R14: 0000000000000000 R15: badc0ffeebadface
[  641.748840] Memory limit reached of cgroup /syz1
[  641.753637] memory: usage 6848kB, limit 0kB, failcnt 293
[  641.759156] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  641.765912] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  641.772121] Memory cgroup stats for /syz1: cache:112KB rss:176KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:56KB inactive_file:4KB active_file:0KB unevictable:0KB
[  641.792383] Out of memory and no killable processes...
[  641.797808] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  641.810863] syz-executor1 cpuset=syz1 mems_allowed=0
[  641.816008] CPU: 1 PID: 29030 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  641.824483] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  641.833831] Call Trace:
[  641.836424]  dump_stack+0x1d3/0x2c4
[  641.840037]  ? dump_stack_print_info.cold.2+0x52/0x52
[  641.845220]  dump_header+0x27b/0xf72
[  641.848922]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  641.853841]  ? kasan_check_read+0x11/0x20
[  641.857980]  ? pagefault_out_of_memory+0x197/0x197
[  641.862903]  ? rcu_read_unlock+0x33/0x60
[  641.866968]  ? mem_cgroup_iter+0x514/0x1160
[  641.871305]  ? find_held_lock+0x36/0x1c0
[  641.875356]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  641.880103]  ? mark_held_locks+0xc7/0x130
[  641.884245]  ? _raw_spin_unlock_irq+0x27/0x80
[  641.888728]  ? _raw_spin_unlock_irq+0x27/0x80
[  641.893214]  ? lockdep_hardirqs_on+0x421/0x5c0
[  641.897786]  ? trace_hardirqs_on+0xbd/0x310
[  641.902098]  ? kasan_check_read+0x11/0x20
[  641.906233]  ? css_task_iter_end+0x222/0x490
[  641.910631]  ? trace_hardirqs_off_caller+0x300/0x300
[  641.915742]  ? kasan_check_write+0x14/0x20
[  641.919963]  ? do_raw_spin_lock+0xc1/0x200
[  641.924189]  ? _raw_spin_unlock_irq+0x60/0x80
[  641.928668]  ? css_task_iter_end+0x2ce/0x490
[  641.933065]  ? cgroup_procs_next+0x70/0x70
[  641.937295]  ? _raw_spin_unlock_irq+0x60/0x80
[  641.941796]  ? oom_badness+0xaa0/0xaa0
[  641.945669]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  641.950423]  ? mem_cgroup_iter_break+0x30/0x30
[  641.955012]  ? mark_held_locks+0xc7/0x130
[  641.959154]  out_of_memory.cold.30+0xf/0x184
[  641.963558]  ? lockdep_hardirqs_on+0x421/0x5c0
[  641.968125]  ? kasan_check_read+0x11/0x20
[  641.972279]  ? oom_killer_disable+0x3a0/0x3a0
[  641.976762]  ? kasan_check_write+0x14/0x20
[  641.980980]  ? do_raw_spin_lock+0xc1/0x200
[  641.985212]  mem_cgroup_out_of_memory+0x15e/0x210
[  641.990040]  ? memcg_memory_event+0x40/0x40
[  641.994349]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  641.999188]  ? page_counter_try_charge+0x1c1/0x220
[  642.004112]  try_charge+0xb1a/0x1690
[  642.007812]  ? lock_downgrade+0x900/0x900
[  642.011944]  ? check_preemption_disabled+0x48/0x200
[  642.016952]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  642.022997]  ? find_held_lock+0x36/0x1c0
[  642.027114]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  642.031962]  ? lock_downgrade+0x900/0x900
[  642.036098]  ? check_preemption_disabled+0x48/0x200
[  642.041120]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  642.046041]  ? kasan_check_read+0x11/0x20
[  642.050176]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  642.055439]  ? rcu_softirq_qs+0x20/0x20
[  642.059409]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  642.064240]  memcg_kmem_charge_memcg+0x7c/0x120
[  642.068903]  ? memcg_kmem_put_cache+0xb0/0xb0
[  642.073385]  ? print_usage_bug+0xc0/0xc0
[  642.077438]  memcg_kmem_charge+0x135/0x300
[  642.081661]  __alloc_pages_nodemask+0x89c/0xdd0
[  642.086318]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  642.091340]  ? __lock_acquire+0x7ec/0x4ec0
[  642.095564]  ? lock_release+0x970/0x970
[  642.099538]  ? mark_held_locks+0x130/0x130
[  642.103760]  ? mark_held_locks+0x130/0x130
[  642.107978]  ? do_raw_spin_lock+0xc1/0x200
[  642.112199]  ? __handle_mm_fault+0x9ab/0x53e0
[  642.116682]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  642.122216]  alloc_pages_current+0x10c/0x210
[  642.126615]  pte_alloc_one+0x1b/0x1a0
[  642.130408]  __handle_mm_fault+0x43f4/0x53e0
[  642.134857]  ? graph_lock+0x170/0x170
[  642.138652]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  642.143477]  ? graph_lock+0x170/0x170
[  642.147275]  ? print_usage_bug+0xc0/0xc0
[  642.151338]  ? graph_lock+0x170/0x170
[  642.155142]  ? graph_lock+0x170/0x170
[  642.158956]  ? handle_mm_fault+0x42a/0xc70
[  642.163177]  ? lock_downgrade+0x900/0x900
[  642.167316]  ? check_preemption_disabled+0x48/0x200
[  642.172324]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  642.177240]  ? kasan_check_read+0x11/0x20
[  642.181374]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  642.186642]  ? rcu_softirq_qs+0x20/0x20
[  642.190604]  ? trace_hardirqs_off_caller+0x300/0x300
[  642.195694]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  642.201218]  ? check_preemption_disabled+0x48/0x200
[  642.206222]  handle_mm_fault+0x54f/0xc70
[  642.210271]  ? __handle_mm_fault+0x53e0/0x53e0
[  642.214846]  ? find_vma+0x34/0x190
[  642.218376]  __do_page_fault+0x673/0xec0
[  642.222448]  ? mm_fault_error+0x380/0x380
[  642.226598]  do_page_fault+0xed/0x7d1
[  642.230389]  ? vmalloc_sync_all+0x30/0x30
[  642.234524]  ? error_entry+0x70/0xd0
[  642.238235]  ? trace_hardirqs_off_caller+0xbb/0x300
[  642.243239]  ? trace_hardirqs_on_caller+0xc0/0x310
[  642.248200]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  642.253040]  ? trace_hardirqs_off+0x310/0x310
[  642.257523]  ? __bpf_trace_preemptirq_template+0x30/0x30
[  642.262981]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  642.267987]  ? recalc_sigpending_tsk+0x180/0x180
[  642.272732]  ? kasan_check_write+0x14/0x20
[  642.276970]  ? page_fault+0x8/0x30
[  642.280500]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  642.285331]  ? page_fault+0x8/0x30
[  642.288860]  page_fault+0x1e/0x30
[  642.292307] RIP: 0033:0x455c4a
[  642.295491] Code: Bad RIP value.
[  642.298841] RSP: 002b:00007fff9d17d960 EFLAGS: 00010246
[  642.304295] RAX: 0000000000000000 RBX: 00007fff9d17d960 RCX: 0000000000455c4a
[  642.311551] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  642.318809] RBP: 00007fff9d17d9a0 R08: 0000000000000001 R09: 0000000000ea7940
[  642.326075] R10: 0000000000ea7c10 R11: 0000000000000246 R12: 0000000000000001
[  642.333340] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  642.340859] Memory limit reached of cgroup /syz1
[  642.345712] memory: usage 6848kB, limit 0kB, failcnt 301
[  642.351251] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  642.358054] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  642.364212] Memory cgroup stats for /syz1: cache:112KB rss:176KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:56KB inactive_file:0KB active_file:4KB unevictable:0KB
[  642.384445] Out of memory and no killable processes...
[  642.389904] syz-executor1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=-1000
[  642.402059] syz-executor1 cpuset=syz1 mems_allowed=0
[  642.407195] CPU: 0 PID: 23483 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  642.415928] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  642.425267] Call Trace:
[  642.427861]  dump_stack+0x1d3/0x2c4
[  642.431499]  ? dump_stack_print_info.cold.2+0x52/0x52
[  642.436688]  dump_header+0x27b/0xf72
[  642.440392]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  642.445310]  ? kasan_check_read+0x11/0x20
[  642.449453]  ? pagefault_out_of_memory+0x197/0x197
[  642.454378]  ? rcu_read_unlock+0x33/0x60
[  642.458428]  ? mem_cgroup_iter+0x514/0x1160
[  642.462746]  ? find_held_lock+0x36/0x1c0
[  642.466804]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  642.471575]  ? mark_held_locks+0xc7/0x130
[  642.475740]  ? _raw_spin_unlock_irq+0x27/0x80
[  642.480229]  ? _raw_spin_unlock_irq+0x27/0x80
[  642.484737]  ? lockdep_hardirqs_on+0x421/0x5c0
[  642.489314]  ? trace_hardirqs_on+0xbd/0x310
[  642.493633]  ? kasan_check_read+0x11/0x20
[  642.497777]  ? css_task_iter_end+0x222/0x490
[  642.502201]  ? trace_hardirqs_off_caller+0x300/0x300
[  642.507300]  ? kasan_check_write+0x14/0x20
[  642.511530]  ? do_raw_spin_lock+0xc1/0x200
[  642.515760]  ? _raw_spin_unlock_irq+0x60/0x80
[  642.520280]  ? css_task_iter_end+0x2ce/0x490
[  642.524687]  ? cgroup_procs_next+0x70/0x70
[  642.528912]  ? _raw_spin_unlock_irq+0x60/0x80
[  642.533400]  ? oom_badness+0xaa0/0xaa0
[  642.537278]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  642.542023]  ? mem_cgroup_iter_break+0x30/0x30
[  642.546599]  ? mark_held_locks+0xc7/0x130
[  642.550741]  out_of_memory.cold.30+0xf/0x184
[  642.555137]  ? lockdep_hardirqs_on+0x421/0x5c0
[  642.559716]  ? kasan_check_read+0x11/0x20
[  642.563854]  ? oom_killer_disable+0x3a0/0x3a0
[  642.568333]  ? kasan_check_write+0x14/0x20
[  642.572578]  ? do_raw_spin_lock+0xc1/0x200
[  642.576807]  mem_cgroup_out_of_memory+0x15e/0x210
[  642.581637]  ? memcg_memory_event+0x40/0x40
[  642.585945]  ? mem_cgroup_try_charge+0x5ea/0xe10
[  642.590690]  ? page_counter_try_charge+0x1c1/0x220
[  642.595613]  try_charge+0xb1a/0x1690
[  642.599321]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  642.605362]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  642.610195]  ? lock_downgrade+0x900/0x900
[  642.614327]  ? check_preemption_disabled+0x48/0x200
[  642.619347]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  642.624275]  ? kasan_check_read+0x11/0x20
[  642.628410]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  642.633672]  ? rcu_softirq_qs+0x20/0x20
[  642.637640]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  642.642472]  ? mod_memcg_state+0x230/0x230
[  642.646693]  ? __lock_is_held+0xb5/0x140
[  642.650757]  mem_cgroup_try_charge+0x5ea/0xe10
[  642.655332]  ? mem_cgroup_protected+0xa60/0xa60
[  642.659990]  ? print_usage_bug+0xc0/0xc0
[  642.664040]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  642.669582]  ? reuse_swap_page+0x4bd/0x1520
[  642.673897]  ? swp_swapcount+0x530/0x530
[  642.677989]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  642.683516]  mem_cgroup_try_charge_delay+0x1d/0xa0
[  642.688433]  wp_page_copy+0x492/0x18a0
[  642.692316]  ? pmd_pfn+0x1c0/0x1c0
[  642.695848]  ? find_held_lock+0x36/0x1c0
[  642.699895]  ? do_wp_page+0x76c/0x1690
[  642.703766]  ? lock_downgrade+0x900/0x900
[  642.707900]  ? kasan_check_write+0x14/0x20
[  642.712121]  ? kasan_check_read+0x11/0x20
[  642.716257]  ? do_raw_spin_unlock+0xa7/0x2f0
[  642.720650]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  642.725223]  ? __pte_alloc_kernel+0x220/0x220
[  642.729702]  ? __lock_acquire+0x7ec/0x4ec0
[  642.733925]  ? __lock_acquire+0x7ec/0x4ec0
[  642.738149]  do_wp_page+0x774/0x1690
[  642.741850]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  642.746509]  ? lock_release+0x970/0x970
[  642.750495]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  642.756024]  ? kasan_check_write+0x14/0x20
[  642.760244]  ? do_raw_spin_lock+0xc1/0x200
[  642.764471]  __handle_mm_fault+0x2c60/0x53e0
[  642.768884]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  642.773709]  ? graph_lock+0x170/0x170
[  642.777492]  ? print_usage_bug+0xc0/0xc0
[  642.781541]  ? wake_up_new_task+0x6fb/0xd20
[  642.785844]  ? kasan_check_read+0x11/0x20
[  642.789989]  ? graph_lock+0x170/0x170
[  642.793784]  ? graph_lock+0x170/0x170
[  642.797575]  ? handle_mm_fault+0x42a/0xc70
[  642.801796]  ? lock_downgrade+0x900/0x900
[  642.805930]  ? check_preemption_disabled+0x48/0x200
[  642.810932]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  642.815850]  ? kasan_check_read+0x11/0x20
[  642.819983]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  642.825246]  ? rcu_softirq_qs+0x20/0x20
[  642.829208]  ? trace_hardirqs_off_caller+0x300/0x300
[  642.834297]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  642.839821]  ? check_preemption_disabled+0x48/0x200
[  642.844856]  handle_mm_fault+0x54f/0xc70
[  642.848908]  ? __handle_mm_fault+0x53e0/0x53e0
[  642.853490]  ? find_vma+0x34/0x190
[  642.857042]  __do_page_fault+0x673/0xec0
[  642.861106]  ? mm_fault_error+0x380/0x380
[  642.865239]  ? trace_hardirqs_off+0xb8/0x310
[  642.869633]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  642.874984]  ? trace_hardirqs_on_caller+0x310/0x310
[  642.879992]  do_page_fault+0xed/0x7d1
[  642.883794]  ? vmalloc_sync_all+0x30/0x30
[  642.887931]  ? error_entry+0x70/0xd0
[  642.891630]  ? trace_hardirqs_off_caller+0xbb/0x300
[  642.896630]  ? trace_hardirqs_on_caller+0xc0/0x310
[  642.901544]  ? syscall_return_slowpath+0x5e0/0x5e0
[  642.906458]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  642.911286]  ? trace_hardirqs_off+0x310/0x310
[  642.915766]  ? __bpf_trace_preemptirq_template+0x30/0x30
[  642.921204]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  642.926729]  ? prepare_exit_to_usermode+0x291/0x3b0
[  642.931732]  ? page_fault+0x8/0x30
[  642.935263]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  642.940112]  ? page_fault+0x8/0x30
[  642.943641]  page_fault+0x1e/0x30
[  642.947086] RIP: 0033:0x455daa
[  642.950270] Code: 48 85 db 74 b6 41 bc ca 00 00 00 eb 0c 0f 1f 00 48 8b 5b 08 48 85 db 74 a2 48 8b 3b 48 8b 47 10 48 85 c0 74 05 ff d0 48 8b 3b <f0> ff 4f 28 0f 94 c0 84 c0 74 db 8b 47 2c 85 c0 74 d4 45 31 d2 ba
[  642.969165] RSP: 002b:00007fff9d17d960 EFLAGS: 00010246
[  642.974516] RAX: 0000000000000000 RBX: 00007fff9d17d960 RCX: 0000000000455c4a
[  642.981769] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000a44cc8
[  642.989025] RBP: 00007fff9d17d9a0 R08: 0000000000000001 R09: 0000000000ea7940
[  642.996279] R10: 0000000000ea7c10 R11: 0000000000000246 R12: 00000000000000ca
[  643.003533] R13: 00000000000003a2 R14: 0000000000000000 R15: badc0ffeebadface
[  643.012147] Memory limit reached of cgroup /syz1
[  643.016960] memory: usage 6852kB, limit 0kB, failcnt 309
[  643.022459] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  643.029247] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  643.035376] Memory cgroup stats for /syz1: cache:112KB rss:176KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:56KB inactive_file:4KB active_file:0KB unevictable:0KB
[  643.055565] Out of memory and no killable processes...
[  643.060986] syz-executor1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=-1000
[  643.072393] syz-executor1 cpuset=syz1 mems_allowed=0
[  643.077607] CPU: 1 PID: 29030 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  643.086106] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  643.095441] Call Trace:
[  643.098049]  dump_stack+0x1d3/0x2c4
[  643.101660]  ? dump_stack_print_info.cold.2+0x52/0x52
[  643.106860]  dump_header+0x27b/0xf72
[  643.110564]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  643.115479]  ? kasan_check_read+0x11/0x20
[  643.119620]  ? pagefault_out_of_memory+0x197/0x197
[  643.124545]  ? rcu_read_unlock+0x33/0x60
[  643.128599]  ? mem_cgroup_iter+0x514/0x1160
[  643.132912]  ? find_held_lock+0x36/0x1c0
[  643.136964]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  643.141708]  ? mark_held_locks+0xc7/0x130
[  643.145848]  ? _raw_spin_unlock_irq+0x27/0x80
[  643.150331]  ? _raw_spin_unlock_irq+0x27/0x80
[  643.154821]  ? lockdep_hardirqs_on+0x421/0x5c0
[  643.159416]  ? trace_hardirqs_on+0xbd/0x310
[  643.163739]  ? kasan_check_read+0x11/0x20
[  643.167873]  ? css_task_iter_end+0x222/0x490
[  643.172286]  ? trace_hardirqs_off_caller+0x300/0x300
[  643.177394]  ? kasan_check_write+0x14/0x20
[  643.181644]  ? do_raw_spin_lock+0xc1/0x200
[  643.185878]  ? _raw_spin_unlock_irq+0x60/0x80
[  643.190360]  ? css_task_iter_end+0x2ce/0x490
[  643.194765]  ? cgroup_procs_next+0x70/0x70
[  643.198989]  ? _raw_spin_unlock_irq+0x60/0x80
[  643.203473]  ? oom_badness+0xaa0/0xaa0
[  643.207350]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  643.212116]  ? mem_cgroup_iter_break+0x30/0x30
[  643.216701]  ? mark_held_locks+0xc7/0x130
[  643.220840]  out_of_memory.cold.30+0xf/0x184
[  643.225232]  ? lockdep_hardirqs_on+0x421/0x5c0
[  643.229826]  ? kasan_check_read+0x11/0x20
[  643.233962]  ? oom_killer_disable+0x3a0/0x3a0
[  643.238468]  ? kasan_check_write+0x14/0x20
[  643.242684]  ? do_raw_spin_lock+0xc1/0x200
[  643.246910]  mem_cgroup_out_of_memory+0x15e/0x210
[  643.251735]  ? memcg_memory_event+0x40/0x40
[  643.256042]  ? mem_cgroup_try_charge+0x5ea/0xe10
[  643.260800]  ? page_counter_try_charge+0x1c1/0x220
[  643.265721]  try_charge+0xb1a/0x1690
[  643.269447]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  643.275491]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  643.280337]  ? lock_downgrade+0x900/0x900
[  643.284476]  ? check_preemption_disabled+0x48/0x200
[  643.289480]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  643.294404]  ? kasan_check_read+0x11/0x20
[  643.298538]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  643.303816]  ? rcu_softirq_qs+0x20/0x20
[  643.307809]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  643.312643]  ? mod_memcg_state+0x230/0x230
[  643.316872]  ? __lock_is_held+0xb5/0x140
[  643.320924]  mem_cgroup_try_charge+0x5ea/0xe10
[  643.325493]  ? lock_downgrade+0x900/0x900
[  643.329642]  ? check_preemption_disabled+0x48/0x200
[  643.334649]  ? mem_cgroup_protected+0xa60/0xa60
[  643.339307]  ? print_usage_bug+0xc0/0xc0
[  643.343357]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  643.348894]  ? reuse_swap_page+0x4bd/0x1520
[  643.353203]  ? swp_swapcount+0x530/0x530
[  643.357273]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  643.362829]  mem_cgroup_try_charge_delay+0x1d/0xa0
[  643.367758]  wp_page_copy+0x492/0x18a0
[  643.371631]  ? unwind_get_return_address+0x61/0xa0
[  643.376548]  ? pmd_pfn+0x1c0/0x1c0
[  643.380100]  ? find_held_lock+0x36/0x1c0
[  643.384149]  ? do_wp_page+0x76c/0x1690
[  643.388039]  ? lock_downgrade+0x900/0x900
[  643.392179]  ? kasan_check_write+0x14/0x20
[  643.396417]  ? kasan_check_read+0x11/0x20
[  643.400567]  ? do_raw_spin_unlock+0xa7/0x2f0
[  643.404961]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  643.409535]  ? __pte_alloc_kernel+0x220/0x220
[  643.414017]  ? __lock_acquire+0x7ec/0x4ec0
[  643.418251]  ? __lock_acquire+0x7ec/0x4ec0
[  643.422484]  do_wp_page+0x774/0x1690
[  643.426188]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  643.430859]  ? lock_downgrade+0x900/0x900
[  643.435024]  ? lock_release+0x970/0x970
[  643.438995]  ? kasan_check_read+0x11/0x20
[  643.443134]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  643.448653]  ? kasan_check_write+0x14/0x20
[  643.452883]  ? do_raw_spin_lock+0xc1/0x200
[  643.457127]  __handle_mm_fault+0x2c60/0x53e0
[  643.461522]  ? graph_lock+0x170/0x170
[  643.465310]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  643.470138]  ? graph_lock+0x170/0x170
[  643.473927]  ? print_usage_bug+0xc0/0xc0
[  643.477977]  ? graph_lock+0x170/0x170
[  643.481763]  ? graph_lock+0x170/0x170
[  643.485563]  ? handle_mm_fault+0x42a/0xc70
[  643.489787]  ? lock_downgrade+0x900/0x900
[  643.493924]  ? check_preemption_disabled+0x48/0x200
[  643.498954]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  643.503888]  ? kasan_check_read+0x11/0x20
[  643.508030]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  643.513294]  ? rcu_softirq_qs+0x20/0x20
[  643.517282]  ? trace_hardirqs_off_caller+0x300/0x300
[  643.522404]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  643.527940]  ? check_preemption_disabled+0x48/0x200
[  643.532956]  handle_mm_fault+0x54f/0xc70
[  643.537012]  ? __handle_mm_fault+0x53e0/0x53e0
[  643.541588]  ? find_vma+0x34/0x190
[  643.545131]  __do_page_fault+0x673/0xec0
[  643.549195]  ? mm_fault_error+0x380/0x380
[  643.553344]  do_page_fault+0xed/0x7d1
[  643.557132]  ? vmalloc_sync_all+0x30/0x30
[  643.561267]  ? error_entry+0x70/0xd0
[  643.564969]  ? trace_hardirqs_off_caller+0xbb/0x300
[  643.569969]  ? trace_hardirqs_on_caller+0xc0/0x310
[  643.574884]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  643.579726]  ? trace_hardirqs_off+0x310/0x310
[  643.584210]  ? __bpf_trace_preemptirq_template+0x30/0x30
[  643.589648]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  643.594667]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  643.600209]  ? prepare_exit_to_usermode+0x291/0x3b0
[  643.605212]  ? page_fault+0x8/0x30
[  643.608742]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  643.613571]  ? page_fault+0x8/0x30
[  643.617103]  page_fault+0x1e/0x30
[  643.620541] RIP: 0033:0x455c7e
[  643.623721] Code: 00 00 85 c0 41 89 c5 0f 85 fc 00 00 00 64 8b 04 25 d0 02 00 00 41 39 c4 0f 84 12 02 00 00 48 8b 05 e7 07 5f 00 48 85 c0 74 04 <48> 83 00 04 64 8b 04 25 d0 02 00 00 64 89 04 25 d4 02 00 00 0f 31
[  643.642612] RSP: 002b:00007fff9d17d960 EFLAGS: 00010202
[  643.647966] RAX: 0000000000a45f68 RBX: 00007fff9d17d960 RCX: 0000000000455c4a
[  643.655218] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  643.662470] RBP: 00007fff9d17d9a0 R08: 0000000000000001 R09: 0000000000ea7940
[  643.669723] R10: 0000000000ea7c10 R11: 0000000000000246 R12: 0000000000000001
[  643.676979] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  643.685374] Memory limit reached of cgroup /syz1
[  643.690638] memory: usage 6856kB, limit 0kB, failcnt 317
[  643.696250] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  643.703267] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  643.709621] Memory cgroup stats for /syz1: cache:112KB rss:176KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:60KB inactive_file:0KB active_file:4KB unevictable:0KB
[  643.730045] Out of memory and no killable processes...
[  643.735456] syz-executor1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=-1000
[  643.746828] syz-executor1 cpuset=syz1 mems_allowed=0
[  643.752096] CPU: 1 PID: 23483 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  643.760597] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  643.769932] Call Trace:
[  643.772508]  dump_stack+0x1d3/0x2c4
[  643.776138]  ? dump_stack_print_info.cold.2+0x52/0x52
[  643.781320]  dump_header+0x27b/0xf72
[  643.785024]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  643.789969]  ? kasan_check_read+0x11/0x20
[  643.794117]  ? pagefault_out_of_memory+0x197/0x197
[  643.799036]  ? rcu_read_unlock+0x33/0x60
[  643.803088]  ? mem_cgroup_iter+0x514/0x1160
[  643.807399]  ? find_held_lock+0x36/0x1c0
[  643.811447]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  643.816190]  ? mark_held_locks+0xc7/0x130
[  643.820326]  ? _raw_spin_unlock_irq+0x27/0x80
[  643.824806]  ? _raw_spin_unlock_irq+0x27/0x80
[  643.829286]  ? lockdep_hardirqs_on+0x421/0x5c0
[  643.833857]  ? trace_hardirqs_on+0xbd/0x310
[  643.838163]  ? kasan_check_read+0x11/0x20
[  643.842294]  ? css_task_iter_end+0x222/0x490
[  643.846702]  ? trace_hardirqs_off_caller+0x300/0x300
[  643.851793]  ? kasan_check_write+0x14/0x20
[  643.856012]  ? do_raw_spin_lock+0xc1/0x200
[  643.860236]  ? _raw_spin_unlock_irq+0x60/0x80
[  643.864715]  ? css_task_iter_end+0x2ce/0x490
[  643.869118]  ? cgroup_procs_next+0x70/0x70
[  643.873354]  ? _raw_spin_unlock_irq+0x60/0x80
[  643.877838]  ? oom_badness+0xaa0/0xaa0
[  643.881712]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  643.886453]  ? mem_cgroup_iter_break+0x30/0x30
[  643.891027]  ? mark_held_locks+0xc7/0x130
[  643.895163]  out_of_memory.cold.30+0xf/0x184
[  643.899576]  ? lockdep_hardirqs_on+0x421/0x5c0
[  643.904161]  ? kasan_check_read+0x11/0x20
[  643.908299]  ? oom_killer_disable+0x3a0/0x3a0
[  643.912780]  ? kasan_check_write+0x14/0x20
[  643.916995]  ? do_raw_spin_lock+0xc1/0x200
[  643.921226]  mem_cgroup_out_of_memory+0x15e/0x210
[  643.926056]  ? memcg_memory_event+0x40/0x40
[  643.930366]  ? mem_cgroup_try_charge+0x5ea/0xe10
[  643.935112]  ? page_counter_try_charge+0x1c1/0x220
[  643.940029]  try_charge+0xb1a/0x1690
[  643.943740]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  643.949784]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  643.954615]  ? lock_downgrade+0x900/0x900
[  643.958748]  ? check_preemption_disabled+0x48/0x200
[  643.963752]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  643.968667]  ? kasan_check_read+0x11/0x20
[  643.972801]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  643.978065]  ? rcu_softirq_qs+0x20/0x20
[  643.982044]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  643.986873]  ? mod_memcg_state+0x230/0x230
[  643.991107]  ? __lock_is_held+0xb5/0x140
[  643.995164]  mem_cgroup_try_charge+0x5ea/0xe10
[  643.999736]  ? mem_cgroup_protected+0xa60/0xa60
[  644.004396]  ? print_usage_bug+0xc0/0xc0
[  644.008447]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  644.013989]  ? reuse_swap_page+0x4bd/0x1520
[  644.018299]  ? swp_swapcount+0x530/0x530
[  644.022348]  ? lock_downgrade+0x900/0x900
[  644.026505]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  644.032052]  mem_cgroup_try_charge_delay+0x1d/0xa0
[  644.036976]  wp_page_copy+0x492/0x18a0
[  644.040865]  ? pmd_pfn+0x1c0/0x1c0
[  644.044397]  ? find_held_lock+0x36/0x1c0
[  644.048447]  ? do_wp_page+0x76c/0x1690
[  644.052318]  ? lock_downgrade+0x900/0x900
[  644.056453]  ? kasan_check_write+0x14/0x20
[  644.060692]  ? kasan_check_read+0x11/0x20
[  644.064823]  ? do_raw_spin_unlock+0xa7/0x2f0
[  644.069228]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  644.073793]  ? __pte_alloc_kernel+0x220/0x220
[  644.078277]  ? __lock_acquire+0x7ec/0x4ec0
[  644.082497]  ? __lock_acquire+0x7ec/0x4ec0
[  644.086720]  do_wp_page+0x774/0x1690
[  644.090421]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  644.095077]  ? lock_release+0x970/0x970
[  644.099049]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  644.104621]  ? kasan_check_write+0x14/0x20
[  644.108838]  ? do_raw_spin_lock+0xc1/0x200
[  644.113063]  __handle_mm_fault+0x2c60/0x53e0
[  644.117481]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  644.122308]  ? graph_lock+0x170/0x170
[  644.126111]  ? print_usage_bug+0xc0/0xc0
[  644.130160]  ? wake_up_new_task+0x6fb/0xd20
[  644.134465]  ? kasan_check_read+0x11/0x20
[  644.138623]  ? graph_lock+0x170/0x170
[  644.142411]  ? graph_lock+0x170/0x170
[  644.146236]  ? handle_mm_fault+0x42a/0xc70
[  644.150459]  ? lock_downgrade+0x900/0x900
[  644.154608]  ? check_preemption_disabled+0x48/0x200
[  644.159617]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  644.164532]  ? kasan_check_read+0x11/0x20
[  644.168665]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  644.173926]  ? rcu_softirq_qs+0x20/0x20
[  644.177892]  ? trace_hardirqs_off_caller+0x300/0x300
[  644.182983]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  644.188516]  ? check_preemption_disabled+0x48/0x200
[  644.193528]  handle_mm_fault+0x54f/0xc70
[  644.197578]  ? __handle_mm_fault+0x53e0/0x53e0
[  644.202152]  ? find_vma+0x34/0x190
[  644.205694]  __do_page_fault+0x673/0xec0
[  644.209755]  ? mm_fault_error+0x380/0x380
[  644.213897]  ? trace_hardirqs_off+0xb8/0x310
[  644.218298]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  644.223658]  ? trace_hardirqs_on_caller+0x310/0x310
[  644.228661]  do_page_fault+0xed/0x7d1
[  644.232447]  ? vmalloc_sync_all+0x30/0x30
[  644.236601]  ? error_entry+0x70/0xd0
[  644.240302]  ? trace_hardirqs_off_caller+0xbb/0x300
[  644.245304]  ? trace_hardirqs_on_caller+0xc0/0x310
[  644.250221]  ? syscall_return_slowpath+0x5e0/0x5e0
[  644.255164]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  644.259996]  ? trace_hardirqs_off+0x310/0x310
[  644.264476]  ? __bpf_trace_preemptirq_template+0x30/0x30
[  644.269915]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  644.275437]  ? prepare_exit_to_usermode+0x291/0x3b0
[  644.280442]  ? page_fault+0x8/0x30
[  644.283983]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  644.288814]  ? page_fault+0x8/0x30
[  644.292342]  page_fault+0x1e/0x30
[  644.295779] RIP: 0033:0x40b49f
[  644.298957] Code: 3d d5 cb 31 00 00 0f 85 9c 04 00 00 e8 ea a6 04 00 85 c0 89 c5 0f 88 d6 03 00 00 0f 84 76 02 00 00 89 c6 bf 9b d1 4b 00 31 c0 <e8> cc 63 ff ff c7 04 24 00 00 00 00 e8 e0 78 ff ff 49 89 c5 48 8b
[  644.318107] RSP: 002b:00007fff9d17d9b0 EFLAGS: 00010246
[  644.323463] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000455c4a
[  644.330717] RDX: 0000000000000000 RSI: 00000000000003a2 RDI: 00000000004bd19b
[  644.337970] RBP: 00000000000003a2 R08: 0000000000000001 R09: 0000000000ea7940
[  644.345226] R10: 0000000000ea7c10 R11: 0000000000000246 R12: 0000000000ea8940
[  644.352481] R13: 0000000000094ba4 R14: 00000000000000c9 R15: badc0ffeebadface
[  644.359890] Memory limit reached of cgroup /syz1
[  644.364719] memory: usage 6860kB, limit 0kB, failcnt 325
[  644.370243] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  644.376997] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  644.383195] Memory cgroup stats for /syz1: cache:112KB rss:176KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:64KB inactive_file:4KB active_file:0KB unevictable:0KB
[  644.403455] Out of memory and no killable processes...
[  644.408877] syz-executor1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=-1000
[  644.420625] syz-executor1 cpuset=syz1 mems_allowed=0
[  644.425739] CPU: 0 PID: 29030 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  644.434208] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  644.443555] Call Trace:
[  644.446135]  dump_stack+0x1d3/0x2c4
[  644.449754]  ? dump_stack_print_info.cold.2+0x52/0x52
[  644.454946]  dump_header+0x27b/0xf72
[  644.458772]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  644.463704]  ? kasan_check_read+0x11/0x20
[  644.467846]  ? pagefault_out_of_memory+0x197/0x197
[  644.472769]  ? rcu_read_unlock+0x33/0x60
[  644.476821]  ? mem_cgroup_iter+0x514/0x1160
[  644.481134]  ? find_held_lock+0x36/0x1c0
[  644.485187]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  644.489954]  ? mark_held_locks+0xc7/0x130
[  644.494123]  ? _raw_spin_unlock_irq+0x27/0x80
[  644.498611]  ? _raw_spin_unlock_irq+0x27/0x80
[  644.503119]  ? lockdep_hardirqs_on+0x421/0x5c0
[  644.507709]  ? trace_hardirqs_on+0xbd/0x310
[  644.512036]  ? kasan_check_read+0x11/0x20
[  644.516172]  ? css_task_iter_end+0x222/0x490
[  644.520574]  ? trace_hardirqs_off_caller+0x300/0x300
[  644.525675]  ? kasan_check_write+0x14/0x20
[  644.529902]  ? do_raw_spin_lock+0xc1/0x200
[  644.534132]  ? _raw_spin_unlock_irq+0x60/0x80
[  644.538617]  ? css_task_iter_end+0x2ce/0x490
[  644.543024]  ? cgroup_procs_next+0x70/0x70
[  644.547257]  ? _raw_spin_unlock_irq+0x60/0x80
[  644.551745]  ? oom_badness+0xaa0/0xaa0
[  644.555640]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  644.560403]  ? mem_cgroup_iter_break+0x30/0x30
[  644.564986]  ? mark_held_locks+0xc7/0x130
[  644.569149]  out_of_memory.cold.30+0xf/0x184
[  644.573574]  ? lockdep_hardirqs_on+0x421/0x5c0
[  644.578188]  ? kasan_check_read+0x11/0x20
[  644.582330]  ? oom_killer_disable+0x3a0/0x3a0
[  644.586817]  ? kasan_check_write+0x14/0x20
[  644.591044]  ? do_raw_spin_lock+0xc1/0x200
[  644.595278]  mem_cgroup_out_of_memory+0x15e/0x210
[  644.600119]  ? memcg_memory_event+0x40/0x40
[  644.604432]  ? mem_cgroup_try_charge+0x5ea/0xe10
[  644.609184]  ? page_counter_try_charge+0x1c1/0x220
[  644.614118]  try_charge+0xb1a/0x1690
[  644.617830]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  644.623877]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  644.628724]  ? lock_downgrade+0x900/0x900
[  644.632867]  ? check_preemption_disabled+0x48/0x200
[  644.637889]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  644.642810]  ? kasan_check_read+0x11/0x20
[  644.646946]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  644.652220]  ? rcu_softirq_qs+0x20/0x20
[  644.656219]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  644.661056]  ? mod_memcg_state+0x230/0x230
[  644.665288]  ? __lock_is_held+0xb5/0x140
[  644.669347]  mem_cgroup_try_charge+0x5ea/0xe10
[  644.673930]  ? mem_cgroup_protected+0xa60/0xa60
[  644.678592]  ? print_usage_bug+0xc0/0xc0
[  644.682652]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  644.688191]  ? reuse_swap_page+0x4bd/0x1520
[  644.692510]  ? swp_swapcount+0x530/0x530
[  644.696564]  ? lock_downgrade+0x900/0x900
[  644.700710]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  644.706243]  mem_cgroup_try_charge_delay+0x1d/0xa0
[  644.711164]  wp_page_copy+0x492/0x18a0
[  644.715046]  ? pmd_pfn+0x1c0/0x1c0
[  644.718593]  ? find_held_lock+0x36/0x1c0
[  644.722662]  ? do_wp_page+0x76c/0x1690
[  644.726546]  ? lock_downgrade+0x900/0x900
[  644.730700]  ? kasan_check_write+0x14/0x20
[  644.734940]  ? kasan_check_read+0x11/0x20
[  644.739087]  ? do_raw_spin_unlock+0xa7/0x2f0
[  644.743509]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  644.748114]  ? __pte_alloc_kernel+0x220/0x220
[  644.752600]  ? __lock_acquire+0x7ec/0x4ec0
[  644.756829]  ? __lock_acquire+0x7ec/0x4ec0
[  644.761069]  do_wp_page+0x774/0x1690
[  644.764802]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  644.769471]  ? lock_downgrade+0x900/0x900
[  644.773611]  ? lock_release+0x970/0x970
[  644.777598]  ? kasan_check_read+0x11/0x20
[  644.781742]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  644.787292]  ? kasan_check_write+0x14/0x20
[  644.791545]  ? do_raw_spin_lock+0xc1/0x200
[  644.795782]  __handle_mm_fault+0x2c60/0x53e0
[  644.800179]  ? graph_lock+0x170/0x170
[  644.803972]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  644.808810]  ? graph_lock+0x170/0x170
[  644.812619]  ? print_usage_bug+0xc0/0xc0
[  644.816686]  ? graph_lock+0x170/0x170
[  644.820474]  ? graph_lock+0x170/0x170
[  644.824275]  ? handle_mm_fault+0x42a/0xc70
[  644.828521]  ? lock_downgrade+0x900/0x900
[  644.832660]  ? check_preemption_disabled+0x48/0x200
[  644.837669]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  644.842586]  ? kasan_check_read+0x11/0x20
[  644.846726]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  644.851993]  ? rcu_softirq_qs+0x20/0x20
[  644.855969]  ? trace_hardirqs_off_caller+0x300/0x300
[  644.861070]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  644.866608]  ? check_preemption_disabled+0x48/0x200
[  644.871628]  handle_mm_fault+0x54f/0xc70
[  644.875698]  ? __handle_mm_fault+0x53e0/0x53e0
[  644.880274]  ? find_vma+0x34/0x190
[  644.883822]  __do_page_fault+0x673/0xec0
[  644.887875]  ? mm_fault_error+0x380/0x380
[  644.892020]  do_page_fault+0xed/0x7d1
[  644.895818]  ? vmalloc_sync_all+0x30/0x30
[  644.899959]  ? error_entry+0x70/0xd0
[  644.903666]  ? trace_hardirqs_off_caller+0xbb/0x300
[  644.908668]  ? trace_hardirqs_on_caller+0xc0/0x310
[  644.913614]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  644.918446]  ? trace_hardirqs_off+0x310/0x310
[  644.922932]  ? __bpf_trace_preemptirq_template+0x30/0x30
[  644.928375]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  644.933382]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  644.938911]  ? prepare_exit_to_usermode+0x291/0x3b0
[  644.943935]  ? page_fault+0x8/0x30
[  644.947470]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  644.952310]  ? page_fault+0x8/0x30
[  644.955839]  page_fault+0x1e/0x30
[  644.959281] RIP: 0033:0x455cab
[  644.962463] Code: 04 64 8b 04 25 d0 02 00 00 64 89 04 25 d4 02 00 00 0f 31 48 c1 e2 20 89 c0 48 09 c2 64 48 89 14 25 20 06 00 00 b8 b0 1e 41 00 <48> 89 15 1e 08 5f 00 48 85 c0 74 08 4c 89 cf e8 f1 c1 fb ff 45 85
[  644.981369] RSP: 002b:00007fff9d17d960 EFLAGS: 00010202
[  644.986721] RAX: 0000000000411eb0 RBX: 00007fff9d17d960 RCX: 0000000000455c4a
[  644.993977] RDX: 0000015afc55ac4f RSI: 0000000000000000 RDI: 0000000001200011
[  645.001235] RBP: 00007fff9d17d9a0 R08: 0000000000000001 R09: 0000000000ea7940
[  645.008494] R10: 0000000000ea7c10 R11: 0000000000000246 R12: 0000000000000001
[  645.015756] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  645.024844] Memory limit reached of cgroup /syz1
[  645.029805] memory: usage 6864kB, limit 0kB, failcnt 325
[  645.035307] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  645.042164] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  645.048387] Memory cgroup stats for /syz1: cache:112KB rss:176KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:68KB inactive_file:4KB active_file:0KB unevictable:0KB
[  645.068771] Out of memory and no killable processes...
[  645.075532] syz-executor1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=-1000
[  645.086834] syz-executor1 cpuset=syz1 mems_allowed=0
[  645.092129] CPU: 0 PID: 29030 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  645.100614] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  645.109958] Call Trace:
[  645.112564]  dump_stack+0x1d3/0x2c4
[  645.116183]  ? dump_stack_print_info.cold.2+0x52/0x52
[  645.121370]  dump_header+0x27b/0xf72
[  645.125092]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  645.130017]  ? kasan_check_read+0x11/0x20
[  645.134167]  ? pagefault_out_of_memory+0x197/0x197
[  645.139106]  ? rcu_read_unlock+0x33/0x60
[  645.143161]  ? mem_cgroup_iter+0x514/0x1160
[  645.147477]  ? find_held_lock+0x36/0x1c0
[  645.151549]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  645.156314]  ? mark_held_locks+0xc7/0x130
[  645.160455]  ? _raw_spin_unlock_irq+0x27/0x80
[  645.164946]  ? _raw_spin_unlock_irq+0x27/0x80
[  645.169444]  ? lockdep_hardirqs_on+0x421/0x5c0
[  645.174041]  ? trace_hardirqs_on+0xbd/0x310
[  645.178382]  ? kasan_check_read+0x11/0x20
[  645.182521]  ? css_task_iter_end+0x222/0x490
[  645.186921]  ? trace_hardirqs_off_caller+0x300/0x300
[  645.192025]  ? kasan_check_write+0x14/0x20
[  645.196263]  ? do_raw_spin_lock+0xc1/0x200
[  645.200493]  ? _raw_spin_unlock_irq+0x60/0x80
[  645.204975]  ? css_task_iter_end+0x2ce/0x490
[  645.209375]  ? cgroup_procs_next+0x70/0x70
[  645.213606]  ? _raw_spin_unlock_irq+0x60/0x80
[  645.218110]  ? oom_badness+0xaa0/0xaa0
[  645.221995]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  645.226741]  ? mem_cgroup_iter_break+0x30/0x30
[  645.231323]  ? mark_held_locks+0xc7/0x130
[  645.235488]  out_of_memory.cold.30+0xf/0x184
[  645.239887]  ? lockdep_hardirqs_on+0x421/0x5c0
[  645.244465]  ? kasan_check_read+0x11/0x20
[  645.248612]  ? oom_killer_disable+0x3a0/0x3a0
[  645.253118]  ? kasan_check_write+0x14/0x20
[  645.257349]  ? do_raw_spin_lock+0xc1/0x200
[  645.261605]  mem_cgroup_out_of_memory+0x15e/0x210
[  645.266438]  ? memcg_memory_event+0x40/0x40
[  645.270761]  ? mem_cgroup_try_charge+0x5ea/0xe10
[  645.275538]  ? page_counter_try_charge+0x1c1/0x220
[  645.280460]  try_charge+0xb1a/0x1690
[  645.284171]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  645.290217]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  645.295051]  ? lock_downgrade+0x900/0x900
[  645.299193]  ? check_preemption_disabled+0x48/0x200
[  645.304200]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  645.309120]  ? kasan_check_read+0x11/0x20
[  645.313258]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  645.318523]  ? rcu_softirq_qs+0x20/0x20
[  645.322510]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  645.327352]  ? mod_memcg_state+0x230/0x230
[  645.331597]  ? __lock_is_held+0xb5/0x140
[  645.335662]  mem_cgroup_try_charge+0x5ea/0xe10
[  645.340234]  ? lock_downgrade+0x900/0x900
[  645.344389]  ? check_preemption_disabled+0x48/0x200
[  645.349411]  ? mem_cgroup_protected+0xa60/0xa60
[  645.354076]  ? print_usage_bug+0xc0/0xc0
[  645.358166]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  645.363694]  ? reuse_swap_page+0x4bd/0x1520
[  645.368017]  ? swp_swapcount+0x530/0x530
[  645.372106]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  645.377641]  mem_cgroup_try_charge_delay+0x1d/0xa0
[  645.382561]  wp_page_copy+0x492/0x18a0
[  645.386459]  ? pmd_pfn+0x1c0/0x1c0
[  645.390010]  ? find_held_lock+0x36/0x1c0
[  645.394067]  ? do_wp_page+0x76c/0x1690
[  645.397960]  ? lock_downgrade+0x900/0x900
[  645.402111]  ? kasan_check_write+0x14/0x20
[  645.406336]  ? kasan_check_read+0x11/0x20
[  645.410475]  ? do_raw_spin_unlock+0xa7/0x2f0
[  645.414872]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  645.419664]  ? __pte_alloc_kernel+0x220/0x220
[  645.424152]  ? __lock_acquire+0x7ec/0x4ec0
[  645.428379]  ? __lock_acquire+0x7ec/0x4ec0
[  645.432619]  do_wp_page+0x774/0x1690
[  645.436335]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  645.440995]  ? lock_downgrade+0x900/0x900
[  645.445136]  ? lock_release+0x970/0x970
[  645.449128]  ? kasan_check_read+0x11/0x20
[  645.453268]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  645.458821]  ? kasan_check_write+0x14/0x20
[  645.463047]  ? do_raw_spin_lock+0xc1/0x200
[  645.467274]  __handle_mm_fault+0x2c60/0x53e0
[  645.471669]  ? graph_lock+0x170/0x170
[  645.475477]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  645.480316]  ? graph_lock+0x170/0x170
[  645.484119]  ? print_usage_bug+0xc0/0xc0
[  645.488172]  ? graph_lock+0x170/0x170
[  645.491961]  ? graph_lock+0x170/0x170
[  645.495759]  ? handle_mm_fault+0x42a/0xc70
[  645.499997]  ? lock_downgrade+0x900/0x900
[  645.504141]  ? check_preemption_disabled+0x48/0x200
[  645.509167]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  645.514092]  ? kasan_check_read+0x11/0x20
[  645.518238]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  645.523513]  ? rcu_softirq_qs+0x20/0x20
[  645.527493]  ? trace_hardirqs_off_caller+0x300/0x300
[  645.532590]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  645.538146]  ? check_preemption_disabled+0x48/0x200
[  645.543180]  handle_mm_fault+0x54f/0xc70
[  645.547235]  ? __handle_mm_fault+0x53e0/0x53e0
[  645.551816]  ? find_vma+0x34/0x190
[  645.555355]  __do_page_fault+0x673/0xec0
[  645.559413]  ? mm_fault_error+0x380/0x380
[  645.563555]  ? trace_hardirqs_off+0xb8/0x310
[  645.567957]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  645.573340]  ? trace_hardirqs_on_caller+0x310/0x310
[  645.578366]  do_page_fault+0xed/0x7d1
[  645.582165]  ? vmalloc_sync_all+0x30/0x30
[  645.586307]  ? error_entry+0x70/0xd0
[  645.590015]  ? trace_hardirqs_off_caller+0xbb/0x300
[  645.595020]  ? trace_hardirqs_on_caller+0xc0/0x310
[  645.599942]  ? syscall_return_slowpath+0x5e0/0x5e0
[  645.604878]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  645.609729]  ? trace_hardirqs_off+0x310/0x310
[  645.614216]  ? __bpf_trace_preemptirq_template+0x30/0x30
[  645.619655]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  645.624667]  ? prepare_exit_to_usermode+0x291/0x3b0
[  645.629677]  ? page_fault+0x8/0x30
[  645.633210]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  645.638044]  ? page_fault+0x8/0x30
[  645.641583]  page_fault+0x1e/0x30
[  645.645022] RIP: 0033:0x455ccb
[  645.648205] Code: 25 20 06 00 00 b8 b0 1e 41 00 48 89 15 1e 08 5f 00 48 85 c0 74 08 4c 89 cf e8 f1 c1 fb ff 45 85 f6 0f 85 58 01 00 00 48 85 db <48> c7 05 ba 72 2b 00 00 00 00 00 48 c7 05 9f 72 2b 00 00 00 00 00
[  645.667105] RSP: 002b:00007fff9d17d960 EFLAGS: 00010206
[  645.672458] RAX: 0000000000000000 RBX: 00007fff9d17d960 RCX: 0000000000411ec3
[  645.679724] RDX: 0000015afc55ac4f RSI: 0000000000000018 RDI: 0000000000ea7c20
[  645.686983] RBP: 00007fff9d17d9a0 R08: 0000000000000001 R09: 0000000000ea7940
[  645.694255] R10: 0000000000ea7c10 R11: 0000000000000202 R12: 0000000000000001
[  645.701514] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  645.710569] Memory limit reached of cgroup /syz1
[  645.715361] memory: usage 6836kB, limit 0kB, failcnt 333
[  645.720861] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  645.727830] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  645.733959] Memory cgroup stats for /syz1: cache:112KB rss:176KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:72KB inactive_file:0KB active_file:4KB unevictable:0KB
[  645.754157] Out of memory and no killable processes...
[  645.761138] syz-executor1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=-1000
[  645.772392] syz-executor1 cpuset=syz1 mems_allowed=0
[  645.777612] CPU: 0 PID: 29030 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  645.786104] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  645.795441] Call Trace:
[  645.798023]  dump_stack+0x1d3/0x2c4
[  645.801655]  ? dump_stack_print_info.cold.2+0x52/0x52
[  645.806845]  dump_header+0x27b/0xf72
[  645.810563]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  645.815495]  ? kasan_check_read+0x11/0x20
[  645.819649]  ? pagefault_out_of_memory+0x197/0x197
[  645.824589]  ? rcu_read_unlock+0x33/0x60
[  645.828658]  ? mem_cgroup_iter+0x514/0x1160
[  645.833004]  ? find_held_lock+0x36/0x1c0
[  645.837060]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  645.841817]  ? mark_held_locks+0xc7/0x130
[  645.845956]  ? _raw_spin_unlock_irq+0x27/0x80
[  645.850441]  ? _raw_spin_unlock_irq+0x27/0x80
[  645.854929]  ? lockdep_hardirqs_on+0x421/0x5c0
[  645.859504]  ? trace_hardirqs_on+0xbd/0x310
[  645.863817]  ? kasan_check_read+0x11/0x20
[  645.867968]  ? css_task_iter_end+0x222/0x490
[  645.872366]  ? trace_hardirqs_off_caller+0x300/0x300
[  645.877471]  ? kasan_check_write+0x14/0x20
[  645.881711]  ? do_raw_spin_lock+0xc1/0x200
[  645.885941]  ? _raw_spin_unlock_irq+0x60/0x80
[  645.890425]  ? css_task_iter_end+0x2ce/0x490
[  645.894822]  ? cgroup_procs_next+0x70/0x70
[  645.899051]  ? _raw_spin_unlock_irq+0x60/0x80
[  645.903540]  ? oom_badness+0xaa0/0xaa0
[  645.907434]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  645.912198]  ? mem_cgroup_iter_break+0x30/0x30
[  645.916777]  ? mark_held_locks+0xc7/0x130
[  645.920922]  out_of_memory.cold.30+0xf/0x184
[  645.925323]  ? lockdep_hardirqs_on+0x421/0x5c0
[  645.929898]  ? kasan_check_read+0x11/0x20
[  645.934078]  ? oom_killer_disable+0x3a0/0x3a0
[  645.938607]  ? kasan_check_write+0x14/0x20
[  645.942842]  ? do_raw_spin_lock+0xc1/0x200
[  645.947077]  mem_cgroup_out_of_memory+0x15e/0x210
[  645.951924]  ? memcg_memory_event+0x40/0x40
[  645.956260]  ? mem_cgroup_try_charge+0x5ea/0xe10
[  645.961007]  ? page_counter_try_charge+0x1c1/0x220
[  645.965929]  try_charge+0xb1a/0x1690
[  645.969642]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  645.975691]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  645.980534]  ? lock_downgrade+0x900/0x900
[  645.984675]  ? check_preemption_disabled+0x48/0x200
[  645.989685]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  645.994623]  ? kasan_check_read+0x11/0x20
[  645.998760]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  646.004027]  ? rcu_softirq_qs+0x20/0x20
[  646.007999]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  646.012833]  ? mod_memcg_state+0x230/0x230
[  646.017060]  ? __lock_is_held+0xb5/0x140
[  646.021135]  mem_cgroup_try_charge+0x5ea/0xe10
[  646.025707]  ? lock_downgrade+0x900/0x900
[  646.029847]  ? check_preemption_disabled+0x48/0x200
[  646.034866]  ? mem_cgroup_protected+0xa60/0xa60
[  646.039542]  ? print_usage_bug+0xc0/0xc0
[  646.043598]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  646.049127]  ? reuse_swap_page+0x4bd/0x1520
[  646.053442]  ? swp_swapcount+0x530/0x530
[  646.057522]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  646.063073]  mem_cgroup_try_charge_delay+0x1d/0xa0
[  646.068025]  wp_page_copy+0x492/0x18a0
[  646.071905]  ? pmd_pfn+0x1c0/0x1c0
[  646.075438]  ? find_held_lock+0x36/0x1c0
[  646.079490]  ? do_wp_page+0x76c/0x1690
[  646.083367]  ? lock_downgrade+0x900/0x900
[  646.087508]  ? kasan_check_write+0x14/0x20
[  646.091736]  ? kasan_check_read+0x11/0x20
[  646.095890]  ? do_raw_spin_unlock+0xa7/0x2f0
[  646.100323]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  646.104895]  ? __pte_alloc_kernel+0x220/0x220
[  646.109377]  ? __lock_acquire+0x7ec/0x4ec0
[  646.113614]  ? __lock_acquire+0x7ec/0x4ec0
[  646.117843]  do_wp_page+0x774/0x1690
[  646.121551]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  646.126210]  ? lock_downgrade+0x900/0x900
[  646.130368]  ? lock_release+0x970/0x970
[  646.134333]  ? kasan_check_read+0x11/0x20
[  646.138491]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  646.144018]  ? kasan_check_write+0x14/0x20
[  646.148247]  ? do_raw_spin_lock+0xc1/0x200
[  646.152476]  __handle_mm_fault+0x2c60/0x53e0
[  646.156891]  ? graph_lock+0x170/0x170
[  646.160703]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  646.165545]  ? graph_lock+0x170/0x170
[  646.169338]  ? print_usage_bug+0xc0/0xc0
[  646.173389]  ? graph_lock+0x170/0x170
[  646.177180]  ? graph_lock+0x170/0x170
[  646.180989]  ? handle_mm_fault+0x42a/0xc70
[  646.185212]  ? lock_downgrade+0x900/0x900
[  646.189348]  ? check_preemption_disabled+0x48/0x200
[  646.194353]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  646.199271]  ? kasan_check_read+0x11/0x20
[  646.203407]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  646.208675]  ? rcu_softirq_qs+0x20/0x20
[  646.212674]  ? trace_hardirqs_off_caller+0x300/0x300
[  646.217786]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  646.223316]  ? check_preemption_disabled+0x48/0x200
[  646.228324]  handle_mm_fault+0x54f/0xc70
[  646.232388]  ? __handle_mm_fault+0x53e0/0x53e0
[  646.236963]  ? find_vma+0x34/0x190
[  646.240508]  __do_page_fault+0x673/0xec0
[  646.244575]  ? mm_fault_error+0x380/0x380
[  646.248825]  ? trace_hardirqs_off+0xb8/0x310
[  646.253277]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  646.258649]  ? trace_hardirqs_on_caller+0x310/0x310
[  646.263660]  do_page_fault+0xed/0x7d1
[  646.267469]  ? vmalloc_sync_all+0x30/0x30
[  646.271624]  ? error_entry+0x70/0xd0
[  646.275334]  ? trace_hardirqs_off_caller+0xbb/0x300
[  646.280342]  ? trace_hardirqs_on_caller+0xc0/0x310
[  646.285275]  ? syscall_return_slowpath+0x5e0/0x5e0
[  646.290208]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  646.295042]  ? trace_hardirqs_off+0x310/0x310
[  646.299541]  ? __bpf_trace_preemptirq_template+0x30/0x30
[  646.304980]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  646.310000]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  646.315566]  ? prepare_exit_to_usermode+0x291/0x3b0
[  646.320572]  ? page_fault+0x8/0x30
[  646.324121]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  646.328956]  ? page_fault+0x8/0x30
[  646.332488]  page_fault+0x1e/0x30
[  646.335927] RIP: 0033:0x40d5c8
[  646.339123] Code: 48 8b 05 f3 e8 2f 00 48 89 08 48 8b 15 f1 e8 2f 00 48 89 42 08 48 8b 05 d6 e8 2f 00 48 89 05 df e8 2f 00 49 8d 81 c0 02 00 00 <48> 89 05 81 2a 63 00 49 8b 89 c8 02 00 00 49 8b 91 c0 02 00 00 48
[  646.358011] RSP: 002b:00007fff9d17d958 EFLAGS: 00010246
[  646.363365] RAX: 0000000000ea7c00 RBX: 00007fff9d17d960 RCX: 000000000070bea0
[  646.370627] RDX: 000000000040d400 RSI: 000000000070be90 RDI: 0000000000ea7c20
[  646.377883] RBP: 00007fff9d17d9a0 R08: 0000000000000001 R09: 0000000000ea7940
[  646.385139] R10: 0000000000ea7c10 R11: 0000000000000202 R12: 0000000000000001
[  646.392411] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  646.401068] Memory limit reached of cgroup /syz1
[  646.405941] memory: usage 6832kB, limit 0kB, failcnt 341
[  646.411445] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  646.418240] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  646.424367] Memory cgroup stats for /syz1: cache:112KB rss:176KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:76KB inactive_file:4KB active_file:0KB unevictable:0KB
[  646.444532] Out of memory and no killable processes...
[  646.451390] syz-executor1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=-1000
[  646.462648] syz-executor1 cpuset=syz1 mems_allowed=0
[  646.467864] CPU: 0 PID: 29030 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  646.476348] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  646.485688] Call Trace:
[  646.488267]  dump_stack+0x1d3/0x2c4
[  646.491903]  ? dump_stack_print_info.cold.2+0x52/0x52
[  646.497135]  dump_header+0x27b/0xf72
[  646.500854]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  646.505787]  ? kasan_check_read+0x11/0x20
[  646.509934]  ? pagefault_out_of_memory+0x197/0x197
[  646.514862]  ? rcu_read_unlock+0x33/0x60
[  646.518919]  ? mem_cgroup_iter+0x514/0x1160
[  646.523237]  ? find_held_lock+0x36/0x1c0
[  646.527293]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  646.532042]  ? mark_held_locks+0xc7/0x130
[  646.536182]  ? _raw_spin_unlock_irq+0x27/0x80
[  646.540669]  ? _raw_spin_unlock_irq+0x27/0x80
[  646.545154]  ? lockdep_hardirqs_on+0x421/0x5c0
[  646.549727]  ? trace_hardirqs_on+0xbd/0x310
[  646.554035]  ? kasan_check_read+0x11/0x20
[  646.558187]  ? css_task_iter_end+0x222/0x490
[  646.562594]  ? trace_hardirqs_off_caller+0x300/0x300
[  646.567694]  ? kasan_check_write+0x14/0x20
[  646.571920]  ? do_raw_spin_lock+0xc1/0x200
[  646.576150]  ? _raw_spin_unlock_irq+0x60/0x80
[  646.580635]  ? css_task_iter_end+0x2ce/0x490
[  646.585038]  ? cgroup_procs_next+0x70/0x70
[  646.589269]  ? _raw_spin_unlock_irq+0x60/0x80
[  646.593755]  ? oom_badness+0xaa0/0xaa0
[  646.597652]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  646.602430]  ? mem_cgroup_iter_break+0x30/0x30
[  646.607017]  ? mark_held_locks+0xc7/0x130
[  646.611174]  out_of_memory.cold.30+0xf/0x184
[  646.615601]  ? lockdep_hardirqs_on+0x421/0x5c0
[  646.620201]  ? kasan_check_read+0x11/0x20
[  646.624341]  ? oom_killer_disable+0x3a0/0x3a0
[  646.628839]  ? kasan_check_write+0x14/0x20
[  646.633060]  ? do_raw_spin_lock+0xc1/0x200
[  646.637300]  mem_cgroup_out_of_memory+0x15e/0x210
[  646.642135]  ? memcg_memory_event+0x40/0x40
[  646.646443]  ? mem_cgroup_try_charge+0x5ea/0xe10
[  646.651190]  ? page_counter_try_charge+0x1c1/0x220
[  646.656132]  try_charge+0xb1a/0x1690
[  646.659843]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  646.665889]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  646.670722]  ? lock_downgrade+0x900/0x900
[  646.674876]  ? check_preemption_disabled+0x48/0x200
[  646.679908]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  646.684846]  ? kasan_check_read+0x11/0x20
[  646.688983]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  646.694248]  ? rcu_softirq_qs+0x20/0x20
[  646.698222]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  646.703054]  ? mod_memcg_state+0x230/0x230
[  646.707287]  ? __lock_is_held+0xb5/0x140
[  646.711364]  mem_cgroup_try_charge+0x5ea/0xe10
[  646.715951]  ? mem_cgroup_protected+0xa60/0xa60
[  646.720617]  ? print_usage_bug+0xc0/0xc0
[  646.724683]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  646.730209]  ? reuse_swap_page+0x4bd/0x1520
[  646.734522]  ? swp_swapcount+0x530/0x530
[  646.738591]  ? lock_downgrade+0x900/0x900
[  646.742866]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  646.748416]  mem_cgroup_try_charge_delay+0x1d/0xa0
[  646.753348]  wp_page_copy+0x492/0x18a0
[  646.757230]  ? pmd_pfn+0x1c0/0x1c0
[  646.760782]  ? find_held_lock+0x36/0x1c0
[  646.764852]  ? do_wp_page+0x76c/0x1690
[  646.768728]  ? lock_downgrade+0x900/0x900
[  646.772866]  ? kasan_check_write+0x14/0x20
[  646.777102]  ? kasan_check_read+0x11/0x20
[  646.781239]  ? do_raw_spin_unlock+0xa7/0x2f0
[  646.785637]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  646.790208]  ? __pte_alloc_kernel+0x220/0x220
[  646.794692]  ? __lock_acquire+0x7ec/0x4ec0
[  646.798927]  ? __lock_acquire+0x7ec/0x4ec0
[  646.803169]  do_wp_page+0x774/0x1690
[  646.806877]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  646.811535]  ? lock_downgrade+0x900/0x900
[  646.815681]  ? lock_release+0x970/0x970
[  646.819654]  ? kasan_check_read+0x11/0x20
[  646.823795]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  646.829330]  ? kasan_check_write+0x14/0x20
[  646.833555]  ? do_raw_spin_lock+0xc1/0x200
[  646.837782]  __handle_mm_fault+0x2c60/0x53e0
[  646.842178]  ? graph_lock+0x170/0x170
[  646.845984]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  646.850830]  ? graph_lock+0x170/0x170
[  646.854647]  ? print_usage_bug+0xc0/0xc0
[  646.858698]  ? graph_lock+0x170/0x170
[  646.862492]  ? graph_lock+0x170/0x170
[  646.866309]  ? handle_mm_fault+0x42a/0xc70
[  646.870550]  ? lock_downgrade+0x900/0x900
[  646.874709]  ? check_preemption_disabled+0x48/0x200
[  646.879731]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  646.884662]  ? kasan_check_read+0x11/0x20
[  646.888825]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  646.894109]  ? rcu_softirq_qs+0x20/0x20
[  646.898072]  ? trace_hardirqs_off_caller+0x300/0x300
[  646.903182]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  646.908715]  ? check_preemption_disabled+0x48/0x200
[  646.913723]  handle_mm_fault+0x54f/0xc70
[  646.917773]  ? __handle_mm_fault+0x53e0/0x53e0
[  646.922344]  ? find_vma+0x34/0x190
[  646.925876]  __do_page_fault+0x673/0xec0
[  646.929949]  ? mm_fault_error+0x380/0x380
[  646.934129]  ? trace_hardirqs_off+0xb8/0x310
[  646.938533]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  646.943901]  ? trace_hardirqs_on_caller+0x310/0x310
[  646.948921]  do_page_fault+0xed/0x7d1
[  646.952709]  ? vmalloc_sync_all+0x30/0x30
[  646.956854]  ? error_entry+0x70/0xd0
[  646.960559]  ? trace_hardirqs_off_caller+0xbb/0x300
[  646.965564]  ? trace_hardirqs_on_caller+0xc0/0x310
[  646.970524]  ? syscall_return_slowpath+0x5e0/0x5e0
[  646.975440]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  646.980274]  ? trace_hardirqs_off+0x310/0x310
[  646.984758]  ? __bpf_trace_preemptirq_template+0x30/0x30
[  646.990200]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  646.995211]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  647.000756]  ? prepare_exit_to_usermode+0x291/0x3b0
[  647.005775]  ? page_fault+0x8/0x30
[  647.009309]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  647.014142]  ? page_fault+0x8/0x30
[  647.017686]  page_fault+0x1e/0x30
[  647.021138] RIP: 0033:0x40d5f6
[  647.024319] Code: 2a 63 00 49 8b 89 c8 02 00 00 49 8b 91 c0 02 00 00 48 89 4a 08 49 8b 89 c8 02 00 00 48 89 11 48 c7 05 5a 2a 63 00 00 00 00 00 <48> c7 05 97 e8 2f 00 90 be 70 00 31 d2 48 c7 05 82 e8 2f 00 90 be
[  647.043212] RSP: 002b:00007fff9d17d958 EFLAGS: 00010246
[  647.048565] RAX: 0000000000ea7c00 RBX: 00007fff9d17d960 RCX: 0000000000a40040
[  647.055824] RDX: 0000000000a40040 RSI: 000000000070be90 RDI: 0000000000ea7c20
[  647.063088] RBP: 00007fff9d17d9a0 R08: 0000000000000001 R09: 0000000000ea7940
[  647.070352] R10: 0000000000ea7c10 R11: 0000000000000202 R12: 0000000000000001
[  647.077609] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  647.086024] Memory limit reached of cgroup /syz1
[  647.090891] memory: usage 6836kB, limit 0kB, failcnt 349
[  647.096346] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  647.103194] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  647.109382] Memory cgroup stats for /syz1: cache:112KB rss:176KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:80KB inactive_file:0KB active_file:4KB unevictable:0KB
[  647.129624] Out of memory and no killable processes...
23:57:02 executing program 1:
pipe(&(0x7f0000000040))
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000240)='./cgroup\x00', 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f0000000080)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r1, &(0x7f0000000000), 0x12)

23:57:02 executing program 0:
r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='.wlan0@(#*&uservmnet0$ppp0loself.&\x00'}, 0x10)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000080)={r0, &(0x7f0000000200)="549e56f345f059126029d5c5bb2b6904be04af62dde3063cf945717c3364d385fa557855e54b14e38d63d35f51c8c799fbd194989d9b42fe43ac18f2d23e79e5be954ac0ebf44214e687ed86f309aacfb91470227c1eccd5d37d6aef2648ad479c0e182ef350f88718c0be6381f263e4560b3ad80bf483aca9b7d593de3ee47c3ae1f08ac185805dde1ef2bf1575d9a57dbfb094d31153fdfb8b9962c8a2d29fda1bd6c3c10ddeca19c9fe93277dfc196f67275692b03ba5fd04358691b6e8ad3f3a7bcf7128070460f3822037"}, 0x10)
r1 = syz_open_dev$adsp(&(0x7f00000000c0)='/dev/adsp#\x00', 0x7, 0x0)
r2 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000180)='/dev/uinput\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_FPU(0xffffffffffffffff, 0x41a0ae8d, &(0x7f0000000100)={[], 0x7a, 0x5531fee, 0xffffffff, 0x0, 0x9, 0xf000, 0x1d000, [], 0x5})
r3 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000e73000/0x2000)=nil, 0x2000, 0x0, 0x8031, r3, 0x0)
r4 = openat$null(0xffffffffffffff9c, &(0x7f0000000980)='/dev/null\x00', 0x400, 0x0)
acct(&(0x7f0000000000)='./file0\x00')
getsockopt$EBT_SO_GET_INIT_ENTRIES(r4, 0x0, 0x83, &(0x7f0000000b00)={'filter\x00', 0x0, 0x4, 0xfb, [], 0x1, &(0x7f00000009c0)=[{}], &(0x7f0000000a00)=""/251}, &(0x7f0000000b80)=0x78)
remap_file_pages(&(0x7f00002ec000/0x200000)=nil, 0x200000, 0x0, 0x0, 0x0)
bpf$OBJ_PIN_PROG(0x6, &(0x7f00000006c0)={&(0x7f0000000680)='./file0\x00', r4}, 0x10)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/kvm\x00', 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_open_dev$dspn(&(0x7f0000000040)='/dev/dsp#\x00', 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000440)=[@text16={0x10, &(0x7f0000000400)="66b8010000000f01c1baf80c66b8f8a2e28366efbafc0c66b8dd52aa7966ef6436f2a40f30dbd07c800f2169650f019d64d90f214d0f01df", 0x38}], 0x1, 0x0, &(0x7f0000000200), 0x10000000000000e2)
write$RDMA_USER_CM_CMD_CREATE_ID(r7, &(0x7f0000000380)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000340), 0x13f, 0x1002}}, 0x20)
ioctl$KVM_REGISTER_COALESCED_MMIO(r6, 0x4010ae67, &(0x7f0000000080)={0x0, 0x10000})
getsockopt$IP_VS_SO_GET_VERSION(r4, 0x0, 0x480, &(0x7f00000007c0), &(0x7f0000000640)=0x40)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r4, 0x84, 0x1, &(0x7f0000000700)={0x0, 0x1, 0x5, 0x0, 0x80000001, 0x4}, &(0x7f0000000740)=0x14)
ioctl$KVM_RUN(r7, 0xae80, 0x0)
connect$can_bcm(0xffffffffffffffff, &(0x7f0000000200), 0x10)
ioctl$FICLONERANGE(r2, 0x4020940d, &(0x7f00000001c0)={r1})

23:57:02 executing program 5:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x12f}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xbc0, 0x0, 0x0)

23:57:02 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x206, 0x0, 0x0)

23:57:02 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x27b, 0x0, 0x0)

23:57:02 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='smaps_rollup\x00')
exit(0x0)
fcntl$getownex(r0, 0x10, &(0x7f0000000040))
getsockname$packet(r0, &(0x7f00000000c0)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000140)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000240)={&(0x7f0000000080), 0xc, &(0x7f0000000200)={&(0x7f0000000180)=@dellink={0x50, 0x11, 0x400, 0x70bd26, 0x25dfdbff, {0x0, 0x0, 0x0, r1, 0x10000, 0x800}, [@IFLA_BROADCAST={0xc, 0x2, @dev={[], 0x19}}, @IFLA_CARRIER_CHANGES={0x8, 0x23, 0x4}, @IFLA_WEIGHT={0x8, 0xf, 0x9}, @IFLA_IFNAME={0x14, 0x3, 'bcsf0\x00'}]}, 0x50}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
r2 = fcntl$getown(r0, 0x9)
ptrace$getregs(0xe, r2, 0x1000000000000f1, &(0x7f0000000300)=""/64)
read(r0, &(0x7f0000000000)=""/56, 0xfffffffffffffd12)

23:57:02 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x22, 0x0, 0x0)

23:57:02 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x117, 0x0, 0x0)

23:57:02 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xac, 0x0, 0x0)

23:57:02 executing program 5:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x27d}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xbc0, 0x0, 0x0)

23:57:02 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xf5, 0x0, 0x0)

23:57:02 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x21f, 0x0, 0x0)

[  698.148038] IPVS: stopping backup sync thread 8884 ...
[  698.154694] device bridge_slave_1 left promiscuous mode
[  698.161339] bridge0: port 2(bridge_slave_1) entered disabled state
[  698.228578] device bridge_slave_0 left promiscuous mode
[  698.234138] bridge0: port 1(bridge_slave_0) entered disabled state
[  702.376124] team0 (unregistering): Port device team_slave_1 removed
[  702.392119] team0 (unregistering): Port device team_slave_0 removed
[  702.406858] bond0 (unregistering): Releasing backup interface bond_slave_1
[  702.483589] bond0 (unregistering): Releasing backup interface bond_slave_0
[  702.610843] bond0 (unregistering): Released all slaves
23:58:02 executing program 1:
pipe(&(0x7f0000000040))
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000240)='./cgroup\x00', 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f0000000080)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r1, &(0x7f0000000000), 0x12)

23:58:02 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x1e2, 0x0, 0x0)

23:58:02 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x272, 0x0, 0x0)

23:58:02 executing program 5:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x171}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xbc0, 0x0, 0x0)

