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", &(0x7f00000015c0)="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"}}, &(0x7f00000001c0)=0x0) timer_getoverrun(r2) setsockopt$CAN_RAW_RECV_OWN_MSGS(r1, 0x65, 0x4, &(0x7f0000000040)=0x1, 0x4) 06:48:12 executing program 3: syz_emit_ethernet(0x66, &(0x7f0000000040)={@broadcast, @random="96c1e9574b31", @void, {@ipv4={0x800, @icmp={{0xf, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1, {[@generic={0x7, 0x9, "09d4f6371d7d94"}, @ssrr={0x89, 0x1f, 0x13, [@empty, @broadcast, @dev={0xac, 0x14, 0x14, 0x12}, @remote, @rand_addr=0x6, @initdev={0xac, 0x1e, 0x1, 0x0}, @loopback]}]}}, @time_exceeded={0x5, 0x0, 0x0, 0x0, 0x0, 0x8, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast1, @remote}}}}}}, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f0000000000)={0x7, 0x7f, 0x2}, 0x7) 06:48:12 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0x4]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 06:48:14 executing program 5 (fault-call:5 fault-nth:0): mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000200)=@nullb='/dev/nullb0\x00', &(0x7f0000000340)='./file0\x00', &(0x7f0000000100)='reiserfs\x00', 0x0, 0x0) 06:48:14 executing program 3: syz_emit_ethernet(0x3e, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffff00ffff96c1e9574b310800450000300000000000019078ac1efe268e83eb5d7e53907800000800450000000000000000000000e0000001ac1414bb"], 0x0) 06:48:14 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff], 0x0, 0x214}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 06:48:14 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$sock_bt_cmtp_CMTPGETCONNLIST(0xffffffffffffffff, 0x800443d2, &(0x7f0000000040)) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 06:48:14 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$EXT4_IOC_PRECACHE_EXTENTS(r3, 0x6612) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_emit_ethernet(0x3e, &(0x7f0000000000)={@broadcast, @random="96c1e9574b31", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, @time_exceeded={0x5, 0x0, 0x0, 0x0, 0x0, 0x8, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, @multicast1, @remote}}}}}}, 0x0) 06:48:14 executing program 2 (fault-call:5 fault-nth:1): r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) 06:48:14 executing program 3 (fault-call:0 fault-nth:0): openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) 06:48:14 executing program 4: r0 = socket$unix(0x1, 0x2, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = add_key$user(&(0x7f0000000280)='user\x00', &(0x7f0000000240)={'syz', 0x0}, &(0x7f0000000140)='\a', 0x1, 0xfffffffffffffffe) r3 = add_key$user(&(0x7f0000000080)='user\x00', &(0x7f0000000440)={'syz'}, &(0x7f0000000480)="3894e0aa755678642797c675ec97969c56f2bf12f6039bb83db491604e9211ccc8408e7618ea37393e03de7717926ee49759d8a25fe0ee491d33465a996e601cab82e84deffd4f43b4b8de7c4fc0f12375966fce546ed08ab352a291b7f16898f20eb89ab513fe62e97796f94ae97e59c92f1eb86a95087d0372707700c803790f74e808663977e98054589d308059a63b0534d429abbad8c75335c1bcd5f596b4ef809be3492bf40907de6a8cedbb24290c9e878204418bbe903f3ced734530", 0xc0, 0xfffffffffffffffd) keyctl$dh_compute(0x17, &(0x7f0000000180)={r2, r3, r2}, 0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={'cbcmac(des3_ede-asm)\x00'}}) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) syz_emit_ethernet(0x3e, &(0x7f0000000000)={@broadcast, @random="96c1e9574b31", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, @time_exceeded={0x5, 0x0, 0x0, 0x0, 0x0, 0x8, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast1, @remote}}}}}}, 0x0) [ 1350.284340] kvm [7741]: vcpu0, guest rIP: 0xed disabled perfctr wrmsr: 0xc2 data 0xed660040d08e0002 [ 1350.309963] FAULT_INJECTION: forcing a failure. [ 1350.309963] name failslab, interval 1, probability 0, space 0, times 0 [ 1350.334337] kvm [7741]: vcpu0, guest rIP: 0xed ignored wrmsr: 0x11e data 0xed660040d08e0002 [ 1350.345005] CPU: 1 PID: 7754 Comm: syz-executor.2 Not tainted 4.14.167-syzkaller #0 [ 1350.353142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1350.362603] Call Trace: [ 1350.365337] dump_stack+0x142/0x197 [ 1350.369169] should_fail.cold+0x10f/0x159 [ 1350.373351] should_failslab+0xdb/0x130 [ 1350.377351] kmem_cache_alloc_trace+0x2e9/0x790 [ 1350.382039] ? kasan_check_write+0x14/0x20 [ 1350.386307] ? _copy_from_user+0x99/0x110 [ 1350.393693] copy_mount_options+0x5c/0x2f0 [ 1350.397978] SyS_mount+0x87/0x120 [ 1350.401449] ? copy_mnt_ns+0x8c0/0x8c0 [ 1350.405458] do_syscall_64+0x1e8/0x640 [ 1350.409362] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1350.414361] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1350.419559] RIP: 0033:0x45b349 [ 1350.422742] RSP: 002b:00007f9d77f7ac78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1350.430443] RAX: ffffffffffffffda RBX: 00007f9d77f7b6d4 RCX: 000000000045b349 [ 1350.437712] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1350.444988] RBP: 000000000075bf20 R08: 00000000200002c0 R09: 0000000000000000 [ 1350.452276] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1350.459549] R13: 0000000000000744 R14: 00000000004c8bd8 R15: 0000000000000001 [ 1350.482121] FAULT_INJECTION: forcing a failure. [ 1350.482121] name failslab, interval 1, probability 0, space 0, times 0 [ 1350.506987] CPU: 1 PID: 7761 Comm: syz-executor.3 Not tainted 4.14.167-syzkaller #0 [ 1350.514959] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1350.524465] Call Trace: [ 1350.527091] dump_stack+0x142/0x197 [ 1350.530749] should_fail.cold+0x10f/0x159 [ 1350.533555] kvm [7741]: vcpu0, guest rIP: 0xed disabled perfctr wrmsr: 0x186 data 0xed660040d08e0002 [ 1350.534928] should_failslab+0xdb/0x130 [ 1350.534943] kmem_cache_alloc+0x2d7/0x780 [ 1350.534955] ? lock_downgrade+0x740/0x740 [ 1350.534974] getname_flags+0xcb/0x580 [ 1350.560404] getname+0x1a/0x20 [ 1350.563970] do_sys_open+0x1e7/0x430 [ 1350.568072] ? filp_open+0x70/0x70 [ 1350.571638] SyS_openat+0x30/0x40 [ 1350.575898] ? SyS_open+0x40/0x40 [ 1350.579372] do_syscall_64+0x1e8/0x640 [ 1350.583283] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1350.588156] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1350.593365] RIP: 0033:0x45b349 [ 1350.596570] RSP: 002b:00007f214582cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1350.604297] RAX: ffffffffffffffda RBX: 00007f214582d6d4 RCX: 000000000045b349 [ 1350.606305] FAULT_INJECTION: forcing a failure. [ 1350.606305] name failslab, interval 1, probability 0, space 0, times 0 [ 1350.611710] RDX: 0000000000004000 RSI: 00000000200000c0 RDI: ffffffffffffff9c 06:48:14 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x10000, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 06:48:14 executing program 2 (fault-call:5 fault-nth:2): r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) [ 1350.611717] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1350.611722] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 1350.611727] R13: 0000000000000773 R14: 00000000004c8d64 R15: 0000000000000000 06:48:14 executing program 3 (fault-call:0 fault-nth:1): openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) 06:48:14 executing program 4: socket$inet_icmp_raw(0x2, 0x3, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) accept4$phonet_pipe(r1, &(0x7f0000000000), &(0x7f0000000040)=0x10, 0x100800) r2 = socket$inet6(0xa, 0x1000000000002, 0x0) r3 = socket$inet(0x2, 0x1, 0x0) connect$inet(r3, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r3, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r3, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r2, r3) r4 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) syz_emit_ethernet(0x3e, &(0x7f0000000100)=ANY=[@ANYBLOB="ffffffffffff96c1e9574b310800450000300000000000019078ac1e0001e000e7000500907800000800450000000000000000000000e0000001ac1414bb95dbc29de473883c7433b28779a8d082e563a07b54804f22849eac0cb746ba09575e687076b40585987ff78aee2f70b87f8c4290f3ea226a76e6fa87d9ec85033d9f79281fea0476c4d59fd4b2b8399ee66e4e4b03f5a62951302d73a0e15f987433b3e11343042c7a428ffa5f3452812f2cdac613fe1c8aacb0b8c845d4497baeffec87cfd7"], 0x0) 06:48:14 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) fsetxattr$security_selinux(r0, &(0x7f00000002c0)='security.selinux\x00', &(0x7f0000000300)='system_u:object_r:ptchown_exec_t:s0\x00', 0x24, 0x2) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$sock_bt_cmtp_CMTPGETCONNLIST(0xffffffffffffffff, 0x800443d2, &(0x7f0000000040)) r4 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000340)='/dev/btrfs-control\x00', 0x2569e9c69ed61826, 0x0) ioctl$FS_IOC_SETFLAGS(r4, 0x40086602, &(0x7f0000000380)=0x3c) r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r6 = socket$inet_icmp_raw(0x2, 0x3, 0x1) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000000)={0x0, 0x0}) r8 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/autofs\x00', 0x8000, 0x0) perf_event_open(&(0x7f0000000180)={0x4, 0x70, 0x5, 0x3f, 0xa3, 0x7, 0x0, 0x4, 0x8100, 0x3, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x2, @perf_config_ext={0xfffffffffffffff7, 0xfffffffffffffff8}, 0x0, 0x9, 0x2, 0x8, 0xc4, 0x8, 0x2}, r7, 0x2, r8, 0x1) r9 = dup(r6) ioctl$PERF_EVENT_IOC_ENABLE(r9, 0x8912, 0x400200) ioctl$KVM_SET_REGS(r9, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x2, 0x0, 0x0, 0xfff, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x55]}) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) [ 1350.791459] FAULT_INJECTION: forcing a failure. [ 1350.791459] name failslab, interval 1, probability 0, space 0, times 0 [ 1350.839885] CPU: 0 PID: 7768 Comm: syz-executor.5 Not tainted 4.14.167-syzkaller #0 [ 1350.848070] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1350.857447] Call Trace: [ 1350.860213] dump_stack+0x142/0x197 [ 1350.863881] should_fail.cold+0x10f/0x159 [ 1350.868069] should_failslab+0xdb/0x130 [ 1350.872065] __kmalloc_track_caller+0x2ec/0x790 [ 1350.876755] ? __sb_end_write+0xc1/0x100 [ 1350.880838] ? strndup_user+0x62/0xf0 [ 1350.884665] memdup_user+0x26/0xa0 [ 1350.888225] strndup_user+0x62/0xf0 [ 1350.891886] SyS_mount+0x3c/0x120 [ 1350.895350] ? copy_mnt_ns+0x8c0/0x8c0 [ 1350.899259] do_syscall_64+0x1e8/0x640 [ 1350.903158] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1350.908187] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1350.913379] RIP: 0033:0x45b349 [ 1350.916566] RSP: 002b:00007f06ef44bc78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1350.924436] RAX: ffffffffffffffda RBX: 00007f06ef44c6d4 RCX: 000000000045b349 [ 1350.931712] RDX: 0000000020000100 RSI: 0000000020000340 RDI: 0000000020000200 [ 1350.938994] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1350.946275] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1350.953702] R13: 0000000000000744 R14: 00000000004c8bd8 R15: 0000000000000000 [ 1350.961056] CPU: 1 PID: 7780 Comm: syz-executor.2 Not tainted 4.14.167-syzkaller #0 [ 1350.968864] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1350.978337] Call Trace: [ 1350.980939] dump_stack+0x142/0x197 [ 1350.984792] should_fail.cold+0x10f/0x159 [ 1350.988963] should_failslab+0xdb/0x130 [ 1350.992954] kmem_cache_alloc+0x2d7/0x780 [ 1350.997267] ? __do_page_fault+0x358/0xb80 [ 1351.004302] getname_flags+0xcb/0x580 [ 1351.008127] ? trace_hardirqs_on_caller+0x400/0x590 [ 1351.013169] user_path_at_empty+0x2f/0x50 [ 1351.017343] do_mount+0x12b/0x27d0 [ 1351.020903] ? retint_kernel+0x2d/0x2d [ 1351.025257] ? copy_mount_string+0x40/0x40 [ 1351.029540] ? copy_mount_options+0x18f/0x2f0 [ 1351.034139] ? copy_mount_options+0x19e/0x2f0 [ 1351.038686] ? copy_mount_options+0x1fe/0x2f0 [ 1351.043201] SyS_mount+0xab/0x120 [ 1351.046720] ? copy_mnt_ns+0x8c0/0x8c0 [ 1351.050664] do_syscall_64+0x1e8/0x640 [ 1351.054598] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1351.059471] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1351.064727] RIP: 0033:0x45b349 [ 1351.067934] RSP: 002b:00007f9d77f7ac78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1351.075664] RAX: ffffffffffffffda RBX: 00007f9d77f7b6d4 RCX: 000000000045b349 [ 1351.080591] audit: type=1400 audit(1580107694.948:12335): avc: denied { associate } for pid=7784 comm="syz-executor.1" name="kvm" dev="devtmpfs" ino=14 scontext=system_u:object_r:ptchown_exec_t:s0 tcontext=system_u:object_r:device_t:s0 tclass=filesystem permissive=1 [ 1351.083095] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1351.083105] RBP: 000000000075bf20 R08: 00000000200002c0 R09: 0000000000000000 [ 1351.120934] FAULT_INJECTION: forcing a failure. [ 1351.120934] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1351.122307] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1351.141456] R13: 0000000000000744 R14: 00000000004c8bd8 R15: 0000000000000002 [ 1351.148770] CPU: 0 PID: 7797 Comm: syz-executor.3 Not tainted 4.14.167-syzkaller #0 [ 1351.156580] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1351.166896] Call Trace: [ 1351.170051] dump_stack+0x142/0x197 [ 1351.173706] should_fail.cold+0x10f/0x159 [ 1351.177878] __alloc_pages_nodemask+0x1d6/0x7a0 [ 1351.182577] ? fs_reclaim_acquire+0x20/0x20 [ 1351.186918] ? __alloc_pages_slowpath+0x2930/0x2930 [ 1351.191963] cache_grow_begin+0x80/0x400 [ 1351.196154] kmem_cache_alloc+0x6a6/0x780 [ 1351.200412] ? lock_downgrade+0x740/0x740 [ 1351.204588] getname_flags+0xcb/0x580 [ 1351.208419] getname+0x1a/0x20 [ 1351.211710] do_sys_open+0x1e7/0x430 [ 1351.215562] ? filp_open+0x70/0x70 [ 1351.219132] SyS_openat+0x30/0x40 [ 1351.222599] ? SyS_open+0x40/0x40 [ 1351.226069] do_syscall_64+0x1e8/0x640 [ 1351.230075] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1351.234950] entry_SYSCALL_64_after_hwframe+0x42/0xb7 06:48:15 executing program 5: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0xaf971900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) getsockname$packet(r3, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000080)=0x14) mount(&(0x7f0000000200)=@nullb='/dev/nullb0\x00', &(0x7f0000000340)='./file0\x00', &(0x7f0000000100)='reiserfs\x00', 0x0, 0x0) 06:48:15 executing program 2 (fault-call:5 fault-nth:3): r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) 06:48:15 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) getsockopt$inet_mtu(0xffffffffffffffff, 0x0, 0xa, &(0x7f0000000240), &(0x7f0000000280)=0x4) dup(r1) getresuid(&(0x7f0000000000), &(0x7f0000000040)=0x0, &(0x7f0000000100)) setsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000000140)={{{@in=@local, @in6=@mcast2, 0x4e20, 0x0, 0x8000, 0x200, 0x2, 0x80, 0xc0, 0x5c, 0x0, r2}, {0x0, 0x1, 0x9, 0x100, 0x2b840cf8, 0x4, 0x7fff, 0x7}, {0xfffffffffffffffc, 0x1, 0x0, 0x2}, 0x9e, 0x6e6bb5, 0x2, 0x0, 0x2, 0x1}, {{@in=@remote, 0x4d5, 0x6c}, 0x2, @in6=@rand_addr="a02569ffe5c0149312584d7ff53f4d97", 0x3504, 0x2, 0x3, 0x81, 0xb8c, 0x7fff, 0xffffff80}}, 0xe8) dup(r0) syz_emit_ethernet(0x3e, &(0x7f0000000080)=ANY=[@ANYBLOB="ffffffffffff96c1e9574b31080045000030000000000001e1ffac1e0001e00000010500907800000800450200000000000000000000e0000001ac1414bb5059f09dd6299a8c55513ccb17217d1cd763490113301419268ffbad7f02692cb6"], 0x0) 06:48:15 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) ioctl$KVM_SET_XSAVE(r6, 0x5000aea5, &(0x7f0000000900)={[0xfffffffc, 0x2ea3, 0xff9, 0x7f, 0xffff, 0x1, 0x400, 0x9, 0x6, 0x796, 0xffffff7f, 0x40, 0x2, 0x3f, 0x2, 0x7, 0x5, 0x9, 0xfffffffa, 0xffff, 0x3, 0x6, 0x0, 0x3, 0x10000, 0x2, 0x7fff, 0x1, 0xff, 0x6a9, 0x1, 0x7, 0x1de, 0x9, 0xfc2, 0x6, 0x5, 0x9, 0xff, 0xf643, 0x2a, 0x9, 0x89a, 0x6, 0x3f, 0xf8, 0x86f, 0x10001, 0x4, 0xfff, 0x101, 0x6, 0xc0000000, 0x0, 0x9, 0x5, 0x4, 0x4, 0x10001, 0x8, 0x6, 0x3, 0x80000000, 0x40, 0x6, 0x8, 0x40, 0xb8, 0x3, 0x1000, 0x2, 0x6, 0x20, 0x4, 0x8000, 0x6, 0x2, 0x5, 0xffffff86, 0x101, 0x2, 0x9, 0x6, 0x5, 0x6, 0x4, 0x1, 0x0, 0xf5a6, 0x0, 0x56, 0x400, 0x6, 0xfffffffa, 0x86, 0x0, 0x4, 0x1, 0x1, 0x2, 0x80000000, 0xfffff000, 0xffffffff, 0xfffffffa, 0x18, 0x2, 0x7, 0x80, 0x6, 0x8, 0x1f, 0x8, 0x8, 0x80, 0x4, 0x1, 0x6, 0x0, 0x1, 0x10001, 0x1, 0x10000, 0x0, 0x6058, 0x3, 0x5, 0xdf1f, 0x3, 0x9, 0x9, 0xee, 0x20, 0x7, 0xfff, 0x1, 0x70, 0x4, 0x234b, 0x80, 0x6, 0x4, 0xdaeb, 0x0, 0x101, 0x9, 0xb86, 0x7, 0xfffff801, 0xffff0bb7, 0x81, 0x7fff, 0x1000, 0xfff, 0xde, 0x5, 0x3ff, 0x8, 0x8, 0x1ff, 0x10001, 0xff, 0x0, 0x9, 0xffffffff, 0x7, 0xc58, 0x720d, 0x0, 0xe8b2, 0x1, 0xe, 0xffff, 0xfff, 0x6, 0x9, 0xd51, 0x4, 0x80000000, 0x100, 0xab9, 0xbfb4, 0x7fffffff, 0x7, 0x8, 0x101, 0x10001, 0x2, 0x5, 0x1, 0x42, 0xfff, 0x6, 0x2, 0xe8ba, 0xa, 0x40, 0x5, 0x7f, 0x7fffffff, 0x959, 0x0, 0x1, 0x7, 0x20, 0x8001, 0x401, 0xfffff3a9, 0x6, 0x8, 0x2, 0x9, 0x400, 0xffffffff, 0x20, 0x9, 0x2, 0x5, 0xf2, 0xffff, 0x3, 0x9, 0x1c, 0x7000000, 0x63d8, 0xac, 0x3ff, 0x6, 0x200, 0xfffffffd, 0x8, 0x10001, 0x7fffffff, 0x2, 0x7f, 0x5, 0xeab, 0xa2, 0xb1, 0xc12, 0x8, 0x200, 0x8, 0x1, 0x0, 0x6, 0xdb, 0x0, 0x10b1, 0x3, 0x3, 0x4, 0x3, 0x9, 0x4, 0x3, 0x8000, 0x10001, 0x1, 0x81, 0x9efe, 0xfff, 0x4, 0x5, 0x1, 0x7, 0x8, 0x3ff, 0xff, 0x2, 0x200, 0x9, 0x1ca, 0x3ff, 0x1, 0x5, 0xb86, 0x0, 0x9, 0x3ed, 0x9, 0x6, 0x7, 0x1, 0x3, 0x8, 0x0, 0x7f, 0x400, 0x8, 0x88028138, 0x7, 0x8, 0x7, 0x0, 0x8000, 0x6, 0x20, 0x1, 0x7, 0x3f, 0x1, 0x100, 0x5, 0x1ff, 0x1, 0xeac, 0x7ff, 0x101, 0x8000, 0x0, 0x9, 0x0, 0x4, 0x1f, 0x7fff, 0x40, 0x9e, 0x9, 0x1, 0x7ff, 0x7, 0x9071, 0x100, 0x3f, 0xff, 0x48, 0x9, 0x800, 0x3, 0x6, 0x0, 0x9, 0x1b, 0x8001, 0xfffffffc, 0x0, 0x10001, 0x1ff, 0x26b7, 0x5866, 0x7ff, 0x7, 0x3ff, 0x0, 0x181, 0x0, 0x8, 0x7fffffff, 0x40000, 0x3ff, 0xe5d1, 0x3f, 0x80000001, 0x1f, 0x7, 0x27f7, 0x4, 0x1, 0xd04, 0x1f, 0x401, 0x80000000, 0x4, 0x80000000, 0x5077, 0x4, 0x94f, 0x8001, 0xff, 0x0, 0x2, 0x1, 0xe8d, 0x21, 0x0, 0x0, 0x10000, 0x10001, 0x4ca6, 0xffffffc1, 0x3, 0xcac7, 0x0, 0x6, 0x100, 0x3, 0xfff, 0x40, 0xb61, 0x4, 0x0, 0x2c, 0x80000000, 0x0, 0x80, 0x8, 0x1, 0x8, 0x8, 0x400, 0x8, 0xffffffe0, 0xfffff800, 0x3, 0x4, 0x248, 0xffffffff, 0x400, 0x7, 0x9, 0x7, 0x462b, 0x9, 0x452f398, 0xd0, 0x19b, 0xfffffff8, 0x0, 0x8, 0x10001, 0x9, 0x1, 0xffff, 0x100, 0x80000001, 0xfffffff7, 0x8, 0x5, 0x0, 0x4, 0x13, 0x8, 0x7a12, 0x3, 0x8001, 0x800, 0x3, 0x1f, 0x5, 0x5, 0x1000, 0x80, 0xfffff6ce, 0xff, 0x5, 0x0, 0x7ff, 0x4, 0x7, 0x0, 0x2, 0x6, 0x5ec4, 0x5, 0x81, 0x0, 0x80, 0x1ff, 0x839, 0xff, 0x9d, 0xfc, 0x7fe0, 0x3ff, 0x1ff, 0x0, 0xfff, 0x6, 0x0, 0xd696, 0x432e, 0x6, 0x8b, 0x25d8, 0x9, 0x7, 0xd74d, 0x7, 0x5, 0x4, 0xfff, 0x7fff, 0x8153, 0x8, 0x9, 0x4, 0x6, 0x4, 0x7, 0x1, 0x5, 0x9, 0xc3b, 0x8000, 0x5, 0xfffff801, 0x1, 0x1ff, 0x5, 0xec80, 0x5, 0x0, 0x3ff, 0x9, 0x196, 0x8, 0x80000000, 0x2e6, 0x0, 0xffffff01, 0x2c, 0x7ff, 0x3ff, 0xfffffffd, 0x7ff, 0x3, 0x8001, 0x2, 0x1, 0x4, 0xd4, 0x8c, 0x46bd, 0xffffffee, 0x0, 0x4, 0x2, 0x7, 0x19b653ab, 0x2aa, 0x4, 0x80, 0x8905, 0x9, 0x7ff, 0x7a2, 0xffff, 0x0, 0x0, 0x2, 0xffffff00, 0xfffffe00, 0x6, 0x100, 0x3f, 0x6dfa9b60, 0x2, 0x8, 0x9, 0x7f, 0xd7b7, 0x1, 0x401, 0x2, 0x6, 0x10000, 0x7, 0xff, 0x0, 0xffffffc0, 0x7f24, 0x5, 0x6, 0x7fffffff, 0x5bd, 0x0, 0x5c, 0x1f2, 0x1, 0x7, 0x6, 0x3, 0x10001, 0xff, 0x2, 0x9c8b, 0x3, 0x20, 0x2, 0x2, 0x8, 0x81, 0x9, 0x4, 0x8993, 0x81, 0x9, 0x2, 0x4, 0x6, 0x2, 0x6, 0xbcbc, 0x1, 0x5, 0x1, 0x7, 0x4, 0x8, 0xffffffff, 0x3f, 0x0, 0x4, 0x5, 0x2, 0x7, 0x176, 0x6, 0x6, 0x62b, 0x100, 0xfff, 0xffff, 0xfffffffd, 0x4, 0x9, 0x80000000, 0x6, 0x100000, 0x200, 0x0, 0x1, 0x8, 0x66, 0x200, 0xf88, 0x180000, 0x4, 0x889, 0x4c3dacf0, 0x80000001, 0x175, 0x0, 0x7b, 0xfffffffb, 0x9, 0x98ce, 0x8, 0x252, 0x1f, 0x9, 0x8, 0x2, 0x80000000, 0x3, 0x7eca, 0x9, 0x1, 0x1, 0x1c, 0x0, 0x7f, 0x7, 0x7, 0x4, 0x8001, 0x7fff, 0x80, 0x9f, 0x6, 0x1c, 0x7fff, 0x2018, 0x0, 0x4, 0x7fff, 0x2, 0x1, 0x3, 0x80, 0x9, 0x80, 0x5, 0x80000000, 0x323, 0x8, 0x4, 0x2, 0x3, 0xee18, 0x0, 0x20, 0x1, 0x5f7b, 0x3, 0xe0d, 0x2000, 0x401, 0x5, 0xaa, 0x1, 0xcf4, 0x1, 0xf53, 0x5, 0x9, 0x5a, 0x4, 0x10000, 0x0, 0x100, 0x3, 0x8, 0x0, 0x5, 0x8, 0x6, 0x5, 0x10001, 0x3, 0x3, 0x80, 0x80000000, 0x1ff, 0x2cf9, 0x9, 0x2, 0x40, 0x1f, 0x9, 0x800, 0x7, 0xff, 0x8001, 0x4, 0x6, 0x100, 0x40, 0x800, 0x3ff, 0x5, 0xf6d, 0x7fffffff, 0x7e4, 0x7, 0x401, 0x8000, 0x34f60000, 0x7, 0x6, 0x181, 0x3ff, 0x8, 0x6, 0x8, 0x83ae, 0x2, 0x1, 0x80000001, 0x7, 0xffffffff, 0x3, 0x7f, 0x7, 0x10000, 0x4, 0x0, 0x9, 0x1, 0x7, 0x9, 0x1, 0x7, 0x2, 0x80, 0xf30, 0x101, 0x1, 0xaa, 0x80, 0x0, 0x4, 0x7, 0x81, 0xd3, 0x2, 0x1, 0x7fff, 0x2, 0x8, 0xffffff80, 0x6, 0xa8ae, 0x64, 0x3, 0x4, 0x401, 0x91, 0x5, 0x0, 0x8, 0x7fff, 0x6, 0x3, 0x9, 0x8, 0x3, 0x8, 0x8000, 0x6, 0x8, 0xffff, 0x240000, 0x8, 0x4, 0x6b2, 0x3f, 0x3f, 0xfffffffc, 0xd035, 0x7fff, 0x1, 0x1f, 0x7fffffff, 0x6, 0x61, 0x10001, 0x9, 0x296, 0x2, 0xa25, 0x7, 0x9, 0x4, 0x3f, 0xffffffff, 0x1, 0x4, 0x6, 0x8, 0xf23, 0x2, 0x1, 0x80000000, 0x4aa69b04, 0x0, 0x10001, 0x5, 0xfffffe00, 0x7, 0x81, 0x40, 0xef56, 0xfffffff7, 0x1, 0x5, 0x7ff, 0x101, 0x2, 0x1, 0x401, 0x5c9, 0x3, 0x101f, 0x5, 0x6, 0x8, 0x2, 0x6, 0x200, 0x0, 0x1ae2, 0x6, 0x4, 0x4, 0x2, 0x8, 0x4, 0xffff, 0x7, 0x3, 0x5, 0x1ff, 0xb813, 0x7fffffff, 0x5, 0x8001, 0x5, 0x8c44, 0x9, 0x6, 0x3f, 0x4, 0x2, 0xffffffff, 0x7, 0x5, 0x101, 0x7, 0x5, 0x5, 0xfffffff9, 0x0, 0x9, 0x5, 0x2, 0xdc8, 0xe0000000, 0x2, 0x0, 0xfe, 0x5, 0xdc, 0x5, 0x3ff, 0x8000, 0x8, 0x1, 0xfab, 0x9f7, 0x7, 0xc4, 0x5, 0x8001, 0x80000000, 0x3, 0x1, 0x1, 0x1, 0x5, 0x6360, 0x5, 0x5, 0x4, 0x1f, 0x4, 0x3d20102c, 0x9, 0x5, 0xff, 0xffffffff, 0x1, 0xfffffffc, 0x4, 0x1ff, 0x1ff, 0x1, 0x3, 0xfffffffa, 0x10000, 0x3, 0x8000, 0x7, 0x6353, 0x5308fa44, 0x8, 0x200, 0xa7c, 0xcb, 0x10000, 0x10001, 0x66, 0x3, 0x81, 0x8, 0x1, 0x33, 0x7, 0x2, 0x1, 0x80, 0x400, 0x7, 0x4, 0x1585, 0x8, 0x8000, 0x5, 0x6, 0x0, 0x0, 0xffffffff, 0x926, 0xfff, 0x8, 0x10001, 0x6, 0x8, 0x7fffffff, 0x6, 0x0, 0x415, 0x9, 0x7ff, 0xfffffff7, 0x10001, 0x4a, 0x8, 0x8, 0xe05a, 0x0, 0x7, 0x4, 0x20, 0x7ff, 0x8, 0x8, 0x7a4, 0x3, 0x3, 0x9, 0x7, 0x6, 0x0, 0x7d1, 0x9, 0x0, 0x2, 0x0, 0x3, 0x9, 0x6, 0x2, 0x9, 0x7, 0x8904a87, 0x3, 0x7, 0x4, 0x0, 0xd89, 0x5, 0x63, 0xffff]}) setsockopt$IP_VS_SO_SET_ZERO(r2, 0x0, 0x48f, &(0x7f0000000000)={0x59, @empty, 0x4e22, 0x3, 'sh\x00', 0x2, 0x3363, 0x1b}, 0x2c) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) [ 1351.240166] RIP: 0033:0x45b349 [ 1351.243490] RSP: 002b:00007f214582cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1351.251219] RAX: ffffffffffffffda RBX: 00007f214582d6d4 RCX: 000000000045b349 [ 1351.258584] RDX: 0000000000004000 RSI: 00000000200000c0 RDI: ffffffffffffff9c [ 1351.265870] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1351.273278] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 1351.280584] R13: 0000000000000773 R14: 00000000004c8d64 R15: 0000000000000001 [ 1351.355380] FAULT_INJECTION: forcing a failure. [ 1351.355380] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1351.367328] CPU: 1 PID: 7806 Comm: syz-executor.2 Not tainted 4.14.167-syzkaller #0 [ 1351.375266] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1351.384633] Call Trace: [ 1351.387263] dump_stack+0x142/0x197 [ 1351.391041] should_fail.cold+0x10f/0x159 [ 1351.395219] __alloc_pages_nodemask+0x1d6/0x7a0 [ 1351.399905] ? fs_reclaim_acquire+0x20/0x20 [ 1351.404246] ? __alloc_pages_slowpath+0x2930/0x2930 [ 1351.409289] cache_grow_begin+0x80/0x400 [ 1351.413370] kmem_cache_alloc+0x6a6/0x780 [ 1351.417528] ? __do_page_fault+0x358/0xb80 [ 1351.421989] getname_flags+0xcb/0x580 [ 1351.423341] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 1351.425806] ? trace_hardirqs_on_caller+0x400/0x590 [ 1351.425820] user_path_at_empty+0x2f/0x50 [ 1351.425834] do_mount+0x12b/0x27d0 [ 1351.448605] ? retint_kernel+0x2d/0x2d [ 1351.452539] ? copy_mount_string+0x40/0x40 [ 1351.456799] ? copy_mount_options+0x18f/0x2f0 [ 1351.461298] ? copy_mount_options+0x19e/0x2f0 [ 1351.465783] ? copy_mount_options+0x1fe/0x2f0 [ 1351.470313] SyS_mount+0xab/0x120 [ 1351.473786] ? copy_mnt_ns+0x8c0/0x8c0 [ 1351.477795] do_syscall_64+0x1e8/0x640 [ 1351.481679] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1351.486619] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1351.491841] RIP: 0033:0x45b349 [ 1351.495020] RSP: 002b:00007f9d77f7ac78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 06:48:15 executing program 3 (fault-call:0 fault-nth:2): openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) 06:48:15 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) openat$bsg(0xffffffffffffff9c, &(0x7f0000000080)='/dev/bsg\x00', 0x408040, 0x0) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) r6 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r7 = dup(r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r0, r7, &(0x7f000000c000/0x18000)=nil, &(0x7f00000008c0)=[@textreal={0x8, &(0x7f00000002c0)="baf80c66b80ee7358a66efbafc0cecf3827f0078ba430066b845e1000066ef0f0866b9800000c00f326635001000000f30660ff7ca660f132066b98105000066b8533a91ef66ba654305280f30baa000edb800008ec8", 0x56}], 0x1, 0x20, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r8 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r9 = dup(r8) ioctl$PERF_EVENT_IOC_ENABLE(r9, 0x8912, 0x400200) ioctl$sock_bt_cmtp_CMTPGETCONNLIST(0xffffffffffffffff, 0x800443d2, &(0x7f0000000040)) r10 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r10, 0x4090ae82, &(0x7f0000000200)={[0xe392, 0x405, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1], 0x1000, 0x204604}) ioctl$KVM_RUN(r10, 0xae80, 0x0) [ 1351.502728] RAX: ffffffffffffffda RBX: 00007f9d77f7b6d4 RCX: 000000000045b349 [ 1351.510010] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1351.517290] RBP: 000000000075bf20 R08: 00000000200002c0 R09: 0000000000000000 [ 1351.524567] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1351.531836] R13: 0000000000000744 R14: 00000000004c8bd8 R15: 0000000000000003 [ 1351.634281] cgroup: cgroup2: unknown option "º" [ 1351.647621] FAULT_INJECTION: forcing a failure. [ 1351.647621] name failslab, interval 1, probability 0, space 0, times 0 [ 1351.651872] IPVS: set_ctl: invalid protocol: 89 0.0.0.0:20002 [ 1351.669255] CPU: 0 PID: 7818 Comm: syz-executor.3 Not tainted 4.14.167-syzkaller #0 [ 1351.677550] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1351.686917] Call Trace: [ 1351.689526] dump_stack+0x142/0x197 [ 1351.693527] should_fail.cold+0x10f/0x159 [ 1351.697710] should_failslab+0xdb/0x130 [ 1351.701713] kmem_cache_alloc+0x2d7/0x780 [ 1351.705879] ? save_stack+0xa9/0xd0 [ 1351.709527] get_empty_filp+0x8c/0x3f0 [ 1351.713432] path_openat+0x8f/0x3f70 [ 1351.717288] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1351.722676] ? trace_hardirqs_on+0x10/0x10 [ 1351.723066] IPVS: set_ctl: invalid protocol: 89 0.0.0.0:20002 [ 1351.726922] ? save_trace+0x290/0x290 [ 1351.726943] ? path_lookupat.isra.0+0x7b0/0x7b0 [ 1351.726953] ? __lock_is_held+0xb6/0x140 [ 1351.726964] ? save_trace+0x290/0x290 [ 1351.726983] ? __alloc_fd+0x1d4/0x4a0 [ 1351.753189] do_filp_open+0x18e/0x250 [ 1351.757006] ? __alloc_fd+0x1d4/0x4a0 [ 1351.760823] ? may_open_dev+0xe0/0xe0 [ 1351.764745] ? lock_downgrade+0x740/0x740 [ 1351.768911] ? do_raw_spin_unlock+0x174/0x260 [ 1351.773525] ? _raw_spin_unlock+0x2d/0x50 [ 1351.777693] ? __alloc_fd+0x1d4/0x4a0 [ 1351.781540] do_sys_open+0x2c5/0x430 [ 1351.786233] ? filp_open+0x70/0x70 [ 1351.789806] SyS_openat+0x30/0x40 [ 1351.793277] ? SyS_open+0x40/0x40 [ 1351.796348] REISERFS warning (device nullb0): reiserfs_fill_super: Cannot allocate commit workqueue [ 1351.796741] do_syscall_64+0x1e8/0x640 [ 1351.796752] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1351.796770] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1351.820324] RIP: 0033:0x45b349 [ 1351.823521] RSP: 002b:00007f214582cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1351.831387] RAX: ffffffffffffffda RBX: 00007f214582d6d4 RCX: 000000000045b349 [ 1351.838878] RDX: 0000000000004000 RSI: 00000000200000c0 RDI: ffffffffffffff9c [ 1351.846171] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1351.853750] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 1351.861030] R13: 0000000000000773 R14: 00000000004c8d64 R15: 0000000000000002 06:48:16 executing program 3 (fault-call:0 fault-nth:3): openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) 06:48:16 executing program 2 (fault-call:5 fault-nth:4): r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) 06:48:16 executing program 5: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 06:48:16 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) setsockopt$bt_BT_CHANNEL_POLICY(r5, 0x112, 0xa, &(0x7f0000000080)=0x10001, 0x4) r6 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x200, 0x0) ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$sock_bt_cmtp_CMTPGETCONNLIST(0xffffffffffffffff, 0x800443d2, &(0x7f0000000040)) r7 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r7, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r7, 0xae80, 0x0) ioctl$KVM_RUN(r7, 0xae80, 0x0) [ 1352.053101] FAULT_INJECTION: forcing a failure. [ 1352.053101] name failslab, interval 1, probability 0, space 0, times 0 [ 1352.070665] FAULT_INJECTION: forcing a failure. [ 1352.070665] name failslab, interval 1, probability 0, space 0, times 0 [ 1352.091639] CPU: 0 PID: 7842 Comm: syz-executor.2 Not tainted 4.14.167-syzkaller #0 [ 1352.099728] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1352.109262] Call Trace: [ 1352.111878] dump_stack+0x142/0x197 [ 1352.115529] should_fail.cold+0x10f/0x159 [ 1352.119700] should_failslab+0xdb/0x130 [ 1352.123713] kmem_cache_alloc+0x2d7/0x780 [ 1352.127880] ? lock_downgrade+0x740/0x740 [ 1352.132049] alloc_vfsmnt+0x28/0x7d0 [ 1352.135790] vfs_kern_mount.part.0+0x2a/0x3d0 [ 1352.140314] do_mount+0x417/0x27d0 [ 1352.143882] ? retint_kernel+0x2d/0x2d [ 1352.147796] ? copy_mount_string+0x40/0x40 [ 1352.152051] ? copy_mount_options+0x19e/0x2f0 [ 1352.156594] ? copy_mount_options+0x1fe/0x2f0 [ 1352.161288] SyS_mount+0xab/0x120 [ 1352.164762] ? copy_mnt_ns+0x8c0/0x8c0 [ 1352.168805] do_syscall_64+0x1e8/0x640 [ 1352.172739] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1352.177598] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1352.182815] RIP: 0033:0x45b349 [ 1352.186027] RSP: 002b:00007f9d77f7ac78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1352.193938] RAX: ffffffffffffffda RBX: 00007f9d77f7b6d4 RCX: 000000000045b349 [ 1352.201215] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1352.208638] RBP: 000000000075bf20 R08: 00000000200002c0 R09: 0000000000000000 [ 1352.215927] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1352.223213] R13: 0000000000000744 R14: 00000000004c8bd8 R15: 0000000000000004 [ 1352.239001] CPU: 1 PID: 7843 Comm: syz-executor.3 Not tainted 4.14.167-syzkaller #0 [ 1352.246851] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1352.256219] Call Trace: [ 1352.258821] dump_stack+0x142/0x197 [ 1352.262619] should_fail.cold+0x10f/0x159 [ 1352.266782] should_failslab+0xdb/0x130 [ 1352.270766] kmem_cache_alloc_trace+0x2e9/0x790 [ 1352.275622] ? wait_for_completion+0x420/0x420 [ 1352.280221] ? trace_hardirqs_on+0x10/0x10 [ 1352.284476] snd_card_file_add+0x51/0x310 [ 1352.288655] ? mutex_unlock+0xd/0x10 [ 1352.292379] snd_pcm_oss_open.part.0+0x12f/0x1120 [ 1352.297235] ? find_held_lock+0x35/0x130 [ 1352.301423] ? snd_pcm_oss_release_file.part.0+0xa0/0xa0 [ 1352.306891] ? trace_hardirqs_on+0x10/0x10 [ 1352.311269] ? save_trace+0x290/0x290 [ 1352.315081] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1352.320034] ? soundcore_open+0x33c/0x5a0 [ 1352.324206] ? find_held_lock+0x35/0x130 [ 1352.328282] ? soundcore_open+0x33c/0x5a0 [ 1352.332568] ? lock_downgrade+0x740/0x740 [ 1352.336743] ? snd_pcm_oss_open.part.0+0x1120/0x1120 [ 1352.341884] snd_pcm_oss_open+0x37/0x50 [ 1352.345881] soundcore_open+0x3f3/0x5a0 [ 1352.349869] ? sound_devnode+0xe0/0xe0 [ 1352.353905] chrdev_open+0x207/0x590 [ 1352.357746] ? cdev_put.part.0+0x50/0x50 [ 1352.361818] ? security_file_open+0x89/0x190 [ 1352.366243] do_dentry_open+0x73b/0xeb0 [ 1352.370410] ? cdev_put.part.0+0x50/0x50 [ 1352.374477] vfs_open+0x105/0x220 [ 1352.377949] path_openat+0x8bd/0x3f70 [ 1352.381758] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1352.387152] ? path_lookupat.isra.0+0x7b0/0x7b0 [ 1352.391838] ? __lock_is_held+0xb6/0x140 [ 1352.396017] ? save_trace+0x290/0x290 [ 1352.399843] ? __alloc_fd+0x1d4/0x4a0 [ 1352.403659] do_filp_open+0x18e/0x250 [ 1352.407462] ? __alloc_fd+0x1d4/0x4a0 [ 1352.411275] ? may_open_dev+0xe0/0xe0 [ 1352.415112] ? do_raw_spin_unlock+0x174/0x260 [ 1352.419623] ? _raw_spin_unlock+0x2d/0x50 [ 1352.423808] ? __alloc_fd+0x1d4/0x4a0 [ 1352.427732] do_sys_open+0x2c5/0x430 [ 1352.431491] ? filp_open+0x70/0x70 [ 1352.436272] SyS_openat+0x30/0x40 [ 1352.439748] ? SyS_open+0x40/0x40 [ 1352.443216] do_syscall_64+0x1e8/0x640 [ 1352.447141] ? trace_hardirqs_off_thunk+0x1a/0x1c 06:48:16 executing program 5: r0 = syz_open_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0xffffffffffffff81, 0x0) ioctl$int_in(r0, 0x73, &(0x7f0000000080)=0x5) mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) syz_read_part_table(0xfff, 0x2, &(0x7f00000002c0)=[{&(0x7f0000000200)="25b7244a27702f39636a612770b158f6134f74618e93116276542e2c9d5da961c7415e8efb8a13cf", 0x28, 0x6}, {&(0x7f0000000240)="cc152c96e3796a5c6ce427e6794fea5cb504be04097efb5be8d08e64640372b1ce1e3850ba481d86863504551721221af89af92985d33713f275517c1b8a1a60fa6ddb95511d08b1cb816db77fe43be20a3e56f6d9c0be74c7fdfd6f4e2d1b985e6a966e77f6869279926ef66524bd5c7601cd", 0x73, 0x2748000000000}]) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) syncfs(r1) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r3 = socket$vsock_stream(0x28, 0x1, 0x0) ioctl$sock_SIOCINQ(r3, 0x541b, &(0x7f00000000c0)) mount(&(0x7f0000000140)=ANY=[@ANYBLOB="2f6465762f6edbe95ea99fae6c6c623f0497b9f8eacc5eca89340c947f7d5b26c75f8ec21c6afa2e6f20456fe8db8355f8d841c74dbd6af49cf7c482051c11be2e72fe4baab84c99b446bcd29f7c79057f64ff5e0739eade71af40680120ac6b85a12cf429ce449166318492e4aa15f4411ac861591a5c1bb7f92e85b44ffc3dad2eee876e4ca6d26cebd2612b5d6458eb49142dfd2b1e30c41ee7bb9b1edb56c47ad086766d6b9e2b0b33c7827383466b"], &(0x7f0000000340)='./file0\x00', &(0x7f0000000100)='reiserfs\x00', 0x0, 0x0) 06:48:16 executing program 2 (fault-call:5 fault-nth:5): r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) [ 1352.452128] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1352.457323] RIP: 0033:0x45b349 [ 1352.460525] RSP: 002b:00007f214582cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1352.468272] RAX: ffffffffffffffda RBX: 00007f214582d6d4 RCX: 000000000045b349 [ 1352.475746] RDX: 0000000000004000 RSI: 00000000200000c0 RDI: ffffffffffffff9c [ 1352.483030] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1352.490461] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 1352.497747] R13: 0000000000000773 R14: 00000000004c8d64 R15: 0000000000000003 06:48:16 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$sock_bt_cmtp_CMTPGETCONNLIST(0xffffffffffffffff, 0x800443d2, &(0x7f0000000040)) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) flistxattr(r1, &(0x7f00000002c0)=""/154, 