23:58:02 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='smaps_rollup\x00')
exit(0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$TCFLSH(r1, 0x5419, 0x70e000)
read(r0, &(0x7f0000000000)=""/56, 0x38)
epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, r0)

23:58:02 executing program 0:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
clone(0x820002102011ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000080), 0xffffffffffffffff)
r1 = getpid()
sched_setscheduler(r1, 0x5, &(0x7f0000000200))
setsockopt$inet_mreqn(r0, 0x0, 0x2a, &(0x7f0000000380)={@broadcast, @remote}, 0xc)

23:58:02 executing program 0:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
clone(0x820002102011ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000040), 0xffffffffffffffff)
getpid()
sched_setscheduler(0x0, 0x5, &(0x7f0000000200))
getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f0000000a00)={0x0, @in6={{0xa, 0x0, 0x6, @mcast2}}, 0x601b, 0x8}, &(0x7f0000000ac0)=0x90)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000100)={{{@in6=@remote, @in6=@dev}}, {{@in6=@mcast2}, 0x0, @in6=@mcast2}}, &(0x7f0000000240)=0xe8)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000480)={{{@in=@multicast2, @in6=@mcast2}}, {{@in6=@mcast1}, 0x0, @in6=@ipv4={[], [], @broadcast}}}, &(0x7f0000000580)=0xe8)
getegid()
lsetxattr$system_posix_acl(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='system.posix_acl_default\x00', &(0x7f0000000940)={{}, {}, [{}, {}]}, 0x34, 0x3)

23:58:02 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x27a, 0x0, 0x0)

23:58:02 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x44, 0x0, 0x0)

23:58:02 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000040), 0x40)

23:58:02 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x86, 0x0, 0x0)

23:58:02 executing program 0:
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000640), 0xffffffffffffffff)
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000200))
perf_event_open$cgroup(&(0x7f00000000c0)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x5, 0x0, 0x3ff, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x10, 0xffffffffffffffff, 0x0)

[  709.963840] IPVS: ftp: loaded support on port[0] = 21
[  710.027994] device bridge_slave_1 left promiscuous mode
[  710.033553] bridge0: port 2(bridge_slave_1) entered disabled state
[  710.088277] device bridge_slave_0 left promiscuous mode
[  710.093735] bridge0: port 1(bridge_slave_0) entered disabled state
[  712.304029] team0 (unregistering): Port device team_slave_1 removed
[  712.313863] team0 (unregistering): Port device team_slave_0 removed
[  712.324527] bond0 (unregistering): Releasing backup interface bond_slave_1
[  712.361754] bond0 (unregistering): Releasing backup interface bond_slave_0
[  712.431889] bond0 (unregistering): Released all slaves
[  713.029248] bridge0: port 1(bridge_slave_0) entered blocking state
[  713.035731] bridge0: port 1(bridge_slave_0) entered disabled state
[  713.044036] device bridge_slave_0 entered promiscuous mode
[  713.091347] bridge0: port 2(bridge_slave_1) entered blocking state
[  713.097905] bridge0: port 2(bridge_slave_1) entered disabled state
[  713.105332] device bridge_slave_1 entered promiscuous mode
[  713.153550] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[  713.199110] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[  713.341206] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  713.390089] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  713.614894] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[  713.622480] team0: Port device team_slave_0 added
[  713.667762] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[  713.675228] team0: Port device team_slave_1 added
[  713.722249] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  713.761505] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  713.793673] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[  713.801087] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  713.810799] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  713.847034] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  713.854867] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  713.866841] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  714.239724] bridge0: port 2(bridge_slave_1) entered blocking state
[  714.246096] bridge0: port 2(bridge_slave_1) entered forwarding state
[  714.252920] bridge0: port 1(bridge_slave_0) entered blocking state
[  714.259308] bridge0: port 1(bridge_slave_0) entered forwarding state
[  714.268337] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[  714.507663] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  715.203433] 8021q: adding VLAN 0 to HW filter on device bond0
[  715.295661] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  715.388706] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  715.394854] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  715.402895] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  715.491655] 8021q: adding VLAN 0 to HW filter on device team0
[  716.021112] syz-executor1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=0
[  716.032157] syz-executor1 cpuset=syz1 mems_allowed=0
[  716.037299] CPU: 1 PID: 29390 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  716.045776] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  716.055137] Call Trace:
[  716.057741]  dump_stack+0x1d3/0x2c4
[  716.061381]  ? dump_stack_print_info.cold.2+0x52/0x52
[  716.066591]  dump_header+0x27b/0xf72
[  716.070529]  ? mark_held_locks+0x130/0x130
[  716.074774]  ? pagefault_out_of_memory+0x197/0x197
[  716.079708]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  716.085253]  ? check_preemption_disabled+0x48/0x200
[  716.090299]  ? graph_lock+0x170/0x170
[  716.094136]  ? graph_lock+0x170/0x170
[  716.097949]  ? print_usage_bug+0xc0/0xc0
[  716.102030]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  716.107582]  ? find_held_lock+0x36/0x1c0
[  716.111664]  ? mark_held_locks+0xc7/0x130
[  716.115832]  ? _raw_spin_unlock_irqrestore+0x82/0xd0
[  716.120946]  ? _raw_spin_unlock_irqrestore+0x82/0xd0
[  716.126054]  ? lockdep_hardirqs_on+0x421/0x5c0
[  716.130650]  ? trace_hardirqs_on+0xbd/0x310
[  716.134982]  ? kasan_check_read+0x11/0x20
[  716.139146]  ? ___ratelimit+0x36f/0x655
[  716.143143]  ? trace_hardirqs_off_caller+0x300/0x300
[  716.148260]  ? trace_hardirqs_on_caller+0x310/0x310
[  716.153287]  ? lock_downgrade+0x900/0x900
[  716.157451]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  716.162565]  ? ___ratelimit+0xaa/0x655
[  716.166460]  ? idr_get_free+0xea0/0xea0
[  716.170442]  ? kasan_check_write+0x14/0x20
[  716.174681]  ? do_raw_spin_lock+0xc1/0x200
[  716.178953]  oom_kill_process.cold.27+0x10/0x903
[  716.183723]  ? kasan_check_write+0x14/0x20
[  716.187963]  ? do_raw_spin_lock+0xc1/0x200
[  716.192214]  ? oom_evaluate_task+0x540/0x540
[  716.196639]  ? cgroup_procs_next+0x70/0x70
[  716.200887]  ? _raw_spin_unlock_irq+0x60/0x80
[  716.205388]  ? oom_badness+0xaa0/0xaa0
[  716.209289]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  716.214055]  ? mem_cgroup_iter_break+0x30/0x30
[  716.218664]  ? mark_held_locks+0xc7/0x130
[  716.222821]  out_of_memory+0xa7f/0x1430
[  716.226800]  ? lockdep_hardirqs_on+0x421/0x5c0
[  716.231388]  ? preempt_schedule+0x4d/0x60
[  716.235552]  ? oom_killer_disable+0x3a0/0x3a0
[  716.240047]  ? preempt_schedule+0x4d/0x60
[  716.244200]  ? ___preempt_schedule+0x16/0x18
[  716.248641]  mem_cgroup_out_of_memory+0x15e/0x210
[  716.253492]  ? memcg_memory_event+0x40/0x40
[  716.257815]  ? page_counter_memparse+0xb5/0x1d0
[  716.262505]  memory_max_write+0x1b4/0x3f0
[  716.266667]  ? lock_acquire+0x1ed/0x520
[  716.270651]  ? kernfs_fop_write+0x227/0x480
[  716.274988]  ? mem_cgroup_write+0x400/0x400
[  716.279319]  ? __might_fault+0x12b/0x1e0
[  716.283392]  ? graph_lock+0x170/0x170
[  716.287202]  ? mem_cgroup_write+0x400/0x400
[  716.291533]  cgroup_file_write+0x2f7/0x7e0
[  716.295989]  ? cgroup_migrate_add_task+0xcd0/0xcd0
[  716.300925]  ? __lock_is_held+0xb5/0x140
[  716.305005]  ? cgroup_migrate_add_task+0xcd0/0xcd0
[  716.309939]  kernfs_fop_write+0x2ba/0x480
[  716.314110]  __vfs_write+0x119/0x9f0
[  716.317838]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  716.323378]  ? kernfs_fop_open+0xf80/0xf80
[  716.327627]  ? kernel_read+0x120/0x120
[  716.331526]  ? __lock_is_held+0xb5/0x140
[  716.335606]  ? rcu_read_lock_sched_held+0x108/0x120
[  716.340649]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  716.346207]  ? __sb_start_write+0x1b2/0x370
[  716.350550]  vfs_write+0x1fc/0x560
[  716.354131]  ksys_write+0x101/0x260
[  716.357785]  ? __ia32_sys_read+0xb0/0xb0
[  716.361863]  ? trace_hardirqs_off_caller+0x300/0x300
[  716.366986]  __x64_sys_write+0x73/0xb0
[  716.370887]  do_syscall_64+0x1b9/0x820
[  716.374797]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  716.380175]  ? syscall_return_slowpath+0x5e0/0x5e0
[  716.385124]  ? trace_hardirqs_off+0x310/0x310
[  716.389638]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  716.394662]  ? recalc_sigpending_tsk+0x180/0x180
[  716.399426]  ? kasan_check_write+0x14/0x20
[  716.403683]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  716.408548]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  716.413749] RIP: 0033:0x457679
[  716.416951] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  716.435875] RSP: 002b:00007efe20630c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  716.443605] RAX: ffffffffffffffda RBX: 00007efe206316d4 RCX: 0000000000457679
[  716.450897] RDX: 0000000000000012 RSI: 0000000020000000 RDI: 0000000000000006
[  716.458179] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  716.465464] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  716.472759] R13: 00000000004d8bf8 R14: 00000000004c5543 R15: 0000000000000000
[  716.486463] Task in /syz1 killed as a result of limit of /syz1
[  716.492660] memory: usage 8468kB, limit 0kB, failcnt 254964
[  716.499054] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  716.505801] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  716.512110] Memory cgroup stats for /syz1: cache:112KB rss:2060KB rss_huge:2048KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:2164KB inactive_file:8KB active_file:0KB unevictable:0KB
[  716.532963] Memory cgroup out of memory: Kill process 29389 (syz-executor1) score 8759000 or sacrifice child
[  716.543263] Killed process 29389 (syz-executor1) total-vm:70344kB, anon-rss:2140kB, file-rss:32768kB, shmem-rss:0kB
[  716.555130] oom_reaper: reaped process 29389 (syz-executor1), now anon-rss:0kB, file-rss:32788kB, shmem-rss:0kB
23:58:11 executing program 1:
perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/raw\x00')
pread64(r0, &(0x7f00000001c0)=""/208, 0x9b, 0x0)

23:58:11 executing program 0:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
clone(0x820002102011ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000080), 0xffffffffffffffff)
r1 = getpid()
sched_setscheduler(r1, 0x5, &(0x7f0000000200))
open_by_handle_at(r0, &(0x7f00000000c0)={0x8}, 0x0)

23:58:11 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x29e, 0x0, 0x0)

23:58:11 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='smaps_rollup\x00')
exit(0x0)
io_setup(0x0, &(0x7f0000000040)=<r1=>0x0)
io_cancel(r1, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x3, 0xe1b, r0, &(0x7f0000000080)="f0ae371f6f25b28850272a802a0882e261a8ba405ce75ec9f85c6c56c6b145dcc0eedae8ff626514eea2f3db908244d40c0392a3", 0x34, 0x2, 0x0, 0x3, r0}, &(0x7f0000000140))
socket$inet6_udp(0xa, 0x2, 0x0)
read(r0, &(0x7f0000000000)=""/56, 0x38)

23:58:11 executing program 5:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x23e}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xbc0, 0x0, 0x0)

23:58:11 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x1de, 0x0, 0x0)

[  716.575212] syz-executor1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=-1000
[  716.612964] syz-executor1 cpuset=syz1 mems_allowed=0
23:58:11 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x2c3, 0x0, 0x0)

[  716.619070] CPU: 1 PID: 29135 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  716.627593] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  716.636962] Call Trace:
[  716.639570]  dump_stack+0x1d3/0x2c4
[  716.643221]  ? dump_stack_print_info.cold.2+0x52/0x52
[  716.648442]  dump_header+0x27b/0xf72
[  716.652173]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  716.657124]  ? kasan_check_read+0x11/0x20
[  716.661297]  ? pagefault_out_of_memory+0x197/0x197
[  716.666254]  ? rcu_read_unlock+0x33/0x60
[  716.670324]  ? mem_cgroup_iter+0x514/0x1160
[  716.674671]  ? find_held_lock+0x36/0x1c0
[  716.678759]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  716.683536]  ? mark_held_locks+0xc7/0x130
[  716.687705]  ? _raw_spin_unlock_irq+0x27/0x80
[  716.692217]  ? _raw_spin_unlock_irq+0x27/0x80
[  716.696729]  ? lockdep_hardirqs_on+0x421/0x5c0
[  716.701335]  ? trace_hardirqs_on+0xbd/0x310
[  716.705676]  ? kasan_check_read+0x11/0x20
[  716.709838]  ? css_task_iter_end+0x222/0x490
[  716.714271]  ? trace_hardirqs_off_caller+0x300/0x300
[  716.719397]  ? kasan_check_write+0x14/0x20
23:58:11 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x9c, 0x0, 0x0)

[  716.723651]  ? do_raw_spin_lock+0xc1/0x200
[  716.727913]  ? _raw_spin_unlock_irq+0x60/0x80
[  716.732420]  ? css_task_iter_end+0x2ce/0x490
[  716.736847]  ? cgroup_procs_next+0x70/0x70
[  716.741449]  ? _raw_spin_unlock_irq+0x60/0x80
[  716.745962]  ? oom_badness+0xaa0/0xaa0
[  716.749874]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  716.754654]  ? mem_cgroup_iter_break+0x30/0x30
[  716.759263]  ? mark_held_locks+0xc7/0x130
[  716.763432]  out_of_memory.cold.30+0xf/0x184
[  716.767852]  ? lockdep_hardirqs_on+0x421/0x5c0
23:58:11 executing program 0:
r0 = socket$packet(0x11, 0x1000000003, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f000095bffc)={0x0, 0x0, 0xfffffffffffffff9}, 0x4)

[  716.772451]  ? kasan_check_read+0x11/0x20
[  716.776627]  ? oom_killer_disable+0x3a0/0x3a0
[  716.781148]  ? kasan_check_write+0x14/0x20
[  716.785404]  ? do_raw_spin_lock+0xc1/0x200
[  716.789677]  mem_cgroup_out_of_memory+0x15e/0x210
[  716.794539]  ? memcg_memory_event+0x40/0x40
[  716.798880]  ? mem_cgroup_try_charge+0x5ea/0xe10
[  716.803664]  ? page_counter_try_charge+0x1c1/0x220
[  716.808620]  try_charge+0xb1a/0x1690
[  716.812369]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  716.818439]  ? get_mem_cgroup_from_mm+0x229/0x4a0
23:58:11 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x1ec, 0x0, 0x0)

[  716.823296]  ? lock_downgrade+0x900/0x900
[  716.827457]  ? check_preemption_disabled+0x48/0x200
[  716.832486]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  716.837419]  ? kasan_check_read+0x11/0x20
[  716.837435]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  716.837451]  ? rcu_softirq_qs+0x20/0x20
[  716.837482]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  716.837503]  ? mod_memcg_state+0x230/0x230
[  716.837522]  ? __lock_is_held+0xb5/0x140
[  716.837552]  mem_cgroup_try_charge+0x5ea/0xe10
[  716.837567]  ? mark_held_locks+0x130/0x130
[  716.837590]  ? mem_cgroup_protected+0xa60/0xa60
[  716.837608]  ? print_usage_bug+0xc0/0xc0
[  716.837641]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  716.837658]  ? reuse_swap_page+0x4bd/0x1520
[  716.837678]  ? swp_swapcount+0x530/0x530
[  716.837710]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  716.837740]  mem_cgroup_try_charge_delay+0x1d/0xa0
[  716.855975]  wp_page_copy+0x492/0x18a0
[  716.856001]  ? lock_downgrade+0x900/0x900
[  716.856025]  ? check_preemption_disabled+0x48/0x200
[  716.877807]  ? pmd_pfn+0x1c0/0x1c0
[  716.877829]  ? lock_downgrade+0x900/0x900
[  716.877846]  ? check_preemption_disabled+0x48/0x200
[  716.877869]  ? find_held_lock+0x36/0x1c0
[  716.877891]  ? do_wp_page+0x76c/0x1690
[  716.887483]  ? lock_downgrade+0x900/0x900
[  716.887504]  ? kasan_check_write+0x14/0x20
[  716.887523]  ? kasan_check_read+0x11/0x20
[  716.887538]  ? do_raw_spin_unlock+0xa7/0x2f0
[  716.887552]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  716.887565]  ? __pte_alloc_kernel+0x220/0x220
[  716.887586]  ? __lock_acquire+0x7ec/0x4ec0
[  716.901485]  ? __lock_acquire+0x7ec/0x4ec0
[  716.901509]  do_wp_page+0x774/0x1690
[  716.901530]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  716.982952]  ? lock_release+0x970/0x970
[  716.986949]  ? rcu_softirq_qs+0x20/0x20
[  716.990951]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  716.996508]  ? kasan_check_write+0x14/0x20
[  717.000764]  ? do_raw_spin_lock+0xc1/0x200
[  717.005022]  __handle_mm_fault+0x2c60/0x53e0
[  717.009454]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  717.014315]  ? graph_lock+0x170/0x170
[  717.018144]  ? print_usage_bug+0xc0/0xc0
[  717.022229]  ? __might_fault+0x12b/0x1e0
[  717.026314]  ? graph_lock+0x170/0x170
[  717.030145]  ? graph_lock+0x170/0x170
[  717.033978]  ? handle_mm_fault+0x42a/0xc70
[  717.038230]  ? lock_downgrade+0x900/0x900
[  717.042397]  ? check_preemption_disabled+0x48/0x200
[  717.047430]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  717.052371]  ? kasan_check_read+0x11/0x20
[  717.056533]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  717.061827]  ? rcu_softirq_qs+0x20/0x20
[  717.061845]  ? trace_hardirqs_off_caller+0x300/0x300
[  717.061875]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  717.070948]  ? check_preemption_disabled+0x48/0x200
[  717.070973]  handle_mm_fault+0x54f/0xc70
[  717.070993]  ? __handle_mm_fault+0x53e0/0x53e0
[  717.071013]  ? find_vma+0x34/0x190
[  717.071035]  __do_page_fault+0x673/0xec0
[  717.071053]  ? __do_sys_newfstatat+0x110/0x110
[  717.071077]  ? mm_fault_error+0x380/0x380
[  717.071109]  ? trace_hardirqs_off+0xb8/0x310
[  717.111034]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  717.116420]  ? trace_hardirqs_on_caller+0x310/0x310
[  717.121463]  do_page_fault+0xed/0x7d1
[  717.125283]  ? vmalloc_sync_all+0x30/0x30
[  717.129447]  ? error_entry+0x70/0xd0
[  717.133187]  ? trace_hardirqs_off_caller+0xbb/0x300
[  717.138223]  ? trace_hardirqs_on_caller+0xc0/0x310
[  717.143183]  ? syscall_return_slowpath+0x5e0/0x5e0
[  717.148124]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  717.152961]  ? trace_hardirqs_off+0x310/0x310
[  717.157459]  ? __bpf_trace_preemptirq_template+0x30/0x30
[  717.162908]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  717.167933]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  717.173462]  ? prepare_exit_to_usermode+0x291/0x3b0
[  717.178471]  ? page_fault+0x8/0x30
[  717.182002]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  717.186836]  ? page_fault+0x8/0x30
[  717.190367]  page_fault+0x1e/0x30
[  717.193810] RIP: 0033:0x42ea16
[  717.196995] Code: 1f 44 00 00 48 29 e8 31 c9 48 81 fb 40 c6 70 00 0f 95 c1 48 8d 34 2a 48 83 cd 01 48 c1 e1 02 48 83 c8 01 48 09 e9 48 89 73 58 <48> 89 4a 08 48 89 46 08 48 8d 4a 10 8b 05 4c 62 61 00 85 c0 0f 84
[  717.215892] RSP: 002b:00007ffdef61a040 EFLAGS: 00010206
[  717.221253] RAX: 0000000000019691 RBX: 000000000070c640 RCX: 0000000000008041
23:58:11 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x251, 0x0, 0x0)

23:58:11 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x28, 0x0, 0x0)