0x9a) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0xfffffffffffffffb], 0x0, 0x10000}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 06:48:16 executing program 3 (fault-call:0 fault-nth:4): openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) [ 1352.573692] FAULT_INJECTION: forcing a failure. [ 1352.573692] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1352.636237] CPU: 0 PID: 7859 Comm: syz-executor.2 Not tainted 4.14.167-syzkaller #0 [ 1352.644108] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1352.653477] Call Trace: [ 1352.656086] dump_stack+0x142/0x197 [ 1352.659736] should_fail.cold+0x10f/0x159 [ 1352.663917] ? __might_sleep+0x93/0xb0 [ 1352.667834] __alloc_pages_nodemask+0x1d6/0x7a0 [ 1352.672529] ? check_preemption_disabled+0x3c/0x250 [ 1352.677828] ? __alloc_pages_slowpath+0x2930/0x2930 [ 1352.682884] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1352.688362] ? __alloc_pages_nodemask+0x639/0x7a0 [ 1352.693234] alloc_pages_current+0xec/0x1e0 [ 1352.697690] __get_free_pages+0xf/0x40 [ 1352.701600] get_zeroed_page+0x11/0x20 [ 1352.705797] selinux_sb_copy_data+0x2a/0x390 [ 1352.710254] security_sb_copy_data+0x75/0xb0 [ 1352.714702] mount_fs+0x1ec/0x2a1 [ 1352.718179] vfs_kern_mount.part.0+0x5e/0x3d0 [ 1352.722694] do_mount+0x417/0x27d0 [ 1352.726264] ? retint_kernel+0x2d/0x2d [ 1352.730187] ? copy_mount_string+0x40/0x40 [ 1352.734441] ? copy_mount_options+0x19e/0x2f0 [ 1352.738951] ? copy_mount_options+0x1fe/0x2f0 [ 1352.743476] SyS_mount+0xab/0x120 [ 1352.746941] ? copy_mnt_ns+0x8c0/0x8c0 [ 1352.748358] FAULT_INJECTION: forcing a failure. [ 1352.748358] name failslab, interval 1, probability 0, space 0, times 0 [ 1352.750837] do_syscall_64+0x1e8/0x640 [ 1352.750850] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1352.750866] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1352.750874] RIP: 0033:0x45b349 [ 1352.750879] RSP: 002b:00007f9d77f7ac78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1352.750889] RAX: ffffffffffffffda RBX: 00007f9d77f7b6d4 RCX: 000000000045b349 [ 1352.750894] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1352.750899] RBP: 000000000075bf20 R08: 00000000200002c0 R09: 0000000000000000 [ 1352.750904] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1352.750909] R13: 0000000000000744 R14: 00000000004c8bd8 R15: 0000000000000005 [ 1352.819545] kvm [7862]: vcpu0, guest rIP: 0xed disabled perfctr wrmsr: 0xc2 data 0xed660040d08e0002 [ 1352.882019] kvm [7862]: vcpu0, guest rIP: 0xed ignored wrmsr: 0x11e data 0xed660040d08e0002 [ 1352.913830] kvm [7862]: vcpu0, guest rIP: 0xed disabled perfctr wrmsr: 0x186 data 0xed660040d08e0002 [ 1352.915854] CPU: 1 PID: 7864 Comm: syz-executor.3 Not tainted 4.14.167-syzkaller #0 [ 1352.931196] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1352.940582] Call Trace: [ 1352.943214] dump_stack+0x142/0x197 [ 1352.946871] should_fail.cold+0x10f/0x159 [ 1352.951129] should_failslab+0xdb/0x130 [ 1352.955139] kmem_cache_alloc_trace+0x2e9/0x790 [ 1352.959835] ? wait_for_completion+0x420/0x420 [ 1352.964447] ? trace_hardirqs_on+0x10/0x10 [ 1352.968706] snd_card_file_add+0x51/0x310 [ 1352.972869] ? mutex_unlock+0xd/0x10 [ 1352.976616] snd_pcm_oss_open.part.0+0x12f/0x1120 [ 1352.981491] ? find_held_lock+0x35/0x130 [ 1352.985576] ? snd_pcm_oss_release_file.part.0+0xa0/0xa0 [ 1352.991056] ? trace_hardirqs_on+0x10/0x10 [ 1352.995325] ? save_trace+0x290/0x290 [ 1352.999146] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1353.004125] ? soundcore_open+0x33c/0x5a0 [ 1353.008300] ? find_held_lock+0x35/0x130 [ 1353.015598] ? soundcore_open+0x33c/0x5a0 [ 1353.019776] ? lock_downgrade+0x740/0x740 [ 1353.023973] ? snd_pcm_oss_open.part.0+0x1120/0x1120 [ 1353.029143] snd_pcm_oss_open+0x37/0x50 [ 1353.033163] soundcore_open+0x3f3/0x5a0 [ 1353.037159] ? sound_devnode+0xe0/0xe0 [ 1353.041070] chrdev_open+0x207/0x590 [ 1353.044799] ? cdev_put.part.0+0x50/0x50 [ 1353.048877] ? security_file_open+0x89/0x190 [ 1353.053563] do_dentry_open+0x73b/0xeb0 [ 1353.057554] ? cdev_put.part.0+0x50/0x50 [ 1353.061860] vfs_open+0x105/0x220 [ 1353.065337] path_openat+0x8bd/0x3f70 [ 1353.069403] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1353.074978] ? trace_hardirqs_on+0x10/0x10 [ 1353.079331] ? path_lookupat.isra.0+0x7b0/0x7b0 [ 1353.084145] ? __lock_is_held+0xb6/0x140 [ 1353.088222] ? save_trace+0x290/0x290 [ 1353.092043] ? __alloc_fd+0x1d4/0x4a0 [ 1353.095858] do_filp_open+0x18e/0x250 [ 1353.099676] ? __alloc_fd+0x1d4/0x4a0 [ 1353.103587] ? may_open_dev+0xe0/0xe0 [ 1353.107412] ? do_raw_spin_unlock+0x174/0x260 [ 1353.112535] ? _raw_spin_unlock+0x2d/0x50 [ 1353.116718] ? __alloc_fd+0x1d4/0x4a0 [ 1353.120623] do_sys_open+0x2c5/0x430 [ 1353.124377] ? filp_open+0x70/0x70 [ 1353.127940] SyS_openat+0x30/0x40 [ 1353.131661] ? SyS_open+0x40/0x40 [ 1353.135126] do_syscall_64+0x1e8/0x640 [ 1353.139031] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1353.143894] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1353.149107] RIP: 0033:0x45b349 [ 1353.152305] RSP: 002b:00007f214582cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1353.160216] RAX: ffffffffffffffda RBX: 00007f214582d6d4 RCX: 000000000045b349 [ 1353.167629] RDX: 0000000000004000 RSI: 00000000200000c0 RDI: ffffffffffffff9c [ 1353.175469] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 06:48:17 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) mkdir(&(0x7f0000000240)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mkdir(&(0x7f0000000400)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) chdir(&(0x7f0000000140)='./bus\x00') mkdir(&(0x7f0000000700)='./file1\x00', 0x0) mknod$loop(&(0x7f0000000200)='./file1/file0\x00', 0xc000, 0xffffffffffffffff) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$sock_bt_cmtp_CMTPGETCONNLIST(0xffffffffffffffff, 0x800443d2, &(0x7f0000000040)) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) r5 = openat$cgroup_ro(r3, &(0x7f0000002040)='cpuset.effective_cpus\x00', 0x0, 0x0) setsockopt$SO_RDS_TRANSPORT(r5, 0x114, 0x8, &(0x7f0000002080), 0x4) ioctl$KVM_RUN(r4, 0xae80, 0x0) [ 1353.182754] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 1353.190160] R13: 0000000000000773 R14: 00000000004c8d64 R15: 0000000000000004 06:48:17 executing program 2 (fault-call:5 fault-nth:6): r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) [ 1353.378365] FAULT_INJECTION: forcing a failure. [ 1353.378365] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1353.382158] overlayfs: filesystem on './file0' not supported as upperdir [ 1353.421480] CPU: 0 PID: 7880 Comm: syz-executor.2 Not tainted 4.14.167-syzkaller #0 [ 1353.429574] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1353.439098] Call Trace: [ 1353.441780] dump_stack+0x142/0x197 [ 1353.445422] should_fail.cold+0x10f/0x159 [ 1353.449581] ? __might_sleep+0x93/0xb0 [ 1353.453466] __alloc_pages_nodemask+0x1d6/0x7a0 [ 1353.458268] ? __alloc_pages_slowpath+0x2930/0x2930 [ 1353.463478] alloc_pages_current+0xec/0x1e0 [ 1353.468244] __get_free_pages+0xf/0x40 [ 1353.472138] get_zeroed_page+0x11/0x20 [ 1353.476040] mount_fs+0x1cc/0x2a1 [ 1353.479487] vfs_kern_mount.part.0+0x5e/0x3d0 [ 1353.483993] do_mount+0x417/0x27d0 [ 1353.487535] ? retint_kernel+0x2d/0x2d [ 1353.491427] ? copy_mount_string+0x40/0x40 [ 1353.495674] ? copy_mount_options+0x19e/0x2f0 [ 1353.500176] ? copy_mount_options+0x1fe/0x2f0 [ 1353.504685] SyS_mount+0xab/0x120 [ 1353.508181] ? copy_mnt_ns+0x8c0/0x8c0 [ 1353.512080] do_syscall_64+0x1e8/0x640 [ 1353.515978] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1353.520830] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1353.526025] RIP: 0033:0x45b349 [ 1353.529204] RSP: 002b:00007f9d77f7ac78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1353.537134] RAX: ffffffffffffffda RBX: 00007f9d77f7b6d4 RCX: 000000000045b349 [ 1353.544406] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1353.551669] RBP: 000000000075bf20 R08: 00000000200002c0 R09: 0000000000000000 [ 1353.558956] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 06:48:17 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$KDGKBMETA(0xffffffffffffffff, 0x4b62, &(0x7f00000000c0)) msgget(0x1, 0x80) socket$bt_hidp(0x1f, 0x3, 0x6) r2 = msgget$private(0x0, 0x204) msgctl$IPC_STAT(r2, 0x2, &(0x7f00000002c0)=""/106) msgsnd(r2, &(0x7f0000000280)={0x1, "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"}, 0x1a5, 0x0) r3 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x4040, 0x0) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) r6 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r7 = dup(r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) ioctl$PERF_EVENT_IOC_SET_BPF(r5, 0x40042408, r7) ioctl$VIDIOC_SUBDEV_ENUM_MBUS_CODE(r3, 0xc0305602, &(0x7f0000000080)={0x0, 0xffffffc0, 0x3009}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_emit_ethernet(0x3e, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffff96c1e9574b280800450000300000000000019078ac1e0001e00000010500907800000800450000000000000000000000e0000001ac1414bb"], 0x0) [ 1353.566412] R13: 0000000000000744 R14: 00000000004c8bd8 R15: 0000000000000006 06:48:17 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_emit_ethernet(0x308, &(0x7f0000000040)={@local, @random="96c1e9574b31", @void, {@ipv6={0x86dd, @gre_packet={0xc, 0x6, "d6b37e", 0x2d2, 0x2f, 0x7f, @local, @loopback, {[@srh={0x2b, 0xe, 0x4, 0x7, 0x1f, 0x10, 0x4, [@remote, @remote, @rand_addr="f4e1da504fdbf2fb97e7a6f706e93ed4", @empty, @dev={0xfe, 0x80, [], 0x31}, @dev={0xfe, 0x80, [], 0x33}, @initdev={0xfe, 0x88, [], 0x1, 0x0}]}, @fragment={0x2b, 0x0, 0x3, 0x1, 0x0, 0x3, 0x64}, @dstopts={0x0, 0x4, [], [@jumbo, @pad1, @ra={0x5, 0x2, 0xb9a}, @jumbo={0xc2, 0x4, 0x10000}, @jumbo={0xc2, 0x4, 0x20}, @padn={0x1, 0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}]}, @dstopts={0x8, 0x13, [], [@jumbo={0xc2, 0x4, 0xca}, @ra={0x5, 0x2, 0x1f}, @calipso={0x7, 0x48, {0x3, 0x10, 0x6, 0x9, [0x6, 0x401, 0x4, 0x7fffffff, 0x8001, 0x9, 0x0, 0x8]}}, @calipso={0x7, 0x20, {0x2, 0x6, 0x0, 0x1, [0x8, 0x3, 0x6]}}, @enc_lim={0x4, 0x1, 0x3f}, @hao={0xc9, 0x10, @rand_addr="6d393ed94b34ef1e69a7e45b9a93bc4c"}, @hao={0xc9, 0x10, @dev={0xfe, 0x80, [], 0x1f}}]}], {{0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x26, 0x2, [0x83e, 0x1], "83820b79a592d655102d11fa559f5b0693d1ee8c89f0635909208bb210c11be358ed35c1a840"}, {0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x800, [0x4], "5b3002f54d72d292dd1f5da65766746b16395f58b3c1e3578fdc5f463ae6d2fddd2b75baf173d230b778e234125ce19e"}, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x86dd, [0x2], "eedd907055ecb52f5a5881a9340ca0103fd98c2308ea03642d674e42cea99d81637c74412413526e149ddd8a26243a0dc974374f5cfb582290ba30339a37992f29e6dfcb451a96feeb4d15858d1aff0db69bd74374a5e65d9eb968f19fde3b9fdc27ba3c4eea1c24c1"}, {0x8, 0x88be, 0x0, {{0x9, 0x1, 0xeb, 0x1, 0x0, 0x2, 0x4, 0x1}, 0x1, {0x8001}}}, {0x8, 0x22eb, 0x3, {{0x8, 0x2, 0x0, 0x3, 0x1, 0x1, 0x6, 0x40}, 0x2, {0x7f, 0x9d4, 0x0, 0x14, 0x1, 0x0, 0x1, 0x1, 0x1}}}, {0x8, 0x6558, 0x2, "40287f3adb4f7c3854f3000442a60f32469494543458f4e1469dc58039c2c326cb4fcd622ba661d9a0c4764348f06700a5621a1994ab03ba84eee888e9270df07e339033e528f42f8792f62a80e211ddd42da13067faa8a6cd179723d4f7c1e836cb870b92d796b93b36594cbc3052870c37f38b2c74bb"}}}}}}}, 0x0) io_setup(0x6, &(0x7f0000000200)=0x0) r3 = socket$alg(0x26, 0x5, 0x0) io_submit(r2, 0x1, &(0x7f0000004c00)=[&(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, r3, &(0x7f0000001380)='y', 0x1}]) r4 = socket$inet6(0xa, 0x1000000000002, 0x0) r5 = socket$inet(0x2, 0x1, 0x0) connect$inet(r5, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r5, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r5, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r6 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000980)='/dev/qat_adf_ctl\x00', 0x340000, 0x0) getsockopt$bt_l2cap_L2CAP_LM(r6, 0x6, 0x3, &(0x7f00000009c0), &(0x7f0000000a00)=0x4) dup2(r4, r5) r7 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000600)='/selinux/status\x00', 0x0, 0x0) r8 = syz_open_dev$sndtimer(&(0x7f0000000680)='/dev/snd/timer\x00', 0x0, 0x151281) r9 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r10 = dup(r9) ioctl$PERF_EVENT_IOC_ENABLE(r10, 0x8912, 0x400200) r11 = memfd_create(&(0x7f00000007c0)='@]\x00', 0xc7ffe78abc5e3d75) io_submit(r2, 0x5, &(0x7f0000000940)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x3, 0x3d, r1, &(0x7f0000000380)="84b3cb808405ef100ce10ea490d2aa727876922eeb3b96362903cc9a7f023adda82a83e6bdefcebb245bc30c293c57a3873662b35dc45ad0d6bca4db82bee356392dfcf57fd717729e57af6826eaff9dc795140b57627967762f09239b7509f4e0e119cc17ef10487c8fb09555a205e32102d35eea83ce16a5bf2451bfa30bb77b317bfb618bc60eaa81eb4d29a8ec8705499f542094f7b28e54e1536990cce57ec97c1a7fcefc37", 0xa8, 0x1, 0x0, 0x0, r1}, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x7, 0x7, r1, &(0x7f0000000440)="e640754718d2fbc0d8919f14d884dc75ab0bd89aa079ef1af69f6d6b894a5f1f3eded7f7c889545910a959e3ca3fc22a5dfbee91574fa75415d46b094973cf8c15368c791054fda89e7496cd0915eaff5a643e801123f245ef4dec7736", 0x5d, 0x100000001, 0x0, 0x2}, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x1, 0x2, r4, &(0x7f0000000500)="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", 0xfd, 0x400000000, 0x0, 0x2, r7}, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x3, 0x1, r8, &(0x7f00000006c0)="33a4c7a4099eced715ac9969041fd83d2fbf5a7fd45a237155b5ce8a13448c140949b05ecaf8cacb6cc9ce1091865bf142be1a1766dc0c443430243764d93c676dd566209ac7c08724d91f2cf3792d7b1094142063bff760927b4bf5ccc67eb2560b52a85e7299b7490abff27037efec1ea9a4f83f91e2c1822b60303ae4df4e369b4371ff28f97c0a0a019bb7eb6ced933d9b9dae34c7a6a8e8559f10763cb2aaa23f4e872b60cbfc5f", 0xaa, 0x2, 0x0, 0x4, r10}, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x7, 0x5, r11, &(0x7f0000000800)="b0c851bbe4523c1f45225c97a3b94b6ba0c28b6b9509d20048df744cd2a7280b9762d0471ac0ac091f7edd50708c27c8f4db56c713818ae1036b82c88f0db05135ba110517e916245f6aec88f622c328b6cdecb75bb3a65147a987f875f1e4ba35fd093858260464194f4631319015439da314cb9da5ba6b037d6a022f8a7cef6cba6251f81d224bf894f816e9537312ff9e71e5bdbdaef2f14b7803734737cee91efe2cc5633f8618f90ee5c1d6fb82a7f2ba496607a3b2feb17ae5873b2b040902c655b218a00162d86786db2d689bbfe099f7be431398272d", 0xda, 0x1ff, 0x0, 0x1}]) 06:48:17 executing program 3: r0 = getpgid(0x0) sched_getattr(r0, &(0x7f0000000000)={0x38}, 0x38, 0x0) openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) 06:48:17 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x2000000000000000, 0x10040) ioctl$sock_bt_hidp_HIDPGETCONNLIST(r1, 0x800448d2, &(0x7f00000000c0)={0x0, &(0x7f0000000080)}) r2 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) syz_emit_ethernet(0x3e, &(0x7f0000000000)={@broadcast, @random="96c1e9574b31", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote}, @time_exceeded={0x5, 0x1, 0x0, 0x0, 0x0, 0x8, {0x5, 0x4, 0x0, 0x0, 0x0, 0xfffe, 0x0, 0x0, 0x0, 0x0, @multicast1, @remote}}}}}}, 0x0) 06:48:17 executing program 2 (fault-call:5 fault-nth:7): r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) 06:48:17 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$sock_bt_cmtp_CMTPGETCONNLIST(0xffffffffffffffff, 0x800443d2, &(0x7f0000000040)) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r6 = dup(r5) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x12000, 0x0) r7 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vsock\x00', 0x2000, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x8000100) setsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r6, 0x84, 0x13, &(0x7f0000000000)=0x5, 0x4) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) [ 1354.069313] FAULT_INJECTION: forcing a failure. [ 1354.069313] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1354.085143] CPU: 0 PID: 7907 Comm: syz-executor.2 Not tainted 4.14.167-syzkaller #0 [ 1354.093080] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1354.102462] Call Trace: [ 1354.105069] dump_stack+0x142/0x197 [ 1354.108816] should_fail.cold+0x10f/0x159 [ 1354.112977] ? __might_sleep+0x93/0xb0 [ 1354.116883] __alloc_pages_nodemask+0x1d6/0x7a0 [ 1354.121574] ? check_preemption_disabled+0x3c/0x250 [ 1354.126608] ? __alloc_pages_slowpath+0x2930/0x2930 [ 1354.131650] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1354.137130] ? __alloc_pages_nodemask+0x639/0x7a0 [ 1354.142081] alloc_pages_current+0xec/0x1e0 [ 1354.146414] __get_free_pages+0xf/0x40 [ 1354.150304] get_zeroed_page+0x11/0x20 [ 1354.154200] selinux_sb_copy_data+0x2a/0x390 [ 1354.158639] security_sb_copy_data+0x75/0xb0 [ 1354.163183] mount_fs+0x1ec/0x2a1 [ 1354.166756] vfs_kern_mount.part.0+0x5e/0x3d0 [ 1354.171267] do_mount+0x417/0x27d0 [ 1354.174816] ? retint_kernel+0x2d/0x2d [ 1354.178718] ? copy_mount_string+0x40/0x40 [ 1354.182973] ? copy_mount_options+0x19e/0x2f0 [ 1354.187492] ? copy_mount_options+0x1fe/0x2f0 [ 1354.192265] SyS_mount+0xab/0x120 [ 1354.195745] ? copy_mnt_ns+0x8c0/0x8c0 [ 1354.199646] do_syscall_64+0x1e8/0x640 [ 1354.203573] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1354.208435] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1354.213631] RIP: 0033:0x45b349 [ 1354.216810] RSP: 002b:00007f9d77f7ac78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1354.224525] RAX: ffffffffffffffda RBX: 00007f9d77f7b6d4 RCX: 000000000045b349 [ 1354.231798] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1354.239076] RBP: 000000000075bf20 R08: 00000000200002c0 R09: 0000000000000000 [ 1354.246355] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1354.253631] R13: 0000000000000744 R14: 00000000004c8bd8 R15: 0000000000000007 06:48:18 executing program 5: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000000)=@sr0='/dev/sr0\x00', &(0x7f0000000340)='./file0\x00', &(0x7f0000000100)='sysv\x00', 0x0, 0x0) 06:48:18 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_emit_ethernet(0x76, &(0x7f0000000040)={@broadcast, @random="96c1e9574b31", @void, {@ipv4={0x800, @icmp={{0x13, 0x4, 0x0, 0x0, 0x68, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1, {[@cipso={0x86, 0x78, 0x2, [{0x2, 0x3, "99"}, {0x0, 0xc, "11c50a5be78ee18c4bdc"}, {0x4, 0x12, "303d4800000000000000000004000000"}, {0x0, 0x8, "a18e6311e3a7"}, {0x6, 0x6, "2053a8ed"}]}]}}, @time_exceeded={0x5, 0x0, 0x0, 0x0, 0x0, 0x8, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local, @remote}}}}}}, 0x0) 06:48:18 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) r0 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000080)='/selinux/status\x00', 0x0, 0x0) ioctl$SNDCTL_DSP_NONBLOCK(r0, 0x500e, 0x0) getsockopt$TIPC_SRC_DROPPABLE(0xffffffffffffffff, 0x10f, 0x80, &(0x7f0000000000), &(0x7f0000000040)=0x4) 06:48:18 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x10000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000014000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f0000000400)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3226650f1dfb66ed0f30c4c271de9d0000000066b808008e32acd6acd638806f000f011c2666b8bf008ee0", 0x4e}], 0x52, 0x4e, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) prctl$PR_GET_KEEPCAPS(0x7) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) r5 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/nvme-fabrics\x00', 0x24500, 0x0) ioctl$DRM_IOCTL_RES_CTX(0xffffffffffffffff, 0xc0106426, &(0x7f0000000100)={0x6, &(0x7f0000000380)=[{}, {}, {}, {0x0}, {}, {}]}) ioctl$RTC_PLL_SET(r5, 0x40207012, &(0x7f00000004c0)={0x400, 0x5fc755d8, 0x7b, 0x2, 0xee43, 0x7f, 0x8}) ioctl$DRM_IOCTL_NEW_CTX(0xffffffffffffffff, 0x40086425, &(0x7f0000000180)={r6}) r7 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r8 = dup(r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) r9 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x200, 0x0) r10 = socket(0x10, 0x4000000000000002, 0xc) write(r10, &(0x7f0000000000)="1f0000000104ff00fd4354c007110000f30503000a000100010423dcffdf00", 0x23c) r11 = syz_genetlink_get_family_id$netlbl_mgmt(0x0) sendmsg$NLBL_MGMT_C_REMOVE(r10, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x24, r11, 0x100, 0x70bd26, 0x25dfdbfb, {}, [@NLBL_MGMT_A_DOMAIN={0x5, 0x1, '\x00'}, @NLBL_MGMT_A_DOMAIN={0x6, 0x1, 'X\x00'}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000000}, 0x20000004) sendmsg$NLBL_MGMT_C_ADDDEF(r9, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x38, r11, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x1a}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @initdev={0xac, 0x1e, 0x1, 0x0}}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @ipv4={[], [], @multicast1}}]}, 0x38}, 0x1, 0x0, 0x0, 0x8000}, 0x400c800) sendmsg$NLBL_MGMT_C_LISTDEF(r8, &(0x7f0000000600)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000005c0)={&(0x7f0000000540)={0x68, r11, 0x8, 0x70bd2b, 0x25dfdbfb, {}, [@NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x1}, @NLBL_MGMT_A_CLPDOI={0x8}, @NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @rand_addr=0x6}, @NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @mcast1}, @NLBL_MGMT_A_CV4DOI={0x8, 0x4, 0xffffffffffffffff}, @NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0x2}, @NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @initdev={0xac, 0x1e, 0x0, 0x0}}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x7}, @NLBL_MGMT_A_CV4DOI={0x8, 0x4, 0xffffffffffffffff}]}, 0x68}, 0x1, 0x0, 0x0, 0x18850}, 0x40) ioctl$DRM_IOCTL_SWITCH_CTX(r5, 0x40086424, &(0x7f00000002c0)={r6, 0x1}) getsockname$netrom(0xffffffffffffffff, &(0x7f0000000000)={{}, [@bcast, @bcast, @default, @rose, @null, @netrom, @null]}, &(0x7f0000000180)=0x48) ioctl$KVM_RUN(r4, 0xae80, 0x0) r12 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r13 = dup(r12) ioctl$PERF_EVENT_IOC_ENABLE(r13, 0x8912, 0x400200) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r5, 0xc0145401, &(0x7f0000000480)={0x3, 0x2, 0x5, 0x3, 0x20}) recvfrom$x25(r13, &(0x7f0000000300)=""/101, 0x65, 0xb1cd35bdbc73488f, &(0x7f00000003c0)={0x9, @remote={[], 0x3}}, 0x12) 06:48:18 executing program 2 (fault-call:5 fault-nth:8): r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) [ 1354.397708] Unknown ioctl 35090 06:48:18 executing program 4: r0 = open(&(0x7f0000000040)='./file0\x00', 0x0, 0x4) mkdirat(r0, &(0x7f0000000080)='./file0\x00', 0x180) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) syz_emit_ethernet(0x3e, &(0x7f0000000000)={@broadcast, @random="96c1e9574b31", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, @time_exceeded={0x5, 0x0, 0x0, 0x0, 0x0, 0x8, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast1, @remote}}}}}}, 0x0) [ 1354.421360] cgroup: cgroup2: unknown option "º" [ 1354.440713] Unknown ioctl 35090 06:48:18 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$sock_bt_cmtp_CMTPGETCONNLIST(0xffffffffffffffff, 0x800443d2, &(0x7f0000000040)) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff], 0x0, 0x400}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 06:48:18 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f00000000c0)='IPVS\x00') sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000100)={0x3c, r2, 0x200, 0x70bd2b, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_DAEMON={0x20, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @mcast1}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e22}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x80000000}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4}, 0x8010) r3 = socket$inet6(0xa, 0x1000000000002, 0x0) r4 = socket$inet(0x2, 0x1, 0x0) connect$inet(r4, &(0x7f00000000c0)={0x2, 0x0, @broadcast}, 0x10) connect$inet(r4, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r5) connect$inet(r5, &(0x7f0000000300)={0x2, 0x0, @loopback}, 0x10) dup2(r3, r4) getsockopt$inet_sctp_SCTP_RECVNXTINFO(r4, 0x84, 0x21, &(0x7f0000000240), &(0x7f0000000280)=0x4) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) 06:48:18 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000580)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000580)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000001c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000140)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_DESTROY_ID(r0, &(0x7f0000000100)={0x1, 0x10, 0xfa00, {0x0, r2}}, 0x18) write$RDMA_USER_CM_CMD_RESOLVE_ROUTE(0xffffffffffffffff, &(0x7f0000000000)={0x4, 0x8, 0xfa00, {r2, 0x7}}, 0x10) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$EVIOCGABS0(r4, 0x80184540, &(0x7f0000000200)=""/155) 06:48:18 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_emit_ethernet(0x3e, &(0x7f0000000000)=ANY=[@ANYBLOB="fffffffffbff96c1e9574b310800456d2fa181e2715ab8e4c848901269126121062579c61bf4892ee3ce6e8d0000000000"], 0x0) [ 1354.673196] cgroup: cgroup2: unknown option "º" [ 1354.728929] cgroup: cgroup2: unknown option "º" [ 1354.731755] kvm [7939]: vcpu0, guest rIP: 0xed disabled perfctr wrmsr: 0xc2 data 0xed660040d08e0002 06:48:18 executing program 2: socket$inet_icmp_raw(0x2, 0x3, 0x1) socket$inet(0x2, 0xa, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) r1 = socket$inet(0x2, 0x1, 0x0) connect$inet(r1, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r1, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r1, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) setxattr(&(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@known='trusted.overlay.upper\x00', &(0x7f0000000200)='eth1keyringsecurity\x00', 0x14, 0x1) dup2(r0, r1) r2 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) 06:48:18 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0) ioctl$sock_inet_tcp_SIOCATMARK(r4, 0x8905, &(0x7f0000000180)) r5 = shmget$private(0x0, 0x13000, 0x0, &(0x7f0000feb000/0x13000)=nil) shmat(r5, &(0x7f0000fea000/0x2000)=nil, 0x6ffd) r6 = geteuid() r7 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0) fstat(r7, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) setregid(r8, 0x0) r9 = gettid() tkill(r9, 0x1000000000013) r10 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r11 = dup(r10) ioctl$PERF_EVENT_IOC_ENABLE(r11, 0x8912, 0x400200) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000003c0)={r9, r11, 0x0, 0x1f, &(0x7f0000000380)='/sys/kernel/debug/binder/stats\x00'}, 0x30) r13 = gettid() tkill(r13, 0x1000000000013) r14 = getpgid(r13) shmctl$IPC_SET(r5, 0x1, &(0x7f0000000400)={{0x1, 0xee00, 0xee00, r6, r8, 0x1c1, 0xfff}, 0x5, 0x3, 0x1, 0x7ff, r12, r14, 0x9}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x1c}}, 0x10) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r4, 0x4008240b, &(0x7f0000000300)={0x1, 0x70, 0x0, 0x0, 0x1, 0xb4, 0x0, 0x5, 0x82000, 0xa, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8, 0x1, @perf_bp={&(0x7f00000002c0), 0xe}, 0x21204, 0x10000, 0x5681, 0x5, 0x8c2, 0xffffffff, 0x3}) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r15 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r15, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r15, 0xae80, 0x0) ioctl$KVM_RUN(r15, 0xae80, 0x0) r16 = semget$private(0x0, 0x4, 0x448) semctl$IPC_INFO(r16, 0x2, 0x3, &(0x7f0000000000)=""/1) [ 1354.805648] kvm [7939]: vcpu0, guest rIP: 0xed ignored wrmsr: 0x11e data 0xed660040d08e0002 [ 1354.832948] kvm [7939]: vcpu0, guest rIP: 0xed disabled perfctr wrmsr: 0x186 data 0xed660040d08e0002 [ 1354.856692] cgroup: cgroup2: unknown option "º" [ 1354.944361] cgroup: cgroup2: unknown option "º" 06:48:19 executing program 5: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$VIDIOC_G_EXT_CTRLS(r1, 0xc0205647, &(0x7f0000000380)={0xa20000, 0x1, 0x498e, 0xffffffffffffffff, 0x0, &(0x7f0000000300)={0x990a70, 0x8, [], @p_u8=&(0x7f0000000200)=0x40}}) getsockname$inet6(r2, &(0x7f00000003c0)={0xa, 0x0, 0x0, @ipv4={[], [], @dev}}, &(0x7f0000000400)=0x1c) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) getsockopt$netrom_NETROM_T4(0xffffffffffffffff, 0x103, 0x6, &(0x7f0000000440)=0x200, &(0x7f0000000480)=0x4) clone(0x10000200, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000000)=@nullb='/dev/nullb0\x00', &(0x7f0000000340)='./file0\x00', &(0x7f0000000100)='reiserfs\x00', 0x800002, 0x0) clock_gettime(0x0, &(0x7f0000000280)={0x0, 0x0}) recvmmsg(r4, &(0x7f0000000240)=[{{&(0x7f0000000080)=@phonet, 0x80, &(0x7f0000000000), 0x0, &(0x7f0000000140)=""/154, 0x9a}, 0x8}], 0x1, 0x20, &(0x7f00000002c0)={r5, r6+30000000}) 06:48:19 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) prctl$PR_CAPBSET_DROP(0x18, 0x1b) r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x19c) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = inotify_add_watch(r2, &(0x7f0000000080)='./file0\x00', 0x40000800) inotify_rm_watch(0xffffffffffffffff, r3) ioctl$SIOCAX25DELFWD(r0, 0x89eb, &(0x7f0000000040)={@null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}}) 06:48:19 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_emit_ethernet(0x3e, &(0x7f0000000000)={@broadcast, @random="96c1e9574b31", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, @time_exceeded={0x5, 0x0, 0x0, 0x0, 0x0, 0x8, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast1, @remote}}}}}}, 0x0) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) sendto$unix(r3, &(0x7f0000000040)="e32a71ad717fef0a408ced4d3eaf217e1f02a91520008210771de703f5005cf7f42fd95c618332d86f780c1a94cf56f8b62d8e583e757abac68b4fd82eda81e341ad55fe6a32abcf562857a23de290d646aee2af5b586e94d63292fbecdd1a93ee36b64b7359e1428ee8b1a324ecdcd8a38cd23b8be7d6ec065c9b9ab7417c996d2c8f56a339c8841a255a04c4bdfab5ec5f58624a3956035c1314d9e58992df30b2f2fc450e200a33dafec83a81dd705362e5a57a33ec7405726564d7564a45ebc6d5b3d3cf273268def2091860a3a49aa50c8340475c1e7a1c54ec9aad7d3385ad36032266e2491a72fe818174869d", 0xf0, 0x4040001, &(0x7f0000000140)=@file={0x1, './file0\x00'}, 0x6e) 06:48:19 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x600900, 0x0) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r3) r4 = socket$netlink(0x10, 0x3, 0x0) setsockopt$sock_int(r3, 0x1, 0x27, &(0x7f0000000400)=0x31e, 0x4) r5 = socket$netlink(0x10, 0x3, 0x0) r6 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r6, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB="3c0000001000850600"/18, @ANYRES32=r7, @ANYBLOB="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"], 0x3}}, 0x0) sendmsg$nl_route(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000cc0)=ANY=[@ANYBLOB="85548c7feac86402e9e83a0ab839108234348b3ba85fc6910bd0ffb217d2e7dbc2f910ffeb2bab94a6f7b8791bdb24409a", @ANYRES32=0x0, @ANYBLOB="00000000000000001c00120067e5820c00010067720c00020008000000000000", @ANYRES32=r7, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r7, @ANYBLOB="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"], 0x44}}, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000001a00)={'veth1_macvtap\x00', r7}) ioctl$TUNSETIFINDEX(r2, 0x400454da, &(0x7f0000001a40)=r8) mkdir(&(0x7f00000000c0)='./file0\x00', 0x0) recvmsg(r0, &(0x7f0000000540)={&(0x7f00000001c0)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @empty}}}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000300)=""/157, 0x9d}, {&(0x7f0000000680)=""/253, 0xfd}, {&(0x7f0000000240)=""/107, 0x6b}], 0x3, &(0x7f0000000500)=""/6, 0x6}, 0x2002) ioctl$UI_BEGIN_FF_ERASE(0xffffffffffffffff, 0xc00c55ca, &(0x7f0000000080)={0x3, 0x3, 0xf0680000}) r9 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ocfs2_control\x00', 0x4000, 0x0) ioctl$SNDRV_RAWMIDI_IOCTL_PARAMS(r9, 0xc0305710, &(0x7f0000000180)={0x0, 0x7, 0x3}) 06:48:19 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x10080, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$sock_bt_cmtp_CMTPGETCONNLIST(0xffffffffffffffff, 0x800443d2, &(0x7f0000000040)) madvise(&(0x7f000001b000/0x3000)=nil, 0x3000, 0x19) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) [ 1355.162116] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=51434 sclass=netlink_route_socket pig=7989 comm=syz-executor.2 06:48:19 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcsa\x00', 0x200001, 0x0) ioctl$VFIO_SET_IOMMU(r3, 0x3b66, 0x0) r4 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$sock_bt_cmtp_CMTPGETCONNLIST(0xffffffffffffffff, 0x800443d2, &(0x7f0000000040)) r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) r6 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x20640, 0x0) ioctl$VFIO_SET_IOMMU(r6, 0x3b66, 0x4) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) 06:48:19 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) bpf$OBJ_GET_MAP(0x7, &(0x7f0000000080)={&(0x7f0000000040)='./file0\x00', 0x0, 0x38}, 0x10) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_emit_ethernet(0x3e, &(0x7f0000000000)={@broadcast, @random="96c1e9574b31", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, @time_exceeded={0x5, 0x0, 0x0, 0x0, 0x0, 0x8, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast1, @remote}}}}}}, 0x0) socket$caif_stream(0x25, 0x1, 0x2) 06:48:19 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) r2 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000080)='/selinux/status\x00', 0x0, 0x0) ioctl$DRM_IOCTL_MODE_GETFB(r2, 0xc01c64ad, &(0x7f00000000c0)={0x3, 0xfa8f, 0x0, 0x3, 0xf7, 0x4, 0xff}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) [ 1355.231046] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=51434 sclass=netlink_route_socket pig=7997 comm=syz-executor.2 06:48:19 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0xd780, 0x0) [ 1355.441220] cgroup: cgroup2: unknown option "º" [ 1355.462288] QAT: Invalid ioctl 06:48:19 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000100)='attr/fscreate\x00') ioctl$VIDIOC_TRY_ENCODER_CMD(r0, 0xc028564e, &(0x7f0000000040)={0x1, 0x0, [0xfff, 0x62a2, 0x80000001, 0x5, 0x3, 0x2, 0x3ff, 0x3]}) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x80200, 0x0) ioctl$KVM_SET_CPUID(r1, 0x4008ae8a, &(0x7f0000000140)={0x4, 0x0, [{0x6, 0x0, 0x829, 0x14, 0xdc}, {0x80000001, 0x5, 0x9, 0x1, 0x8001}, {0x2, 0x6, 0x6, 0x2, 0x401}, {0xa, 0x100000, 0xffff, 0x0, 0x9}]}) openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000080)='/selinux/checkreqprot\x00', 0x222080, 0x0) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = syz_open_dev$audion(&(0x7f0000000200)='/dev/audio#\x00', 0x100000001, 0x151600) setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r3, 0x28, 0x1, &(0x7f0000000240)=0x80000000, 0x8) r4 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$PPPIOCGFLAGS(r4, 0x8004745a, &(0x7f00000001c0)) openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) [ 1355.517541] QAT: Invalid ioctl [ 1355.529773] QAT: Invalid ioctl 06:48:19 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x301002, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$sock_bt_cmtp_CMTPGETCONNLIST(0xffffffffffffffff, 0x800443d2, &(0x7f0000000040)) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) [ 1355.765734] kvm [8022]: vcpu0, guest rIP: 0xed disabled perfctr wrmsr: 0xc2 data 0xed660040d08e0002 [ 1355.807745] kvm [8022]: vcpu0, guest rIP: 