[  717.228511] RDX: 00000000021dd930 RSI: 00000000021e5970 RDI: 0000000000000003
[  717.235774] RBP: 0000000000008041 R08: 0000000000000001 R09: 00000000021dc940
[  717.243136] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000070c698
[  717.250402] R13: 000000000070c698 R14: 0000000000000000 R15: 0000000000002710
[  717.269887] Memory limit reached of cgroup /syz1
[  717.275301] memory: usage 6144kB, limit 0kB, failcnt 254972
[  717.281262] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  717.293191] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  717.306374] Memory cgroup stats for /syz1: cache:112KB rss:0KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:36KB inactive_file:0KB active_file:8KB unevictable:0KB
[  717.336536] Out of memory and no killable processes...
[  717.345042] syz-executor1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=-1000
[  717.356964] syz-executor1 cpuset=syz1 mems_allowed=0
[  717.362353] CPU: 0 PID: 29135 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  717.370850] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  717.380188] Call Trace:
[  717.382778]  dump_stack+0x1d3/0x2c4
[  717.386413]  ? dump_stack_print_info.cold.2+0x52/0x52
[  717.391603]  dump_header+0x27b/0xf72
[  717.395314]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  717.400234]  ? kasan_check_read+0x11/0x20
[  717.404659]  ? pagefault_out_of_memory+0x197/0x197
[  717.409600]  ? rcu_read_unlock+0x33/0x60
[  717.413682]  ? mem_cgroup_iter+0x514/0x1160
[  717.418030]  ? find_held_lock+0x36/0x1c0
[  717.422125]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  717.426895]  ? mark_held_locks+0xc7/0x130
[  717.431061]  ? _raw_spin_unlock_irq+0x27/0x80
[  717.435577]  ? _raw_spin_unlock_irq+0x27/0x80
[  717.440080]  ? lockdep_hardirqs_on+0x421/0x5c0
[  717.440111]  ? trace_hardirqs_on+0xbd/0x310
[  717.440133]  ? kasan_check_read+0x11/0x20
[  717.440147]  ? css_task_iter_end+0x222/0x490
[  717.440169]  ? trace_hardirqs_off_caller+0x300/0x300
[  717.462737]  ? kasan_check_write+0x14/0x20
[  717.466996]  ? do_raw_spin_lock+0xc1/0x200
[  717.471281]  ? _raw_spin_unlock_irq+0x60/0x80
[  717.475786]  ? css_task_iter_end+0x2ce/0x490
[  717.480189]  ? cgroup_procs_next+0x70/0x70
[  717.484418]  ? _raw_spin_unlock_irq+0x60/0x80
[  717.488905]  ? oom_badness+0xaa0/0xaa0
[  717.492784]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  717.497536]  ? mem_cgroup_iter_break+0x30/0x30
[  717.502125]  ? mark_held_locks+0xc7/0x130
[  717.506263]  out_of_memory.cold.30+0xf/0x184
[  717.510679]  ? lockdep_hardirqs_on+0x421/0x5c0
[  717.515254]  ? kasan_check_read+0x11/0x20
[  717.519405]  ? oom_killer_disable+0x3a0/0x3a0
[  717.523888]  ? kasan_check_write+0x14/0x20
[  717.528143]  ? do_raw_spin_lock+0xc1/0x200
[  717.532376]  mem_cgroup_out_of_memory+0x15e/0x210
[  717.537222]  ? memcg_memory_event+0x40/0x40
[  717.541534]  ? mem_cgroup_try_charge+0x5ea/0xe10
[  717.546279]  ? page_counter_try_charge+0x1c1/0x220
[  717.551200]  try_charge+0xb1a/0x1690
[  717.554907]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  717.560974]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  717.565818]  ? lock_downgrade+0x900/0x900
[  717.569966]  ? check_preemption_disabled+0x48/0x200
[  717.575011]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  717.579946]  ? kasan_check_read+0x11/0x20
[  717.584131]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  717.589410]  ? rcu_softirq_qs+0x20/0x20
[  717.593397]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  717.598242]  ? mod_memcg_state+0x230/0x230
[  717.602472]  ? __lock_is_held+0xb5/0x140
[  717.606535]  mem_cgroup_try_charge+0x5ea/0xe10
[  717.611125]  ? mem_cgroup_protected+0xa60/0xa60
[  717.615789]  ? __lock_acquire+0x7ec/0x4ec0
[  717.620030]  ? mark_held_locks+0x130/0x130
[  717.624260]  ? lock_release+0x970/0x970
[  717.628222]  ? rcu_softirq_qs+0x20/0x20
[  717.632189]  ? pmd_val+0x88/0x100
[  717.635635]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  717.641175]  mem_cgroup_try_charge_delay+0x1d/0xa0
[  717.646107]  __handle_mm_fault+0x273a/0x53e0
[  717.650538]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  717.655378]  ? graph_lock+0x170/0x170
[  717.659180]  ? print_usage_bug+0xc0/0xc0
[  717.663234]  ? __might_fault+0x12b/0x1e0
[  717.667302]  ? graph_lock+0x170/0x170
[  717.671094]  ? graph_lock+0x170/0x170
[  717.674914]  ? handle_mm_fault+0x42a/0xc70
[  717.679163]  ? lock_downgrade+0x900/0x900
[  717.683310]  ? check_preemption_disabled+0x48/0x200
[  717.688325]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  717.693252]  ? kasan_check_read+0x11/0x20
[  717.697404]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  717.702689]  ? rcu_softirq_qs+0x20/0x20
[  717.706658]  ? trace_hardirqs_off_caller+0x300/0x300
[  717.711769]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  717.717307]  ? check_preemption_disabled+0x48/0x200
[  717.722315]  handle_mm_fault+0x54f/0xc70
[  717.726367]  ? __handle_mm_fault+0x53e0/0x53e0
[  717.730940]  ? find_vma+0x34/0x190
[  717.734471]  __do_page_fault+0x673/0xec0
[  717.738521]  ? __do_sys_newfstatat+0x110/0x110
[  717.743093]  ? mm_fault_error+0x380/0x380
[  717.747269]  ? trace_hardirqs_off+0xb8/0x310
[  717.751719]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  717.757080]  ? trace_hardirqs_on_caller+0x310/0x310
[  717.762116]  do_page_fault+0xed/0x7d1
[  717.765912]  ? vmalloc_sync_all+0x30/0x30
[  717.770056]  ? error_entry+0x70/0xd0
[  717.773761]  ? trace_hardirqs_off_caller+0xbb/0x300
[  717.778771]  ? trace_hardirqs_on_caller+0xc0/0x310
[  717.783690]  ? syscall_return_slowpath+0x5e0/0x5e0
[  717.788609]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  717.793444]  ? trace_hardirqs_off+0x310/0x310
[  717.797929]  ? __bpf_trace_preemptirq_template+0x30/0x30
[  717.803373]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  717.808403]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  717.813938]  ? prepare_exit_to_usermode+0x291/0x3b0
[  717.818950]  ? page_fault+0x8/0x30
[  717.822522]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  717.827365]  ? page_fault+0x8/0x30
[  717.830939]  page_fault+0x1e/0x30
[  717.834379] RIP: 0033:0x42ea1a
[  717.837560] Code: 48 29 e8 31 c9 48 81 fb 40 c6 70 00 0f 95 c1 48 8d 34 2a 48 83 cd 01 48 c1 e1 02 48 83 c8 01 48 09 e9 48 89 73 58 48 89 4a 08 <48> 89 46 08 48 8d 4a 10 8b 05 4c 62 61 00 85 c0 0f 84 3a f7 ff ff
[  717.856540] RSP: 002b:00007ffdef61a040 EFLAGS: 00010206
[  717.861894] RAX: 0000000000019691 RBX: 000000000070c640 RCX: 0000000000008041
[  717.869150] RDX: 00000000021dd930 RSI: 00000000021e5970 RDI: 0000000000000003
[  717.876405] RBP: 0000000000008041 R08: 0000000000000001 R09: 00000000021dc940
[  717.883663] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000070c698
[  717.890927] R13: 000000000070c698 R14: 0000000000000000 R15: 0000000000002710
[  717.901532] Memory limit reached of cgroup /syz1
[  717.906558] memory: usage 5980kB, limit 0kB, failcnt 254980
[  717.912500] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  717.919540] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  717.925692] Memory cgroup stats for /syz1: cache:112KB rss:0KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:40KB inactive_file:4KB active_file:4KB unevictable:0KB
[  717.945759] Out of memory and no killable processes...
[  717.955680] syz-executor1 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=1, oom_score_adj=-1000
[  717.969364] syz-executor1 cpuset=syz1 mems_allowed=0
[  717.974513] CPU: 0 PID: 29135 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  717.982988] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  717.992331] Call Trace:
[  717.994909]  dump_stack+0x1d3/0x2c4
[  717.998531]  ? dump_stack_print_info.cold.2+0x52/0x52
[  718.003717]  dump_header+0x27b/0xf72
[  718.007427]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  718.012346]  ? kasan_check_read+0x11/0x20
[  718.016487]  ? pagefault_out_of_memory+0x197/0x197
[  718.021409]  ? rcu_read_unlock+0x33/0x60
[  718.025456]  ? mem_cgroup_iter+0x514/0x1160
[  718.029769]  ? find_held_lock+0x36/0x1c0
[  718.033822]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  718.038566]  ? mark_held_locks+0xc7/0x130
[  718.042702]  ? _raw_spin_unlock_irq+0x27/0x80
[  718.047181]  ? _raw_spin_unlock_irq+0x27/0x80
[  718.051667]  ? lockdep_hardirqs_on+0x421/0x5c0
[  718.056239]  ? trace_hardirqs_on+0xbd/0x310
[  718.060548]  ? kasan_check_read+0x11/0x20
[  718.064679]  ? css_task_iter_end+0x222/0x490
[  718.069081]  ? trace_hardirqs_off_caller+0x300/0x300
[  718.074193]  ? kasan_check_write+0x14/0x20
[  718.078414]  ? do_raw_spin_lock+0xc1/0x200
[  718.082639]  ? _raw_spin_unlock_irq+0x60/0x80
[  718.087130]  ? css_task_iter_end+0x2ce/0x490
[  718.091543]  ? cgroup_procs_next+0x70/0x70
[  718.095770]  ? _raw_spin_unlock_irq+0x60/0x80
[  718.100254]  ? oom_badness+0xaa0/0xaa0
[  718.104139]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  718.108909]  ? mem_cgroup_iter_break+0x30/0x30
[  718.113487]  ? cgroup_file_notify+0x226/0x2f0
[  718.117975]  out_of_memory.cold.30+0xf/0x184
[  718.122375]  ? lockdep_hardirqs_on+0x421/0x5c0
[  718.126947]  ? kasan_check_read+0x11/0x20
[  718.131091]  ? oom_killer_disable+0x3a0/0x3a0
[  718.135589]  ? kasan_check_write+0x14/0x20
[  718.139812]  ? do_raw_spin_lock+0xc1/0x200
[  718.144040]  mem_cgroup_out_of_memory+0x15e/0x210
[  718.148871]  ? memcg_memory_event+0x40/0x40
[  718.153197]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  718.158030]  ? page_counter_try_charge+0x1c1/0x220
[  718.162950]  try_charge+0xb1a/0x1690
[  718.166655]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  718.172702]  ? rcu_pm_notify+0xc0/0xc0
[  718.176583]  ? rcu_read_lock_sched_held+0x108/0x120
[  718.181588]  ? __alloc_pages_nodemask+0xbf1/0xdd0
[  718.186419]  ? graph_lock+0x170/0x170
[  718.190210]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  718.195212]  ? graph_lock+0x170/0x170
[  718.199011]  ? find_held_lock+0x36/0x1c0
[  718.203063]  ? cache_grow_begin+0x5a4/0x8c0
[  718.207389]  memcg_kmem_charge_memcg+0x7c/0x120
[  718.212055]  ? memcg_kmem_put_cache+0xb0/0xb0
[  718.216542]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  718.222087]  cache_grow_begin+0x26c/0x8c0
[  718.226247]  ? do_raw_spin_unlock+0xa7/0x2f0
[  718.230649]  fallback_alloc+0x204/0x2e0
[  718.234634]  ____cache_alloc_node+0x1c7/0x1e0
[  718.239130]  kmem_cache_alloc+0x1f8/0x730
[  718.243273]  sk_prot_alloc+0x69/0x2e0
[  718.247067]  sk_alloc+0x10d/0x1690
[  718.250598]  ? kasan_kmalloc+0xc7/0xe0
[  718.254478]  ? sock_def_readable+0x710/0x710
[  718.258878]  ? graph_lock+0x170/0x170
[  718.262666]  ? do_raw_write_unlock.cold.8+0x49/0x49
[  718.267672]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[  718.272674]  ? graph_lock+0x170/0x170
[  718.276465]  ? __put_user_ns+0x60/0x60
[  718.280341]  ? find_held_lock+0x36/0x1c0
[  718.284391]  ? inet_create+0x48b/0x1070
[  718.288354]  ? lock_downgrade+0x900/0x900
[  718.292487]  ? check_preemption_disabled+0x48/0x200
[  718.297725]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  718.302642]  ? kasan_check_read+0x11/0x20
[  718.306776]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  718.312039]  ? rcu_softirq_qs+0x20/0x20
[  718.316025]  ? find_held_lock+0x36/0x1c0
[  718.320084]  inet_create+0x509/0x1070
[  718.323888]  ? inet_accept+0x9d0/0x9d0
[  718.327764]  ? kasan_check_read+0x11/0x20
[  718.331897]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  718.337160]  ? rcu_softirq_qs+0x20/0x20
[  718.341140]  __sock_create+0x536/0x930
[  718.345020]  ? kernel_sock_ip_overhead+0x570/0x570
[  718.349941]  ? trace_hardirqs_off+0xb8/0x310
[  718.354337]  ? do_syscall_64+0x6be/0x820
[  718.358388]  ? trace_hardirqs_on_caller+0x310/0x310
[  718.363401]  __sys_socket+0x106/0x260
[  718.367202]  ? lockdep_hardirqs_on+0x421/0x5c0
[  718.371774]  ? move_addr_to_kernel+0x70/0x70
[  718.376170]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  718.381523]  ? trace_hardirqs_off_caller+0x300/0x300
[  718.386618]  __x64_sys_socket+0x73/0xb0
[  718.390587]  do_syscall_64+0x1b9/0x820
[  718.394477]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  718.399833]  ? syscall_return_slowpath+0x5e0/0x5e0
[  718.404769]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  718.409610]  ? trace_hardirqs_off+0x310/0x310
[  718.414123]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  718.419183]  ? prepare_exit_to_usermode+0x291/0x3b0
[  718.424209]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  718.429070]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  718.434267] RIP: 0033:0x45a1e7
[  718.437458] Code: 00 00 00 49 89 ca b8 36 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 9a 88 fb ff c3 66 0f 1f 84 00 00 00 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7d 88 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  718.456372] RSP: 002b:00007ffdef61abe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  718.464081] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 000000000045a1e7
[  718.471357] RDX: 0000000000000006 RSI: 0000000000000001 RDI: 0000000000000002
[  718.478625] RBP: 00000000ffffffff R08: 0000000000000000 R09: 000000000000000a
[  718.485935] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003
[  718.493215] R13: 00000000000aecd6 R14: 0000000000000001 R15: badc0ffeebadface
[  718.501919] Memory limit reached of cgroup /syz1
[  718.506757] memory: usage 5976kB, limit 0kB, failcnt 254992
[  718.512621] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  718.519509] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  718.525663] Memory cgroup stats for /syz1: cache:112KB rss:0KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:44KB inactive_file:4KB active_file:4KB unevictable:0KB
[  718.545698] Out of memory and no killable processes...
[  718.554582] syz-executor1 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=1, oom_score_adj=-1000
[  718.566874] syz-executor1 cpuset=syz1 mems_allowed=0
[  718.572178] CPU: 0 PID: 29135 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  718.580673] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  718.590048] Call Trace:
[  718.592638]  dump_stack+0x1d3/0x2c4
[  718.596278]  ? dump_stack_print_info.cold.2+0x52/0x52
[  718.601473]  dump_header+0x27b/0xf72
[  718.605187]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  718.610125]  ? kasan_check_read+0x11/0x20
[  718.614275]  ? pagefault_out_of_memory+0x197/0x197
[  718.619205]  ? rcu_read_unlock+0x33/0x60
[  718.623264]  ? mem_cgroup_iter+0x514/0x1160
[  718.627582]  ? find_held_lock+0x36/0x1c0
[  718.631641]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  718.636392]  ? mark_held_locks+0xc7/0x130
[  718.640535]  ? _raw_spin_unlock_irq+0x27/0x80
[  718.645021]  ? _raw_spin_unlock_irq+0x27/0x80
[  718.649509]  ? lockdep_hardirqs_on+0x421/0x5c0
[  718.654109]  ? trace_hardirqs_on+0xbd/0x310
[  718.658437]  ? kasan_check_read+0x11/0x20
[  718.662578]  ? css_task_iter_end+0x222/0x490
[  718.666977]  ? trace_hardirqs_off_caller+0x300/0x300
[  718.672074]  ? kasan_check_write+0x14/0x20
[  718.676307]  ? do_raw_spin_lock+0xc1/0x200
[  718.680557]  ? _raw_spin_unlock_irq+0x60/0x80
[  718.685044]  ? css_task_iter_end+0x2ce/0x490
[  718.689442]  ? cgroup_procs_next+0x70/0x70
[  718.693685]  ? _raw_spin_unlock_irq+0x60/0x80
[  718.698189]  ? oom_badness+0xaa0/0xaa0
[  718.702072]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  718.706840]  ? mem_cgroup_iter_break+0x30/0x30
[  718.711427]  ? cgroup_file_notify+0x226/0x2f0
[  718.715923]  out_of_memory.cold.30+0xf/0x184
[  718.720329]  ? lockdep_hardirqs_on+0x421/0x5c0
[  718.724909]  ? kasan_check_read+0x11/0x20
[  718.729057]  ? oom_killer_disable+0x3a0/0x3a0
[  718.733543]  ? kasan_check_write+0x14/0x20
[  718.737769]  ? do_raw_spin_lock+0xc1/0x200
[  718.742004]  mem_cgroup_out_of_memory+0x15e/0x210
[  718.746844]  ? memcg_memory_event+0x40/0x40
[  718.751162]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  718.756019]  ? page_counter_try_charge+0x1c1/0x220
[  718.760947]  try_charge+0xb1a/0x1690
[  718.764658]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  718.770712]  ? rcu_pm_notify+0xc0/0xc0
[  718.774613]  ? rcu_read_lock_sched_held+0x108/0x120
[  718.779636]  ? __alloc_pages_nodemask+0xbf1/0xdd0
[  718.784477]  ? graph_lock+0x170/0x170
[  718.788274]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  718.793300]  ? graph_lock+0x170/0x170
[  718.797154]  ? find_held_lock+0x36/0x1c0
[  718.801223]  ? cache_grow_begin+0x5a4/0x8c0
[  718.805545]  memcg_kmem_charge_memcg+0x7c/0x120
[  718.810236]  ? memcg_kmem_put_cache+0xb0/0xb0
[  718.814730]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  718.820264]  cache_grow_begin+0x26c/0x8c0
[  718.824408]  ? do_raw_spin_unlock+0xa7/0x2f0
[  718.828822]  fallback_alloc+0x204/0x2e0
[  718.832801]  ____cache_alloc_node+0x1c7/0x1e0
[  718.837294]  kmem_cache_alloc+0x1f8/0x730
[  718.841440]  sk_prot_alloc+0x69/0x2e0
[  718.845234]  sk_alloc+0x10d/0x1690
[  718.848767]  ? kasan_kmalloc+0xc7/0xe0
[  718.852648]  ? sock_def_readable+0x710/0x710
[  718.857059]  ? graph_lock+0x170/0x170
[  718.860946]  ? do_raw_write_unlock.cold.8+0x49/0x49
[  718.865980]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[  718.871014]  ? graph_lock+0x170/0x170
[  718.874811]  ? __put_user_ns+0x60/0x60
[  718.878696]  ? find_held_lock+0x36/0x1c0
[  718.882757]  ? inet6_create+0x485/0x1230
[  718.886813]  ? lock_downgrade+0x900/0x900
[  718.890972]  ? check_preemption_disabled+0x48/0x200
[  718.895995]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  718.900920]  ? kasan_check_read+0x11/0x20
[  718.905067]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  718.910345]  ? rcu_softirq_qs+0x20/0x20
[  718.914328]  ? find_held_lock+0x36/0x1c0
[  718.918385]  inet6_create+0x501/0x1230
[  718.922276]  ? inet6_net_init+0x8e0/0x8e0
[  718.926420]  ? kasan_check_read+0x11/0x20
[  718.930578]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  718.935846]  ? rcu_softirq_qs+0x20/0x20
[  718.939834]  __sock_create+0x536/0x930
[  718.943715]  ? kernel_sock_ip_overhead+0x570/0x570
[  718.948642]  ? trace_hardirqs_off+0xb8/0x310
[  718.953045]  ? do_syscall_64+0x6be/0x820
[  718.957104]  ? trace_hardirqs_on_caller+0x310/0x310
[  718.962136]  __sys_socket+0x106/0x260
[  718.965937]  ? lockdep_hardirqs_on+0x421/0x5c0
[  718.970537]  ? move_addr_to_kernel+0x70/0x70
[  718.974942]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  718.980303]  ? trace_hardirqs_off_caller+0x300/0x300
[  718.985406]  __x64_sys_socket+0x73/0xb0
[  718.989378]  do_syscall_64+0x1b9/0x820
[  718.993253]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  718.998615]  ? syscall_return_slowpath+0x5e0/0x5e0
[  719.003544]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  719.008387]  ? trace_hardirqs_off+0x310/0x310
[  719.012880]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  719.017912]  ? prepare_exit_to_usermode+0x291/0x3b0
[  719.022948]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  719.027792]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  719.032971] RIP: 0033:0x45a1e7
[  719.036154] Code: 00 00 00 49 89 ca b8 36 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 9a 88 fb ff c3 66 0f 1f 84 00 00 00 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7d 88 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  719.055055] RSP: 002b:00007ffdef61ab38 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  719.062763] RAX: ffffffffffffffda RBX: 0000000000707b00 RCX: 000000000045a1e7
[  719.070027] RDX: 0000000000000006 RSI: 0000000000000001 RDI: 000000000000000a
[  719.077307] RBP: 00000000ffffffff R08: 0000000000006000 R09: 0000000000004000
[  719.084570] R10: 00007ffdef61ac60 R11: 0000000000000246 R12: 0000000000000003
[  719.091832] R13: 00000000000aecd6 R14: 0000000000000029 R15: badc0ffeebadface
[  719.100562] Memory limit reached of cgroup /syz1
[  719.105392] memory: usage 5980kB, limit 0kB, failcnt 255005
[  719.111266] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  719.118060] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  719.124218] Memory cgroup stats for /syz1: cache:112KB rss:0KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:44KB inactive_file:4KB active_file:0KB unevictable:0KB
[  719.144251] Out of memory and no killable processes...
[  719.152093] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=3, oom_score_adj=-1000
[  719.165132] syz-executor1 cpuset=syz1 mems_allowed=0
[  719.170415] CPU: 0 PID: 29135 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  719.178901] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  719.188247] Call Trace:
[  719.190846]  dump_stack+0x1d3/0x2c4
[  719.194483]  ? dump_stack_print_info.cold.2+0x52/0x52
[  719.199693]  dump_header+0x27b/0xf72
[  719.203405]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  719.208335]  ? kasan_check_read+0x11/0x20
[  719.212478]  ? pagefault_out_of_memory+0x197/0x197
[  719.217417]  ? rcu_read_unlock+0x33/0x60
[  719.221487]  ? mem_cgroup_iter+0x514/0x1160
[  719.225803]  ? find_held_lock+0x36/0x1c0
[  719.229870]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  719.234621]  ? mark_held_locks+0xc7/0x130
[  719.238782]  ? _raw_spin_unlock_irq+0x27/0x80
[  719.243283]  ? _raw_spin_unlock_irq+0x27/0x80
[  719.247783]  ? lockdep_hardirqs_on+0x421/0x5c0
[  719.252369]  ? trace_hardirqs_on+0xbd/0x310
[  719.256681]  ? kasan_check_read+0x11/0x20
[  719.260820]  ? css_task_iter_end+0x222/0x490
[  719.265229]  ? trace_hardirqs_off_caller+0x300/0x300
[  719.270326]  ? kasan_check_write+0x14/0x20
[  719.274550]  ? do_raw_spin_lock+0xc1/0x200
[  719.278866]  ? _raw_spin_unlock_irq+0x60/0x80
[  719.283353]  ? css_task_iter_end+0x2ce/0x490
[  719.287754]  ? cgroup_procs_next+0x70/0x70
[  719.292000]  ? _raw_spin_unlock_irq+0x60/0x80
[  719.296492]  ? oom_badness+0xaa0/0xaa0
[  719.300377]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  719.305139]  ? mem_cgroup_iter_break+0x30/0x30
[  719.309729]  ? cgroup_file_notify+0x226/0x2f0
[  719.314232]  out_of_memory.cold.30+0xf/0x184
[  719.318656]  ? lockdep_hardirqs_on+0x421/0x5c0
[  719.323232]  ? kasan_check_read+0x11/0x20
[  719.327384]  ? oom_killer_disable+0x3a0/0x3a0
[  719.331885]  ? kasan_check_write+0x14/0x20
[  719.336130]  ? do_raw_spin_lock+0xc1/0x200
[  719.340398]  mem_cgroup_out_of_memory+0x15e/0x210
[  719.345253]  ? memcg_memory_event+0x40/0x40
[  719.349564]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  719.354401]  ? page_counter_try_charge+0x1c1/0x220
[  719.359327]  try_charge+0xb1a/0x1690
[  719.363030]  ? lock_downgrade+0x900/0x900
[  719.367168]  ? check_preemption_disabled+0x48/0x200
[  719.372182]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  719.378258]  ? find_held_lock+0x36/0x1c0
[  719.382317]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  719.387158]  ? lock_downgrade+0x900/0x900
[  719.391299]  ? check_preemption_disabled+0x48/0x200
[  719.396325]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  719.401249]  ? kasan_check_read+0x11/0x20
[  719.405393]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  719.411126]  ? rcu_softirq_qs+0x20/0x20
[  719.415110]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  719.419963]  memcg_kmem_charge_memcg+0x7c/0x120
[  719.424633]  ? memcg_kmem_put_cache+0xb0/0xb0
[  719.429152]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  719.434526]  memcg_kmem_charge+0x135/0x300
[  719.438757]  __alloc_pages_nodemask+0x89c/0xdd0
[  719.443418]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  719.448690]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  719.453699]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  719.459233]  ? check_preemption_disabled+0x48/0x200
[  719.464250]  ? rcu_lockdep_current_cpu_online+0x1a4/0x210
[  719.469784]  ? rcu_pm_notify+0xc0/0xc0
[  719.473667]  ? copy_process+0x1ff3/0x8780
[  719.477806]  ? rcu_read_lock_sched_held+0x108/0x120
[  719.482814]  ? kmem_cache_alloc_node+0x349/0x730
[  719.487562]  ? kasan_check_write+0x14/0x20
[  719.491788]  ? do_raw_spin_lock+0xc1/0x200
[  719.496018]  copy_process+0xa09/0x8780
[  719.499901]  ? graph_lock+0x170/0x170
[  719.503698]  ? graph_lock+0x170/0x170
[  719.507492]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  719.513022]  ? PageHuge+0x183/0x2b0
[  719.516641]  ? ring_buffer_record_is_on+0xe1/0x130
[  719.521567]  ? vma_kernel_pagesize+0xb0/0xb0
[  719.525978]  ? __cleanup_sighand+0x70/0x70
[  719.530229]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  719.535762]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  719.541298]  ? page_swapcount+0x1d0/0x1d0
[  719.545438]  ? try_to_wake_up+0x10a/0x12f0
[  719.549670]  ? lock_downgrade+0x900/0x900
[  719.553804]  ? lock_downgrade+0x900/0x900
[  719.557944]  ? trace_hardirqs_off+0xb8/0x310
[  719.562339]  ? kasan_check_read+0x11/0x20
[  719.566497]  ? do_raw_spin_unlock+0xa7/0x2f0
[  719.570899]  ? trace_hardirqs_on_caller+0x310/0x310
[  719.575918]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  719.581019]  ? try_to_wake_up+0x10a/0x12f0
[  719.585249]  ? print_usage_bug+0xc0/0xc0
[  719.589302]  ? migrate_swap_stop+0x930/0x930
[  719.593704]  ? __handle_mm_fault+0x9ab/0x53e0
[  719.598194]  ? graph_lock+0x170/0x170
[  719.601992]  ? print_usage_bug+0xc0/0xc0
[  719.606049]  ? __lock_acquire+0x7ec/0x4ec0
[  719.610288]  ? print_usage_bug+0xc0/0xc0
[  719.614344]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  719.619876]  ? reuse_swap_page+0x4bd/0x1520
[  719.624215]  ? swp_swapcount+0x530/0x530
[  719.628277]  ? __lock_acquire+0x7ec/0x4ec0
[  719.632499]  ? mark_held_locks+0x130/0x130
[  719.636723]  ? rcu_softirq_qs+0x20/0x20
[  719.640704]  ? __lock_acquire+0x7ec/0x4ec0
[  719.644935]  ? mark_held_locks+0x130/0x130
[  719.649166]  ? graph_lock+0x170/0x170
[  719.652955]  ? mark_held_locks+0x130/0x130
[  719.657201]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  719.662738]  ? check_preemption_disabled+0x48/0x200
[  719.667770]  ? find_held_lock+0x36/0x1c0
[  719.671827]  ? do_wp_page+0xa6f/0x1690
[  719.675700]  ? lock_downgrade+0x900/0x900
[  719.679840]  ? wake_up_page_bit+0x6f0/0x6f0
[  719.684155]  ? kasan_check_read+0x11/0x20
[  719.688296]  ? do_raw_spin_unlock+0xa7/0x2f0
[  719.692696]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  719.697268]  ? pgd_free+0x380/0x380
[  719.700885]  ? __lock_acquire+0x7ec/0x4ec0
[  719.705127]  ? _raw_spin_unlock+0x2c/0x50
[  719.709287]  ? do_wp_page+0x77c/0x1690
[  719.713171]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  719.717888]  ? find_held_lock+0x36/0x1c0
[  719.721947]  ? lock_release+0x970/0x970
[  719.725917]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  719.731450]  ? kasan_check_write+0x14/0x20
[  719.735684]  ? do_raw_spin_lock+0xc1/0x200
[  719.739919]  ? __handle_mm_fault+0x9ab/0x53e0
[  719.744430]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  719.749274]  ? __sb_end_write+0xd9/0x110
[  719.753357]  ? graph_lock+0x170/0x170
[  719.757150]  ? print_usage_bug+0xc0/0xc0
[  719.761204]  ? atime_needs_update+0x710/0x710
[  719.765692]  ? graph_lock+0x170/0x170
[  719.769483]  ? graph_lock+0x170/0x170
[  719.773295]  ? find_held_lock+0x36/0x1c0
[  719.777354]  ? __do_page_fault+0x6b7/0xec0
[  719.781598]  _do_fork+0x1cb/0x11c0
[  719.785139]  ? fork_idle+0x1d0/0x1d0
[  719.788847]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  719.794380]  ? check_preemption_disabled+0x48/0x200
[  719.799390]  ? kasan_check_write+0x14/0x20
[  719.803616]  ? up_read+0x225/0x2c0
[  719.807146]  ? up_read_non_owner+0x100/0x100
[  719.811573]  ? find_vma+0x34/0x190
[  719.815117]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  719.820670]  ? __do_page_fault+0x49c/0xec0
[  719.824900]  ? do_syscall_64+0x9a/0x820
[  719.828874]  ? do_syscall_64+0x9a/0x820
[  719.832840]  ? lockdep_hardirqs_on+0x421/0x5c0
[  719.837429]  ? trace_hardirqs_on+0xbd/0x310
[  719.841745]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  719.847107]  ? trace_hardirqs_off_caller+0x300/0x300
[  719.852208]  __x64_sys_clone+0xbf/0x150
[  719.856191]  do_syscall_64+0x1b9/0x820
[  719.860072]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  719.865430]  ? syscall_return_slowpath+0x5e0/0x5e0
[  719.870346]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  719.875180]  ? trace_hardirqs_off+0x310/0x310
[  719.879667]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  719.884673]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  719.890202]  ? prepare_exit_to_usermode+0x291/0x3b0
[  719.895210]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  719.900055]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  719.905236] RIP: 0033:0x455c4a
[  719.908415] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  719.927331] RSP: 002b:00007ffdef61b280 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  719.935048] RAX: ffffffffffffffda RBX: 00007ffdef61b280 RCX: 0000000000455c4a
[  719.942317] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  719.949594] RBP: 00007ffdef61b2c0 R08: 0000000000000001 R09: 00000000021dc940
[  719.956856] R10: 00000000021dcc10 R11: 0000000000000246 R12: 0000000000000001
[  719.964126] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  719.972774] Memory limit reached of cgroup /syz1
[  719.977687] memory: usage 5988kB, limit 0kB, failcnt 255013
[  719.983405] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  719.990245] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  719.996431] Memory cgroup stats for /syz1: cache:112KB rss:0KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:44KB inactive_file:0KB active_file:4KB unevictable:0KB
[  720.016477] Out of memory and no killable processes...
[  720.023286] syz-executor1 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=1, oom_score_adj=-1000
[  720.035561] syz-executor1 cpuset=syz1 mems_allowed=0
[  720.040793] CPU: 0 PID: 29135 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  720.049277] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  720.058643] Call Trace:
[  720.061231]  dump_stack+0x1d3/0x2c4
[  720.064847]  ? dump_stack_print_info.cold.2+0x52/0x52
[  720.070038]  dump_header+0x27b/0xf72
[  720.073747]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  720.078668]  ? kasan_check_read+0x11/0x20
[  720.082816]  ? pagefault_out_of_memory+0x197/0x197
[  720.087743]  ? rcu_read_unlock+0x33/0x60
[  720.091820]  ? mem_cgroup_iter+0x514/0x1160
[  720.096145]  ? find_held_lock+0x36/0x1c0
[  720.100206]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  720.104974]  ? mark_held_locks+0xc7/0x130
[  720.109127]  ? _raw_spin_unlock_irq+0x27/0x80
[  720.113619]  ? _raw_spin_unlock_irq+0x27/0x80
[  720.118122]  ? lockdep_hardirqs_on+0x421/0x5c0
[  720.122708]  ? trace_hardirqs_on+0xbd/0x310
[  720.127022]  ? kasan_check_read+0x11/0x20
[  720.131168]  ? css_task_iter_end+0x222/0x490
[  720.135574]  ? trace_hardirqs_off_caller+0x300/0x300
[  720.140680]  ? kasan_check_write+0x14/0x20
[  720.144907]  ? do_raw_spin_lock+0xc1/0x200
[  720.149147]  ? _raw_spin_unlock_irq+0x60/0x80
[  720.153663]  ? css_task_iter_end+0x2ce/0x490
[  720.158068]  ? cgroup_procs_next+0x70/0x70
[  720.162292]  ? _raw_spin_unlock_irq+0x60/0x80
[  720.166778]  ? oom_badness+0xaa0/0xaa0
[  720.170660]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  720.175406]  ? mem_cgroup_iter_break+0x30/0x30
[  720.180007]  ? cgroup_file_notify+0x226/0x2f0
[  720.184500]  out_of_memory.cold.30+0xf/0x184
[  720.188901]  ? lockdep_hardirqs_on+0x421/0x5c0
[  720.193503]  ? kasan_check_read+0x11/0x20
[  720.197653]  ? oom_killer_disable+0x3a0/0x3a0
[  720.202157]  ? kasan_check_write+0x14/0x20
[  720.206397]  ? do_raw_spin_lock+0xc1/0x200
[  720.210635]  mem_cgroup_out_of_memory+0x15e/0x210
[  720.215474]  ? memcg_memory_event+0x40/0x40
[  720.219788]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  720.224629]  ? page_counter_try_charge+0x1c1/0x220
[  720.229555]  try_charge+0xb1a/0x1690
[  720.233269]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  720.239327]  ? rcu_pm_notify+0xc0/0xc0
[  720.243212]  ? rcu_read_lock_sched_held+0x108/0x120
[  720.248248]  ? __alloc_pages_nodemask+0xbf1/0xdd0
[  720.253292]  ? graph_lock+0x170/0x170
[  720.257086]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  720.262143]  ? graph_lock+0x170/0x170
[  720.265942]  ? find_held_lock+0x36/0x1c0
[  720.269993]  ? cache_grow_begin+0x5a4/0x8c0
[  720.274312]  memcg_kmem_charge_memcg+0x7c/0x120
[  720.278975]  ? memcg_kmem_put_cache+0xb0/0xb0
[  720.283466]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  720.288995]  cache_grow_begin+0x26c/0x8c0
[  720.293145]  ? do_raw_spin_unlock+0xa7/0x2f0
[  720.297768]  fallback_alloc+0x204/0x2e0
[  720.301737]  ____cache_alloc_node+0x1c7/0x1e0
[  720.306228]  kmem_cache_alloc+0x1f8/0x730
[  720.310371]  copy_process+0x28db/0x8780
[  720.314333]  ? graph_lock+0x170/0x170
[  720.318139]  ? graph_lock+0x170/0x170
[  720.321930]  ? ring_buffer_record_is_on+0xe1/0x130
[  720.326871]  ? __cleanup_sighand+0x70/0x70
[  720.331109]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  720.336641]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  720.342178]  ? page_swapcount+0x1d0/0x1d0
[  720.346318]  ? try_to_wake_up+0x10a/0x12f0
[  720.350544]  ? lock_downgrade+0x900/0x900
[  720.354677]  ? lock_downgrade+0x900/0x900
[  720.358821]  ? trace_hardirqs_off+0xb8/0x310
[  720.363236]  ? kasan_check_read+0x11/0x20
[  720.367383]  ? do_raw_spin_unlock+0xa7/0x2f0
[  720.371795]  ? trace_hardirqs_on_caller+0x310/0x310
[  720.376804]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  720.381898]  ? try_to_wake_up+0x10a/0x12f0
[  720.386135]  ? print_usage_bug+0xc0/0xc0
[  720.390187]  ? migrate_swap_stop+0x930/0x930
[  720.394586]  ? __handle_mm_fault+0x9ab/0x53e0
[  720.399074]  ? graph_lock+0x170/0x170
[  720.402865]  ? print_usage_bug+0xc0/0xc0
[  720.406919]  ? __lock_acquire+0x7ec/0x4ec0
[  720.411148]  ? print_usage_bug+0xc0/0xc0
[  720.415202]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  720.420730]  ? reuse_swap_page+0x4bd/0x1520
[  720.425041]  ? swp_swapcount+0x530/0x530
[  720.429106]  ? __lock_acquire+0x7ec/0x4ec0
[  720.433346]  ? mark_held_locks+0x130/0x130
[  720.437570]  ? rcu_softirq_qs+0x20/0x20
[  720.441562]  ? __lock_acquire+0x7ec/0x4ec0
[  720.445790]  ? mark_held_locks+0x130/0x130
[  720.450030]  ? graph_lock+0x170/0x170
[  720.453820]  ? mark_held_locks+0x130/0x130
[  720.458047]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  720.463576]  ? check_preemption_disabled+0x48/0x200
[  720.468589]  ? find_held_lock+0x36/0x1c0
[  720.472644]  ? do_wp_page+0xa6f/0x1690
[  720.476518]  ? lock_downgrade+0x900/0x900
[  720.480658]  ? wake_up_page_bit+0x6f0/0x6f0
[  720.484974]  ? kasan_check_read+0x11/0x20
[  720.489136]  ? do_raw_spin_unlock+0xa7/0x2f0
[  720.493537]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  720.498119]  ? pgd_free+0x380/0x380
[  720.501738]  ? __lock_acquire+0x7ec/0x4ec0
[  720.505968]  ? _raw_spin_unlock+0x2c/0x50
[  720.510110]  ? do_wp_page+0x77c/0x1690
[  720.513993]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  720.518657]  ? find_held_lock+0x36/0x1c0
[  720.522708]  ? lock_release+0x970/0x970
[  720.526697]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  720.532228]  ? kasan_check_write+0x14/0x20
[  720.536450]  ? do_raw_spin_lock+0xc1/0x200
[  720.540677]  ? __handle_mm_fault+0x9ab/0x53e0
[  720.545165]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  720.549994]  ? __sb_end_write+0xd9/0x110
[  720.554049]  ? graph_lock+0x170/0x170
[  720.557840]  ? print_usage_bug+0xc0/0xc0
[  720.561892]  ? atime_needs_update+0x710/0x710
[  720.566376]  ? graph_lock+0x170/0x170
[  720.570167]  ? graph_lock+0x170/0x170
[  720.573964]  ? find_held_lock+0x36/0x1c0
[  720.578019]  ? __do_page_fault+0x6b7/0xec0
[  720.582246]  _do_fork+0x1cb/0x11c0
[  720.585779]  ? fork_idle+0x1d0/0x1d0
[  720.589483]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  720.595013]  ? check_preemption_disabled+0x48/0x200
[  720.600023]  ? kasan_check_write+0x14/0x20
[  720.604247]  ? up_read+0x225/0x2c0
[  720.607777]  ? up_read_non_owner+0x100/0x100
[  720.612185]  ? find_vma+0x34/0x190
[  720.615716]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  720.621246]  ? __do_page_fault+0x49c/0xec0
[  720.625471]  ? do_syscall_64+0x9a/0x820
[  720.629437]  ? do_syscall_64+0x9a/0x820
[  720.633399]  ? lockdep_hardirqs_on+0x421/0x5c0
[  720.637972]  ? trace_hardirqs_on+0xbd/0x310
[  720.642284]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  720.647639]  ? trace_hardirqs_off_caller+0x300/0x300
[  720.652737]  __x64_sys_clone+0xbf/0x150
[  720.656703]  do_syscall_64+0x1b9/0x820
[  720.660583]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  720.665944]  ? syscall_return_slowpath+0x5e0/0x5e0
[  720.670870]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  720.675709]  ? trace_hardirqs_off+0x310/0x310
[  720.680201]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  720.685215]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  720.690749]  ? prepare_exit_to_usermode+0x291/0x3b0
[  720.695768]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  720.700609]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  720.705799] RIP: 0033:0x455c4a
[  720.708991] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  720.728004] RSP: 002b:00007ffdef61b280 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  720.735726] RAX: ffffffffffffffda RBX: 00007ffdef61b280 RCX: 0000000000455c4a
[  720.742988] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  720.750250] RBP: 00007ffdef61b2c0 R08: 0000000000000001 R09: 00000000021dc940
[  720.757510] R10: 00000000021dcc10 R11: 0000000000000246 R12: 0000000000000001
[  720.764771] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  720.774499] Memory limit reached of cgroup /syz1
[  720.779376] memory: usage 5996kB, limit 0kB, failcnt 255025
[  720.785106] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  720.791947] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  720.798143] Memory cgroup stats for /syz1: cache:112KB rss:0KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:44KB inactive_file:4KB active_file:0KB unevictable:0KB
[  720.818279] Out of memory and no killable processes...
[  720.824995] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  720.838026] syz-executor1 cpuset=syz1 mems_allowed=0
[  720.843179] CPU: 0 PID: 29135 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  720.851656] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  720.861000] Call Trace:
[  720.863580]  dump_stack+0x1d3/0x2c4
[  720.867198]  ? dump_stack_print_info.cold.2+0x52/0x52
[  720.872383]  dump_header+0x27b/0xf72
[  720.876184]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  720.881108]  ? kasan_check_read+0x11/0x20
[  720.885276]  ? pagefault_out_of_memory+0x197/0x197
[  720.890207]  ? rcu_read_unlock+0x33/0x60
[  720.894263]  ? mem_cgroup_iter+0x514/0x1160
[  720.898573]  ? find_held_lock+0x36/0x1c0
[  720.902631]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  720.907387]  ? mark_held_locks+0xc7/0x130
[  720.911543]  ? _raw_spin_unlock_irq+0x27/0x80
[  720.916028]  ? _raw_spin_unlock_irq+0x27/0x80
[  720.920520]  ? lockdep_hardirqs_on+0x421/0x5c0
[  720.925180]  ? trace_hardirqs_on+0xbd/0x310
[  720.929508]  ? kasan_check_read+0x11/0x20
[  720.933647]  ? css_task_iter_end+0x222/0x490
[  720.938046]  ? trace_hardirqs_off_caller+0x300/0x300
[  720.943154]  ? kasan_check_write+0x14/0x20
[  720.947552]  ? do_raw_spin_lock+0xc1/0x200
[  720.951791]  ? _raw_spin_unlock_irq+0x60/0x80
[  720.956276]  ? css_task_iter_end+0x2ce/0x490
[  720.960675]  ? cgroup_procs_next+0x70/0x70
[  720.964907]  ? _raw_spin_unlock_irq+0x60/0x80
[  720.969393]  ? oom_badness+0xaa0/0xaa0
[  720.973277]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  720.978029]  ? mem_cgroup_iter_break+0x30/0x30
[  720.982615]  ? cgroup_file_notify+0x226/0x2f0
[  720.987117]  out_of_memory.cold.30+0xf/0x184
[  720.991520]  ? lockdep_hardirqs_on+0x421/0x5c0
[  720.996128]  ? kasan_check_read+0x11/0x20
[  721.000275]  ? oom_killer_disable+0x3a0/0x3a0
[  721.004766]  ? kasan_check_write+0x14/0x20
[  721.008990]  ? do_raw_spin_lock+0xc1/0x200
[  721.013224]  mem_cgroup_out_of_memory+0x15e/0x210
[  721.018057]  ? memcg_memory_event+0x40/0x40
[  721.022367]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  721.027202]  ? page_counter_try_charge+0x1c1/0x220
[  721.032132]  try_charge+0xb1a/0x1690
[  721.035834]  ? lock_downgrade+0x900/0x900
[  721.039987]  ? check_preemption_disabled+0x48/0x200
[  721.045004]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  721.051074]  ? find_held_lock+0x36/0x1c0
[  721.055149]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  721.059988]  ? lock_downgrade+0x900/0x900
[  721.064135]  ? check_preemption_disabled+0x48/0x200
[  721.069145]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  721.074068]  ? kasan_check_read+0x11/0x20
[  721.078205]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  721.083485]  ? rcu_softirq_qs+0x20/0x20
[  721.087460]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  721.092297]  memcg_kmem_charge_memcg+0x7c/0x120
[  721.096956]  ? memcg_kmem_put_cache+0xb0/0xb0
[  721.101441]  ? print_usage_bug+0xc0/0xc0
[  721.105533]  memcg_kmem_charge+0x135/0x300
[  721.109763]  __alloc_pages_nodemask+0x89c/0xdd0
[  721.114427]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  721.119434]  ? lock_downgrade+0x900/0x900
[  721.123573]  ? check_preemption_disabled+0x48/0x200
[  721.128587]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  721.133528]  ? kasan_check_read+0x11/0x20
[  721.137666]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  721.142935]  ? rcu_softirq_qs+0x20/0x20
[  721.146895]  ? unwind_dump+0x190/0x190
[  721.150776]  ? is_bpf_text_address+0xd3/0x170
[  721.155263]  ? kernel_text_address+0x79/0xf0
[  721.159666]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  721.165220]  alloc_pages_current+0x10c/0x210
[  721.169643]  __get_free_pages+0xc/0x40
[  721.173529]  pgd_alloc+0x9a/0x480
[  721.176972]  ? __init_rwsem+0x1cc/0x2a0
[  721.180937]  ? pgd_page_get_mm+0x40/0x40
[  721.184984]  ? save_stack+0xa9/0xd0
[  721.188600]  ? save_stack+0x43/0xd0
[  721.192217]  ? kasan_slab_alloc+0x12/0x20
[  721.196351]  ? kmem_cache_alloc+0x12e/0x730
[  721.200661]  ? copy_process+0x3563/0x8780
[  721.204794]  ? _do_fork+0x1cb/0x11c0
[  721.208496]  ? __x64_sys_clone+0xbf/0x150
[  721.212631]  ? do_syscall_64+0x1b9/0x820
[  721.216687]  ? __lockdep_init_map+0x105/0x590
[  721.221203]  mm_init+0x726/0xc00
[  721.224563]  ? get_task_exe_file+0xd0/0xd0
[  721.228799]  ? kasan_check_read+0x11/0x20
[  721.232939]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  721.238210]  ? rcu_softirq_qs+0x20/0x20
[  721.242178]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  721.247732]  ? check_preemption_disabled+0x48/0x200
[  721.252752]  ? rcu_pm_notify+0xc0/0xc0
[  721.256645]  ? rcu_read_lock_sched_held+0x108/0x120
[  721.261692]  ? kmem_cache_alloc+0x33a/0x730
[  721.266030]  copy_process+0x35ca/0x8780
[  721.269998]  ? graph_lock+0x170/0x170
[  721.273793]  ? graph_lock+0x170/0x170
[  721.277596]  ? __cleanup_sighand+0x70/0x70
[  721.281825]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  721.287356]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  721.292909]  ? page_swapcount+0x1d0/0x1d0
[  721.297050]  ? try_to_wake_up+0x10a/0x12f0
[  721.301276]  ? lock_downgrade+0x900/0x900
[  721.305414]  ? lock_downgrade+0x900/0x900
[  721.309558]  ? trace_hardirqs_off+0xb8/0x310
[  721.313957]  ? kasan_check_read+0x11/0x20
[  721.318098]  ? trace_hardirqs_on_caller+0x310/0x310
[  721.323139]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  721.328246]  ? try_to_wake_up+0x10a/0x12f0
[  721.332496]  ? print_usage_bug+0xc0/0xc0
[  721.336554]  ? migrate_swap_stop+0x930/0x930
[  721.340975]  ? __handle_mm_fault+0x9ab/0x53e0
[  721.345470]  ? graph_lock+0x170/0x170
[  721.349286]  ? print_usage_bug+0xc0/0xc0
[  721.353346]  ? __lock_acquire+0x7ec/0x4ec0
[  721.357586]  ? print_usage_bug+0xc0/0xc0
[  721.361662]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  721.367209]  ? reuse_swap_page+0x4bd/0x1520
[  721.371564]  ? swp_swapcount+0x530/0x530
[  721.375635]  ? __lock_acquire+0x7ec/0x4ec0
[  721.379866]  ? mark_held_locks+0x130/0x130
[  721.384089]  ? rcu_softirq_qs+0x20/0x20
[  721.388081]  ? __lock_acquire+0x7ec/0x4ec0
[  721.392336]  ? mark_held_locks+0x130/0x130
[  721.396564]  ? graph_lock+0x170/0x170
[  721.400356]  ? mark_held_locks+0x130/0x130
[  721.404984]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  721.410530]  ? check_preemption_disabled+0x48/0x200
[  721.415546]  ? find_held_lock+0x36/0x1c0
[  721.419602]  ? do_wp_page+0xa6f/0x1690
[  721.423489]  ? lock_downgrade+0x900/0x900
[  721.427640]  ? wake_up_page_bit+0x6f0/0x6f0
[  721.431966]  ? kasan_check_read+0x11/0x20
[  721.436129]  ? do_raw_spin_unlock+0xa7/0x2f0
[  721.440530]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  721.445112]  ? pgd_free+0x380/0x380
[  721.448734]  ? __lock_acquire+0x7ec/0x4ec0
[  721.452969]  ? _raw_spin_unlock+0x2c/0x50
[  721.457145]  ? do_wp_page+0x77c/0x1690
[  721.461042]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  721.465710]  ? find_held_lock+0x36/0x1c0
[  721.469764]  ? lock_release+0x970/0x970
[  721.473733]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  721.479266]  ? kasan_check_write+0x14/0x20
[  721.483493]  ? do_raw_spin_lock+0xc1/0x200
[  721.487722]  ? __handle_mm_fault+0x9ab/0x53e0
[  721.492216]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  721.497048]  ? __sb_end_write+0xd9/0x110
[  721.501108]  ? graph_lock+0x170/0x170
[  721.504916]  ? print_usage_bug+0xc0/0xc0
[  721.508996]  ? atime_needs_update+0x710/0x710
[  721.513487]  ? graph_lock+0x170/0x170
[  721.517274]  ? graph_lock+0x170/0x170
[  721.521068]  ? find_held_lock+0x36/0x1c0
[  721.525130]  ? __do_page_fault+0x6b7/0xec0
[  721.529361]  _do_fork+0x1cb/0x11c0
[  721.532894]  ? fork_idle+0x1d0/0x1d0
[  721.536600]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  721.542139]  ? check_preemption_disabled+0x48/0x200
[  721.547150]  ? kasan_check_write+0x14/0x20
[  721.551394]  ? up_read+0x225/0x2c0
[  721.554945]  ? up_read_non_owner+0x100/0x100
[  721.559354]  ? find_vma+0x34/0x190
[  721.562898]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  721.568434]  ? __do_page_fault+0x49c/0xec0
[  721.572659]  ? do_syscall_64+0x9a/0x820
[  721.576627]  ? do_syscall_64+0x9a/0x820
[  721.580606]  ? lockdep_hardirqs_on+0x421/0x5c0
[  721.585184]  ? trace_hardirqs_on+0xbd/0x310
[  721.589498]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  721.594868]  ? trace_hardirqs_off_caller+0x300/0x300
[  721.599965]  __x64_sys_clone+0xbf/0x150
[  721.603933]  do_syscall_64+0x1b9/0x820
[  721.607808]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  721.613162]  ? syscall_return_slowpath+0x5e0/0x5e0
[  721.618090]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  721.622959]  ? trace_hardirqs_off+0x310/0x310
[  721.627449]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  721.632458]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  721.637988]  ? prepare_exit_to_usermode+0x291/0x3b0
[  721.642996]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  721.647834]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  721.653012] RIP: 0033:0x455c4a
[  721.656193] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  721.675125] RSP: 002b:00007ffdef61b280 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  721.682831] RAX: ffffffffffffffda RBX: 00007ffdef61b280 RCX: 0000000000455c4a
[  721.690092] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  721.697370] RBP: 00007ffdef61b2c0 R08: 0000000000000001 R09: 00000000021dc940
[  721.704660] R10: 00000000021dcc10 R11: 0000000000000246 R12: 0000000000000001
[  721.711926] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  721.720912] Memory limit reached of cgroup /syz1
[  721.725785] memory: usage 6004kB, limit 0kB, failcnt 255033
[  721.731601] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  721.738428] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  721.744567] Memory cgroup stats for /syz1: cache:112KB rss:0KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:44KB inactive_file:0KB active_file:4KB unevictable:0KB
[  721.764618] Out of memory and no killable processes...
[  721.771591] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  721.784555] syz-executor1 cpuset=syz1 mems_allowed=0
[  721.789881] CPU: 0 PID: 29135 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  721.798367] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  721.807729] Call Trace:
[  721.810314]  dump_stack+0x1d3/0x2c4
[  721.813939]  ? dump_stack_print_info.cold.2+0x52/0x52
[  721.819139]  dump_header+0x27b/0xf72
[  721.822846]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  721.827765]  ? kasan_check_read+0x11/0x20
[  721.831908]  ? pagefault_out_of_memory+0x197/0x197
[  721.836831]  ? rcu_read_unlock+0x33/0x60
[  721.840902]  ? mem_cgroup_iter+0x514/0x1160
[  721.845220]  ? find_held_lock+0x36/0x1c0
[  721.849312]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  721.854064]  ? mark_held_locks+0xc7/0x130
[  721.858203]  ? _raw_spin_unlock_irq+0x27/0x80
[  721.862687]  ? _raw_spin_unlock_irq+0x27/0x80
[  721.867190]  ? lockdep_hardirqs_on+0x421/0x5c0
[  721.871764]  ? trace_hardirqs_on+0xbd/0x310
[  721.876072]  ? kasan_check_read+0x11/0x20
[  721.880208]  ? css_task_iter_end+0x222/0x490
[  721.884605]  ? trace_hardirqs_off_caller+0x300/0x300
[  721.889699]  ? kasan_check_write+0x14/0x20
[  721.893921]  ? do_raw_spin_lock+0xc1/0x200
[  721.898155]  ? _raw_spin_unlock_irq+0x60/0x80
[  721.902671]  ? css_task_iter_end+0x2ce/0x490
[  721.907068]  ? cgroup_procs_next+0x70/0x70
[  721.911295]  ? _raw_spin_unlock_irq+0x60/0x80
[  721.915780]  ? oom_badness+0xaa0/0xaa0
[  721.919660]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  721.924411]  ? mem_cgroup_iter_break+0x30/0x30
[  721.928999]  ? mark_held_locks+0xc7/0x130
[  721.933172]  out_of_memory.cold.30+0xf/0x184
[  721.937588]  ? lockdep_hardirqs_on+0x421/0x5c0
[  721.942162]  ? kasan_check_read+0x11/0x20
[  721.946300]  ? oom_killer_disable+0x3a0/0x3a0
[  721.950792]  ? kasan_check_write+0x14/0x20
[  721.955033]  ? do_raw_spin_lock+0xc1/0x200
[  721.959270]  mem_cgroup_out_of_memory+0x15e/0x210
[  721.964112]  ? memcg_memory_event+0x40/0x40
[  721.968430]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  721.973271]  ? page_counter_try_charge+0x1c1/0x220
[  721.978293]  try_charge+0xb1a/0x1690
[  721.982005]  ? lock_downgrade+0x900/0x900
[  721.986147]  ? check_preemption_disabled+0x48/0x200
[  721.991193]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  721.997249]  ? find_held_lock+0x36/0x1c0
[  722.001310]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  722.006155]  ? lock_downgrade+0x900/0x900
[  722.010317]  ? check_preemption_disabled+0x48/0x200
[  722.015328]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  722.020247]  ? kasan_check_read+0x11/0x20
[  722.024389]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  722.029677]  ? rcu_softirq_qs+0x20/0x20
[  722.033648]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  722.038485]  memcg_kmem_charge_memcg+0x7c/0x120
[  722.043156]  ? memcg_kmem_put_cache+0xb0/0xb0
[  722.047645]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  722.053712]  memcg_kmem_charge+0x135/0x300
[  722.057958]  __alloc_pages_nodemask+0x89c/0xdd0
[  722.062620]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  722.067627]  ? find_held_lock+0x36/0x1c0
[  722.071680]  ? print_usage_bug+0xc0/0xc0
[  722.075739]  ? find_held_lock+0x36/0x1c0
[  722.079791]  ? print_usage_bug+0xc0/0xc0
[  722.083842]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  722.089374]  alloc_pages_current+0x10c/0x210
[  722.093777]  get_zeroed_page+0x14/0x50
[  722.097653]  __pud_alloc+0x3b/0x240
[  722.101280]  pud_alloc+0xe1/0x150
[  722.104727]  copy_page_range+0x439/0x26f0
[  722.108867]  ? rb_insert_color_cached+0x14b0/0x14b0
[  722.113879]  ? mark_held_locks+0x130/0x130
[  722.118121]  ? pmd_alloc+0x180/0x180
[  722.121843]  ? graph_lock+0x170/0x170
[  722.125637]  ? kasan_slab_alloc+0x12/0x20
[  722.129774]  ? kmem_cache_alloc+0x12e/0x730
[  722.134095]  ? graph_lock+0x170/0x170
[  722.137893]  ? __x64_sys_clone+0xbf/0x150
[  722.142027]  ? do_syscall_64+0x1b9/0x820
[  722.146072]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  722.151445]  ? find_held_lock+0x36/0x1c0
[  722.155498]  ? graph_lock+0x170/0x170
[  722.159287]  ? graph_lock+0x170/0x170
[  722.163073]  ? lock_downgrade+0x900/0x900
[  722.167210]  ? lock_release+0x970/0x970
[  722.171179]  ? find_held_lock+0x36/0x1c0
[  722.175231]  ? copy_process+0x454a/0x8780
[  722.179368]  ? lock_downgrade+0x900/0x900
[  722.183504]  ? lock_release+0x970/0x970
[  722.187483]  ? ttwu_stat+0x5c0/0x5c0
[  722.191195]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  722.196203]  ? vma_compute_subtree_gap+0x160/0x240
[  722.201131]  ? validate_mm_rb+0xaa/0xc0
[  722.205095]  ? __vma_link_rb+0x26c/0x370
[  722.209163]  copy_process+0x4720/0x8780
[  722.213157]  ? __cleanup_sighand+0x70/0x70
[  722.217400]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  722.222943]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  722.228508]  ? page_swapcount+0x1d0/0x1d0
[  722.232657]  ? try_to_wake_up+0x10a/0x12f0
[  722.236884]  ? lock_downgrade+0x900/0x900
[  722.241021]  ? lock_downgrade+0x900/0x900
[  722.245163]  ? trace_hardirqs_off+0xb8/0x310
[  722.249561]  ? kasan_check_read+0x11/0x20
[  722.253706]  ? trace_hardirqs_on_caller+0x310/0x310
[  722.258721]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  722.263832]  ? try_to_wake_up+0x10a/0x12f0
[  722.268063]  ? print_usage_bug+0xc0/0xc0
[  722.272144]  ? migrate_swap_stop+0x930/0x930
[  722.276559]  ? __handle_mm_fault+0x9ab/0x53e0
[  722.281047]  ? graph_lock+0x170/0x170
[  722.284841]  ? print_usage_bug+0xc0/0xc0
[  722.288899]  ? __lock_acquire+0x7ec/0x4ec0
[  722.293133]  ? print_usage_bug+0xc0/0xc0
[  722.297415]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  722.302954]  ? reuse_swap_page+0x4bd/0x1520
[  722.307266]  ? swp_swapcount+0x530/0x530
[  722.311321]  ? __lock_acquire+0x7ec/0x4ec0
[  722.315541]  ? mark_held_locks+0x130/0x130
[  722.319762]  ? rcu_softirq_qs+0x20/0x20
[  722.323743]  ? __lock_acquire+0x7ec/0x4ec0
[  722.327990]  ? mark_held_locks+0x130/0x130
[  722.332214]  ? graph_lock+0x170/0x170
[  722.336002]  ? mark_held_locks+0x130/0x130
[  722.340244]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  722.345772]  ? check_preemption_disabled+0x48/0x200
[  722.350783]  ? find_held_lock+0x36/0x1c0
[  722.354833]  ? do_wp_page+0xa6f/0x1690
[  722.358709]  ? lock_downgrade+0x900/0x900
[  722.362844]  ? wake_up_page_bit+0x6f0/0x6f0
[  722.367155]  ? kasan_check_read+0x11/0x20
[  722.371293]  ? do_raw_spin_unlock+0xa7/0x2f0
[  722.375690]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  722.380271]  ? pgd_free+0x380/0x380
[  722.383902]  ? __lock_acquire+0x7ec/0x4ec0
[  722.388158]  ? _raw_spin_unlock+0x2c/0x50
[  722.392296]  ? do_wp_page+0x77c/0x1690
[  722.396178]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  722.400838]  ? find_held_lock+0x36/0x1c0
[  722.404892]  ? lock_release+0x970/0x970
[  722.408861]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  722.414395]  ? kasan_check_write+0x14/0x20
[  722.418622]  ? do_raw_spin_lock+0xc1/0x200
[  722.422848]  ? __handle_mm_fault+0x9ab/0x53e0
[  722.427336]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  722.432175]  ? __sb_end_write+0xd9/0x110
[  722.436228]  ? graph_lock+0x170/0x170
[  722.440036]  ? print_usage_bug+0xc0/0xc0
[  722.444087]  ? atime_needs_update+0x710/0x710
[  722.448584]  ? graph_lock+0x170/0x170
[  722.452373]  ? graph_lock+0x170/0x170
[  722.456168]  ? find_held_lock+0x36/0x1c0
[  722.460230]  ? __do_page_fault+0x6b7/0xec0
[  722.464478]  _do_fork+0x1cb/0x11c0
[  722.468021]  ? fork_idle+0x1d0/0x1d0
[  722.471730]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  722.477271]  ? check_preemption_disabled+0x48/0x200
[  722.482290]  ? kasan_check_write+0x14/0x20
[  722.486520]  ? up_read+0x225/0x2c0
[  722.490054]  ? up_read_non_owner+0x100/0x100
[  722.494464]  ? find_vma+0x34/0x190
[  722.498004]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  722.503547]  ? __do_page_fault+0x49c/0xec0
[  722.507779]  ? do_syscall_64+0x9a/0x820
[  722.511741]  ? do_syscall_64+0x9a/0x820
[  722.515810]  ? lockdep_hardirqs_on+0x421/0x5c0
[  722.520388]  ? trace_hardirqs_on+0xbd/0x310
[  722.524717]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  722.530078]  ? trace_hardirqs_off_caller+0x300/0x300
[  722.535180]  __x64_sys_clone+0xbf/0x150
[  722.539149]  do_syscall_64+0x1b9/0x820
[  722.543025]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  722.548383]  ? syscall_return_slowpath+0x5e0/0x5e0
[  722.553305]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  722.558148]  ? trace_hardirqs_off+0x310/0x310
[  722.562643]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  722.567663]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  722.573196]  ? prepare_exit_to_usermode+0x291/0x3b0
[  722.578219]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  722.583066]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  722.588247] RIP: 0033:0x455c4a
[  722.591430] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  722.610327] RSP: 002b:00007ffdef61b280 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  722.618040] RAX: ffffffffffffffda RBX: 00007ffdef61b280 RCX: 0000000000455c4a
[  722.625306] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  722.632575] RBP: 00007ffdef61b2c0 R08: 0000000000000001 R09: 00000000021dc940
[  722.639833] R10: 00000000021dcc10 R11: 0000000000000246 R12: 0000000000000001
[  722.647091] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  722.655610] Memory limit reached of cgroup /syz1
[  722.660513] memory: usage 6008kB, limit 0kB, failcnt 255041
[  722.666234] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  722.673075] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  722.679285] Memory cgroup stats for /syz1: cache:112KB rss:0KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:44KB inactive_file:4KB active_file:0KB unevictable:0KB
[  722.699317] Out of memory and no killable processes...
[  722.706001] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  722.719019] syz-executor1 cpuset=syz1 mems_allowed=0
[  722.724176] CPU: 0 PID: 29135 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  722.732667] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  722.742016] Call Trace:
[  722.744608]  dump_stack+0x1d3/0x2c4
[  722.748228]  ? dump_stack_print_info.cold.2+0x52/0x52
[  722.753413]  dump_header+0x27b/0xf72
[  722.757135]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  722.762057]  ? kasan_check_read+0x11/0x20
[  722.766201]  ? pagefault_out_of_memory+0x197/0x197
[  722.771134]  ? rcu_read_unlock+0x33/0x60
[  722.775209]  ? mem_cgroup_iter+0x514/0x1160
[  722.779541]  ? find_held_lock+0x36/0x1c0
[  722.783598]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  722.788344]  ? mark_held_locks+0xc7/0x130
[  722.792484]  ? _raw_spin_unlock_irq+0x27/0x80
[  722.796966]  ? _raw_spin_unlock_irq+0x27/0x80
[  722.801453]  ? lockdep_hardirqs_on+0x421/0x5c0
[  722.806025]  ? trace_hardirqs_on+0xbd/0x310
[  722.810352]  ? kasan_check_read+0x11/0x20
[  722.814486]  ? css_task_iter_end+0x222/0x490
[  722.818887]  ? trace_hardirqs_off_caller+0x300/0x300
[  722.823979]  ? kasan_check_write+0x14/0x20
[  722.828212]  ? do_raw_spin_lock+0xc1/0x200
[  722.832441]  ? _raw_spin_unlock_irq+0x60/0x80
[  722.836922]  ? css_task_iter_end+0x2ce/0x490
[  722.841335]  ? cgroup_procs_next+0x70/0x70
[  722.845560]  ? _raw_spin_unlock_irq+0x60/0x80
[  722.850043]  ? oom_badness+0xaa0/0xaa0
[  722.853927]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  722.858673]  ? mem_cgroup_iter_break+0x30/0x30
[  722.863265]  ? mark_held_locks+0xc7/0x130
[  722.867415]  out_of_memory.cold.30+0xf/0x184
[  722.871816]  ? lockdep_hardirqs_on+0x421/0x5c0
[  722.876394]  ? kasan_check_read+0x11/0x20
[  722.880532]  ? oom_killer_disable+0x3a0/0x3a0
[  722.885016]  ? kasan_check_write+0x14/0x20
[  722.889237]  ? do_raw_spin_lock+0xc1/0x200
[  722.893465]  mem_cgroup_out_of_memory+0x15e/0x210
[  722.898298]  ? memcg_memory_event+0x40/0x40
[  722.902603]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  722.907440]  ? page_counter_try_charge+0x1c1/0x220
[  722.912364]  try_charge+0xb1a/0x1690
[  722.916079]  ? lock_downgrade+0x900/0x900
[  722.920222]  ? check_preemption_disabled+0x48/0x200
[  722.925232]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  722.931282]  ? find_held_lock+0x36/0x1c0
[  722.935345]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  722.940205]  ? lock_downgrade+0x900/0x900
[  722.944344]  ? check_preemption_disabled+0x48/0x200
[  722.949352]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  722.954271]  ? kasan_check_read+0x11/0x20
[  722.958408]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  722.963672]  ? rcu_softirq_qs+0x20/0x20
[  722.967646]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  722.972501]  memcg_kmem_charge_memcg+0x7c/0x120
[  722.977161]  ? memcg_kmem_put_cache+0xb0/0xb0
[  722.981650]  ? __lock_is_held+0xb5/0x140
[  722.985707]  memcg_kmem_charge+0x135/0x300
[  722.989937]  __alloc_pages_nodemask+0x89c/0xdd0
[  722.994600]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  722.999622]  ? lock_downgrade+0x900/0x900
[  723.003771]  ? kasan_check_read+0x11/0x20
[  723.007907]  ? do_raw_spin_unlock+0xa7/0x2f0
[  723.012324]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  723.016912]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  723.022444]  alloc_pages_current+0x10c/0x210
[  723.026841]  __pmd_alloc+0x3e/0x450
[  723.030457]  ? pmd_val+0x100/0x100
[  723.033984]  pmd_alloc+0x10f/0x180
[  723.037513]  copy_page_range+0x6cf/0x26f0
[  723.041655]  ? rb_insert_color_cached+0x14b0/0x14b0
[  723.046669]  ? mark_held_locks+0x130/0x130
[  723.050900]  ? pmd_alloc+0x180/0x180
[  723.054605]  ? graph_lock+0x170/0x170
[  723.058399]  ? kasan_slab_alloc+0x12/0x20
[  723.062530]  ? kmem_cache_alloc+0x12e/0x730
[  723.066842]  ? graph_lock+0x170/0x170
[  723.070676]  ? __x64_sys_clone+0xbf/0x150
[  723.074813]  ? do_syscall_64+0x1b9/0x820
[  723.078865]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  723.084227]  ? find_held_lock+0x36/0x1c0
[  723.088278]  ? graph_lock+0x170/0x170
[  723.092067]  ? graph_lock+0x170/0x170
[  723.095858]  ? lock_downgrade+0x900/0x900
[  723.100002]  ? lock_release+0x970/0x970
[  723.103967]  ? find_held_lock+0x36/0x1c0
[  723.108025]  ? copy_process+0x454a/0x8780
[  723.112164]  ? lock_downgrade+0x900/0x900
[  723.116304]  ? lock_release+0x970/0x970
[  723.120266]  ? ttwu_stat+0x5c0/0x5c0
[  723.123976]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  723.128984]  ? vma_compute_subtree_gap+0x160/0x240
[  723.133905]  ? validate_mm_rb+0xaa/0xc0
[  723.137884]  ? __vma_link_rb+0x26c/0x370
[  723.141938]  copy_process+0x4720/0x8780
[  723.145921]  ? __cleanup_sighand+0x70/0x70
[  723.150169]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  723.155701]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  723.161253]  ? page_swapcount+0x1d0/0x1d0
[  723.165417]  ? try_to_wake_up+0x10a/0x12f0
[  723.169647]  ? lock_downgrade+0x900/0x900
[  723.173784]  ? lock_downgrade+0x900/0x900
[  723.177948]  ? trace_hardirqs_off+0xb8/0x310
[  723.182363]  ? kasan_check_read+0x11/0x20
[  723.186509]  ? trace_hardirqs_on_caller+0x310/0x310
[  723.191526]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  723.196622]  ? try_to_wake_up+0x10a/0x12f0
[  723.200855]  ? print_usage_bug+0xc0/0xc0
[  723.204914]  ? migrate_swap_stop+0x930/0x930
[  723.209342]  ? __handle_mm_fault+0x9ab/0x53e0
[  723.213832]  ? graph_lock+0x170/0x170
[  723.217623]  ? print_usage_bug+0xc0/0xc0
[  723.221680]  ? __lock_acquire+0x7ec/0x4ec0
[  723.225909]  ? print_usage_bug+0xc0/0xc0
[  723.229968]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  723.235506]  ? reuse_swap_page+0x4bd/0x1520
[  723.239825]  ? swp_swapcount+0x530/0x530
[  723.243881]  ? __lock_acquire+0x7ec/0x4ec0
[  723.248119]  ? mark_held_locks+0x130/0x130
[  723.252340]  ? rcu_softirq_qs+0x20/0x20
[  723.256321]  ? __lock_acquire+0x7ec/0x4ec0
[  723.260555]  ? mark_held_locks+0x130/0x130
[  723.264782]  ? graph_lock+0x170/0x170
[  723.268572]  ? mark_held_locks+0x130/0x130
[  723.272795]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  723.278323]  ? check_preemption_disabled+0x48/0x200
[  723.283337]  ? find_held_lock+0x36/0x1c0
[  723.287404]  ? do_wp_page+0xa6f/0x1690
[  723.291292]  ? lock_downgrade+0x900/0x900
[  723.295427]  ? wake_up_page_bit+0x6f0/0x6f0
[  723.299743]  ? kasan_check_read+0x11/0x20
[  723.303877]  ? do_raw_spin_unlock+0xa7/0x2f0
[  723.308274]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  723.312844]  ? pgd_free+0x380/0x380
[  723.316476]  ? __lock_acquire+0x7ec/0x4ec0
[  723.320709]  ? _raw_spin_unlock+0x2c/0x50
[  723.324847]  ? do_wp_page+0x77c/0x1690
[  723.328727]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  723.333386]  ? find_held_lock+0x36/0x1c0
[  723.337442]  ? lock_release+0x970/0x970
[  723.341410]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  723.346959]  ? kasan_check_write+0x14/0x20
[  723.351186]  ? do_raw_spin_lock+0xc1/0x200
[  723.355428]  ? __handle_mm_fault+0x9ab/0x53e0
[  723.359933]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  723.364762]  ? __sb_end_write+0xd9/0x110
[  723.368836]  ? graph_lock+0x170/0x170
[  723.372630]  ? print_usage_bug+0xc0/0xc0
[  723.376681]  ? atime_needs_update+0x710/0x710
[  723.381169]  ? graph_lock+0x170/0x170
[  723.384975]  ? graph_lock+0x170/0x170
[  723.388787]  ? find_held_lock+0x36/0x1c0
[  723.392841]  ? __do_page_fault+0x6b7/0xec0
[  723.397065]  _do_fork+0x1cb/0x11c0
[  723.400603]  ? fork_idle+0x1d0/0x1d0
[  723.404307]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  723.410256]  ? check_preemption_disabled+0x48/0x200
[  723.415270]  ? kasan_check_write+0x14/0x20
[  723.419494]  ? up_read+0x225/0x2c0
[  723.423018]  ? up_read_non_owner+0x100/0x100
[  723.427428]  ? find_vma+0x34/0x190
[  723.430982]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  723.436510]  ? __do_page_fault+0x49c/0xec0
[  723.440735]  ? do_syscall_64+0x9a/0x820
[  723.444697]  ? do_syscall_64+0x9a/0x820
[  723.448663]  ? lockdep_hardirqs_on+0x421/0x5c0
[  723.453236]  ? trace_hardirqs_on+0xbd/0x310
[  723.457558]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  723.462929]  ? trace_hardirqs_off_caller+0x300/0x300
[  723.468026]  __x64_sys_clone+0xbf/0x150
[  723.471992]  do_syscall_64+0x1b9/0x820
[  723.475865]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  723.481224]  ? syscall_return_slowpath+0x5e0/0x5e0
[  723.486144]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  723.490980]  ? trace_hardirqs_off+0x310/0x310
[  723.495481]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  723.500509]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  723.506062]  ? prepare_exit_to_usermode+0x291/0x3b0
[  723.511077]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  723.515919]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  723.521098] RIP: 0033:0x455c4a
[  723.524297] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  723.543212] RSP: 002b:00007ffdef61b280 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  723.550927] RAX: ffffffffffffffda RBX: 00007ffdef61b280 RCX: 0000000000455c4a
[  723.558201] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  723.565471] RBP: 00007ffdef61b2c0 R08: 0000000000000001 R09: 00000000021dc940
[  723.572736] R10: 00000000021dcc10 R11: 0000000000000246 R12: 0000000000000001
[  723.579994] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  723.591423] Memory limit reached of cgroup /syz1
[  723.596240] memory: usage 5828kB, limit 0kB, failcnt 255049
[  723.602447] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  723.609288] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  723.615444] Memory cgroup stats for /syz1: cache:112KB rss:0KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:44KB inactive_file:0KB active_file:4KB unevictable:0KB
[  723.635473] Out of memory and no killable processes...
[  723.642193] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  723.655165] syz-executor1 cpuset=syz1 mems_allowed=0
[  723.660419] CPU: 1 PID: 29135 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  723.668907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  723.678253] Call Trace:
[  723.680838]  dump_stack+0x1d3/0x2c4
[  723.684457]  ? dump_stack_print_info.cold.2+0x52/0x52
[  723.689648]  dump_header+0x27b/0xf72
[  723.693357]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  723.698275]  ? kasan_check_read+0x11/0x20
[  723.702420]  ? pagefault_out_of_memory+0x197/0x197
[  723.707384]  ? rcu_read_unlock+0x33/0x60
[  723.711460]  ? mem_cgroup_iter+0x514/0x1160
[  723.715785]  ? find_held_lock+0x36/0x1c0
[  723.719845]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  723.724598]  ? mark_held_locks+0xc7/0x130
[  723.728747]  ? _raw_spin_unlock_irq+0x27/0x80
[  723.733233]  ? _raw_spin_unlock_irq+0x27/0x80
[  723.737721]  ? lockdep_hardirqs_on+0x421/0x5c0
[  723.742299]  ? trace_hardirqs_on+0xbd/0x310
[  723.746646]  ? kasan_check_read+0x11/0x20
[  723.750795]  ? css_task_iter_end+0x222/0x490
[  723.755212]  ? trace_hardirqs_off_caller+0x300/0x300
[  723.760311]  ? kasan_check_write+0x14/0x20
[  723.764535]  ? do_raw_spin_lock+0xc1/0x200
[  723.768771]  ? _raw_spin_unlock_irq+0x60/0x80
[  723.773257]  ? css_task_iter_end+0x2ce/0x490
[  723.777678]  ? cgroup_procs_next+0x70/0x70
[  723.781912]  ? _raw_spin_unlock_irq+0x60/0x80
[  723.786419]  ? oom_badness+0xaa0/0xaa0
[  723.790302]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  723.795084]  ? mem_cgroup_iter_break+0x30/0x30
[  723.799680]  ? mark_held_locks+0xc7/0x130
[  723.803829]  out_of_memory.cold.30+0xf/0x184
[  723.808251]  ? lockdep_hardirqs_on+0x421/0x5c0
[  723.812852]  ? kasan_check_read+0x11/0x20
[  723.817005]  ? oom_killer_disable+0x3a0/0x3a0
[  723.821499]  ? kasan_check_write+0x14/0x20
[  723.825729]  ? do_raw_spin_lock+0xc1/0x200
[  723.829967]  mem_cgroup_out_of_memory+0x15e/0x210
[  723.834825]  ? memcg_memory_event+0x40/0x40
[  723.839143]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  723.843988]  ? page_counter_try_charge+0x1c1/0x220
[  723.848923]  try_charge+0xb1a/0x1690
[  723.852635]  ? lock_downgrade+0x900/0x900
[  723.856777]  ? check_preemption_disabled+0x48/0x200
[  723.861797]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  723.867854]  ? find_held_lock+0x36/0x1c0
[  723.871944]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  723.876795]  ? lock_downgrade+0x900/0x900
[  723.880937]  ? check_preemption_disabled+0x48/0x200
[  723.885952]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  723.890870]  ? kasan_check_read+0x11/0x20
[  723.895003]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  723.900354]  ? rcu_softirq_qs+0x20/0x20
[  723.904326]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  723.909165]  memcg_kmem_charge_memcg+0x7c/0x120
[  723.913821]  ? memcg_kmem_put_cache+0xb0/0xb0
[  723.918299]  ? kasan_kmalloc+0xc7/0xe0
[  723.922197]  ? kmem_cache_alloc+0x12e/0x730
[  723.926512]  ? __pmd_alloc+0xc2/0x450
[  723.930305]  ? copy_page_range+0x6cf/0x26f0
[  723.934624]  memcg_kmem_charge+0x135/0x300
[  723.938852]  __alloc_pages_nodemask+0x89c/0xdd0
[  723.943505]  ? find_held_lock+0x36/0x1c0
[  723.947560]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  723.952591]  ? find_held_lock+0x36/0x1c0
[  723.956663]  ? lock_downgrade+0x900/0x900
[  723.960797]  ? __lock_is_held+0xb5/0x140
[  723.964859]  ? kasan_check_read+0x11/0x20
[  723.968993]  ? do_raw_spin_unlock+0xa7/0x2f0
[  723.973389]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  723.977968]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  723.983499]  alloc_pages_current+0x10c/0x210
[  723.987902]  pte_alloc_one+0x1b/0x1a0
[  723.991689]  __pte_alloc+0x2a/0x350
[  723.995304]  copy_page_range+0x18a2/0x26f0
[  723.999552]  ? rb_insert_color_cached+0x14b0/0x14b0
[  724.004573]  ? pmd_alloc+0x180/0x180
[  724.008277]  ? graph_lock+0x170/0x170
[  724.012069]  ? kasan_slab_alloc+0x12/0x20
[  724.016206]  ? kmem_cache_alloc+0x12e/0x730
[  724.020542]  ? graph_lock+0x170/0x170
[  724.024332]  ? __x64_sys_clone+0xbf/0x150
[  724.028468]  ? do_syscall_64+0x1b9/0x820
[  724.032517]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  724.037883]  ? find_held_lock+0x36/0x1c0
[  724.041934]  ? graph_lock+0x170/0x170
[  724.045725]  ? graph_lock+0x170/0x170
[  724.049513]  ? lock_downgrade+0x900/0x900
[  724.053654]  ? lock_release+0x970/0x970
[  724.057626]  ? find_held_lock+0x36/0x1c0
[  724.061681]  ? copy_process+0x454a/0x8780
[  724.065820]  ? lock_downgrade+0x900/0x900
[  724.069974]  ? lock_release+0x970/0x970
[  724.073938]  ? ttwu_stat+0x5c0/0x5c0
[  724.077652]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  724.082659]  ? vma_compute_subtree_gap+0x160/0x240
[  724.087587]  ? validate_mm_rb+0xaa/0xc0
[  724.091577]  ? __vma_link_rb+0x26c/0x370
[  724.095637]  copy_process+0x4720/0x8780
[  724.099627]  ? __cleanup_sighand+0x70/0x70
[  724.103870]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  724.109398]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  724.114932]  ? page_swapcount+0x1d0/0x1d0
[  724.119070]  ? try_to_wake_up+0x10a/0x12f0
[  724.123297]  ? lock_downgrade+0x900/0x900
[  724.127443]  ? lock_downgrade+0x900/0x900
[  724.131610]  ? trace_hardirqs_off+0xb8/0x310
[  724.136023]  ? kasan_check_read+0x11/0x20
[  724.140168]  ? trace_hardirqs_on_caller+0x310/0x310
[  724.145182]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  724.150277]  ? try_to_wake_up+0x10a/0x12f0
[  724.154505]  ? print_usage_bug+0xc0/0xc0
[  724.158562]  ? migrate_swap_stop+0x930/0x930
[  724.162969]  ? __handle_mm_fault+0x9ab/0x53e0
[  724.167458]  ? graph_lock+0x170/0x170
[  724.171247]  ? print_usage_bug+0xc0/0xc0
[  724.175301]  ? __lock_acquire+0x7ec/0x4ec0
[  724.179529]  ? print_usage_bug+0xc0/0xc0
[  724.183581]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  724.189111]  ? reuse_swap_page+0x4bd/0x1520
[  724.193429]  ? swp_swapcount+0x530/0x530
[  724.197484]  ? __lock_acquire+0x7ec/0x4ec0
[  724.201703]  ? mark_held_locks+0x130/0x130
[  724.205926]  ? rcu_softirq_qs+0x20/0x20
[  724.209894]  ? __lock_acquire+0x7ec/0x4ec0
[  724.214126]  ? mark_held_locks+0x130/0x130
[  724.218351]  ? graph_lock+0x170/0x170
[  724.222146]  ? mark_held_locks+0x130/0x130
[  724.226387]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  724.231917]  ? check_preemption_disabled+0x48/0x200
[  724.236943]  ? find_held_lock+0x36/0x1c0
[  724.240993]  ? do_wp_page+0xa6f/0x1690
[  724.244915]  ? lock_downgrade+0x900/0x900
[  724.249052]  ? wake_up_page_bit+0x6f0/0x6f0
[  724.253364]  ? kasan_check_read+0x11/0x20
[  724.257515]  ? do_raw_spin_unlock+0xa7/0x2f0
[  724.261917]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  724.266486]  ? pgd_free+0x380/0x380
[  724.270106]  ? __lock_acquire+0x7ec/0x4ec0
[  724.274342]  ? _raw_spin_unlock+0x2c/0x50
[  724.278477]  ? do_wp_page+0x77c/0x1690
[  724.282356]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  724.287035]  ? find_held_lock+0x36/0x1c0
[  724.291121]  ? lock_release+0x970/0x970
[  724.295297]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  724.300847]  ? kasan_check_write+0x14/0x20
[  724.305069]  ? do_raw_spin_lock+0xc1/0x200
[  724.309298]  ? __handle_mm_fault+0x9ab/0x53e0
[  724.313795]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  724.318649]  ? __sb_end_write+0xd9/0x110
[  724.322701]  ? graph_lock+0x170/0x170
[  724.326496]  ? print_usage_bug+0xc0/0xc0
[  724.330550]  ? atime_needs_update+0x710/0x710
[  724.335135]  ? graph_lock+0x170/0x170
[  724.338929]  ? graph_lock+0x170/0x170
[  724.342726]  ? find_held_lock+0x36/0x1c0
[  724.346782]  ? __do_page_fault+0x6b7/0xec0
[  724.351009]  _do_fork+0x1cb/0x11c0
[  724.354542]  ? fork_idle+0x1d0/0x1d0
[  724.358276]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  724.363824]  ? check_preemption_disabled+0x48/0x200
[  724.368842]  ? kasan_check_write+0x14/0x20
[  724.373067]  ? up_read+0x225/0x2c0
[  724.376594]  ? up_read_non_owner+0x100/0x100
[  724.381015]  ? find_vma+0x34/0x190
[  724.384549]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  724.390077]  ? __do_page_fault+0x49c/0xec0
[  724.394311]  ? do_syscall_64+0x9a/0x820
[  724.398272]  ? do_syscall_64+0x9a/0x820
[  724.402234]  ? lockdep_hardirqs_on+0x421/0x5c0
[  724.406812]  ? trace_hardirqs_on+0xbd/0x310
[  724.411134]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  724.416491]  ? trace_hardirqs_off_caller+0x300/0x300
[  724.421592]  __x64_sys_clone+0xbf/0x150
[  724.425562]  do_syscall_64+0x1b9/0x820
[  724.429438]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  724.434798]  ? syscall_return_slowpath+0x5e0/0x5e0
[  724.439722]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  724.444556]  ? trace_hardirqs_off+0x310/0x310
[  724.449056]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  724.454092]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  724.459642]  ? prepare_exit_to_usermode+0x291/0x3b0
[  724.464658]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  724.469496]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  724.474675] RIP: 0033:0x455c4a
[  724.477858] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  724.496769] RSP: 002b:00007ffdef61b280 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  724.504480] RAX: ffffffffffffffda RBX: 00007ffdef61b280 RCX: 0000000000455c4a
[  724.511745] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  724.519010] RBP: 00007ffdef61b2c0 R08: 0000000000000001 R09: 00000000021dc940
[  724.526278] R10: 00000000021dcc10 R11: 0000000000000246 R12: 0000000000000001
[  724.533564] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  724.541203] Memory limit reached of cgroup /syz1
[  724.546132] memory: usage 5772kB, limit 0kB, failcnt 255057
[  724.551937] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  724.558746] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  724.564882] Memory cgroup stats for /syz1: cache:112KB rss:0KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:44KB inactive_file:4KB active_file:0KB unevictable:0KB
[  724.584943] Out of memory and no killable processes...
[  724.591804] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  724.604770] syz-executor1 cpuset=syz1 mems_allowed=0
[  724.610000] CPU: 1 PID: 29135 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  724.618487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  724.627837] Call Trace:
[  724.630419]  dump_stack+0x1d3/0x2c4
[  724.634037]  ? dump_stack_print_info.cold.2+0x52/0x52
[  724.639225]  dump_header+0x27b/0xf72
[  724.642929]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  724.647846]  ? kasan_check_read+0x11/0x20
[  724.651990]  ? pagefault_out_of_memory+0x197/0x197
[  724.656936]  ? rcu_read_unlock+0x33/0x60
[  724.660989]  ? mem_cgroup_iter+0x514/0x1160
[  724.665299]  ? find_held_lock+0x36/0x1c0
[  724.669357]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  724.674110]  ? mark_held_locks+0xc7/0x130
[  724.678255]  ? _raw_spin_unlock_irq+0x27/0x80
[  724.682739]  ? _raw_spin_unlock_irq+0x27/0x80
[  724.687229]  ? lockdep_hardirqs_on+0x421/0x5c0
[  724.691802]  ? trace_hardirqs_on+0xbd/0x310
[  724.696117]  ? kasan_check_read+0x11/0x20
[  724.700259]  ? css_task_iter_end+0x222/0x490
[  724.704686]  ? trace_hardirqs_off_caller+0x300/0x300
[  724.709791]  ? kasan_check_write+0x14/0x20
[  724.714027]  ? do_raw_spin_lock+0xc1/0x200
[  724.718254]  ? _raw_spin_unlock_irq+0x60/0x80
[  724.722737]  ? css_task_iter_end+0x2ce/0x490
[  724.727136]  ? cgroup_procs_next+0x70/0x70
[  724.731364]  ? _raw_spin_unlock_irq+0x60/0x80
[  724.735849]  ? oom_badness+0xaa0/0xaa0
[  724.739735]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  724.744484]  ? mem_cgroup_iter_break+0x30/0x30
[  724.749067]  ? mark_held_locks+0xc7/0x130
[  724.753225]  out_of_memory.cold.30+0xf/0x184
[  724.757632]  ? lockdep_hardirqs_on+0x421/0x5c0
[  724.762204]  ? kasan_check_read+0x11/0x20