0xed ignored wrmsr: 0x11e data 0xed660040d08e0002 [ 1355.835997] kvm [8022]: vcpu0, guest rIP: 0xed disabled perfctr wrmsr: 0x186 data 0xed660040d08e0002 [ 1356.580444] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 06:48:21 executing program 5: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) socket$pppl2tp(0x18, 0x1, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000200)=@nullb='/dev/nullb0\x00', &(0x7f0000000340)='./file0\x00', &(0x7f0000000100)='reiserfs\x00', 0x0, 0x0) 06:48:21 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SOUND_MIXER_INFO(r1, 0x805c4d65, &(0x7f0000000000)) lstat(&(0x7f0000000080)='./file0\x00', &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r3 = socket$inet6(0xa, 0x1000000000002, 0x0) r4 = socket$inet(0x2, 0x1, 0x0) connect$inet(r4, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r4, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r4, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r3, r4) write$binfmt_aout(r4, &(0x7f0000000180)={{0x10b, 0x80, 0x10, 0x133, 0x16e, 0x80000001, 0x1f6, 0x6}, "0efe0766aae5267c7d90a9196c66d020b42dbe7ac9b142ec7fd5b82a3ab15eb6be06ee265de78d59bc535b80d97b3ec6ace1561ed5d6327d2e677e6e4327533ed918a7901275117fa7563e9ae6761ec8a5ae4c408a3053750cd1c065308a6a13bdb9ef072b13371ed2bc61488b6ab968c603c1aeb82c77cfd86ecdebb3c3dcca413a97304b6b56b7a30c7d83b709ab7f67812b297a316d9d0a2201ff4f62a2fe27788e257e01eb740140be91a793377da879c2e6fcee035d9766d45380572a89e8f5401c85197a11345e63187abfe23a2bc3fd31c974c0901f9c8ce1c3b6", [[]]}, 0x1fe) ioctl$TUNSETGROUP(r1, 0x400454ce, r2) r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) ioctl$VIDIOC_S_TUNER(r6, 0x4054561e, &(0x7f0000000380)={0x2, "75ce0509bda0e82ae78453fe61edd981a91d2a900be7ebf255492ec958e66774", 0x4, 0x4, 0xf76, 0xfffffff9, 0x1, 0x0, 0x7, 0x2}) 06:48:21 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580)='batadv\x00') r4 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r4, &(0x7f0000000080)={0x0, 0x382, &(0x7f0000000140)={0x0, 0xb7ff}}, 0x0) getsockname$packet(r4, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$BATADV_CMD_GET_GATEWAYS(r2, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f00000075c0)={0x1c, r3, 0xb631c6b8429a7eb, 0x0, 0x0, {0xc}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r5}]}, 0x1c}}, 0x0) sendmsg$BATADV_CMD_GET_BLA_CLAIM(r1, &(0x7f00000003c0)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x1c, r3, 0x100, 0x70bd29, 0x25dfdbff, {}, [@BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x805) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r6 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r6) getsockname$inet(r6, &(0x7f0000000400)={0x2, 0x0, @multicast1}, &(0x7f0000000440)=0x10) syz_emit_ethernet(0x3e, &(0x7f0000000000)={@broadcast, @random="96c1e9574b31", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, @time_exceeded={0x5, 0x0, 0x0, 0x0, 0x0, 0x8, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast1, @remote}}}}}}, 0x0) r7 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00') sendmsg$TIPC_NL_NODE_GET(r1, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000280)={&(0x7f00000000c0)={0x1a8, r7, 0x0, 0x70bd26, 0x25dfdbff, {}, [@TIPC_NLA_NET={0x40, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x9}, @TIPC_NLA_NET_ID={0x4, 0x1, 0x2}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0xa3}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x4}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x100000001}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x3}]}, @TIPC_NLA_MEDIA={0xb0, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1c}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xb}]}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1a}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x15}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7fffffff}]}]}, @TIPC_NLA_SOCK={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8}, @TIPC_NLA_SOCK_ADDR={0x8}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x9}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x3}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x1f}]}, @TIPC_NLA_NET={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x7}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x401}]}, @TIPC_NLA_MON={0x2c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x8}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x3}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xffffffff}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x8}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x800000}]}, @TIPC_NLA_SOCK={0x28, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0xe2e}]}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x8001}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0xf}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}]}, 0x1a8}, 0x1, 0x0, 0x0, 0x4000004}, 0x4000890) 06:48:21 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000000300)={{{@in6=@dev, @in6=@ipv4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast1}, 0x0, @in6}}, &(0x7f0000000100)=0xe8) sendmsg$sock(r2, &(0x7f0000000680)={&(0x7f0000000400)=@ll={0x11, 0x15, r3, 0x1, 0x0, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}, 0x80, &(0x7f0000000580)=[{&(0x7f0000000480)="6460504f4d17edad0d63250a0c18edb863efdd3fa81b82e02451189357369954504b4c7d880bdeee9966ee4ff4605a8c70df2f5a59bf3f3a49f9fbec8366dc3c761e1b24f0f704b7e019c9a91edd2712ee138dd45e2bd05d1f3f9f4e82ef0f31b62a261600cb971054703b07297a04940dc672a9f71e2edf86d1fb901b475b8ee58ba2c313bc9a07edc500a4c0c7e818b03bcd65ca198622c3c59975d27dd9926c822b27344461923c19e9d7e7925877644c7fb97be6ef6dc79af1e3efcfac8c8b42", 0xc2}], 0x1, &(0x7f00000005c0)=[@txtime={{0x18, 0x1, 0x3d, 0x1ff}}, @timestamping={{0x14, 0x1, 0x25, 0xa394}}, @txtime={{0x18}}, @mark={{0x14, 0x1, 0x24, 0x96}}, @timestamping={{0x14, 0x1, 0x25, 0xffffffff}}, @timestamping={{0x14}}], 0x90}, 0x20000884) r4 = dup(r2) syz_open_dev$vivid(&(0x7f0000000080)='/dev/video#\x00', 0x2, 0x2) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) r7 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r8 = dup(r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) r9 = socket$nl_generic(0x10, 0x3, 0x10) r10 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580)='batadv\x00') r11 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r11, &(0x7f0000000080)={0x0, 0x382, &(0x7f0000000140)={0x0, 0xb7ff}}, 0x0) getsockname$packet(r11, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$BATADV_CMD_GET_GATEWAYS(r9, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f00000075c0)={0x1c, r10, 0xb631c6b8429a7eb, 0x0, 0x0, {0xc}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r12}]}, 0x1c}}, 0x0) sendmsg$BATADV_CMD_GET_NEIGHBORS(r8, &(0x7f0000000800)={&(0x7f0000000740)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000007c0)={&(0x7f0000000780)={0x34, r10, 0x300, 0x70bd2b, 0x25dfdbfd, {}, [@BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x3}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5, 0x37, 0x1}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x7f}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5}]}, 0x34}, 0x1, 0x0, 0x0, 0x400c800}, 0x20000001) r13 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r13) openat$null(0xffffffffffffff9c, &(0x7f0000000700)='/dev/null\x00', 0x210001, 0x0) getsockopt$inet_IP_XFRM_POLICY(r13, 0x0, 0x11, &(0x7f00000001c0)={{{@in6=@local, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@empty}, 0x0, @in6=@empty}}, &(0x7f00000006c0)=0xe8) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'syz_tun\x00', r14}) [ 1357.976922] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 06:48:22 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x541000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$sock_bt_cmtp_CMTPGETCONNLIST(0xffffffffffffffff, 0x800443d2, &(0x7f0000000040)) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x4, 0xfff, 0x2000000000]}) getxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)=@known='trusted.overlay.opaque\x00', &(0x7f0000000180), 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 06:48:22 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) timerfd_create(0x9, 0x0) r2 = socket$inet6(0xa, 0x1000000000002, 0x0) r3 = socket$inet(0x2, 0x1, 0x0) connect$inet(r3, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r3, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r3, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r2, r3) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r6 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r7 = dup(r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) ioctl$VIDIOC_G_SELECTION(r7, 0xc040565e, &(0x7f0000000000)={0x5, 0x0, 0x4, {0x3f, 0x8, 0x3ff, 0xfff}}) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) 06:48:22 executing program 5: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) r2 = syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x480) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) getsockopt$inet6_mreq(r4, 0x29, 0x1c, &(0x7f0000000640)={@remote, 0x0}, &(0x7f0000000680)=0x14) sendmsg$kcm(r2, &(0x7f0000000180)={&(0x7f0000000080)=@xdp={0x2c, 0xd, r5, 0x20}, 0x80, &(0x7f0000000140)=[{&(0x7f0000000240)="e8a2fdc0443d206a062d07ccfc3643be657c2dc6b0e79e8f3564b8e210bb036a3df3c9d02c3ab04f5d57906c7640976c84a2696d45a01a5a01a9a7b772306a0a2b597e42a95a9488751c26a0e130748309e0941254dab798b6fdef58ba0f8b6dafe162742bc6cb62e20e82aa21bbb12b1e8165d515c0f464cb8e4c0e96a5c669f7d9ce1569a02922236cbb917392773db7fc288e749f968f7a6cd4b63dc1fba5b95be5a7e89eeb0afbd0a9289dabf0b3da1139e413a8bbc930f80cdcb06e23a14346349289b49da07114564ba999", 0xce}, {&(0x7f0000000380)="33877629712313535e8bf42a7f5426ef0500fe5c17912ceb5dc4c575cc8bdd302d32b2b0636b47cbfee26f5012efdb248649ad0e3ec693b21437c081ffb64f020e0c9564837e8cea3747c6207048612057074c9246341c9fc156051faab572dad8c090e4e2d992540599fd518e6e44006732014f2739418b27e0d2f403e118cb571d1b80c423b005071df4e9d5993eee4dedabe559f9c4f2d211196dd3f1aa9d01f836be3d19642b0c663b4ab2c0ecc592ea0cbd5c7079f8b55b723980282bf4826d42ca073a86d843ff76331c2f953d820a9c749ae28346e6e1b23c28585557d545b7d86c151c4751b1b0493ca0be47787fd2189195615c1d", 0xf9}, {&(0x7f0000000480)="a5726f3f88af29ed6e15ec2031f19aa410c711386ec2942318ba5b36872cbc35e670ad38b8baadae338c3f263ba0f6ad1bc0925b819504a685435345653008752f75df3db4d40a1e11a3ba978d6d454d5bd3353daa7c21ea8e41eae1753c08f921ffef4492e4451cd27f16837985e8a86328d2362ed15adcfe483cb2bb547cce0c0cef4bb481009bbb0f502666c64c775bd1c9bbc8186259a02e29dd0cd4192a2c94feba1b149e9383e92f28aab521d5713d2e9d67d225716e8d77bbbb78dd7ce11f448f2f002fadd7b77223", 0xfffffe94}], 0x3}, 0x20060801) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f00000006c0)=ANY=[@ANYBLOB="2f6465321ab9b371c3c931381f899a97bf57bb8d718cbb783000593425216c3109eeb3eb2153c5565c75c71c94014a9f0afcbbeb68e5c13afc57b67f466dc06313a906d8322f5ec3d436ef0d785e14940d3f3ea842a1da916ae0d6e83ccaad09058dafc66f949e3621edbf2cb911108ec0d4e948fc511b7ff62dda394fdc6cb3c499151a01774fbd5eccec3b5901e4e0f0354943af35bb0c470d4e3fc71206c3605dd4bc2c374adb7d8d586975da6d97f989d6a79f05e97c922efd5f3c1692321ee76c61d972d1a54abb06067b073f8838"], &(0x7f0000000340)='./file0\x00', &(0x7f0000000100)='reiserfs\x00', 0x0, 0x0) [ 1358.022164] cgroup: cgroup2: unknown option "º" 06:48:22 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup3(r3, r2, 0x0) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$sock_bt_cmtp_CMTPGETCONNLIST(0xffffffffffffffff, 0x800443d2, &(0x7f0000000040)) r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) 06:48:22 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) r2 = syz_open_dev$mouse(&(0x7f0000000080)='/dev/input/mouse#\x00', 0x7, 0x1694c0) ioctl$FBIOPUT_CON2FBMAP(r2, 0x4610, &(0x7f00000000c0)={0x13}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) 06:48:22 executing program 3: openat(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x20000, 0x4) r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x4000, 0x0) ioctl$KDSKBMETA(r0, 0x4b63, &(0x7f0000000040)=0x3) 06:48:22 executing program 4: r0 = socket$inet6(0xa, 0x5, 0x50) r1 = socket$inet(0x2, 0x1, 0x0) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) openat$selinux_status(0xffffffffffffff9c, &(0x7f00000002c0)='/selinux/status\x00', 0x0, 0x0) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0xba) r6 = gettid() tkill(r6, 0x1000000000013) write$cgroup_pid(r3, &(0x7f0000000100)=r6, 0x12) connect$inet(r1, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r1, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r1, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) socket$inet6_tcp(0xa, 0x1, 0x0) dup2(r0, r1) setsockopt$inet_MCAST_LEAVE_GROUP(r1, 0x0, 0x2d, &(0x7f0000000380)={0xffffffff, {{0x2, 0x4e20, @multicast1}}}, 0x88) sendto$l2tp(r1, &(0x7f0000000040)="d5aac5d751bad20933e7d53bc66d7b13ec41603745c6c3d8cbc1053d383367cdc37332bf3307e2d8eb8570ebc9b91d653af3a252cbced50b34255fc60c701643069dea3722bc574c274411621f63657378540bf54fe67deccd4545bd418442472d3b7ff4e1dc102f43b3fb216a8cad884a769d8285b84c9b8cb1ebeb1a44641e9ab9fb56c0b72b106a2bd14c84bf0a3d0c8b89a837007985885e725b926ad6e8dacba9c15bff971cea34d75d35cdd99af3666c3e82945dabf46ef7b85b7911", 0xbf, 0x4000000, 0x0, 0x0) r7 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r8 = dup(r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) syz_emit_ethernet(0x3e, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffff96c1e9574b310800450000300000000000019078ac1e0001e00000010500e4edece50ad0e1804e09e9389078000208004500000000000000"], 0x0) r9 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000000140)='/selinux/avc/cache_threshold\x00', 0x2, 0x0) r10 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r10, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) r11 = socket$inet(0x10, 0x2, 0x0) ioctl$sock_ifreq(r11, 0x89f0, &(0x7f0000000180)={'ip6_vti0\x00', @ifru_flags}) r12 = dup2(r10, r11) r13 = socket$inet_sctp(0x2, 0x0, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r13, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f0000000440)=ANY=[@ANYRES32=r14, @ANYBLOB="36000000ac6a82d2b5acd821e04d0478a474e9c2be3b387e029887626c7e3cf456672c29c8210ffff7d4d24bdf54e0b4d427ae9a6873dd3c164ea739656364952be24df7e977482d801c350b91f38d243b46bcf577b6d191c2a3715320cbe557c1b526dbd0938bbfbbe18b501c34bd43c7741abcb94f16af887418e7439a0df6b75fadbaed392230da51407e38"], 0x0) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r12, 0x84, 0x71, &(0x7f00000001c0)={r14, 0xffffffff}, &(0x7f0000000340)=0x8) getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r9, 0x84, 0x6, &(0x7f0000000180)={r14, @in={{0x2, 0x4e23, @remote}}}, &(0x7f0000000240)=0x84) 06:48:22 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f0000000240)='\fo`%\xae\xca\xa6\x18\x8c8\xe8\xd8\xf4\xedu\x1b\x9a\x15\xc6zd\x17\x8e\xfb\x8b\xed\xf0^\x82\xb6~\xa8\xb0\xce_\a\x00\x00\x00\x00\x00\x00\x00\x16\x17\xac!\x9d\xe2\xff\x94\x82L\x05\xfc\v#W.\x9b7\xbe7\x1e\xbfS<\x12\xe6\x91\xa5; \xe5\xe5\xb6\xcd\x04\xa8\xbe\xebI\xc3zCp2\x95\x92A\xe9z\x03\x11\xe2\xc8\xdcK\xf1/UW\x18\x98\t\x19\xa2\x9fG\xed=\xcc\xe6\xc1G\x12\x1ag') 06:48:22 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) r4 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000300)='/dev/btrfs-control\x00', 0x100, 0x0) r5 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r5, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) r6 = socket$inet(0x10, 0x2, 0x0) ioctl$sock_ifreq(r6, 0x89f0, &(0x7f0000000180)={'ip6_vti0\x00', @ifru_flags}) r7 = dup2(r5, r6) r8 = socket$inet_sctp(0x2, 0x0, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r8, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f0000000280)={r9, 0x36, "ac6a82d2b5acd821e04d0478a474e9c2be3b387e029887626c7e3cf456672c29c8210efff7d4d24bdf54e0b4d427ae9a6873dd3c164e"}, 0x0) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r7, 0x84, 0x71, &(0x7f00000001c0)={r9, 0xffffffff}, &(0x7f0000000340)=0x8) getsockopt$inet_sctp6_SCTP_RESET_STREAMS(r4, 0x84, 0x77, &(0x7f0000000340)={r9, 0x3, 0x4, [0x8, 0x8, 0x2, 0x1]}, &(0x7f0000000380)=0x10) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r10 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r10, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r10, 0xae80, 0x0) ioctl$KVM_RUN(r10, 0xae80, 0x0) [ 1358.345373] kvm [8069]: vcpu0, guest rIP: 0xed disabled perfctr wrmsr: 0xc2 data 0xed660040d08e0002 [ 1358.380935] kvm [8069]: vcpu0, guest rIP: 0xed ignored wrmsr: 0x11e data 0xed660040d08e0002 [ 1358.419827] kvm [8069]: vcpu0, guest rIP: 0xed disabled perfctr wrmsr: 0x186 data 0xed660040d08e0002 [ 1358.420288] cgroup: cgroup2: unknown option " o`%®Ê¦Œ8èØôíušÆzdŽû‹íð^‚¶~¨°Î_" 06:48:22 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='jfs\x00', 0x402, &(0x7f00000002c0)) 06:48:22 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r1 = getpid() sched_setattr(r1, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x8, 0x0, 0x0, 0x2}, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r2, &(0x7f0000003e00)=[{{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000840)=""/4080, 0x1000}, {&(0x7f0000000680)=""/252, 0xfc}], 0x2, &(0x7f0000000340)=""/40, 0x28}, 0x100}, {{&(0x7f0000000480)=@xdp, 0x80, &(0x7f0000002a40), 0x0, &(0x7f0000003ec0)=""/4096, 0x1049}, 0x87}, {{&(0x7f0000003ac0)=@xdp, 0x80, &(0x7f0000003dc0)=[{&(0x7f0000003b40)=""/77, 0x4d}, {&(0x7f0000003bc0)=""/109, 0x6d}, {&(0x7f0000000180)=""/116, 0x74}, {&(0x7f0000003cc0)=""/206, 0xce}], 0x4}, 0x5}], 0x3, 0x10000, 0x0) chdir(&(0x7f0000000100)='./file0\x00') pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x2a) write(r4, &(0x7f0000000340), 0x41395527) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x2, 0x1, 0x0, 0x3, 0xffffffffffffffff}, 0x0) socket$inet6_udp(0xa, 0x2, 0x0) r5 = socket$inet_udp(0x2, 0x2, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) syz_open_procfs(0xffffffffffffffff, 0x0) timerfd_create(0x4, 0x80800) r6 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x101002, 0x0) ioctl$EVIOCGPROP(r6, 0xc004743e, &(0x7f00000002c0)=""/246) r7 = memfd_create(&(0x7f0000000140)='^\x00', 0x7) pwritev(r7, &(0x7f0000f50f90)=[{&(0x7f0000000100)="a8", 0x1}], 0x1, 0x81003) sendfile(r6, r7, 0x0, 0x102002700) r8 = socket(0x10, 0x3, 0x0) write(r8, &(0x7f0000000000)="1c0000004a005f0214f90707000904000a00"/28, 0x37f) r9 = accept4$packet(r8, &(0x7f00000002c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f00000003c0)=0x14, 0x80400) sendfile(0xffffffffffffffff, r6, 0xfffffffffffffffe, 0xfffffffffffffffe) r10 = creat(&(0x7f0000000140)='./bus\x00', 0x0) ioctl$EXT4_IOC_SETFLAGS(r10, 0x40086602, &(0x7f0000000040)=0x8) r11 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r12 = dup(r11) ioctl$PERF_EVENT_IOC_ENABLE(r12, 0x8912, 0x400200) r13 = gettid() tkill(r13, 0x1000000000013) r14 = socket$inet6(0xa, 0x1000000000002, 0x0) connect$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(0xffffffffffffffff, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r14, 0xffffffffffffffff) write$binfmt_elf64(r12, &(0x7f0000000540)=ANY=[@ANYRES32=r13, @ANYRESDEC=r13, @ANYRES16, @ANYRES32=r5, @ANYRESDEC=r9, @ANYRES64, @ANYRESHEX=r0], 0x4) ioctl$SNDRV_TIMER_IOCTL_PARAMS(r10, 0x40505412, &(0x7f0000000400)={0x0, 0x2, 0xc0000}) 06:48:22 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) write$UHID_CREATE(r2, &(0x7f0000000300)={0x0, {'syz0\x00', 'syz0\x00', 'syz1\x00', &(0x7f0000000080)=""/4, 0x4, 0x9, 0x462a, 0x8, 0x5, 0x7}}, 0x120) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$SCSI_IOCTL_PROBE_HOST(r4, 0x5385, &(0x7f0000000480)={0x2a, ""/42}) r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) ioctl$BLKPBSZGET(r6, 0x127b, &(0x7f00000004c0)) syz_open_dev$usbfs(&(0x7f0000000440)='/dev/bus/usb/00#/00#\x00', 0xd3bd, 0x12b03) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) r7 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r8 = dup(r7) r9 = syz_open_dev$mouse(&(0x7f00000001c0)='/dev/input/mouse#\x00', 0x7, 0x5a7266657efd70e0) ioctl$SNDRV_TIMER_IOCTL_GSTATUS(r9, 0xc0505405, &(0x7f0000000200)={{0x3, 0x2, 0x8001, 0x3, 0x3f}, 0x8}) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) setsockopt$inet6_MRT6_ADD_MIF(r8, 0x29, 0xca, &(0x7f0000000100)={0x101, 0x0, 0x1, 0x800, 0x3}, 0xc) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) openat$procfs(0xffffffffffffff9c, &(0x7f0000000280)='/proc/meminfo\x00', 0x0, 0x0) sysfs$3(0x3) rt_sigpending(&(0x7f00000000c0), 0x8) [ 1358.657185] kvm [8086]: vcpu0, guest rIP: 0xed disabled perfctr wrmsr: 0xc1 data 0xed660040d08e0059 06:48:22 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) r0 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f00000011c0)='/selinux/policy\x00', 0x0, 0x0) r1 = syz_genetlink_get_family_id$team(&(0x7f0000001240)='team\x00') r2 = socket$netlink(0x10, 0x3, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) r4 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x2ba) sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB="3c0000001000850600"/18, @ANYRES32=r5, @ANYBLOB="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"], 0x3}}, 0x0) sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000f40)=ANY=[@ANYBLOB="4400000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012000c00010067726574617000000c00020008000100", @ANYRES32=r5, @ANYBLOB="4e000a00e748601325864d07de179409b0bbf59afc6d554771", @ANYRES32=r5, @ANYBLOB="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"], 0x44}}, 0x0) r6 = socket$netlink(0x10, 0x3, 0x0) r7 = socket$netlink(0x10, 0x3, 0x0) r8 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r8, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r8, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x2ba) sendmsg$nl_route(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB="3c0000001000850600"/18, @ANYRES32=r9, @ANYBLOB="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"], 0x3}}, 0x0) sendmsg$nl_route(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000c80)=ANY=[@ANYBLOB="4400000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012000c00010067726574617000000c00020008000100", @ANYRES32=r9, @ANYBLOB="c2f820000000000000001c3350f8a1f825d6a757f0c05449ad0b79c5685b69648a778e723e0e83cdad30547faa04a989b13d3a21550a265bc09c0fac46e2dbf73e9516a6c331dc6617b3d9422d96ce6ec69ad80fa35758f67d652f69cc9bb3d9e0dfcca61892e5", @ANYRES32=r9, @ANYBLOB="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"], 0x44}}, 0x0) r10 = socket$netlink(0x10, 0x3, 0x0) r11 = socket$netlink(0x10, 0x3, 0x0) r12 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r12, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r12, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x2ba) sendmsg$nl_route(r11, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=ANY=[@ANYBLOB="3c0000001000850600"/18, @ANYRES32=r13, @ANYBLOB="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"], 0x3}}, 0x0) sendmsg$nl_route(r10, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="4400000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012000c00010067726574617000000c00bbb7f2025a2f719170d6949519020008000100", @ANYRES32=r13, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r13, @ANYBLOB="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"], 0x44}}, 0x0) getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x23, &(0x7f0000001280)={@dev, @local, 0x0}, &(0x7f00000012c0)=0xc) r15 = socket$netlink(0x10, 0x3, 0x0) r16 = socket$netlink(0x10, 0x3, 0x0) r17 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r17, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r17, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x2ba) sendmsg$nl_route(r16, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB="3c0000001000850600"/18, @ANYRES32=r18, @ANYBLOB="fe3a0400000000001c0012000c000100626f6e64000000000c00020008001374041b00004cb9e4ea438ea8a879d2e52eb7310007987a919b6f9de59ad8758bff5d89d7e0a89755452d1c03d6d08dc8eefc7a35bbf73840e4205087b8af82c7d3cedffa1b3655fdfa5388aae78167b1f9ac91e4fba0047de31d550ff2244227009353346bd339665d1a0576848ba28ee46665bc8da41d458dd9c7afade6071676b0ad2c62466dbb3d07905f344dcee7864cab559b7d94e910c9904c6bb2ad9559b3283c56c0aa36a1d7f563e2e5668758391db6494c6c3e1cf7d8b9114dda05005edfd548d26bc74c6aa732b7a864b511cf75de52ae120d2330da36328c150e38"], 0x3}}, 0x0) sendmsg$nl_route(r15, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000007c0)=ANY=[@ANYBLOB="4400000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012000c00010067726574617000000c00020008000100", @ANYRES32=r18, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r18, @ANYBLOB="186207000000126ec374ee6a55f99fbd370bb1f57135e4ab6a72c90d76416c98cc6cc1656dd0c7483cb61f8eb4eaff4d84e1a14bf6f19dbaa552f5b967722a90d5b5c696a83bd49f47135c94aa6b268b6d53dfb29765e288579700000000c30a9e82f6d6cb10648777f7adddec065ed17dccd7ee9aa112a48154b39b83cc4208109c6755a226c294c79569cbbddd6fcd6fc3094530206dd6d544275a60f31bec3b000644b256c8aa8dc23482a3ca322278747291b229175f8f5724502d92bd12c872331dcb91ffd8d2020c60d2f5ccd9db8cfc48bd8e8a9e13432bef84719cfb2aa0e3c1551d644ed2a50fe0726c779513efc78777e2362a648edec7df1fa29545825dc51190dddce0c85bab01a7efa660263439e30e569e5ceddf534dc2d602702cf8c697e6e972f8e6b7e51eb1c62c64419b3bf0987b40ff119dc040b28923f46c17c3856d58641939f32034c54601a3383ae567a6440acc1ef6108e30f828c84cce0c9840a7e576d4e6ae7925da86b6225ab0dc02783ebab27cd75f4b2c6b2f5b625a6dc64f8e3db62c62c41554c21e80fae555b57090f102a1bf1a979d7ae0414d69790122ed5202ae20b1578ade0c44b4e954001e6a92b291457c66d7d2c689d7cb5bd06b964b2e334ea2cf3c8187a44261317568955dc1898e3e"], 0x44}}, 0x0) getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x14, &(0x7f0000001300)={@ipv4={[], [], @loopback}, 0x0}, &(0x7f0000001340)=0x14) r20 = socket$netlink(0x10, 0x3, 0x0) r21 = socket$netlink(0x10, 0x3, 0x0) r22 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r22, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r22, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x2ba) sendmsg$nl_route(r21, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB="3c0000001000850600"/18, @ANYRES32=r23, @ANYBLOB="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"], 0x3}}, 0x0) sendmsg$nl_route(r20, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000002600)=ANY=[@ANYBLOB="4400000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="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"/314, @ANYRES32=r23, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r23, @ANYBLOB="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"], 0x44}}, 0x0) r24 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r25 = dup(r24) ioctl$PERF_EVENT_IOC_ENABLE(r25, 0x8912, 0x400200) getsockopt$inet6_IPV6_XFRM_POLICY(r25, 0x29, 0x23, &(0x7f00000013c0)={{{@in=@dev, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@local}, 0x0, @in=@dev}}, &(0x7f00000014c0)=0xe8) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001500)={'vlan1\x00', 0x0}) r28 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r29 = dup(r28) ioctl$PERF_EVENT_IOC_ENABLE(r29, 0x8912, 0x400200) getsockopt$inet6_mreq(r29, 0x29, 0x14, &(0x7f00000021c0)={@empty, 0x0}, &(0x7f0000002200)=0x14) r31 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r32 = dup(r31) ioctl$PERF_EVENT_IOC_ENABLE(r32, 0x8912, 0x400200) getsockopt$inet_mreqn(r32, 0x0, 0x24, &(0x7f0000002240)={@empty, @dev, 0x0}, &(0x7f0000002280)=0xc) r34 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r35 = dup(r34) ioctl$PERF_EVENT_IOC_ENABLE(r35, 0x8912, 0x400200) getsockopt$inet_pktinfo(r35, 0x0, 0x8, &(0x7f00000022c0)={0x0, @local, @empty}, &(0x7f0000002300)=0xc) r37 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r37) ioctl$ifreq_SIOCGIFINDEX_team(r37, 0x8933, &(0x7f0000002340)={'team0\x00', 0x0}) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000002380)={{{@in=@multicast2, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@remote}, 0x0, @in6=@initdev}}, &(0x7f0000002480)=0xe8) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f00000024c0)={'batadv_slave_1\x00', 0x0}) getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000002500)={0x0, @loopback, @empty}, &(0x7f0000002540)=0xc) r42 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r43 = dup(r42) ioctl$PERF_EVENT_IOC_ENABLE(r43, 0x8912, 0x400200) getpeername$packet(r43, &(0x7f0000002580)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f00000025c0)=0x14) r45 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r46 = dup(r45) ioctl$PERF_EVENT_IOC_ENABLE(r46, 0x8912, 0x400200) getsockopt$PNPIPE_IFINDEX(r46, 0x113, 0x2, &(0x7f0000003b40)=0x0, &(0x7f0000003b80)=0x4) r48 = socket$inet6(0xa, 0x1000000000002, 0x0) r49 = socket$inet(0x2, 0x1, 0x0) connect$inet(r49, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r49, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r49, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r48, r49) r50 = socket$netlink(0x10, 0x3, 0x0) r51 = socket$netlink(0x10, 0x3, 0x0) r52 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r52, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r52, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x2ba) sendmsg$nl_route(r51, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB="3c0000001000850600"/18, @ANYRES32=r53, @ANYBLOB="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"], 0x3}}, 0x0) sendmsg$nl_route(r50, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000007c0)=ANY=[@ANYBLOB="4400000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012000c00010067726574617000000c00020008000100", @ANYRES32=r53, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r53, @ANYBLOB="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"], 0x44}}, 0x0) ioctl$sock_SIOCGIFINDEX(r49, 0x8933, &(0x7f0000003fc0)={'veth0\x00', r53}) r55 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r56 = dup(r55) ioctl$PERF_EVENT_IOC_ENABLE(r56, 0x8912, 0x400200) r57 = socket$netlink(0x10, 0x3, 0x0) r58 = socket$netlink(0x10, 0x3, 0x0) r59 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r59, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r59, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x2ba) sendmsg$nl_route(r58, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB="3c0000001000850600"/18, @ANYRES32=r60, @ANYBLOB="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"], 0x3}}, 0x0) sendmsg$nl_route(r57, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000007c0)=ANY=[@ANYBLOB="4400000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012000c00010067726574617000000c00020008000100", @ANYRES32=r60, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r60, @ANYBLOB="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"], 0x44}}, 0x0) ioctl$sock_SIOCGIFINDEX(r56, 0x8933, &(0x7f0000004000)={'veth0_to_batadv\x00', r60}) getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, &(0x7f0000004040)=0x0, &(0x7f0000004080)=0x4) r63 = socket$netlink(0x10, 0x3, 0x0) r64 = socket$netlink(0x10, 0x3, 0x0) r65 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r65, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r65, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x2ba) sendmsg$nl_route(r64, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000a00)=ANY=[@ANYBLOB="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", @ANYRES32=r66, @ANYBLOB="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"], 0x3}}, 0x0) sendmsg$nl_route(r63, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000001540)=ANY=[@ANYBLOB="4400000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012000c00010067726574617000000c00020008000100", @ANYRES32=r66, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r66, @ANYBLOB="186207000000126ec374ee6a55f99fbd370bb1f57135e4ab6a72c90d76416c98cc6cc1656dd0c7483cb61f8eb4eaff4d84e1a14bf6f19dbaa552f5b967722a90d5b5c696a83bd49f47135c94aa6b268b6d53dfb29765e288579700000000c30a9e82f6d6cb10648777e7adddec065ed17dccd7ee9aa112a48154b39b83cc4208109c6755a226c294c79569cbbddd6fcd6fc309d0e4206dd6d544275a60f31bec3b000644b256c8aa8dc23482a3ca322278747291b229175f8f5724502d92bd12d0000000cb91ffd8d2020c60d2f5ccd9db8cfc48bd8e8a9e13432bef84719cfb2aa0e3c1551d644ed2a50fe0726c779513efc78777e2362a648edec7df1fa29545825d4b9dfcc4b45ac819ab01a7efa660263439e30e569e5ceddf534dc2d602702cf8c697e6e972f8e6b7e51eb1c62c64419b3bf0987b40ff119dc040b28923f46c17c3856d58641939f32034c54601a3383ae567a6440acc1ef6108e30f828c84cce0c9840a7e576d4e6ae7925da86b6225ab0dc02783ebab27cd75f4b2c6b2f5b625a6dc64f8e3db62c62c41554c21e80fae555b57090f102a1bf1a979d7ae0414d69790122ed5202ae20b1578ade0c44b4e954001e1f92b291457c66d7d2c689d7cb5bd06b964b2e334ea2cf3c8187a44261317568955dc1898e3e031b0d591675efd0e94587f73cfdd202f17cdca881b481a5aeee6b51ceb262e4b7a6452ae02798341d8ca29cd7279e5447533de819c6f54655872c778219fc2f74082d667aaa55e9f08a0bbe8c62b661f7f39897d8b8fac53d7c7aa16377a0eecd291126428bfb7b7e9405427f9e5ff0c2a7ebd3ee0384bc6b60d4015041763db11d674e0c5332de3eeae643bd99cb213d265af8cd9aedfbba8723cf9149ee8104ff17f6d4d3469f73d1386c61b74648dc30254d7eb8"], 0x44}}, 0x0) r67 = socket$netlink(0x10, 0x3, 0x0) r68 = socket$netlink(0x10, 0x3, 0x0) r69 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r69, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r69, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x2ba) sendmsg$nl_route(r68, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB="3c0000001000850600"/18, @ANYRES32=r70, @ANYBLOB="fe3a0400000000001c0012000c000100626f6e64000000000c00020008001374041b00004cb9e4ea438ea8a879d2e52eb7310007987a919b6f9de59ad8758bff5d89d7e0a89755452d1c03d6d08dc8eefc7a35bbf73840e4205087b8af82c7d3cedffa1b3655fdfa5388aae78167b1f9ac91e4fba0047de31d550ff2244227009353346bd339665d1a0576848ba28ee46665bc8da41d458dd9c7afade6071676b0ad2c62466dbb3d07905f344dcee7864cab559b7d94e910c9904c6bb2ad9559b3283c56c0aa36a1d7f563e2e5668758391db6494c6c3e1cf7d8b9114dda05005edfd548d26bc74c6aa732b7a864b511cf75de52ae120d2330da36328c150e38"], 0x3}}, 0x0) sendmsg$nl_route(r67, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000002940)=ANY=[@ANYBLOB="4400000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012000c00010067726574617000000c00020008000100", @ANYRES32=r70, @ANYBLOB="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", @ANYRES32=r70, @ANYBLOB="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"], 0x44}}, 0x0) r71 = socket$netlink(0x10, 0x3, 0x0) r72 = socket$netlink(0x10, 0x3, 0x0) r73 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r73, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r73, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x2ba) sendmsg$nl_route(r72, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB="3c0000001000850600"/18, @ANYRES32=r74, @ANYBLOB="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"], 0x3}}, 0x0) sendmsg$nl_route(r71, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000007c0)=ANY=[@ANYBLOB="4400000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012000c00010067726574617000000c00020008000100", @ANYRES32=r74, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r74, @ANYBLOB="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"], 