[  724.766340]  ? oom_killer_disable+0x3a0/0x3a0
[  724.770827]  ? kasan_check_write+0x14/0x20
[  724.775053]  ? do_raw_spin_lock+0xc1/0x200
[  724.779285]  mem_cgroup_out_of_memory+0x15e/0x210
[  724.784140]  ? memcg_memory_event+0x40/0x40
[  724.788469]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  724.793310]  ? page_counter_try_charge+0x1c1/0x220
[  724.798250]  try_charge+0xb1a/0x1690
[  724.801957]  ? lock_downgrade+0x900/0x900
[  724.806095]  ? check_preemption_disabled+0x48/0x200
[  724.811130]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  724.817212]  ? find_held_lock+0x36/0x1c0
[  724.821295]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  724.826136]  ? lock_downgrade+0x900/0x900
[  724.830272]  ? check_preemption_disabled+0x48/0x200
[  724.835283]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  724.840222]  ? kasan_check_read+0x11/0x20
[  724.844365]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  724.849651]  ? rcu_softirq_qs+0x20/0x20
[  724.853629]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  724.858469]  memcg_kmem_charge_memcg+0x7c/0x120
[  724.863144]  ? memcg_kmem_put_cache+0xb0/0xb0
[  724.867630]  ? kmem_cache_alloc+0x12e/0x730
[  724.871943]  ? print_usage_bug+0xc0/0xc0
[  724.875996]  memcg_kmem_charge+0x135/0x300
[  724.880225]  __alloc_pages_nodemask+0x89c/0xdd0
[  724.884884]  ? __lock_acquire+0x7ec/0x4ec0
[  724.889116]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  724.894134]  ? print_usage_bug+0xc0/0xc0
[  724.898223]  ? find_held_lock+0x36/0x1c0
[  724.902320]  ? __lock_acquire+0x7ec/0x4ec0
[  724.906573]  ? is_bpf_text_address+0xac/0x170
[  724.911074]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  724.916640]  alloc_pages_current+0x10c/0x210
[  724.921053]  pte_alloc_one+0x1b/0x1a0
[  724.924850]  __pte_alloc+0x2a/0x350
[  724.928497]  copy_page_range+0x18a2/0x26f0
[  724.932733]  ? rb_insert_color_cached+0x14b0/0x14b0
[  724.937761]  ? pmd_alloc+0x180/0x180
[  724.941474]  ? graph_lock+0x170/0x170
[  724.945292]  ? kasan_slab_alloc+0x12/0x20
[  724.949454]  ? kmem_cache_alloc+0x12e/0x730
[  724.953781]  ? graph_lock+0x170/0x170
[  724.957585]  ? __x64_sys_clone+0xbf/0x150
[  724.961755]  ? do_syscall_64+0x1b9/0x820
[  724.965820]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  724.971197]  ? find_held_lock+0x36/0x1c0
[  724.975270]  ? anon_vma_fork+0x5ef/0x820
[  724.979340]  ? lock_downgrade+0x900/0x900
[  724.983502]  ? lock_release+0x970/0x970
[  724.987506]  ? ttwu_stat+0x5c0/0x5c0
[  724.991231]  ? __lock_is_held+0xb5/0x140
[  724.995303]  ? up_write+0x7b/0x220
[  724.998843]  ? down_write_nested+0x130/0x130
[  725.003260]  ? anon_vma_interval_tree_insert+0x2c9/0x370
[  725.008747]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  725.013773]  ? vma_compute_subtree_gap+0x160/0x240
[  725.018744]  ? validate_mm_rb+0xaa/0xc0
[  725.022728]  ? __vma_link_rb+0x26c/0x370
[  725.026795]  copy_process+0x4720/0x8780
[  725.030793]  ? __cleanup_sighand+0x70/0x70
[  725.035063]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  725.040607]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  725.046192]  ? page_swapcount+0x1d0/0x1d0
[  725.050361]  ? try_to_wake_up+0x10a/0x12f0
[  725.054627]  ? lock_downgrade+0x900/0x900
[  725.058779]  ? lock_downgrade+0x900/0x900
[  725.062944]  ? trace_hardirqs_off+0xb8/0x310
[  725.067356]  ? kasan_check_read+0x11/0x20
[  725.071536]  ? trace_hardirqs_on_caller+0x310/0x310
[  725.076557]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  725.081659]  ? try_to_wake_up+0x10a/0x12f0
[  725.085888]  ? print_usage_bug+0xc0/0xc0
[  725.089942]  ? migrate_swap_stop+0x930/0x930
[  725.094347]  ? __handle_mm_fault+0x9ab/0x53e0
[  725.098841]  ? graph_lock+0x170/0x170
[  725.102642]  ? print_usage_bug+0xc0/0xc0
[  725.106711]  ? __lock_acquire+0x7ec/0x4ec0
[  725.110955]  ? print_usage_bug+0xc0/0xc0
[  725.115024]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  725.120562]  ? reuse_swap_page+0x4bd/0x1520
[  725.124880]  ? swp_swapcount+0x530/0x530
[  725.128945]  ? __lock_acquire+0x7ec/0x4ec0
[  725.133180]  ? mark_held_locks+0x130/0x130
[  725.137408]  ? rcu_softirq_qs+0x20/0x20
[  725.141386]  ? __lock_acquire+0x7ec/0x4ec0
[  725.145634]  ? mark_held_locks+0x130/0x130
[  725.149868]  ? graph_lock+0x170/0x170
[  725.153664]  ? mark_held_locks+0x130/0x130
[  725.157896]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  725.163429]  ? check_preemption_disabled+0x48/0x200
[  725.168450]  ? find_held_lock+0x36/0x1c0
[  725.172513]  ? do_wp_page+0xa6f/0x1690
[  725.176400]  ? lock_downgrade+0x900/0x900
[  725.180536]  ? wake_up_page_bit+0x6f0/0x6f0
[  725.184859]  ? kasan_check_read+0x11/0x20
[  725.189011]  ? do_raw_spin_unlock+0xa7/0x2f0
[  725.193419]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  725.198012]  ? pgd_free+0x380/0x380
[  725.201632]  ? __lock_acquire+0x7ec/0x4ec0
[  725.205888]  ? _raw_spin_unlock+0x2c/0x50
[  725.210032]  ? do_wp_page+0x77c/0x1690
[  725.213913]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  725.218577]  ? find_held_lock+0x36/0x1c0
[  725.222646]  ? lock_release+0x970/0x970
[  725.226624]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  725.232162]  ? kasan_check_write+0x14/0x20
[  725.236393]  ? do_raw_spin_lock+0xc1/0x200
[  725.240633]  ? __handle_mm_fault+0x9ab/0x53e0
[  725.245163]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  725.250024]  ? __sb_end_write+0xd9/0x110
[  725.254087]  ? graph_lock+0x170/0x170
[  725.257903]  ? print_usage_bug+0xc0/0xc0
[  725.261960]  ? atime_needs_update+0x710/0x710
[  725.266453]  ? graph_lock+0x170/0x170
[  725.270245]  ? graph_lock+0x170/0x170
[  725.274045]  ? find_held_lock+0x36/0x1c0
[  725.278116]  ? __do_page_fault+0x6b7/0xec0
[  725.282348]  _do_fork+0x1cb/0x11c0
[  725.285884]  ? fork_idle+0x1d0/0x1d0
[  725.289594]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  725.295132]  ? check_preemption_disabled+0x48/0x200
[  725.300151]  ? kasan_check_write+0x14/0x20
[  725.304385]  ? up_read+0x225/0x2c0
[  725.307919]  ? up_read_non_owner+0x100/0x100
[  725.312380]  ? find_vma+0x34/0x190
[  725.315921]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  725.321473]  ? __do_page_fault+0x49c/0xec0
[  725.325703]  ? do_syscall_64+0x9a/0x820
[  725.329673]  ? do_syscall_64+0x9a/0x820
[  725.333649]  ? lockdep_hardirqs_on+0x421/0x5c0
[  725.338231]  ? trace_hardirqs_on+0xbd/0x310
[  725.342550]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  725.347917]  ? trace_hardirqs_off_caller+0x300/0x300
[  725.353017]  __x64_sys_clone+0xbf/0x150
[  725.356991]  do_syscall_64+0x1b9/0x820
[  725.360877]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  725.366287]  ? syscall_return_slowpath+0x5e0/0x5e0
[  725.371217]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  725.376061]  ? trace_hardirqs_off+0x310/0x310
[  725.380553]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  725.385569]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  725.391126]  ? prepare_exit_to_usermode+0x291/0x3b0
[  725.396196]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  725.401088]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  725.406635] RIP: 0033:0x455c4a
[  725.409836] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  725.428744] RSP: 002b:00007ffdef61b280 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  725.436461] RAX: ffffffffffffffda RBX: 00007ffdef61b280 RCX: 0000000000455c4a
[  725.443879] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  725.451165] RBP: 00007ffdef61b2c0 R08: 0000000000000001 R09: 00000000021dc940
[  725.458437] R10: 00000000021dcc10 R11: 0000000000000246 R12: 0000000000000001
[  725.465763] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  725.473545] Memory limit reached of cgroup /syz1
[  725.478530] memory: usage 5776kB, limit 0kB, failcnt 255065
[  725.484268] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  725.491202] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  725.497409] Memory cgroup stats for /syz1: cache:112KB rss:0KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:44KB inactive_file:0KB active_file:4KB unevictable:0KB
[  725.517584] Out of memory and no killable processes...
[  725.524382] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  725.537780] syz-executor1 cpuset=syz1 mems_allowed=0
[  725.542938] CPU: 1 PID: 29135 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  725.551434] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  725.560842] Call Trace:
[  725.563443]  dump_stack+0x1d3/0x2c4
[  725.567082]  ? dump_stack_print_info.cold.2+0x52/0x52
[  725.572425]  dump_header+0x27b/0xf72
[  725.576236]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  725.581226]  ? kasan_check_read+0x11/0x20
[  725.585387]  ? pagefault_out_of_memory+0x197/0x197
[  725.590327]  ? rcu_read_unlock+0x33/0x60
[  725.594398]  ? mem_cgroup_iter+0x514/0x1160
[  725.598730]  ? find_held_lock+0x36/0x1c0
[  725.602798]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  725.607629]  ? mark_held_locks+0xc7/0x130
[  725.611788]  ? _raw_spin_unlock_irq+0x27/0x80
[  725.616288]  ? _raw_spin_unlock_irq+0x27/0x80
[  725.620787]  ? lockdep_hardirqs_on+0x421/0x5c0
[  725.625375]  ? trace_hardirqs_on+0xbd/0x310
[  725.629754]  ? kasan_check_read+0x11/0x20
[  725.633907]  ? css_task_iter_end+0x222/0x490
[  725.638324]  ? trace_hardirqs_off_caller+0x300/0x300
[  725.643438]  ? kasan_check_write+0x14/0x20
[  725.647674]  ? do_raw_spin_lock+0xc1/0x200
[  725.651915]  ? _raw_spin_unlock_irq+0x60/0x80
[  725.656414]  ? css_task_iter_end+0x2ce/0x490
[  725.660827]  ? cgroup_procs_next+0x70/0x70
[  725.665070]  ? _raw_spin_unlock_irq+0x60/0x80
[  725.669664]  ? oom_badness+0xaa0/0xaa0
[  725.673564]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  725.678329]  ? mem_cgroup_iter_break+0x30/0x30
[  725.682974]  ? mark_held_locks+0xc7/0x130
[  725.687159]  out_of_memory.cold.30+0xf/0x184
[  725.691630]  ? lockdep_hardirqs_on+0x421/0x5c0
[  725.696235]  ? kasan_check_read+0x11/0x20
[  725.700443]  ? oom_killer_disable+0x3a0/0x3a0
[  725.705006]  ? kasan_check_write+0x14/0x20
[  725.709249]  ? do_raw_spin_lock+0xc1/0x200
[  725.713498]  mem_cgroup_out_of_memory+0x15e/0x210
[  725.718351]  ? memcg_memory_event+0x40/0x40
[  725.722675]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  725.727582]  ? page_counter_try_charge+0x1c1/0x220
[  725.732521]  try_charge+0xb1a/0x1690
[  725.736240]  ? lock_downgrade+0x900/0x900
[  725.740444]  ? check_preemption_disabled+0x48/0x200
[  725.745469]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  725.751533]  ? find_held_lock+0x36/0x1c0
[  725.755667]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  725.760566]  ? lock_downgrade+0x900/0x900
[  725.764716]  ? check_preemption_disabled+0x48/0x200
[  725.769739]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  725.774675]  ? kasan_check_read+0x11/0x20
[  725.778824]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  725.784124]  ? rcu_softirq_qs+0x20/0x20
[  725.788288]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  725.793163]  memcg_kmem_charge_memcg+0x7c/0x120
[  725.797835]  ? memcg_kmem_put_cache+0xb0/0xb0
[  725.802329]  ? kmem_cache_alloc+0x12e/0x730
[  725.806655]  ? print_usage_bug+0xc0/0xc0
[  725.810722]  memcg_kmem_charge+0x135/0x300
[  725.815013]  __alloc_pages_nodemask+0x89c/0xdd0
[  725.819688]  ? __lock_acquire+0x7ec/0x4ec0
[  725.823930]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  725.828951]  ? print_usage_bug+0xc0/0xc0
[  725.833027]  ? find_held_lock+0x36/0x1c0
[  725.837191]  ? __lock_acquire+0x7ec/0x4ec0
[  725.841434]  ? is_bpf_text_address+0xac/0x170
[  725.845937]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  725.851481]  alloc_pages_current+0x10c/0x210
[  725.855947]  pte_alloc_one+0x1b/0x1a0
[  725.859801]  __pte_alloc+0x2a/0x350
[  725.863431]  copy_page_range+0x18a2/0x26f0
[  725.867672]  ? rb_insert_color_cached+0x14b0/0x14b0
[  725.872702]  ? pmd_alloc+0x180/0x180
[  725.876653]  ? graph_lock+0x170/0x170
[  725.880507]  ? kasan_slab_alloc+0x12/0x20
[  725.884705]  ? kmem_cache_alloc+0x12e/0x730
[  725.889033]  ? graph_lock+0x170/0x170
[  725.892834]  ? __x64_sys_clone+0xbf/0x150
[  725.896984]  ? do_syscall_64+0x1b9/0x820
[  725.901049]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  725.906424]  ? find_held_lock+0x36/0x1c0
[  725.910494]  ? anon_vma_fork+0x5ef/0x820
[  725.914561]  ? lock_downgrade+0x900/0x900
[  725.918787]  ? lock_release+0x970/0x970
[  725.922761]  ? ttwu_stat+0x5c0/0x5c0
[  725.926478]  ? __lock_is_held+0xb5/0x140
[  725.930670]  ? up_write+0x7b/0x220
[  725.934212]  ? down_write_nested+0x130/0x130
[  725.938630]  ? anon_vma_interval_tree_insert+0x2c9/0x370
[  725.944123]  ? anon_vma_fork+0x13c/0x820
[  725.948196]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  725.953213]  ? vma_compute_subtree_gap+0x160/0x240
[  725.958160]  ? validate_mm_rb+0xaa/0xc0
[  725.962224]  ? __vma_link_rb+0x26c/0x370
[  725.966309]  copy_process+0x4720/0x8780
[  725.970311]  ? __cleanup_sighand+0x70/0x70
[  725.974553]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  725.980191]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  725.985790]  ? page_swapcount+0x1d0/0x1d0
[  725.989942]  ? try_to_wake_up+0x10a/0x12f0
[  725.994180]  ? lock_downgrade+0x900/0x900
[  725.998448]  ? lock_downgrade+0x900/0x900
[  726.002602]  ? trace_hardirqs_off+0xb8/0x310
[  726.007023]  ? kasan_check_read+0x11/0x20
[  726.011230]  ? trace_hardirqs_on_caller+0x310/0x310
[  726.016259]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  726.021482]  ? try_to_wake_up+0x10a/0x12f0
[  726.025722]  ? print_usage_bug+0xc0/0xc0
[  726.029786]  ? migrate_swap_stop+0x930/0x930
[  726.034249]  ? __handle_mm_fault+0x9ab/0x53e0
[  726.038751]  ? graph_lock+0x170/0x170
[  726.042557]  ? print_usage_bug+0xc0/0xc0
[  726.046628]  ? __lock_acquire+0x7ec/0x4ec0
[  726.050868]  ? print_usage_bug+0xc0/0xc0
[  726.054936]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  726.060479]  ? reuse_swap_page+0x4bd/0x1520
[  726.064821]  ? swp_swapcount+0x530/0x530
[  726.068894]  ? __lock_acquire+0x7ec/0x4ec0
[  726.073338]  ? mark_held_locks+0x130/0x130
[  726.077636]  ? rcu_softirq_qs+0x20/0x20
[  726.081625]  ? __lock_acquire+0x7ec/0x4ec0
[  726.085868]  ? mark_held_locks+0x130/0x130
[  726.090135]  ? graph_lock+0x170/0x170
[  726.093996]  ? mark_held_locks+0x130/0x130
[  726.098239]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  726.103785]  ? check_preemption_disabled+0x48/0x200
[  726.108811]  ? find_held_lock+0x36/0x1c0
[  726.112878]  ? do_wp_page+0xa6f/0x1690
[  726.117052]  ? lock_downgrade+0x900/0x900
[  726.121208]  ? wake_up_page_bit+0x6f0/0x6f0
[  726.125603]  ? kasan_check_read+0x11/0x20
[  726.129878]  ? do_raw_spin_unlock+0xa7/0x2f0
[  726.134360]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  726.138947]  ? pgd_free+0x380/0x380
[  726.142575]  ? __lock_acquire+0x7ec/0x4ec0
[  726.146823]  ? _raw_spin_unlock+0x2c/0x50
[  726.150983]  ? do_wp_page+0x77c/0x1690
[  726.154880]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  726.159560]  ? find_held_lock+0x36/0x1c0
[  726.163641]  ? lock_release+0x970/0x970
[  726.167634]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  726.173270]  ? kasan_check_write+0x14/0x20
[  726.177688]  ? do_raw_spin_lock+0xc1/0x200
[  726.181930]  ? __handle_mm_fault+0x9ab/0x53e0
[  726.186487]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  726.191334]  ? __sb_end_write+0xd9/0x110
[  726.195401]  ? graph_lock+0x170/0x170
[  726.199261]  ? print_usage_bug+0xc0/0xc0
[  726.203326]  ? atime_needs_update+0x710/0x710
[  726.207828]  ? graph_lock+0x170/0x170
[  726.211634]  ? graph_lock+0x170/0x170
[  726.215440]  ? find_held_lock+0x36/0x1c0
[  726.219507]  ? __do_page_fault+0x6b7/0xec0
[  726.223748]  _do_fork+0x1cb/0x11c0
[  726.227295]  ? fork_idle+0x1d0/0x1d0
[  726.231034]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  726.236605]  ? check_preemption_disabled+0x48/0x200
[  726.241651]  ? kasan_check_write+0x14/0x20
[  726.245893]  ? up_read+0x225/0x2c0
[  726.249586]  ? up_read_non_owner+0x100/0x100
[  726.254094]  ? find_vma+0x34/0x190
[  726.257678]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  726.263225]  ? __do_page_fault+0x49c/0xec0
[  726.267489]  ? do_syscall_64+0x9a/0x820
[  726.271485]  ? do_syscall_64+0x9a/0x820
[  726.275520]  ? lockdep_hardirqs_on+0x421/0x5c0
[  726.280145]  ? trace_hardirqs_on+0xbd/0x310
[  726.284538]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  726.289982]  ? trace_hardirqs_off_caller+0x300/0x300
[  726.295412]  __x64_sys_clone+0xbf/0x150
[  726.299410]  do_syscall_64+0x1b9/0x820
[  726.303304]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  726.308808]  ? syscall_return_slowpath+0x5e0/0x5e0
[  726.313791]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  726.318649]  ? trace_hardirqs_off+0x310/0x310
[  726.323215]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  726.328305]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  726.333853]  ? prepare_exit_to_usermode+0x291/0x3b0
[  726.338903]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  726.343757]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  726.348956] RIP: 0033:0x455c4a
[  726.352263] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  726.371236] RSP: 002b:00007ffdef61b280 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  726.379094] RAX: ffffffffffffffda RBX: 00007ffdef61b280 RCX: 0000000000455c4a
[  726.386459] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  726.393744] RBP: 00007ffdef61b2c0 R08: 0000000000000001 R09: 00000000021dc940
[  726.401211] R10: 00000000021dcc10 R11: 0000000000000246 R12: 0000000000000001
[  726.410907] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  726.420055] Memory limit reached of cgroup /syz1
[  726.424952] memory: usage 5768kB, limit 0kB, failcnt 255073
[  726.430988] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  726.437864] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  726.444080] Memory cgroup stats for /syz1: cache:112KB rss:0KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:44KB inactive_file:4KB active_file:0KB unevictable:0KB
[  726.464194] Out of memory and no killable processes...
[  726.470998] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  726.484134] syz-executor1 cpuset=syz1 mems_allowed=0
[  726.489552] CPU: 1 PID: 29135 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  726.498053] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  726.507483] Call Trace:
[  726.510095]  dump_stack+0x1d3/0x2c4
[  726.513768]  ? dump_stack_print_info.cold.2+0x52/0x52
[  726.518975]  dump_header+0x27b/0xf72
[  726.522699]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  726.527640]  ? kasan_check_read+0x11/0x20
[  726.531947]  ? pagefault_out_of_memory+0x197/0x197
[  726.536895]  ? rcu_read_unlock+0x33/0x60
[  726.541028]  ? mem_cgroup_iter+0x514/0x1160
[  726.545365]  ? find_held_lock+0x36/0x1c0
[  726.549442]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  726.554261]  ? mark_held_locks+0xc7/0x130
[  726.558417]  ? _raw_spin_unlock_irq+0x27/0x80
[  726.563024]  ? _raw_spin_unlock_irq+0x27/0x80
[  726.567526]  ? lockdep_hardirqs_on+0x421/0x5c0
[  726.572132]  ? trace_hardirqs_on+0xbd/0x310
[  726.576457]  ? kasan_check_read+0x11/0x20
[  726.580603]  ? css_task_iter_end+0x222/0x490
[  726.585021]  ? trace_hardirqs_off_caller+0x300/0x300
[  726.590167]  ? kasan_check_write+0x14/0x20
[  726.594401]  ? do_raw_spin_lock+0xc1/0x200
[  726.598645]  ? _raw_spin_unlock_irq+0x60/0x80
[  726.603301]  ? css_task_iter_end+0x2ce/0x490
[  726.607717]  ? cgroup_procs_next+0x70/0x70
[  726.612081]  ? _raw_spin_unlock_irq+0x60/0x80
[  726.616669]  ? oom_badness+0xaa0/0xaa0
[  726.620565]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  726.625388]  ? mem_cgroup_iter_break+0x30/0x30
[  726.630027]  ? mark_held_locks+0xc7/0x130
[  726.634238]  out_of_memory.cold.30+0xf/0x184
[  726.638650]  ? lockdep_hardirqs_on+0x421/0x5c0
[  726.643236]  ? kasan_check_read+0x11/0x20
[  726.647503]  ? oom_killer_disable+0x3a0/0x3a0
[  726.652024]  ? kasan_check_write+0x14/0x20
[  726.656260]  ? do_raw_spin_lock+0xc1/0x200
[  726.660507]  mem_cgroup_out_of_memory+0x15e/0x210
[  726.665597]  ? memcg_memory_event+0x40/0x40
[  726.669990]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  726.674839]  ? page_counter_try_charge+0x1c1/0x220
[  726.679777]  try_charge+0xb1a/0x1690
[  726.683491]  ? lock_downgrade+0x900/0x900
[  726.687794]  ? check_preemption_disabled+0x48/0x200
[  726.692818]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  726.698931]  ? find_held_lock+0x36/0x1c0
[  726.703051]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  726.707901]  ? lock_downgrade+0x900/0x900
[  726.712049]  ? check_preemption_disabled+0x48/0x200
[  726.717144]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  726.722152]  ? kasan_check_read+0x11/0x20
[  726.726321]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  726.731602]  ? rcu_softirq_qs+0x20/0x20
[  726.735652]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  726.740503]  memcg_kmem_charge_memcg+0x7c/0x120
[  726.745176]  ? memcg_kmem_put_cache+0xb0/0xb0
[  726.749807]  ? save_stack+0x43/0xd0
[  726.753437]  ? kasan_slab_alloc+0x12/0x20
[  726.757694]  ? kmem_cache_alloc+0x12e/0x730
[  726.762014]  ? ptlock_alloc+0x20/0x80
[  726.765881]  memcg_kmem_charge+0x135/0x300
[  726.770150]  __alloc_pages_nodemask+0x89c/0xdd0
[  726.774831]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  726.779908]  ? print_usage_bug+0xc0/0xc0
[  726.784173]  ? __lock_acquire+0x7ec/0x4ec0
[  726.788415]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  726.793965]  ? graph_lock+0x170/0x170
[  726.797771]  ? find_held_lock+0x36/0x1c0
[  726.801849]  ? __lock_acquire+0x7ec/0x4ec0
[  726.806092]  ? print_usage_bug+0xc0/0xc0
[  726.810186]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  726.815731]  alloc_pages_current+0x10c/0x210
[  726.820235]  get_zeroed_page+0x14/0x50
[  726.824146]  __pud_alloc+0x3b/0x240
[  726.827777]  pud_alloc+0xe1/0x150
[  726.831236]  copy_page_range+0x439/0x26f0
[  726.835384]  ? rcu_softirq_qs+0x20/0x20
[  726.839413]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  726.844435]  ? vma_compute_subtree_gap+0x160/0x240
[  726.849379]  ? __rb_insert_augmented+0x3b2/0x1890
[  726.854226]  ? unwind_get_return_address+0x61/0xa0
[  726.859170]  ? __save_stack_trace+0x8d/0xf0
[  726.863492]  ? pmd_alloc+0x180/0x180
[  726.867210]  ? save_stack+0xa9/0xd0
[  726.870896]  ? save_stack+0x43/0xd0
[  726.874526]  ? kasan_kmalloc+0xc7/0xe0
[  726.878499]  ? kasan_slab_alloc+0x12/0x20
[  726.882649]  ? kmem_cache_alloc+0x12e/0x730
[  726.887032]  ? vm_area_dup+0x7a/0x230
[  726.890833]  ? copy_process+0x429f/0x8780
[  726.894981]  ? _do_fork+0x1cb/0x11c0
[  726.898694]  ? __x64_sys_clone+0xbf/0x150
[  726.902842]  ? do_syscall_64+0x1b9/0x820
[  726.906903]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  726.912278]  ? graph_lock+0x170/0x170
[  726.916079]  ? lock_downgrade+0x900/0x900
[  726.920250]  ? graph_lock+0x170/0x170
[  726.924053]  ? graph_lock+0x170/0x170
[  726.927862]  ? find_held_lock+0x36/0x1c0
[  726.931933]  ? copy_process+0x454a/0x8780
[  726.936155]  ? lock_downgrade+0x900/0x900
[  726.940309]  ? lock_release+0x970/0x970
[  726.944281]  ? ttwu_stat+0x5c0/0x5c0
[  726.947999]  ? dup_userfaultfd+0x6d8/0x890
[  726.952244]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  726.957262]  ? vma_compute_subtree_gap+0x160/0x240
[  726.962245]  ? validate_mm_rb+0xaa/0xc0
[  726.966227]  ? __vma_link_rb+0x26c/0x370
[  726.970292]  copy_process+0x4720/0x8780
[  726.974292]  ? __cleanup_sighand+0x70/0x70
[  726.978536]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  726.984073]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  726.989679]  ? page_swapcount+0x1d0/0x1d0
[  726.993832]  ? try_to_wake_up+0x10a/0x12f0
[  726.998071]  ? lock_downgrade+0x900/0x900
[  727.002222]  ? lock_downgrade+0x900/0x900
[  727.006436]  ? trace_hardirqs_off+0xb8/0x310
[  727.010846]  ? kasan_check_read+0x11/0x20
[  727.015214]  ? trace_hardirqs_on_caller+0x310/0x310
[  727.020290]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  727.025443]  ? try_to_wake_up+0x10a/0x12f0
[  727.029687]  ? print_usage_bug+0xc0/0xc0
[  727.033755]  ? migrate_swap_stop+0x930/0x930
[  727.038171]  ? __handle_mm_fault+0x9ab/0x53e0
[  727.042681]  ? graph_lock+0x170/0x170
[  727.046485]  ? print_usage_bug+0xc0/0xc0
[  727.050556]  ? __lock_acquire+0x7ec/0x4ec0
[  727.054796]  ? print_usage_bug+0xc0/0xc0
[  727.058919]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  727.064462]  ? reuse_swap_page+0x4bd/0x1520
[  727.068882]  ? swp_swapcount+0x530/0x530
[  727.073003]  ? __lock_acquire+0x7ec/0x4ec0
[  727.077293]  ? mark_held_locks+0x130/0x130
[  727.081609]  ? rcu_softirq_qs+0x20/0x20
[  727.085683]  ? __lock_acquire+0x7ec/0x4ec0
[  727.089980]  ? mark_held_locks+0x130/0x130
[  727.094220]  ? graph_lock+0x170/0x170
[  727.098027]  ? mark_held_locks+0x130/0x130
[  727.102267]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  727.107810]  ? check_preemption_disabled+0x48/0x200
[  727.112894]  ? find_held_lock+0x36/0x1c0
[  727.116968]  ? do_wp_page+0xa6f/0x1690
[  727.121075]  ? lock_downgrade+0x900/0x900
[  727.125254]  ? wake_up_page_bit+0x6f0/0x6f0
[  727.129582]  ? kasan_check_read+0x11/0x20
[  727.133783]  ? do_raw_spin_unlock+0xa7/0x2f0
[  727.138252]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  727.142841]  ? pgd_free+0x380/0x380
[  727.146466]  ? __lock_acquire+0x7ec/0x4ec0
[  727.150744]  ? _raw_spin_unlock+0x2c/0x50
[  727.154942]  ? do_wp_page+0x77c/0x1690
[  727.158840]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  727.163516]  ? find_held_lock+0x36/0x1c0
[  727.167582]  ? lock_release+0x970/0x970
[  727.171562]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  727.177131]  ? kasan_check_write+0x14/0x20
[  727.181446]  ? do_raw_spin_lock+0xc1/0x200
[  727.185689]  ? __handle_mm_fault+0x9ab/0x53e0
[  727.190269]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  727.195137]  ? __sb_end_write+0xd9/0x110
[  727.199330]  ? graph_lock+0x170/0x170
[  727.203152]  ? print_usage_bug+0xc0/0xc0
[  727.207217]  ? atime_needs_update+0x710/0x710
[  727.211713]  ? graph_lock+0x170/0x170
[  727.215514]  ? graph_lock+0x170/0x170
[  727.219323]  ? find_held_lock+0x36/0x1c0
[  727.223439]  ? __do_page_fault+0x6b7/0xec0
[  727.227690]  _do_fork+0x1cb/0x11c0
[  727.231236]  ? fork_idle+0x1d0/0x1d0
[  727.234951]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  727.240491]  ? check_preemption_disabled+0x48/0x200
[  727.245565]  ? kasan_check_write+0x14/0x20
[  727.249805]  ? up_read+0x225/0x2c0
[  727.253349]  ? up_read_non_owner+0x100/0x100
[  727.257765]  ? find_vma+0x34/0x190
[  727.261313]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  727.266909]  ? __do_page_fault+0x49c/0xec0
[  727.271172]  ? do_syscall_64+0x9a/0x820
[  727.275207]  ? do_syscall_64+0x9a/0x820
[  727.279191]  ? lockdep_hardirqs_on+0x421/0x5c0
[  727.283892]  ? trace_hardirqs_on+0xbd/0x310
[  727.288269]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  727.293640]  ? trace_hardirqs_off_caller+0x300/0x300
[  727.298775]  __x64_sys_clone+0xbf/0x150
[  727.302755]  do_syscall_64+0x1b9/0x820
[  727.306648]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  727.312168]  ? syscall_return_slowpath+0x5e0/0x5e0
[  727.317100]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  727.322136]  ? trace_hardirqs_off+0x310/0x310
[  727.326837]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  727.331857]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  727.337413]  ? prepare_exit_to_usermode+0x291/0x3b0
[  727.342449]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  727.347313]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  727.352632] RIP: 0033:0x455c4a
[  727.355875] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  727.375046] RSP: 002b:00007ffdef61b280 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  727.382759] RAX: ffffffffffffffda RBX: 00007ffdef61b280 RCX: 0000000000455c4a
[  727.390032] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  727.397304] RBP: 00007ffdef61b2c0 R08: 0000000000000001 R09: 00000000021dc940
[  727.404969] R10: 00000000021dcc10 R11: 0000000000000246 R12: 0000000000000001
[  727.412244] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  727.420469] Memory limit reached of cgroup /syz1
[  727.425392] memory: usage 5744kB, limit 0kB, failcnt 255081
[  727.431395] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  727.438276] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  727.444421] Memory cgroup stats for /syz1: cache:112KB rss:0KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:44KB inactive_file:0KB active_file:4KB unevictable:0KB
[  727.464649] Out of memory and no killable processes...
[  727.471693] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  727.484714] syz-executor1 cpuset=syz1 mems_allowed=0
[  727.490062] CPU: 1 PID: 29135 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  727.498557] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  727.507912] Call Trace:
[  727.510503]  dump_stack+0x1d3/0x2c4
[  727.514210]  ? dump_stack_print_info.cold.2+0x52/0x52
[  727.519418]  dump_header+0x27b/0xf72
[  727.523188]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  727.528151]  ? kasan_check_read+0x11/0x20
[  727.532315]  ? pagefault_out_of_memory+0x197/0x197
[  727.537264]  ? rcu_read_unlock+0x33/0x60
[  727.541331]  ? mem_cgroup_iter+0x514/0x1160
[  727.545668]  ? find_held_lock+0x36/0x1c0
[  727.549740]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  727.554503]  ? mark_held_locks+0xc7/0x130
[  727.558659]  ? _raw_spin_unlock_irq+0x27/0x80
[  727.563165]  ? _raw_spin_unlock_irq+0x27/0x80
[  727.567843]  ? lockdep_hardirqs_on+0x421/0x5c0
[  727.572442]  ? trace_hardirqs_on+0xbd/0x310
[  727.576771]  ? kasan_check_read+0x11/0x20
[  727.580933]  ? css_task_iter_end+0x222/0x490
[  727.585352]  ? trace_hardirqs_off_caller+0x300/0x300
[  727.590470]  ? kasan_check_write+0x14/0x20
[  727.594713]  ? do_raw_spin_lock+0xc1/0x200
[  727.598959]  ? _raw_spin_unlock_irq+0x60/0x80
[  727.603471]  ? css_task_iter_end+0x2ce/0x490
[  727.607889]  ? cgroup_procs_next+0x70/0x70
[  727.612193]  ? _raw_spin_unlock_irq+0x60/0x80
[  727.616697]  ? oom_badness+0xaa0/0xaa0
[  727.620592]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  727.625359]  ? mem_cgroup_iter_break+0x30/0x30
[  727.629959]  ? mark_held_locks+0xc7/0x130
[  727.634136]  out_of_memory.cold.30+0xf/0x184
[  727.638560]  ? lockdep_hardirqs_on+0x421/0x5c0
[  727.643221]  ? kasan_check_read+0x11/0x20
[  727.647393]  ? oom_killer_disable+0x3a0/0x3a0
[  727.651909]  ? kasan_check_write+0x14/0x20
[  727.656169]  ? do_raw_spin_lock+0xc1/0x200
[  727.660421]  mem_cgroup_out_of_memory+0x15e/0x210
[  727.665328]  ? memcg_memory_event+0x40/0x40
[  727.669659]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  727.674568]  ? page_counter_try_charge+0x1c1/0x220
[  727.679519]  try_charge+0xb1a/0x1690
[  727.683318]  ? lock_downgrade+0x900/0x900
[  727.687491]  ? check_preemption_disabled+0x48/0x200
[  727.692664]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  727.698731]  ? find_held_lock+0x36/0x1c0
[  727.702809]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  727.707663]  ? lock_downgrade+0x900/0x900
[  727.711818]  ? check_preemption_disabled+0x48/0x200
[  727.716848]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  727.721787]  ? kasan_check_read+0x11/0x20
[  727.725991]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  727.731323]  ? rcu_softirq_qs+0x20/0x20
[  727.735313]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  727.740170]  memcg_kmem_charge_memcg+0x7c/0x120
[  727.744898]  ? memcg_kmem_put_cache+0xb0/0xb0
[  727.749402]  ? __lock_is_held+0xb5/0x140
[  727.753470]  memcg_kmem_charge+0x135/0x300
[  727.757722]  __alloc_pages_nodemask+0x89c/0xdd0
[  727.762454]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  727.767502]  ? lock_downgrade+0x900/0x900
[  727.771713]  ? kasan_check_read+0x11/0x20
[  727.775916]  ? do_raw_spin_unlock+0xa7/0x2f0
[  727.780335]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  727.784926]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  727.790527]  alloc_pages_current+0x10c/0x210
[  727.794968]  __pmd_alloc+0x3e/0x450
[  727.798597]  ? pmd_val+0x100/0x100
[  727.802166]  pmd_alloc+0x10f/0x180
[  727.805826]  copy_page_range+0x6cf/0x26f0
[  727.809979]  ? rcu_softirq_qs+0x20/0x20
[  727.813963]  ? vma_compute_subtree_gap+0x160/0x240
[  727.818901]  ? unwind_get_return_address+0x61/0xa0
[  727.823889]  ? __save_stack_trace+0x8d/0xf0
[  727.828279]  ? pmd_alloc+0x180/0x180
[  727.832003]  ? save_stack+0xa9/0xd0
[  727.835636]  ? save_stack+0x43/0xd0
[  727.839269]  ? kasan_kmalloc+0xc7/0xe0
[  727.843161]  ? kasan_slab_alloc+0x12/0x20
[  727.847312]  ? kmem_cache_alloc+0x12e/0x730
[  727.851641]  ? vm_area_dup+0x7a/0x230
[  727.855503]  ? copy_process+0x429f/0x8780
[  727.859654]  ? _do_fork+0x1cb/0x11c0
[  727.863374]  ? __x64_sys_clone+0xbf/0x150
[  727.867640]  ? do_syscall_64+0x1b9/0x820
[  727.871718]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  727.877207]  ? graph_lock+0x170/0x170
[  727.881011]  ? lock_downgrade+0x900/0x900
[  727.885383]  ? graph_lock+0x170/0x170
[  727.889188]  ? graph_lock+0x170/0x170
[  727.892991]  ? find_held_lock+0x36/0x1c0
[  727.897135]  ? copy_process+0x454a/0x8780
[  727.901346]  ? lock_downgrade+0x900/0x900
[  727.905552]  ? lock_release+0x970/0x970
[  727.909527]  ? ttwu_stat+0x5c0/0x5c0
[  727.913370]  ? dup_userfaultfd+0x6d8/0x890
[  727.917625]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  727.922700]  ? vma_compute_subtree_gap+0x160/0x240
[  727.927702]  ? validate_mm_rb+0xaa/0xc0
[  727.931857]  ? __vma_link_rb+0x26c/0x370
[  727.935927]  copy_process+0x4720/0x8780
[  727.939925]  ? __cleanup_sighand+0x70/0x70
[  727.944168]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  727.949710]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  727.955253]  ? page_swapcount+0x1d0/0x1d0
[  727.959405]  ? try_to_wake_up+0x10a/0x12f0
[  727.963645]  ? lock_downgrade+0x900/0x900
[  727.967790]  ? lock_downgrade+0x900/0x900
[  727.971942]  ? trace_hardirqs_off+0xb8/0x310
[  727.976363]  ? kasan_check_read+0x11/0x20
[  727.980515]  ? trace_hardirqs_on_caller+0x310/0x310
[  727.985542]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  727.990652]  ? try_to_wake_up+0x10a/0x12f0
[  727.995092]  ? print_usage_bug+0xc0/0xc0
[  727.999199]  ? migrate_swap_stop+0x930/0x930
[  728.003613]  ? __handle_mm_fault+0x9ab/0x53e0
[  728.008151]  ? graph_lock+0x170/0x170
[  728.012075]  ? print_usage_bug+0xc0/0xc0
[  728.016169]  ? __lock_acquire+0x7ec/0x4ec0
[  728.020407]  ? print_usage_bug+0xc0/0xc0
[  728.024475]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  728.030014]  ? reuse_swap_page+0x4bd/0x1520
[  728.034424]  ? swp_swapcount+0x530/0x530
[  728.038492]  ? __lock_acquire+0x7ec/0x4ec0
[  728.042735]  ? mark_held_locks+0x130/0x130
[  728.047024]  ? rcu_softirq_qs+0x20/0x20
[  728.051006]  ? __lock_acquire+0x7ec/0x4ec0
[  728.055252]  ? mark_held_locks+0x130/0x130
[  728.059493]  ? graph_lock+0x170/0x170
[  728.063291]  ? mark_held_locks+0x130/0x130
[  728.067581]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  728.073145]  ? check_preemption_disabled+0x48/0x200
[  728.078225]  ? find_held_lock+0x36/0x1c0
[  728.082297]  ? do_wp_page+0xa6f/0x1690
[  728.086201]  ? lock_downgrade+0x900/0x900
[  728.090352]  ? wake_up_page_bit+0x6f0/0x6f0
[  728.094694]  ? kasan_check_read+0x11/0x20
[  728.098849]  ? do_raw_spin_unlock+0xa7/0x2f0
[  728.103263]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  728.107849]  ? pgd_free+0x380/0x380
[  728.111592]  ? __lock_acquire+0x7ec/0x4ec0
[  728.115841]  ? _raw_spin_unlock+0x2c/0x50
[  728.120008]  ? do_wp_page+0x77c/0x1690
[  728.123915]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  728.128589]  ? find_held_lock+0x36/0x1c0
[  728.132737]  ? lock_release+0x970/0x970
[  728.136725]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  728.142397]  ? kasan_check_write+0x14/0x20
[  728.146807]  ? do_raw_spin_lock+0xc1/0x200
[  728.151047]  ? __handle_mm_fault+0x9ab/0x53e0
[  728.155552]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  728.160396]  ? __sb_end_write+0xd9/0x110
[  728.164459]  ? graph_lock+0x170/0x170
[  728.168261]  ? print_usage_bug+0xc0/0xc0
[  728.172344]  ? atime_needs_update+0x710/0x710
[  728.176841]  ? graph_lock+0x170/0x170
[  728.180643]  ? graph_lock+0x170/0x170
[  728.184449]  ? find_held_lock+0x36/0x1c0
[  728.188516]  ? __do_page_fault+0x6b7/0xec0
[  728.192808]  _do_fork+0x1cb/0x11c0
[  728.196354]  ? fork_idle+0x1d0/0x1d0
[  728.200070]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  728.205625]  ? check_preemption_disabled+0x48/0x200
[  728.210655]  ? kasan_check_write+0x14/0x20
[  728.214985]  ? up_read+0x225/0x2c0
[  728.218532]  ? up_read_non_owner+0x100/0x100
[  728.222943]  ? find_vma+0x34/0x190
[  728.226492]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  728.232034]  ? __do_page_fault+0x49c/0xec0
[  728.236274]  ? do_syscall_64+0x9a/0x820
[  728.240252]  ? do_syscall_64+0x9a/0x820
[  728.244233]  ? lockdep_hardirqs_on+0x421/0x5c0
[  728.248823]  ? trace_hardirqs_on+0xbd/0x310
[  728.253160]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  728.258583]  ? trace_hardirqs_off_caller+0x300/0x300
[  728.263747]  __x64_sys_clone+0xbf/0x150
[  728.267730]  do_syscall_64+0x1b9/0x820
[  728.271624]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  728.276995]  ? syscall_return_slowpath+0x5e0/0x5e0
[  728.281930]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  728.286776]  ? trace_hardirqs_off+0x310/0x310
[  728.291279]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  728.296561]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  728.302126]  ? prepare_exit_to_usermode+0x291/0x3b0
[  728.307178]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  728.312031]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  728.317278] RIP: 0033:0x455c4a
[  728.320478] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  728.339387] RSP: 002b:00007ffdef61b280 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  728.347222] RAX: ffffffffffffffda RBX: 00007ffdef61b280 RCX: 0000000000455c4a
[  728.354497] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  728.361899] RBP: 00007ffdef61b2c0 R08: 0000000000000001 R09: 00000000021dc940
[  728.369177] R10: 00000000021dcc10 R11: 0000000000000246 R12: 0000000000000001
[  728.376462] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  728.386449] Memory limit reached of cgroup /syz1
[  728.391443] memory: usage 5748kB, limit 0kB, failcnt 255089
[  728.397289] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  728.404181] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  728.410565] Memory cgroup stats for /syz1: cache:112KB rss:0KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:44KB inactive_file:4KB active_file:0KB unevictable:0KB
[  728.430861] Out of memory and no killable processes...
[  728.437755] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  728.450790] syz-executor1 cpuset=syz1 mems_allowed=0
[  728.455941] CPU: 1 PID: 29135 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  728.464482] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  728.473891] Call Trace:
[  728.476602]  dump_stack+0x1d3/0x2c4
[  728.480244]  ? dump_stack_print_info.cold.2+0x52/0x52
[  728.485443]  dump_header+0x27b/0xf72
[  728.489167]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  728.494095]  ? kasan_check_read+0x11/0x20
[  728.498282]  ? pagefault_out_of_memory+0x197/0x197
[  728.503221]  ? rcu_read_unlock+0x33/0x60
[  728.507288]  ? mem_cgroup_iter+0x514/0x1160
[  728.511622]  ? find_held_lock+0x36/0x1c0
[  728.515692]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  728.520456]  ? mark_held_locks+0xc7/0x130
[  728.524613]  ? _raw_spin_unlock_irq+0x27/0x80
[  728.529188]  ? _raw_spin_unlock_irq+0x27/0x80
[  728.533686]  ? lockdep_hardirqs_on+0x421/0x5c0
[  728.538271]  ? trace_hardirqs_on+0xbd/0x310
[  728.542593]  ? kasan_check_read+0x11/0x20
[  728.546741]  ? css_task_iter_end+0x222/0x490
[  728.551161]  ? trace_hardirqs_off_caller+0x300/0x300
[  728.556273]  ? kasan_check_write+0x14/0x20
[  728.560512]  ? do_raw_spin_lock+0xc1/0x200
[  728.564760]  ? _raw_spin_unlock_irq+0x60/0x80
[  728.569313]  ? css_task_iter_end+0x2ce/0x490
[  728.573732]  ? cgroup_procs_next+0x70/0x70
[  728.578025]  ? _raw_spin_unlock_irq+0x60/0x80
[  728.582583]  ? oom_badness+0xaa0/0xaa0
[  728.586658]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  728.591440]  ? mem_cgroup_iter_break+0x30/0x30
[  728.596229]  ? mark_held_locks+0xc7/0x130
[  728.600393]  out_of_memory.cold.30+0xf/0x184
[  728.605156]  ? lockdep_hardirqs_on+0x421/0x5c0
[  728.609747]  ? kasan_check_read+0x11/0x20
[  728.613962]  ? oom_killer_disable+0x3a0/0x3a0
[  728.618632]  ? kasan_check_write+0x14/0x20
[  728.622873]  ? do_raw_spin_lock+0xc1/0x200
[  728.627143]  mem_cgroup_out_of_memory+0x15e/0x210
[  728.631996]  ? memcg_memory_event+0x40/0x40
[  728.636319]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  728.641224]  ? page_counter_try_charge+0x1c1/0x220
[  728.646175]  try_charge+0xb1a/0x1690
[  728.650010]  ? lock_downgrade+0x900/0x900
[  728.654213]  ? check_preemption_disabled+0x48/0x200
[  728.659288]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  728.665371]  ? find_held_lock+0x36/0x1c0
[  728.669444]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  728.674303]  ? lock_downgrade+0x900/0x900
[  728.678454]  ? check_preemption_disabled+0x48/0x200
[  728.683483]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  728.688472]  ? kasan_check_read+0x11/0x20
[  728.692635]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  728.697919]  ? rcu_softirq_qs+0x20/0x20
[  728.701908]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  728.706756]  memcg_kmem_charge_memcg+0x7c/0x120
[  728.711428]  ? memcg_kmem_put_cache+0xb0/0xb0
[  728.715974]  ? kasan_kmalloc+0xc7/0xe0
[  728.719865]  ? kmem_cache_alloc+0x12e/0x730
[  728.724249]  ? __pmd_alloc+0xc2/0x450
[  728.728054]  ? copy_page_range+0x6cf/0x26f0
[  728.732391]  memcg_kmem_charge+0x135/0x300
[  728.736690]  __alloc_pages_nodemask+0x89c/0xdd0
[  728.741365]  ? find_held_lock+0x36/0x1c0
[  728.745435]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  728.750456]  ? find_held_lock+0x36/0x1c0
[  728.754525]  ? lock_downgrade+0x900/0x900
[  728.758672]  ? __lock_is_held+0xb5/0x140
[  728.762791]  ? kasan_check_read+0x11/0x20
[  728.766944]  ? do_raw_spin_unlock+0xa7/0x2f0
[  728.771357]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  728.775949]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  728.781584]  alloc_pages_current+0x10c/0x210
[  728.786000]  pte_alloc_one+0x1b/0x1a0
[  728.789804]  __pte_alloc+0x2a/0x350
[  728.793460]  copy_page_range+0x18a2/0x26f0
[  728.797700]  ? rcu_softirq_qs+0x20/0x20
[  728.801703]  ? unwind_get_return_address+0x61/0xa0
[  728.806638]  ? pmd_alloc+0x180/0x180
[  728.810363]  ? save_stack+0xa9/0xd0
[  728.813996]  ? save_stack+0x43/0xd0
[  728.817632]  ? kasan_kmalloc+0xc7/0xe0
[  728.821537]  ? kasan_slab_alloc+0x12/0x20
[  728.825863]  ? kmem_cache_alloc+0x12e/0x730
[  728.830367]  ? vm_area_dup+0x7a/0x230
[  728.834177]  ? copy_process+0x429f/0x8780
[  728.838333]  ? _do_fork+0x1cb/0x11c0
[  728.842069]  ? __x64_sys_clone+0xbf/0x150
[  728.846229]  ? do_syscall_64+0x1b9/0x820
[  728.850306]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  728.855689]  ? graph_lock+0x170/0x170
[  728.859573]  ? lock_downgrade+0x900/0x900
[  728.863738]  ? graph_lock+0x170/0x170
[  728.867635]  ? graph_lock+0x170/0x170
[  728.871453]  ? find_held_lock+0x36/0x1c0
[  728.875530]  ? copy_process+0x454a/0x8780
[  728.879708]  ? lock_downgrade+0x900/0x900
[  728.883880]  ? lock_release+0x970/0x970
[  728.887872]  ? ttwu_stat+0x5c0/0x5c0
[  728.891599]  ? dup_userfaultfd+0x6d8/0x890
[  728.895864]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  728.900896]  ? vma_compute_subtree_gap+0x160/0x240
[  728.905839]  ? validate_mm_rb+0xaa/0xc0
[  728.909880]  ? __vma_link_rb+0x26c/0x370
[  728.914005]  copy_process+0x4720/0x8780
[  728.918092]  ? __cleanup_sighand+0x70/0x70
[  728.922367]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  728.927914]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  728.933531]  ? page_swapcount+0x1d0/0x1d0
[  728.937694]  ? try_to_wake_up+0x10a/0x12f0
[  728.942151]  ? lock_downgrade+0x900/0x900
[  728.946443]  ? lock_downgrade+0x900/0x900
[  728.950608]  ? trace_hardirqs_off+0xb8/0x310
[  728.955037]  ? kasan_check_read+0x11/0x20
[  728.959350]  ? trace_hardirqs_on_caller+0x310/0x310
[  728.964386]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  728.969499]  ? try_to_wake_up+0x10a/0x12f0
[  728.973750]  ? print_usage_bug+0xc0/0xc0
[  728.977821]  ? migrate_swap_stop+0x930/0x930
[  728.982304]  ? __handle_mm_fault+0x9ab/0x53e0
[  728.986874]  ? graph_lock+0x170/0x170
[  728.990702]  ? print_usage_bug+0xc0/0xc0
[  728.994791]  ? __lock_acquire+0x7ec/0x4ec0
[  728.999134]  ? print_usage_bug+0xc0/0xc0
[  729.003243]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  729.008798]  ? reuse_swap_page+0x4bd/0x1520
[  729.013164]  ? swp_swapcount+0x530/0x530
[  729.017243]  ? __lock_acquire+0x7ec/0x4ec0
[  729.021605]  ? mark_held_locks+0x130/0x130
[  729.025860]  ? rcu_softirq_qs+0x20/0x20
[  729.029924]  ? __lock_acquire+0x7ec/0x4ec0
[  729.034177]  ? mark_held_locks+0x130/0x130
[  729.038421]  ? graph_lock+0x170/0x170
[  729.042251]  ? mark_held_locks+0x130/0x130
[  729.046556]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  729.052226]  ? check_preemption_disabled+0x48/0x200
[  729.057253]  ? find_held_lock+0x36/0x1c0
[  729.061380]  ? do_wp_page+0xa6f/0x1690
[  729.065285]  ? lock_downgrade+0x900/0x900
[  729.069447]  ? wake_up_page_bit+0x6f0/0x6f0
[  729.073783]  ? kasan_check_read+0x11/0x20
[  729.077937]  ? do_raw_spin_unlock+0xa7/0x2f0
[  729.082351]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  729.086940]  ? pgd_free+0x380/0x380
[  729.090572]  ? __lock_acquire+0x7ec/0x4ec0
[  729.094819]  ? _raw_spin_unlock+0x2c/0x50
[  729.098974]  ? do_wp_page+0x77c/0x1690
[  729.102870]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  729.107552]  ? find_held_lock+0x36/0x1c0
[  729.111628]  ? lock_release+0x970/0x970
[  729.115615]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  729.121173]  ? kasan_check_write+0x14/0x20
[  729.125480]  ? do_raw_spin_lock+0xc1/0x200
[  729.129725]  ? __handle_mm_fault+0x9ab/0x53e0
[  729.134250]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  729.139170]  ? __sb_end_write+0xd9/0x110
[  729.143243]  ? graph_lock+0x170/0x170
[  729.147049]  ? print_usage_bug+0xc0/0xc0
[  729.151143]  ? atime_needs_update+0x710/0x710
[  729.155652]  ? graph_lock+0x170/0x170
[  729.159457]  ? graph_lock+0x170/0x170
[  729.163320]  ? find_held_lock+0x36/0x1c0
[  729.167410]  ? __do_page_fault+0x6b7/0xec0
[  729.171668]  _do_fork+0x1cb/0x11c0
[  729.175214]  ? fork_idle+0x1d0/0x1d0
[  729.178934]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  729.184478]  ? check_preemption_disabled+0x48/0x200
[  729.189505]  ? kasan_check_write+0x14/0x20
[  729.193749]  ? up_read+0x225/0x2c0
[  729.197345]  ? up_read_non_owner+0x100/0x100
[  729.201921]  ? find_vma+0x34/0x190
[  729.205518]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  729.211060]  ? __do_page_fault+0x49c/0xec0
[  729.215344]  ? do_syscall_64+0x9a/0x820
[  729.219324]  ? do_syscall_64+0x9a/0x820
[  729.223388]  ? lockdep_hardirqs_on+0x421/0x5c0
[  729.227974]  ? trace_hardirqs_on+0xbd/0x310
[  729.232305]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  729.237678]  ? trace_hardirqs_off_caller+0x300/0x300
[  729.242790]  __x64_sys_clone+0xbf/0x150
[  729.246774]  do_syscall_64+0x1b9/0x820
[  729.250721]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  729.256169]  ? syscall_return_slowpath+0x5e0/0x5e0
[  729.261127]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  729.266150]  ? trace_hardirqs_off+0x310/0x310
[  729.270653]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  729.275673]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  729.281216]  ? prepare_exit_to_usermode+0x291/0x3b0
[  729.286238]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  729.291092]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  729.296309] RIP: 0033:0x455c4a
[  729.299506] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  729.318465] RSP: 002b:00007ffdef61b280 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  729.326243] RAX: ffffffffffffffda RBX: 00007ffdef61b280 RCX: 0000000000455c4a
[  729.333520] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  729.340901] RBP: 00007ffdef61b2c0 R08: 0000000000000001 R09: 00000000021dc940
[  729.348184] R10: 00000000021dcc10 R11: 0000000000000246 R12: 0000000000000001
[  729.355506] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  729.367500] Memory limit reached of cgroup /syz1
[  729.374735] memory: usage 5580kB, limit 0kB, failcnt 255097
[  729.380721] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  729.387755] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  729.393972] Memory cgroup stats for /syz1: cache:112KB rss:0KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:44KB inactive_file:0KB active_file:4KB unevictable:0KB
[  729.414472] Out of memory and no killable processes...
[  729.421412] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  729.434355] syz-executor1 cpuset=syz1 mems_allowed=0
[  729.439726] CPU: 0 PID: 29135 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  729.448219] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  729.457797] Call Trace:
[  729.460394]  dump_stack+0x1d3/0x2c4
[  729.464026]  ? dump_stack_print_info.cold.2+0x52/0x52
[  729.469229]  dump_header+0x27b/0xf72
[  729.472945]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  729.477879]  ? kasan_check_read+0x11/0x20
[  729.482042]  ? pagefault_out_of_memory+0x197/0x197
[  729.486982]  ? rcu_read_unlock+0x33/0x60
[  729.491050]  ? mem_cgroup_iter+0x514/0x1160
[  729.495377]  ? find_held_lock+0x36/0x1c0
[  729.499448]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  729.504204]  ? mark_held_locks+0xc7/0x130
[  729.508354]  ? _raw_spin_unlock_irq+0x27/0x80
[  729.512863]  ? _raw_spin_unlock_irq+0x27/0x80
[  729.517480]  ? lockdep_hardirqs_on+0x421/0x5c0
[  729.522071]  ? trace_hardirqs_on+0xbd/0x310
[  729.526393]  ? kasan_check_read+0x11/0x20
[  729.530540]  ? css_task_iter_end+0x222/0x490
[  729.534955]  ? trace_hardirqs_off_caller+0x300/0x300
[  729.540064]  ? kasan_check_write+0x14/0x20
[  729.544304]  ? do_raw_spin_lock+0xc1/0x200
[  729.548715]  ? _raw_spin_unlock_irq+0x60/0x80
[  729.553215]  ? css_task_iter_end+0x2ce/0x490
[  729.557664]  ? cgroup_procs_next+0x70/0x70
[  729.561902]  ? _raw_spin_unlock_irq+0x60/0x80
[  729.566403]  ? oom_badness+0xaa0/0xaa0
[  729.570331]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  729.575179]  ? mem_cgroup_iter_break+0x30/0x30
[  729.579779]  ? mark_held_locks+0xc7/0x130
[  729.583934]  out_of_memory.cold.30+0xf/0x184
[  729.588347]  ? lockdep_hardirqs_on+0x421/0x5c0
[  729.592935]  ? kasan_check_read+0x11/0x20
[  729.597087]  ? oom_killer_disable+0x3a0/0x3a0
[  729.601787]  ? kasan_check_write+0x14/0x20
[  729.606023]  ? do_raw_spin_lock+0xc1/0x200
[  729.610272]  mem_cgroup_out_of_memory+0x15e/0x210
[  729.615148]  ? memcg_memory_event+0x40/0x40
[  729.619474]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  729.624320]  ? page_counter_try_charge+0x1c1/0x220
[  729.629259]  try_charge+0xb1a/0x1690
[  729.632976]  ? lock_downgrade+0x900/0x900
[  729.637158]  ? check_preemption_disabled+0x48/0x200
[  729.642186]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  729.648248]  ? find_held_lock+0x36/0x1c0
[  729.652433]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  729.657332]  ? lock_downgrade+0x900/0x900
[  729.661493]  ? check_preemption_disabled+0x48/0x200
[  729.666514]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  729.671567]  ? kasan_check_read+0x11/0x20
[  729.675720]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  729.681003]  ? rcu_softirq_qs+0x20/0x20
[  729.684987]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  729.689966]  memcg_kmem_charge_memcg+0x7c/0x120
[  729.694644]  ? memcg_kmem_put_cache+0xb0/0xb0
[  729.699160]  ? kmem_cache_alloc+0x12e/0x730
[  729.703539]  ? pte_alloc_one+0x6b/0x1a0
[  729.707525]  ? __pte_alloc+0x2a/0x350
[  729.711488]  ? copy_page_range+0x18a2/0x26f0
[  729.715954]  ? copy_process+0x4720/0x8780
[  729.720145]  memcg_kmem_charge+0x135/0x300
[  729.724481]  __alloc_pages_nodemask+0x89c/0xdd0
[  729.729173]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  729.734314]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  729.739856]  ? graph_lock+0x170/0x170
[  729.743716]  ? find_held_lock+0x36/0x1c0
[  729.747788]  ? __lock_is_held+0xb5/0x140
[  729.751850]  ? lock_downgrade+0x900/0x900
[  729.756012]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  729.761558]  alloc_pages_current+0x10c/0x210
[  729.766178]  pte_alloc_one+0x1b/0x1a0
[  729.769983]  __pte_alloc+0x2a/0x350
[  729.773621]  copy_page_range+0x18a2/0x26f0
[  729.777880]  ? pmd_alloc+0x180/0x180
[  729.781602]  ? save_stack+0xa9/0xd0
[  729.785236]  ? save_stack+0x43/0xd0
[  729.788865]  ? kasan_slab_alloc+0x12/0x20
[  729.793013]  ? kmem_cache_alloc+0x12e/0x730
[  729.797333]  ? vm_area_dup+0x7a/0x230
[  729.801162]  ? copy_process+0x429f/0x8780
[  729.805307]  ? _do_fork+0x1cb/0x11c0
[  729.809028]  ? __x64_sys_clone+0xbf/0x150
[  729.813184]  ? do_syscall_64+0x1b9/0x820
[  729.817256]  ? graph_lock+0x170/0x170
[  729.821065]  ? lock_downgrade+0x900/0x900
[  729.825285]  ? graph_lock+0x170/0x170
[  729.829092]  ? graph_lock+0x170/0x170
[  729.832931]  ? find_held_lock+0x36/0x1c0
[  729.837172]  ? copy_process+0x454a/0x8780
[  729.841411]  ? lock_downgrade+0x900/0x900
[  729.845702]  ? lock_release+0x970/0x970
[  729.849678]  ? ttwu_stat+0x5c0/0x5c0
[  729.853395]  ? dup_userfaultfd+0x6d8/0x890
[  729.857638]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  729.862655]  ? vma_compute_subtree_gap+0x160/0x240
[  729.867588]  ? validate_mm_rb+0xaa/0xc0
[  729.871564]  ? __vma_link_rb+0x26c/0x370
[  729.875632]  copy_process+0x4720/0x8780
[  729.879632]  ? __cleanup_sighand+0x70/0x70
[  729.883879]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  729.889422]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  729.895100]  ? page_swapcount+0x1d0/0x1d0
[  729.899282]  ? try_to_wake_up+0x10a/0x12f0
[  729.903569]  ? lock_downgrade+0x900/0x900
[  729.907720]  ? lock_downgrade+0x900/0x900
[  729.911871]  ? trace_hardirqs_off+0xb8/0x310
[  729.916277]  ? kasan_check_read+0x11/0x20
[  729.920495]  ? trace_hardirqs_on_caller+0x310/0x310
[  729.925524]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  729.930837]  ? try_to_wake_up+0x10a/0x12f0
[  729.935081]  ? print_usage_bug+0xc0/0xc0
[  729.939174]  ? migrate_swap_stop+0x930/0x930
[  729.943590]  ? __handle_mm_fault+0x9ab/0x53e0
[  729.948097]  ? graph_lock+0x170/0x170
[  729.951938]  ? print_usage_bug+0xc0/0xc0
[  729.956009]  ? __lock_acquire+0x7ec/0x4ec0
[  729.960300]  ? print_usage_bug+0xc0/0xc0
[  729.964368]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  729.970022]  ? reuse_swap_page+0x4bd/0x1520
[  729.974366]  ? swp_swapcount+0x530/0x530
[  729.978442]  ? __lock_acquire+0x7ec/0x4ec0
[  729.982678]  ? mark_held_locks+0x130/0x130
[  729.986911]  ? rcu_softirq_qs+0x20/0x20
[  729.990891]  ? __lock_acquire+0x7ec/0x4ec0
[  729.995178]  ? mark_held_locks+0x130/0x130
[  729.999483]  ? graph_lock+0x170/0x170
[  730.003444]  ? mark_held_locks+0x130/0x130
[  730.007853]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  730.013394]  ? check_preemption_disabled+0x48/0x200
[  730.018541]  ? find_held_lock+0x36/0x1c0
[  730.022610]  ? do_wp_page+0xa6f/0x1690
[  730.026503]  ? lock_downgrade+0x900/0x900
[  730.030652]  ? wake_up_page_bit+0x6f0/0x6f0
[  730.035027]  ? kasan_check_read+0x11/0x20
[  730.039182]  ? do_raw_spin_unlock+0xa7/0x2f0
[  730.043590]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  730.048178]  ? pgd_free+0x380/0x380
[  730.051804]  ? __lock_acquire+0x7ec/0x4ec0
[  730.056293]  ? _raw_spin_unlock+0x2c/0x50
[  730.060452]  ? do_wp_page+0x77c/0x1690
[  730.064342]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  730.069012]  ? find_held_lock+0x36/0x1c0
[  730.073077]  ? lock_release+0x970/0x970
[  730.077078]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  730.082647]  ? kasan_check_write+0x14/0x20
[  730.086883]  ? do_raw_spin_lock+0xc1/0x200
[  730.091148]  ? __handle_mm_fault+0x9ab/0x53e0
[  730.095703]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  730.100602]  ? __sb_end_write+0xd9/0x110
[  730.104670]  ? graph_lock+0x170/0x170
[  730.108472]  ? print_usage_bug+0xc0/0xc0
[  730.112536]  ? atime_needs_update+0x710/0x710
[  730.117039]  ? graph_lock+0x170/0x170
[  730.120845]  ? graph_lock+0x170/0x170
[  730.124661]  ? find_held_lock+0x36/0x1c0
[  730.128734]  ? __do_page_fault+0x6b7/0xec0
[  730.132979]  _do_fork+0x1cb/0x11c0
[  730.136678]  ? fork_idle+0x1d0/0x1d0
[  730.140399]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  730.145953]  ? check_preemption_disabled+0x48/0x200
[  730.151051]  ? kasan_check_write+0x14/0x20
[  730.155298]  ? up_read+0x225/0x2c0
[  730.158847]  ? up_read_non_owner+0x100/0x100
[  730.163265]  ? find_vma+0x34/0x190
[  730.166951]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  730.172560]  ? __do_page_fault+0x49c/0xec0
[  730.176808]  ? do_syscall_64+0x9a/0x820
[  730.180795]  ? do_syscall_64+0x9a/0x820
[  730.184787]  ? lockdep_hardirqs_on+0x421/0x5c0
[  730.189384]  ? trace_hardirqs_on+0xbd/0x310
[  730.193713]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  730.199085]  ? trace_hardirqs_off_caller+0x300/0x300
[  730.204225]  __x64_sys_clone+0xbf/0x150
[  730.208209]  do_syscall_64+0x1b9/0x820
[  730.212182]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  730.217665]  ? syscall_return_slowpath+0x5e0/0x5e0
[  730.222650]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  730.227565]  ? trace_hardirqs_off+0x310/0x310
[  730.232066]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  730.237199]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  730.242747]  ? prepare_exit_to_usermode+0x291/0x3b0
[  730.247777]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  730.252725]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  730.257957] RIP: 0033:0x455c4a
[  730.261165] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  730.280162] RSP: 002b:00007ffdef61b280 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  730.287883] RAX: ffffffffffffffda RBX: 00007ffdef61b280 RCX: 0000000000455c4a
[  730.295330] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  730.303046] RBP: 00007ffdef61b2c0 R08: 0000000000000001 R09: 00000000021dc940
[  730.310327] R10: 00000000021dcc10 R11: 0000000000000246 R12: 0000000000000001
[  730.317659] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  730.326261] Memory limit reached of cgroup /syz1
[  730.331204] memory: usage 5544kB, limit 0kB, failcnt 255105
[  730.336940] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  730.344169] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  730.350425] Memory cgroup stats for /syz1: cache:112KB rss:0KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:44KB inactive_file:4KB active_file:0KB unevictable:0KB
[  730.370652] Out of memory and no killable processes...
[  730.377765] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  730.390780] syz-executor1 cpuset=syz1 mems_allowed=0
[  730.395919] CPU: 0 PID: 29135 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  730.404413] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  730.413826] Call Trace:
[  730.416421]  dump_stack+0x1d3/0x2c4
[  730.420052]  ? dump_stack_print_info.cold.2+0x52/0x52
[  730.425259]  dump_header+0x27b/0xf72
[  730.428981]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  730.433924]  ? kasan_check_read+0x11/0x20
[  730.438091]  ? pagefault_out_of_memory+0x197/0x197
[  730.443173]  ? rcu_read_unlock+0x33/0x60
[  730.447295]  ? mem_cgroup_iter+0x514/0x1160
[  730.451635]  ? find_held_lock+0x36/0x1c0
[  730.455850]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  730.460621]  ? mark_held_locks+0xc7/0x130
[  730.464849]  ? _raw_spin_unlock_irq+0x27/0x80
[  730.469348]  ? _raw_spin_unlock_irq+0x27/0x80
[  730.473846]  ? lockdep_hardirqs_on+0x421/0x5c0
[  730.478435]  ? trace_hardirqs_on+0xbd/0x310
[  730.482760]  ? kasan_check_read+0x11/0x20
[  730.486907]  ? css_task_iter_end+0x222/0x490
[  730.491315]  ? trace_hardirqs_off_caller+0x300/0x300
[  730.496421]  ? kasan_check_write+0x14/0x20
[  730.500659]  ? do_raw_spin_lock+0xc1/0x200
[  730.504900]  ? _raw_spin_unlock_irq+0x60/0x80
[  730.509400]  ? css_task_iter_end+0x2ce/0x490
[  730.513811]  ? cgroup_procs_next+0x70/0x70
[  730.518055]  ? _raw_spin_unlock_irq+0x60/0x80
[  730.522552]  ? oom_badness+0xaa0/0xaa0
[  730.526442]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  730.531259]  ? mem_cgroup_iter_break+0x30/0x30
[  730.535851]  ? mark_held_locks+0xc7/0x130
[  730.540003]  out_of_memory.cold.30+0xf/0x184
[  730.544409]  ? lockdep_hardirqs_on+0x421/0x5c0
[  730.548992]  ? kasan_check_read+0x11/0x20
[  730.553162]  ? oom_killer_disable+0x3a0/0x3a0
[  730.557661]  ? kasan_check_write+0x14/0x20
[  730.561947]  ? do_raw_spin_lock+0xc1/0x200
[  730.566192]  mem_cgroup_out_of_memory+0x15e/0x210
[  730.571037]  ? memcg_memory_event+0x40/0x40
[  730.575362]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  730.580218]  ? page_counter_try_charge+0x1c1/0x220
[  730.585168]  try_charge+0xb1a/0x1690
[  730.588887]  ? lock_downgrade+0x900/0x900
[  730.593036]  ? check_preemption_disabled+0x48/0x200
[  730.598065]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  730.604154]  ? find_held_lock+0x36/0x1c0
[  730.608225]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  730.613081]  ? lock_downgrade+0x900/0x900
[  730.617260]  ? check_preemption_disabled+0x48/0x200
[  730.622280]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  730.627209]  ? kasan_check_read+0x11/0x20
[  730.631361]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  730.636641]  ? rcu_softirq_qs+0x20/0x20
[  730.640626]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  730.645476]  memcg_kmem_charge_memcg+0x7c/0x120
[  730.650163]  ? memcg_kmem_put_cache+0xb0/0xb0
[  730.654657]  ? kmem_cache_alloc+0x12e/0x730
[  730.658981]  ? print_usage_bug+0xc0/0xc0
[  730.663046]  memcg_kmem_charge+0x135/0x300
[  730.667286]  __alloc_pages_nodemask+0x89c/0xdd0
[  730.671962]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  730.677038]  ? __lock_acquire+0x7ec/0x4ec0
[  730.681281]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  730.686822]  ? graph_lock+0x170/0x170
[  730.690622]  ? find_held_lock+0x36/0x1c0
[  730.694805]  ? __lock_is_held+0xb5/0x140
[  730.698865]  ? lock_downgrade+0x900/0x900
[  730.703019]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  730.708560]  alloc_pages_current+0x10c/0x210
[  730.712977]  pte_alloc_one+0x1b/0x1a0
[  730.716779]  __pte_alloc+0x2a/0x350
[  730.720412]  copy_page_range+0x18a2/0x26f0
[  730.724665]  ? pmd_alloc+0x180/0x180
[  730.728385]  ? save_stack+0xa9/0xd0
[  730.732065]  ? save_stack+0x43/0xd0
[  730.735696]  ? kasan_slab_alloc+0x12/0x20
[  730.739843]  ? kmem_cache_alloc+0x12e/0x730
[  730.744240]  ? vm_area_dup+0x7a/0x230
[  730.748040]  ? copy_process+0x429f/0x8780
[  730.752188]  ? _do_fork+0x1cb/0x11c0
[  730.755901]  ? __x64_sys_clone+0xbf/0x150
[  730.760048]  ? do_syscall_64+0x1b9/0x820
[  730.764140]  ? graph_lock+0x170/0x170
[  730.767944]  ? lock_downgrade+0x900/0x900
[  730.772091]  ? graph_lock+0x170/0x170
[  730.775921]  ? kasan_check_read+0x11/0x20
[  730.780072]  ? graph_lock+0x170/0x170
[  730.783875]  ? find_held_lock+0x36/0x1c0
[  730.788290]  ? copy_process+0x454a/0x8780
[  730.792484]  ? lock_downgrade+0x900/0x900
[  730.796686]  ? lock_release+0x970/0x970
[  730.800664]  ? ttwu_stat+0x5c0/0x5c0
[  730.804479]  ? dup_userfaultfd+0x6d8/0x890
[  730.808857]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  730.813879]  ? vma_compute_subtree_gap+0x160/0x240
[  730.818830]  ? validate_mm_rb+0xaa/0xc0
[  730.822872]  ? __vma_link_rb+0x26c/0x370
[  730.826992]  copy_process+0x4720/0x8780
[  730.830997]  ? __cleanup_sighand+0x70/0x70
[  730.835240]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  730.840781]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  730.848468]  ? page_swapcount+0x1d0/0x1d0
[  730.852627]  ? try_to_wake_up+0x10a/0x12f0
[  730.856866]  ? lock_downgrade+0x900/0x900
[  730.861012]  ? lock_downgrade+0x900/0x900
[  730.865171]  ? trace_hardirqs_off+0xb8/0x310
[  730.869753]  ? kasan_check_read+0x11/0x20
[  730.873907]  ? trace_hardirqs_on_caller+0x310/0x310
[  730.878937]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  730.884045]  ? try_to_wake_up+0x10a/0x12f0
[  730.888286]  ? print_usage_bug+0xc0/0xc0
[  730.892348]  ? migrate_swap_stop+0x930/0x930
[  730.896759]  ? __handle_mm_fault+0x9ab/0x53e0
[  730.901262]  ? graph_lock+0x170/0x170
[  730.905063]  ? print_usage_bug+0xc0/0xc0
[  730.909150]  ? __lock_acquire+0x7ec/0x4ec0
[  730.913392]  ? print_usage_bug+0xc0/0xc0
[  730.917570]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  730.923133]  ? reuse_swap_page+0x4bd/0x1520
[  730.927473]  ? swp_swapcount+0x530/0x530
[  730.931602]  ? __lock_acquire+0x7ec/0x4ec0
[  730.935842]  ? mark_held_locks+0x130/0x130
[  730.940074]  ? rcu_softirq_qs+0x20/0x20
[  730.944054]  ? __lock_acquire+0x7ec/0x4ec0
[  730.948296]  ? mark_held_locks+0x130/0x130
[  730.952531]  ? graph_lock+0x170/0x170
[  730.956384]  ? mark_held_locks+0x130/0x130
[  730.960628]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  730.966172]  ? check_preemption_disabled+0x48/0x200
[  730.971198]  ? find_held_lock+0x36/0x1c0
[  730.975263]  ? do_wp_page+0xa6f/0x1690
[  730.979167]  ? lock_downgrade+0x900/0x900
[  730.983315]  ? wake_up_page_bit+0x6f0/0x6f0
[  730.987702]  ? kasan_check_read+0x11/0x20
[  730.991857]  ? do_raw_spin_unlock+0xa7/0x2f0
[  730.996291]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  731.000992]  ? pgd_free+0x380/0x380
[  731.004631]  ? __lock_acquire+0x7ec/0x4ec0
[  731.008885]  ? _raw_spin_unlock+0x2c/0x50
[  731.013033]  ? do_wp_page+0x77c/0x1690
[  731.016926]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  731.021602]  ? find_held_lock+0x36/0x1c0
[  731.025671]  ? lock_release+0x970/0x970
[  731.029654]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  731.035276]  ? kasan_check_write+0x14/0x20
[  731.039512]  ? do_raw_spin_lock+0xc1/0x200
[  731.043753]  ? __handle_mm_fault+0x9ab/0x53e0
[  731.048251]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  731.053096]  ? __sb_end_write+0xd9/0x110
[  731.057192]  ? graph_lock+0x170/0x170
[  731.060998]  ? print_usage_bug+0xc0/0xc0
[  731.065058]  ? atime_needs_update+0x710/0x710
[  731.069558]  ? graph_lock+0x170/0x170
[  731.073358]  ? graph_lock+0x170/0x170
[  731.077222]  ? find_held_lock+0x36/0x1c0
[  731.081292]  ? __do_page_fault+0x6b7/0xec0
[  731.085531]  _do_fork+0x1cb/0x11c0
[  731.089088]  ? fork_idle+0x1d0/0x1d0
[  731.092831]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  731.098422]  ? check_preemption_disabled+0x48/0x200
[  731.103446]  ? kasan_check_write+0x14/0x20
[  731.107697]  ? up_read+0x225/0x2c0
[  731.111358]  ? up_read_non_owner+0x100/0x100
[  731.115771]  ? find_vma+0x34/0x190
[  731.119403]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  731.125044]  ? __do_page_fault+0x49c/0xec0
[  731.129285]  ? do_syscall_64+0x9a/0x820
[  731.133519]  ? do_syscall_64+0x9a/0x820
[  731.137624]  ? lockdep_hardirqs_on+0x421/0x5c0
[  731.142212]  ? trace_hardirqs_on+0xbd/0x310
[  731.146533]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  731.151900]  ? trace_hardirqs_off_caller+0x300/0x300
[  731.157010]  __x64_sys_clone+0xbf/0x150
[  731.160991]  do_syscall_64+0x1b9/0x820
[  731.164878]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  731.170246]  ? syscall_return_slowpath+0x5e0/0x5e0
[  731.175179]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  731.180025]  ? trace_hardirqs_off+0x310/0x310
[  731.184524]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  731.189545]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  731.195088]  ? prepare_exit_to_usermode+0x291/0x3b0
[  731.200163]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  731.205015]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  731.210209] RIP: 0033:0x455c4a
[  731.213404] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  731.232362] RSP: 002b:00007ffdef61b280 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  731.240079] RAX: ffffffffffffffda RBX: 00007ffdef61b280 RCX: 0000000000455c4a
[  731.247389] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  731.254674] RBP: 00007ffdef61b2c0 R08: 0000000000000001 R09: 00000000021dc940
[  731.261949] R10: 00000000021dcc10 R11: 0000000000000246 R12: 0000000000000001
[  731.269221] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  731.278173] Memory limit reached of cgroup /syz1
[  731.282993] memory: usage 5548kB, limit 0kB, failcnt 255113
[  731.288842] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  731.295839] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  731.302093] Memory cgroup stats for /syz1: cache:112KB rss:0KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:44KB inactive_file:0KB active_file:4KB unevictable:0KB
[  731.322236] Out of memory and no killable processes...
[  731.329419] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  731.342511] syz-executor1 cpuset=syz1 mems_allowed=0
[  731.347888] CPU: 1 PID: 29135 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  731.356398] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  731.365759] Call Trace:
[  731.368356]  dump_stack+0x1d3/0x2c4
[  731.372034]  ? dump_stack_print_info.cold.2+0x52/0x52
[  731.377236]  dump_header+0x27b/0xf72
[  731.381007]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  731.386005]  ? kasan_check_read+0x11/0x20
[  731.390173]  ? pagefault_out_of_memory+0x197/0x197
[  731.395240]  ? rcu_read_unlock+0x33/0x60
[  731.399307]  ? mem_cgroup_iter+0x514/0x1160
[  731.403636]  ? find_held_lock+0x36/0x1c0
[  731.407972]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  731.412734]  ? mark_held_locks+0xc7/0x130
[  731.416998]  ? _raw_spin_unlock_irq+0x27/0x80
[  731.421502]  ? _raw_spin_unlock_irq+0x27/0x80
[  731.426008]  ? lockdep_hardirqs_on+0x421/0x5c0
[  731.430609]  ? trace_hardirqs_on+0xbd/0x310
[  731.434946]  ? kasan_check_read+0x11/0x20
[  731.439195]  ? css_task_iter_end+0x222/0x490
[  731.443627]  ? trace_hardirqs_off_caller+0x300/0x300
[  731.448745]  ? kasan_check_write+0x14/0x20
[  731.452994]  ? do_raw_spin_lock+0xc1/0x200
[  731.457243]  ? _raw_spin_unlock_irq+0x60/0x80
[  731.461750]  ? css_task_iter_end+0x2ce/0x490
[  731.466174]  ? cgroup_procs_next+0x70/0x70
[  731.470539]  ? _raw_spin_unlock_irq+0x60/0x80
[  731.475048]  ? oom_badness+0xaa0/0xaa0
[  731.478949]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  731.483720]  ? mem_cgroup_iter_break+0x30/0x30
[  731.488389]  ? mark_held_locks+0xc7/0x130
[  731.492560]  out_of_memory.cold.30+0xf/0x184
[  731.496988]  ? lockdep_hardirqs_on+0x421/0x5c0
[  731.501583]  ? kasan_check_read+0x11/0x20
[  731.505740]  ? oom_killer_disable+0x3a0/0x3a0
[  731.510247]  ? kasan_check_write+0x14/0x20
[  731.514539]  ? do_raw_spin_lock+0xc1/0x200
[  731.518793]  mem_cgroup_out_of_memory+0x15e/0x210
[  731.523648]  ? memcg_memory_event+0x40/0x40
[  731.527992]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  731.532852]  ? page_counter_try_charge+0x1c1/0x220
[  731.537811]  try_charge+0xb1a/0x1690
[  731.541667]  ? lock_downgrade+0x900/0x900
[  731.545825]  ? check_preemption_disabled+0x48/0x200
[  731.551495]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  731.557573]  ? find_held_lock+0x36/0x1c0
[  731.561656]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  731.566512]  ? lock_downgrade+0x900/0x900
[  731.570672]  ? check_preemption_disabled+0x48/0x200
[  731.575702]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  731.580790]  ? kasan_check_read+0x11/0x20
[  731.584950]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  731.590246]  ? rcu_softirq_qs+0x20/0x20
[  731.594244]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  731.599136]  memcg_kmem_charge_memcg+0x7c/0x120
[  731.603827]  ? memcg_kmem_put_cache+0xb0/0xb0
[  731.608333]  ? kmem_cache_alloc+0x12e/0x730
[  731.612671]  ? print_usage_bug+0xc0/0xc0
[  731.616749]  memcg_kmem_charge+0x135/0x300
[  731.620997]  __alloc_pages_nodemask+0x89c/0xdd0
[  731.625741]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  731.630824]  ? __lock_acquire+0x7ec/0x4ec0
[  731.635073]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  731.640686]  ? graph_lock+0x170/0x170
[  731.644491]  ? find_held_lock+0x36/0x1c0
[  731.648569]  ? __lock_is_held+0xb5/0x140
[  731.652635]  ? lock_downgrade+0x900/0x900
[  731.656969]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  731.662517]  alloc_pages_current+0x10c/0x210
[  731.667183]  pte_alloc_one+0x1b/0x1a0
[  731.670994]  __pte_alloc+0x2a/0x350
[  731.674741]  copy_page_range+0x18a2/0x26f0
[  731.678997]  ? pmd_alloc+0x180/0x180
[  731.682721]  ? save_stack+0xa9/0xd0
[  731.686352]  ? save_stack+0x43/0xd0
[  731.690036]  ? kasan_slab_alloc+0x12/0x20
[  731.694192]  ? kmem_cache_alloc+0x12e/0x730
[  731.698638]  ? vm_area_dup+0x7a/0x230
[  731.702496]  ? copy_process+0x429f/0x8780
[  731.706649]  ? _do_fork+0x1cb/0x11c0
[  731.710540]  ? __x64_sys_clone+0xbf/0x150
[  731.714694]  ? do_syscall_64+0x1b9/0x820
[  731.718783]  ? graph_lock+0x170/0x170
[  731.722585]  ? lock_downgrade+0x900/0x900
[  731.726734]  ? graph_lock+0x170/0x170
[  731.730543]  ? graph_lock+0x170/0x170
[  731.734354]  ? find_held_lock+0x36/0x1c0
[  731.738424]  ? copy_process+0x454a/0x8780
[  731.742581]  ? lock_downgrade+0x900/0x900
[  731.746737]  ? lock_release+0x970/0x970
[  731.750859]  ? ttwu_stat+0x5c0/0x5c0
[  731.754579]  ? dup_userfaultfd+0x6d8/0x890
[  731.758937]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  731.764017]  ? vma_compute_subtree_gap+0x160/0x240
[  731.769203]  ? validate_mm_rb+0xaa/0xc0
[  731.773182]  ? __vma_link_rb+0x26c/0x370
[  731.777252]  copy_process+0x4720/0x8780
[  731.781248]  ? __cleanup_sighand+0x70/0x70
[  731.785508]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  731.791204]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  731.796750]  ? page_swapcount+0x1d0/0x1d0
[  731.800900]  ? try_to_wake_up+0x10a/0x12f0
[  731.805158]  ? lock_downgrade+0x900/0x900
[  731.809357]  ? lock_downgrade+0x900/0x900
[  731.813626]  ? trace_hardirqs_off+0xb8/0x310
[  731.818038]  ? kasan_check_read+0x11/0x20
[  731.822195]  ? trace_hardirqs_on_caller+0x310/0x310
[  731.827227]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  731.832489]  ? try_to_wake_up+0x10a/0x12f0
[  731.836737]  ? print_usage_bug+0xc0/0xc0
[  731.840805]  ? migrate_swap_stop+0x930/0x930
[  731.845300]  ? __handle_mm_fault+0x9ab/0x53e0
[  731.849801]  ? graph_lock+0x170/0x170
[  731.853603]  ? print_usage_bug+0xc0/0xc0
[  731.857672]  ? __lock_acquire+0x7ec/0x4ec0
[  731.861911]  ? print_usage_bug+0xc0/0xc0
[  731.866026]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  731.871567]  ? reuse_swap_page+0x4bd/0x1520
[  731.875899]  ? swp_swapcount+0x530/0x530
[  731.879971]  ? __lock_acquire+0x7ec/0x4ec0
[  731.884206]  ? mark_held_locks+0x130/0x130
[  731.888442]  ? rcu_softirq_qs+0x20/0x20
[  731.892566]  ? __lock_acquire+0x7ec/0x4ec0
[  731.896807]  ? mark_held_locks+0x130/0x130
[  731.901045]  ? graph_lock+0x170/0x170
[  731.904846]  ? mark_held_locks+0x130/0x130
[  731.909246]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  731.914790]  ? check_preemption_disabled+0x48/0x200
[  731.919832]  ? find_held_lock+0x36/0x1c0
[  731.923901]  ? do_wp_page+0xa6f/0x1690
[  731.927794]  ? lock_downgrade+0x900/0x900
[  731.931945]  ? wake_up_page_bit+0x6f0/0x6f0
[  731.936271]  ? kasan_check_read+0x11/0x20
[  731.940420]  ? do_raw_spin_unlock+0xa7/0x2f0
[  731.944835]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  731.949527]  ? pgd_free+0x380/0x380
[  731.953161]  ? __lock_acquire+0x7ec/0x4ec0
[  731.957480]  ? _raw_spin_unlock+0x2c/0x50
[  731.961656]  ? do_wp_page+0x77c/0x1690
[  731.965547]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  731.970266]  ? find_held_lock+0x36/0x1c0
[  731.974342]  ? lock_release+0x970/0x970
[  731.978324]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  731.983913]  ? kasan_check_write+0x14/0x20
[  731.988165]  ? do_raw_spin_lock+0xc1/0x200
[  731.992406]  ? __handle_mm_fault+0x9ab/0x53e0
[  731.996905]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  732.001809]  ? __sb_end_write+0xd9/0x110
[  732.005877]  ? graph_lock+0x170/0x170
[  732.009681]  ? print_usage_bug+0xc0/0xc0
[  732.013745]  ? atime_needs_update+0x710/0x710
[  732.018245]  ? graph_lock+0x170/0x170
[  732.022043]  ? graph_lock+0x170/0x170
[  732.025848]  ? find_held_lock+0x36/0x1c0
[  732.029915]  ? __do_page_fault+0x6b7/0xec0
[  732.034224]  _do_fork+0x1cb/0x11c0
[  732.037773]  ? fork_idle+0x1d0/0x1d0
[  732.041491]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  732.047031]  ? check_preemption_disabled+0x48/0x200
[  732.052126]  ? kasan_check_write+0x14/0x20
[  732.056371]  ? up_read+0x225/0x2c0
[  732.059974]  ? up_read_non_owner+0x100/0x100
[  732.064506]  ? find_vma+0x34/0x190
[  732.068054]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  732.073648]  ? __do_page_fault+0x49c/0xec0
[  732.077888]  ? do_syscall_64+0x9a/0x820
[  732.081861]  ? do_syscall_64+0x9a/0x820
[  732.085838]  ? lockdep_hardirqs_on+0x421/0x5c0
[  732.090427]  ? trace_hardirqs_on+0xbd/0x310
[  732.094751]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  732.100149]  ? trace_hardirqs_off_caller+0x300/0x300
[  732.105262]  __x64_sys_clone+0xbf/0x150
[  732.109240]  do_syscall_64+0x1b9/0x820
[  732.113150]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  732.118516]  ? syscall_return_slowpath+0x5e0/0x5e0
[  732.123447]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  732.128292]  ? trace_hardirqs_off+0x310/0x310
[  732.132788]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  732.137807]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  732.143344]  ? prepare_exit_to_usermode+0x291/0x3b0
[  732.148416]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  732.153270]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  732.158459] RIP: 0033:0x455c4a
[  732.161650] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  732.180555] RSP: 002b:00007ffdef61b280 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  732.188315] RAX: ffffffffffffffda RBX: 00007ffdef61b280 RCX: 0000000000455c4a
[  732.195585] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  732.202965] RBP: 00007ffdef61b2c0 R08: 0000000000000001 R09: 00000000021dc940
[  732.210236] R10: 00000000021dcc10 R11: 0000000000000246 R12: 0000000000000001
[  732.217628] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  732.226985] Memory limit reached of cgroup /syz1
[  732.235550] memory: usage 5548kB, limit 0kB, failcnt 255121
[  732.241367] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  732.248294] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  732.254441] Memory cgroup stats for /syz1: cache:112KB rss:0KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:44KB inactive_file:4KB active_file:0KB unevictable:0KB
[  732.274477] Out of memory and no killable processes...
[  732.281417] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  732.294354] syz-executor1 cpuset=syz1 mems_allowed=0
[  732.299973] CPU: 1 PID: 29135 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  732.308470] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  732.317877] Call Trace:
[  732.320469]  dump_stack+0x1d3/0x2c4
[  732.324098]  ? dump_stack_print_info.cold.2+0x52/0x52
[  732.329324]  dump_header+0x27b/0xf72
[  732.333043]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  732.337980]  ? kasan_check_read+0x11/0x20
[  732.342157]  ? pagefault_out_of_memory+0x197/0x197