0x44}}, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000006680)={'team0\x00', r74}) r76 = socket$inet6(0xa, 0x1000000000002, 0x0) r77 = socket$inet(0x2, 0x1, 0x0) connect$inet(r77, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r77, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r77, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r76, r77) getsockopt$inet6_mreq(r76, 0x29, 0x9, &(0x7f00000066c0)={@mcast2, 0x0}, &(0x7f0000006700)=0x14) r79 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r80 = dup(r79) ioctl$PERF_EVENT_IOC_ENABLE(r80, 0x8912, 0x400200) getsockname$packet(r80, &(0x7f0000006800)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000006840)=0x14) r82 = socket$netlink(0x10, 0x3, 0x0) r83 = socket$netlink(0x10, 0x3, 0x0) r84 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r84, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r84, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x2ba) sendmsg$nl_route(r83, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB="3c0000001000850600"/18, @ANYRES32=r85, @ANYBLOB="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"], 0x3}}, 0x0) sendmsg$nl_route(r82, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000007c0)=ANY=[@ANYBLOB="4400000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012000c00010067726574617000000c00020008000100", @ANYRES32=r85, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r85, @ANYBLOB="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"], 0x44}}, 0x0) r86 = gettid() tkill(r86, 0x1000000000013) r87 = gettid() tkill(r87, 0x1000000000013) r88 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r89 = dup(r88) ioctl$PERF_EVENT_IOC_ENABLE(r89, 0x8912, 0x400200) r90 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r91 = dup(r90) ioctl$PERF_EVENT_IOC_ENABLE(r91, 0x8912, 0x400200) sendmsg$TEAM_CMD_NOOP(r0, &(0x7f0000007180)={&(0x7f0000001200)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000007140)={&(0x7f0000001840)=ANY=[@ANYBLOB="80080000", @ANYRES16=r1, @ANYBLOB="00022dbd7000ffdbdf250000000008000100", @ANYRES32=r5, @ANYBLOB="040102803c000100240001006c625f74785f6d6574686f64000000000000000000000000000000000000000005000300050000000900040068617368000000004c000100240001006c625f74785f6d6574686f640000000000000000000000000000000000000000050003000500000019000400686173685f746f5f706f72745f6d617070696e6700000000400001002400010071756575655f69640000000000000000000000000000000000000000000000000500030003000000080004000900000008000600", @ANYRES32=r9, @ANYBLOB="3800010024000100616374697665706f727400000000000000000000000000000000000000000000050003000300000008000400", @ANYRES32=r13, @ANYBLOB="08000100", @ANYRES32=r14, @ANYPTR64=&(0x7f0000002c80)=ANY=[@ANYBLOB="7d0a8a8894f6ab41cfdef6c95befc858f7fb34c830cf3d6ba7e1fa6c5134daccabeaa89d9c0fa636578323b9da1629ad06943400133f54568dccbdc76826292afb97b160f81799a7a45d7c17fe59601376bb93ad01840933523090d55350f7b6bd445cd3f4bd4a7ad4771f92b75018a3e84544916c353bbdf521b4d4a205fc27f66d6320c5a4e93751dbcbd9c3f9a08b1d389836c6069ae6d916b0ecd83f644b687f907d4921a5", @ANYRES32=r87, @ANYRESDEC=0x0, @ANYPTR=&(0x7f00000005c0)=ANY=[@ANYRESDEC, @ANYRESOCT=r89, @ANYRESHEX=r91, @ANYRESOCT=0x0, @ANYPTR], @ANYBLOB="452182be54694958611f61e0291a3285e39d285d2b2d7450da1f9b44440b0c550c41435d7009c3a857415dfad96523524711c5f0", @ANYRES32, @ANYRES32], @ANYRES32=r18, @ANYBLOB="900002804c000100240001006c625f74785f6d6574686f640000000000000000000000000000000000000000050003000500000019000400686173685f746f5f706f72745f6d617070696e670000000040000100240001006c625f74785f686173685f746f5f706f72745f6d617070696e67000000000000050003000300000008000400", @ANYRES32=r19, @ANYBLOB="080007000000000008000100", @ANYRES32=r23, @ANYBLOB="f40002803c00010024000100757365725f6c696e6b757000000000000000000000000000000000000000000005000300060000000400040008000600", @ANYRES32=r26, @ANYBLOB="38000100240001006c625f73746174735f726566726573685f696e74657276616c00000000000000050003000300000008000400aa0000003c00010024000100656e61626c65640000000000000000000000000000000000000000000000000005000300060000000400040008000600", @ANYRES32=r27, @ANYBLOB="40000100240001006c625f706f72745f737461747300000000000000000000000000000000000000050003000b000000080004000600000008000600", @ANYRES32=r30, @ANYBLOB="08000100", @ANYRES32=r33, @ANYBLOB="ec01028040000100240001007072696f72697479000000000000000000000000000000000000000000000000050003000e000000080004000100010008000600", @ANYRES32=r36, @ANYBLOB="38000100240001006e6f746966795f70656572735f696e74657276616c00000000000000000000000500030003000000080004000500000040000100240001006c625f706f72745f737461747300000000000000000000000000000000000000050003000b000000080004000000000008000600", @ANYRES32=r38, @ANYBLOB="3c00010024000100656e61626c656400000000000000000000000000000000000000000000000000050003000600000004000400b2fe0600", @ANYRES32=r39, @ANYBLOB="3c00010024000100757365725f6c696e6b75705f656e61626c65640000000000000000000000000005000300060000000400040008000600", @ANYRES32=0x0, @ANYBLOB="38000100240001006c625f73746174735f726566726573685f696e74657276616c00000000000000050003000300000008000400ff07000040000100240001006c625f74785f686173685f746f5f706f72745f6d617070696e67000000000000050003000300000008000400", @ANYRES32=r40, @ANYBLOB="080007000000000040000100240001007072696f72697479000000000000000000000000000000000000000000000000050003000e00000008000400cbb0000008000600", @ANYRES32=r41, @ANYRES16=r86, @ANYRES32=r44, @ANYBLOB="3c00028038000100240001006e6f746966795f70656572735f696e74657276616c0000000000000000000000050003000300000008000400000000e008000100", @ANYRES32=0x0, @ANYBLOB="6c010280400001002400010071756575655f69640000000000000000000000000000000000000000000000000500030003000000080004000002000008000600", @ANYRES32=r47, @ANYBLOB="38000100240001006d636173745f72656a6f696e5f696e74657276616c0000000000000000000000050003000300000008000400050000003c00010024000100757365725f6c696e6b75705f656e61626c65640000000000000000000000000005000300060000000400040008000600", @ANYRES32=r54, @ANYBLOB="3c00010024000100757365725f6c696e6b757000000000000000000000000000000000000000000005000300060000000400040008000600", @ANYRES32=r61, @ANYBLOB="3800010024000100616374697665706f727400000000000000000000000000000000000000000000050003000300000008000400", @ANYRES32=r62, @ANYBLOB="400001002400010071756575655f696400000000000000000000000000000000000000000000000005000300030000000800040017bdc26f08000600", @ANYRES32=r66, @ANYBLOB="00000100000001006e6f746966795f70656572735f636f756e7400000000000000000000000000000000030003000000000004000200000008000100", @ANYRES32=r70, @ANYBLOB="400002803c000100240001006c625f74785f6d6574686e640000000000000000000000000000000000000000050003000500000009000400686173680000000008000100", @ANYRES32=r75, @ANYBLOB="7c0102803c000100240001006c625f74785f6d6574686f64000000000000000000000000000000000000000005000300050000000900040068617368000000003800010024000100616374697665706f727400000000000000000000000000000000000000000000050003000300000008000400", @ANYRES32=0x0, @ANYBLOB="3c00010024000100757365725f6c696e6b757000000000000000000000000000000000000000000005000300060000000400040008000600", @ANYRES32=r78, @ANYBLOB="4c000100240001006c625f74785f6d6574686f640000000000000000000000000000000000000000050003000500000019000400686173685f746f5f706f72745f6d617070696e67000000003c00010024000100757365725f6c696e6b757000000000000000000000000000000000000000000005000300060000000400040008000600", @ANYRES32=r81, @ANYBLOB="40000100240001006c625f74785f686173685f746f5f706f72745f6d617070696e67000000000000050003000300000008000400", @ANYRES32=r53, @ANYBLOB="080007000000000008000100", @ANYRES32=r85, @ANYBLOB="400002803c00010024000100757365725f6c696e6b757000000000000000000000000000000000000000000005000300060000000400040008000600", @ANYRES32=0x0, @ANYBLOB], 0x43}, 0x1, 0x0, 0x0, 0x8804}, 0x40004) [ 1358.778932] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1358.793991] batman_adv: Cannot find parent device [ 1358.803497] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1358.817715] batman_adv: Cannot find parent device 06:48:22 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$KVM_ASSIGN_SET_MSIX_NR(r3, 0x4008ae73, &(0x7f0000000080)={0x1, 0x4}) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) [ 1358.835214] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1358.874027] batman_adv: Cannot find parent device [ 1358.905033] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1358.933880] batman_adv: Cannot find parent device [ 1358.960197] cgroup: cgroup2: unknown option "º" [ 1358.998461] batman_adv: Cannot find parent device [ 1359.166845] batman_adv: Cannot find parent device [ 1359.193216] batman_adv: Cannot find parent device [ 1359.212784] batman_adv: Cannot find parent device [ 1359.272783] batman_adv: Cannot find parent device 06:48:23 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) 06:48:23 executing program 5: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x100, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000380)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='./file0\x00', &(0x7f0000000100)='reiserfs\x00', 0x0, 0x0) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) sendmsg$nl_crypto(r3, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000080)={&(0x7f0000000140)=@del={0xe8, 0x11, 0x1, 0x70bd28, 0x25dfdbfd, {{'stdrng\x00'}, [], [], 0x2000, 0x2400}, [{0x8, 0x1, 0x9}]}, 0xe8}, 0x1, 0x0, 0x0, 0x40}, 0x20040800) [ 1359.385519] cgroup: cgroup2: unknown option "º" [ 1359.418904] cgroup: cgroup2: unknown option "º" 06:48:23 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) setsockopt$CAIFSO_LINK_SELECT(r3, 0x116, 0x7f, &(0x7f0000000080)=0x9, 0x4) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) 06:48:23 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) ioctl$sock_x25_SIOCDELRT(r6, 0x890c, &(0x7f00000002c0)={@remote={[], 0x3}, 0x8, 'batadv_slave_1\x00'}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) [ 1359.563247] cgroup: cgroup2: unknown option "º" 06:48:25 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) r2 = creat(&(0x7f0000000800)='./file0\x00', 0x110) ioctl$sock_inet_sctp_SIOCINQ(r2, 0x541b, &(0x7f0000000840)) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$KVM_RUN(r4, 0xae80, 0x0) setxattr(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)=@known='com.apple.system.Security\x00', &(0x7f0000000140)='cgroup2\x00', 0x8, 0x1) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000080)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) 06:48:25 executing program 5: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) write$P9_RXATTRWALK(r3, &(0x7f0000000080)={0xf, 0x1f, 0x2, 0xe50}, 0xf) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000000)=ANY=[@ANYBLOB="2f6c656c6230000000000000b79fd8aa0de455edb3ab067308ee"], &(0x7f0000000340)='./file0\x00', &(0x7f0000000100)='reiserfs\x00', 0x0, 0x0) 06:48:25 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_emit_ethernet(0x3e, &(0x7f0000000080)=ANY=[@ANYBLOB="ffffffffffff96c1e9574b310800450000300040000000019078ac1e0001e0000002050090780001080045000000000000006b3200001755abb20583c0a59e1ee42edc9588f315a05530ac1414bb8c25723b9abb0f81751bd2415c210419d9ce7150fb0f994fb9981f855488a6ad67da9aa2"], 0x0) 06:48:25 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) r5 = gettid() tkill(r5, 0x1000000000013) r6 = gettid() tkill(r6, 0x1000000000013) tgkill(r5, r6, 0x1d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) [ 1361.350971] cgroup: cgroup2: unknown option "º" [ 1361.396452] cgroup: cgroup2: unknown option "º" 06:48:25 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) r2 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000080)='/dev/btrfs-control\x00', 0xa0000, 0x0) getsockopt$IPT_SO_GET_INFO(r2, 0x0, 0x40, &(0x7f00000000c0)={'mangle\x00'}, &(0x7f00000001c0)=0x54) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) fcntl$getown(r4, 0x9) r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000340)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000300)={0xffffffffffffffff}, 0x2, 0x1}}, 0x20) write$RDMA_USER_CM_CMD_REJECT(r6, &(0x7f0000000380)={0x9, 0x108, 0xfa00, {r7, 0x0, "1d1f39", "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"}}, 0x110) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r6, 0x4008240b, &(0x7f0000000200)={0x6, 0x70, 0x7f, 0x55, 0x4, 0x8, 0x0, 0xfffffffffffffffc, 0x8, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x950, 0x2, @perf_bp, 0xa012, 0x5, 0x2, 0x2, 0x3, 0x8, 0x2}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000280)='befs\x00', 0x2307c10, &(0x7f0000000240)) 06:48:25 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) chdir(&(0x7f0000000040)='./file0\x00') ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_emit_ethernet(0x3e, &(0x7f0000000000)={@broadcast, @random="96c1e9574b31", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, @time_exceeded={0x5, 0x0, 0x0, 0x0, 0x0, 0x8, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast1, @remote}}}}}}, 0x0) 06:48:25 executing program 5: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) recvmsg$can_bcm(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000140)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, 0x80, &(0x7f0000001540)=[{&(0x7f00000000c0)}, {&(0x7f0000000380)=""/4096, 0x1000}, {&(0x7f0000000240)=""/129, 0x81}, {&(0x7f0000001380)=""/162, 0xa2}, {&(0x7f0000001440)=""/231, 0xe7}], 0x5, &(0x7f00000015c0)=""/86, 0x56}, 0x12001) r3 = gettid() tkill(r3, 0x1000000000013) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) r6 = fcntl$getown(r5, 0x9) r7 = getuid() setreuid(0xee00, r7) ioctl$DRM_IOCTL_GET_CLIENT(r1, 0xc0286405, &(0x7f00000017c0)={0x7, 0x9, {r6}, {r7}, 0xffffffff, 0x4}) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000001640)={r3, 0xffffffffffffffff, 0x0, 0xc, &(0x7f0000000300)='/dev/uinput\x00', 0xffffffffffffffff}, 0x30) sendmsg$nl_route(r1, &(0x7f0000001780)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000001740)={&(0x7f0000001680)=@newlink={0xb0, 0x10, 0x0, 0x70bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r2, 0x4, 0x40008}, [@IFLA_XDP={0x14, 0x2b, 0x0, 0x1, [@IFLA_XDP_FLAGS={0x8, 0x3, 0x2}, @IFLA_XDP_FLAGS={0x8, 0x3, 0x5}]}, @IFLA_LINKINFO={0x58, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x48, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_HASH_ELASTICITY={0x8, 0x1a, 0x1}, @IFLA_BR_MCAST_QUERY_INTVL={0xc, 0x21, 0x3}, @IFLA_BR_MCAST_MLD_VERSION={0x5, 0x2c, 0x4}, @IFLA_BR_MCAST_STATS_ENABLED={0x5, 0x2a, 0x1}, @IFLA_BR_HELLO_TIME={0x8, 0x2, 0x2}, @IFLA_BR_MCAST_SNOOPING={0x5}, @IFLA_BR_NF_CALL_ARPTABLES={0x5, 0x26, 0x1}, @IFLA_BR_FORWARD_DELAY={0x8, 0x1, 0x13}]}}}, @IFLA_NET_NS_PID={0x8, 0x13, r8}, @IFLA_ADDRESS={0xa, 0x1, @remote}, @IFLA_GROUP={0x8, 0x1b, 0x7}, @IFLA_GSO_MAX_SIZE={0x8, 0x29, 0xef93}]}, 0xb0}, 0x1, 0x0, 0x0, 0x20004850}, 0x4000) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) prctl$PR_SET_NAME(0xf, &(0x7f00000000c0)='-&\x00') r9 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x802, 0x0) ioctl$UI_DEV_DESTROY(r9, 0x5502) mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2fde86ea8a1347a4bf5ad1ad"], &(0x7f0000000340)='./file0\x00', &(0x7f0000000100)='reiserfs\x00', 0x0, 0x0) 06:48:25 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fb0\x00', 0x140, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000040)={0xffffffffffffffff}, 0x13d, 0xa}}, 0x20) write$RDMA_USER_CM_CMD_LISTEN(0xffffffffffffffff, &(0x7f0000000100)={0x7, 0x8, 0xfa00, {r3, 0x1}}, 0x10) close(r0) 06:48:25 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text16={0x10, &(0x7f0000000180)="670fc72c93d9f0b886008ec80f79a5000066b8000000000f23d00f21f866351000000f0f23f8660fc73766b9800000c00f326635004000000f30f3a73ef20fbaae50b75d660f7d461e", 0x49}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$sock_bt_cmtp_CMTPGETCONNLIST(0xffffffffffffffff, 0x800443d2, &(0x7f0000000040)) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r5 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000080)='/selinux/checkreqprot\x00', 0x4c0880, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000000)={0x10002, 0x1, 0x4, 0x2000, &(0x7f0000014000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x8, 0x0, 0x0, 0x0, 0xfff], 0x1}) r6 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000100)='/selinux/enforce\x00', 0x400000, 0x0) write$FUSE_LSEEK(r6, &(0x7f00000002c0)={0x18, 0x0, 0x3, {0x401}}, 0x18) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 06:48:25 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) bind$alg(r1, &(0x7f0000000080)={0x26, 'aead\x00', 0x0, 0x0, 'echainiv(seqiv(rfc4106-gcm-aesni))\x00'}, 0x58) 06:48:26 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) r0 = syz_open_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0x32, 0x444000) ioctl$DRM_IOCTL_SET_VERSION(r0, 0xc0106407, &(0x7f0000000040)={0x8001, 0x7f, 0x7, 0x5}) 06:48:26 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$sock_bt_cmtp_CMTPGETCONNLIST(0xffffffffffffffff, 0x800443d2, &(0x7f0000000040)) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) setsockopt$inet6_MRT6_DEL_MFC_PROXY(r0, 0x29, 0xd3, &(0x7f0000000180)={{0xa, 0x4e24, 0x5, @ipv4={[], [], @multicast2}, 0x8001}, {0xa, 0x4e21, 0x4, @mcast2, 0x3ff}, 0x1, [0x25, 0xbf6, 0x8, 0xffff, 0x3f, 0x0, 0x3, 0x400]}, 