[  732.347266]  ? rcu_read_unlock+0x33/0x60
[  732.351333]  ? mem_cgroup_iter+0x514/0x1160
[  732.355657]  ? find_held_lock+0x36/0x1c0
[  732.359836]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  732.364652]  ? mark_held_locks+0xc7/0x130
[  732.368807]  ? _raw_spin_unlock_irq+0x27/0x80
[  732.373303]  ? _raw_spin_unlock_irq+0x27/0x80
[  732.377801]  ? lockdep_hardirqs_on+0x421/0x5c0
[  732.382384]  ? trace_hardirqs_on+0xbd/0x310
[  732.386702]  ? kasan_check_read+0x11/0x20
[  732.390850]  ? css_task_iter_end+0x222/0x490
[  732.395261]  ? trace_hardirqs_off_caller+0x300/0x300
[  732.400364]  ? kasan_check_write+0x14/0x20
[  732.404600]  ? do_raw_spin_lock+0xc1/0x200
[  732.408854]  ? _raw_spin_unlock_irq+0x60/0x80
[  732.413406]  ? css_task_iter_end+0x2ce/0x490
[  732.417819]  ? cgroup_procs_next+0x70/0x70
[  732.422061]  ? _raw_spin_unlock_irq+0x60/0x80
[  732.426558]  ? oom_badness+0xaa0/0xaa0
[  732.430453]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  732.435217]  ? mem_cgroup_iter_break+0x30/0x30
[  732.439808]  ? mark_held_locks+0xc7/0x130
[  732.443960]  out_of_memory.cold.30+0xf/0x184
[  732.448370]  ? lockdep_hardirqs_on+0x421/0x5c0
[  732.452953]  ? kasan_check_read+0x11/0x20
[  732.457127]  ? oom_killer_disable+0x3a0/0x3a0
[  732.461638]  ? kasan_check_write+0x14/0x20
[  732.465879]  ? do_raw_spin_lock+0xc1/0x200
[  732.470272]  mem_cgroup_out_of_memory+0x15e/0x210
[  732.475157]  ? memcg_memory_event+0x40/0x40
[  732.479485]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  732.484338]  ? page_counter_try_charge+0x1c1/0x220
[  732.489328]  try_charge+0xb1a/0x1690
[  732.493047]  ? lock_downgrade+0x900/0x900
[  732.497245]  ? check_preemption_disabled+0x48/0x200
[  732.502272]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  732.508465]  ? find_held_lock+0x36/0x1c0
[  732.512537]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  732.517399]  ? lock_downgrade+0x900/0x900
[  732.521613]  ? check_preemption_disabled+0x48/0x200
[  732.526644]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  732.531573]  ? kasan_check_read+0x11/0x20
[  732.535723]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  732.541027]  ? rcu_softirq_qs+0x20/0x20
[  732.545015]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  732.549866]  memcg_kmem_charge_memcg+0x7c/0x120
[  732.554536]  ? memcg_kmem_put_cache+0xb0/0xb0
[  732.559257]  ? kmem_cache_alloc+0x12e/0x730
[  732.563585]  ? print_usage_bug+0xc0/0xc0
[  732.567653]  memcg_kmem_charge+0x135/0x300
[  732.571892]  __alloc_pages_nodemask+0x89c/0xdd0
[  732.576563]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  732.581582]  ? __lock_acquire+0x7ec/0x4ec0
[  732.585830]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  732.591371]  ? graph_lock+0x170/0x170
[  732.595222]  ? find_held_lock+0x36/0x1c0
[  732.599304]  ? __lock_is_held+0xb5/0x140
[  732.603368]  ? lock_downgrade+0x900/0x900
[  732.607523]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  732.613215]  alloc_pages_current+0x10c/0x210
[  732.617644]  pte_alloc_one+0x1b/0x1a0
[  732.621449]  __pte_alloc+0x2a/0x350
[  732.625079]  copy_page_range+0x18a2/0x26f0
[  732.629362]  ? pmd_alloc+0x180/0x180
[  732.633081]  ? save_stack+0xa9/0xd0
[  732.636728]  ? save_stack+0x43/0xd0
[  732.640358]  ? kasan_slab_alloc+0x12/0x20
[  732.644577]  ? kmem_cache_alloc+0x12e/0x730
[  732.648900]  ? vm_area_dup+0x7a/0x230
[  732.652752]  ? copy_process+0x429f/0x8780
[  732.656899]  ? _do_fork+0x1cb/0x11c0
[  732.660612]  ? __x64_sys_clone+0xbf/0x150
[  732.664823]  ? do_syscall_64+0x1b9/0x820
[  732.668892]  ? graph_lock+0x170/0x170
[  732.672748]  ? lock_downgrade+0x900/0x900
[  732.676903]  ? graph_lock+0x170/0x170
[  732.680761]  ? graph_lock+0x170/0x170
[  732.684569]  ? find_held_lock+0x36/0x1c0
[  732.688641]  ? copy_process+0x454a/0x8780
[  732.692792]  ? lock_downgrade+0x900/0x900
[  732.696997]  ? lock_release+0x970/0x970
[  732.701026]  ? ttwu_stat+0x5c0/0x5c0
[  732.704744]  ? dup_userfaultfd+0x6d8/0x890
[  732.709019]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  732.714044]  ? vma_compute_subtree_gap+0x160/0x240
[  732.719037]  ? validate_mm_rb+0xaa/0xc0
[  732.723022]  ? __vma_link_rb+0x26c/0x370
[  732.727210]  copy_process+0x4720/0x8780
[  732.731236]  ? __cleanup_sighand+0x70/0x70
[  732.735484]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  732.741036]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  732.746658]  ? page_swapcount+0x1d0/0x1d0
[  732.750819]  ? try_to_wake_up+0x10a/0x12f0
[  732.755068]  ? lock_downgrade+0x900/0x900
[  732.759229]  ? lock_downgrade+0x900/0x900
[  732.763394]  ? trace_hardirqs_off+0xb8/0x310
[  732.767878]  ? kasan_check_read+0x11/0x20
[  732.772180]  ? trace_hardirqs_on_caller+0x310/0x310
[  732.777222]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  732.782443]  ? try_to_wake_up+0x10a/0x12f0
[  732.786696]  ? print_usage_bug+0xc0/0xc0
[  732.790773]  ? migrate_swap_stop+0x930/0x930
[  732.795197]  ? __handle_mm_fault+0x9ab/0x53e0
[  732.799971]  ? graph_lock+0x170/0x170
[  732.803784]  ? print_usage_bug+0xc0/0xc0
[  732.807917]  ? __lock_acquire+0x7ec/0x4ec0
[  732.812177]  ? print_usage_bug+0xc0/0xc0
[  732.816304]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  732.821968]  ? reuse_swap_page+0x4bd/0x1520
[  732.826348]  ? swp_swapcount+0x530/0x530
[  732.830425]  ? __lock_acquire+0x7ec/0x4ec0
[  732.834668]  ? mark_held_locks+0x130/0x130
[  732.838955]  ? rcu_softirq_qs+0x20/0x20
[  732.842943]  ? __lock_acquire+0x7ec/0x4ec0
[  732.847240]  ? mark_held_locks+0x130/0x130
[  732.851485]  ? graph_lock+0x170/0x170
[  732.855295]  ? mark_held_locks+0x130/0x130
[  732.859539]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  732.865137]  ? check_preemption_disabled+0x48/0x200
[  732.870185]  ? find_held_lock+0x36/0x1c0
[  732.874267]  ? do_wp_page+0xa6f/0x1690
[  732.878170]  ? lock_downgrade+0x900/0x900
[  732.882332]  ? wake_up_page_bit+0x6f0/0x6f0
[  732.886667]  ? kasan_check_read+0x11/0x20
[  732.890830]  ? do_raw_spin_unlock+0xa7/0x2f0
[  732.895252]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  732.899851]  ? pgd_free+0x380/0x380
[  732.903566]  ? __lock_acquire+0x7ec/0x4ec0
[  732.907819]  ? _raw_spin_unlock+0x2c/0x50
[  732.911971]  ? do_wp_page+0x77c/0x1690
[  732.915873]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  732.920549]  ? find_held_lock+0x36/0x1c0
[  732.924623]  ? lock_release+0x970/0x970
[  732.928606]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  732.934172]  ? kasan_check_write+0x14/0x20
[  732.938415]  ? do_raw_spin_lock+0xc1/0x200
[  732.942659]  ? __handle_mm_fault+0x9ab/0x53e0
[  732.947179]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  732.952030]  ? __sb_end_write+0xd9/0x110
[  732.956100]  ? graph_lock+0x170/0x170
[  732.959935]  ? print_usage_bug+0xc0/0xc0
[  732.963999]  ? atime_needs_update+0x710/0x710
[  732.968675]  ? graph_lock+0x170/0x170
[  732.972481]  ? graph_lock+0x170/0x170
[  732.976290]  ? find_held_lock+0x36/0x1c0
[  732.980365]  ? __do_page_fault+0x6b7/0xec0
[  732.984609]  _do_fork+0x1cb/0x11c0
[  732.988232]  ? fork_idle+0x1d0/0x1d0
[  732.992004]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  732.997549]  ? check_preemption_disabled+0x48/0x200
[  733.002576]  ? kasan_check_write+0x14/0x20
[  733.006813]  ? up_read+0x225/0x2c0
[  733.010358]  ? up_read_non_owner+0x100/0x100
[  733.014828]  ? find_vma+0x34/0x190
[  733.018379]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  733.024186]  ? __do_page_fault+0x49c/0xec0
[  733.028482]  ? do_syscall_64+0x9a/0x820
[  733.032533]  ? do_syscall_64+0x9a/0x820
[  733.036516]  ? lockdep_hardirqs_on+0x421/0x5c0
[  733.041134]  ? trace_hardirqs_on+0xbd/0x310
[  733.045464]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  733.050832]  ? trace_hardirqs_off_caller+0x300/0x300
[  733.055940]  __x64_sys_clone+0xbf/0x150
[  733.059921]  do_syscall_64+0x1b9/0x820
[  733.063813]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  733.069235]  ? syscall_return_slowpath+0x5e0/0x5e0
[  733.074169]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  733.079016]  ? trace_hardirqs_off+0x310/0x310
[  733.083515]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  733.088534]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  733.094080]  ? prepare_exit_to_usermode+0x291/0x3b0
[  733.099152]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  733.104059]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  733.109271] RIP: 0033:0x455c4a
[  733.112468] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  733.131674] RSP: 002b:00007ffdef61b280 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  733.139444] RAX: ffffffffffffffda RBX: 00007ffdef61b280 RCX: 0000000000455c4a
[  733.146748] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  733.154021] RBP: 00007ffdef61b2c0 R08: 0000000000000001 R09: 00000000021dc940
[  733.161351] R10: 00000000021dcc10 R11: 0000000000000246 R12: 0000000000000001
[  733.168631] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  733.176328] Memory limit reached of cgroup /syz1
[  733.181242] memory: usage 5552kB, limit 0kB, failcnt 255129
[  733.186975] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  733.193814] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  733.200099] Memory cgroup stats for /syz1: cache:112KB rss:0KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:44KB inactive_file:0KB active_file:4KB unevictable:0KB
[  733.220258] Out of memory and no killable processes...
[  733.227157] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  733.240322] syz-executor1 cpuset=syz1 mems_allowed=0
[  733.245476] CPU: 1 PID: 29135 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  733.253994] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  733.263345] Call Trace:
[  733.266025]  dump_stack+0x1d3/0x2c4
[  733.269658]  ? dump_stack_print_info.cold.2+0x52/0x52
[  733.274908]  dump_header+0x27b/0xf72
[  733.278804]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  733.283847]  ? kasan_check_read+0x11/0x20
[  733.288002]  ? pagefault_out_of_memory+0x197/0x197
[  733.292990]  ? rcu_read_unlock+0x33/0x60
[  733.297052]  ? mem_cgroup_iter+0x514/0x1160
[  733.301379]  ? find_held_lock+0x36/0x1c0
[  733.305445]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  733.310234]  ? mark_held_locks+0xc7/0x130
[  733.314386]  ? _raw_spin_unlock_irq+0x27/0x80
[  733.318883]  ? _raw_spin_unlock_irq+0x27/0x80
[  733.323382]  ? lockdep_hardirqs_on+0x421/0x5c0
[  733.327971]  ? trace_hardirqs_on+0xbd/0x310
[  733.332341]  ? kasan_check_read+0x11/0x20
[  733.336490]  ? css_task_iter_end+0x222/0x490
[  733.340903]  ? trace_hardirqs_off_caller+0x300/0x300
[  733.346013]  ? kasan_check_write+0x14/0x20
[  733.350306]  ? do_raw_spin_lock+0xc1/0x200
[  733.354549]  ? _raw_spin_unlock_irq+0x60/0x80
[  733.359047]  ? css_task_iter_end+0x2ce/0x490
[  733.363533]  ? cgroup_procs_next+0x70/0x70
[  733.367777]  ? _raw_spin_unlock_irq+0x60/0x80
[  733.372276]  ? oom_badness+0xaa0/0xaa0
[  733.376230]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  733.381053]  ? mem_cgroup_iter_break+0x30/0x30
[  733.385716]  ? mark_held_locks+0xc7/0x130
[  733.389871]  out_of_memory.cold.30+0xf/0x184
[  733.394339]  ? lockdep_hardirqs_on+0x421/0x5c0
[  733.398929]  ? kasan_check_read+0x11/0x20
[  733.403170]  ? oom_killer_disable+0x3a0/0x3a0
[  733.407674]  ? kasan_check_write+0x14/0x20
[  733.412135]  ? do_raw_spin_lock+0xc1/0x200
[  733.416397]  mem_cgroup_out_of_memory+0x15e/0x210
[  733.421253]  ? memcg_memory_event+0x40/0x40
[  733.425579]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  733.430479]  ? page_counter_try_charge+0x1c1/0x220
[  733.435418]  try_charge+0xb1a/0x1690
[  733.439158]  ? lock_downgrade+0x900/0x900
[  733.443397]  ? check_preemption_disabled+0x48/0x200
[  733.448423]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  733.454489]  ? find_held_lock+0x36/0x1c0
[  733.458558]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  733.463405]  ? lock_downgrade+0x900/0x900
[  733.467556]  ? check_preemption_disabled+0x48/0x200
[  733.472575]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  733.477511]  ? kasan_check_read+0x11/0x20
[  733.481667]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  733.486948]  ? rcu_softirq_qs+0x20/0x20
[  733.490994]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  733.495844]  memcg_kmem_charge_memcg+0x7c/0x120
[  733.500517]  ? memcg_kmem_put_cache+0xb0/0xb0
[  733.505015]  ? kmem_cache_alloc+0x12e/0x730
[  733.509341]  ? print_usage_bug+0xc0/0xc0
[  733.513406]  memcg_kmem_charge+0x135/0x300
[  733.517651]  __alloc_pages_nodemask+0x89c/0xdd0
[  733.522433]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  733.527610]  ? __lock_acquire+0x7ec/0x4ec0
[  733.531865]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  733.537420]  ? graph_lock+0x170/0x170
[  733.541241]  ? find_held_lock+0x36/0x1c0
[  733.545427]  ? __lock_is_held+0xb5/0x140
[  733.549542]  ? lock_downgrade+0x900/0x900
[  733.553696]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  733.559242]  alloc_pages_current+0x10c/0x210
[  733.563705]  pte_alloc_one+0x1b/0x1a0
[  733.567509]  __pte_alloc+0x2a/0x350
[  733.571163]  copy_page_range+0x18a2/0x26f0
[  733.575414]  ? pmd_alloc+0x180/0x180
[  733.579156]  ? save_stack+0xa9/0xd0
[  733.582787]  ? save_stack+0x43/0xd0
[  733.586416]  ? kasan_slab_alloc+0x12/0x20
[  733.590565]  ? kmem_cache_alloc+0x12e/0x730
[  733.594887]  ? vm_area_dup+0x7a/0x230
[  733.598686]  ? copy_process+0x429f/0x8780
[  733.602837]  ? _do_fork+0x1cb/0x11c0
[  733.606547]  ? __x64_sys_clone+0xbf/0x150
[  733.610695]  ? do_syscall_64+0x1b9/0x820
[  733.614767]  ? graph_lock+0x170/0x170
[  733.618575]  ? lock_downgrade+0x900/0x900
[  733.622776]  ? graph_lock+0x170/0x170
[  733.626582]  ? graph_lock+0x170/0x170
[  733.630433]  ? find_held_lock+0x36/0x1c0
[  733.634501]  ? copy_process+0x454a/0x8780
[  733.638656]  ? lock_downgrade+0x900/0x900
[  733.642809]  ? lock_release+0x970/0x970
[  733.646782]  ? ttwu_stat+0x5c0/0x5c0
[  733.650496]  ? dup_userfaultfd+0x6d8/0x890
[  733.654792]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  733.659810]  ? vma_compute_subtree_gap+0x160/0x240
[  733.664804]  ? validate_mm_rb+0xaa/0xc0
[  733.668834]  ? __vma_link_rb+0x26c/0x370
[  733.672902]  copy_process+0x4720/0x8780
[  733.676899]  ? __cleanup_sighand+0x70/0x70
[  733.681311]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  733.686856]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  733.692403]  ? page_swapcount+0x1d0/0x1d0
[  733.696552]  ? try_to_wake_up+0x10a/0x12f0
[  733.700791]  ? lock_downgrade+0x900/0x900
[  733.704939]  ? lock_downgrade+0x900/0x900
[  733.709097]  ? trace_hardirqs_off+0xb8/0x310
[  733.713534]  ? kasan_check_read+0x11/0x20
[  733.717690]  ? trace_hardirqs_on_caller+0x310/0x310
[  733.722834]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  733.727945]  ? try_to_wake_up+0x10a/0x12f0
[  733.732278]  ? print_usage_bug+0xc0/0xc0
[  733.736346]  ? migrate_swap_stop+0x930/0x930
[  733.740768]  ? __handle_mm_fault+0x9ab/0x53e0
[  733.745270]  ? graph_lock+0x170/0x170
[  733.749151]  ? print_usage_bug+0xc0/0xc0
[  733.753358]  ? __lock_acquire+0x7ec/0x4ec0
[  733.757658]  ? print_usage_bug+0xc0/0xc0
[  733.761728]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  733.767272]  ? reuse_swap_page+0x4bd/0x1520
[  733.771604]  ? swp_swapcount+0x530/0x530
[  733.775678]  ? __lock_acquire+0x7ec/0x4ec0
[  733.779966]  ? mark_held_locks+0x130/0x130
[  733.784250]  ? rcu_softirq_qs+0x20/0x20
[  733.788231]  ? __lock_acquire+0x7ec/0x4ec0
[  733.792525]  ? mark_held_locks+0x130/0x130
[  733.796762]  ? graph_lock+0x170/0x170
[  733.800562]  ? mark_held_locks+0x130/0x130
[  733.804802]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  733.810346]  ? check_preemption_disabled+0x48/0x200
[  733.815371]  ? find_held_lock+0x36/0x1c0
[  733.819438]  ? do_wp_page+0xa6f/0x1690
[  733.823326]  ? lock_downgrade+0x900/0x900
[  733.827478]  ? wake_up_page_bit+0x6f0/0x6f0
[  733.831802]  ? kasan_check_read+0x11/0x20
[  733.835950]  ? do_raw_spin_unlock+0xa7/0x2f0
[  733.840411]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  733.844993]  ? pgd_free+0x380/0x380
[  733.848632]  ? __lock_acquire+0x7ec/0x4ec0
[  733.852876]  ? _raw_spin_unlock+0x2c/0x50
[  733.857022]  ? do_wp_page+0x77c/0x1690
[  733.860915]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  733.865631]  ? find_held_lock+0x36/0x1c0
[  733.869703]  ? lock_release+0x970/0x970
[  733.873688]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  733.879382]  ? kasan_check_write+0x14/0x20
[  733.883624]  ? do_raw_spin_lock+0xc1/0x200
[  733.887870]  ? __handle_mm_fault+0x9ab/0x53e0
[  733.892497]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  733.897367]  ? __sb_end_write+0xd9/0x110
[  733.901534]  ? graph_lock+0x170/0x170
[  733.905341]  ? print_usage_bug+0xc0/0xc0
[  733.909554]  ? atime_needs_update+0x710/0x710
[  733.914051]  ? graph_lock+0x170/0x170
[  733.917858]  ? graph_lock+0x170/0x170
[  733.921661]  ? find_held_lock+0x36/0x1c0
[  733.925730]  ? __do_page_fault+0x6b7/0xec0
[  733.930026]  _do_fork+0x1cb/0x11c0
[  733.933646]  ? fork_idle+0x1d0/0x1d0
[  733.937377]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  733.942939]  ? check_preemption_disabled+0x48/0x200
[  733.948155]  ? kasan_check_write+0x14/0x20
[  733.952393]  ? up_read+0x225/0x2c0
[  733.955986]  ? up_read_non_owner+0x100/0x100
[  733.960489]  ? find_vma+0x34/0x190
[  733.964136]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  733.969681]  ? __do_page_fault+0x49c/0xec0
[  733.973919]  ? do_syscall_64+0x9a/0x820
[  733.977895]  ? do_syscall_64+0x9a/0x820
[  733.981875]  ? lockdep_hardirqs_on+0x421/0x5c0
[  733.986466]  ? trace_hardirqs_on+0xbd/0x310
[  733.990799]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  733.996174]  ? trace_hardirqs_off_caller+0x300/0x300
[  734.001292]  __x64_sys_clone+0xbf/0x150
[  734.005279]  do_syscall_64+0x1b9/0x820
[  734.009239]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  734.014841]  ? syscall_return_slowpath+0x5e0/0x5e0
[  734.019894]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  734.024839]  ? trace_hardirqs_off+0x310/0x310
[  734.029398]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  734.034526]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  734.040284]  ? prepare_exit_to_usermode+0x291/0x3b0
[  734.045367]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  734.050230]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  734.055479] RIP: 0033:0x455c4a
[  734.058757] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  734.077721] RSP: 002b:00007ffdef61b280 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  734.085493] RAX: ffffffffffffffda RBX: 00007ffdef61b280 RCX: 0000000000455c4a
[  734.092775] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  734.100059] RBP: 00007ffdef61b2c0 R08: 0000000000000001 R09: 00000000021dc940
[  734.107339] R10: 00000000021dcc10 R11: 0000000000000246 R12: 0000000000000001
[  734.114743] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  734.122523] Memory limit reached of cgroup /syz1
[  734.127465] memory: usage 5556kB, limit 0kB, failcnt 255137
[  734.133203] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  734.140165] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  734.146340] Memory cgroup stats for /syz1: cache:112KB rss:0KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:44KB inactive_file:4KB active_file:0KB unevictable:0KB
[  734.166533] Out of memory and no killable processes...
[  734.173520] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  734.186467] syz-executor1 cpuset=syz1 mems_allowed=0
[  734.191751] CPU: 1 PID: 29135 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  734.200250] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  734.209673] Call Trace:
[  734.212278]  dump_stack+0x1d3/0x2c4
[  734.215919]  ? dump_stack_print_info.cold.2+0x52/0x52
[  734.221146]  dump_header+0x27b/0xf72
[  734.224870]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  734.229801]  ? kasan_check_read+0x11/0x20
[  734.233957]  ? pagefault_out_of_memory+0x197/0x197
[  734.238895]  ? rcu_read_unlock+0x33/0x60
[  734.242959]  ? mem_cgroup_iter+0x514/0x1160
[  734.247288]  ? find_held_lock+0x36/0x1c0
[  734.251449]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  734.256211]  ? mark_held_locks+0xc7/0x130
[  734.260416]  ? _raw_spin_unlock_irq+0x27/0x80
[  734.264919]  ? _raw_spin_unlock_irq+0x27/0x80
[  734.269421]  ? lockdep_hardirqs_on+0x421/0x5c0
[  734.274170]  ? trace_hardirqs_on+0xbd/0x310
[  734.278498]  ? kasan_check_read+0x11/0x20
[  734.282646]  ? css_task_iter_end+0x222/0x490
[  734.287061]  ? trace_hardirqs_off_caller+0x300/0x300
[  734.292172]  ? kasan_check_write+0x14/0x20
[  734.296719]  ? do_raw_spin_lock+0xc1/0x200
[  734.300966]  ? _raw_spin_unlock_irq+0x60/0x80
[  734.305468]  ? css_task_iter_end+0x2ce/0x490
[  734.309950]  ? cgroup_procs_next+0x70/0x70
[  734.314191]  ? _raw_spin_unlock_irq+0x60/0x80
[  734.318693]  ? oom_badness+0xaa0/0xaa0
[  734.322583]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  734.327404]  ? mem_cgroup_iter_break+0x30/0x30
[  734.332135]  ? mark_held_locks+0xc7/0x130
[  734.336292]  out_of_memory.cold.30+0xf/0x184
[  734.340702]  ? lockdep_hardirqs_on+0x421/0x5c0
[  734.345285]  ? kasan_check_read+0x11/0x20
[  734.349439]  ? oom_killer_disable+0x3a0/0x3a0
[  734.353940]  ? kasan_check_write+0x14/0x20
[  734.358178]  ? do_raw_spin_lock+0xc1/0x200
[  734.362419]  mem_cgroup_out_of_memory+0x15e/0x210
[  734.367267]  ? memcg_memory_event+0x40/0x40
[  734.371676]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  734.376522]  ? page_counter_try_charge+0x1c1/0x220
[  734.381508]  try_charge+0xb1a/0x1690
[  734.385226]  ? lock_downgrade+0x900/0x900
[  734.389376]  ? check_preemption_disabled+0x48/0x200
[  734.394452]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  734.400517]  ? find_held_lock+0x36/0x1c0
[  734.404587]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  734.409491]  ? lock_downgrade+0x900/0x900
[  734.413653]  ? check_preemption_disabled+0x48/0x200
[  734.418678]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  734.423611]  ? kasan_check_read+0x11/0x20
[  734.427775]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  734.433057]  ? rcu_softirq_qs+0x20/0x20
[  734.437095]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  734.441972]  memcg_kmem_charge_memcg+0x7c/0x120
[  734.446760]  ? memcg_kmem_put_cache+0xb0/0xb0
[  734.451258]  ? kmem_cache_alloc+0x12e/0x730
[  734.455641]  ? print_usage_bug+0xc0/0xc0
[  734.459764]  memcg_kmem_charge+0x135/0x300
[  734.464139]  __alloc_pages_nodemask+0x89c/0xdd0
[  734.468815]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  734.473838]  ? __lock_acquire+0x7ec/0x4ec0
[  734.478078]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  734.483643]  ? graph_lock+0x170/0x170
[  734.487445]  ? find_held_lock+0x36/0x1c0
[  734.491519]  ? __lock_is_held+0xb5/0x140
[  734.495579]  ? lock_downgrade+0x900/0x900
[  734.499754]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  734.505319]  alloc_pages_current+0x10c/0x210
[  734.509736]  pte_alloc_one+0x1b/0x1a0
[  734.513594]  __pte_alloc+0x2a/0x350
[  734.517239]  copy_page_range+0x18a2/0x26f0
[  734.521541]  ? pmd_alloc+0x180/0x180
[  734.525263]  ? save_stack+0xa9/0xd0
[  734.529007]  ? save_stack+0x43/0xd0
[  734.532638]  ? kasan_slab_alloc+0x12/0x20
[  734.536786]  ? kmem_cache_alloc+0x12e/0x730
[  734.541131]  ? vm_area_dup+0x7a/0x230
[  734.545080]  ? copy_process+0x429f/0x8780
[  734.549258]  ? _do_fork+0x1cb/0x11c0
[  734.552973]  ? __x64_sys_clone+0xbf/0x150
[  734.557144]  ? do_syscall_64+0x1b9/0x820
[  734.561216]  ? graph_lock+0x170/0x170
[  734.565016]  ? lock_downgrade+0x900/0x900
[  734.569171]  ? graph_lock+0x170/0x170
[  734.572976]  ? kasan_check_read+0x11/0x20
[  734.577149]  ? graph_lock+0x170/0x170
[  734.580955]  ? find_held_lock+0x36/0x1c0
[  734.585240]  ? copy_process+0x454a/0x8780
[  734.589389]  ? lock_downgrade+0x900/0x900
[  734.593542]  ? lock_release+0x970/0x970
[  734.597514]  ? ttwu_stat+0x5c0/0x5c0
[  734.601227]  ? dup_userfaultfd+0x6d8/0x890
[  734.605470]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  734.610492]  ? vma_compute_subtree_gap+0x160/0x240
[  734.615428]  ? validate_mm_rb+0xaa/0xc0
[  734.619409]  ? __vma_link_rb+0x26c/0x370
[  734.623478]  copy_process+0x4720/0x8780
[  734.627475]  ? __cleanup_sighand+0x70/0x70
[  734.631847]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  734.637390]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  734.642935]  ? page_swapcount+0x1d0/0x1d0
[  734.647088]  ? try_to_wake_up+0x10a/0x12f0
[  734.651348]  ? lock_downgrade+0x900/0x900
[  734.655496]  ? lock_downgrade+0x900/0x900
[  734.659650]  ? trace_hardirqs_off+0xb8/0x310
[  734.664177]  ? kasan_check_read+0x11/0x20
[  734.668329]  ? trace_hardirqs_on_caller+0x310/0x310
[  734.673353]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  734.678507]  ? try_to_wake_up+0x10a/0x12f0
[  734.682749]  ? print_usage_bug+0xc0/0xc0
[  734.686814]  ? migrate_swap_stop+0x930/0x930
[  734.691228]  ? __handle_mm_fault+0x9ab/0x53e0
[  734.695727]  ? graph_lock+0x170/0x170
[  734.699532]  ? print_usage_bug+0xc0/0xc0
[  734.703709]  ? __lock_acquire+0x7ec/0x4ec0
[  734.707950]  ? print_usage_bug+0xc0/0xc0
[  734.712018]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  734.717557]  ? reuse_swap_page+0x4bd/0x1520
[  734.721880]  ? swp_swapcount+0x530/0x530
[  734.725948]  ? __lock_acquire+0x7ec/0x4ec0
[  734.730183]  ? mark_held_locks+0x130/0x130
[  734.734416]  ? rcu_softirq_qs+0x20/0x20
[  734.738395]  ? __lock_acquire+0x7ec/0x4ec0
[  734.742646]  ? mark_held_locks+0x130/0x130
[  734.746934]  ? graph_lock+0x170/0x170
[  734.750750]  ? mark_held_locks+0x130/0x130
[  734.755006]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  734.760547]  ? check_preemption_disabled+0x48/0x200
[  734.765584]  ? find_held_lock+0x36/0x1c0
[  734.769654]  ? do_wp_page+0xa6f/0x1690
[  734.773613]  ? lock_downgrade+0x900/0x900
[  734.777776]  ? wake_up_page_bit+0x6f0/0x6f0
[  734.782253]  ? kasan_check_read+0x11/0x20
[  734.786412]  ? do_raw_spin_unlock+0xa7/0x2f0
[  734.790827]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  734.795413]  ? pgd_free+0x380/0x380
[  734.799186]  ? __lock_acquire+0x7ec/0x4ec0
[  734.803479]  ? _raw_spin_unlock+0x2c/0x50
[  734.807698]  ? do_wp_page+0x77c/0x1690
[  734.811593]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  734.816269]  ? find_held_lock+0x36/0x1c0
[  734.820471]  ? lock_release+0x970/0x970
[  734.824451]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  734.829994]  ? kasan_check_write+0x14/0x20
[  734.834231]  ? do_raw_spin_lock+0xc1/0x200
[  734.838605]  ? __handle_mm_fault+0x9ab/0x53e0
[  734.843138]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  734.847983]  ? __sb_end_write+0xd9/0x110
[  734.852181]  ? graph_lock+0x170/0x170
[  734.855987]  ? print_usage_bug+0xc0/0xc0
[  734.860057]  ? atime_needs_update+0x710/0x710
[  734.864558]  ? graph_lock+0x170/0x170
[  734.868362]  ? graph_lock+0x170/0x170
[  734.872176]  ? find_held_lock+0x36/0x1c0
[  734.876246]  ? __do_page_fault+0x6b7/0xec0
[  734.880488]  _do_fork+0x1cb/0x11c0
[  734.884189]  ? fork_idle+0x1d0/0x1d0
[  734.887907]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  734.893449]  ? check_preemption_disabled+0x48/0x200
[  734.898518]  ? kasan_check_write+0x14/0x20
[  734.902756]  ? up_read+0x225/0x2c0
[  734.906300]  ? up_read_non_owner+0x100/0x100
[  734.910713]  ? find_vma+0x34/0x190
[  734.914262]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  734.919801]  ? __do_page_fault+0x49c/0xec0
[  734.924041]  ? do_syscall_64+0x9a/0x820
[  734.928074]  ? do_syscall_64+0x9a/0x820
[  734.932053]  ? lockdep_hardirqs_on+0x421/0x5c0
[  734.936644]  ? trace_hardirqs_on+0xbd/0x310
[  734.941025]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  734.946509]  ? trace_hardirqs_off_caller+0x300/0x300
[  734.951631]  __x64_sys_clone+0xbf/0x150
[  734.955674]  do_syscall_64+0x1b9/0x820
[  734.959568]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  734.964938]  ? syscall_return_slowpath+0x5e0/0x5e0
[  734.969925]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  734.974808]  ? trace_hardirqs_off+0x310/0x310
[  734.979448]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  734.984582]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  734.990229]  ? prepare_exit_to_usermode+0x291/0x3b0
[  734.995256]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  735.000134]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  735.005330] RIP: 0033:0x455c4a
[  735.008528] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  735.027539] RSP: 002b:00007ffdef61b280 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  735.035260] RAX: ffffffffffffffda RBX: 00007ffdef61b280 RCX: 0000000000455c4a
[  735.042645] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  735.049919] RBP: 00007ffdef61b2c0 R08: 0000000000000001 R09: 00000000021dc940
[  735.057307] R10: 00000000021dcc10 R11: 0000000000000246 R12: 0000000000000001
[  735.064662] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  735.077611] Memory limit reached of cgroup /syz1
[  735.082539] memory: usage 5412kB, limit 0kB, failcnt 255145
[  735.089292] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  735.096538] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  735.103277] Memory cgroup stats for /syz1: cache:112KB rss:0KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:44KB inactive_file:0KB active_file:4KB unevictable:0KB
[  735.123539] Out of memory and no killable processes...
[  735.130676] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  735.143746] syz-executor1 cpuset=syz1 mems_allowed=0
[  735.149064] CPU: 0 PID: 29135 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  735.157557] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  735.166910] Call Trace:
[  735.169622]  dump_stack+0x1d3/0x2c4
[  735.173257]  ? dump_stack_print_info.cold.2+0x52/0x52
[  735.178458]  dump_header+0x27b/0xf72
[  735.182176]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  735.187222]  ? kasan_check_read+0x11/0x20
[  735.191377]  ? pagefault_out_of_memory+0x197/0x197
[  735.196316]  ? rcu_read_unlock+0x33/0x60
[  735.200382]  ? mem_cgroup_iter+0x514/0x1160
[  735.204709]  ? find_held_lock+0x36/0x1c0
[  735.208780]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  735.213535]  ? mark_held_locks+0xc7/0x130
[  735.217943]  ? _raw_spin_unlock_irq+0x27/0x80
[  735.222442]  ? _raw_spin_unlock_irq+0x27/0x80
[  735.226990]  ? lockdep_hardirqs_on+0x421/0x5c0
[  735.231579]  ? trace_hardirqs_on+0xbd/0x310
[  735.235904]  ? kasan_check_read+0x11/0x20
[  735.240133]  ? css_task_iter_end+0x222/0x490
[  735.244552]  ? trace_hardirqs_off_caller+0x300/0x300
[  735.249658]  ? kasan_check_write+0x14/0x20
[  735.254020]  ? do_raw_spin_lock+0xc1/0x200
[  735.258259]  ? _raw_spin_unlock_irq+0x60/0x80
[  735.262756]  ? css_task_iter_end+0x2ce/0x490
[  735.267182]  ? cgroup_procs_next+0x70/0x70
[  735.271423]  ? _raw_spin_unlock_irq+0x60/0x80
[  735.275921]  ? oom_badness+0xaa0/0xaa0
[  735.279813]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  735.284692]  ? mem_cgroup_iter_break+0x30/0x30
[  735.289286]  ? mark_held_locks+0xc7/0x130
[  735.293444]  out_of_memory.cold.30+0xf/0x184
[  735.297858]  ? lockdep_hardirqs_on+0x421/0x5c0
[  735.302502]  ? kasan_check_read+0x11/0x20
[  735.306659]  ? oom_killer_disable+0x3a0/0x3a0
[  735.311175]  ? kasan_check_write+0x14/0x20
[  735.315412]  ? do_raw_spin_lock+0xc1/0x200
[  735.319660]  mem_cgroup_out_of_memory+0x15e/0x210
[  735.324504]  ? memcg_memory_event+0x40/0x40
[  735.328829]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  735.333678]  ? page_counter_try_charge+0x1c1/0x220
[  735.338660]  try_charge+0xb1a/0x1690
[  735.342381]  ? lock_downgrade+0x900/0x900
[  735.346532]  ? check_preemption_disabled+0x48/0x200
[  735.351560]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  735.357679]  ? find_held_lock+0x36/0x1c0
[  735.361809]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  735.366710]  ? lock_downgrade+0x900/0x900
[  735.370865]  ? check_preemption_disabled+0x48/0x200
[  735.375920]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  735.380851]  ? kasan_check_read+0x11/0x20
[  735.385002]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  735.390335]  ? rcu_softirq_qs+0x20/0x20
[  735.394323]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  735.399178]  memcg_kmem_charge_memcg+0x7c/0x120
[  735.411260]  ? memcg_kmem_put_cache+0xb0/0xb0
[  735.415901]  ? kmem_cache_alloc+0x12e/0x730
[  735.420240]  ? print_usage_bug+0xc0/0xc0
[  735.424313]  memcg_kmem_charge+0x135/0x300
[  735.428875]  __alloc_pages_nodemask+0x89c/0xdd0
[  735.433585]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  735.438613]  ? __lock_acquire+0x7ec/0x4ec0
[  735.442860]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  735.448403]  ? graph_lock+0x170/0x170
[  735.452200]  ? find_held_lock+0x36/0x1c0
[  735.456269]  ? __lock_is_held+0xb5/0x140
[  735.460331]  ? lock_downgrade+0x900/0x900
[  735.464475]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  735.470039]  alloc_pages_current+0x10c/0x210
[  735.474442]  pte_alloc_one+0x1b/0x1a0
[  735.478236]  __pte_alloc+0x2a/0x350
[  735.481857]  copy_page_range+0x18a2/0x26f0
[  735.486149]  ? pmd_alloc+0x180/0x180
[  735.489870]  ? save_stack+0xa9/0xd0
[  735.493487]  ? save_stack+0x43/0xd0
[  735.497111]  ? kasan_slab_alloc+0x12/0x20
[  735.501257]  ? kmem_cache_alloc+0x12e/0x730
[  735.505592]  ? vm_area_dup+0x7a/0x230
[  735.509379]  ? copy_process+0x429f/0x8780
[  735.513512]  ? _do_fork+0x1cb/0x11c0
[  735.517213]  ? __x64_sys_clone+0xbf/0x150
[  735.521349]  ? do_syscall_64+0x1b9/0x820
[  735.525410]  ? graph_lock+0x170/0x170
[  735.529199]  ? lock_downgrade+0x900/0x900
[  735.533335]  ? graph_lock+0x170/0x170
[  735.537137]  ? graph_lock+0x170/0x170
[  735.540927]  ? find_held_lock+0x36/0x1c0
[  735.544989]  ? copy_process+0x454a/0x8780
[  735.549143]  ? lock_downgrade+0x900/0x900
[  735.553284]  ? lock_release+0x970/0x970
[  735.557244]  ? ttwu_stat+0x5c0/0x5c0
[  735.560943]  ? dup_userfaultfd+0x6d8/0x890
[  735.565173]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  735.570180]  ? vma_compute_subtree_gap+0x160/0x240
[  735.575099]  ? validate_mm_rb+0xaa/0xc0
[  735.579078]  ? __vma_link_rb+0x26c/0x370
[  735.583144]  copy_process+0x4720/0x8780
[  735.587140]  ? __cleanup_sighand+0x70/0x70
[  735.591373]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  735.596900]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  735.602431]  ? page_swapcount+0x1d0/0x1d0
[  735.606570]  ? try_to_wake_up+0x10a/0x12f0
[  735.610797]  ? lock_downgrade+0x900/0x900
[  735.614937]  ? lock_downgrade+0x900/0x900
[  735.619168]  ? trace_hardirqs_off+0xb8/0x310
[  735.623566]  ? kasan_check_read+0x11/0x20
[  735.627707]  ? trace_hardirqs_on_caller+0x310/0x310
[  735.632726]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  735.637823]  ? try_to_wake_up+0x10a/0x12f0
[  735.642063]  ? print_usage_bug+0xc0/0xc0
[  735.646135]  ? migrate_swap_stop+0x930/0x930
[  735.650541]  ? __handle_mm_fault+0x9ab/0x53e0
[  735.655033]  ? graph_lock+0x170/0x170
[  735.658828]  ? print_usage_bug+0xc0/0xc0
[  735.662891]  ? __lock_acquire+0x7ec/0x4ec0
[  735.667140]  ? print_usage_bug+0xc0/0xc0
[  735.671205]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  735.676750]  ? reuse_swap_page+0x4bd/0x1520
[  735.681071]  ? swp_swapcount+0x530/0x530
[  735.685155]  ? __lock_acquire+0x7ec/0x4ec0
[  735.689590]  ? mark_held_locks+0x130/0x130
[  735.693823]  ? rcu_softirq_qs+0x20/0x20
[  735.697800]  ? __lock_acquire+0x7ec/0x4ec0
[  735.702039]  ? mark_held_locks+0x130/0x130
[  735.706277]  ? graph_lock+0x170/0x170
[  735.710077]  ? mark_held_locks+0x130/0x130
[  735.714339]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  735.719878]  ? check_preemption_disabled+0x48/0x200
[  735.724909]  ? find_held_lock+0x36/0x1c0
[  735.728974]  ? do_wp_page+0xa6f/0x1690
[  735.732916]  ? lock_downgrade+0x900/0x900
[  735.737066]  ? wake_up_page_bit+0x6f0/0x6f0
[  735.741394]  ? kasan_check_read+0x11/0x20
[  735.745593]  ? do_raw_spin_unlock+0xa7/0x2f0
[  735.750059]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  735.754660]  ? pgd_free+0x380/0x380
[  735.758288]  ? __lock_acquire+0x7ec/0x4ec0
[  735.762533]  ? _raw_spin_unlock+0x2c/0x50
[  735.766740]  ? do_wp_page+0x77c/0x1690
[  735.770634]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  735.775307]  ? find_held_lock+0x36/0x1c0
[  735.779374]  ? lock_release+0x970/0x970
[  735.783355]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  735.788898]  ? kasan_check_write+0x14/0x20
[  735.793159]  ? do_raw_spin_lock+0xc1/0x200
[  735.797399]  ? __handle_mm_fault+0x9ab/0x53e0
[  735.801901]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  735.806805]  ? __sb_end_write+0xd9/0x110
[  735.811037]  ? graph_lock+0x170/0x170
[  735.814839]  ? print_usage_bug+0xc0/0xc0
[  735.818902]  ? atime_needs_update+0x710/0x710
[  735.823402]  ? graph_lock+0x170/0x170
[  735.827209]  ? graph_lock+0x170/0x170
[  735.831015]  ? find_held_lock+0x36/0x1c0
[  735.835084]  ? __do_page_fault+0x6b7/0xec0
[  735.839356]  _do_fork+0x1cb/0x11c0
[  735.843051]  ? fork_idle+0x1d0/0x1d0
[  735.846771]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  735.852313]  ? check_preemption_disabled+0x48/0x200
[  735.857335]  ? kasan_check_write+0x14/0x20
[  735.861573]  ? up_read+0x225/0x2c0
[  735.865142]  ? up_read_non_owner+0x100/0x100
[  735.869789]  ? find_vma+0x34/0x190
[  735.873390]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  735.878934]  ? __do_page_fault+0x49c/0xec0
[  735.883175]  ? do_syscall_64+0x9a/0x820
[  735.887166]  ? do_syscall_64+0x9a/0x820
[  735.891161]  ? lockdep_hardirqs_on+0x421/0x5c0
[  735.895804]  ? trace_hardirqs_on+0xbd/0x310
[  735.900162]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  735.905528]  ? trace_hardirqs_off_caller+0x300/0x300
[  735.910642]  __x64_sys_clone+0xbf/0x150
[  735.914627]  do_syscall_64+0x1b9/0x820
[  735.918522]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  735.923892]  ? syscall_return_slowpath+0x5e0/0x5e0
[  735.928883]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  735.933852]  ? trace_hardirqs_off+0x310/0x310
[  735.938474]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  735.943495]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  735.949035]  ? prepare_exit_to_usermode+0x291/0x3b0
[  735.954059]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  735.958966]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  735.964231] RIP: 0033:0x455c4a
[  735.967429] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  735.986335] RSP: 002b:00007ffdef61b280 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  735.994142] RAX: ffffffffffffffda RBX: 00007ffdef61b280 RCX: 0000000000455c4a
[  736.001510] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  736.008951] RBP: 00007ffdef61b2c0 R08: 0000000000000001 R09: 00000000021dc940
[  736.016225] R10: 00000000021dcc10 R11: 0000000000000246 R12: 0000000000000001
[  736.023494] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  736.032181] Memory limit reached of cgroup /syz1
[  736.036994] memory: usage 5412kB, limit 0kB, failcnt 255154
[  736.042806] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  736.049768] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  736.055914] Memory cgroup stats for /syz1: cache:112KB rss:0KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:44KB inactive_file:0KB active_file:0KB unevictable:0KB
[  736.076040] Out of memory and no killable processes...
[  736.083015] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  736.095942] syz-executor1 cpuset=syz1 mems_allowed=0
[  736.101217] CPU: 0 PID: 29135 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  736.109716] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  736.119078] Call Trace:
[  736.121703]  dump_stack+0x1d3/0x2c4
[  736.125336]  ? dump_stack_print_info.cold.2+0x52/0x52
[  736.130540]  dump_header+0x27b/0xf72
[  736.134258]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  736.139188]  ? kasan_check_read+0x11/0x20
[  736.143343]  ? pagefault_out_of_memory+0x197/0x197
[  736.148282]  ? rcu_read_unlock+0x33/0x60
[  736.152346]  ? mem_cgroup_iter+0x514/0x1160
[  736.156675]  ? find_held_lock+0x36/0x1c0
[  736.160742]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  736.165513]  ? mark_held_locks+0xc7/0x130
[  736.169809]  ? _raw_spin_unlock_irq+0x27/0x80
[  736.174305]  ? _raw_spin_unlock_irq+0x27/0x80
[  736.178801]  ? lockdep_hardirqs_on+0x421/0x5c0
[  736.183385]  ? trace_hardirqs_on+0xbd/0x310
[  736.187772]  ? kasan_check_read+0x11/0x20
[  736.191926]  ? css_task_iter_end+0x222/0x490
[  736.196336]  ? trace_hardirqs_off_caller+0x300/0x300
[  736.201499]  ? kasan_check_write+0x14/0x20
[  736.205740]  ? do_raw_spin_lock+0xc1/0x200
[  736.209982]  ? _raw_spin_unlock_irq+0x60/0x80
[  736.214477]  ? css_task_iter_end+0x2ce/0x490
[  736.218891]  ? cgroup_procs_next+0x70/0x70
[  736.223161]  ? _raw_spin_unlock_irq+0x60/0x80
[  736.227658]  ? oom_badness+0xaa0/0xaa0
[  736.231609]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  736.236375]  ? mem_cgroup_iter_break+0x30/0x30
[  736.240973]  ? mark_held_locks+0xc7/0x130
[  736.245159]  out_of_memory.cold.30+0xf/0x184
[  736.249662]  ? lockdep_hardirqs_on+0x421/0x5c0
[  736.254251]  ? kasan_check_read+0x11/0x20
[  736.258407]  ? oom_killer_disable+0x3a0/0x3a0
[  736.263095]  ? kasan_check_write+0x14/0x20
[  736.267389]  ? do_raw_spin_lock+0xc1/0x200
[  736.271654]  mem_cgroup_out_of_memory+0x15e/0x210
[  736.276559]  ? memcg_memory_event+0x40/0x40
[  736.280886]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  736.285795]  ? page_counter_try_charge+0x1c1/0x220
[  736.290790]  try_charge+0xb1a/0x1690
[  736.294510]  ? lock_downgrade+0x900/0x900
[  736.298931]  ? check_preemption_disabled+0x48/0x200
[  736.303959]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  736.310023]  ? find_held_lock+0x36/0x1c0
[  736.314094]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  736.318973]  ? lock_downgrade+0x900/0x900
[  736.323153]  ? check_preemption_disabled+0x48/0x200
[  736.328181]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  736.333151]  ? kasan_check_read+0x11/0x20
[  736.337309]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  736.342590]  ? rcu_softirq_qs+0x20/0x20
[  736.346577]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  736.351425]  memcg_kmem_charge_memcg+0x7c/0x120
[  736.356194]  ? memcg_kmem_put_cache+0xb0/0xb0
[  736.360746]  ? kmem_cache_alloc+0x12e/0x730
[  736.365088]  ? print_usage_bug+0xc0/0xc0
[  736.369190]  memcg_kmem_charge+0x135/0x300
[  736.373433]  __alloc_pages_nodemask+0x89c/0xdd0
[  736.378329]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  736.383419]  ? __lock_acquire+0x7ec/0x4ec0
[  736.387660]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  736.393206]  ? graph_lock+0x170/0x170
[  736.397163]  ? find_held_lock+0x36/0x1c0
[  736.401238]  ? __lock_is_held+0xb5/0x140
[  736.405304]  ? lock_downgrade+0x900/0x900
[  736.409697]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  736.415304]  alloc_pages_current+0x10c/0x210
[  736.419717]  pte_alloc_one+0x1b/0x1a0
[  736.423522]  __pte_alloc+0x2a/0x350
[  736.427169]  copy_page_range+0x18a2/0x26f0
[  736.431553]  ? pmd_alloc+0x180/0x180
[  736.435273]  ? save_stack+0xa9/0xd0
[  736.438902]  ? save_stack+0x43/0xd0
[  736.442536]  ? kasan_slab_alloc+0x12/0x20
[  736.446684]  ? kmem_cache_alloc+0x12e/0x730
[  736.451010]  ? vm_area_dup+0x7a/0x230
[  736.455090]  ? copy_process+0x429f/0x8780
[  736.459285]  ? _do_fork+0x1cb/0x11c0
[  736.463000]  ? __x64_sys_clone+0xbf/0x150
[  736.467227]  ? do_syscall_64+0x1b9/0x820
[  736.471357]  ? graph_lock+0x170/0x170
[  736.475176]  ? lock_downgrade+0x900/0x900
[  736.479329]  ? graph_lock+0x170/0x170
[  736.483255]  ? graph_lock+0x170/0x170
[  736.487190]  ? find_held_lock+0x36/0x1c0
[  736.491258]  ? copy_process+0x454a/0x8780
[  736.495407]  ? lock_downgrade+0x900/0x900
[  736.499569]  ? lock_release+0x970/0x970
[  736.503542]  ? ttwu_stat+0x5c0/0x5c0
[  736.507263]  ? dup_userfaultfd+0x6d8/0x890
[  736.511513]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  736.516585]  ? vma_compute_subtree_gap+0x160/0x240
[  736.521518]  ? validate_mm_rb+0xaa/0xc0
[  736.525606]  ? __vma_link_rb+0x26c/0x370
[  736.529772]  copy_process+0x4720/0x8780
[  736.533869]  ? __cleanup_sighand+0x70/0x70
[  736.538143]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  736.543743]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  736.549343]  ? page_swapcount+0x1d0/0x1d0
[  736.553493]  ? try_to_wake_up+0x10a/0x12f0
[  736.557733]  ? lock_downgrade+0x900/0x900
[  736.561884]  ? lock_downgrade+0x900/0x900
[  736.566036]  ? trace_hardirqs_off+0xb8/0x310
[  736.570448]  ? kasan_check_read+0x11/0x20
[  736.574604]  ? trace_hardirqs_on_caller+0x310/0x310
[  736.579696]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  736.584808]  ? try_to_wake_up+0x10a/0x12f0
[  736.589052]  ? print_usage_bug+0xc0/0xc0
[  736.593149]  ? migrate_swap_stop+0x930/0x930
[  736.597687]  ? __handle_mm_fault+0x9ab/0x53e0
[  736.602197]  ? graph_lock+0x170/0x170
[  736.606007]  ? print_usage_bug+0xc0/0xc0
[  736.610077]  ? __lock_acquire+0x7ec/0x4ec0
[  736.614360]  ? print_usage_bug+0xc0/0xc0
[  736.618440]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  736.623983]  ? reuse_swap_page+0x4bd/0x1520
[  736.628418]  ? swp_swapcount+0x530/0x530
[  736.632487]  ? __lock_acquire+0x7ec/0x4ec0
[  736.636722]  ? mark_held_locks+0x130/0x130
[  736.640960]  ? rcu_softirq_qs+0x20/0x20
[  736.644947]  ? __lock_acquire+0x7ec/0x4ec0
[  736.649251]  ? mark_held_locks+0x130/0x130
[  736.653547]  ? graph_lock+0x170/0x170
[  736.657408]  ? mark_held_locks+0x130/0x130
[  736.661650]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  736.667198]  ? check_preemption_disabled+0x48/0x200
[  736.672234]  ? find_held_lock+0x36/0x1c0
[  736.676304]  ? do_wp_page+0xa6f/0x1690
[  736.680373]  ? lock_downgrade+0x900/0x900
[  736.684528]  ? wake_up_page_bit+0x6f0/0x6f0
[  736.688868]  ? kasan_check_read+0x11/0x20
[  736.693030]  ? do_raw_spin_unlock+0xa7/0x2f0
[  736.697456]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  736.702263]  ? pgd_free+0x380/0x380
[  736.705895]  ? __lock_acquire+0x7ec/0x4ec0
[  736.710281]  ? _raw_spin_unlock+0x2c/0x50
[  736.714552]  ? do_wp_page+0x77c/0x1690
[  736.718457]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  736.723163]  ? find_held_lock+0x36/0x1c0
[  736.727239]  ? lock_release+0x970/0x970
[  736.731225]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  736.736785]  ? kasan_check_write+0x14/0x20
[  736.741035]  ? do_raw_spin_lock+0xc1/0x200
[  736.745423]  ? __handle_mm_fault+0x9ab/0x53e0
[  736.749933]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  736.754779]  ? __sb_end_write+0xd9/0x110
[  736.758971]  ? graph_lock+0x170/0x170
[  736.762911]  ? print_usage_bug+0xc0/0xc0
[  736.767088]  ? atime_needs_update+0x710/0x710
[  736.771622]  ? graph_lock+0x170/0x170
[  736.775491]  ? graph_lock+0x170/0x170
[  736.779358]  ? find_held_lock+0x36/0x1c0
[  736.783430]  ? __do_page_fault+0x6b7/0xec0
[  736.787675]  _do_fork+0x1cb/0x11c0
[  736.791230]  ? fork_idle+0x1d0/0x1d0
[  736.795161]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  736.800709]  ? check_preemption_disabled+0x48/0x200
[  736.805791]  ? kasan_check_write+0x14/0x20
[  736.810032]  ? up_read+0x225/0x2c0
[  736.813577]  ? up_read_non_owner+0x100/0x100
[  736.818060]  ? find_vma+0x34/0x190
[  736.821611]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  736.827275]  ? __do_page_fault+0x49c/0xec0
[  736.831517]  ? do_syscall_64+0x9a/0x820
[  736.835495]  ? do_syscall_64+0x9a/0x820
[  736.839476]  ? lockdep_hardirqs_on+0x421/0x5c0
[  736.844065]  ? trace_hardirqs_on+0xbd/0x310
[  736.848394]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  736.853826]  ? trace_hardirqs_off_caller+0x300/0x300
[  736.858939]  __x64_sys_clone+0xbf/0x150
[  736.862931]  do_syscall_64+0x1b9/0x820
[  736.866931]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  736.872308]  ? syscall_return_slowpath+0x5e0/0x5e0
[  736.877242]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  736.882094]  ? trace_hardirqs_off+0x310/0x310
[  736.886629]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  736.891655]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  736.897256]  ? prepare_exit_to_usermode+0x291/0x3b0
[  736.902353]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  736.907271]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  736.912601] RIP: 0033:0x455c4a
[  736.915885] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  736.934790] RSP: 002b:00007ffdef61b280 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  736.942589] RAX: ffffffffffffffda RBX: 00007ffdef61b280 RCX: 0000000000455c4a
[  736.949859] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  736.957154] RBP: 00007ffdef61b2c0 R08: 0000000000000001 R09: 00000000021dc940
[  736.964428] R10: 00000000021dcc10 R11: 0000000000000246 R12: 0000000000000001
[  736.971754] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  736.982302] Memory limit reached of cgroup /syz1
[  736.987147] memory: usage 5416kB, limit 0kB, failcnt 255162
[  736.993228] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  737.000063] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  737.006258] Memory cgroup stats for /syz1: cache:112KB rss:0KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:44KB inactive_file:0KB active_file:0KB unevictable:0KB
[  737.026306] Out of memory and no killable processes...
[  737.033150] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  737.046206] syz-executor1 cpuset=syz1 mems_allowed=0
[  737.051516] CPU: 0 PID: 29135 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  737.060009] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  737.069367] Call Trace:
[  737.071958]  dump_stack+0x1d3/0x2c4
[  737.075754]  ? dump_stack_print_info.cold.2+0x52/0x52
[  737.080958]  dump_header+0x27b/0xf72
[  737.084678]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  737.089609]  ? kasan_check_read+0x11/0x20
[  737.093765]  ? pagefault_out_of_memory+0x197/0x197
[  737.098760]  ? rcu_read_unlock+0x33/0x60
[  737.102991]  ? mem_cgroup_iter+0x514/0x1160
[  737.107317]  ? find_held_lock+0x36/0x1c0
[  737.111386]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  737.116162]  ? mark_held_locks+0xc7/0x130
[  737.120315]  ? _raw_spin_unlock_irq+0x27/0x80
[  737.124814]  ? _raw_spin_unlock_irq+0x27/0x80
[  737.129314]  ? lockdep_hardirqs_on+0x421/0x5c0
[  737.133924]  ? trace_hardirqs_on+0xbd/0x310
[  737.138255]  ? kasan_check_read+0x11/0x20
[  737.142408]  ? css_task_iter_end+0x222/0x490
[  737.146818]  ? trace_hardirqs_off_caller+0x300/0x300
[  737.151928]  ? kasan_check_write+0x14/0x20
[  737.156171]  ? do_raw_spin_lock+0xc1/0x200
[  737.160474]  ? _raw_spin_unlock_irq+0x60/0x80
[  737.164974]  ? css_task_iter_end+0x2ce/0x490
[  737.169387]  ? cgroup_procs_next+0x70/0x70
[  737.173767]  ? _raw_spin_unlock_irq+0x60/0x80
[  737.178358]  ? oom_badness+0xaa0/0xaa0
[  737.182306]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  737.187067]  ? mem_cgroup_iter_break+0x30/0x30
[  737.191664]  ? mark_held_locks+0xc7/0x130
[  737.195816]  out_of_memory.cold.30+0xf/0x184
[  737.200352]  ? lockdep_hardirqs_on+0x421/0x5c0
[  737.204938]  ? kasan_check_read+0x11/0x20
[  737.209092]  ? oom_killer_disable+0x3a0/0x3a0
[  737.213619]  ? kasan_check_write+0x14/0x20
[  737.217862]  ? do_raw_spin_lock+0xc1/0x200
[  737.222137]  mem_cgroup_out_of_memory+0x15e/0x210
[  737.226985]  ? memcg_memory_event+0x40/0x40
[  737.231307]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  737.236171]  ? page_counter_try_charge+0x1c1/0x220
[  737.241137]  try_charge+0xb1a/0x1690
[  737.244918]  ? lock_downgrade+0x900/0x900
[  737.249074]  ? check_preemption_disabled+0x48/0x200
[  737.254189]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  737.260254]  ? find_held_lock+0x36/0x1c0
[  737.264330]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  737.269179]  ? lock_downgrade+0x900/0x900
[  737.273389]  ? check_preemption_disabled+0x48/0x200
[  737.278521]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  737.283507]  ? kasan_check_read+0x11/0x20
[  737.287659]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  737.292936]  ? rcu_softirq_qs+0x20/0x20
[  737.297027]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  737.301877]  memcg_kmem_charge_memcg+0x7c/0x120
[  737.306559]  ? memcg_kmem_put_cache+0xb0/0xb0
[  737.311058]  ? kmem_cache_alloc+0x12e/0x730
[  737.315444]  ? print_usage_bug+0xc0/0xc0
[  737.319514]  memcg_kmem_charge+0x135/0x300
[  737.323769]  __alloc_pages_nodemask+0x89c/0xdd0
[  737.328451]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  737.333476]  ? __lock_acquire+0x7ec/0x4ec0
[  737.337718]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  737.343611]  ? graph_lock+0x170/0x170
[  737.347598]  ? find_held_lock+0x36/0x1c0
[  737.351674]  ? __lock_is_held+0xb5/0x140
[  737.355748]  ? lock_downgrade+0x900/0x900
[  737.359906]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  737.365738]  alloc_pages_current+0x10c/0x210
[  737.370174]  pte_alloc_one+0x1b/0x1a0
[  737.373979]  __pte_alloc+0x2a/0x350
[  737.377613]  copy_page_range+0x18a2/0x26f0
[  737.381871]  ? pmd_alloc+0x180/0x180
[  737.385588]  ? save_stack+0xa9/0xd0
[  737.389222]  ? save_stack+0x43/0xd0
[  737.392851]  ? kasan_slab_alloc+0x12/0x20
[  737.397166]  ? kmem_cache_alloc+0x12e/0x730
[  737.401491]  ? vm_area_dup+0x7a/0x230
[  737.405550]  ? copy_process+0x429f/0x8780
[  737.417262]  ? _do_fork+0x1cb/0x11c0
[  737.420981]  ? __x64_sys_clone+0xbf/0x150
[  737.425161]  ? do_syscall_64+0x1b9/0x820
[  737.429237]  ? graph_lock+0x170/0x170
[  737.433045]  ? lock_downgrade+0x900/0x900
[  737.437199]  ? graph_lock+0x170/0x170
[  737.441065]  ? graph_lock+0x170/0x170
[  737.444915]  ? find_held_lock+0x36/0x1c0
[  737.449077]  ? copy_process+0x454a/0x8780
[  737.453229]  ? lock_downgrade+0x900/0x900
[  737.457395]  ? lock_release+0x970/0x970
[  737.461385]  ? ttwu_stat+0x5c0/0x5c0
[  737.465102]  ? dup_userfaultfd+0x6d8/0x890
[  737.469382]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  737.474400]  ? vma_compute_subtree_gap+0x160/0x240
[  737.479332]  ? validate_mm_rb+0xaa/0xc0
[  737.483373]  ? __vma_link_rb+0x26c/0x370
[  737.487454]  copy_process+0x4720/0x8780
[  737.491519]  ? __cleanup_sighand+0x70/0x70
[  737.495762]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  737.501303]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  737.506849]  ? page_swapcount+0x1d0/0x1d0
[  737.511053]  ? try_to_wake_up+0x10a/0x12f0
[  737.515306]  ? lock_downgrade+0x900/0x900
[  737.519456]  ? lock_downgrade+0x900/0x900
[  737.523611]  ? trace_hardirqs_off+0xb8/0x310
[  737.528024]  ? kasan_check_read+0x11/0x20
[  737.532179]  ? trace_hardirqs_on_caller+0x310/0x310
[  737.537219]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  737.542328]  ? try_to_wake_up+0x10a/0x12f0
[  737.546572]  ? print_usage_bug+0xc0/0xc0
[  737.550761]  ? migrate_swap_stop+0x930/0x930
[  737.555181]  ? __handle_mm_fault+0x9ab/0x53e0
[  737.559691]  ? graph_lock+0x170/0x170
[  737.563497]  ? print_usage_bug+0xc0/0xc0
[  737.567568]  ? __lock_acquire+0x7ec/0x4ec0
[  737.571807]  ? print_usage_bug+0xc0/0xc0
[  737.575873]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  737.581413]  ? reuse_swap_page+0x4bd/0x1520
[  737.585738]  ? swp_swapcount+0x530/0x530
[  737.589810]  ? __lock_acquire+0x7ec/0x4ec0
[  737.594184]  ? mark_held_locks+0x130/0x130
[  737.598421]  ? rcu_softirq_qs+0x20/0x20
[  737.602403]  ? __lock_acquire+0x7ec/0x4ec0
[  737.606649]  ? mark_held_locks+0x130/0x130
[  737.610891]  ? graph_lock+0x170/0x170
[  737.614696]  ? mark_held_locks+0x130/0x130
[  737.618994]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  737.624539]  ? check_preemption_disabled+0x48/0x200
[  737.629563]  ? find_held_lock+0x36/0x1c0
[  737.633638]  ? do_wp_page+0xa6f/0x1690
[  737.637528]  ? lock_downgrade+0x900/0x900
[  737.641688]  ? wake_up_page_bit+0x6f0/0x6f0
[  737.646086]  ? kasan_check_read+0x11/0x20
[  737.650278]  ? do_raw_spin_unlock+0xa7/0x2f0
[  737.654691]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  737.659276]  ? pgd_free+0x380/0x380
[  737.662909]  ? __lock_acquire+0x7ec/0x4ec0
[  737.667175]  ? _raw_spin_unlock+0x2c/0x50
[  737.671328]  ? do_wp_page+0x77c/0x1690
[  737.675477]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  737.680196]  ? find_held_lock+0x36/0x1c0
[  737.684285]  ? lock_release+0x970/0x970
[  737.688270]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  737.693814]  ? kasan_check_write+0x14/0x20
[  737.698052]  ? do_raw_spin_lock+0xc1/0x200
[  737.702351]  ? __handle_mm_fault+0x9ab/0x53e0
[  737.706855]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  737.711699]  ? __sb_end_write+0xd9/0x110
[  737.715763]  ? graph_lock+0x170/0x170
[  737.719569]  ? print_usage_bug+0xc0/0xc0
[  737.723635]  ? atime_needs_update+0x710/0x710
[  737.728297]  ? graph_lock+0x170/0x170
[  737.732097]  ? graph_lock+0x170/0x170
[  737.735992]  ? find_held_lock+0x36/0x1c0
[  737.740152]  ? __do_page_fault+0x6b7/0xec0
[  737.744397]  _do_fork+0x1cb/0x11c0
[  737.747947]  ? fork_idle+0x1d0/0x1d0
[  737.751667]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  737.757211]  ? check_preemption_disabled+0x48/0x200
[  737.762235]  ? kasan_check_write+0x14/0x20
[  737.766475]  ? up_read+0x225/0x2c0
[  737.770021]  ? up_read_non_owner+0x100/0x100
[  737.774437]  ? find_vma+0x34/0x190
[  737.777985]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  737.783529]  ? __do_page_fault+0x49c/0xec0
[  737.787774]  ? do_syscall_64+0x9a/0x820
[  737.791810]  ? do_syscall_64+0x9a/0x820
[  737.795847]  ? lockdep_hardirqs_on+0x421/0x5c0
[  737.800693]  ? trace_hardirqs_on+0xbd/0x310
[  737.805019]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  737.810390]  ? trace_hardirqs_off_caller+0x300/0x300
[  737.815499]  __x64_sys_clone+0xbf/0x150
[  737.819556]  do_syscall_64+0x1b9/0x820
[  737.823455]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  737.828848]  ? syscall_return_slowpath+0x5e0/0x5e0
[  737.833849]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  737.838699]  ? trace_hardirqs_off+0x310/0x310
[  737.843199]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  737.848222]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  737.853766]  ? prepare_exit_to_usermode+0x291/0x3b0
[  737.858791]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  737.863647]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  737.868844] RIP: 0033:0x455c4a
[  737.872043] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  737.890954] RSP: 002b:00007ffdef61b280 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  737.898733] RAX: ffffffffffffffda RBX: 00007ffdef61b280 RCX: 0000000000455c4a
[  737.906017] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  737.913361] RBP: 00007ffdef61b2c0 R08: 0000000000000001 R09: 00000000021dc940
[  737.920780] R10: 00000000021dcc10 R11: 0000000000000246 R12: 0000000000000001
[  737.928141] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  737.936737] Memory limit reached of cgroup /syz1
[  737.941645] memory: usage 5420kB, limit 0kB, failcnt 255170
[  737.947479] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  737.954256] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  737.960504] Memory cgroup stats for /syz1: cache:112KB rss:0KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:44KB inactive_file:0KB active_file:0KB unevictable:0KB
[  737.980772] Out of memory and no killable processes...
[  737.987846] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  738.001085] syz-executor1 cpuset=syz1 mems_allowed=0
[  738.006274] CPU: 0 PID: 29135 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  738.014956] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  738.024484] Call Trace:
[  738.027084]  dump_stack+0x1d3/0x2c4
[  738.030810]  ? dump_stack_print_info.cold.2+0x52/0x52
[  738.036022]  dump_header+0x27b/0xf72
[  738.039745]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  738.044846]  ? kasan_check_read+0x11/0x20
[  738.049058]  ? pagefault_out_of_memory+0x197/0x197
[  738.053997]  ? rcu_read_unlock+0x33/0x60
[  738.058064]  ? mem_cgroup_iter+0x514/0x1160
[  738.062392]  ? find_held_lock+0x36/0x1c0
[  738.066462]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  738.071222]  ? mark_held_locks+0xc7/0x130
[  738.075377]  ? _raw_spin_unlock_irq+0x27/0x80
[  738.079972]  ? _raw_spin_unlock_irq+0x27/0x80
[  738.084475]  ? lockdep_hardirqs_on+0x421/0x5c0
[  738.089061]  ? trace_hardirqs_on+0xbd/0x310
[  738.093637]  ? kasan_check_read+0x11/0x20
[  738.097792]  ? css_task_iter_end+0x222/0x490
[  738.102269]  ? trace_hardirqs_off_caller+0x300/0x300
[  738.107377]  ? kasan_check_write+0x14/0x20
[  738.111680]  ? do_raw_spin_lock+0xc1/0x200
[  738.116016]  ? _raw_spin_unlock_irq+0x60/0x80
[  738.120545]  ? css_task_iter_end+0x2ce/0x490
[  738.124954]  ? cgroup_procs_next+0x70/0x70
[  738.129196]  ? _raw_spin_unlock_irq+0x60/0x80
[  738.133697]  ? oom_badness+0xaa0/0xaa0
[  738.137784]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  738.142548]  ? mem_cgroup_iter_break+0x30/0x30
[  738.147281]  ? mark_held_locks+0xc7/0x130
[  738.151438]  out_of_memory.cold.30+0xf/0x184
[  738.155865]  ? lockdep_hardirqs_on+0x421/0x5c0
[  738.160550]  ? kasan_check_read+0x11/0x20
[  738.164707]  ? oom_killer_disable+0x3a0/0x3a0
[  738.169264]  ? kasan_check_write+0x14/0x20
[  738.173562]  ? do_raw_spin_lock+0xc1/0x200
[  738.177812]  mem_cgroup_out_of_memory+0x15e/0x210
[  738.182747]  ? memcg_memory_event+0x40/0x40
[  738.187075]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  738.191923]  ? page_counter_try_charge+0x1c1/0x220
[  738.196859]  try_charge+0xb1a/0x1690
[  738.200586]  ? lock_downgrade+0x900/0x900
[  738.204737]  ? check_preemption_disabled+0x48/0x200
[  738.209759]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  738.215823]  ? find_held_lock+0x36/0x1c0
[  738.219895]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  738.224798]  ? lock_downgrade+0x900/0x900
[  738.228951]  ? check_preemption_disabled+0x48/0x200
[  738.233970]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  738.238902]  ? kasan_check_read+0x11/0x20
[  738.243051]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  738.248505]  ? rcu_softirq_qs+0x20/0x20
[  738.252498]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  738.257350]  memcg_kmem_charge_memcg+0x7c/0x120
[  738.262166]  ? memcg_kmem_put_cache+0xb0/0xb0
[  738.266662]  ? kmem_cache_alloc+0x12e/0x730
[  738.270992]  ? print_usage_bug+0xc0/0xc0
[  738.275060]  memcg_kmem_charge+0x135/0x300
[  738.279301]  __alloc_pages_nodemask+0x89c/0xdd0
[  738.283975]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  738.288997]  ? __lock_acquire+0x7ec/0x4ec0
[  738.293239]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  738.299154]  ? graph_lock+0x170/0x170
[  738.303017]  ? find_held_lock+0x36/0x1c0
[  738.307090]  ? __lock_is_held+0xb5/0x140
[  738.311185]  ? lock_downgrade+0x900/0x900
[  738.315341]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  738.320964]  alloc_pages_current+0x10c/0x210
[  738.325378]  pte_alloc_one+0x1b/0x1a0
[  738.329183]  __pte_alloc+0x2a/0x350
[  738.332949]  copy_page_range+0x18a2/0x26f0
[  738.337204]  ? pmd_alloc+0x180/0x180
[  738.340981]  ? save_stack+0xa9/0xd0
[  738.344842]  ? save_stack+0x43/0xd0
[  738.348528]  ? kasan_slab_alloc+0x12/0x20
[  738.352839]  ? kmem_cache_alloc+0x12e/0x730
[  738.357171]  ? vm_area_dup+0x7a/0x230
[  738.360973]  ? copy_process+0x429f/0x8780
[  738.365157]  ? _do_fork+0x1cb/0x11c0
[  738.368874]  ? __x64_sys_clone+0xbf/0x150
[  738.373023]  ? do_syscall_64+0x1b9/0x820
[  738.377092]  ? graph_lock+0x170/0x170
[  738.380925]  ? lock_downgrade+0x900/0x900
[  738.385174]  ? graph_lock+0x170/0x170
[  738.388983]  ? graph_lock+0x170/0x170
[  738.392789]  ? find_held_lock+0x36/0x1c0
[  738.396917]  ? copy_process+0x454a/0x8780
[  738.401071]  ? lock_downgrade+0x900/0x900
[  738.405245]  ? lock_release+0x970/0x970
[  738.416699]  ? ttwu_stat+0x5c0/0x5c0
[  738.420508]  ? dup_userfaultfd+0x6d8/0x890
[  738.424754]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  738.429777]  ? validate_mm_rb+0xaa/0xc0
[  738.433899]  ? __vma_link_rb+0x26c/0x370
[  738.437969]  copy_process+0x4720/0x8780
[  738.441966]  ? __cleanup_sighand+0x70/0x70
[  738.446362]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  738.451906]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  738.457577]  ? page_swapcount+0x1d0/0x1d0
[  738.461726]  ? try_to_wake_up+0x10a/0x12f0
[  738.465966]  ? lock_downgrade+0x900/0x900
[  738.470151]  ? lock_downgrade+0x900/0x900
[  738.474313]  ? trace_hardirqs_off+0xb8/0x310
[  738.478734]  ? kasan_check_read+0x11/0x20
[  738.482951]  ? trace_hardirqs_on_caller+0x310/0x310
[  738.487982]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  738.493180]  ? try_to_wake_up+0x10a/0x12f0
[  738.497547]  ? print_usage_bug+0xc0/0xc0
[  738.501615]  ? migrate_swap_stop+0x930/0x930
[  738.506088]  ? __handle_mm_fault+0x9ab/0x53e0
[  738.510688]  ? graph_lock+0x170/0x170
[  738.514544]  ? print_usage_bug+0xc0/0xc0
[  738.518616]  ? __lock_acquire+0x7ec/0x4ec0
[  738.522862]  ? print_usage_bug+0xc0/0xc0
[  738.527042]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  738.532748]  ? reuse_swap_page+0x4bd/0x1520
[  738.537160]  ? swp_swapcount+0x530/0x530
[  738.541237]  ? __lock_acquire+0x7ec/0x4ec0
[  738.545472]  ? mark_held_locks+0x130/0x130
[  738.549710]  ? rcu_softirq_qs+0x20/0x20
[  738.553692]  ? __lock_acquire+0x7ec/0x4ec0
[  738.558059]  ? mark_held_locks+0x130/0x130
[  738.562298]  ? graph_lock+0x170/0x170
[  738.566098]  ? mark_held_locks+0x130/0x130
[  738.570370]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  738.575911]  ? check_preemption_disabled+0x48/0x200
[  738.580934]  ? find_held_lock+0x36/0x1c0
[  738.584997]  ? do_wp_page+0xa6f/0x1690
[  738.588885]  ? lock_downgrade+0x900/0x900
[  738.593095]  ? wake_up_page_bit+0x6f0/0x6f0
[  738.597458]  ? kasan_check_read+0x11/0x20
[  738.601608]  ? do_raw_spin_unlock+0xa7/0x2f0
[  738.606079]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  738.610701]  ? pgd_free+0x380/0x380
[  738.614331]  ? __lock_acquire+0x7ec/0x4ec0
[  738.618634]  ? _raw_spin_unlock+0x2c/0x50
[  738.622785]  ? do_wp_page+0x77c/0x1690
[  738.626675]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  738.631372]  ? find_held_lock+0x36/0x1c0
[  738.635497]  ? lock_release+0x970/0x970
[  738.639480]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  738.645020]  ? kasan_check_write+0x14/0x20
[  738.649255]  ? do_raw_spin_lock+0xc1/0x200
[  738.653495]  ? __handle_mm_fault+0x9ab/0x53e0
[  738.658052]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  738.662897]  ? __sb_end_write+0xd9/0x110
[  738.666964]  ? graph_lock+0x170/0x170
[  738.670831]  ? print_usage_bug+0xc0/0xc0
[  738.674921]  ? atime_needs_update+0x710/0x710
[  738.679599]  ? graph_lock+0x170/0x170
[  738.683406]  ? graph_lock+0x170/0x170
[  738.687271]  ? find_held_lock+0x36/0x1c0
[  738.691341]  ? __do_page_fault+0x6b7/0xec0
[  738.695592]  _do_fork+0x1cb/0x11c0
[  738.699298]  ? fork_idle+0x1d0/0x1d0
[  738.703068]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  738.708727]  ? check_preemption_disabled+0x48/0x200
[  738.713968]  ? kasan_check_write+0x14/0x20
[  738.718205]  ? up_read+0x225/0x2c0
[  738.721751]  ? up_read_non_owner+0x100/0x100
[  738.726337]  ? find_vma+0x34/0x190
[  738.729972]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  738.735510]  ? __do_page_fault+0x49c/0xec0
[  738.739749]  ? do_syscall_64+0x9a/0x820
[  738.743727]  ? do_syscall_64+0x9a/0x820
[  738.747705]  ? lockdep_hardirqs_on+0x421/0x5c0
[  738.752294]  ? trace_hardirqs_on+0xbd/0x310
[  738.756621]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  738.761990]  ? trace_hardirqs_off_caller+0x300/0x300
[  738.767192]  __x64_sys_clone+0xbf/0x150
[  738.771355]  do_syscall_64+0x1b9/0x820
[  738.775513]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  738.780880]  ? syscall_return_slowpath+0x5e0/0x5e0
[  738.785810]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  738.790656]  ? trace_hardirqs_off+0x310/0x310
[  738.795176]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  738.800199]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  738.805738]  ? prepare_exit_to_usermode+0x291/0x3b0
[  738.810758]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  738.815608]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  738.820802] RIP: 0033:0x455c4a
[  738.824000] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  738.843032] RSP: 002b:00007ffdef61b280 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  738.850809] RAX: ffffffffffffffda RBX: 00007ffdef61b280 RCX: 0000000000455c4a
[  738.858080] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  738.865349] RBP: 00007ffdef61b2c0 R08: 0000000000000001 R09: 00000000021dc940
[  738.872619] R10: 00000000021dcc10 R11: 0000000000000246 R12: 0000000000000001
[  738.880043] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  738.888633] Memory limit reached of cgroup /syz1
[  738.893482] memory: usage 5424kB, limit 0kB, failcnt 255178
[  738.899282] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  738.906055] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  738.912269] Memory cgroup stats for /syz1: cache:112KB rss:0KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:44KB inactive_file:0KB active_file:0KB unevictable:0KB
[  738.934178] Out of memory and no killable processes...
[  738.941008] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  738.953956] syz-executor1 cpuset=syz1 mems_allowed=0
[  738.959225] CPU: 0 PID: 29135 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  738.967886] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  738.977395] Call Trace:
[  738.979994]  dump_stack+0x1d3/0x2c4
[  738.983636]  ? dump_stack_print_info.cold.2+0x52/0x52
[  738.988842]  dump_header+0x27b/0xf72
[  738.992562]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  738.997495]  ? kasan_check_read+0x11/0x20
[  739.001650]  ? pagefault_out_of_memory+0x197/0x197
[  739.006589]  ? rcu_read_unlock+0x33/0x60
[  739.010650]  ? mem_cgroup_iter+0x514/0x1160
[  739.015032]  ? find_held_lock+0x36/0x1c0
[  739.019102]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  739.023949]  ? mark_held_locks+0xc7/0x130
[  739.028277]  ? _raw_spin_unlock_irq+0x27/0x80
[  739.032895]  ? _raw_spin_unlock_irq+0x27/0x80
[  739.037502]  ? lockdep_hardirqs_on+0x421/0x5c0
[  739.042143]  ? trace_hardirqs_on+0xbd/0x310
[  739.046470]  ? kasan_check_read+0x11/0x20
[  739.050622]  ? css_task_iter_end+0x222/0x490
[  739.055036]  ? trace_hardirqs_off_caller+0x300/0x300
[  739.060167]  ? kasan_check_write+0x14/0x20
[  739.064402]  ? do_raw_spin_lock+0xc1/0x200
[  739.068752]  ? _raw_spin_unlock_irq+0x60/0x80
[  739.073251]  ? css_task_iter_end+0x2ce/0x490
[  739.077777]  ? cgroup_procs_next+0x70/0x70
[  739.082017]  ? _raw_spin_unlock_irq+0x60/0x80
[  739.086513]  ? oom_badness+0xaa0/0xaa0
[  739.090404]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  739.095277]  ? mem_cgroup_iter_break+0x30/0x30
[  739.099870]  ? mark_held_locks+0xc7/0x130
[  739.104021]  out_of_memory.cold.30+0xf/0x184
[  739.108568]  ? lockdep_hardirqs_on+0x421/0x5c0
[  739.113229]  ? kasan_check_read+0x11/0x20
[  739.117443]  ? oom_killer_disable+0x3a0/0x3a0
[  739.121943]  ? kasan_check_write+0x14/0x20
[  739.126181]  ? do_raw_spin_lock+0xc1/0x200
[  739.130429]  mem_cgroup_out_of_memory+0x15e/0x210
[  739.135277]  ? memcg_memory_event+0x40/0x40
[  739.139602]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  739.144496]  ? page_counter_try_charge+0x1c1/0x220
[  739.149574]  try_charge+0xb1a/0x1690
[  739.153291]  ? lock_downgrade+0x900/0x900
[  739.157582]  ? check_preemption_disabled+0x48/0x200
[  739.162671]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  739.168743]  ? find_held_lock+0x36/0x1c0
[  739.172817]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  739.177734]  ? lock_downgrade+0x900/0x900
[  739.181949]  ? check_preemption_disabled+0x48/0x200
[  739.186988]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  739.191927]  ? kasan_check_read+0x11/0x20
[  739.196083]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  739.201569]  ? rcu_softirq_qs+0x20/0x20
[  739.205559]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  739.210528]  memcg_kmem_charge_memcg+0x7c/0x120
[  739.215208]  ? memcg_kmem_put_cache+0xb0/0xb0
[  739.219704]  ? kmem_cache_alloc+0x12e/0x730
[  739.224029]  ? print_usage_bug+0xc0/0xc0
[  739.228097]  memcg_kmem_charge+0x135/0x300
[  739.232371]  __alloc_pages_nodemask+0x89c/0xdd0
[  739.237049]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  739.242204]  ? __lock_acquire+0x7ec/0x4ec0
[  739.246444]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  739.252173]  ? graph_lock+0x170/0x170
[  739.255976]  ? find_held_lock+0x36/0x1c0
[  739.260052]  ? __lock_is_held+0xb5/0x140
[  739.264146]  ? lock_downgrade+0x900/0x900
[  739.268308]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  739.273856]  alloc_pages_current+0x10c/0x210
[  739.278270]  pte_alloc_one+0x1b/0x1a0
[  739.282074]  __pte_alloc+0x2a/0x350
[  739.285707]  copy_page_range+0x18a2/0x26f0
[  739.290026]  ? pmd_alloc+0x180/0x180
[  739.293753]  ? save_stack+0xa9/0xd0
[  739.297386]  ? save_stack+0x43/0xd0
[  739.301018]  ? kasan_slab_alloc+0x12/0x20
[  739.305281]  ? kmem_cache_alloc+0x12e/0x730
[  739.309614]  ? vm_area_dup+0x7a/0x230
[  739.313418]  ? copy_process+0x429f/0x8780
[  739.317568]  ? _do_fork+0x1cb/0x11c0
[  739.321289]  ? __x64_sys_clone+0xbf/0x150
[  739.325578]  ? do_syscall_64+0x1b9/0x820
[  739.329650]  ? graph_lock+0x170/0x170
[  739.333510]  ? lock_downgrade+0x900/0x900
[  739.337662]  ? graph_lock+0x170/0x170
[  739.341467]  ? graph_lock+0x170/0x170
[  739.345272]  ? find_held_lock+0x36/0x1c0
[  739.349580]  ? copy_process+0x454a/0x8780
[  739.353734]  ? lock_downgrade+0x900/0x900
[  739.357890]  ? lock_release+0x970/0x970
[  739.361955]  ? ttwu_stat+0x5c0/0x5c0
[  739.365676]  ? dup_userfaultfd+0x6d8/0x890
[  739.369922]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  739.375030]  ? vma_compute_subtree_gap+0x160/0x240
[  739.379964]  ? validate_mm_rb+0xaa/0xc0
[  739.383944]  ? __vma_link_rb+0x26c/0x370
[  739.388016]  copy_process+0x4720/0x8780
[  739.392071]  ? __cleanup_sighand+0x70/0x70
[  739.396315]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  739.401994]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  739.407939]  ? page_swapcount+0x1d0/0x1d0
[  739.412150]  ? try_to_wake_up+0x10a/0x12f0
[  739.416575]  ? lock_downgrade+0x900/0x900
[  739.420728]  ? lock_downgrade+0x900/0x900
[  739.424893]  ? trace_hardirqs_off+0xb8/0x310
[  739.429306]  ? kasan_check_read+0x11/0x20
[  739.433539]  ? trace_hardirqs_on_caller+0x310/0x310
[  739.438632]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  739.443745]  ? try_to_wake_up+0x10a/0x12f0
[  739.447989]  ? print_usage_bug+0xc0/0xc0
[  739.452060]  ? migrate_swap_stop+0x930/0x930
[  739.456526]  ? __handle_mm_fault+0x9ab/0x53e0
[  739.461031]  ? graph_lock+0x170/0x170
[  739.464839]  ? print_usage_bug+0xc0/0xc0
[  739.468916]  ? __lock_acquire+0x7ec/0x4ec0
[  739.473176]  ? print_usage_bug+0xc0/0xc0
[  739.477305]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  739.482849]  ? reuse_swap_page+0x4bd/0x1520
[  739.487175]  ? swp_swapcount+0x530/0x530
[  739.491245]  ? __lock_acquire+0x7ec/0x4ec0
[  739.495480]  ? mark_held_locks+0x130/0x130
[  739.499771]  ? rcu_softirq_qs+0x20/0x20
[  739.503750]  ? __lock_acquire+0x7ec/0x4ec0
[  739.508051]  ? mark_held_locks+0x130/0x130
[  739.512291]  ? graph_lock+0x170/0x170
[  739.516093]  ? mark_held_locks+0x130/0x130
[  739.520362]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  739.525905]  ? check_preemption_disabled+0x48/0x200
[  739.530932]  ? find_held_lock+0x36/0x1c0
[  739.535149]  ? do_wp_page+0xa6f/0x1690
[  739.539053]  ? lock_downgrade+0x900/0x900
[  739.543289]  ? wake_up_page_bit+0x6f0/0x6f0
[  739.547626]  ? kasan_check_read+0x11/0x20
[  739.551858]  ? do_raw_spin_unlock+0xa7/0x2f0
[  739.556425]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  739.561094]  ? pgd_free+0x380/0x380
[  739.564879]  ? __lock_acquire+0x7ec/0x4ec0
[  739.569155]  ? _raw_spin_unlock+0x2c/0x50
[  739.573311]  ? do_wp_page+0x77c/0x1690
[  739.577315]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  739.581984]  ? find_held_lock+0x36/0x1c0
[  739.586048]  ? lock_release+0x970/0x970
[  739.590028]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  739.595571]  ? kasan_check_write+0x14/0x20
[  739.599808]  ? do_raw_spin_lock+0xc1/0x200
[  739.604049]  ? __handle_mm_fault+0x9ab/0x53e0
[  739.608643]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  739.613541]  ? __sb_end_write+0xd9/0x110
[  739.617608]  ? graph_lock+0x170/0x170
[  739.621567]  ? print_usage_bug+0xc0/0xc0
[  739.625633]  ? atime_needs_update+0x710/0x710
[  739.630159]  ? graph_lock+0x170/0x170
[  739.633961]  ? graph_lock+0x170/0x170
[  739.637770]  ? find_held_lock+0x36/0x1c0
[  739.641841]  ? __do_page_fault+0x6b7/0xec0
[  739.646081]  _do_fork+0x1cb/0x11c0
[  739.649654]  ? fork_idle+0x1d0/0x1d0
[  739.653376]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  739.658918]  ? check_preemption_disabled+0x48/0x200
[  739.663940]  ? kasan_check_write+0x14/0x20
[  739.668177]  ? up_read+0x225/0x2c0
[  739.671727]  ? up_read_non_owner+0x100/0x100
[  739.676163]  ? find_vma+0x34/0x190
[  739.679711]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  739.685254]  ? __do_page_fault+0x49c/0xec0
[  739.689494]  ? do_syscall_64+0x9a/0x820
[  739.693470]  ? do_syscall_64+0x9a/0x820
[  739.697448]  ? lockdep_hardirqs_on+0x421/0x5c0
[  739.702035]  ? trace_hardirqs_on+0xbd/0x310
[  739.706419]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  739.711787]  ? trace_hardirqs_off_caller+0x300/0x300
[  739.716896]  __x64_sys_clone+0xbf/0x150
[  739.720876]  do_syscall_64+0x1b9/0x820
[  739.724821]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  739.730190]  ? syscall_return_slowpath+0x5e0/0x5e0
[  739.735206]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  739.740051]  ? trace_hardirqs_off+0x310/0x310
[  739.744546]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  739.749568]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  739.755141]  ? prepare_exit_to_usermode+0x291/0x3b0
[  739.760288]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  739.765165]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  739.770368] RIP: 0033:0x455c4a
[  739.773561] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  739.792464] RSP: 002b:00007ffdef61b280 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  739.800175] RAX: ffffffffffffffda RBX: 00007ffdef61b280 RCX: 0000000000455c4a
[  739.807446] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  739.814713] RBP: 00007ffdef61b2c0 R08: 0000000000000001 R09: 00000000021dc940
[  739.822141] R10: 00000000021dcc10 R11: 0000000000000246 R12: 0000000000000001
[  739.829475] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  739.839686] Memory limit reached of cgroup /syz1
[  739.844503] memory: usage 5312kB, limit 0kB, failcnt 255186
[  739.850302] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  739.857249] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  739.863463] Memory cgroup stats for /syz1: cache:112KB rss:0KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:44KB inactive_file:0KB active_file:0KB unevictable:0KB
[  739.883589] Out of memory and no killable processes...
[  739.890435] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  739.903461] syz-executor1 cpuset=syz1 mems_allowed=0
[  739.908764] CPU: 0 PID: 29135 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  739.917320] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  739.926678] Call Trace:
[  739.929270]  dump_stack+0x1d3/0x2c4
[  739.932904]  ? dump_stack_print_info.cold.2+0x52/0x52
[  739.938103]  dump_header+0x27b/0xf72
[  739.941853]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  739.946786]  ? kasan_check_read+0x11/0x20
[  739.951001]  ? pagefault_out_of_memory+0x197/0x197
[  739.955938]  ? rcu_read_unlock+0x33/0x60
[  739.960002]  ? mem_cgroup_iter+0x514/0x1160
[  739.964382]  ? find_held_lock+0x36/0x1c0
[  739.968465]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  739.973226]  ? mark_held_locks+0xc7/0x130
[  739.977378]  ? _raw_spin_unlock_irq+0x27/0x80
[  739.981877]  ? _raw_spin_unlock_irq+0x27/0x80
[  739.986374]  ? lockdep_hardirqs_on+0x421/0x5c0
[  739.990965]  ? trace_hardirqs_on+0xbd/0x310
[  739.995570]  ? kasan_check_read+0x11/0x20
[  739.999720]  ? css_task_iter_end+0x222/0x490
[  740.004161]  ? trace_hardirqs_off_caller+0x300/0x300
[  740.009381]  ? kasan_check_write+0x14/0x20
[  740.013771]  ? do_raw_spin_lock+0xc1/0x200
[  740.018012]  ? _raw_spin_unlock_irq+0x60/0x80
[  740.022508]  ? css_task_iter_end+0x2ce/0x490
[  740.026974]  ? cgroup_procs_next+0x70/0x70
[  740.031217]  ? _raw_spin_unlock_irq+0x60/0x80
[  740.035720]  ? oom_badness+0xaa0/0xaa0
[  740.039613]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  740.044377]  ? mem_cgroup_iter_break+0x30/0x30
[  740.049026]  ? mark_held_locks+0xc7/0x130
[  740.053239]  out_of_memory.cold.30+0xf/0x184
[  740.057651]  ? lockdep_hardirqs_on+0x421/0x5c0
[  740.062294]  ? kasan_check_read+0x11/0x20
[  740.066450]  ? oom_killer_disable+0x3a0/0x3a0
[  740.070954]  ? kasan_check_write+0x14/0x20
[  740.075265]  ? do_raw_spin_lock+0xc1/0x200
[  740.079571]  mem_cgroup_out_of_memory+0x15e/0x210
[  740.084475]  ? memcg_memory_event+0x40/0x40
[  740.088799]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  740.093650]  ? page_counter_try_charge+0x1c1/0x220
[  740.098587]  try_charge+0xb1a/0x1690
[  740.102362]  ? lock_downgrade+0x900/0x900
[  740.106570]  ? check_preemption_disabled+0x48/0x200
[  740.111616]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  740.117738]  ? find_held_lock+0x36/0x1c0
[  740.121811]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  740.126659]  ? lock_downgrade+0x900/0x900
[  740.130813]  ? check_preemption_disabled+0x48/0x200
[  740.135832]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  740.140761]  ? kasan_check_read+0x11/0x20
[  740.144911]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  740.150197]  ? rcu_softirq_qs+0x20/0x20
[  740.154295]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  740.159170]  memcg_kmem_charge_memcg+0x7c/0x120
[  740.163844]  ? memcg_kmem_put_cache+0xb0/0xb0
[  740.168341]  ? kmem_cache_alloc+0x12e/0x730
[  740.172666]  ? print_usage_bug+0xc0/0xc0
[  740.176752]  memcg_kmem_charge+0x135/0x300
[  740.181053]  __alloc_pages_nodemask+0x89c/0xdd0
[  740.185733]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  740.190755]  ? __lock_acquire+0x7ec/0x4ec0
[  740.195000]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  740.200542]  ? graph_lock+0x170/0x170
[  740.204354]  ? find_held_lock+0x36/0x1c0
[  740.208565]  ? __lock_is_held+0xb5/0x140
[  740.212628]  ? lock_downgrade+0x900/0x900
[  740.216781]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  740.222484]  alloc_pages_current+0x10c/0x210
[  740.226954]  pte_alloc_one+0x1b/0x1a0
[  740.230759]  __pte_alloc+0x2a/0x350
[  740.234393]  copy_page_range+0x18a2/0x26f0
[  740.238649]  ? pmd_alloc+0x180/0x180
[  740.242372]  ? save_stack+0xa9/0xd0
[  740.246001]  ? save_stack+0x43/0xd0
[  740.249893]  ? kasan_slab_alloc+0x12/0x20
[  740.254045]  ? kmem_cache_alloc+0x12e/0x730
[  740.258379]  ? vm_area_dup+0x7a/0x230
[  740.262187]  ? copy_process+0x429f/0x8780
[  740.266333]  ? _do_fork+0x1cb/0x11c0
[  740.270045]  ? __x64_sys_clone+0xbf/0x150
[  740.274270]  ? do_syscall_64+0x1b9/0x820
[  740.278344]  ? graph_lock+0x170/0x170
[  740.282169]  ? lock_downgrade+0x900/0x900
[  740.286330]  ? graph_lock+0x170/0x170
[  740.290165]  ? graph_lock+0x170/0x170
[  740.293972]  ? find_held_lock+0x36/0x1c0
[  740.298308]  ? copy_process+0x454a/0x8780
[  740.302636]  ? lock_downgrade+0x900/0x900
[  740.306790]  ? lock_release+0x970/0x970
[  740.310772]  ? ttwu_stat+0x5c0/0x5c0
[  740.314494]  ? dup_userfaultfd+0x6d8/0x890
[  740.318737]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  740.323815]  ? vma_compute_subtree_gap+0x160/0x240
[  740.328752]  ? validate_mm_rb+0xaa/0xc0
[  740.332734]  ? __vma_link_rb+0x26c/0x370
[  740.336806]  copy_process+0x4720/0x8780
[  740.340861]  ? __cleanup_sighand+0x70/0x70
[  740.345102]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  740.350806]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  740.356473]  ? page_swapcount+0x1d0/0x1d0
[  740.360627]  ? try_to_wake_up+0x10a/0x12f0
[  740.364872]  ? lock_downgrade+0x900/0x900
[  740.369022]  ? lock_downgrade+0x900/0x900
[  740.373234]  ? trace_hardirqs_off+0xb8/0x310
[  740.377648]  ? kasan_check_read+0x11/0x20
[  740.381862]  ? trace_hardirqs_on_caller+0x310/0x310
[  740.386949]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  740.392057]  ? try_to_wake_up+0x10a/0x12f0
[  740.396363]  ? print_usage_bug+0xc0/0xc0
[  740.400430]  ? migrate_swap_stop+0x930/0x930
[  740.404848]  ? __handle_mm_fault+0x9ab/0x53e0
[  740.409346]  ? graph_lock+0x170/0x170
[  740.413175]  ? print_usage_bug+0xc0/0xc0
[  740.417246]  ? __lock_acquire+0x7ec/0x4ec0
[  740.421488]  ? print_usage_bug+0xc0/0xc0
[  740.425558]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  740.431100]  ? reuse_swap_page+0x4bd/0x1520
[  740.435463]  ? swp_swapcount+0x530/0x530
[  740.439545]  ? __lock_acquire+0x7ec/0x4ec0
[  740.443789]  ? mark_held_locks+0x130/0x130
[  740.448022]  ? rcu_softirq_qs+0x20/0x20
[  740.452003]  ? __lock_acquire+0x7ec/0x4ec0
[  740.456248]  ? mark_held_locks+0x130/0x130
[  740.460486]  ? graph_lock+0x170/0x170
[  740.464291]  ? mark_held_locks+0x130/0x130
[  740.468548]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  740.474237]  ? check_preemption_disabled+0x48/0x200
[  740.479332]  ? find_held_lock+0x36/0x1c0
[  740.483409]  ? do_wp_page+0xa6f/0x1690
[  740.487315]  ? lock_downgrade+0x900/0x900
[  740.491466]  ? wake_up_page_bit+0x6f0/0x6f0
[  740.495795]  ? kasan_check_read+0x11/0x20
[  740.499949]  ? do_raw_spin_unlock+0xa7/0x2f0
[  740.504419]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  740.509017]  ? pgd_free+0x380/0x380
[  740.512661]  ? __lock_acquire+0x7ec/0x4ec0
[  740.516903]  ? _raw_spin_unlock+0x2c/0x50
[  740.521056]  ? do_wp_page+0x77c/0x1690
[  740.524951]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  740.529628]  ? find_held_lock+0x36/0x1c0
[  740.533697]  ? lock_release+0x970/0x970
[  740.537680]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  740.543229]  ? kasan_check_write+0x14/0x20
[  740.547477]  ? do_raw_spin_lock+0xc1/0x200
[  740.551800]  ? __handle_mm_fault+0x9ab/0x53e0
[  740.556308]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  740.561245]  ? __sb_end_write+0xd9/0x110
[  740.565315]  ? graph_lock+0x170/0x170
[  740.569205]  ? print_usage_bug+0xc0/0xc0
[  740.573274]  ? atime_needs_update+0x710/0x710
[  740.577775]  ? graph_lock+0x170/0x170
[  740.581586]  ? graph_lock+0x170/0x170
[  740.585399]  ? find_held_lock+0x36/0x1c0
[  740.589473]  ? __do_page_fault+0x6b7/0xec0
[  740.593715]  _do_fork+0x1cb/0x11c0
[  740.597274]  ? fork_idle+0x1d0/0x1d0
[  740.601002]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  740.606546]  ? check_preemption_disabled+0x48/0x200
[  740.611580]  ? kasan_check_write+0x14/0x20
[  740.615944]  ? up_read+0x225/0x2c0
[  740.619492]  ? up_read_non_owner+0x100/0x100
[  740.623905]  ? find_vma+0x34/0x190
[  740.627459]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  740.633003]  ? __do_page_fault+0x49c/0xec0
[  740.637244]  ? do_syscall_64+0x9a/0x820
[  740.641233]  ? do_syscall_64+0x9a/0x820
[  740.645224]  ? lockdep_hardirqs_on+0x421/0x5c0
[  740.649809]  ? trace_hardirqs_on+0xbd/0x310
[  740.654182]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  740.659557]  ? trace_hardirqs_off_caller+0x300/0x300
[  740.664668]  __x64_sys_clone+0xbf/0x150
[  740.668658]  do_syscall_64+0x1b9/0x820
[  740.672554]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  740.678074]  ? syscall_return_slowpath+0x5e0/0x5e0
[  740.683012]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  740.687927]  ? trace_hardirqs_off+0x310/0x310
[  740.692431]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  740.697454]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  740.702997]  ? prepare_exit_to_usermode+0x291/0x3b0
[  740.708020]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  740.712874]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  740.718067] RIP: 0033:0x455c4a
[  740.721341] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  740.740307] RSP: 002b:00007ffdef61b280 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  740.748028] RAX: ffffffffffffffda RBX: 00007ffdef61b280 RCX: 0000000000455c4a
[  740.755372] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  740.762645] RBP: 00007ffdef61b2c0 R08: 0000000000000001 R09: 00000000021dc940
[  740.769917] R10: 00000000021dcc10 R11: 0000000000000246 R12: 0000000000000001
[  740.777201] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  740.786206] Memory limit reached of cgroup /syz1
[  740.794565] memory: usage 5316kB, limit 0kB, failcnt 255194
[  740.800481] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  740.807534] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  740.813696] Memory cgroup stats for /syz1: cache:112KB rss:0KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:44KB inactive_file:0KB active_file:0KB unevictable:0KB
[  740.833773] Out of memory and no killable processes...
[  740.840628] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  740.853770] syz-executor1 cpuset=syz1 mems_allowed=0
[  740.859008] CPU: 0 PID: 29135 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  740.867652] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  740.877067] Call Trace:
[  740.879720]  dump_stack+0x1d3/0x2c4
[  740.883352]  ? dump_stack_print_info.cold.2+0x52/0x52
[  740.888595]  dump_header+0x27b/0xf72
[  740.892320]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  740.897293]  ? kasan_check_read+0x11/0x20
[  740.901444]  ? pagefault_out_of_memory+0x197/0x197
[  740.906415]  ? rcu_read_unlock+0x33/0x60
[  740.910482]  ? mem_cgroup_iter+0x514/0x1160
[  740.914805]  ? find_held_lock+0x36/0x1c0
[  740.918867]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  740.923648]  ? mark_held_locks+0xc7/0x130
[  740.927795]  ? _raw_spin_unlock_irq+0x27/0x80
[  740.932277]  ? _raw_spin_unlock_irq+0x27/0x80
[  740.936760]  ? lockdep_hardirqs_on+0x421/0x5c0
[  740.941333]  ? trace_hardirqs_on+0xbd/0x310
[  740.945642]  ? kasan_check_read+0x11/0x20
[  740.949778]  ? css_task_iter_end+0x222/0x490
[  740.954268]  ? trace_hardirqs_off_caller+0x300/0x300
[  740.959361]  ? kasan_check_write+0x14/0x20
[  740.963586]  ? do_raw_spin_lock+0xc1/0x200
[  740.967812]  ? _raw_spin_unlock_irq+0x60/0x80
[  740.972317]  ? css_task_iter_end+0x2ce/0x490
[  740.976713]  ? cgroup_procs_next+0x70/0x70
[  740.980938]  ? _raw_spin_unlock_irq+0x60/0x80
[  740.985420]  ? oom_badness+0xaa0/0xaa0
[  740.989313]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  740.994075]  ? mem_cgroup_iter_break+0x30/0x30
[  740.998658]  ? mark_held_locks+0xc7/0x130
[  741.002794]  out_of_memory.cold.30+0xf/0x184
[  741.007190]  ? lockdep_hardirqs_on+0x421/0x5c0
[  741.011757]  ? kasan_check_read+0x11/0x20
[  741.015894]  ? oom_killer_disable+0x3a0/0x3a0
[  741.020381]  ? kasan_check_write+0x14/0x20
[  741.024607]  ? do_raw_spin_lock+0xc1/0x200
[  741.028851]  mem_cgroup_out_of_memory+0x15e/0x210
[  741.033686]  ? memcg_memory_event+0x40/0x40
[  741.037998]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  741.042833]  ? page_counter_try_charge+0x1c1/0x220
[  741.047753]  try_charge+0xb1a/0x1690
[  741.051476]  ? lock_downgrade+0x900/0x900
[  741.055698]  ? check_preemption_disabled+0x48/0x200
[  741.060706]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  741.066767]  ? find_held_lock+0x36/0x1c0
[  741.070826]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  741.075677]  ? lock_downgrade+0x900/0x900
[  741.079855]  ? check_preemption_disabled+0x48/0x200
[  741.085224]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  741.090144]  ? kasan_check_read+0x11/0x20
[  741.094276]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  741.099538]  ? rcu_softirq_qs+0x20/0x20
[  741.103523]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  741.108357]  memcg_kmem_charge_memcg+0x7c/0x120
[  741.113015]  ? memcg_kmem_put_cache+0xb0/0xb0
[  741.117495]  ? kmem_cache_alloc+0x12e/0x730
[  741.121803]  ? print_usage_bug+0xc0/0xc0
[  741.125857]  memcg_kmem_charge+0x135/0x300
[  741.130081]  __alloc_pages_nodemask+0x89c/0xdd0
[  741.134747]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  741.139770]  ? __lock_acquire+0x7ec/0x4ec0
[  741.144004]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  741.149536]  ? graph_lock+0x170/0x170
[  741.153321]  ? find_held_lock+0x36/0x1c0
[  741.157403]  ? __lock_is_held+0xb5/0x140
[  741.161469]  ? lock_downgrade+0x900/0x900
[  741.165610]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  741.171148]  alloc_pages_current+0x10c/0x210
[  741.175547]  pte_alloc_one+0x1b/0x1a0
[  741.179340]  __pte_alloc+0x2a/0x350
[  741.182955]  copy_page_range+0x18a2/0x26f0
[  741.187211]  ? pmd_alloc+0x180/0x180
[  741.190920]  ? save_stack+0xa9/0xd0
[  741.194536]  ? save_stack+0x43/0xd0
[  741.198155]  ? kasan_slab_alloc+0x12/0x20
[  741.202292]  ? kmem_cache_alloc+0x12e/0x730
[  741.206597]  ? vm_area_dup+0x7a/0x230
[  741.210385]  ? copy_process+0x429f/0x8780
[  741.214519]  ? _do_fork+0x1cb/0x11c0
[  741.218219]  ? __x64_sys_clone+0xbf/0x150
[  741.222378]  ? do_syscall_64+0x1b9/0x820
[  741.226444]  ? graph_lock+0x170/0x170
[  741.230234]  ? lock_downgrade+0x900/0x900
[  741.234372]  ? graph_lock+0x170/0x170
[  741.238253]  ? graph_lock+0x170/0x170
[  741.242044]  ? find_held_lock+0x36/0x1c0
[  741.246099]  ? copy_process+0x454a/0x8780
[  741.250250]  ? lock_downgrade+0x900/0x900
[  741.254388]  ? lock_release+0x970/0x970
[  741.258351]  ? ttwu_stat+0x5c0/0x5c0
[  741.262053]  ? dup_userfaultfd+0x6d8/0x890
[  741.266287]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  741.271293]  ? vma_compute_subtree_gap+0x160/0x240
[  741.276213]  ? validate_mm_rb+0xaa/0xc0
[  741.280193]  ? __vma_link_rb+0x26c/0x370
[  741.284268]  copy_process+0x4720/0x8780
[  741.288251]  ? __cleanup_sighand+0x70/0x70
[  741.292480]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  741.298008]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  741.303537]  ? page_swapcount+0x1d0/0x1d0
[  741.307673]  ? try_to_wake_up+0x10a/0x12f0
[  741.311898]  ? lock_downgrade+0x900/0x900
[  741.316029]  ? lock_downgrade+0x900/0x900
[  741.320172]  ? trace_hardirqs_off+0xb8/0x310
[  741.324568]  ? kasan_check_read+0x11/0x20
[  741.328707]  ? trace_hardirqs_on_caller+0x310/0x310
[  741.333718]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  741.338812]  ? try_to_wake_up+0x10a/0x12f0
[  741.343049]  ? print_usage_bug+0xc0/0xc0
[  741.347101]  ? migrate_swap_stop+0x930/0x930
[  741.351508]  ? __handle_mm_fault+0x9ab/0x53e0
[  741.355996]  ? graph_lock+0x170/0x170
[  741.359794]  ? print_usage_bug+0xc0/0xc0
[  741.363859]  ? __lock_acquire+0x7ec/0x4ec0
[  741.368179]  ? print_usage_bug+0xc0/0xc0
[  741.372236]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  741.377762]  ? reuse_swap_page+0x4bd/0x1520
[  741.382074]  ? swp_swapcount+0x530/0x530
[  741.386194]  ? __lock_acquire+0x7ec/0x4ec0
[  741.390428]  ? mark_held_locks+0x130/0x130
[  741.394652]  ? rcu_softirq_qs+0x20/0x20
[  741.398616]  ? __lock_acquire+0x7ec/0x4ec0
[  741.402853]  ? mark_held_locks+0x130/0x130
[  741.407081]  ? graph_lock+0x170/0x170
[  741.410876]  ? mark_held_locks+0x130/0x130
[  741.415102]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  741.420643]  ? check_preemption_disabled+0x48/0x200
[  741.425653]  ? find_held_lock+0x36/0x1c0
[  741.429708]  ? do_wp_page+0xa6f/0x1690
[  741.433597]  ? lock_downgrade+0x900/0x900
[  741.437787]  ? wake_up_page_bit+0x6f0/0x6f0
[  741.442118]  ? kasan_check_read+0x11/0x20
[  741.446302]  ? do_raw_spin_unlock+0xa7/0x2f0
[  741.450714]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  741.455289]  ? pgd_free+0x380/0x380
[  741.458905]  ? __lock_acquire+0x7ec/0x4ec0
[  741.463137]  ? _raw_spin_unlock+0x2c/0x50
[  741.467279]  ? do_wp_page+0x77c/0x1690
[  741.471167]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  741.475830]  ? find_held_lock+0x36/0x1c0
[  741.479890]  ? lock_release+0x970/0x970
[  741.483859]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  741.489388]  ? kasan_check_write+0x14/0x20
[  741.493613]  ? do_raw_spin_lock+0xc1/0x200
[  741.497844]  ? __handle_mm_fault+0x9ab/0x53e0
[  741.502330]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  741.507160]  ? __sb_end_write+0xd9/0x110
[  741.511217]  ? graph_lock+0x170/0x170
[  741.515066]  ? print_usage_bug+0xc0/0xc0
[  741.519133]  ? atime_needs_update+0x710/0x710
[  741.523633]  ? graph_lock+0x170/0x170
[  741.527437]  ? graph_lock+0x170/0x170
[  741.531236]  ? find_held_lock+0x36/0x1c0
[  741.535297]  ? __do_page_fault+0x6b7/0xec0
[  741.539534]  _do_fork+0x1cb/0x11c0
[  741.543066]  ? fork_idle+0x1d0/0x1d0
[  741.546767]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  741.552467]  ? check_preemption_disabled+0x48/0x200
[  741.557484]  ? kasan_check_write+0x14/0x20
[  741.561709]  ? up_read+0x225/0x2c0
[  741.565240]  ? up_read_non_owner+0x100/0x100
[  741.569641]  ? find_vma+0x34/0x190
[  741.573175]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  741.578709]  ? __do_page_fault+0x49c/0xec0
[  741.582939]  ? do_syscall_64+0x9a/0x820
[  741.586901]  ? do_syscall_64+0x9a/0x820
[  741.590867]  ? lockdep_hardirqs_on+0x421/0x5c0
[  741.595443]  ? trace_hardirqs_on+0xbd/0x310
[  741.599755]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  741.605116]  ? trace_hardirqs_off_caller+0x300/0x300
[  741.610217]  __x64_sys_clone+0xbf/0x150
[  741.614193]  do_syscall_64+0x1b9/0x820
[  741.618077]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  741.623430]  ? syscall_return_slowpath+0x5e0/0x5e0
[  741.628445]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  741.633287]  ? trace_hardirqs_off+0x310/0x310
[  741.637779]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  741.642791]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  741.648324]  ? prepare_exit_to_usermode+0x291/0x3b0
[  741.653342]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  741.658230]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  741.663412] RIP: 0033:0x455c4a
[  741.666593] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  741.685487] RSP: 002b:00007ffdef61b280 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  741.693189] RAX: ffffffffffffffda RBX: 00007ffdef61b280 RCX: 0000000000455c4a
[  741.700554] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  741.707821] RBP: 00007ffdef61b2c0 R08: 0000000000000001 R09: 00000000021dc940
[  741.715082] R10: 00000000021dcc10 R11: 0000000000000246 R12: 0000000000000001
[  741.722347] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  741.731070] Memory limit reached of cgroup /syz1
[  741.735928] memory: usage 5320kB, limit 0kB, failcnt 255202
[  741.741763] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  741.748590] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  741.754731] Memory cgroup stats for /syz1: cache:112KB rss:0KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:44KB inactive_file:0KB active_file:0KB unevictable:0KB
[  741.774779] Out of memory and no killable processes...
[  741.781583] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  741.794989] syz-executor1 cpuset=syz1 mems_allowed=0
[  741.800541] CPU: 0 PID: 29135 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  741.809044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  741.818391] Call Trace:
[  741.820983]  dump_stack+0x1d3/0x2c4
[  741.824606]  ? dump_stack_print_info.cold.2+0x52/0x52
[  741.829800]  dump_header+0x27b/0xf72
[  741.833511]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  741.838437]  ? kasan_check_read+0x11/0x20
[  741.842584]  ? pagefault_out_of_memory+0x197/0x197
[  741.847513]  ? rcu_read_unlock+0x33/0x60
[  741.851570]  ? mem_cgroup_iter+0x514/0x1160
[  741.855893]  ? find_held_lock+0x36/0x1c0
[  741.860010]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  741.864828]  ? mark_held_locks+0xc7/0x130
[  741.868981]  ? _raw_spin_unlock_irq+0x27/0x80
[  741.873474]  ? _raw_spin_unlock_irq+0x27/0x80
[  741.877965]  ? lockdep_hardirqs_on+0x421/0x5c0
[  741.882537]  ? trace_hardirqs_on+0xbd/0x310
[  741.886897]  ? kasan_check_read+0x11/0x20
[  741.891044]  ? css_task_iter_end+0x222/0x490
[  741.895443]  ? trace_hardirqs_off_caller+0x300/0x300
[  741.900535]  ? kasan_check_write+0x14/0x20
[  741.904759]  ? do_raw_spin_lock+0xc1/0x200
[  741.908994]  ? _raw_spin_unlock_irq+0x60/0x80
[  741.913606]  ? css_task_iter_end+0x2ce/0x490
[  741.918057]  ? cgroup_procs_next+0x70/0x70
[  741.922296]  ? _raw_spin_unlock_irq+0x60/0x80
[  741.926783]  ? oom_badness+0xaa0/0xaa0
[  741.930735]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  741.935487]  ? mem_cgroup_iter_break+0x30/0x30
[  741.940137]  ? mark_held_locks+0xc7/0x130
[  741.944287]  out_of_memory.cold.30+0xf/0x184
[  741.948686]  ? lockdep_hardirqs_on+0x421/0x5c0
[  741.953258]  ? kasan_check_read+0x11/0x20
[  741.957411]  ? oom_killer_disable+0x3a0/0x3a0
[  741.961922]  ? kasan_check_write+0x14/0x20
[  741.966158]  ? do_raw_spin_lock+0xc1/0x200
[  741.970490]  mem_cgroup_out_of_memory+0x15e/0x210
[  741.975326]  ? memcg_memory_event+0x40/0x40
[  741.979642]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  741.984480]  ? page_counter_try_charge+0x1c1/0x220
[  741.989401]  try_charge+0xb1a/0x1690
[  741.993104]  ? lock_downgrade+0x900/0x900
[  741.997244]  ? check_preemption_disabled+0x48/0x200
[  742.002260]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  742.008309]  ? find_held_lock+0x36/0x1c0
[  742.012362]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  742.017194]  ? lock_downgrade+0x900/0x900
[  742.021329]  ? check_preemption_disabled+0x48/0x200
[  742.026331]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  742.031252]  ? kasan_check_read+0x11/0x20
[  742.035384]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  742.040657]  ? rcu_softirq_qs+0x20/0x20
[  742.044630]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  742.049467]  memcg_kmem_charge_memcg+0x7c/0x120
[  742.054125]  ? memcg_kmem_put_cache+0xb0/0xb0
[  742.058607]  ? kmem_cache_alloc+0x12e/0x730
[  742.062916]  ? print_usage_bug+0xc0/0xc0
[  742.066970]  memcg_kmem_charge+0x135/0x300
[  742.071202]  __alloc_pages_nodemask+0x89c/0xdd0
[  742.075868]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  742.080872]  ? __lock_acquire+0x7ec/0x4ec0
[  742.085096]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  742.090623]  ? graph_lock+0x170/0x170
[  742.094416]  ? find_held_lock+0x36/0x1c0
[  742.098484]  ? __lock_is_held+0xb5/0x140
[  742.102637]  ? lock_downgrade+0x900/0x900
[  742.106783]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  742.112318]  alloc_pages_current+0x10c/0x210
[  742.116726]  pte_alloc_one+0x1b/0x1a0
[  742.120516]  __pte_alloc+0x2a/0x350
[  742.124134]  copy_page_range+0x18a2/0x26f0
[  742.128376]  ? pmd_alloc+0x180/0x180
[  742.132090]  ? save_stack+0xa9/0xd0
[  742.135712]  ? save_stack+0x43/0xd0
[  742.139331]  ? kasan_slab_alloc+0x12/0x20
[  742.143464]  ? kmem_cache_alloc+0x12e/0x730
[  742.147780]  ? vm_area_dup+0x7a/0x230
[  742.151570]  ? copy_process+0x429f/0x8780
[  742.155706]  ? _do_fork+0x1cb/0x11c0
[  742.159411]  ? __x64_sys_clone+0xbf/0x150
[  742.163599]  ? do_syscall_64+0x1b9/0x820
[  742.167665]  ? graph_lock+0x170/0x170
[  742.171563]  ? lock_downgrade+0x900/0x900
[  742.175702]  ? graph_lock+0x170/0x170
[  742.179496]  ? kasan_check_read+0x11/0x20
[  742.183739]  ? graph_lock+0x170/0x170
[  742.187539]  ? find_held_lock+0x36/0x1c0
[  742.191594]  ? copy_process+0x454a/0x8780
[  742.195730]  ? lock_downgrade+0x900/0x900
[  742.199868]  ? lock_release+0x970/0x970
[  742.203833]  ? ttwu_stat+0x5c0/0x5c0
[  742.207539]  ? dup_userfaultfd+0x6d8/0x890
[  742.211769]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  742.216770]  ? vma_compute_subtree_gap+0x160/0x240
[  742.221692]  ? validate_mm_rb+0xaa/0xc0
[  742.225656]  ? __vma_link_rb+0x26c/0x370
[  742.229711]  copy_process+0x4720/0x8780
[  742.233700]  ? __cleanup_sighand+0x70/0x70
[  742.237926]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  742.243458]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  742.249206]  ? page_swapcount+0x1d0/0x1d0
[  742.253348]  ? try_to_wake_up+0x10a/0x12f0
[  742.257578]  ? lock_downgrade+0x900/0x900
[  742.261721]  ? lock_downgrade+0x900/0x900
[  742.265969]  ? trace_hardirqs_off+0xb8/0x310
[  742.270373]  ? kasan_check_read+0x11/0x20
[  742.274520]  ? trace_hardirqs_on_caller+0x310/0x310
[  742.279535]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  742.284631]  ? try_to_wake_up+0x10a/0x12f0
[  742.288859]  ? print_usage_bug+0xc0/0xc0
[  742.293174]  ? migrate_swap_stop+0x930/0x930
[  742.297578]  ? __handle_mm_fault+0x9ab/0x53e0
[  742.302063]  ? graph_lock+0x170/0x170
[  742.305850]  ? print_usage_bug+0xc0/0xc0
[  742.309907]  ? __lock_acquire+0x7ec/0x4ec0
[  742.314134]  ? print_usage_bug+0xc0/0xc0
[  742.318189]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  742.323715]  ? reuse_swap_page+0x4bd/0x1520
[  742.328028]  ? swp_swapcount+0x530/0x530
[  742.332081]  ? __lock_acquire+0x7ec/0x4ec0
[  742.336305]  ? mark_held_locks+0x130/0x130
[  742.340530]  ? rcu_softirq_qs+0x20/0x20
[  742.344493]  ? __lock_acquire+0x7ec/0x4ec0
[  742.348722]  ? mark_held_locks+0x130/0x130
[  742.352948]  ? graph_lock+0x170/0x170
[  742.356742]  ? mark_held_locks+0x130/0x130
[  742.360976]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  742.366504]  ? check_preemption_disabled+0x48/0x200
[  742.371621]  ? find_held_lock+0x36/0x1c0
[  742.375679]  ? do_wp_page+0xa6f/0x1690
[  742.379563]  ? lock_downgrade+0x900/0x900
[  742.383700]  ? wake_up_page_bit+0x6f0/0x6f0
[  742.388015]  ? kasan_check_read+0x11/0x20
[  742.392151]  ? do_raw_spin_unlock+0xa7/0x2f0
[  742.396546]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  742.401118]  ? pgd_free+0x380/0x380
[  742.404730]  ? __lock_acquire+0x7ec/0x4ec0
[  742.409031]  ? _raw_spin_unlock+0x2c/0x50
[  742.413227]  ? do_wp_page+0x77c/0x1690
[  742.417115]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  742.421784]  ? find_held_lock+0x36/0x1c0
[  742.425853]  ? lock_release+0x970/0x970
[  742.429826]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  742.435385]  ? kasan_check_write+0x14/0x20
[  742.439609]  ? do_raw_spin_lock+0xc1/0x200
[  742.443842]  ? __handle_mm_fault+0x9ab/0x53e0
[  742.448331]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  742.453164]  ? __sb_end_write+0xd9/0x110
[  742.457227]  ? graph_lock+0x170/0x170
[  742.461022]  ? print_usage_bug+0xc0/0xc0
[  742.465074]  ? atime_needs_update+0x710/0x710
[  742.469670]  ? graph_lock+0x170/0x170
[  742.473470]  ? graph_lock+0x170/0x170
[  742.477271]  ? find_held_lock+0x36/0x1c0
[  742.481328]  ? __do_page_fault+0x6b7/0xec0
[  742.485562]  _do_fork+0x1cb/0x11c0
[  742.489099]  ? fork_idle+0x1d0/0x1d0
[  742.492865]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  742.498402]  ? check_preemption_disabled+0x48/0x200
[  742.503531]  ? kasan_check_write+0x14/0x20
[  742.507760]  ? up_read+0x225/0x2c0
[  742.511296]  ? up_read_non_owner+0x100/0x100
[  742.515800]  ? find_vma+0x34/0x190
[  742.519337]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  742.524860]  ? __do_page_fault+0x49c/0xec0
[  742.529085]  ? do_syscall_64+0x9a/0x820
[  742.533048]  ? do_syscall_64+0x9a/0x820
[  742.537017]  ? lockdep_hardirqs_on+0x421/0x5c0
[  742.541600]  ? trace_hardirqs_on+0xbd/0x310
[  742.545922]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  742.551282]  ? trace_hardirqs_off_caller+0x300/0x300
[  742.556426]  __x64_sys_clone+0xbf/0x150
[  742.560400]  do_syscall_64+0x1b9/0x820
[  742.564285]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  742.569643]  ? syscall_return_slowpath+0x5e0/0x5e0
[  742.574559]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  742.579394]  ? trace_hardirqs_off+0x310/0x310
[  742.583891]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  742.588904]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  742.594434]  ? prepare_exit_to_usermode+0x291/0x3b0
[  742.599493]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  742.604341]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  742.609581] RIP: 0033:0x455c4a
[  742.612767] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  742.631668] RSP: 002b:00007ffdef61b280 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  742.639374] RAX: ffffffffffffffda RBX: 00007ffdef61b280 RCX: 0000000000455c4a
[  742.646636] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  742.653898] RBP: 00007ffdef61b2c0 R08: 0000000000000001 R09: 00000000021dc940
[  742.661155] R10: 00000000021dcc10 R11: 0000000000000246 R12: 0000000000000001
[  742.668414] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  742.678939] Memory limit reached of cgroup /syz1
[  742.683740] memory: usage 5324kB, limit 0kB, failcnt 255210
[  742.689511] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  742.696281] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  742.702485] Memory cgroup stats for /syz1: cache:112KB rss:0KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:44KB inactive_file:0KB active_file:0KB unevictable:0KB
[  742.722572] Out of memory and no killable processes...
[  742.729377] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  742.742301] syz-executor1 cpuset=syz1 mems_allowed=0
[  742.747630] CPU: 1 PID: 29135 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  742.756108] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  742.765449] Call Trace:
[  742.768029]  dump_stack+0x1d3/0x2c4
[  742.771646]  ? dump_stack_print_info.cold.2+0x52/0x52
[  742.776829]  dump_header+0x27b/0xf72
[  742.780535]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  742.785455]  ? kasan_check_read+0x11/0x20
[  742.789593]  ? pagefault_out_of_memory+0x197/0x197
[  742.794544]  ? rcu_read_unlock+0x33/0x60
[  742.798805]  ? mem_cgroup_iter+0x514/0x1160
[  742.803118]  ? find_held_lock+0x36/0x1c0
[  742.807228]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  742.811987]  ? mark_held_locks+0xc7/0x130
[  742.816133]  ? _raw_spin_unlock_irq+0x27/0x80
[  742.820620]  ? _raw_spin_unlock_irq+0x27/0x80
[  742.825117]  ? lockdep_hardirqs_on+0x421/0x5c0
[  742.829698]  ? trace_hardirqs_on+0xbd/0x310
[  742.834007]  ? kasan_check_read+0x11/0x20
[  742.838215]  ? css_task_iter_end+0x222/0x490
[  742.842625]  ? trace_hardirqs_off_caller+0x300/0x300
[  742.847725]  ? kasan_check_write+0x14/0x20
[  742.851952]  ? do_raw_spin_lock+0xc1/0x200
[  742.856179]  ? _raw_spin_unlock_irq+0x60/0x80
[  742.860668]  ? css_task_iter_end+0x2ce/0x490
[  742.865066]  ? cgroup_procs_next+0x70/0x70
[  742.869293]  ? _raw_spin_unlock_irq+0x60/0x80
[  742.873841]  ? oom_badness+0xaa0/0xaa0
[  742.877729]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  742.882474]  ? mem_cgroup_iter_break+0x30/0x30
[  742.887055]  ? mark_held_locks+0xc7/0x130
[  742.891194]  out_of_memory.cold.30+0xf/0x184
[  742.895590]  ? lockdep_hardirqs_on+0x421/0x5c0
[  742.900166]  ? kasan_check_read+0x11/0x20
[  742.904307]  ? oom_killer_disable+0x3a0/0x3a0
[  742.908797]  ? kasan_check_write+0x14/0x20
[  742.913023]  ? do_raw_spin_lock+0xc1/0x200
[  742.917254]  mem_cgroup_out_of_memory+0x15e/0x210
[  742.922091]  ? memcg_memory_event+0x40/0x40
[  742.926452]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  742.931317]  ? page_counter_try_charge+0x1c1/0x220
[  742.936241]  try_charge+0xb1a/0x1690
[  742.939949]  ? lock_downgrade+0x900/0x900
[  742.944085]  ? check_preemption_disabled+0x48/0x200
[  742.949093]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  742.955140]  ? find_held_lock+0x36/0x1c0
[  742.959200]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  742.964035]  ? lock_downgrade+0x900/0x900
[  742.968171]  ? check_preemption_disabled+0x48/0x200
[  742.973178]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  742.978102]  ? kasan_check_read+0x11/0x20
[  742.982307]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  742.987592]  ? rcu_softirq_qs+0x20/0x20
[  742.991574]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  742.996429]  memcg_kmem_charge_memcg+0x7c/0x120
[  743.001217]  ? memcg_kmem_put_cache+0xb0/0xb0
[  743.005702]  ? kmem_cache_alloc+0x12e/0x730
[  743.010013]  ? print_usage_bug+0xc0/0xc0
[  743.014066]  memcg_kmem_charge+0x135/0x300
[  743.018298]  __alloc_pages_nodemask+0x89c/0xdd0
[  743.022960]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  743.027966]  ? __lock_acquire+0x7ec/0x4ec0
[  743.032227]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  743.037765]  ? graph_lock+0x170/0x170
[  743.041559]  ? find_held_lock+0x36/0x1c0
[  743.045618]  ? __lock_is_held+0xb5/0x140
[  743.049680]  ? lock_downgrade+0x900/0x900
[  743.053824]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  743.059356]  alloc_pages_current+0x10c/0x210
[  743.063759]  pte_alloc_one+0x1b/0x1a0
[  743.067550]  __pte_alloc+0x2a/0x350
[  743.071171]  copy_page_range+0x18a2/0x26f0
[  743.075416]  ? pmd_alloc+0x180/0x180
[  743.079128]  ? save_stack+0xa9/0xd0
[  743.082874]  ? save_stack+0x43/0xd0
[  743.086494]  ? kasan_slab_alloc+0x12/0x20
[  743.090637]  ? kmem_cache_alloc+0x12e/0x730
[  743.094963]  ? vm_area_dup+0x7a/0x230
[  743.098823]  ? copy_process+0x429f/0x8780
[  743.102970]  ? _do_fork+0x1cb/0x11c0
[  743.106684]  ? __x64_sys_clone+0xbf/0x150
[  743.110825]  ? do_syscall_64+0x1b9/0x820
[  743.114956]  ? graph_lock+0x170/0x170
[  743.118917]  ? lock_downgrade+0x900/0x900
[  743.123073]  ? graph_lock+0x170/0x170
[  743.126945]  ? graph_lock+0x170/0x170
[  743.130746]  ? find_held_lock+0x36/0x1c0
[  743.134852]  ? copy_process+0x454a/0x8780
[  743.139001]  ? lock_downgrade+0x900/0x900
[  743.143142]  ? lock_release+0x970/0x970
[  743.147206]  ? ttwu_stat+0x5c0/0x5c0
[  743.150912]  ? dup_userfaultfd+0x6d8/0x890
[  743.155144]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  743.160153]  ? vma_compute_subtree_gap+0x160/0x240
[  743.165185]  ? validate_mm_rb+0xaa/0xc0
[  743.169161]  ? __vma_link_rb+0x26c/0x370
[  743.173227]  copy_process+0x4720/0x8780
[  743.177233]  ? __cleanup_sighand+0x70/0x70
[  743.181469]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  743.187001]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  743.192540]  ? page_swapcount+0x1d0/0x1d0
[  743.196693]  ? try_to_wake_up+0x10a/0x12f0
[  743.200924]  ? lock_downgrade+0x900/0x900
[  743.205069]  ? lock_downgrade+0x900/0x900
[  743.209231]  ? trace_hardirqs_off+0xb8/0x310
[  743.213630]  ? kasan_check_read+0x11/0x20
[  743.217783]  ? trace_hardirqs_on_caller+0x310/0x310
[  743.222810]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  743.228958]  ? try_to_wake_up+0x10a/0x12f0
[  743.233187]  ? print_usage_bug+0xc0/0xc0
[  743.237299]  ? migrate_swap_stop+0x930/0x930
[  743.241706]  ? __handle_mm_fault+0x9ab/0x53e0
[  743.246249]  ? graph_lock+0x170/0x170
[  743.250047]  ? print_usage_bug+0xc0/0xc0
[  743.254115]  ? __lock_acquire+0x7ec/0x4ec0
[  743.258436]  ? print_usage_bug+0xc0/0xc0
[  743.262500]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  743.268032]  ? reuse_swap_page+0x4bd/0x1520
[  743.272350]  ? swp_swapcount+0x530/0x530
[  743.276410]  ? __lock_acquire+0x7ec/0x4ec0
[  743.280634]  ? mark_held_locks+0x130/0x130
[  743.284859]  ? rcu_softirq_qs+0x20/0x20
[  743.288831]  ? __lock_acquire+0x7ec/0x4ec0
[  743.293058]  ? mark_held_locks+0x130/0x130
[  743.297283]  ? graph_lock+0x170/0x170
[  743.301075]  ? mark_held_locks+0x130/0x130
[  743.305300]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  743.310837]  ? check_preemption_disabled+0x48/0x200
[  743.315856]  ? find_held_lock+0x36/0x1c0
[  743.319917]  ? do_wp_page+0xa6f/0x1690
[  743.323797]  ? lock_downgrade+0x900/0x900
[  743.327931]  ? wake_up_page_bit+0x6f0/0x6f0
[  743.332244]  ? kasan_check_read+0x11/0x20
[  743.336378]  ? do_raw_spin_unlock+0xa7/0x2f0
[  743.340777]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  743.345357]  ? pgd_free+0x380/0x380
[  743.348975]  ? __lock_acquire+0x7ec/0x4ec0
[  743.353208]  ? _raw_spin_unlock+0x2c/0x50
[  743.357345]  ? do_wp_page+0x77c/0x1690
[  743.361242]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  743.365902]  ? find_held_lock+0x36/0x1c0
[  743.369951]  ? lock_release+0x970/0x970
[  743.373917]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  743.379449]  ? kasan_check_write+0x14/0x20
[  743.383671]  ? do_raw_spin_lock+0xc1/0x200
[  743.387903]  ? __handle_mm_fault+0x9ab/0x53e0
[  743.392392]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  743.397238]  ? __sb_end_write+0xd9/0x110
[  743.401292]  ? graph_lock+0x170/0x170
[  743.405084]  ? print_usage_bug+0xc0/0xc0
[  743.409140]  ? atime_needs_update+0x710/0x710
[  743.413628]  ? graph_lock+0x170/0x170
[  743.417426]  ? graph_lock+0x170/0x170
[  743.421231]  ? find_held_lock+0x36/0x1c0
[  743.425288]  ? __do_page_fault+0x6b7/0xec0
[  743.429530]  _do_fork+0x1cb/0x11c0
[  743.433061]  ? fork_idle+0x1d0/0x1d0
[  743.436760]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  743.442287]  ? check_preemption_disabled+0x48/0x200
[  743.447296]  ? kasan_check_write+0x14/0x20
[  743.451519]  ? up_read+0x225/0x2c0
[  743.455047]  ? up_read_non_owner+0x100/0x100
[  743.459449]  ? find_vma+0x34/0x190
[  743.462982]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  743.468508]  ? __do_page_fault+0x49c/0xec0
[  743.472737]  ? do_syscall_64+0x9a/0x820
[  743.476700]  ? do_syscall_64+0x9a/0x820
[  743.480665]  ? lockdep_hardirqs_on+0x421/0x5c0
[  743.485241]  ? trace_hardirqs_on+0xbd/0x310
[  743.489556]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  743.494909]  ? trace_hardirqs_off_caller+0x300/0x300
[  743.500005]  __x64_sys_clone+0xbf/0x150
[  743.503990]  do_syscall_64+0x1b9/0x820
[  743.507867]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  743.513220]  ? syscall_return_slowpath+0x5e0/0x5e0
[  743.518141]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  743.522977]  ? trace_hardirqs_off+0x310/0x310
[  743.527460]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  743.532473]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  743.538020]  ? prepare_exit_to_usermode+0x291/0x3b0
[  743.543029]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  743.547868]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  743.553046] RIP: 0033:0x455c4a
[  743.556225] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  743.575112] RSP: 002b:00007ffdef61b280 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  743.582809] RAX: ffffffffffffffda RBX: 00007ffdef61b280 RCX: 0000000000455c4a
[  743.590064] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  743.597318] RBP: 00007ffdef61b2c0 R08: 0000000000000001 R09: 00000000021dc940
[  743.604574] R10: 00000000021dcc10 R11: 0000000000000246 R12: 0000000000000001
[  743.611833] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  743.619988] Memory limit reached of cgroup /syz1
[  743.624897] memory: usage 5328kB, limit 0kB, failcnt 255218
[  743.630762] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  743.637556] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  743.643689] Memory cgroup stats for /syz1: cache:112KB rss:0KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:44KB inactive_file:0KB active_file:0KB unevictable:0KB
[  743.663706] Out of memory and no killable processes...
[  743.670526] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  743.683807] syz-executor1 cpuset=syz1 mems_allowed=0
[  743.689156] CPU: 1 PID: 29135 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  743.697654] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  743.706997] Call Trace:
[  743.709574]  dump_stack+0x1d3/0x2c4
[  743.713193]  ? dump_stack_print_info.cold.2+0x52/0x52
[  743.718379]  dump_header+0x27b/0xf72
[  743.722080]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  743.726994]  ? kasan_check_read+0x11/0x20
[  743.731135]  ? pagefault_out_of_memory+0x197/0x197
[  743.736060]  ? rcu_read_unlock+0x33/0x60
[  743.740111]  ? mem_cgroup_iter+0x514/0x1160
[  743.744425]  ? find_held_lock+0x36/0x1c0
[  743.748481]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  743.753224]  ? mark_held_locks+0xc7/0x130
[  743.757368]  ? _raw_spin_unlock_irq+0x27/0x80
[  743.761865]  ? _raw_spin_unlock_irq+0x27/0x80
[  743.766347]  ? lockdep_hardirqs_on+0x421/0x5c0
[  743.770920]  ? trace_hardirqs_on+0xbd/0x310
[  743.775228]  ? kasan_check_read+0x11/0x20
[  743.779363]  ? css_task_iter_end+0x222/0x490
[  743.783869]  ? trace_hardirqs_off_caller+0x300/0x300
[  743.788962]  ? kasan_check_write+0x14/0x20
[  743.793187]  ? do_raw_spin_lock+0xc1/0x200
[  743.797422]  ? _raw_spin_unlock_irq+0x60/0x80
[  743.801905]  ? css_task_iter_end+0x2ce/0x490
[  743.806298]  ? cgroup_procs_next+0x70/0x70
[  743.810525]  ? _raw_spin_unlock_irq+0x60/0x80
[  743.815007]  ? oom_badness+0xaa0/0xaa0
[  743.818884]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  743.823628]  ? mem_cgroup_iter_break+0x30/0x30
[  743.828217]  ? mark_held_locks+0xc7/0x130
[  743.832356]  out_of_memory.cold.30+0xf/0x184
[  743.836751]  ? lockdep_hardirqs_on+0x421/0x5c0
[  743.841321]  ? kasan_check_read+0x11/0x20
[  743.845481]  ? oom_killer_disable+0x3a0/0x3a0
[  743.849967]  ? kasan_check_write+0x14/0x20
[  743.854190]  ? do_raw_spin_lock+0xc1/0x200
[  743.858421]  mem_cgroup_out_of_memory+0x15e/0x210
[  743.863251]  ? memcg_memory_event+0x40/0x40
[  743.867581]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  743.872417]  ? page_counter_try_charge+0x1c1/0x220
[  743.877334]  try_charge+0xb1a/0x1690
[  743.881051]  ? lock_downgrade+0x900/0x900
[  743.885191]  ? check_preemption_disabled+0x48/0x200
[  743.890204]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  743.896254]  ? find_held_lock+0x36/0x1c0
[  743.900311]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  743.905168]  ? lock_downgrade+0x900/0x900
[  743.909311]  ? check_preemption_disabled+0x48/0x200
[  743.914321]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  743.919239]  ? kasan_check_read+0x11/0x20
[  743.923390]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  743.928658]  ? rcu_softirq_qs+0x20/0x20
[  743.932650]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  743.937494]  memcg_kmem_charge_memcg+0x7c/0x120
[  743.942158]  ? memcg_kmem_put_cache+0xb0/0xb0
[  743.946643]  ? kmem_cache_alloc+0x12e/0x730
[  743.951015]  ? print_usage_bug+0xc0/0xc0
[  743.955071]  memcg_kmem_charge+0x135/0x300
[  743.959323]  __alloc_pages_nodemask+0x89c/0xdd0
[  743.963987]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  743.968993]  ? __lock_acquire+0x7ec/0x4ec0
[  743.973218]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  743.978744]  ? graph_lock+0x170/0x170
[  743.982531]  ? find_held_lock+0x36/0x1c0
[  743.986587]  ? __lock_is_held+0xb5/0x140
[  743.990636]  ? lock_downgrade+0x900/0x900
[  743.994773]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  744.000319]  alloc_pages_current+0x10c/0x210
[  744.004718]  pte_alloc_one+0x1b/0x1a0
[  744.008506]  __pte_alloc+0x2a/0x350
[  744.012121]  copy_page_range+0x18a2/0x26f0
[  744.016363]  ? pmd_alloc+0x180/0x180
[  744.020070]  ? save_stack+0xa9/0xd0
[  744.023706]  ? save_stack+0x43/0xd0
[  744.027318]  ? kasan_slab_alloc+0x12/0x20
[  744.031454]  ? kmem_cache_alloc+0x12e/0x730
[  744.035763]  ? vm_area_dup+0x7a/0x230
[  744.039549]  ? copy_process+0x429f/0x8780
[  744.043687]  ? _do_fork+0x1cb/0x11c0
[  744.047394]  ? __x64_sys_clone+0xbf/0x150
[  744.051535]  ? do_syscall_64+0x1b9/0x820
[  744.055588]  ? graph_lock+0x170/0x170
[  744.059381]  ? lock_downgrade+0x900/0x900
[  744.063519]  ? graph_lock+0x170/0x170
[  744.067311]  ? graph_lock+0x170/0x170
[  744.071105]  ? find_held_lock+0x36/0x1c0
[  744.075187]  ? copy_process+0x454a/0x8780
[  744.079326]  ? lock_downgrade+0x900/0x900
[  744.083463]  ? lock_release+0x970/0x970
[  744.087431]  ? ttwu_stat+0x5c0/0x5c0
[  744.091131]  ? dup_userfaultfd+0x6d8/0x890
[  744.095360]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  744.100367]  ? vma_compute_subtree_gap+0x160/0x240
[  744.105285]  ? validate_mm_rb+0xaa/0xc0
[  744.109250]  ? __vma_link_rb+0x26c/0x370
[  744.113300]  copy_process+0x4720/0x8780
[  744.117281]  ? __cleanup_sighand+0x70/0x70
[  744.121509]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  744.127036]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  744.132565]  ? page_swapcount+0x1d0/0x1d0
[  744.136702]  ? try_to_wake_up+0x10a/0x12f0
[  744.140930]  ? lock_downgrade+0x900/0x900
[  744.145066]  ? lock_downgrade+0x900/0x900
[  744.149208]  ? trace_hardirqs_off+0xb8/0x310
[  744.153601]  ? kasan_check_read+0x11/0x20
[  744.157740]  ? trace_hardirqs_on_caller+0x310/0x310
[  744.162754]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  744.167849]  ? try_to_wake_up+0x10a/0x12f0
[  744.172079]  ? print_usage_bug+0xc0/0xc0
[  744.176128]  ? migrate_swap_stop+0x930/0x930
[  744.180526]  ? __handle_mm_fault+0x9ab/0x53e0
[  744.185010]  ? graph_lock+0x170/0x170
[  744.188799]  ? print_usage_bug+0xc0/0xc0
[  744.192852]  ? __lock_acquire+0x7ec/0x4ec0
[  744.197079]  ? print_usage_bug+0xc0/0xc0
[  744.201160]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  744.206696]  ? reuse_swap_page+0x4bd/0x1520
[  744.211015]  ? swp_swapcount+0x530/0x530
[  744.215072]  ? __lock_acquire+0x7ec/0x4ec0
[  744.219298]  ? mark_held_locks+0x130/0x130
[  744.223519]  ? rcu_softirq_qs+0x20/0x20
[  744.227497]  ? __lock_acquire+0x7ec/0x4ec0
[  744.231728]  ? mark_held_locks+0x130/0x130
[  744.235950]  ? graph_lock+0x170/0x170
[  744.239740]  ? mark_held_locks+0x130/0x130
[  744.243967]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  744.249495]  ? check_preemption_disabled+0x48/0x200
[  744.254506]  ? find_held_lock+0x36/0x1c0
[  744.258579]  ? do_wp_page+0xa6f/0x1690
[  744.262460]  ? lock_downgrade+0x900/0x900
[  744.266598]  ? wake_up_page_bit+0x6f0/0x6f0
[  744.270916]  ? kasan_check_read+0x11/0x20
[  744.275056]  ? do_raw_spin_unlock+0xa7/0x2f0
[  744.279458]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  744.284282]  ? pgd_free+0x380/0x380
[  744.287902]  ? __lock_acquire+0x7ec/0x4ec0
[  744.292133]  ? _raw_spin_unlock+0x2c/0x50
[  744.296272]  ? do_wp_page+0x77c/0x1690
[  744.300157]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  744.304817]  ? find_held_lock+0x36/0x1c0
[  744.308873]  ? lock_release+0x970/0x970
[  744.312862]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  744.318398]  ? kasan_check_write+0x14/0x20
[  744.322624]  ? do_raw_spin_lock+0xc1/0x200
[  744.326861]  ? __handle_mm_fault+0x9ab/0x53e0
[  744.331377]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  744.336220]  ? __sb_end_write+0xd9/0x110
[  744.340295]  ? graph_lock+0x170/0x170
[  744.344089]  ? print_usage_bug+0xc0/0xc0
[  744.348146]  ? atime_needs_update+0x710/0x710
[  744.352631]  ? graph_lock+0x170/0x170
[  744.356425]  ? graph_lock+0x170/0x170
[  744.360221]  ? find_held_lock+0x36/0x1c0
[  744.364292]  ? __do_page_fault+0x6b7/0xec0
[  744.368522]  _do_fork+0x1cb/0x11c0
[  744.372056]  ? fork_idle+0x1d0/0x1d0
[  744.375760]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  744.381287]  ? check_preemption_disabled+0x48/0x200
[  744.386298]  ? kasan_check_write+0x14/0x20
[  744.390525]  ? up_read+0x225/0x2c0
[  744.394453]  ? up_read_non_owner+0x100/0x100
[  744.398862]  ? find_vma+0x34/0x190
[  744.402396]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  744.407934]  ? __do_page_fault+0x49c/0xec0
[  744.412172]  ? do_syscall_64+0x9a/0x820
[  744.416142]  ? do_syscall_64+0x9a/0x820
[  744.420131]  ? lockdep_hardirqs_on+0x421/0x5c0
[  744.424708]  ? trace_hardirqs_on+0xbd/0x310
[  744.429021]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  744.434379]  ? trace_hardirqs_off_caller+0x300/0x300
[  744.439474]  __x64_sys_clone+0xbf/0x150
[  744.443443]  do_syscall_64+0x1b9/0x820
[  744.447318]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  744.452680]  ? syscall_return_slowpath+0x5e0/0x5e0
[  744.457599]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  744.462456]  ? trace_hardirqs_off+0x310/0x310
[  744.466943]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  744.471948]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  744.477475]  ? prepare_exit_to_usermode+0x291/0x3b0
[  744.482485]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  744.487323]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  744.492507] RIP: 0033:0x455c4a
[  744.495692] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  744.514579] RSP: 002b:00007ffdef61b280 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  744.522281] RAX: ffffffffffffffda RBX: 00007ffdef61b280 RCX: 0000000000455c4a
[  744.529535] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  744.536788] RBP: 00007ffdef61b2c0 R08: 0000000000000001 R09: 00000000021dc940
[  744.544048] R10: 00000000021dcc10 R11: 0000000000000246 R12: 0000000000000001
[  744.551304] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  744.561109] Memory limit reached of cgroup /syz1
[  744.566028] memory: usage 5252kB, limit 0kB, failcnt 255226
[  744.571849] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  744.578650] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  744.584787] Memory cgroup stats for /syz1: cache:112KB rss:0KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:44KB inactive_file:0KB active_file:0KB unevictable:0KB
[  744.604799] Out of memory and no killable processes...
[  744.611489] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  744.624410] syz-executor1 cpuset=syz1 mems_allowed=0
[  744.629673] CPU: 1 PID: 29135 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  744.638167] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  744.647508] Call Trace:
[  744.650090]  dump_stack+0x1d3/0x2c4
[  744.653707]  ? dump_stack_print_info.cold.2+0x52/0x52
[  744.658894]  dump_header+0x27b/0xf72
[  744.662602]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  744.667520]  ? kasan_check_read+0x11/0x20
[  744.671660]  ? pagefault_out_of_memory+0x197/0x197
[  744.676589]  ? rcu_read_unlock+0x33/0x60
[  744.680642]  ? mem_cgroup_iter+0x514/0x1160
[  744.684977]  ? find_held_lock+0x36/0x1c0
[  744.689034]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  744.693779]  ? mark_held_locks+0xc7/0x130
[  744.697917]  ? _raw_spin_unlock_irq+0x27/0x80
[  744.702399]  ? _raw_spin_unlock_irq+0x27/0x80
[  744.706883]  ? lockdep_hardirqs_on+0x421/0x5c0
[  744.711476]  ? trace_hardirqs_on+0xbd/0x310
[  744.715784]  ? kasan_check_read+0x11/0x20
[  744.719918]  ? css_task_iter_end+0x222/0x490
[  744.724316]  ? trace_hardirqs_off_caller+0x300/0x300
[  744.729407]  ? kasan_check_write+0x14/0x20
[  744.733629]  ? do_raw_spin_lock+0xc1/0x200
[  744.737887]  ? _raw_spin_unlock_irq+0x60/0x80
[  744.742371]  ? css_task_iter_end+0x2ce/0x490
[  744.746769]  ? cgroup_procs_next+0x70/0x70
[  744.750996]  ? _raw_spin_unlock_irq+0x60/0x80
[  744.755479]  ? oom_badness+0xaa0/0xaa0
[  744.759357]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  744.764105]  ? mem_cgroup_iter_break+0x30/0x30
[  744.768688]  ? mark_held_locks+0xc7/0x130
[  744.772826]  out_of_memory.cold.30+0xf/0x184
[  744.777220]  ? lockdep_hardirqs_on+0x421/0x5c0
[  744.781793]  ? kasan_check_read+0x11/0x20
[  744.785930]  ? oom_killer_disable+0x3a0/0x3a0
[  744.790433]  ? kasan_check_write+0x14/0x20
[  744.794655]  ? do_raw_spin_lock+0xc1/0x200
[  744.798892]  mem_cgroup_out_of_memory+0x15e/0x210
[  744.803723]  ? memcg_memory_event+0x40/0x40
[  744.808031]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  744.812864]  ? page_counter_try_charge+0x1c1/0x220
[  744.817788]  try_charge+0xb1a/0x1690
[  744.821488]  ? lock_downgrade+0x900/0x900
[  744.825625]  ? check_preemption_disabled+0x48/0x200
[  744.830650]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  744.836720]  ? find_held_lock+0x36/0x1c0
[  744.840778]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  744.845611]  ? lock_downgrade+0x900/0x900
[  744.849748]  ? check_preemption_disabled+0x48/0x200
[  744.854755]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  744.859672]  ? kasan_check_read+0x11/0x20
[  744.863812]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  744.869075]  ? rcu_softirq_qs+0x20/0x20
[  744.873043]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  744.877878]  memcg_kmem_charge_memcg+0x7c/0x120
[  744.882536]  ? memcg_kmem_put_cache+0xb0/0xb0
[  744.887015]  ? save_stack+0x43/0xd0
[  744.890629]  ? kasan_slab_alloc+0x12/0x20
[  744.894763]  ? kmem_cache_alloc+0x12e/0x730
[  744.899072]  ? ptlock_alloc+0x20/0x80
[  744.902867]  memcg_kmem_charge+0x135/0x300
[  744.907095]  __alloc_pages_nodemask+0x89c/0xdd0
[  744.911756]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  744.916765]  ? find_held_lock+0x36/0x1c0
[  744.920818]  ? print_usage_bug+0xc0/0xc0
[  744.924875]  ? find_held_lock+0x36/0x1c0
[  744.928928]  ? __lock_acquire+0x7ec/0x4ec0
[  744.933154]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  744.938688]  alloc_pages_current+0x10c/0x210
[  744.943086]  get_zeroed_page+0x14/0x50
[  744.946962]  __pud_alloc+0x3b/0x240
[  744.950578]  pud_alloc+0xe1/0x150
[  744.954023]  copy_page_range+0x439/0x26f0
[  744.958164]  ? rb_insert_color_cached+0x14b0/0x14b0
[  744.963205]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  744.968211]  ? vma_compute_subtree_gap+0x160/0x240
[  744.973135]  ? __rb_insert_augmented+0x3b2/0x1890
[  744.977971]  ? pmd_alloc+0x180/0x180
[  744.981697]  ? graph_lock+0x170/0x170
[  744.985489]  ? kasan_slab_alloc+0x12/0x20
[  744.989641]  ? kmem_cache_alloc+0x12e/0x730
[  744.993954]  ? graph_lock+0x170/0x170
[  744.997744]  ? __x64_sys_clone+0xbf/0x150
[  745.001881]  ? do_syscall_64+0x1b9/0x820
[  745.005929]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  745.011291]  ? find_held_lock+0x36/0x1c0
[  745.015345]  ? anon_vma_fork+0x5ef/0x820
[  745.019415]  ? lock_downgrade+0x900/0x900
[  745.023557]  ? lock_release+0x970/0x970
[  745.027522]  ? ttwu_stat+0x5c0/0x5c0
[  745.031231]  ? __lock_is_held+0xb5/0x140
[  745.035283]  ? up_write+0x7b/0x220
[  745.038811]  ? down_write_nested+0x130/0x130
[  745.043208]  ? anon_vma_interval_tree_insert+0x2c9/0x370
[  745.048655]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  745.053663]  ? vma_compute_subtree_gap+0x160/0x240
[  745.058586]  ? validate_mm_rb+0xaa/0xc0
[  745.062549]  ? __vma_link_rb+0x26c/0x370
[  745.066605]  copy_process+0x4720/0x8780
[  745.070586]  ? __cleanup_sighand+0x70/0x70
[  745.074813]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  745.080339]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  745.085869]  ? page_swapcount+0x1d0/0x1d0
[  745.090005]  ? try_to_wake_up+0x10a/0x12f0
[  745.094226]  ? lock_downgrade+0x900/0x900
[  745.098368]  ? lock_downgrade+0x900/0x900
[  745.102507]  ? trace_hardirqs_off+0xb8/0x310
[  745.106917]  ? kasan_check_read+0x11/0x20
[  745.111059]  ? trace_hardirqs_on_caller+0x310/0x310
[  745.116073]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  745.121167]  ? try_to_wake_up+0x10a/0x12f0
[  745.125396]  ? print_usage_bug+0xc0/0xc0
[  745.129447]  ? migrate_swap_stop+0x930/0x930
[  745.133847]  ? __handle_mm_fault+0x9ab/0x53e0
[  745.138335]  ? graph_lock+0x170/0x170
[  745.142125]  ? print_usage_bug+0xc0/0xc0
[  745.146179]  ? __lock_acquire+0x7ec/0x4ec0
[  745.150410]  ? print_usage_bug+0xc0/0xc0
[  745.154461]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  745.159986]  ? reuse_swap_page+0x4bd/0x1520
[  745.164296]  ? swp_swapcount+0x530/0x530
[  745.168350]  ? __lock_acquire+0x7ec/0x4ec0
[  745.172599]  ? mark_held_locks+0x130/0x130
[  745.176823]  ? rcu_softirq_qs+0x20/0x20
[  745.180789]  ? __lock_acquire+0x7ec/0x4ec0
[  745.185022]  ? mark_held_locks+0x130/0x130
[  745.189247]  ? graph_lock+0x170/0x170
[  745.193036]  ? mark_held_locks+0x130/0x130
[  745.197260]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  745.202787]  ? check_preemption_disabled+0x48/0x200
[  745.207800]  ? find_held_lock+0x36/0x1c0
[  745.211853]  ? do_wp_page+0xa6f/0x1690
[  745.215747]  ? lock_downgrade+0x900/0x900
[  745.219901]  ? wake_up_page_bit+0x6f0/0x6f0
[  745.224213]  ? kasan_check_read+0x11/0x20
[  745.228349]  ? do_raw_spin_unlock+0xa7/0x2f0
[  745.232744]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  745.237313]  ? pgd_free+0x380/0x380
[  745.240926]  ? __lock_acquire+0x7ec/0x4ec0
[  745.245156]  ? _raw_spin_unlock+0x2c/0x50
[  745.249295]  ? do_wp_page+0x77c/0x1690
[  745.253202]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  745.257862]  ? find_held_lock+0x36/0x1c0
[  745.261911]  ? lock_release+0x970/0x970
[  745.265877]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  745.271406]  ? kasan_check_write+0x14/0x20
[  745.275630]  ? do_raw_spin_lock+0xc1/0x200
[  745.279878]  ? __handle_mm_fault+0x9ab/0x53e0
[  745.284364]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  745.289195]  ? __sb_end_write+0xd9/0x110
[  745.293248]  ? graph_lock+0x170/0x170
[  745.297035]  ? print_usage_bug+0xc0/0xc0
[  745.301085]  ? atime_needs_update+0x710/0x710
[  745.305568]  ? graph_lock+0x170/0x170
[  745.309356]  ? graph_lock+0x170/0x170
[  745.313148]  ? find_held_lock+0x36/0x1c0
[  745.317199]  ? __do_page_fault+0x6b7/0xec0
[  745.321433]  _do_fork+0x1cb/0x11c0
[  745.324964]  ? fork_idle+0x1d0/0x1d0
[  745.328668]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  745.334211]  ? check_preemption_disabled+0x48/0x200
[  745.339224]  ? kasan_check_write+0x14/0x20
[  745.343445]  ? up_read+0x225/0x2c0
[  745.346979]  ? up_read_non_owner+0x100/0x100
[  745.351382]  ? find_vma+0x34/0x190
[  745.354913]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  745.360442]  ? __do_page_fault+0x49c/0xec0
[  745.364665]  ? do_syscall_64+0x9a/0x820
[  745.368630]  ? do_syscall_64+0x9a/0x820
[  745.372596]  ? lockdep_hardirqs_on+0x421/0x5c0
[  745.377169]  ? trace_hardirqs_on+0xbd/0x310
[  745.381509]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  745.386861]  ? trace_hardirqs_off_caller+0x300/0x300
[  745.391958]  __x64_sys_clone+0xbf/0x150
[  745.395923]  do_syscall_64+0x1b9/0x820
[  745.399801]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  745.405158]  ? syscall_return_slowpath+0x5e0/0x5e0
[  745.410076]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  745.414907]  ? trace_hardirqs_off+0x310/0x310
[  745.419394]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  745.424400]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  745.429945]  ? prepare_exit_to_usermode+0x291/0x3b0
[  745.434956]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  745.439796]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  745.444974] RIP: 0033:0x455c4a
[  745.448157] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  745.467060] RSP: 002b:00007ffdef61b280 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  745.474772] RAX: ffffffffffffffda RBX: 00007ffdef61b280 RCX: 0000000000455c4a
[  745.482029] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  745.489288] RBP: 00007ffdef61b2c0 R08: 0000000000000001 R09: 00000000021dc940
[  745.496546] R10: 00000000021dcc10 R11: 0000000000000246 R12: 0000000000000001
[  745.503800] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  745.512352] Memory limit reached of cgroup /syz1
[  745.517275] memory: usage 5256kB, limit 0kB, failcnt 255234
[  745.523094] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  745.529914] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  745.536052] Memory cgroup stats for /syz1: cache:112KB rss:0KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:44KB inactive_file:0KB active_file:0KB unevictable:0KB
[  745.556220] Out of memory and no killable processes...
[  745.562917] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  745.575984] syz-executor1 cpuset=syz1 mems_allowed=0
[  745.581230] CPU: 1 PID: 29135 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  745.589742] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  745.599087] Call Trace:
[  745.601668]  dump_stack+0x1d3/0x2c4
[  745.605292]  ? dump_stack_print_info.cold.2+0x52/0x52
[  745.610476]  dump_header+0x27b/0xf72
[  745.614184]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  745.619104]  ? kasan_check_read+0x11/0x20
[  745.623246]  ? pagefault_out_of_memory+0x197/0x197
[  745.628188]  ? rcu_read_unlock+0x33/0x60
[  745.632244]  ? mem_cgroup_iter+0x514/0x1160
[  745.636559]  ? find_held_lock+0x36/0x1c0
[  745.640615]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  745.645360]  ? mark_held_locks+0xc7/0x130
[  745.649499]  ? _raw_spin_unlock_irq+0x27/0x80
[  745.653984]  ? _raw_spin_unlock_irq+0x27/0x80
[  745.658470]  ? lockdep_hardirqs_on+0x421/0x5c0
[  745.663043]  ? trace_hardirqs_on+0xbd/0x310
[  745.667350]  ? kasan_check_read+0x11/0x20
[  745.671500]  ? css_task_iter_end+0x222/0x490
[  745.675898]  ? trace_hardirqs_off_caller+0x300/0x300
[  745.680992]  ? kasan_check_write+0x14/0x20
[  745.685215]  ? do_raw_spin_lock+0xc1/0x200
[  745.689443]  ? _raw_spin_unlock_irq+0x60/0x80
[  745.693923]  ? css_task_iter_end+0x2ce/0x490
[  745.698321]  ? cgroup_procs_next+0x70/0x70
[  745.702545]  ? _raw_spin_unlock_irq+0x60/0x80
[  745.707042]  ? oom_badness+0xaa0/0xaa0
[  745.710925]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  745.715669]  ? mem_cgroup_iter_break+0x30/0x30
[  745.720278]  ? mark_held_locks+0xc7/0x130
[  745.724422]  out_of_memory.cold.30+0xf/0x184
[  745.728820]  ? lockdep_hardirqs_on+0x421/0x5c0
[  745.733416]  ? kasan_check_read+0x11/0x20
[  745.737558]  ? oom_killer_disable+0x3a0/0x3a0
[  745.742039]  ? kasan_check_write+0x14/0x20
[  745.746258]  ? do_raw_spin_lock+0xc1/0x200
[  745.750492]  mem_cgroup_out_of_memory+0x15e/0x210
[  745.755322]  ? memcg_memory_event+0x40/0x40
[  745.759631]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  745.764486]  ? page_counter_try_charge+0x1c1/0x220
[  745.769411]  try_charge+0xb1a/0x1690
[  745.773112]  ? lock_downgrade+0x900/0x900
[  745.777249]  ? check_preemption_disabled+0x48/0x200
[  745.782259]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  745.788310]  ? find_held_lock+0x36/0x1c0
[  745.792365]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  745.797194]  ? lock_downgrade+0x900/0x900
[  745.801332]  ? check_preemption_disabled+0x48/0x200
[  745.806358]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  745.811278]  ? kasan_check_read+0x11/0x20
[  745.815422]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  745.820723]  ? rcu_softirq_qs+0x20/0x20
[  745.824698]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  745.829535]  memcg_kmem_charge_memcg+0x7c/0x120
[  745.834197]  ? memcg_kmem_put_cache+0xb0/0xb0
[  745.838689]  ? __lock_is_held+0xb5/0x140
[  745.842745]  memcg_kmem_charge+0x135/0x300
[  745.846973]  __alloc_pages_nodemask+0x89c/0xdd0
[  745.851654]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  745.856686]  ? lock_downgrade+0x900/0x900
[  745.860827]  ? kasan_check_read+0x11/0x20
[  745.864985]  ? do_raw_spin_unlock+0xa7/0x2f0
[  745.869384]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  745.873955]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  745.879487]  alloc_pages_current+0x10c/0x210
[  745.883890]  __pmd_alloc+0x3e/0x450
[  745.887507]  ? pmd_val+0x100/0x100
[  745.891034]  pmd_alloc+0x10f/0x180
[  745.894559]  copy_page_range+0x6cf/0x26f0
[  745.898701]  ? rb_insert_color_cached+0x14b0/0x14b0
[  745.903710]  ? vma_compute_subtree_gap+0x160/0x240
[  745.908646]  ? pmd_alloc+0x180/0x180
[  745.912350]  ? graph_lock+0x170/0x170
[  745.916137]  ? kasan_slab_alloc+0x12/0x20
[  745.920274]  ? kmem_cache_alloc+0x12e/0x730
[  745.924581]  ? graph_lock+0x170/0x170
[  745.928372]  ? __x64_sys_clone+0xbf/0x150
[  745.932505]  ? do_syscall_64+0x1b9/0x820
[  745.936554]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  745.941931]  ? find_held_lock+0x36/0x1c0
[  745.945989]  ? anon_vma_fork+0x5ef/0x820
[  745.950038]  ? lock_downgrade+0x900/0x900
[  745.954180]  ? lock_release+0x970/0x970
[  745.958150]  ? ttwu_stat+0x5c0/0x5c0
[  745.961856]  ? __lock_is_held+0xb5/0x140
[  745.965912]  ? up_write+0x7b/0x220
[  745.969439]  ? down_write_nested+0x130/0x130
[  745.973840]  ? anon_vma_interval_tree_insert+0x2c9/0x370
[  745.979289]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  745.984294]  ? vma_compute_subtree_gap+0x160/0x240
[  745.989243]  ? validate_mm_rb+0xaa/0xc0
[  745.993210]  ? __vma_link_rb+0x26c/0x370
[  745.997281]  copy_process+0x4720/0x8780
[  746.001284]  ? __cleanup_sighand+0x70/0x70
[  746.005514]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  746.011043]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  746.016570]  ? page_swapcount+0x1d0/0x1d0
[  746.020713]  ? try_to_wake_up+0x10a/0x12f0
[  746.024937]  ? lock_downgrade+0x900/0x900
[  746.029093]  ? lock_downgrade+0x900/0x900
[  746.033233]  ? trace_hardirqs_off+0xb8/0x310
[  746.037630]  ? kasan_check_read+0x11/0x20
[  746.041784]  ? trace_hardirqs_on_caller+0x310/0x310
[  746.046795]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  746.051891]  ? try_to_wake_up+0x10a/0x12f0
[  746.056118]  ? print_usage_bug+0xc0/0xc0
[  746.060169]  ? migrate_swap_stop+0x930/0x930
[  746.064575]  ? __handle_mm_fault+0x9ab/0x53e0
[  746.069060]  ? graph_lock+0x170/0x170
[  746.072847]  ? print_usage_bug+0xc0/0xc0
[  746.076897]  ? __lock_acquire+0x7ec/0x4ec0
[  746.081122]  ? print_usage_bug+0xc0/0xc0
[  746.085203]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  746.090734]  ? reuse_swap_page+0x4bd/0x1520
[  746.095045]  ? swp_swapcount+0x530/0x530
[  746.099101]  ? __lock_acquire+0x7ec/0x4ec0
[  746.103322]  ? mark_held_locks+0x130/0x130
[  746.107542]  ? rcu_softirq_qs+0x20/0x20
[  746.111507]  ? __lock_acquire+0x7ec/0x4ec0
[  746.115735]  ? mark_held_locks+0x130/0x130
[  746.119963]  ? graph_lock+0x170/0x170
[  746.123752]  ? mark_held_locks+0x130/0x130
[  746.127978]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  746.133503]  ? check_preemption_disabled+0x48/0x200
[  746.138519]  ? find_held_lock+0x36/0x1c0
[  746.142574]  ? do_wp_page+0xa6f/0x1690
[  746.146454]  ? lock_downgrade+0x900/0x900
[  746.150589]  ? wake_up_page_bit+0x6f0/0x6f0
[  746.154902]  ? kasan_check_read+0x11/0x20
[  746.159039]  ? do_raw_spin_unlock+0xa7/0x2f0
[  746.163435]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  746.168006]  ? pgd_free+0x380/0x380
[  746.171616]  ? __lock_acquire+0x7ec/0x4ec0
[  746.175864]  ? _raw_spin_unlock+0x2c/0x50
[  746.180018]  ? do_wp_page+0x77c/0x1690
[  746.183900]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  746.188561]  ? find_held_lock+0x36/0x1c0
[  746.192612]  ? lock_release+0x970/0x970
[  746.196576]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  746.202106]  ? kasan_check_write+0x14/0x20
[  746.206328]  ? do_raw_spin_lock+0xc1/0x200
[  746.210554]  ? __handle_mm_fault+0x9ab/0x53e0
[  746.215042]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  746.219871]  ? __sb_end_write+0xd9/0x110
[  746.223920]  ? graph_lock+0x170/0x170
[  746.227708]  ? print_usage_bug+0xc0/0xc0
[  746.231759]  ? atime_needs_update+0x710/0x710
[  746.236242]  ? graph_lock+0x170/0x170
[  746.240029]  ? graph_lock+0x170/0x170
[  746.243820]  ? find_held_lock+0x36/0x1c0
[  746.247878]  ? __do_page_fault+0x6b7/0xec0
[  746.252105]  _do_fork+0x1cb/0x11c0
[  746.255658]  ? fork_idle+0x1d0/0x1d0
[  746.259368]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  746.264896]  ? check_preemption_disabled+0x48/0x200
[  746.269906]  ? kasan_check_write+0x14/0x20
[  746.274126]  ? up_read+0x225/0x2c0
[  746.277655]  ? up_read_non_owner+0x100/0x100
[  746.282058]  ? find_vma+0x34/0x190
[  746.285769]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  746.291295]  ? __do_page_fault+0x49c/0xec0
[  746.295519]  ? do_syscall_64+0x9a/0x820
[  746.299483]  ? do_syscall_64+0x9a/0x820
[  746.303448]  ? lockdep_hardirqs_on+0x421/0x5c0
[  746.308039]  ? trace_hardirqs_on+0xbd/0x310
[  746.312351]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  746.317708]  ? trace_hardirqs_off_caller+0x300/0x300
[  746.322805]  __x64_sys_clone+0xbf/0x150
[  746.326771]  do_syscall_64+0x1b9/0x820
[  746.330665]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  746.336028]  ? syscall_return_slowpath+0x5e0/0x5e0
[  746.341032]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  746.345864]  ? trace_hardirqs_off+0x310/0x310
[  746.350347]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  746.355351]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  746.360897]  ? prepare_exit_to_usermode+0x291/0x3b0
[  746.365924]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  746.370765]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  746.375940] RIP: 0033:0x455c4a
[  746.379122] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  746.398371] RSP: 002b:00007ffdef61b280 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  746.406089] RAX: ffffffffffffffda RBX: 00007ffdef61b280 RCX: 0000000000455c4a
[  746.413347] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  746.420604] RBP: 00007ffdef61b2c0 R08: 0000000000000001 R09: 00000000021dc940
[  746.427861] R10: 00000000021dcc10 R11: 0000000000000246 R12: 0000000000000001
[  746.435115] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  746.444057] Memory limit reached of cgroup /syz1
[  746.449318] memory: usage 5260kB, limit 0kB, failcnt 255242
[  746.455192] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  746.462197] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  746.468661] Memory cgroup stats for /syz1: cache:112KB rss:0KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:44KB inactive_file:0KB active_file:0KB unevictable:0KB
[  746.488779] Out of memory and no killable processes...
[  746.495385] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  746.508369] syz-executor1 cpuset=syz1 mems_allowed=0
[  746.513510] CPU: 0 PID: 29135 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  746.521980] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  746.531340] Call Trace:
[  746.533921]  dump_stack+0x1d3/0x2c4
[  746.537539]  ? dump_stack_print_info.cold.2+0x52/0x52
[  746.542744]  dump_header+0x27b/0xf72
[  746.546448]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  746.551452]  ? kasan_check_read+0x11/0x20
[  746.555596]  ? pagefault_out_of_memory+0x197/0x197
[  746.560518]  ? rcu_read_unlock+0x33/0x60
[  746.564569]  ? mem_cgroup_iter+0x514/0x1160
[  746.568879]  ? find_held_lock+0x36/0x1c0
[  746.572928]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  746.577669]  ? mark_held_locks+0xc7/0x130
[  746.581810]  ? _raw_spin_unlock_irq+0x27/0x80
[  746.586288]  ? _raw_spin_unlock_irq+0x27/0x80
[  746.590771]  ? lockdep_hardirqs_on+0x421/0x5c0
[  746.595391]  ? trace_hardirqs_on+0xbd/0x310
[  746.599701]  ? kasan_check_read+0x11/0x20
[  746.603837]  ? css_task_iter_end+0x222/0x490
[  746.608240]  ? trace_hardirqs_off_caller+0x300/0x300
[  746.613329]  ? kasan_check_write+0x14/0x20
[  746.617551]  ? do_raw_spin_lock+0xc1/0x200
[  746.621774]  ? _raw_spin_unlock_irq+0x60/0x80
[  746.626283]  ? css_task_iter_end+0x2ce/0x490
[  746.630680]  ? cgroup_procs_next+0x70/0x70
[  746.634906]  ? _raw_spin_unlock_irq+0x60/0x80
[  746.639386]  ? oom_badness+0xaa0/0xaa0
[  746.643266]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  746.648011]  ? mem_cgroup_iter_break+0x30/0x30
[  746.652586]  ? mark_held_locks+0xc7/0x130
[  746.656720]  out_of_memory.cold.30+0xf/0x184
[  746.661112]  ? lockdep_hardirqs_on+0x421/0x5c0
[  746.665683]  ? kasan_check_read+0x11/0x20
[  746.669819]  ? oom_killer_disable+0x3a0/0x3a0
[  746.674306]  ? kasan_check_write+0x14/0x20
[  746.678531]  ? do_raw_spin_lock+0xc1/0x200
[  746.682768]  mem_cgroup_out_of_memory+0x15e/0x210
[  746.687604]  ? memcg_memory_event+0x40/0x40
[  746.691917]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  746.696772]  ? page_counter_try_charge+0x1c1/0x220
[  746.701704]  try_charge+0xb1a/0x1690
[  746.705428]  ? lock_downgrade+0x900/0x900
[  746.709568]  ? check_preemption_disabled+0x48/0x200
[  746.714581]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  746.720632]  ? find_held_lock+0x36/0x1c0
[  746.724686]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  746.729518]  ? lock_downgrade+0x900/0x900
[  746.733653]  ? check_preemption_disabled+0x48/0x200
[  746.738661]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  746.743577]  ? kasan_check_read+0x11/0x20
[  746.747710]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  746.753065]  ? rcu_softirq_qs+0x20/0x20
[  746.757037]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  746.761873]  memcg_kmem_charge_memcg+0x7c/0x120
[  746.766532]  ? memcg_kmem_put_cache+0xb0/0xb0
[  746.771017]  ? kasan_kmalloc+0xc7/0xe0
[  746.774892]  ? kmem_cache_alloc+0x12e/0x730
[  746.779205]  ? __pmd_alloc+0xc2/0x450
[  746.782994]  ? copy_page_range+0x6cf/0x26f0
[  746.787312]  memcg_kmem_charge+0x135/0x300
[  746.791551]  __alloc_pages_nodemask+0x89c/0xdd0
[  746.796257]  ? find_held_lock+0x36/0x1c0
[  746.800318]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  746.805337]  ? find_held_lock+0x36/0x1c0
[  746.809398]  ? lock_downgrade+0x900/0x900
[  746.813565]  ? __lock_is_held+0xb5/0x140
[  746.817620]  ? kasan_check_read+0x11/0x20
[  746.821764]  ? do_raw_spin_unlock+0xa7/0x2f0
[  746.826164]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  746.830748]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  746.836283]  alloc_pages_current+0x10c/0x210
[  746.840682]  pte_alloc_one+0x1b/0x1a0
[  746.844493]  __pte_alloc+0x2a/0x350
[  746.848113]  copy_page_range+0x18a2/0x26f0
[  746.852337]  ? rb_insert_color_cached+0x14b0/0x14b0
[  746.857354]  ? pmd_alloc+0x180/0x180
[  746.861058]  ? graph_lock+0x170/0x170
[  746.864845]  ? kasan_slab_alloc+0x12/0x20
[  746.868978]  ? kmem_cache_alloc+0x12e/0x730
[  746.873286]  ? graph_lock+0x170/0x170
[  746.877097]  ? __x64_sys_clone+0xbf/0x150
[  746.881237]  ? do_syscall_64+0x1b9/0x820
[  746.885283]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  746.890643]  ? find_held_lock+0x36/0x1c0
[  746.894700]  ? anon_vma_fork+0x5ef/0x820
[  746.898748]  ? lock_downgrade+0x900/0x900
[  746.902887]  ? lock_release+0x970/0x970
[  746.906847]  ? ttwu_stat+0x5c0/0x5c0
[  746.910558]  ? __lock_is_held+0xb5/0x140
[  746.914616]  ? up_write+0x7b/0x220
[  746.918149]  ? down_write_nested+0x130/0x130
[  746.922550]  ? anon_vma_interval_tree_insert+0x2c9/0x370
[  746.928002]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  746.933130]  ? vma_compute_subtree_gap+0x160/0x240
[  746.938051]  ? validate_mm_rb+0xaa/0xc0
[  746.942015]  ? __vma_link_rb+0x26c/0x370
[  746.946067]  copy_process+0x4720/0x8780
[  746.950060]  ? __cleanup_sighand+0x70/0x70
[  746.954288]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  746.959817]  ? page_trans_huge_map_swapcount+0xbae/0x1270
[  746.965364]  ? page_swapcount+0x1d0/0x1d0
[  746.969506]  ? try_to_wake_up+0x10a/0x12f0
[  746.973731]  ? lock_downgrade+0x900/0x900
[  746.977885]  ? lock_downgrade+0x900/0x900
[  746.982027]  ? trace_hardirqs_off+0xb8/0x310
[  746.986420]  ? kasan_check_read+0x11/0x20
[  746.990559]  ? trace_hardirqs_on_caller+0x310/0x310
[  746.995593]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  747.000688]  ? try_to_wake_up+0x10a/0x12f0
[  747.004918]  ? print_usage_bug+0xc0/0xc0
[  747.008968]  ? migrate_swap_stop+0x930/0x930
[  747.013365]  ? __handle_mm_fault+0x9ab/0x53e0
[  747.017851]  ? graph_lock+0x170/0x170
[  747.021640]  ? print_usage_bug+0xc0/0xc0
[  747.025692]  ? __lock_acquire+0x7ec/0x4ec0
[  747.029922]  ? print_usage_bug+0xc0/0xc0
[  747.034010]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  747.039535]  ? reuse_swap_page+0x4bd/0x1520
[  747.043869]  ? swp_swapcount+0x530/0x530
[  747.047929]  ? __lock_acquire+0x7ec/0x4ec0
[  747.052152]  ? mark_held_locks+0x130/0x130
[  747.056376]  ? rcu_softirq_qs+0x20/0x20
[  747.060341]  ? __lock_acquire+0x7ec/0x4ec0
[  747.064570]  ? mark_held_locks+0x130/0x130
[  747.068795]  ? graph_lock+0x170/0x170
[  747.072603]  ? mark_held_locks+0x130/0x130
[  747.076850]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  747.082377]  ? check_preemption_disabled+0x48/0x200
[  747.087403]  ? find_held_lock+0x36/0x1c0
[  747.091465]  ? do_wp_page+0xa6f/0x1690
[  747.095341]  ? lock_downgrade+0x900/0x900
[  747.099479]  ? wake_up_page_bit+0x6f0/0x6f0
[  747.103790]  ? kasan_check_read+0x11/0x20
[  747.107928]  ? do_raw_spin_unlock+0xa7/0x2f0
[  747.112329]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  747.116901]  ? pgd_free+0x380/0x380
[  747.120515]  ? __lock_acquire+0x7ec/0x4ec0
[  747.124761]  ? _raw_spin_unlock+0x2c/0x50
[  747.128899]  ? do_wp_page+0x77c/0x1690
[  747.132777]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  747.137436]  ? find_held_lock+0x36/0x1c0
[  747.141487]  ? lock_release+0x970/0x970
[  747.145461]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  747.150992]  ? kasan_check_write+0x14/0x20
[  747.155221]  ? do_raw_spin_lock+0xc1/0x200
[  747.159455]  ? __handle_mm_fault+0x9ab/0x53e0
[  747.163939]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  747.168772]  ? __sb_end_write+0xd9/0x110
[  747.172822]  ? graph_lock+0x170/0x170
[  747.176610]  ? print_usage_bug+0xc0/0xc0
[  747.180660]  ? atime_needs_update+0x710/0x710
[  747.185144]  ? graph_lock+0x170/0x170
[  747.188931]  ? graph_lock+0x170/0x170
[  747.192723]  ? find_held_lock+0x36/0x1c0
[  747.196775]  ? __do_page_fault+0x6b7/0xec0
[  747.201001]  _do_fork+0x1cb/0x11c0
[  747.204531]  ? fork_idle+0x1d0/0x1d0
[  747.208235]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  747.213763]  ? check_preemption_disabled+0x48/0x200
[  747.218771]  ? kasan_check_write+0x14/0x20
[  747.222994]  ? up_read+0x225/0x2c0
[  747.226522]  ? up_read_non_owner+0x100/0x100
[  747.230921]  ? find_vma+0x34/0x190
[  747.234450]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  747.239975]  ? __do_page_fault+0x49c/0xec0
[  747.244204]  ? do_syscall_64+0x9a/0x820
[  747.248170]  ? do_syscall_64+0x9a/0x820
[  747.252138]  ? lockdep_hardirqs_on+0x421/0x5c0
[  747.256710]  ? trace_hardirqs_on+0xbd/0x310
[  747.261021]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  747.266371]  ? trace_hardirqs_off_caller+0x300/0x300
[  747.271467]  __x64_sys_clone+0xbf/0x150
[  747.275434]  do_syscall_64+0x1b9/0x820
[  747.279336]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  747.284691]  ? syscall_return_slowpath+0x5e0/0x5e0
[  747.289611]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  747.294453]  ? trace_hardirqs_off+0x310/0x310
[  747.298939]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  747.303968]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  747.309494]  ? prepare_exit_to_usermode+0x291/0x3b0
[  747.314500]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  747.319334]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  747.324510] RIP: 0033:0x455c4a
[  747.327691] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[  747.346581] RSP: 002b:00007ffdef61b280 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  747.354277] RAX: ffffffffffffffda RBX: 00007ffdef61b280 RCX: 0000000000455c4a
[  747.361531] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  747.368788] RBP: 00007ffdef61b2c0 R08: 0000000000000001 R09: 00000000021dc940
[  747.376042] R10: 00000000021dcc10 R11: 0000000000000246 R12: 0000000000000001
[  747.383297] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  747.395040] Memory limit reached of cgroup /syz1
[  747.400230] memory: usage 5260kB, limit 0kB, failcnt 255250
[  747.405951] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  747.412767] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  747.418949] Memory cgroup stats for /syz1: cache:112KB rss:0KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:44KB inactive_file:0KB active_file:0KB unevictable:0KB
[  747.438957] Out of memory and no killable processes...
[  747.445444] syz-executor1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=-1000
[  747.456758] syz-executor1 cpuset=syz1 mems_allowed=0
[  747.462032] CPU: 0 PID: 29135 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  747.470513] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  747.479853] Call Trace:
[  747.482430]  dump_stack+0x1d3/0x2c4
[  747.486047]  ? dump_stack_print_info.cold.2+0x52/0x52
[  747.491233]  dump_header+0x27b/0xf72
[  747.494936]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  747.499872]  ? kasan_check_read+0x11/0x20
[  747.504014]  ? pagefault_out_of_memory+0x197/0x197
[  747.508941]  ? rcu_read_unlock+0x33/0x60
[  747.512992]  ? mem_cgroup_iter+0x514/0x1160
[  747.517304]  ? find_held_lock+0x36/0x1c0
[  747.521358]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  747.526099]  ? mark_held_locks+0xc7/0x130
[  747.530241]  ? _raw_spin_unlock_irq+0x27/0x80
[  747.534727]  ? _raw_spin_unlock_irq+0x27/0x80
[  747.539211]  ? lockdep_hardirqs_on+0x421/0x5c0
[  747.543784]  ? trace_hardirqs_on+0xbd/0x310
[  747.548094]  ? kasan_check_read+0x11/0x20
[  747.552229]  ? css_task_iter_end+0x222/0x490
[  747.556624]  ? trace_hardirqs_off_caller+0x300/0x300
[  747.561715]  ? kasan_check_write+0x14/0x20
[  747.565936]  ? do_raw_spin_lock+0xc1/0x200
[  747.570193]  ? _raw_spin_unlock_irq+0x60/0x80
[  747.574682]  ? css_task_iter_end+0x2ce/0x490
[  747.579084]  ? cgroup_procs_next+0x70/0x70
[  747.583308]  ? _raw_spin_unlock_irq+0x60/0x80
[  747.587795]  ? oom_badness+0xaa0/0xaa0
[  747.591672]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  747.596462]  ? mem_cgroup_iter_break+0x30/0x30
[  747.601049]  ? mark_held_locks+0xc7/0x130
[  747.605191]  out_of_memory.cold.30+0xf/0x184
[  747.609607]  ? lockdep_hardirqs_on+0x421/0x5c0
[  747.614185]  ? kasan_check_read+0x11/0x20
[  747.618323]  ? oom_killer_disable+0x3a0/0x3a0
[  747.622806]  ? kasan_check_write+0x14/0x20
[  747.627028]  ? do_raw_spin_lock+0xc1/0x200
[  747.631262]  mem_cgroup_out_of_memory+0x15e/0x210
[  747.636093]  ? memcg_memory_event+0x40/0x40
[  747.640402]  ? mem_cgroup_try_charge+0x5ea/0xe10
[  747.645149]  ? page_counter_try_charge+0x1c1/0x220
[  747.650069]  try_charge+0xb1a/0x1690
[  747.653779]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  747.659825]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  747.664655]  ? lock_downgrade+0x900/0x900
[  747.668838]  ? check_preemption_disabled+0x48/0x200
[  747.673845]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  747.678762]  ? kasan_check_read+0x11/0x20
[  747.682899]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  747.688163]  ? rcu_softirq_qs+0x20/0x20
[  747.692139]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  747.696971]  ? mod_memcg_state+0x230/0x230
[  747.701222]  ? __lock_is_held+0xb5/0x140
[  747.705280]  mem_cgroup_try_charge+0x5ea/0xe10
[  747.709853]  ? mem_cgroup_protected+0xa60/0xa60
[  747.714515]  ? print_usage_bug+0xc0/0xc0
[  747.718569]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  747.724091]  ? reuse_swap_page+0x4bd/0x1520
[  747.728402]  ? swp_swapcount+0x530/0x530
[  747.732496]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  747.738030]  mem_cgroup_try_charge_delay+0x1d/0xa0
[  747.742953]  wp_page_copy+0x492/0x18a0
[  747.746827]  ? enqueue_entity+0x34b/0x2000
[  747.751058]  ? pmd_pfn+0x1c0/0x1c0
[  747.754594]  ? find_held_lock+0x36/0x1c0
[  747.758667]  ? do_wp_page+0x76c/0x1690
[  747.762549]  ? lock_downgrade+0x900/0x900
[  747.766693]  ? kasan_check_write+0x14/0x20
[  747.770918]  ? kasan_check_read+0x11/0x20
[  747.775053]  ? do_raw_spin_unlock+0xa7/0x2f0
[  747.779450]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  747.784020]  ? __pte_alloc_kernel+0x220/0x220
[  747.788503]  ? __lock_acquire+0x7ec/0x4ec0
[  747.792728]  ? __lock_acquire+0x7ec/0x4ec0
[  747.796949]  do_wp_page+0x774/0x1690
[  747.800656]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  747.805318]  ? lock_release+0x970/0x970
[  747.809284]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  747.814814]  ? kasan_check_write+0x14/0x20
[  747.819040]  ? do_raw_spin_lock+0xc1/0x200
[  747.823265]  __handle_mm_fault+0x2c60/0x53e0
[  747.827668]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  747.832504]  ? graph_lock+0x170/0x170
[  747.836289]  ? print_usage_bug+0xc0/0xc0
[  747.840340]  ? wake_up_new_task+0x6fb/0xd20
[  747.844651]  ? kasan_check_read+0x11/0x20
[  747.848788]  ? graph_lock+0x170/0x170
[  747.852575]  ? graph_lock+0x170/0x170
[  747.856376]  ? handle_mm_fault+0x42a/0xc70
[  747.860603]  ? lock_downgrade+0x900/0x900
[  747.864764]  ? check_preemption_disabled+0x48/0x200
[  747.869776]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  747.874696]  ? kasan_check_read+0x11/0x20
[  747.878860]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  747.884147]  ? rcu_softirq_qs+0x20/0x20
[  747.888115]  ? trace_hardirqs_off_caller+0x300/0x300
[  747.893208]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  747.898733]  ? check_preemption_disabled+0x48/0x200
[  747.903743]  handle_mm_fault+0x54f/0xc70
[  747.907796]  ? __handle_mm_fault+0x53e0/0x53e0
[  747.912367]  ? find_vma+0x34/0x190
[  747.915898]  __do_page_fault+0x673/0xec0
[  747.919956]  ? mm_fault_error+0x380/0x380
[  747.924098]  ? trace_hardirqs_off+0xb8/0x310
[  747.928500]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  747.933856]  ? trace_hardirqs_on_caller+0x310/0x310
[  747.938886]  do_page_fault+0xed/0x7d1
[  747.942680]  ? vmalloc_sync_all+0x30/0x30
[  747.946822]  ? error_entry+0x70/0xd0
[  747.950532]  ? trace_hardirqs_off_caller+0xbb/0x300
[  747.955539]  ? trace_hardirqs_on_caller+0xc0/0x310
[  747.960461]  ? syscall_return_slowpath+0x5e0/0x5e0
[  747.965377]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  747.970213]  ? trace_hardirqs_off+0x310/0x310
[  747.974698]  ? __bpf_trace_preemptirq_template+0x30/0x30
[  747.980142]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  747.985148]  ? prepare_exit_to_usermode+0x291/0x3b0
[  747.990157]  ? page_fault+0x8/0x30
[  747.993695]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  747.998530]  ? page_fault+0x8/0x30
[  748.002059]  page_fault+0x1e/0x30
[  748.005499] RIP: 0033:0x455d6e
[  748.008686] Code: 5c 41 5d 41 5e 5d c3 48 c7 c2 d4 ff ff ff f7 d8 41 bd ff ff ff ff 64 89 02 64 8b 04 25 d0 02 00 00 41 39 c4 0f 85 2f 01 00 00 <64> 44 89 04 25 d4 02 00 00 45 85 f6 0f 85 7f 00 00 00 48 85 db 74
[  748.027584] RSP: 002b:00007ffdef61b280 EFLAGS: 00010246
[  748.032943] RAX: 0000000000000001 RBX: 00007ffdef61b280 RCX: 0000000000455c4a
[  748.040208] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  748.047474] RBP: 00007ffdef61b2c0 R08: 0000000000000001 R09: 00000000021dc940
[  748.054758] R10: 00000000021dcc10 R11: 0000000000000246 R12: 0000000000000001
[  748.062026] R13: 0000000000000100 R14: 0000000000000000 R15: badc0ffeebadface
[  748.070850] Memory limit reached of cgroup /syz1
[  748.075682] memory: usage 5264kB, limit 0kB, failcnt 255266
[  748.081523] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  748.088332] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  748.094463] Memory cgroup stats for /syz1: cache:112KB rss:0KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:44KB inactive_file:0KB active_file:0KB unevictable:0KB
[  748.114485] Out of memory and no killable processes...
[  748.119889] syz-executor1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=-1000
[  748.131321] syz-executor1 cpuset=syz1 mems_allowed=0
[  748.136466] CPU: 1 PID: 29436 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  748.144966] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  748.154447] Call Trace:
[  748.157038]  dump_stack+0x1d3/0x2c4
[  748.160658]  ? dump_stack_print_info.cold.2+0x52/0x52
[  748.165854]  dump_header+0x27b/0xf72
[  748.169603]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  748.174525]  ? kasan_check_read+0x11/0x20
[  748.178670]  ? pagefault_out_of_memory+0x197/0x197
[  748.183602]  ? rcu_read_unlock+0x33/0x60
[  748.187655]  ? mem_cgroup_iter+0x514/0x1160
[  748.191977]  ? find_held_lock+0x36/0x1c0
[  748.196033]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  748.200796]  ? mark_held_locks+0xc7/0x130
[  748.204933]  ? _raw_spin_unlock_irq+0x27/0x80
[  748.209439]  ? _raw_spin_unlock_irq+0x27/0x80
[  748.213926]  ? lockdep_hardirqs_on+0x421/0x5c0
[  748.218500]  ? trace_hardirqs_on+0xbd/0x310
[  748.222810]  ? kasan_check_read+0x11/0x20
[  748.226946]  ? css_task_iter_end+0x222/0x490
[  748.231353]  ? trace_hardirqs_off_caller+0x300/0x300
[  748.236447]  ? kasan_check_write+0x14/0x20
[  748.240668]  ? do_raw_spin_lock+0xc1/0x200
[  748.244900]  ? _raw_spin_unlock_irq+0x60/0x80
[  748.249388]  ? css_task_iter_end+0x2ce/0x490
[  748.253788]  ? cgroup_procs_next+0x70/0x70
[  748.258011]  ? _raw_spin_unlock_irq+0x60/0x80
[  748.262497]  ? oom_badness+0xaa0/0xaa0
[  748.266374]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  748.271123]  ? mem_cgroup_iter_break+0x30/0x30
[  748.275705]  ? mark_held_locks+0xc7/0x130
[  748.279861]  out_of_memory.cold.30+0xf/0x184
[  748.284499]  ? lockdep_hardirqs_on+0x421/0x5c0
[  748.289072]  ? kasan_check_read+0x11/0x20
[  748.293212]  ? oom_killer_disable+0x3a0/0x3a0
[  748.297697]  ? kasan_check_write+0x14/0x20
[  748.301920]  ? do_raw_spin_lock+0xc1/0x200
[  748.306149]  mem_cgroup_out_of_memory+0x15e/0x210
[  748.310982]  ? memcg_memory_event+0x40/0x40
[  748.315301]  ? mem_cgroup_try_charge+0x5ea/0xe10
[  748.320051]  ? page_counter_try_charge+0x1c1/0x220
[  748.324970]  try_charge+0xb1a/0x1690
[  748.328686]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  748.334730]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  748.339562]  ? lock_downgrade+0x900/0x900
[  748.343701]  ? check_preemption_disabled+0x48/0x200
[  748.348711]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  748.353631]  ? kasan_check_read+0x11/0x20
[  748.357766]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  748.363031]  ? rcu_softirq_qs+0x20/0x20
[  748.367002]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  748.371837]  ? mod_memcg_state+0x230/0x230
[  748.376090]  ? __lock_is_held+0xb5/0x140
[  748.380150]  mem_cgroup_try_charge+0x5ea/0xe10
[  748.384723]  ? mem_cgroup_protected+0xa60/0xa60
[  748.389406]  ? print_usage_bug+0xc0/0xc0
[  748.393462]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  748.398991]  ? reuse_swap_page+0x4bd/0x1520
[  748.403305]  ? swp_swapcount+0x530/0x530
[  748.408802]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  748.414335]  mem_cgroup_try_charge_delay+0x1d/0xa0
[  748.419272]  wp_page_copy+0x492/0x18a0
[  748.423153]  ? pmd_pfn+0x1c0/0x1c0
[  748.426693]  ? find_held_lock+0x36/0x1c0
[  748.430748]  ? do_wp_page+0x76c/0x1690
[  748.434629]  ? lock_downgrade+0x900/0x900
[  748.438769]  ? kasan_check_write+0x14/0x20
[  748.442991]  ? kasan_check_read+0x11/0x20
[  748.447129]  ? do_raw_spin_unlock+0xa7/0x2f0
[  748.451530]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  748.456121]  ? __pte_alloc_kernel+0x220/0x220
[  748.460604]  ? __lock_acquire+0x7ec/0x4ec0
[  748.464828]  ? __lock_acquire+0x7ec/0x4ec0
[  748.469074]  do_wp_page+0x774/0x1690
[  748.472781]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  748.477446]  ? lock_release+0x970/0x970
[  748.481418]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  748.486952]  ? kasan_check_write+0x14/0x20
[  748.491178]  ? do_raw_spin_lock+0xc1/0x200
[  748.495408]  __handle_mm_fault+0x2c60/0x53e0
[  748.499809]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  748.504667]  ? graph_lock+0x170/0x170
[  748.508473]  ? print_usage_bug+0xc0/0xc0
[  748.512530]  ? __lock_acquire+0x7ec/0x4ec0
[  748.516754]  ? graph_lock+0x170/0x170
[  748.520544]  ? graph_lock+0x170/0x170
[  748.524370]  ? handle_mm_fault+0x42a/0xc70
[  748.528597]  ? lock_downgrade+0x900/0x900
[  748.532735]  ? check_preemption_disabled+0x48/0x200
[  748.537741]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  748.542657]  ? kasan_check_read+0x11/0x20
[  748.546798]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  748.552066]  ? rcu_softirq_qs+0x20/0x20
[  748.556032]  ? trace_hardirqs_off_caller+0x300/0x300
[  748.561152]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  748.566688]  ? check_preemption_disabled+0x48/0x200
[  748.571708]  handle_mm_fault+0x54f/0xc70
[  748.575759]  ? __handle_mm_fault+0x53e0/0x53e0
[  748.580329]  ? find_vma+0x34/0x190
[  748.583860]  __do_page_fault+0x673/0xec0
[  748.587918]  ? mm_fault_error+0x380/0x380
[  748.592067]  ? graph_lock+0x170/0x170
[  748.595869]  do_page_fault+0xed/0x7d1
[  748.599659]  ? vmalloc_sync_all+0x30/0x30
[  748.603799]  ? error_entry+0x76/0xd0
[  748.607515]  ? trace_hardirqs_off_caller+0xbb/0x300
[  748.612540]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  748.617386]  ? trace_hardirqs_off+0x310/0x310
[  748.621889]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  748.626824]  ? kasan_check_read+0x11/0x20
[  748.630968]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  748.635827]  page_fault+0x1e/0x30
[  748.639272] RIP: 0010:__put_user_4+0x1c/0x30
[  748.643676] Code: 1f 00 c3 90 66 2e 0f 1f 84 00 00 00 00 00 65 48 8b 1c 25 40 ee 01 00 48 8b 9b 18 14 00 00 48 83 eb 03 48 39 d9 73 3c 0f 1f 00 <89> 01 31 c0 0f 1f 00 c3 66 90 66 2e 0f 1f 84 00 00 00 00 00 65 48
[  748.662592] RSP: 0018:ffff8801953bff30 EFLAGS: 00010293
[  748.667966] RAX: 0000000000000100 RBX: 00007fffffffeffd RCX: 00000000021dcc10
[  748.675228] RDX: dffffc0000000000 RSI: 0000000000000001 RDI: ffff88018f0ac6e8
[  748.682484] RBP: ffff8801953bff48 R08: 0000000000000000 R09: ffffed003b5a5b57
[  748.689741] R10: ffffed003b5a5b57 R11: ffff8801dad2dabb R12: 0000000000000000
[  748.696997] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  748.704279]  ? schedule_tail+0xd8/0x130
[  748.708247]  ret_from_fork+0x8/0x50
[  748.711860] RIP: 0033:0x455c4a
[  748.715061] Code: Bad RIP value.
[  748.718409] RSP: 002b:00007ffdef61b280 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  748.726107] RAX: 0000000000000000 RBX: 00007ffdef61b280 RCX: 0000000000455c4a
[  748.733363] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  748.740645] RBP: 00007ffdef61b2c0 R08: 0000000000000001 R09: 00000000021dc940
[  748.747913] R10: 00000000021dcc10 R11: 0000000000000246 R12: 0000000000000001
[  748.755185] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  748.764238] Memory limit reached of cgroup /syz1
[  748.769136] memory: usage 5220kB, limit 0kB, failcnt 255274
[  748.774856] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  748.781669] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  748.787858] Memory cgroup stats for /syz1: cache:112KB rss:0KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:48KB inactive_file:0KB active_file:0KB unevictable:0KB
[  748.807865] Out of memory and no killable processes...
[  748.813260] syz-executor1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=-1000
[  748.824666] syz-executor1 cpuset=syz1 mems_allowed=0
[  748.829887] CPU: 0 PID: 29135 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  748.838389] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  748.847746] Call Trace:
[  748.850325]  dump_stack+0x1d3/0x2c4
[  748.853946]  ? dump_stack_print_info.cold.2+0x52/0x52
[  748.859134]  dump_header+0x27b/0xf72
[  748.862838]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  748.867757]  ? kasan_check_read+0x11/0x20
[  748.871918]  ? pagefault_out_of_memory+0x197/0x197
[  748.876844]  ? rcu_read_unlock+0x33/0x60
[  748.880895]  ? mem_cgroup_iter+0x514/0x1160
[  748.885207]  ? find_held_lock+0x36/0x1c0
[  748.889259]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  748.894006]  ? mark_held_locks+0xc7/0x130
[  748.898145]  ? _raw_spin_unlock_irq+0x27/0x80
[  748.902630]  ? _raw_spin_unlock_irq+0x27/0x80
[  748.907116]  ? lockdep_hardirqs_on+0x421/0x5c0
[  748.911692]  ? trace_hardirqs_on+0xbd/0x310
[  748.916003]  ? kasan_check_read+0x11/0x20
[  748.920139]  ? css_task_iter_end+0x222/0x490
[  748.924539]  ? trace_hardirqs_off_caller+0x300/0x300
[  748.929681]  ? kasan_check_write+0x14/0x20
[  748.933914]  ? do_raw_spin_lock+0xc1/0x200
[  748.938145]  ? _raw_spin_unlock_irq+0x60/0x80
[  748.942628]  ? css_task_iter_end+0x2ce/0x490
[  748.947023]  ? cgroup_procs_next+0x70/0x70
[  748.951246]  ? _raw_spin_unlock_irq+0x60/0x80
[  748.955731]  ? oom_badness+0xaa0/0xaa0
[  748.959610]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  748.964359]  ? mem_cgroup_iter_break+0x30/0x30
[  748.968940]  ? mark_held_locks+0xc7/0x130
[  748.973083]  out_of_memory.cold.30+0xf/0x184
[  748.977494]  ? lockdep_hardirqs_on+0x421/0x5c0
[  748.982078]  ? kasan_check_read+0x11/0x20
[  748.986216]  ? oom_killer_disable+0x3a0/0x3a0
[  748.990701]  ? kasan_check_write+0x14/0x20
[  748.994923]  ? do_raw_spin_lock+0xc1/0x200
[  748.999158]  mem_cgroup_out_of_memory+0x15e/0x210
[  749.004000]  ? memcg_memory_event+0x40/0x40
[  749.008308]  ? mem_cgroup_try_charge+0x5ea/0xe10
[  749.013056]  ? page_counter_try_charge+0x1c1/0x220
[  749.017980]  try_charge+0xb1a/0x1690
[  749.021699]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  749.027766]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  749.032601]  ? lock_downgrade+0x900/0x900
[  749.036738]  ? check_preemption_disabled+0x48/0x200
[  749.041760]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  749.046682]  ? kasan_check_read+0x11/0x20
[  749.050822]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  749.056088]  ? rcu_softirq_qs+0x20/0x20
[  749.060059]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  749.064918]  ? mod_memcg_state+0x230/0x230
[  749.069147]  ? __lock_is_held+0xb5/0x140
[  749.073212]  mem_cgroup_try_charge+0x5ea/0xe10
[  749.077790]  ? mem_cgroup_protected+0xa60/0xa60
[  749.082451]  ? print_usage_bug+0xc0/0xc0
[  749.086507]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  749.092035]  ? reuse_swap_page+0x4bd/0x1520
[  749.096347]  ? swp_swapcount+0x530/0x530
[  749.100398]  ? lock_downgrade+0x900/0x900
[  749.104543]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  749.110076]  mem_cgroup_try_charge_delay+0x1d/0xa0
[  749.114993]  wp_page_copy+0x492/0x18a0
[  749.118875]  ? pmd_pfn+0x1c0/0x1c0
[  749.122431]  ? find_held_lock+0x36/0x1c0
[  749.126484]  ? do_wp_page+0x76c/0x1690
[  749.130360]  ? lock_downgrade+0x900/0x900
[  749.134499]  ? kasan_check_write+0x14/0x20
[  749.138724]  ? kasan_check_read+0x11/0x20
[  749.142860]  ? do_raw_spin_unlock+0xa7/0x2f0
[  749.147274]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  749.151846]  ? __pte_alloc_kernel+0x220/0x220
[  749.156333]  ? __lock_acquire+0x7ec/0x4ec0
[  749.160558]  ? __lock_acquire+0x7ec/0x4ec0
[  749.164788]  do_wp_page+0x774/0x1690
[  749.168497]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  749.173202]  ? lock_release+0x970/0x970
[  749.177171]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  749.182708]  ? kasan_check_write+0x14/0x20
[  749.186931]  ? do_raw_spin_lock+0xc1/0x200
[  749.191162]  __handle_mm_fault+0x2c60/0x53e0
[  749.195577]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  749.200414]  ? graph_lock+0x170/0x170
[  749.204218]  ? print_usage_bug+0xc0/0xc0
[  749.208276]  ? wake_up_new_task+0x6fb/0xd20
[  749.212586]  ? kasan_check_read+0x11/0x20
[  749.216725]  ? graph_lock+0x170/0x170
[  749.220516]  ? graph_lock+0x170/0x170
[  749.224314]  ? handle_mm_fault+0x42a/0xc70
[  749.228542]  ? lock_downgrade+0x900/0x900
[  749.232683]  ? check_preemption_disabled+0x48/0x200
[  749.237698]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  749.242622]  ? kasan_check_read+0x11/0x20
[  749.246762]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  749.252030]  ? rcu_softirq_qs+0x20/0x20
[  749.255994]  ? trace_hardirqs_off_caller+0x300/0x300
[  749.261093]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  749.266625]  ? check_preemption_disabled+0x48/0x200
[  749.271640]  handle_mm_fault+0x54f/0xc70
[  749.275695]  ? __handle_mm_fault+0x53e0/0x53e0
[  749.280274]  ? find_vma+0x34/0x190
[  749.283809]  __do_page_fault+0x673/0xec0
[  749.287866]  ? mm_fault_error+0x380/0x380
[  749.292005]  ? trace_hardirqs_off+0xb8/0x310
[  749.296405]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  749.301802]  ? trace_hardirqs_on_caller+0x310/0x310
[  749.306850]  do_page_fault+0xed/0x7d1
[  749.310654]  ? vmalloc_sync_all+0x30/0x30
[  749.314816]  ? error_entry+0x70/0xd0
[  749.318529]  ? trace_hardirqs_off_caller+0xbb/0x300
[  749.323538]  ? trace_hardirqs_on_caller+0xc0/0x310
[  749.328485]  ? syscall_return_slowpath+0x5e0/0x5e0
[  749.333407]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  749.338251]  ? trace_hardirqs_off+0x310/0x310
[  749.342734]  ? __bpf_trace_preemptirq_template+0x30/0x30
[  749.348182]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  749.353198]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  749.358728]  ? prepare_exit_to_usermode+0x291/0x3b0
[  749.363733]  ? page_fault+0x8/0x30
[  749.367260]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  749.372095]  ? page_fault+0x8/0x30
[  749.375623]  page_fault+0x1e/0x30
[  749.379067] RIP: 0033:0x455daa
[  749.382251] Code: 48 85 db 74 b6 41 bc ca 00 00 00 eb 0c 0f 1f 00 48 8b 5b 08 48 85 db 74 a2 48 8b 3b 48 8b 47 10 48 85 c0 74 05 ff d0 48 8b 3b <f0> ff 4f 28 0f 94 c0 84 c0 74 db 8b 47 2c 85 c0 74 d4 45 31 d2 ba
[  749.401146] RSP: 002b:00007ffdef61b280 EFLAGS: 00010246
[  749.406505] RAX: 0000000000000000 RBX: 00007ffdef61b280 RCX: 0000000000455c4a
[  749.413765] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000a44cc8
[  749.421027] RBP: 00007ffdef61b2c0 R08: 0000000000000001 R09: 00000000021dc940
[  749.428295] R10: 00000000021dcc10 R11: 0000000000000246 R12: 00000000000000ca
[  749.435553] R13: 0000000000000100 R14: 0000000000000000 R15: badc0ffeebadface
[  749.444072] Memory limit reached of cgroup /syz1
[  749.448949] memory: usage 5220kB, limit 0kB, failcnt 255282
[  749.454648] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  749.461454] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  749.467640] Memory cgroup stats for /syz1: cache:112KB rss:0KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:48KB inactive_file:0KB active_file:0KB unevictable:0KB
[  749.487654] Out of memory and no killable processes...
[  749.493025] syz-executor1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=-1000
[  749.506087] syz-executor1 cpuset=syz1 mems_allowed=0
[  749.511377] CPU: 1 PID: 29436 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  749.519872] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  749.529211] Call Trace:
[  749.531794]  dump_stack+0x1d3/0x2c4
[  749.535416]  ? dump_stack_print_info.cold.2+0x52/0x52
[  749.540604]  dump_header+0x27b/0xf72
[  749.544308]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  749.549228]  ? kasan_check_read+0x11/0x20
[  749.553367]  ? pagefault_out_of_memory+0x197/0x197
[  749.558291]  ? rcu_read_unlock+0x33/0x60
[  749.562341]  ? mem_cgroup_iter+0x514/0x1160
[  749.566649]  ? find_held_lock+0x36/0x1c0
[  749.570703]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  749.575447]  ? mark_held_locks+0xc7/0x130
[  749.579587]  ? _raw_spin_unlock_irq+0x27/0x80
[  749.584067]  ? _raw_spin_unlock_irq+0x27/0x80
[  749.588551]  ? lockdep_hardirqs_on+0x421/0x5c0
[  749.593121]  ? trace_hardirqs_on+0xbd/0x310
[  749.597430]  ? kasan_check_read+0x11/0x20
[  749.601592]  ? css_task_iter_end+0x222/0x490
[  749.605992]  ? trace_hardirqs_off_caller+0x300/0x300
[  749.611106]  ? kasan_check_write+0x14/0x20
[  749.615333]  ? do_raw_spin_lock+0xc1/0x200
[  749.619559]  ? _raw_spin_unlock_irq+0x60/0x80
[  749.624043]  ? css_task_iter_end+0x2ce/0x490
[  749.628443]  ? cgroup_procs_next+0x70/0x70
[  749.632673]  ? _raw_spin_unlock_irq+0x60/0x80
[  749.637165]  ? oom_badness+0xaa0/0xaa0
[  749.641049]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  749.645795]  ? mem_cgroup_iter_break+0x30/0x30
[  749.650373]  ? mark_held_locks+0xc7/0x130
[  749.654511]  out_of_memory.cold.30+0xf/0x184
[  749.658931]  ? lockdep_hardirqs_on+0x421/0x5c0
[  749.663506]  ? kasan_check_read+0x11/0x20
[  749.667644]  ? oom_killer_disable+0x3a0/0x3a0
[  749.672128]  ? kasan_check_write+0x14/0x20
[  749.676352]  ? do_raw_spin_lock+0xc1/0x200
[  749.680583]  mem_cgroup_out_of_memory+0x15e/0x210
[  749.685418]  ? memcg_memory_event+0x40/0x40
[  749.689728]  ? memcg_kmem_charge_memcg+0x7c/0x120
[  749.694567]  ? page_counter_try_charge+0x1c1/0x220
[  749.699663]  try_charge+0xb1a/0x1690
[  749.703372]  ? lock_downgrade+0x900/0x900
[  749.707512]  ? check_preemption_disabled+0x48/0x200
[  749.712525]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  749.718576]  ? find_held_lock+0x36/0x1c0
[  749.722630]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  749.727465]  ? lock_downgrade+0x900/0x900
[  749.731622]  ? check_preemption_disabled+0x48/0x200
[  749.736629]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  749.741545]  ? kasan_check_read+0x11/0x20
[  749.745697]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  749.751076]  ? rcu_softirq_qs+0x20/0x20
[  749.755048]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  749.759901]  memcg_kmem_charge_memcg+0x7c/0x120
[  749.764562]  ? memcg_kmem_put_cache+0xb0/0xb0
[  749.769051]  ? print_usage_bug+0xc0/0xc0
[  749.773122]  memcg_kmem_charge+0x135/0x300
[  749.777353]  __alloc_pages_nodemask+0x89c/0xdd0
[  749.782032]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  749.787037]  ? __lock_acquire+0x7ec/0x4ec0
[  749.791262]  ? lock_release+0x970/0x970
[  749.795227]  ? mark_held_locks+0x130/0x130
[  749.799453]  ? mark_held_locks+0x130/0x130
[  749.803676]  ? do_raw_spin_lock+0xc1/0x200
[  749.807909]  ? __handle_mm_fault+0x9ab/0x53e0
[  749.812396]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  749.817926]  alloc_pages_current+0x10c/0x210
[  749.822349]  pte_alloc_one+0x1b/0x1a0
[  749.826162]  __handle_mm_fault+0x43f4/0x53e0
[  749.830562]  ? graph_lock+0x170/0x170
[  749.834353]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  749.839186]  ? graph_lock+0x170/0x170
[  749.842977]  ? print_usage_bug+0xc0/0xc0
[  749.847028]  ? graph_lock+0x170/0x170
[  749.850817]  ? graph_lock+0x170/0x170
[  749.854614]  ? handle_mm_fault+0x42a/0xc70
[  749.858837]  ? lock_downgrade+0x900/0x900
[  749.862973]  ? check_preemption_disabled+0x48/0x200
[  749.867998]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  749.872913]  ? kasan_check_read+0x11/0x20
[  749.877048]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  749.882340]  ? rcu_softirq_qs+0x20/0x20
[  749.886306]  ? trace_hardirqs_off_caller+0x300/0x300
[  749.891399]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  749.896929]  ? check_preemption_disabled+0x48/0x200
[  749.901940]  handle_mm_fault+0x54f/0xc70
[  749.905990]  ? __handle_mm_fault+0x53e0/0x53e0
[  749.910567]  ? find_vma+0x34/0x190
[  749.914097]  __do_page_fault+0x673/0xec0
[  749.918150]  ? mm_fault_error+0x380/0x380
[  749.922294]  do_page_fault+0xed/0x7d1
[  749.926082]  ? vmalloc_sync_all+0x30/0x30
[  749.930224]  ? error_entry+0x70/0xd0
[  749.933929]  ? trace_hardirqs_off_caller+0xbb/0x300
[  749.938949]  ? trace_hardirqs_on_caller+0xc0/0x310
[  749.943889]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  749.948725]  ? trace_hardirqs_off+0x310/0x310
[  749.953209]  ? __bpf_trace_preemptirq_template+0x30/0x30
[  749.958652]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  749.963673]  ? recalc_sigpending_tsk+0x180/0x180
[  749.968441]  ? kasan_check_write+0x14/0x20
[  749.972696]  ? page_fault+0x8/0x30
[  749.976231]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  749.981067]  ? page_fault+0x8/0x30
[  749.984597]  page_fault+0x1e/0x30
[  749.988039] RIP: 0033:0x455c4a
[  749.991232] Code: Bad RIP value.
[  749.994580] RSP: 002b:00007ffdef61b280 EFLAGS: 00010246
[  749.999932] RAX: 0000000000000000 RBX: 00007ffdef61b280 RCX: 0000000000455c4a
[  750.007190] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  750.014448] RBP: 00007ffdef61b2c0 R08: 0000000000000001 R09: 00000000021dc940
[  750.021703] R10: 00000000021dcc10 R11: 0000000000000246 R12: 0000000000000001
[  750.028959] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  750.038439] Memory limit reached of cgroup /syz1
[  750.043274] memory: usage 5224kB, limit 0kB, failcnt 255290
[  750.049082] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  750.055843] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  750.062040] Memory cgroup stats for /syz1: cache:112KB rss:0KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:48KB inactive_file:0KB active_file:0KB unevictable:0KB
[  750.082126] Out of memory and no killable processes...
[  750.087579] syz-executor1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=-1000
[  750.099292] syz-executor1 cpuset=syz1 mems_allowed=0
[  750.104427] CPU: 0 PID: 29135 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  750.112908] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  750.122252] Call Trace:
[  750.124830]  dump_stack+0x1d3/0x2c4
[  750.128444]  ? dump_stack_print_info.cold.2+0x52/0x52
[  750.133628]  dump_header+0x27b/0xf72
[  750.137329]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  750.142252]  ? kasan_check_read+0x11/0x20
[  750.146392]  ? pagefault_out_of_memory+0x197/0x197
[  750.151315]  ? rcu_read_unlock+0x33/0x60
[  750.155368]  ? mem_cgroup_iter+0x514/0x1160
[  750.159682]  ? find_held_lock+0x36/0x1c0
[  750.163736]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  750.168477]  ? mark_held_locks+0xc7/0x130
[  750.172616]  ? _raw_spin_unlock_irq+0x27/0x80
[  750.177095]  ? _raw_spin_unlock_irq+0x27/0x80
[  750.181582]  ? lockdep_hardirqs_on+0x421/0x5c0
[  750.186155]  ? trace_hardirqs_on+0xbd/0x310
[  750.190467]  ? kasan_check_read+0x11/0x20
[  750.194606]  ? css_task_iter_end+0x222/0x490
[  750.199007]  ? trace_hardirqs_off_caller+0x300/0x300
[  750.204099]  ? kasan_check_write+0x14/0x20
[  750.208319]  ? do_raw_spin_lock+0xc1/0x200
[  750.212547]  ? _raw_spin_unlock_irq+0x60/0x80
[  750.217026]  ? css_task_iter_end+0x2ce/0x490
[  750.221427]  ? cgroup_procs_next+0x70/0x70
[  750.225655]  ? _raw_spin_unlock_irq+0x60/0x80
[  750.230143]  ? oom_badness+0xaa0/0xaa0
[  750.234018]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  750.238768]  ? mem_cgroup_iter_break+0x30/0x30
[  750.243347]  ? mark_held_locks+0xc7/0x130
[  750.247487]  out_of_memory.cold.30+0xf/0x184
[  750.251882]  ? lockdep_hardirqs_on+0x421/0x5c0
[  750.256451]  ? kasan_check_read+0x11/0x20
[  750.260596]  ? oom_killer_disable+0x3a0/0x3a0
[  750.265081]  ? kasan_check_write+0x14/0x20
[  750.269301]  ? do_raw_spin_lock+0xc1/0x200
[  750.273534]  mem_cgroup_out_of_memory+0x15e/0x210
[  750.278367]  ? memcg_memory_event+0x40/0x40
[  750.282678]  ? mem_cgroup_try_charge+0x5ea/0xe10
[  750.287613]  ? page_counter_try_charge+0x1c1/0x220
[  750.292533]  try_charge+0xb1a/0x1690
[  750.296240]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  750.302286]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  750.307116]  ? lock_downgrade+0x900/0x900
[  750.311250]  ? check_preemption_disabled+0x48/0x200
[  750.316255]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  750.321172]  ? kasan_check_read+0x11/0x20
[  750.325318]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  750.330580]  ? rcu_softirq_qs+0x20/0x20
[  750.334550]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  750.339387]  ? mod_memcg_state+0x230/0x230
[  750.343612]  ? __lock_is_held+0xb5/0x140
[  750.347668]  mem_cgroup_try_charge+0x5ea/0xe10
[  750.352241]  ? mem_cgroup_protected+0xa60/0xa60
[  750.356898]  ? print_usage_bug+0xc0/0xc0
[  750.360952]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  750.366475]  ? reuse_swap_page+0x4bd/0x1520
[  750.370784]  ? swp_swapcount+0x530/0x530
[  750.374832]  ? lock_downgrade+0x900/0x900
[  750.378978]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  750.384512]  mem_cgroup_try_charge_delay+0x1d/0xa0
[  750.389429]  wp_page_copy+0x492/0x18a0
[  750.393652]  ? pmd_pfn+0x1c0/0x1c0
[  750.397193]  ? find_held_lock+0x36/0x1c0
[  750.401248]  ? do_wp_page+0x76c/0x1690
[  750.405123]  ? lock_downgrade+0x900/0x900
[  750.409260]  ? kasan_check_write+0x14/0x20
[  750.413480]  ? kasan_check_read+0x11/0x20
[  750.417616]  ? do_raw_spin_unlock+0xa7/0x2f0
[  750.422025]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  750.426596]  ? __pte_alloc_kernel+0x220/0x220
[  750.431084]  ? __lock_acquire+0x7ec/0x4ec0
[  750.435307]  ? __lock_acquire+0x7ec/0x4ec0
[  750.439534]  do_wp_page+0x774/0x1690
[  750.443248]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  750.447911]  ? lock_release+0x970/0x970
[  750.451879]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  750.457415]  ? kasan_check_write+0x14/0x20
[  750.461657]  ? do_raw_spin_lock+0xc1/0x200
[  750.465908]  __handle_mm_fault+0x2c60/0x53e0
[  750.470336]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  750.475171]  ? graph_lock+0x170/0x170
[  750.478971]  ? print_usage_bug+0xc0/0xc0
[  750.483022]  ? wake_up_new_task+0x6fb/0xd20
[  750.487356]  ? kasan_check_read+0x11/0x20
[  750.491495]  ? graph_lock+0x170/0x170
[  750.495279]  ? graph_lock+0x170/0x170
[  750.499081]  ? handle_mm_fault+0x42a/0xc70
[  750.503304]  ? lock_downgrade+0x900/0x900
[  750.507438]  ? check_preemption_disabled+0x48/0x200
[  750.512443]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  750.517367]  ? kasan_check_read+0x11/0x20
[  750.521518]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  750.526801]  ? rcu_softirq_qs+0x20/0x20
[  750.530768]  ? trace_hardirqs_off_caller+0x300/0x300
[  750.535860]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  750.541392]  ? check_preemption_disabled+0x48/0x200
[  750.546400]  handle_mm_fault+0x54f/0xc70
[  750.550451]  ? __handle_mm_fault+0x53e0/0x53e0
[  750.555021]  ? find_vma+0x34/0x190
[  750.558559]  __do_page_fault+0x673/0xec0
[  750.562618]  ? mm_fault_error+0x380/0x380
[  750.566782]  ? trace_hardirqs_off+0xb8/0x310
[  750.571195]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  750.576551]  ? trace_hardirqs_on_caller+0x310/0x310
[  750.581562]  do_page_fault+0xed/0x7d1
[  750.585358]  ? vmalloc_sync_all+0x30/0x30
[  750.589499]  ? error_entry+0x70/0xd0
[  750.593203]  ? trace_hardirqs_off_caller+0xbb/0x300
[  750.598211]  ? trace_hardirqs_on_caller+0xc0/0x310
[  750.603128]  ? syscall_return_slowpath+0x5e0/0x5e0
[  750.608053]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  750.612883]  ? trace_hardirqs_off+0x310/0x310
[  750.617376]  ? __bpf_trace_preemptirq_template+0x30/0x30
[  750.622840]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  750.627845]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  750.633371]  ? prepare_exit_to_usermode+0x291/0x3b0
[  750.638377]  ? page_fault+0x8/0x30
[  750.641913]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  750.646749]  ? page_fault+0x8/0x30
[  750.650303]  page_fault+0x1e/0x30
[  750.653746] RIP: 0033:0x40b49f
[  750.656928] Code: 3d d5 cb 31 00 00 0f 85 9c 04 00 00 e8 ea a6 04 00 85 c0 89 c5 0f 88 d6 03 00 00 0f 84 76 02 00 00 89 c6 bf 9b d1 4b 00 31 c0 <e8> cc 63 ff ff c7 04 24 00 00 00 00 e8 e0 78 ff ff 49 89 c5 48 8b
[  750.675846] RSP: 002b:00007ffdef61b2d0 EFLAGS: 00010246
[  750.681204] RAX: 0000000000000000 RBX: 0000000000000001 RCX: 0000000000455c4a
[  750.688460] RDX: 0000000000000000 RSI: 0000000000000100 RDI: 00000000004bd19b
[  750.695744] RBP: 0000000000000100 R08: 0000000000000001 R09: 00000000021dc940
[  750.703005] R10: 00000000021dcc10 R11: 0000000000000246 R12: 0000000000000003
[  750.710266] R13: 00000000000aecd6 R14: 0000000000000001 R15: badc0ffeebadface
[  750.718840] Memory limit reached of cgroup /syz1
[  750.723660] memory: usage 5228kB, limit 0kB, failcnt 255298
[  750.729483] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  750.736253] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  750.742475] Memory cgroup stats for /syz1: cache:112KB rss:0KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:52KB inactive_file:0KB active_file:0KB unevictable:0KB
[  750.762572] Out of memory and no killable processes...
[  750.767999] syz-executor1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=-1000
[  750.779319] syz-executor1 cpuset=syz1 mems_allowed=0
[  750.784436] CPU: 1 PID: 29436 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  750.792915] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  750.802267] Call Trace:
[  750.804860]  dump_stack+0x1d3/0x2c4
[  750.808518]  ? dump_stack_print_info.cold.2+0x52/0x52
[  750.813711]  dump_header+0x27b/0xf72
[  750.817420]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  750.822360]  ? kasan_check_read+0x11/0x20
[  750.826524]  ? pagefault_out_of_memory+0x197/0x197
[  750.831465]  ? rcu_read_unlock+0x33/0x60
[  750.835531]  ? mem_cgroup_iter+0x514/0x1160
[  750.839848]  ? find_held_lock+0x36/0x1c0
[  750.843905]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  750.848655]  ? mark_held_locks+0xc7/0x130
[  750.852811]  ? _raw_spin_unlock_irq+0x27/0x80
[  750.857307]  ? _raw_spin_unlock_irq+0x27/0x80
[  750.861803]  ? lockdep_hardirqs_on+0x421/0x5c0
[  750.866391]  ? trace_hardirqs_on+0xbd/0x310
[  750.870717]  ? kasan_check_read+0x11/0x20
[  750.874871]  ? css_task_iter_end+0x222/0x490
[  750.879270]  ? trace_hardirqs_off_caller+0x300/0x300
[  750.884366]  ? kasan_check_write+0x14/0x20
[  750.888590]  ? do_raw_spin_lock+0xc1/0x200
[  750.892821]  ? _raw_spin_unlock_irq+0x60/0x80
[  750.897306]  ? css_task_iter_end+0x2ce/0x490
[  750.901708]  ? cgroup_procs_next+0x70/0x70
[  750.905938]  ? _raw_spin_unlock_irq+0x60/0x80
[  750.910426]  ? oom_badness+0xaa0/0xaa0
[  750.914309]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  750.919064]  ? mem_cgroup_iter_break+0x30/0x30
[  750.923645]  ? mark_held_locks+0xc7/0x130
[  750.927787]  out_of_memory.cold.30+0xf/0x184
[  750.932190]  ? lockdep_hardirqs_on+0x421/0x5c0
[  750.936766]  ? kasan_check_read+0x11/0x20
[  750.940905]  ? oom_killer_disable+0x3a0/0x3a0
[  750.945393]  ? kasan_check_write+0x14/0x20
[  750.949617]  ? do_raw_spin_lock+0xc1/0x200
[  750.953857]  mem_cgroup_out_of_memory+0x15e/0x210
[  750.958700]  ? memcg_memory_event+0x40/0x40
[  750.963010]  ? mem_cgroup_try_charge+0x5ea/0xe10
[  750.967761]  ? page_counter_try_charge+0x1c1/0x220
[  750.972691]  try_charge+0xb1a/0x1690
[  750.976408]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  750.982456]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  750.987292]  ? lock_downgrade+0x900/0x900
[  750.991482]  ? check_preemption_disabled+0x48/0x200
[  750.996510]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  751.001440]  ? kasan_check_read+0x11/0x20
[  751.005620]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  751.010889]  ? rcu_softirq_qs+0x20/0x20
[  751.014863]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  751.019702]  ? mod_memcg_state+0x230/0x230
[  751.023929]  ? __lock_is_held+0xb5/0x140
[  751.027990]  mem_cgroup_try_charge+0x5ea/0xe10
[  751.032561]  ? lock_downgrade+0x900/0x900
[  751.036705]  ? check_preemption_disabled+0x48/0x200
[  751.041716]  ? mem_cgroup_protected+0xa60/0xa60
[  751.046381]  ? print_usage_bug+0xc0/0xc0
[  751.050439]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  751.055979]  ? reuse_swap_page+0x4bd/0x1520
[  751.060306]  ? swp_swapcount+0x530/0x530
[  751.064373]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  751.069910]  mem_cgroup_try_charge_delay+0x1d/0xa0
[  751.074831]  wp_page_copy+0x492/0x18a0
[  751.078713]  ? unwind_get_return_address+0x61/0xa0
[  751.083638]  ? pmd_pfn+0x1c0/0x1c0
[  751.087173]  ? find_held_lock+0x36/0x1c0
[  751.091230]  ? do_wp_page+0x76c/0x1690
[  751.095114]  ? lock_downgrade+0x900/0x900
[  751.099255]  ? kasan_check_write+0x14/0x20
[  751.103483]  ? kasan_check_read+0x11/0x20
[  751.107642]  ? do_raw_spin_unlock+0xa7/0x2f0
[  751.112059]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  751.116649]  ? __pte_alloc_kernel+0x220/0x220
[  751.121135]  ? __lock_acquire+0x7ec/0x4ec0
[  751.125377]  ? __lock_acquire+0x7ec/0x4ec0
[  751.129609]  do_wp_page+0x774/0x1690
[  751.133328]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  751.137992]  ? lock_downgrade+0x900/0x900
[  751.142133]  ? lock_release+0x970/0x970
[  751.146099]  ? kasan_check_read+0x11/0x20
[  751.150276]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  751.155822]  ? kasan_check_write+0x14/0x20
[  751.160058]  ? do_raw_spin_lock+0xc1/0x200
[  751.164287]  __handle_mm_fault+0x2c60/0x53e0
[  751.168691]  ? graph_lock+0x170/0x170
[  751.172487]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  751.177322]  ? graph_lock+0x170/0x170
[  751.181123]  ? print_usage_bug+0xc0/0xc0
[  751.185181]  ? graph_lock+0x170/0x170
[  751.188976]  ? graph_lock+0x170/0x170
[  751.192777]  ? handle_mm_fault+0x42a/0xc70
[  751.197023]  ? lock_downgrade+0x900/0x900
[  751.201193]  ? check_preemption_disabled+0x48/0x200
[  751.206207]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  751.211128]  ? kasan_check_read+0x11/0x20
[  751.215288]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  751.220560]  ? rcu_softirq_qs+0x20/0x20
[  751.224523]  ? trace_hardirqs_off_caller+0x300/0x300
[  751.229619]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  751.235147]  ? check_preemption_disabled+0x48/0x200
[  751.240160]  handle_mm_fault+0x54f/0xc70
[  751.244220]  ? __handle_mm_fault+0x53e0/0x53e0
[  751.248795]  ? find_vma+0x34/0x190
[  751.252329]  __do_page_fault+0x673/0xec0
[  751.256401]  ? mm_fault_error+0x380/0x380
[  751.260548]  do_page_fault+0xed/0x7d1
[  751.264364]  ? vmalloc_sync_all+0x30/0x30
[  751.268505]  ? error_entry+0x70/0xd0
[  751.272212]  ? trace_hardirqs_off_caller+0xbb/0x300
[  751.277242]  ? trace_hardirqs_on_caller+0xc0/0x310
[  751.282164]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  751.287000]  ? trace_hardirqs_off+0x310/0x310
[  751.291488]  ? __bpf_trace_preemptirq_template+0x30/0x30
[  751.296934]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  751.301973]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  751.307504]  ? prepare_exit_to_usermode+0x291/0x3b0
[  751.312514]  ? page_fault+0x8/0x30
[  751.316049]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  751.320905]  ? page_fault+0x8/0x30
[  751.324449]  page_fault+0x1e/0x30
[  751.327891] RIP: 0033:0x455c7e
[  751.331077] Code: 00 00 85 c0 41 89 c5 0f 85 fc 00 00 00 64 8b 04 25 d0 02 00 00 41 39 c4 0f 84 12 02 00 00 48 8b 05 e7 07 5f 00 48 85 c0 74 04 <48> 83 00 04 64 8b 04 25 d0 02 00 00 64 89 04 25 d4 02 00 00 0f 31
[  751.349969] RSP: 002b:00007ffdef61b280 EFLAGS: 00010202
[  751.355329] RAX: 0000000000a45f68 RBX: 00007ffdef61b280 RCX: 0000000000455c4a
[  751.362587] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  751.369864] RBP: 00007ffdef61b2c0 R08: 0000000000000001 R09: 00000000021dc940
[  751.377149] R10: 00000000021dcc10 R11: 0000000000000246 R12: 0000000000000001
[  751.384412] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  751.392023] Memory limit reached of cgroup /syz1
[  751.396942] memory: usage 5232kB, limit 0kB, failcnt 255298
[  751.402730] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  751.409529] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  751.415666] Memory cgroup stats for /syz1: cache:112KB rss:0KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:52KB inactive_file:0KB active_file:0KB unevictable:0KB
[  751.435729] Out of memory and no killable processes...
[  751.442403] syz-executor1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=-1000
[  751.453641] syz-executor1 cpuset=syz1 mems_allowed=0
[  751.458877] CPU: 1 PID: 29436 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  751.467362] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  751.476705] Call Trace:
[  751.479287]  dump_stack+0x1d3/0x2c4
[  751.482908]  ? dump_stack_print_info.cold.2+0x52/0x52
[  751.488095]  dump_header+0x27b/0xf72
[  751.491805]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  751.496738]  ? kasan_check_read+0x11/0x20
[  751.500917]  ? pagefault_out_of_memory+0x197/0x197
[  751.505858]  ? rcu_read_unlock+0x33/0x60
[  751.509928]  ? mem_cgroup_iter+0x514/0x1160
[  751.514242]  ? find_held_lock+0x36/0x1c0
[  751.518302]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  751.523062]  ? mark_held_locks+0xc7/0x130
[  751.527208]  ? _raw_spin_unlock_irq+0x27/0x80
[  751.531705]  ? _raw_spin_unlock_irq+0x27/0x80
[  751.536195]  ? lockdep_hardirqs_on+0x421/0x5c0
[  751.540770]  ? trace_hardirqs_on+0xbd/0x310
[  751.545081]  ? kasan_check_read+0x11/0x20
[  751.549218]  ? css_task_iter_end+0x222/0x490
[  751.553621]  ? trace_hardirqs_off_caller+0x300/0x300
[  751.558719]  ? kasan_check_write+0x14/0x20
[  751.562943]  ? do_raw_spin_lock+0xc1/0x200
[  751.567193]  ? _raw_spin_unlock_irq+0x60/0x80
[  751.571687]  ? css_task_iter_end+0x2ce/0x490
[  751.576113]  ? cgroup_procs_next+0x70/0x70
[  751.580343]  ? _raw_spin_unlock_irq+0x60/0x80
[  751.584832]  ? oom_badness+0xaa0/0xaa0
[  751.588713]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  751.593461]  ? mem_cgroup_iter_break+0x30/0x30
[  751.598061]  ? mark_held_locks+0xc7/0x130
[  751.602209]  out_of_memory.cold.30+0xf/0x184
[  751.606613]  ? lockdep_hardirqs_on+0x421/0x5c0
[  751.611188]  ? kasan_check_read+0x11/0x20
[  751.615332]  ? oom_killer_disable+0x3a0/0x3a0
[  751.619820]  ? kasan_check_write+0x14/0x20
[  751.624048]  ? do_raw_spin_lock+0xc1/0x200
[  751.628284]  mem_cgroup_out_of_memory+0x15e/0x210
[  751.633119]  ? memcg_memory_event+0x40/0x40
[  751.637434]  ? mem_cgroup_try_charge+0x5ea/0xe10
[  751.642203]  ? page_counter_try_charge+0x1c1/0x220
[  751.647154]  try_charge+0xb1a/0x1690
[  751.650901]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  751.656948]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  751.661799]  ? lock_downgrade+0x900/0x900
[  751.665949]  ? check_preemption_disabled+0x48/0x200
[  751.670956]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  751.675876]  ? kasan_check_read+0x11/0x20
[  751.680017]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  751.685291]  ? rcu_softirq_qs+0x20/0x20
[  751.689276]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  751.694113]  ? mod_memcg_state+0x230/0x230
[  751.698344]  ? __lock_is_held+0xb5/0x140
[  751.702408]  mem_cgroup_try_charge+0x5ea/0xe10
[  751.706991]  ? mem_cgroup_protected+0xa60/0xa60
[  751.711673]  ? print_usage_bug+0xc0/0xc0
[  751.715739]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  751.721281]  ? reuse_swap_page+0x4bd/0x1520
[  751.725631]  ? swp_swapcount+0x530/0x530
[  751.729691]  ? lock_downgrade+0x900/0x900
[  751.733844]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  751.739380]  mem_cgroup_try_charge_delay+0x1d/0xa0
[  751.744330]  wp_page_copy+0x492/0x18a0
[  751.748239]  ? pmd_pfn+0x1c0/0x1c0
[  751.751808]  ? find_held_lock+0x36/0x1c0
[  751.755867]  ? do_wp_page+0x76c/0x1690
[  751.759745]  ? lock_downgrade+0x900/0x900
[  751.763901]  ? kasan_check_write+0x14/0x20
[  751.768146]  ? kasan_check_read+0x11/0x20
[  751.772283]  ? do_raw_spin_unlock+0xa7/0x2f0
[  751.776688]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  751.781259]  ? __pte_alloc_kernel+0x220/0x220
[  751.785746]  ? __lock_acquire+0x7ec/0x4ec0
[  751.789973]  ? __lock_acquire+0x7ec/0x4ec0
[  751.794220]  do_wp_page+0x774/0x1690
[  751.797943]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  751.802607]  ? lock_downgrade+0x900/0x900
[  751.806750]  ? lock_release+0x970/0x970
[  751.810722]  ? kasan_check_read+0x11/0x20
[  751.814886]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  751.820421]  ? kasan_check_write+0x14/0x20
[  751.824646]  ? do_raw_spin_lock+0xc1/0x200
[  751.828880]  __handle_mm_fault+0x2c60/0x53e0
[  751.833307]  ? graph_lock+0x170/0x170
[  751.837111]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  751.841948]  ? graph_lock+0x170/0x170
[  751.845744]  ? print_usage_bug+0xc0/0xc0
[  751.849802]  ? graph_lock+0x170/0x170
[  751.853602]  ? graph_lock+0x170/0x170
[  751.857417]  ? handle_mm_fault+0x42a/0xc70
[  751.861653]  ? lock_downgrade+0x900/0x900
[  751.865804]  ? check_preemption_disabled+0x48/0x200
[  751.870814]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  751.875735]  ? kasan_check_read+0x11/0x20
[  751.879874]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  751.885152]  ? rcu_softirq_qs+0x20/0x20
[  751.889134]  ? trace_hardirqs_off_caller+0x300/0x300
[  751.894231]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  751.899773]  ? check_preemption_disabled+0x48/0x200
[  751.904796]  handle_mm_fault+0x54f/0xc70
[  751.908855]  ? __handle_mm_fault+0x53e0/0x53e0
[  751.913435]  ? find_vma+0x34/0x190
[  751.916974]  __do_page_fault+0x673/0xec0
[  751.921049]  ? mm_fault_error+0x380/0x380
[  751.925210]  do_page_fault+0xed/0x7d1
[  751.929002]  ? vmalloc_sync_all+0x30/0x30
[  751.933167]  ? error_entry+0x70/0xd0
[  751.936880]  ? trace_hardirqs_off_caller+0xbb/0x300
[  751.941889]  ? trace_hardirqs_on_caller+0xc0/0x310
[  751.946815]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  751.951667]  ? trace_hardirqs_off+0x310/0x310
[  751.956156]  ? __bpf_trace_preemptirq_template+0x30/0x30
[  751.961603]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  751.966615]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  751.972146]  ? prepare_exit_to_usermode+0x291/0x3b0
[  751.977170]  ? page_fault+0x8/0x30
[  751.980715]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  751.985553]  ? page_fault+0x8/0x30
[  751.989085]  page_fault+0x1e/0x30
[  751.992527] RIP: 0033:0x455cab
[  751.995714] Code: 04 64 8b 04 25 d0 02 00 00 64 89 04 25 d4 02 00 00 0f 31 48 c1 e2 20 89 c0 48 09 c2 64 48 89 14 25 20 06 00 00 b8 b0 1e 41 00 <48> 89 15 1e 08 5f 00 48 85 c0 74 08 4c 89 cf e8 f1 c1 fb ff 45 85
[  752.014607] RSP: 002b:00007ffdef61b280 EFLAGS: 00010206
[  752.019962] RAX: 0000000000411eb0 RBX: 00007ffdef61b280 RCX: 0000000000455c4a
[  752.027243] RDX: 00000194a9c5b0cf RSI: 0000000000000000 RDI: 0000000001200011
[  752.034500] RBP: 00007ffdef61b2c0 R08: 0000000000000001 R09: 00000000021dc940
[  752.041758] R10: 00000000021dcc10 R11: 0000000000000246 R12: 0000000000000001
[  752.049014] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  752.058881] Memory limit reached of cgroup /syz1
[  752.063718] memory: usage 5236kB, limit 0kB, failcnt 255306
[  752.069486] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  752.076255] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  752.082585] Memory cgroup stats for /syz1: cache:112KB rss:0KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:56KB inactive_file:0KB active_file:0KB unevictable:0KB
[  752.102729] Out of memory and no killable processes...
[  752.109471] syz-executor1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=-1000
[  752.120740] syz-executor1 cpuset=syz1 mems_allowed=0
[  752.125877] CPU: 1 PID: 29436 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  752.134351] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  752.143703] Call Trace:
[  752.146302]  dump_stack+0x1d3/0x2c4
[  752.149925]  ? dump_stack_print_info.cold.2+0x52/0x52
[  752.155116]  dump_header+0x27b/0xf72
[  752.158825]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  752.163747]  ? kasan_check_read+0x11/0x20
[  752.167891]  ? pagefault_out_of_memory+0x197/0x197
[  752.172816]  ? rcu_read_unlock+0x33/0x60
[  752.176871]  ? mem_cgroup_iter+0x514/0x1160
[  752.181211]  ? find_held_lock+0x36/0x1c0
[  752.185285]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  752.190046]  ? mark_held_locks+0xc7/0x130
[  752.194191]  ? _raw_spin_unlock_irq+0x27/0x80
[  752.198709]  ? _raw_spin_unlock_irq+0x27/0x80
[  752.203226]  ? lockdep_hardirqs_on+0x421/0x5c0
[  752.207815]  ? trace_hardirqs_on+0xbd/0x310
[  752.212129]  ? kasan_check_read+0x11/0x20
[  752.216280]  ? css_task_iter_end+0x222/0x490
[  752.220688]  ? trace_hardirqs_off_caller+0x300/0x300
[  752.225785]  ? kasan_check_write+0x14/0x20
[  752.230013]  ? do_raw_spin_lock+0xc1/0x200
[  752.234241]  ? _raw_spin_unlock_irq+0x60/0x80
[  752.238727]  ? css_task_iter_end+0x2ce/0x490
[  752.243130]  ? cgroup_procs_next+0x70/0x70
[  752.247399]  ? _raw_spin_unlock_irq+0x60/0x80
[  752.251895]  ? oom_badness+0xaa0/0xaa0
[  752.255777]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  752.260529]  ? mem_cgroup_iter_break+0x30/0x30
[  752.265114]  ? mark_held_locks+0xc7/0x130
[  752.269259]  out_of_memory.cold.30+0xf/0x184
[  752.273656]  ? lockdep_hardirqs_on+0x421/0x5c0
[  752.278235]  ? kasan_check_read+0x11/0x20
[  752.282396]  ? oom_killer_disable+0x3a0/0x3a0
[  752.286892]  ? kasan_check_write+0x14/0x20
[  752.291334]  ? do_raw_spin_lock+0xc1/0x200
[  752.295569]  mem_cgroup_out_of_memory+0x15e/0x210
[  752.300407]  ? memcg_memory_event+0x40/0x40
[  752.304720]  ? mem_cgroup_try_charge+0x5ea/0xe10
[  752.309468]  ? page_counter_try_charge+0x1c1/0x220
[  752.314409]  try_charge+0xb1a/0x1690
[  752.318129]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  752.324188]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  752.329025]  ? lock_downgrade+0x900/0x900
[  752.333168]  ? check_preemption_disabled+0x48/0x200
[  752.338183]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  752.343105]  ? kasan_check_read+0x11/0x20
[  752.347247]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  752.352523]  ? rcu_softirq_qs+0x20/0x20
[  752.356525]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  752.361363]  ? mod_memcg_state+0x230/0x230
[  752.365593]  ? __lock_is_held+0xb5/0x140
[  752.369653]  mem_cgroup_try_charge+0x5ea/0xe10
[  752.374234]  ? lock_downgrade+0x900/0x900
[  752.378373]  ? check_preemption_disabled+0x48/0x200
[  752.383382]  ? mem_cgroup_protected+0xa60/0xa60
[  752.388046]  ? print_usage_bug+0xc0/0xc0
[  752.392104]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  752.397634]  ? reuse_swap_page+0x4bd/0x1520
[  752.401952]  ? swp_swapcount+0x530/0x530
[  752.406014]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  752.411549]  mem_cgroup_try_charge_delay+0x1d/0xa0
[  752.416485]  wp_page_copy+0x492/0x18a0
[  752.420384]  ? pmd_pfn+0x1c0/0x1c0
[  752.423920]  ? find_held_lock+0x36/0x1c0
[  752.427974]  ? do_wp_page+0x76c/0x1690
[  752.431852]  ? lock_downgrade+0x900/0x900
[  752.435990]  ? kasan_check_write+0x14/0x20
[  752.440217]  ? kasan_check_read+0x11/0x20
[  752.444356]  ? do_raw_spin_unlock+0xa7/0x2f0
[  752.448782]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  752.453357]  ? __pte_alloc_kernel+0x220/0x220
[  752.457841]  ? __lock_acquire+0x7ec/0x4ec0
[  752.462066]  ? __lock_acquire+0x7ec/0x4ec0
[  752.466293]  do_wp_page+0x774/0x1690
[  752.470000]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  752.474659]  ? lock_downgrade+0x900/0x900
[  752.478803]  ? lock_release+0x970/0x970
[  752.482772]  ? kasan_check_read+0x11/0x20
[  752.486916]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  752.492444]  ? kasan_check_write+0x14/0x20
[  752.496667]  ? do_raw_spin_lock+0xc1/0x200
[  752.500901]  __handle_mm_fault+0x2c60/0x53e0
[  752.505300]  ? graph_lock+0x170/0x170
[  752.509097]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  752.513933]  ? graph_lock+0x170/0x170
[  752.517726]  ? print_usage_bug+0xc0/0xc0
[  752.521782]  ? graph_lock+0x170/0x170
[  752.525571]  ? graph_lock+0x170/0x170
[  752.529405]  ? handle_mm_fault+0x42a/0xc70
[  752.533635]  ? lock_downgrade+0x900/0x900
[  752.537783]  ? check_preemption_disabled+0x48/0x200
[  752.542799]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  752.547723]  ? kasan_check_read+0x11/0x20
[  752.551864]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  752.557139]  ? rcu_softirq_qs+0x20/0x20
[  752.561109]  ? trace_hardirqs_off_caller+0x300/0x300
[  752.566208]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  752.571736]  ? check_preemption_disabled+0x48/0x200
[  752.576746]  handle_mm_fault+0x54f/0xc70
[  752.580799]  ? __handle_mm_fault+0x53e0/0x53e0
[  752.585377]  ? find_vma+0x34/0x190
[  752.588912]  __do_page_fault+0x673/0xec0
[  752.592967]  ? mm_fault_error+0x380/0x380
[  752.597110]  ? trace_hardirqs_off+0xb8/0x310
[  752.601513]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  752.606871]  ? trace_hardirqs_on_caller+0x310/0x310
[  752.611881]  do_page_fault+0xed/0x7d1
[  752.615675]  ? vmalloc_sync_all+0x30/0x30
[  752.619824]  ? error_entry+0x70/0xd0
[  752.623531]  ? trace_hardirqs_off_caller+0xbb/0x300
[  752.628539]  ? trace_hardirqs_on_caller+0xc0/0x310
[  752.633461]  ? syscall_return_slowpath+0x5e0/0x5e0
[  752.638381]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  752.643250]  ? trace_hardirqs_off+0x310/0x310
[  752.647768]  ? __bpf_trace_preemptirq_template+0x30/0x30
[  752.653219]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  752.658226]  ? prepare_exit_to_usermode+0x291/0x3b0
[  752.663264]  ? page_fault+0x8/0x30
[  752.666815]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  752.671665]  ? page_fault+0x8/0x30
[  752.675203]  page_fault+0x1e/0x30
[  752.678650] RIP: 0033:0x455ccb
[  752.681835] Code: 25 20 06 00 00 b8 b0 1e 41 00 48 89 15 1e 08 5f 00 48 85 c0 74 08 4c 89 cf e8 f1 c1 fb ff 45 85 f6 0f 85 58 01 00 00 48 85 db <48> c7 05 ba 72 2b 00 00 00 00 00 48 c7 05 9f 72 2b 00 00 00 00 00
[  752.700726] RSP: 002b:00007ffdef61b280 EFLAGS: 00010202
[  752.706116] RAX: 0000000000000000 RBX: 00007ffdef61b280 RCX: 0000000000411ec3
[  752.713918] RDX: 00000194a9c5b0cf RSI: 0000000000000018 RDI: 00000000021dcc20
[  752.721194] RBP: 00007ffdef61b2c0 R08: 0000000000000001 R09: 00000000021dc940
[  752.728454] R10: 00000000021dcc10 R11: 0000000000000202 R12: 0000000000000001
[  752.735732] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  752.743621] Memory limit reached of cgroup /syz1
[  752.749005] memory: usage 5240kB, limit 0kB, failcnt 255314
[  752.754716] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  752.761521] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  752.767736] Memory cgroup stats for /syz1: cache:112KB rss:0KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:64KB inactive_file:0KB active_file:0KB unevictable:0KB
[  752.787779] Out of memory and no killable processes...
[  752.794446] syz-executor1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=-1000
[  752.805693] syz-executor1 cpuset=syz1 mems_allowed=0
[  752.810918] CPU: 1 PID: 29436 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  752.819398] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  752.828740] Call Trace:
[  752.831321]  dump_stack+0x1d3/0x2c4
[  752.834942]  ? dump_stack_print_info.cold.2+0x52/0x52
[  752.840132]  dump_header+0x27b/0xf72
[  752.844022]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  752.848941]  ? kasan_check_read+0x11/0x20
[  752.853083]  ? pagefault_out_of_memory+0x197/0x197
[  752.858010]  ? rcu_read_unlock+0x33/0x60
[  752.862063]  ? mem_cgroup_iter+0x514/0x1160
[  752.866379]  ? find_held_lock+0x36/0x1c0
[  752.870449]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  752.875215]  ? mark_held_locks+0xc7/0x130
[  752.879355]  ? _raw_spin_unlock_irq+0x27/0x80
[  752.883842]  ? _raw_spin_unlock_irq+0x27/0x80
[  752.888330]  ? lockdep_hardirqs_on+0x421/0x5c0
[  752.892905]  ? trace_hardirqs_on+0xbd/0x310
[  752.897216]  ? kasan_check_read+0x11/0x20
[  752.901357]  ? css_task_iter_end+0x222/0x490
[  752.905757]  ? trace_hardirqs_off_caller+0x300/0x300
[  752.910852]  ? kasan_check_write+0x14/0x20
[  752.915076]  ? do_raw_spin_lock+0xc1/0x200
[  752.919315]  ? _raw_spin_unlock_irq+0x60/0x80
[  752.923799]  ? css_task_iter_end+0x2ce/0x490
[  752.928207]  ? cgroup_procs_next+0x70/0x70
[  752.932434]  ? _raw_spin_unlock_irq+0x60/0x80
[  752.936921]  ? oom_badness+0xaa0/0xaa0
[  752.940801]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  752.945551]  ? mem_cgroup_iter_break+0x30/0x30
[  752.950136]  ? mark_held_locks+0xc7/0x130
[  752.954281]  out_of_memory.cold.30+0xf/0x184
[  752.958685]  ? lockdep_hardirqs_on+0x421/0x5c0
[  752.963259]  ? kasan_check_read+0x11/0x20
[  752.967409]  ? oom_killer_disable+0x3a0/0x3a0
[  752.971898]  ? kasan_check_write+0x14/0x20
[  752.976127]  ? do_raw_spin_lock+0xc1/0x200
[  752.980363]  mem_cgroup_out_of_memory+0x15e/0x210
[  752.985203]  ? memcg_memory_event+0x40/0x40
[  752.989541]  ? mem_cgroup_try_charge+0x5ea/0xe10
[  752.994295]  ? page_counter_try_charge+0x1c1/0x220
[  752.999221]  try_charge+0xb1a/0x1690
[  753.002936]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  753.008992]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  753.013830]  ? lock_downgrade+0x900/0x900
[  753.017970]  ? check_preemption_disabled+0x48/0x200
[  753.022979]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  753.027900]  ? kasan_check_read+0x11/0x20
[  753.032037]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  753.037306]  ? rcu_softirq_qs+0x20/0x20
[  753.041281]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  753.046118]  ? mod_memcg_state+0x230/0x230
[  753.050370]  ? __lock_is_held+0xb5/0x140
[  753.054433]  mem_cgroup_try_charge+0x5ea/0xe10
[  753.059007]  ? lock_downgrade+0x900/0x900
[  753.063151]  ? check_preemption_disabled+0x48/0x200
[  753.068166]  ? mem_cgroup_protected+0xa60/0xa60
[  753.072832]  ? print_usage_bug+0xc0/0xc0
[  753.076888]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  753.082428]  ? reuse_swap_page+0x4bd/0x1520
[  753.086750]  ? swp_swapcount+0x530/0x530
[  753.090814]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  753.096350]  mem_cgroup_try_charge_delay+0x1d/0xa0
[  753.101285]  wp_page_copy+0x492/0x18a0
[  753.105178]  ? pmd_pfn+0x1c0/0x1c0
[  753.108723]  ? find_held_lock+0x36/0x1c0
[  753.112789]  ? do_wp_page+0x76c/0x1690
[  753.116675]  ? lock_downgrade+0x900/0x900
[  753.120825]  ? kasan_check_write+0x14/0x20
[  753.125070]  ? kasan_check_read+0x11/0x20
[  753.129229]  ? do_raw_spin_unlock+0xa7/0x2f0
[  753.133629]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  753.138207]  ? __pte_alloc_kernel+0x220/0x220
[  753.142725]  ? __lock_acquire+0x7ec/0x4ec0
[  753.146952]  ? __lock_acquire+0x7ec/0x4ec0
[  753.151183]  do_wp_page+0x774/0x1690
[  753.154903]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  753.159566]  ? lock_downgrade+0x900/0x900
[  753.163708]  ? lock_release+0x970/0x970
[  753.167691]  ? kasan_check_read+0x11/0x20
[  753.171853]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  753.177394]  ? kasan_check_write+0x14/0x20
[  753.181631]  ? do_raw_spin_lock+0xc1/0x200
[  753.185884]  __handle_mm_fault+0x2c60/0x53e0
[  753.190285]  ? graph_lock+0x170/0x170
[  753.194081]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  753.198913]  ? graph_lock+0x170/0x170
[  753.202712]  ? print_usage_bug+0xc0/0xc0
[  753.206767]  ? graph_lock+0x170/0x170
[  753.210558]  ? graph_lock+0x170/0x170
[  753.214363]  ? handle_mm_fault+0x42a/0xc70
[  753.218588]  ? lock_downgrade+0x900/0x900
[  753.222743]  ? check_preemption_disabled+0x48/0x200
[  753.227791]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  753.232713]  ? kasan_check_read+0x11/0x20
[  753.236853]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  753.242120]  ? rcu_softirq_qs+0x20/0x20
[  753.246088]  ? trace_hardirqs_off_caller+0x300/0x300
[  753.251187]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  753.256747]  ? check_preemption_disabled+0x48/0x200
[  753.261762]  handle_mm_fault+0x54f/0xc70
[  753.265821]  ? __handle_mm_fault+0x53e0/0x53e0
[  753.270396]  ? find_vma+0x34/0x190
[  753.273933]  __do_page_fault+0x673/0xec0
[  753.277992]  ? mm_fault_error+0x380/0x380
[  753.282134]  ? trace_hardirqs_off+0xb8/0x310
[  753.286533]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  753.291887]  ? trace_hardirqs_on_caller+0x310/0x310
[  753.296911]  do_page_fault+0xed/0x7d1
[  753.300715]  ? vmalloc_sync_all+0x30/0x30
[  753.304854]  ? error_entry+0x70/0xd0
[  753.308558]  ? trace_hardirqs_off_caller+0xbb/0x300
[  753.313566]  ? trace_hardirqs_on_caller+0xc0/0x310
[  753.318484]  ? syscall_return_slowpath+0x5e0/0x5e0
[  753.323407]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  753.328240]  ? trace_hardirqs_off+0x310/0x310
[  753.332767]  ? __bpf_trace_preemptirq_template+0x30/0x30
[  753.338226]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  753.343237]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  753.348783]  ? prepare_exit_to_usermode+0x291/0x3b0
[  753.353794]  ? page_fault+0x8/0x30
[  753.357329]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  753.362176]  ? page_fault+0x8/0x30
[  753.365715]  page_fault+0x1e/0x30
[  753.369159] RIP: 0033:0x40d5c8
[  753.372604] Code: 48 8b 05 f3 e8 2f 00 48 89 08 48 8b 15 f1 e8 2f 00 48 89 42 08 48 8b 05 d6 e8 2f 00 48 89 05 df e8 2f 00 49 8d 81 c0 02 00 00 <48> 89 05 81 2a 63 00 49 8b 89 c8 02 00 00 49 8b 91 c0 02 00 00 48
[  753.391514] RSP: 002b:00007ffdef61b278 EFLAGS: 00010246
[  753.396892] RAX: 00000000021dcc00 RBX: 00007ffdef61b280 RCX: 000000000070bea0
[  753.404150] RDX: 000000000040d400 RSI: 000000000070be90 RDI: 00000000021dcc20
[  753.411418] RBP: 00007ffdef61b2c0 R08: 0000000000000001 R09: 00000000021dc940
[  753.418685] R10: 00000000021dcc10 R11: 0000000000000202 R12: 0000000000000001
[  753.425953] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  753.433507] Memory limit reached of cgroup /syz1
[  753.438475] memory: usage 5244kB, limit 0kB, failcnt 255322
[  753.444193] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  753.450996] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  753.457147] Memory cgroup stats for /syz1: cache:112KB rss:0KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:64KB inactive_file:0KB active_file:0KB unevictable:0KB
[  753.477251] Out of memory and no killable processes...
[  753.483960] syz-executor1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=-1000
[  753.495194] syz-executor1 cpuset=syz1 mems_allowed=0
[  753.500434] CPU: 1 PID: 29436 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  753.508916] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  753.518257] Call Trace:
[  753.520842]  dump_stack+0x1d3/0x2c4
[  753.524483]  ? dump_stack_print_info.cold.2+0x52/0x52
[  753.529688]  dump_header+0x27b/0xf72
[  753.533396]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  753.538318]  ? kasan_check_read+0x11/0x20
[  753.542463]  ? pagefault_out_of_memory+0x197/0x197
[  753.547404]  ? rcu_read_unlock+0x33/0x60
[  753.551458]  ? mem_cgroup_iter+0x514/0x1160
[  753.555774]  ? find_held_lock+0x36/0x1c0
[  753.559833]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  753.564580]  ? mark_held_locks+0xc7/0x130
[  753.568720]  ? _raw_spin_unlock_irq+0x27/0x80
[  753.573209]  ? _raw_spin_unlock_irq+0x27/0x80
[  753.577703]  ? lockdep_hardirqs_on+0x421/0x5c0
[  753.582282]  ? trace_hardirqs_on+0xbd/0x310
[  753.586612]  ? kasan_check_read+0x11/0x20
[  753.590754]  ? css_task_iter_end+0x222/0x490
[  753.595158]  ? trace_hardirqs_off_caller+0x300/0x300
[  753.600254]  ? kasan_check_write+0x14/0x20
[  753.604479]  ? do_raw_spin_lock+0xc1/0x200
[  753.608715]  ? _raw_spin_unlock_irq+0x60/0x80
[  753.613222]  ? css_task_iter_end+0x2ce/0x490
[  753.617622]  ? cgroup_procs_next+0x70/0x70
[  753.621854]  ? _raw_spin_unlock_irq+0x60/0x80
[  753.626343]  ? oom_badness+0xaa0/0xaa0
[  753.630231]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  753.634980]  ? mem_cgroup_iter_break+0x30/0x30
[  753.639563]  ? mark_held_locks+0xc7/0x130
[  753.643712]  out_of_memory.cold.30+0xf/0x184
[  753.648122]  ? lockdep_hardirqs_on+0x421/0x5c0
[  753.652716]  ? kasan_check_read+0x11/0x20
[  753.656860]  ? oom_killer_disable+0x3a0/0x3a0
[  753.661352]  ? kasan_check_write+0x14/0x20
[  753.665606]  ? do_raw_spin_lock+0xc1/0x200
[  753.669842]  mem_cgroup_out_of_memory+0x15e/0x210
[  753.674705]  ? memcg_memory_event+0x40/0x40
[  753.679046]  ? mem_cgroup_try_charge+0x5ea/0xe10
[  753.683799]  ? page_counter_try_charge+0x1c1/0x220
[  753.688743]  try_charge+0xb1a/0x1690
[  753.692455]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  753.698501]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  753.703337]  ? lock_downgrade+0x900/0x900
[  753.707479]  ? check_preemption_disabled+0x48/0x200
[  753.712487]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  753.717410]  ? kasan_check_read+0x11/0x20
[  753.721550]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  753.726815]  ? rcu_softirq_qs+0x20/0x20
[  753.730788]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  753.735655]  ? mod_memcg_state+0x230/0x230
[  753.739913]  ? __lock_is_held+0xb5/0x140
[  753.743995]  mem_cgroup_try_charge+0x5ea/0xe10
[  753.748571]  ? mem_cgroup_protected+0xa60/0xa60
[  753.753237]  ? print_usage_bug+0xc0/0xc0
[  753.757292]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  753.762822]  ? reuse_swap_page+0x4bd/0x1520
[  753.767144]  ? swp_swapcount+0x530/0x530
[  753.771202]  ? lock_downgrade+0x900/0x900
[  753.775349]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  753.780883]  mem_cgroup_try_charge_delay+0x1d/0xa0
[  753.785803]  wp_page_copy+0x492/0x18a0
[  753.789691]  ? pmd_pfn+0x1c0/0x1c0
[  753.793227]  ? find_held_lock+0x36/0x1c0
[  753.797284]  ? do_wp_page+0x76c/0x1690
[  753.801171]  ? lock_downgrade+0x900/0x900
[  753.805317]  ? kasan_check_write+0x14/0x20
[  753.809542]  ? kasan_check_read+0x11/0x20
[  753.813687]  ? do_raw_spin_unlock+0xa7/0x2f0
[  753.818088]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  753.822660]  ? __pte_alloc_kernel+0x220/0x220
[  753.827184]  ? __lock_acquire+0x7ec/0x4ec0
[  753.831422]  ? __lock_acquire+0x7ec/0x4ec0
[  753.835651]  do_wp_page+0x774/0x1690
[  753.839362]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  753.844026]  ? lock_downgrade+0x900/0x900
[  753.848168]  ? lock_release+0x970/0x970
[  753.852149]  ? kasan_check_read+0x11/0x20
[  753.856310]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  753.861841]  ? kasan_check_write+0x14/0x20
[  753.866069]  ? do_raw_spin_lock+0xc1/0x200
[  753.870302]  __handle_mm_fault+0x2c60/0x53e0
[  753.874706]  ? graph_lock+0x170/0x170
[  753.878502]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  753.883349]  ? graph_lock+0x170/0x170
[  753.887161]  ? print_usage_bug+0xc0/0xc0
[  753.891240]  ? graph_lock+0x170/0x170
[  753.895047]  ? graph_lock+0x170/0x170
[  753.898874]  ? handle_mm_fault+0x42a/0xc70
[  753.903118]  ? lock_downgrade+0x900/0x900
[  753.907275]  ? check_preemption_disabled+0x48/0x200
[  753.912307]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  753.917244]  ? kasan_check_read+0x11/0x20
[  753.921400]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  753.926690]  ? rcu_softirq_qs+0x20/0x20
[  753.930684]  ? trace_hardirqs_off_caller+0x300/0x300
[  753.935798]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  753.941347]  ? check_preemption_disabled+0x48/0x200
[  753.946377]  handle_mm_fault+0x54f/0xc70
[  753.950450]  ? __handle_mm_fault+0x53e0/0x53e0
[  753.955045]  ? find_vma+0x34/0x190
[  753.958599]  __do_page_fault+0x673/0xec0
[  753.962675]  ? mm_fault_error+0x380/0x380
[  753.966841]  ? trace_hardirqs_off+0xb8/0x310
[  753.971267]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  753.976640]  ? trace_hardirqs_on_caller+0x310/0x310
[  753.981670]  do_page_fault+0xed/0x7d1
[  753.985486]  ? vmalloc_sync_all+0x30/0x30
[  753.989646]  ? error_entry+0x70/0xd0
[  753.993374]  ? trace_hardirqs_off_caller+0xbb/0x300
[  753.998401]  ? trace_hardirqs_on_caller+0xc0/0x310
[  754.003336]  ? syscall_return_slowpath+0x5e0/0x5e0
[  754.008274]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  754.013127]  ? trace_hardirqs_off+0x310/0x310
[  754.017630]  ? __bpf_trace_preemptirq_template+0x30/0x30
[  754.023088]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  754.028114]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  754.033659]  ? prepare_exit_to_usermode+0x291/0x3b0
[  754.038695]  ? page_fault+0x8/0x30
[  754.042248]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  754.047102]  ? page_fault+0x8/0x30
[  754.050658]  page_fault+0x1e/0x30
[  754.054123] RIP: 0033:0x40d5f6
[  754.057322] Code: 2a 63 00 49 8b 89 c8 02 00 00 49 8b 91 c0 02 00 00 48 89 4a 08 49 8b 89 c8 02 00 00 48 89 11 48 c7 05 5a 2a 63 00 00 00 00 00 <48> c7 05 97 e8 2f 00 90 be 70 00 31 d2 48 c7 05 82 e8 2f 00 90 be
[  754.076234] RSP: 002b:00007ffdef61b278 EFLAGS: 00010246
[  754.081607] RAX: 00000000021dcc00 RBX: 00007ffdef61b280 RCX: 0000000000a40040
[  754.088877] RDX: 0000000000a40040 RSI: 000000000070be90 RDI: 00000000021dcc20
[  754.096153] RBP: 00007ffdef61b2c0 R08: 0000000000000001 R09: 00000000021dc940
[  754.103425] R10: 00000000021dcc10 R11: 0000000000000202 R12: 0000000000000001
[  754.110701] R13: 0000000000000000 R14: 0000000000000000 R15: badc0ffeebadface
[  754.118260] Memory limit reached of cgroup /syz1
[  754.123090] memory: usage 5248kB, limit 0kB, failcnt 255338
[  754.128888] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  754.135649] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  754.141842] Memory cgroup stats for /syz1: cache:112KB rss:0KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:64KB inactive_file:0KB active_file:0KB unevictable:0KB
[  754.162106] Out of memory and no killable processes...
[  754.167852] syz-executor1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=-1000
[  754.179126] syz-executor1 cpuset=syz1 mems_allowed=0
[  754.184274] CPU: 0 PID: 29135 Comm: syz-executor1 Not tainted 4.19.0-rc4-next-20180921+ #77
[  754.192746] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  754.202080] Call Trace:
[  754.204657]  dump_stack+0x1d3/0x2c4
[  754.208278]  ? dump_stack_print_info.cold.2+0x52/0x52
[  754.213462]  dump_header+0x27b/0xf72
[  754.217169]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  754.222093]  ? kasan_check_read+0x11/0x20
[  754.226268]  ? pagefault_out_of_memory+0x197/0x197
[  754.231218]  ? rcu_read_unlock+0x33/0x60
[  754.235269]  ? mem_cgroup_iter+0x514/0x1160
[  754.239582]  ? find_held_lock+0x36/0x1c0
[  754.243637]  ? mem_cgroup_nr_lru_pages+0x80/0x80
[  754.248387]  ? mark_held_locks+0xc7/0x130
[  754.252531]  ? _raw_spin_unlock_irq+0x27/0x80
[  754.257017]  ? _raw_spin_unlock_irq+0x27/0x80
[  754.261505]  ? lockdep_hardirqs_on+0x421/0x5c0
[  754.266078]  ? trace_hardirqs_on+0xbd/0x310
[  754.270389]  ? kasan_check_read+0x11/0x20
[  754.274527]  ? css_task_iter_end+0x222/0x490
[  754.278930]  ? trace_hardirqs_off_caller+0x300/0x300
[  754.284356]  ? kasan_check_write+0x14/0x20
[  754.288583]  ? do_raw_spin_lock+0xc1/0x200
[  754.292815]  ? _raw_spin_unlock_irq+0x60/0x80
[  754.297320]  ? css_task_iter_end+0x2ce/0x490
[  754.301721]  ? cgroup_procs_next+0x70/0x70
[  754.305965]  ? _raw_spin_unlock_irq+0x60/0x80
[  754.310451]  ? oom_badness+0xaa0/0xaa0
[  754.314331]  ? mem_cgroup_scan_tasks+0x1c3/0x1e0
[  754.319075]  ? mem_cgroup_iter_break+0x30/0x30
[  754.323652]  ? mark_held_locks+0xc7/0x130
[  754.327795]  out_of_memory.cold.30+0xf/0x184
[  754.332194]  ? lockdep_hardirqs_on+0x421/0x5c0
[  754.336766]  ? kasan_check_read+0x11/0x20
[  754.340907]  ? oom_killer_disable+0x3a0/0x3a0
[  754.345397]  ? kasan_check_write+0x14/0x20
[  754.349625]  ? do_raw_spin_lock+0xc1/0x200
[  754.353864]  mem_cgroup_out_of_memory+0x15e/0x210
[  754.358699]  ? memcg_memory_event+0x40/0x40
[  754.363016]  ? mem_cgroup_try_charge+0x5ea/0xe10
[  754.367767]  ? page_counter_try_charge+0x1c1/0x220
[  754.372695]  try_charge+0xb1a/0x1690
[  754.376405]  ? mem_cgroup_count_precharge_pte_range+0x760/0x760
[  754.382461]  ? get_mem_cgroup_from_mm+0x229/0x4a0
[  754.387305]  ? lock_downgrade+0x900/0x900
[  754.391461]  ? check_preemption_disabled+0x48/0x200
[  754.396472]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  754.401391]  ? kasan_check_read+0x11/0x20
[  754.405533]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  754.410823]  ? rcu_softirq_qs+0x20/0x20
[  754.414797]  ? get_mem_cgroup_from_mm+0x246/0x4a0
[  754.419636]  ? mod_memcg_state+0x230/0x230
[  754.423860]  ? __lock_is_held+0xb5/0x140
[  754.427915]  mem_cgroup_try_charge+0x5ea/0xe10
[  754.432480]  ? rcu_softirq_qs+0x20/0x20
[  754.436441]  ? kmem_cache_alloc+0x589/0x730
[  754.440772]  ? mem_cgroup_protected+0xa60/0xa60
[  754.445433]  ? print_usage_bug+0xc0/0xc0
[  754.449492]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  754.455016]  ? reuse_swap_page+0x4bd/0x1520
[  754.459330]  ? swp_swapcount+0x530/0x530
[  754.463395]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  754.468949]  mem_cgroup_try_charge_delay+0x1d/0xa0
[  754.473872]  wp_page_copy+0x492/0x18a0
[  754.477749]  ? lock_downgrade+0x900/0x900
[  754.481908]  ? check_preemption_disabled+0x48/0x200
[  754.486920]  ? pmd_pfn+0x1c0/0x1c0
[  754.490449]  ? lock_downgrade+0x900/0x900
[  754.494587]  ? check_preemption_disabled+0x48/0x200
[  754.499596]  ? find_held_lock+0x36/0x1c0
[  754.503648]  ? do_wp_page+0x76c/0x1690
[  754.507547]  ? lock_downgrade+0x900/0x900
[  754.511707]  ? kasan_check_write+0x14/0x20
[  754.515932]  ? kasan_check_read+0x11/0x20
[  754.520065]  ? do_raw_spin_unlock+0xa7/0x2f0
[  754.524458]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  754.529047]  ? __pte_alloc_kernel+0x220/0x220
[  754.533531]  ? __lock_acquire+0x7ec/0x4ec0
[  754.537755]  ? __lock_acquire+0x7ec/0x4ec0
[  754.542001]  do_wp_page+0x774/0x1690
[  754.545706]  ? finish_mkwrite_fault+0x4f0/0x4f0
[  754.550370]  ? lock_release+0x970/0x970
[  754.554332]  ? rcu_softirq_qs+0x20/0x20
[  754.558302]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  754.563831]  ? kasan_check_write+0x14/0x20
[  754.568054]  ? do_raw_spin_lock+0xc1/0x200
[  754.572278]  __handle_mm_fault+0x2c60/0x53e0
[  754.576676]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  754.581508]  ? graph_lock+0x170/0x170
[  754.585300]  ? print_usage_bug+0xc0/0xc0
[  754.589348]  ? __might_fault+0x12b/0x1e0
[  754.593397]  ? graph_lock+0x170/0x170
[  754.597192]  ? graph_lock+0x170/0x170
[  754.600990]  ? handle_mm_fault+0x42a/0xc70
[  754.605214]  ? lock_downgrade+0x900/0x900
[  754.609346]  ? check_preemption_disabled+0x48/0x200
[  754.614350]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  754.619261]  ? kasan_check_read+0x11/0x20
[  754.623397]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  754.628661]  ? rcu_softirq_qs+0x20/0x20
[  754.632646]  ? trace_hardirqs_off_caller+0x300/0x300
[  754.637744]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  754.643271]  ? check_preemption_disabled+0x48/0x200
[  754.648285]  handle_mm_fault+0x54f/0xc70
[  754.652336]  ? __handle_mm_fault+0x53e0/0x53e0
[  754.656908]  ? find_vma+0x34/0x190
[  754.660438]  __do_page_fault+0x673/0xec0
[  754.664495]  ? __do_sys_newfstatat+0x110/0x110
[  754.669065]  ? mm_fault_error+0x380/0x380
[  754.673200]  ? trace_hardirqs_off+0xb8/0x310
[  754.677596]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  754.682963]  ? trace_hardirqs_on_caller+0x310/0x310
[  754.687985]  do_page_fault+0xed/0x7d1
[  754.691793]  ? vmalloc_sync_all+0x30/0x30
[  754.695930]  ? error_entry+0x70/0xd0
[  754.699633]  ? trace_hardirqs_off_caller+0xbb/0x300
[  754.704637]  ? trace_hardirqs_on_caller+0xc0/0x310
[  754.709555]  ? syscall_return_slowpath+0x5e0/0x5e0
[  754.714471]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  754.719403]  ? trace_hardirqs_off+0x310/0x310
[  754.723891]  ? __bpf_trace_preemptirq_template+0x30/0x30
[  754.729329]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  754.734336]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  754.739877]  ? prepare_exit_to_usermode+0x291/0x3b0
[  754.744882]  ? page_fault+0x8/0x30
[  754.748424]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  754.753265]  ? page_fault+0x8/0x30
[  754.756815]  page_fault+0x1e/0x30
[  754.760254] RIP: 0033:0x42ea16
[  754.763452] Code: 1f 44 00 00 48 29 e8 31 c9 48 81 fb 40 c6 70 00 0f 95 c1 48 8d 34 2a 48 83 cd 01 48 c1 e1 02 48 83 c8 01 48 09 e9 48 89 73 58 <48> 89 4a 08 48 89 46 08 48 8d 4a 10 8b 05 4c 62 61 00 85 c0 0f 84
[  754.782348] RSP: 002b:00007ffdef61b130 EFLAGS: 00010206
[  754.787706] RAX: 0000000000018691 RBX: 000000000070c640 RCX: 0000000000008041
[  754.794977] RDX: 00000000021dd930 RSI: 00000000021e5970 RDI: 0000000000000003
[  754.802242] RBP: 0000000000008041 R08: 0000000000000001 R09: 00000000021dc940
[  754.809498] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000070c698
[  754.816750] R13: 000000000070c698 R14: 0000000000000001 R15: 0000000000002710
[  754.827469] Memory limit reached of cgroup /syz1
[  754.832268] memory: usage 5044kB, limit 0kB, failcnt 255338
[  754.838037] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  754.844795] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
23:58:49 executing program 1:

23:58:49 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x49, 0x0, 0x0)

23:58:49 executing program 5:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x47}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xbc0, 0x0, 0x0)

23:58:49 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x8c, 0x0, 0x0)

23:58:49 executing program 0:
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000001fd8)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x6b, 0xa, 0xff00}}, &(0x7f0000000180)="4550d4001f91eb2f57b73224433025039c3096b20c6b439348bf689c08608537d6223e63adc0624fbae2e109359dce6922324ccc13160b68cae6430697259dd52d1f73e16adc3592d02925dffae85e9cd2398c6c67c87fb5b12602f145b484be45912966e8b7e2f66069c56dd76c1dc112013c3a6b4de999cdcdc8855aee3437dcc87580cfbe546fbbfbc0eb56d8bbbea2904a7c73c2", 0x0, 0x60, &(0x7f0000000000)=""/195}, 0x16)

23:58:49 executing program 2:
socketpair(0x1f, 0x5, 0x1, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
recvfrom(r1, &(0x7f0000000140)=""/203, 0xcb, 0x40000143, &(0x7f0000000080)=@un=@file={0x1, './file0\x00'}, 0x80)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='smaps_rollup\x00')
setsockopt$XDP_UMEM_COMPLETION_RING(r0, 0x11b, 0x6, &(0x7f0000000480), 0x4)
accept$inet6(r0, &(0x7f0000000240)={0xa, 0x0, 0x0, @mcast1}, &(0x7f0000000280)=0x1c)
recvfrom$inet(r0, &(0x7f00000004c0)=""/51, 0x33, 0x100, &(0x7f0000000500)={0x2, 0x4e22, @remote}, 0x10)
exit(0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
read(r2, &(0x7f0000000000)=""/56, 0x38)
r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000300)='IPVS\x00')
sendmsg$IPVS_CMD_SET_SERVICE(r2, &(0x7f0000000440)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000400)={&(0x7f0000000340)=ANY=[@ANYBLOB="63fff704", @ANYRES16=r3, @ANYBLOB="00022cbd7000fcdbdf2502000000340001000800080008000000080002003c00000008000600776c630008000600776c63000800020029000000080004004e2400003c0001000c0007000000000020000000080004004e210000080002007f00000008000800010000000c000700170000000400000008000900670000000800050008000000"], 0x8c}, 0x1, 0x0, 0x0, 0x1}, 0x24000004)

[  754.850983] Memory cgroup stats for /syz1: cache:112KB rss:0KB rss_huge:0KB shmem:40KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:44KB inactive_file:0KB active_file:0KB unevictable:0KB
[  754.871082] Out of memory and no killable processes...
23:58:49 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x6f, 0x0, 0x0)

23:58:49 executing program 0:

23:58:49 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x6f, 0x0, 0x0)

23:58:49 executing program 5:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x1f9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xbc0, 0x0, 0x0)

23:58:49 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x2de, 0x0, 0x0)

23:58:49 executing program 0:

23:59:49 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x6a, 0x0, &(0x7f0000000580), 0x1000000000000054)
ioctl$KVM_SET_NESTED_STATE(r2, 0x4080aebf, &(0x7f0000000580)={0x0, 0x0, 0x2080, {0x0, 0x5000}, [], "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", "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"})

23:59:49 executing program 0:

23:59:49 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x2c4, 0x0, 0x0)

23:59:49 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x6, 0x0, 0x0)

23:59:49 executing program 5:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x12a}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xbc0, 0x0, 0x0)

23:59:49 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='smaps_rollup\x00')
exit(0x0)
read(r0, &(0x7f0000000240)=""/56, 0xffffffffffffff0a)

23:59:49 executing program 0:
r0 = socket$inet6(0xa, 0x6, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000280)="153f6234488dd25d766070")
r1 = socket$inet6(0xa, 0x80001, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r1, 0x29, 0x2a, &(0x7f0000fca000)={0x100000001, {{0xa, 0x0, 0x0, @mcast1}}}, 0x88)
setsockopt$inet6_MCAST_MSFILTER(r1, 0x29, 0x30, &(0x7f0000000840)={0x1, {{0xa, 0x0, 0x0, @mcast1}}, 0x0, 0x4, [{{0xa, 0x4e24, 0x0, @local}}, {{0xa, 0x4e24, 0x10c6bd40, @mcast1, 0x18b}}, {{0xa, 0x4e22, 0x8a4, @ipv4={[], [], @local}, 0x9}}, {{0xa, 0x0, 0x0, @loopback}}]}, 0x290)

23:59:49 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xdf, 0x0, 0x0)

23:59:49 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x301, 0x0, 0x0)

23:59:49 executing program 0:
mkdir(&(0x7f00000000c0)='./file0\x00', 0x0)
mount(&(0x7f000000a000), &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='devpts\x00', 0x0, &(0x7f0000000100))
mount$fuseblk(&(0x7f0000000100)='/dev/loop0\x00', &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='fuseblk\x00', 0x80020, &(0x7f0000000340)={{'fd'}, 0x2c, {'rootmode'}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

23:59:49 executing program 5:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x22e}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xbc0, 0x0, 0x0)

[  815.364239] devpts: called with bogus options
23:59:50 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x94, 0x0, 0x0)

[  815.393772] devpts: called with bogus options
[  815.413184] devpts: called with bogus options
[  815.588249] device bridge_slave_1 left promiscuous mode
[  815.593980] bridge0: port 2(bridge_slave_1) entered disabled state
[  815.649393] device bridge_slave_0 left promiscuous mode
[  815.655575] bridge0: port 1(bridge_slave_0) entered disabled state
[  815.770739] team0 (unregistering): Port device team_slave_1 removed
[  815.799539] team0 (unregistering): Port device team_slave_0 removed
[  815.826581] bond0 (unregistering): Releasing backup interface bond_slave_1
[  815.893607] bond0 (unregistering): Releasing backup interface bond_slave_0
[  815.969234] bond0 (unregistering): Released all slaves
[  816.949447] IPVS: ftp: loaded support on port[0] = 21
[  817.401633] bridge0: port 1(bridge_slave_0) entered blocking state
[  817.408181] bridge0: port 1(bridge_slave_0) entered disabled state
[  817.415328] device bridge_slave_0 entered promiscuous mode
[  817.444871] bridge0: port 2(bridge_slave_1) entered blocking state
[  817.451420] bridge0: port 2(bridge_slave_1) entered disabled state
[  817.458877] device bridge_slave_1 entered promiscuous mode
[  817.487167] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[  817.514764] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[  817.594843] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  817.626263] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  817.748301] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[  817.755473] team0: Port device team_slave_0 added
[  817.781606] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[  817.788957] team0: Port device team_slave_1 added
[  817.815569] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  817.845254] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  817.873629] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  817.901760] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  818.158270] bridge0: port 2(bridge_slave_1) entered blocking state
[  818.164626] bridge0: port 2(bridge_slave_1) entered forwarding state
[  818.171337] bridge0: port 1(bridge_slave_0) entered blocking state
[  818.177728] bridge0: port 1(bridge_slave_0) entered forwarding state
[  819.100931] 8021q: adding VLAN 0 to HW filter on device bond0
[  819.192287] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  819.281400] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  819.287726] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  819.294709] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  819.385023] 8021q: adding VLAN 0 to HW filter on device team0
23:59:54 executing program 1:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
accept4(r0, 0x0, &(0x7f0000000380), 0x0)

23:59:54 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x78, 0x0, 0x0)

23:59:54 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000004c0)={&(0x7f0000000100), 0xc, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="240000002100010200000000040000080a000000000000000000000008001600040000001269528f19fb5a5a26d8e1c489a0d006702bfad7a5fd"], 0x1}}, 0x0)

23:59:54 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x284, 0x0, 0x0)

23:59:54 executing program 5:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x15f}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xbc0, 0x0, 0x0)

23:59:54 executing program 2:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000280)="153f6234488dd25d766070")
r1 = syz_open_dev$sndctrl(&(0x7f0000000440)='/dev/snd/controlC#\x00', 0x4000007, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r1, 0xc0505510, &(0x7f00000001c0)={0x8, 0x4, 0x0, 0x0, &(0x7f00000002c0)=[{}, {}, {}, {}]})

23:59:54 executing program 0:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = dup2(r1, r1)
open(&(0x7f000000fffa)='./bus\x00', 0x0, 0x0)
r3 = socket$inet6(0xa, 0x3, 0x800000000000004)
ioctl(r3, 0x8912, &(0x7f0000000280)="153f6234488dd25d766070")
sendmsg$netlink(r2, &(0x7f0000028fc8)={0x0, 0x0, &(0x7f0000019000)=[{&(0x7f00000001c0)=ANY=[@ANYRES64], 0x1}], 0x1, &(0x7f0000000040)}, 0x0)
recvmmsg(r0, &(0x7f0000000b80)=[{{&(0x7f0000000200)=@l2, 0x80, &(0x7f00000005c0), 0x2ce, &(0x7f0000000600)=""/84, 0x54}}, {{&(0x7f0000000680)=@l2, 0x80, &(0x7f0000000a40), 0x0, &(0x7f0000000ac0)=""/147, 0x93}}], 0x4000000000002ce, 0x62, 0x0)

23:59:54 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0x107, 0x0, 0x0)

23:59:54 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x6a, 0x0, &(0x7f0000000580), 0x1000000000000054)
ioctl$KVM_GET_NESTED_STATE(r2, 0xc080aebe, &(0x7f0000000580)={0x0, 0x0, 0x2080})

23:59:54 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r1 = accept4(r0, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r1, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x2c9}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xb10, 0x0, 0x0)

23:59:54 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptmx\x00', 0x0, 0x0)
read(r0, &(0x7f0000000240)=""/11, 0xb)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040))
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f00000001c0), 0xffffffffffffffff)
ioctl$TUNSETIFINDEX(r1, 0x400454da, &(0x7f0000000200))

23:59:54 executing program 5:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58)
r2 = accept4(r1, 0x0, &(0x7f0000000840), 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380), 0x0)
sendto$unix(r2, &(0x7f0000000400), 0xff26, 0x0, 0x0, 0x22)
recvmmsg(r2, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002a00)=""/207, 0x5d}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000003cc0)}}], 0xbc0, 0x0, 0x0)

[  820.210612] kasan: CONFIG_KASAN_INLINE enabled
[  820.210812] kobject: 'kvm' (00000000edda47ca): kobject_uevent_env
[  820.221646] kasan: GPF could be caused by NULL-ptr deref or user memory access
[  820.229015] general protection fault: 0000 [#1] PREEMPT SMP KASAN
[  820.235264] CPU: 1 PID: 29814 Comm: syz-executor2 Not tainted 4.19.0-rc4-next-20180921+ #77
[  820.240795] kobject: 'kvm' (00000000edda47ca): fill_kobj_path: path = '/devices/virtual/misc/kvm'
[  820.243749] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  820.243765] RIP: 0010:__schedule+0x1144/0x1ed0
[  820.243784] Code: 89 e0 48 c1 e8 03 42 80 3c 28 00 0f 85 7e 08 00 00 4d 8b 24 24 4d 85 e4 0f 84 7e f5 ff ff 49 8d 7c 24 10 48 89 f8 48 c1 e8 03 <42> 80 3c 28 00 74 a4 e8 e0 bb 00 fa eb 9d 48 8d bb 28 04 00 00 48
[  820.285836] RSP: 0018:ffff880178d7f218 EFLAGS: 00010806
[  820.291214] RAX: 1bd5a00000000022 RBX: ffff880193afe000 RCX: 1ffff10031d5e8d7
[  820.298492] RDX: 0000000040000002 RSI: 0000000000000000 RDI: dead000000000110
[  820.305768] RBP: ffff880178d7f3f0 R08: ffff8801d82786c0 R09: fffff520003b2e47
[  820.313034] R10: fffff520003b2e47 R11: ffffc90001d9723b R12: dead000000000100
[  820.320298] R13: dffffc0000000000 R14: ffff8801dad2cc40 R15: ffff8801d82786c0
[  820.327572] FS:  00007f0b9dc95700(0000) GS:ffff8801dad00000(0000) knlGS:0000000000000000
[  820.335801] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  820.341675] CR2: 00007f0b9dc52db8 CR3: 00000001d8e67000 CR4: 00000000001426e0
[  820.348943] Call Trace:
[  820.351541]  ? mark_held_locks+0x130/0x130
[  820.355777]  ? rcu_softirq_qs+0x20/0x20
[  820.359750]  ? __sched_text_start+0x8/0x8
[  820.363895]  ? find_held_lock+0x36/0x1c0
[  820.367961]  ? preempt_schedule_irq+0x5e/0x110
[  820.372540]  ? preempt_schedule_irq+0x5e/0x110
[  820.377123]  ? lockdep_hardirqs_on+0x421/0x5c0
[  820.381715]  ? kasan_check_read+0x11/0x20
[  820.385863]  ? retint_kernel+0x1b/0x2d
[  820.389751]  ? trace_hardirqs_off_caller+0x300/0x300
[  820.394853]  ? rcu_softirq_qs+0x20/0x20
[  820.398825]  ? rcu_softirq_qs+0x20/0x20
[  820.402798]  ? unwind_dump+0x190/0x190
[  820.406685]  preempt_schedule_irq+0x87/0x110
[  820.411104]  retint_kernel+0x1b/0x2d
[  820.414820] RIP: 0010:depot_save_stack+0x128/0x470
[  820.419749] Code: 84 7a 8b 4d 85 e4 0f 84 d4 00 00 00 44 8d 47 ff 49 c1 e0 03 eb 0d 4d 8b 24 24 4d 85 e4 0f 84 bd 00 00 00 41 39 5c 24 08 75 ec <41> 3b 7c 24 0c 75 e5 48 8b 01 49 39 44 24 18 75 db 31 c0 eb 10 48
[  820.438648] RSP: 0018:ffff880178d7f4e0 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13
[  820.446356] RAX: 00000000bdad0622 RBX: 0000000047f0567f RCX: ffff880178d7f540
[  820.453625] RDX: 0000000089b7e1ca RSI: 00000000006080c0 RDI: 000000000000000a
[  820.460890] RBP: ffff880178d7f518 R08: 0000000000000048 R09: 0000000040dbd1b6
[  820.468158] R10: 00000000b859374c R11: ffff8801dad2dabb R12: ffff880190cab850
[  820.475424] R13: ffff880178d7f528 R14: 000000000000567f R15: ffff8801c79c405f
[  820.482723]  save_stack+0xa9/0xd0
[  820.486178]  ? save_stack+0x43/0xd0
[  820.489818]  ? kasan_kmalloc+0xc7/0xe0
[  820.493711]  ? kasan_slab_alloc+0x12/0x20
[  820.497858]  ? kmem_cache_alloc_trace+0x13b/0x750
[  820.502710]  ? kvm_dev_ioctl+0xad2/0x1ae0
[  820.506858]  ? do_vfs_ioctl+0x1de/0x1720
[  820.510930]  ? ksys_ioctl+0xa9/0xd0
[  820.514564]  ? __x64_sys_ioctl+0x73/0xb0
[  820.518624]  ? do_syscall_64+0x1b9/0x820
[  820.522688]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  820.528078]  ? find_held_lock+0x36/0x1c0
[  820.532146]  ? kmem_cache_alloc_trace+0x29c/0x750
[  820.536991]  ? kmem_cache_alloc_trace+0x29c/0x750
[  820.541832]  ? lockdep_hardirqs_on+0x421/0x5c0
[  820.546415]  ? trace_hardirqs_on+0xbd/0x310
[  820.550731]  ? up_write+0x7b/0x220
[  820.554270]  ? kvm_dev_ioctl+0xad2/0x1ae0
[  820.558417]  ? kasan_unpoison_shadow+0x35/0x50
[  820.562997]  kasan_kmalloc+0xc7/0xe0
[  820.566718]  kasan_slab_alloc+0x12/0x20
[  820.570692]  kmem_cache_alloc_trace+0x13b/0x750
[  820.575373]  kvm_dev_ioctl+0xad2/0x1ae0
[  820.579348]  ? is_bpf_text_address+0xac/0x170
[  820.583850]  ? kvm_debugfs_release+0x90/0x90
[  820.588259]  ? graph_lock+0x170/0x170
[  820.592057]  ? do_futex+0x249/0x26d0
[  820.595770]  ? rcu_softirq_qs+0x20/0x20
[  820.599828]  ? rcu_softirq_qs+0x20/0x20
[  820.603800]  ? unwind_dump+0x190/0x190
[  820.607690]  ? find_held_lock+0x36/0x1c0
[  820.611760]  ? __fget+0x4aa/0x740
[  820.615211]  ? lock_downgrade+0x900/0x900
[  820.619359]  ? check_preemption_disabled+0x48/0x200
[  820.624381]  ? kasan_check_read+0x11/0x20
[  820.628525]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  820.633796]  ? rcu_softirq_qs+0x20/0x20
[  820.637786]  ? ksys_dup3+0x680/0x680
[  820.641504]  ? kasan_check_write+0x14/0x20
[  820.645766]  ? trace_hardirqs_off+0xb8/0x310
[  820.650211]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  820.655754]  ? kvm_debugfs_release+0x90/0x90
[  820.660166]  do_vfs_ioctl+0x1de/0x1720
[  820.664059]  ? rcu_lockdep_current_cpu_online+0x1a4/0x210
[  820.669601]  ? ioctl_preallocate+0x300/0x300
[  820.674009]  ? __fget_light+0x2e9/0x430
[  820.677997]  ? fget_raw+0x20/0x20
[  820.681455]  ? putname+0xf2/0x130
[  820.684914]  ? rcu_read_lock_sched_held+0x108/0x120
[  820.689930]  ? kmem_cache_free+0x24f/0x290
[  820.694174]  ? __x64_sys_futex+0x47f/0x6a0
[  820.698410]  ? do_syscall_64+0x9a/0x820
[  820.702385]  ? do_syscall_64+0x9a/0x820
[  820.706362]  ? lockdep_hardirqs_on+0x421/0x5c0
[  820.710947]  ? security_file_ioctl+0x94/0xc0
[  820.715365]  ksys_ioctl+0xa9/0xd0
[  820.718819]  __x64_sys_ioctl+0x73/0xb0
[  820.722721]  do_syscall_64+0x1b9/0x820
[  820.726612]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  820.731976]  ? syscall_return_slowpath+0x5e0/0x5e0
[  820.736917]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  820.741772]  ? trace_hardirqs_off+0x310/0x310
[  820.746270]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  820.751290]  ? prepare_exit_to_usermode+0x291/0x3b0
[  820.756348]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  820.761196]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  820.766382] RIP: 0033:0x457679
[  820.769581] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  820.788480] RSP: 002b:00007f0b9dc94c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  820.796188] RAX: ffffffffffffffda RBX: 00007f0b9dc956d4 RCX: 0000000000457679
[  820.803455] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006
[  820.810746] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  820.818013] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  820.825281] R13: 00000000004cfc28 R14: 00000000004bfd60 R15: 0000000000000000
[  820.832559] Modules linked in:
[  820.835756] 
[  820.835763] ======================================================
[  820.835769] WARNING: possible circular locking dependency detected
[  820.835774] 4.19.0-rc4-next-20180921+ #77 Not tainted
[  820.835780] ------------------------------------------------------
[  820.835785] syz-executor2/29814 is trying to acquire lock:
[  820.835789] 00000000054781fe ((console_sem).lock){-.-.}, at: down_trylock+0x13/0x70
[  820.835806] 
[  820.835810] but task is already holding lock:
[  820.835814] 0000000067941241 (&rq->lock){-.-.}, at: __schedule+0x236/0x1ed0
[  820.835830] 
[  820.835835] which lock already depends on the new lock.
[  820.835838] 
[  820.835841] 
[  820.835846] the existing dependency chain (in reverse order) is:
[  820.835849] 
[  820.835852] -> #2 (&rq->lock){-.-.}:
[  820.835868]        _raw_spin_lock+0x2d/0x40
[  820.835872]        task_fork_fair+0xb0/0x6d0
[  820.835877]        sched_fork+0x443/0xba0
[  820.835881]        copy_process+0x2585/0x8780
[  820.835885]        _do_fork+0x1cb/0x11c0
[  820.835890]        kernel_thread+0x34/0x40
[  820.835894]        rest_init+0x22/0xe5
[  820.835898]        start_kernel+0x8bc/0x8f7
[  820.835903]        x86_64_start_reservations+0x29/0x2b
[  820.835908]        x86_64_start_kernel+0x76/0x79
[  820.835912]        secondary_startup_64+0xa4/0xb0
[  820.835915] 
[  820.835918] -> #1 (&p->pi_lock){-.-.}:
[  820.835934]        _raw_spin_lock_irqsave+0x99/0xd0
[  820.835939]        try_to_wake_up+0xd2/0x12f0
[  820.835943]        wake_up_process+0x10/0x20
[  820.835947]        __up.isra.1+0x1c0/0x2a0
[  820.835951]        up+0x13c/0x1c0
[  820.835956]        __up_console_sem+0xbe/0x1b0
[  820.835960]        console_unlock+0x80c/0x1150
[  820.835965]        vprintk_emit+0x33d/0x930
[  820.835969]        vprintk_default+0x28/0x30
[  820.835973]        vprintk_func+0x7e/0x181
[  820.835977]        printk+0xa7/0xcf
[  820.835982]        do_exit.cold.19+0x5b/0x21f
[  820.835986]        do_group_exit+0x177/0x440
[  820.835991]        __x64_sys_exit_group+0x3e/0x50
[  820.835995]        do_syscall_64+0x1b9/0x820
[  820.836000]        entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  820.836003] 
[  820.836006] -> #0 ((console_sem).lock){-.-.}:
[  820.836022]        lock_acquire+0x1ed/0x520
[  820.836027]        _raw_spin_lock_irqsave+0x99/0xd0
[  820.836031]        down_trylock+0x13/0x70
[  820.836037]        __down_trylock_console_sem+0xae/0x200
[  820.836041]        console_trylock+0x15/0xa0
[  820.836045]        vprintk_emit+0x322/0x930
[  820.836050]        vprintk_default+0x28/0x30
[  820.836054]        vprintk_func+0x7e/0x181
[  820.836058]        printk+0xa7/0xcf
[  820.836063]        kasan_die_handler.cold.22+0x11/0x30
[  820.836068]        notifier_call_chain+0x17e/0x380
[  820.836073]        atomic_notifier_call_chain+0x96/0x190
[  820.836077]        notify_die+0x1bd/0x2d0
[  820.836082]        do_general_protection+0x25b/0x340
[  820.836086]        general_protection+0x1e/0x30
[  820.836091]        __schedule+0x1144/0x1ed0
[  820.836095]        preempt_schedule_irq+0x87/0x110
[  820.836100]        retint_kernel+0x1b/0x2d
[  820.836104]        depot_save_stack+0x128/0x470
[  820.836109]        save_stack+0xa9/0xd0
[  820.836113]        kasan_kmalloc+0xc7/0xe0
[  820.836117]        kasan_slab_alloc+0x12/0x20
[  820.836122]        kmem_cache_alloc_trace+0x13b/0x750
[  820.836126]        kvm_dev_ioctl+0xad2/0x1ae0
[  820.836131]        do_vfs_ioctl+0x1de/0x1720
[  820.836134]        ksys_ioctl+0xa9/0xd0
[  820.836139]        __x64_sys_ioctl+0x73/0xb0
[  820.836143]        do_syscall_64+0x1b9/0x820
[  820.836148]        entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  820.836151] 
[  820.836156] other info that might help us debug this:
[  820.836159] 
[  820.836162] Chain exists of:
[  820.836165]   (console_sem).lock --> &p->pi_lock --> &rq->lock
[  820.836186] 
[  820.836191]  Possible unsafe locking scenario:
[  820.836193] 
[  820.836198]        CPU0                    CPU1
[  820.836203]        ----                    ----
[  820.836206]   lock(&rq->lock);
[  820.836216]                                lock(&p->pi_lock);
[  820.836227]                                lock(&rq->lock);
[  820.836236]   lock((console_sem).lock);
[  820.836245] 
[  820.836249]  *** DEADLOCK ***
[  820.836252] 
[  820.836256] 2 locks held by syz-executor2/29814:
[  820.836259]  #0: 0000000067941241 (&rq->lock){-.-.}, at: __schedule+0x236/0x1ed0
[  820.836279]  #1: 0000000028ad3e54 (rcu_read_lock){....}, at: atomic_notifier_call_chain+0x0/0x190
[  820.836299] 
[  820.836302] stack backtrace:
[  820.836310] CPU: 1 PID: 29814 Comm: syz-executor2 Not tainted 4.19.0-rc4-next-20180921+ #77
[  820.836318] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  820.836321] Call Trace:
[  820.836325]  dump_stack+0x1d3/0x2c4
[  820.836330]  ? dump_stack_print_info.cold.2+0x52/0x52
[  820.836335]  ? vprintk_func+0x85/0x181
[  820.836340]  print_circular_bug.isra.33.cold.54+0x1bd/0x27d
[  820.836345]  ? save_trace+0xe0/0x290
[  820.836349]  __lock_acquire+0x33e4/0x4ec0
[  820.836354]  ? mark_held_locks+0x130/0x130
[  820.836358]  ? mark_held_locks+0x130/0x130
[  820.836363]  ? mark_held_locks+0x130/0x130
[  820.836367]  ? update_load_avg+0x387/0x2470
[  820.836372]  ? graph_lock+0x170/0x170
[  820.836376]  ? graph_lock+0x170/0x170
[  820.836380]  ? rb_erase+0x3710/0x3710
[  820.836385]  ? graph_lock+0x170/0x170
[  820.836390]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  820.836394]  lock_acquire+0x1ed/0x520
[  820.836398]  ? down_trylock+0x13/0x70
[  820.836403]  ? find_held_lock+0x36/0x1c0
[  820.836407]  ? lock_release+0x970/0x970
[  820.836412]  ? trace_hardirqs_off+0xb8/0x310
[  820.836416]  ? vprintk_emit+0x1d3/0x930
[  820.836421]  ? trace_hardirqs_on_caller+0x310/0x310
[  820.836426]  ? trace_hardirqs_off+0xb8/0x310
[  820.836430]  ? log_store+0x344/0x4c0
[  820.836435]  ? vprintk_emit+0x322/0x930
[  820.836439]  _raw_spin_lock_irqsave+0x99/0xd0
[  820.836444]  ? down_trylock+0x13/0x70
[  820.836448]  down_trylock+0x13/0x70
[  820.836453]  __down_trylock_console_sem+0xae/0x200
[  820.836457]  console_trylock+0x15/0xa0
[  820.836462]  vprintk_emit+0x322/0x930
[  820.836466]  ? wake_up_klogd+0x180/0x180
[  820.836470]  ? __lock_acquire+0x7ec/0x4ec0
[  820.836475]  ? set_next_entity+0x2fe/0xc40
[  820.836479]  ? __lock_acquire+0x7ec/0x4ec0
[  820.836485]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  820.836489]  ? mark_held_locks+0x130/0x130
[  820.836494]  ? check_preemption_disabled+0x48/0x200
[  820.836499]  vprintk_default+0x28/0x30
[  820.836503]  vprintk_func+0x7e/0x181
[  820.836507]  printk+0xa7/0xcf
[  820.836512]  ? kmsg_dump_rewind_nolock+0xe4/0xe4
[  820.836517]  ? perf_event_update_userpage+0xcd0/0xcd0
[  820.836522]  ? kasan_die_handler.cold.22+0x5/0x30
[  820.836526]  ? kasan_die_handler+0x1a/0x31
[  820.836531]  kasan_die_handler.cold.22+0x11/0x30
[  820.836536]  notifier_call_chain+0x17e/0x380
[  820.836541]  ? unregister_die_notifier+0x20/0x20
[  820.836545]  ? kasan_check_read+0x11/0x20
[  820.836550]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  820.836555]  ? rcu_softirq_qs+0x20/0x20
[  820.836559]  ? rcu_softirq_qs+0x20/0x20
[  820.836564]  ? cmp_ex_search+0x8c/0xb0
[  820.836568]  atomic_notifier_call_chain+0x96/0x190
[  820.836573]  notify_die+0x1bd/0x2d0
[  820.836578]  ? __atomic_notifier_call_chain+0x1a0/0x1a0
[  820.836582]  ? __schedule+0x1144/0x1ed0
[  820.836587]  ? search_exception_tables+0x47/0x50
[  820.836592]  ? fixup_exception+0xb1/0xde
[  820.836596]  do_general_protection+0x25b/0x340
[  820.836601]  general_protection+0x1e/0x30
[  820.836606] RIP: 0010:__schedule+0x1144/0x1ed0
[  820.836619] Code: 89 e0 48 c1 e8 03 42 80 3c 28 00 0f 85 7e 08 00 00 4d 8b 24 24 4d 85 e4 0f 84 7e f5 ff ff 49 8d 7c 24 10 48 89 f8 48 c1 e8 03 <42> 80 3c 28 00 74 a4 e8 e0 bb 00 fa eb 9d 48 8d bb 28 04 00 00 48
[  820.836624] RSP: 0018:ffff880178d7f218 EFLAGS: 00010806
[  820.836634] RAX: 1bd5a00000000022 RBX: ffff880193afe000 RCX: 1ffff10031d5e8d7
[  820.836640] RDX: 0000000040000002 RSI: 0000000000000000 RDI: dead000000000110
[  820.836647] RBP: ffff880178d7f3f0 R08: ffff8801d82786c0 R09: fffff520003b2e47
[  820.836653] R10: fffff520003b2e47 R11: ffffc90001d9723b R12: dead000000000100
[  820.836659] R13: dffffc0000000000 R14: ffff8801dad2cc40 R15: ffff8801d82786c0
[  820.836664]  ? __schedule+0x1119/0x1ed0
[  820.836668]  ? mark_held_locks+0x130/0x130
[  820.836672]  ? rcu_softirq_qs+0x20/0x20
[  820.836677]  ? __sched_text_start+0x8/0x8
[  820.836681]  ? find_held_lock+0x36/0x1c0
[  820.836686]  ? preempt_schedule_irq+0x5e/0x110
[  820.836691]  ? preempt_schedule_irq+0x5e/0x110
[  820.836701]  ? lockdep_hardirqs_on+0x421/0x5c0
[  820.836706]  ? kasan_check_read+0x11/0x20
[  820.836710]  ? retint_kernel+0x1b/0x2d
[  820.836715]  ? trace_hardirqs_off_caller+0x300/0x300
[  820.836720]  ? rcu_softirq_qs+0x20/0x20
[  820.836724]  ? rcu_softirq_qs+0x20/0x20
[  820.836728]  ? unwind_dump+0x190/0x190
[  820.836733]  preempt_schedule_irq+0x87/0x110
[  820.836737]  retint_kernel+0x1b/0x2d
[  820.836742] RIP: 0010:depot_save_stack+0x128/0x470
[  820.836756] Code: 84 7a 8b 4d 85 e4 0f 84 d4 00 00 00 44 8d 47 ff 49 c1 e0 03 eb 0d 4d 8b 24 24 4d 85 e4 0f 84 bd 00 00 00 41 39 5c 24 08 75 ec <41> 3b 7c 24 0c 75 e5 48 8b 01 49 39 44 24 18 75 db 31 c0 eb 10 48
[  820.836761] RSP: 0018:ffff880178d7f4e0 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13
[  820.836772] RAX: 00000000bdad0622 RBX: 0000000047f0567f RCX: ffff880178d7f540
[  820.836778] RDX: 0000000089b7e1ca RSI: 00000000006080c0 RDI: 000000000000000a
[  820.836785] RBP: ffff880178d7f518 R08: 0000000000000048 R09: 0000000040dbd1b6
[  820.836791] R10: 00000000b859374c R11: ffff8801dad2dabb R12: ffff880190cab850
[  820.836797] R13: ffff880178d7f528 R14: 000000000000567f R15: ffff8801c79c405f
[  820.836802]  save_stack+0xa9/0xd0
[  820.836806]  ? save_stack+0x43/0xd0
[  820.836810]  ? kasan_kmalloc+0xc7/0xe0
[  820.836815]  ? kasan_slab_alloc+0x12/0x20
[  820.836819]  ? kmem_cache_alloc_trace+0x13b/0x750
[  820.836824]  ? kvm_dev_ioctl+0xad2/0x1ae0
[  820.836828]  ? do_vfs_ioctl+0x1de/0x1720
[  820.836833]  ? ksys_ioctl+0xa9/0xd0
[  820.836837]  ? __x64_sys_ioctl+0x73/0xb0
[  820.836841]  ? do_syscall_64+0x1b9/0x820
[  820.836847]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  820.836851]  ? find_held_lock+0x36/0x1c0
[  820.836856]  ? kmem_cache_alloc_trace+0x29c/0x750
[  820.836861]  ? kmem_cache_alloc_trace+0x29c/0x750
[  820.836866]  ? lockdep_hardirqs_on+0x421/0x5c0
[  820.836870]  ? trace_hardirqs_on+0xbd/0x310
[  820.836874]  ? up_write+0x7b/0x220
[  820.836879]  ? kvm_dev_ioctl+0xad2/0x1ae0
[  820.836884]  ? kasan_unpoison_shadow+0x35/0x50
[  820.836888]  kasan_kmalloc+0xc7/0xe0
[  820.836892]  kasan_slab_alloc+0x12/0x20
[  820.836897]  kmem_cache_alloc_trace+0x13b/0x750
[  820.836901]  kvm_dev_ioctl+0xad2/0x1ae0
[  820.836906]  ? is_bpf_text_address+0xac/0x170
[  820.836911]  ? kvm_debugfs_release+0x90/0x90
[  820.836915]  ? graph_lock+0x170/0x170
[  820.836919]  ? do_futex+0x249/0x26d0
[  820.836922] 

[  820.836930] Lost 47 message(s)!
[  821.860796] ---[ end trace c1738913b778c4de ]---
[  821.865557] RIP: 0010:__schedule+0x1144/0x1ed0
[  821.870157] Code: 89 e0 48 c1 e8 03 42 80 3c 28 00 0f 85 7e 08 00 00 4d 8b 24 24 4d 85 e4 0f 84 7e f5 ff ff 49 8d 7c 24 10 48 89 f8 48 c1 e8 03 <42> 80 3c 28 00 74 a4 e8 e0 bb 00 fa eb 9d 48 8d bb 28 04 00 00 48
[  821.889061] RSP: 0018:ffff880178d7f218 EFLAGS: 00010806
[  821.894427] RAX: 1bd5a00000000022 RBX: ffff880193afe000 RCX: 1ffff10031d5e8d7
[  821.901702] RDX: 0000000040000002 RSI: 0000000000000000 RDI: dead000000000110
[  821.908971] RBP: ffff880178d7f3f0 R08: ffff8801d82786c0 R09: fffff520003b2e47
[  821.916237] R10: fffff520003b2e47 R11: ffffc90001d9723b R12: dead000000000100
[  821.923506] R13: dffffc0000000000 R14: ffff8801dad2cc40 R15: ffff8801d82786c0
[  821.930777] FS:  00007f0b9dc95700(0000) GS:ffff8801dad00000(0000) knlGS:0000000000000000
[  821.939003] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  821.944879] CR2: 00007f0b9dc52db8 CR3: 00000001d8e67000 CR4: 00000000001426e0
[  821.952155] Kernel panic - not syncing: Fatal exception
[  823.135785] Shutting down cpus with NMI
[  823.140773] Kernel Offset: disabled
[  823.144398] Rebooting in 86400 seconds..