0x5c) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) setsockopt$packet_add_memb(r6, 0x107, 0x1, &(0x7f0000000000)={0x0, 0x1, 0x6, @dev={[], 0xa}}, 0x10) timerfd_gettime(0xffffffffffffffff, &(0x7f0000000480)) r7 = accept4(r5, &(0x7f0000000380)=@pppoe={0x18, 0x0, {0x0, @remote}}, &(0x7f0000000080)=0x80, 0x80000) getsockopt$inet_sctp6_SCTP_MAX_BURST(r7, 0x84, 0x14, &(0x7f0000000400), &(0x7f0000000440)=0x4) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x6, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$VIDIOC_SUBDEV_S_DV_TIMINGS(0xffffffffffffffff, 0xc0845657, &(0x7f00000002c0)={0x0, @bt={0x8, 0xfff, 0x1, 0x2, 0x7, 0x1, 0x9, 0x5, 0x2, 0x9, 0x6, 0xffffffff, 0x2, 0x0, 0x10, 0x1b, {0x400, 0xfffffbff}, 0xbd, 0x6}}) ioctl$KVM_RUN(r4, 0xae80, 0x0) [ 1362.154987] cgroup: cgroup2: unknown option "º" [ 1362.176106] cgroup: cgroup2: unknown option "º" 06:48:26 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) r2 = socket$inet6(0xa, 0x1000000000002, 0x0) r3 = socket$inet(0x2, 0x1, 0x0) connect$inet(r3, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r3, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r3, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r2, r3) ioctl$VIDIOC_DQBUF(0xffffffffffffffff, 0xc0585611, &(0x7f0000000080)={0x4000, 0x3, 0x4, 0x400000, 0x3, {0x77359400}, {0x3, 0x0, 0x43, 0x81, 0x1, 0x3f, "1110a161"}, 0x20, 0x1, @fd, 0x8001, 0x0, r3}) ioctl$SNDRV_PCM_IOCTL_TTSTAMP(r4, 0x40044103, &(0x7f0000000100)=0x8) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) 06:48:26 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) r0 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/btrfs-control\x00', 0x0, 0x0) r1 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000080)='l2tp\x00') sendmsg$L2TP_CMD_TUNNEL_MODIFY(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x44, r1, 0x404, 0x70bd28, 0x25dfdbfe, {}, [@L2TP_ATTR_UDP_SPORT={0x6, 0x1a, 0x4e24}, @L2TP_ATTR_L2SPEC_TYPE={0x5}, @L2TP_ATTR_IP_DADDR={0x8, 0x19, @multicast1}, @L2TP_ATTR_RECV_TIMEOUT={0xc, 0x16, 0x8}, @L2TP_ATTR_PEER_COOKIE={0xc, 0x10, 0xfffffffffffffff9}]}, 0x44}, 0x1, 0x0, 0x0, 0x4000000}, 0x80) [ 1362.407384] cgroup: cgroup2: unknown option "º" [ 1362.436256] cgroup: cgroup2: unknown option "º" 06:48:28 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$sock_bt_cmtp_CMTPGETCONNLIST(0xffffffffffffffff, 0x800443d2, &(0x7f0000000040)) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) mmap(&(0x7f0000013000/0x4000)=nil, 0x4000, 0x200000f, 0x40010, r0, 0xc0b84000) r5 = socket$inet6(0xa, 0xa, 0xde) r6 = socket$inet(0x2, 0x1, 0x0) connect$inet(r6, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r6, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r6, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r7 = socket$inet6(0xa, 0x1000000000002, 0x0) r8 = socket$inet(0x2, 0x1, 0x0) connect$inet(r8, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r8, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r8, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r7, r8) dup2(r5, r7) ioctl$sock_proto_private(r5, 0x89ee, &(0x7f00000002c0)="6cb4b3928b6d7576d0e3f395f83156d09ee2b97cbb5bb4c0f1bd8996be3beb08f5ab5319fe3ea0575564d9cd2d028b06d43d072396790fe835b7176c0b2ccf1258b4b3833a5b92e82704d133460028cf2833fe3eec94648053cfc5b104219a50f0bae0f838233c218428b9fb705c5d69c27d5b0eb19a878c31bda47a08c8cf6eddff7853b7f2e37a54c78646b364912ce7659b454fba94dca7e10376e16764cabbe2103e908b544138888bcc1c39e5e29de8cf99ca420ba2d9b278a9fe6e2d615bc079ebc4ac822c9df5d5c3a8c6e341e5e56c86006d3916a9fe1ed799904f895e16f7f25b9112638ca119b52e9cbfe254865afa32ed") ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r9 = syz_open_dev$video4linux(&(0x7f0000000000)='/dev/v4l-subdev#\x00', 0x40, 0x240000) r10 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFNL_MSG_CTHELPER_DEL(r10, &(0x7f0000000400)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000003c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="2c000000020905000000000000000000000000010c00048008000140000004510c0004800800014000000001c73e12e5f96b2581bd9853f4b935768de741b717a10df119a438910a89625cb676cf8dbed2d978fab15ff256530827047823b323e6a8979ba4dc69a510e5433e2f46146266f41f489740141d32f53f57fef78f52f59b48e6fc8518f1e7e43527eceb78901c39ff484d38255d2946753095a56881b04c04046a9913bd5c7258aa80df9b250fcce09ae001d42e6f9dfa014b0d6542f8e8b0de594b00a1ab8b590e81f025b68c94938a5ccca40518d1afd7fd156ff6fffdd76c5ad268abf284cea659a81a58452139ddaba58c708e4bec9117a9a4d8ea82bd0918d2200c32bbdae0c2401cde37a5af83df7311e5ad41472dc418d41e08b6b0f2e615ab7648f48497b48baf85cc997e5084424841f7738fbcfc40c9f79232c6c80428627f740ea294e848bb37797e2bb607faa319f90df3ca8a60029f84f278a829d0866c735951b5a52aff98f00c8d55ad6e89100b9c081470edddbff683f989dc23fa8af1934266156400d7c98d8668b11dedbf7fca29fd27410dd36de8a1f97834c11191517d3d4e66dd0903dc"], 0x2c}, 0x1, 0x0, 0x0, 0x4040000}, 0x8001) write$binfmt_aout(r9, &(0x7f0000000f40)=ANY=[@ANYBLOB="07010640a3010000bd020000a85f0000e5000020008000000000000000000000bd80656942c125a31a655df3c042308b051541500bb480f84c5c5b0c55e1c21e08e00457f1763ce90da35980524c07fe8d386095107951839e202cd17644897ddad62854f68f6ac8f5f7bfcae4df3473df1fa9ec900af93b88f873bf26455a8fdb3559d567a798a85ac3dc7ca3000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e3000000000000000000000000000000000011151e370000000000000000000000000000000000000000000000000000000000000000000006000000000000000000000000000000000000000000000000000000000000000000000000000000f4d30fe80000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000600000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e5000000000000000000000000000700000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000060000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b578118d09af681fca00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000211500000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f7ffffffffffffff00000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000418d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000519fbc950000000000000000000000000000000000000000f4ff000000000000000000000000000000000000000000000000000000000000be000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e1ff91fc824be3486eed18138cecc82d39d1a3130f45ee932c91cb669b5e85c8e436c35e9c08e86c3951dbd301deffc7f5f72bcdf31dbb1d4293c28712e092b68d65629fb9980c90f072a9658a124637fb7ccfddbcd7fcb9bd729fc904eccbeab5b83f0dfff089b0a327b75d99211f4e59a7eed60fe3c4f0624ff2850dd761cedbc25b68be478ec1335575b0f76cfbb916dd1f006bf8d19f05da826c5553138f0e0567efa6f5b13b86f9b76f120d96f37a8684ea94810"], 0x58d) r11 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r12 = dup(r11) ioctl$PERF_EVENT_IOC_ENABLE(r12, 0x8912, 0x400200) ioctl$SIOCX25SFACILITIES(r12, 0x89e3, &(0x7f0000000080)={0x12, 0x1ff, 0xb, 0x6, 0x4}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x20000000003, 0x405, 0x44, 0x2, 0x3, 0x0, 0xfff, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x7f]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 06:48:28 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$KVM_SET_IDENTITY_MAP_ADDR(r3, 0x4008ae48, &(0x7f00000000c0)=0x10000) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) 06:48:28 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) ioctl$SNDCTL_DSP_SUBDIVIDE(0xffffffffffffffff, 0xc0045009, &(0x7f0000000000)=0x1) 06:48:28 executing program 0: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = socket$inet(0x2, 0x1, 0x0) ioctl$void(r1, 0x5450) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x50, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) r4 = gettid() tkill(r4, 0x1000000000013) syz_open_procfs$namespace(r4, &(0x7f0000000000)='ns/uts\x00') ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 1364.527870] cgroup: cgroup2: unknown option "º" [ 1364.574722] cgroup: cgroup2: unknown option "º" 06:48:29 executing program 5: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = socket$inet6(0xa, 0x1000000000002, 0x0) r3 = socket$inet(0x2, 0x1, 0x0) stat(&(0x7f0000000000)='./file0\x00', &(0x7f0000000200)) connect$inet(r3, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r3, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r3, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r2, r3) rename(&(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)='./file0\x00') fcntl$notify(r2, 0x402, 0x80000020) mount(&(0x7f0000000140)=ANY=[@ANYBLOB="2f6465762f6e756c6c623000c91fe38758f2e76fb0ac2d99fe4e6ff1bb11edacd961363a0527ecdf1b1f4325caac74ccabeaff3826a22c03e6ee2624ecbfeabde016f5689733318537cd44148e0000000000000df4d6c56f97f16d4c3770679d0f01257fa27b2a36fb5cfdca9fb8d2953382fb23bbaef0729b0c52cc40a9210a2f3860ab9dc4ce7b6a957a2c74c98a55d9"], &(0x7f0000000340)='./file0\x00', &(0x7f0000000100)='reiserfs\x00', 0x0, 0x0) 06:48:29 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vsock\x00', 0x20200, 0x0) ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000100)={0x52000000, 0x80, 0x0, 0x80, 0x5}) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f00000000c0)=[@in={0x2, 0x4e24, @multicast1}, @in={0x2, 0x4e23, @rand_addr=0x8}], 0x20) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) 06:48:29 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$LOOP_SET_DIRECT_IO(r1, 0x4c08, 0x2) 06:48:29 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$sock_bt_cmtp_CMTPGETCONNLIST(0xffffffffffffffff, 0x800443d2, &(0x7f0000000040)={0x9, &(0x7f00000002c0)=[{@fixed}, {@none}, {@fixed}, {@fixed}, {@fixed}, {}, {@fixed}, {}, {@none}]}) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) [ 1365.637101] cgroup: cgroup2: unknown option "º" [ 1365.664554] cgroup: cgroup2: unknown option "º" [ 1365.688096] kvm [8243]: vcpu0, guest rIP: 0xed disabled perfctr wrmsr: 0x186 data 0xed66004000000003 06:48:29 executing program 4: pipe2(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}, 0x40000) ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(0xffffffffffffffff, 0xc01064bd, &(0x7f0000000140)={&(0x7f00000000c0)="04a508bac8c99e7dc2855a5edcf2fe376919aacbcf80823dc76a22f16a40f73a58c5e29b63da136f99ff9bd57f6c6759400adda5c96b3d0d9bcf990a9a1b211db9938365fd7b1db20956083374db58", 0x4f, 0x1}) ioctl$DRM_IOCTL_MODE_GETPROPBLOB(r0, 0xc01064ac, &(0x7f0000000280)={r1, 0xdd, &(0x7f0000000180)=""/221}) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) openat$null(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/null\x00', 0x900, 0x0) getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r5, 0x84, 0x72, &(0x7f0000000000)={0x0, 0x0, 0x20}, &(0x7f0000000040)=0xc) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) 06:48:29 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$NBD_SET_BLKSIZE(r3, 0xab01, 0xfff) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0xffffffffffff886e) r4 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/btrfs-control\x00', 0x50001, 0x0) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(r4, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000000c0)="0a24cfa25b8145466743b42542ee831b6f09e8ab21ce78faeb24b1c94c62ab819527643251c64153ef7aaeadc66b02c7c85b2afdac9778fe7bbd525dde92566dd52e6c3632d3acc33d5df50ce7b567737928f8b706072d77c8358843117186e9780c49e80be16408d396b9e9c93723f5880a040a4bd9d706", 0x78}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) 06:48:29 executing program 3: r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/autofs\x00', 0x4000, 0x0) ioctl$DRM_IOCTL_GET_UNIQUE(r0, 0xc0106401, &(0x7f0000000100)={0x2c, &(0x7f0000000080)=""/44}) r1 = socket$inet(0x2, 0x1, 0x4a) connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e24, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10) openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) 06:48:29 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup3(r3, r2, 0x0) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$sock_bt_cmtp_CMTPGETCONNLIST(0xffffffffffffffff, 0x800443d2, &(0x7f0000000040)) r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) 06:48:29 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) write$binfmt_script(0xffffffffffffffff, &(0x7f0000000100)={'#! ', './file0', [{0x20, 'system_u:object_r:crond_var_run_t:s0\x00'}, {0x20, 'system_u:object_r:crond_var_run_t:s0\x00'}, {0x20, 'system_u:object_r:crond_var_run_t:s0\x00'}]}, 0x7d) connect$vsock_stream(r3, &(0x7f0000000040)={0x28, 0x0, 0xffffffff, @local}, 0x10) fsetxattr$security_selinux(r2, &(0x7f0000000080)='security.selinux\x00', &(0x7f00000000c0)='system_u:object_r:crond_var_run_t:s0\x00', 0x61, 0x2) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_emit_ethernet(0x3e, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffff96c1e9574b310800450092300000751e5b0f1710a8cc3bc3cc6f000000019000001e0001e00000010500907800000800451e0c8b0e16b6d8"], 0x0) 06:48:29 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) setsockopt$inet_sctp6_SCTP_RECVNXTINFO(r3, 0x84, 0x21, &(0x7f0000000080)=0x5, 0x4) [ 1366.045829] kvm [8265]: vcpu0, guest rIP: 0xed disabled perfctr wrmsr: 0xc2 data 0xed660040d08e0002 [ 1366.068796] kvm [8265]: vcpu0, guest rIP: 0xed ignored wrmsr: 0x11e data 0xed660040d08e0002 [ 1366.096100] SELinux: Context system_u:object_r:crond_var_run_t:s0 is not valid (left unmapped). [ 1366.112818] kvm [8265]: vcpu0, guest rIP: 0xed disabled perfctr wrmsr: 0x186 data 0xed660040d08e0002 06:48:30 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) [ 1366.126861] audit: type=1400 audit(1580107710.108:12336): avc: denied { relabelto } for pid=8274 comm="syz-executor.4" name="RAW" dev="sockfs" ino=248943 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:unlabeled_t:s0 tclass=rawip_socket permissive=1 [ 1366.379649] cgroup: cgroup2: unknown option "º" [ 1366.395996] cgroup: cgroup2: unknown option "º" [ 1366.577516] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 1366.599359] REISERFS warning (device nullb0): reiserfs_fill_super: Cannot allocate commit workqueue [ 1367.843454] syz-executor.1: vmalloc: allocation failure: 0 bytes, mode:0x14000c0(GFP_KERNEL), nodemask=(null) [ 1367.860201] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1367.865629] CPU: 1 PID: 8300 Comm: syz-executor.1 Not tainted 4.14.167-syzkaller #0 [ 1367.874072] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1367.883543] Call Trace: [ 1367.886157] dump_stack+0x142/0x197 [ 1367.889805] warn_alloc.cold+0x96/0x1af 06:48:31 executing program 1 (fault-call:5 fault-nth:0): r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/load\x00', 0x2, 0x0) write$selinux_load(r2, 0x0, 0x0) 06:48:31 executing program 5: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x4) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000200)=ANY=[@ANYBLOB='$dev/nullb0\x00'], &(0x7f0000000340)='./file0\x00', &(0x7f0000000100)='reiserfs\x00', 0x0, 0x0) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) mmap$perf(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x100000e, 0x13, r3, 0x7) 06:48:31 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x503480, 0x0) 06:48:31 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$netrom_NETROM_T2(r1, 0x103, 0x2, &(0x7f0000000080)=0x18c, 0x4) ioctl$UI_DEV_CREATE(r1, 0x5501) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcs\x00', 0x100, 0x0) ioctl$sock_inet_SIOCSARP(r2, 0x8955, &(0x7f00000001c0)={{0x2, 0x4e24, @multicast1}, {0x306, @remote}, 0x4, {0x2, 0x4e20, @loopback}, 'batadv0\x00'}) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) socket$vsock_stream(0x28, 0x1, 0x0) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) 06:48:31 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat(r1, &(0x7f0000000040)='./file0\x00', 0xc0800, 0x100) ioctl$KVM_PPC_GET_PVINFO(r2, 0x4080aea1, &(0x7f0000000080)=""/23) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) syz_emit_ethernet(0xca, &(0x7f00000001c0)={@broadcast, @empty, @void, {@ipv4={0x800, @icmp={{0x28, 0x4, 0x0, 0x0, 0xbc, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @broadcast, {[@noop, @timestamp_addr={0x44, 0x24, 0xca, 0x1, 0xe, [{@multicast1, 0xffff}, {@loopback, 0x4}, {@loopback, 0x1963}, {@multicast1, 0x9}]}, @end, @noop, @timestamp_addr={0x44, 0x34, 0xef, 0x1, 0x7, [{@dev={0xac, 0x14, 0x14, 0x20}, 0x3ff000}, {@broadcast, 0x2}, {@loopback, 0x6}, {@broadcast}, {@broadcast, 0x3}, {@remote, 0x24}]}, @ra={0x94, 0x4, 0x1}, @ra={0x94, 0x4}, @timestamp={0x44, 0x28, 0x9d, 0x0, 0x2, [0x6, 0x40, 0x3, 0x43a0, 0x8001, 0x401, 0x81, 0x0, 0x5]}]}}, @time_exceeded={0x5, 0x0, 0x0, 0x0, 0x0, 0x8, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast1, @remote}}}}}}, 0x0) 06:48:31 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x200000, 0x0) ioctl$KDGKBMODE(r1, 0x4b44, &(0x7f0000000040)) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f00000002c0)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff], 0x10000}) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) [ 1367.893803] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 1367.898671] ? lock_downgrade+0x740/0x740 [ 1367.902856] ? avc_has_perm+0x2df/0x4b0 [ 1367.906968] __vmalloc_node_range+0x3c3/0x6a0 [ 1367.911484] ? trace_hardirqs_on+0x10/0x10 [ 1367.915732] vmalloc+0x46/0x50 [ 1367.918949] ? sel_write_load+0x1a0/0x1050 [ 1367.923197] sel_write_load+0x1a0/0x1050 [ 1367.927285] ? save_trace+0x290/0x290 [ 1367.931107] ? sel_read_bool+0x240/0x240 [ 1367.935292] ? trace_hardirqs_on+0x10/0x10 [ 1367.939556] ? debug_smp_processor_id+0x1c/0x20 [ 1367.944290] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1367.949237] __vfs_write+0x105/0x6b0 [ 1367.952997] ? sel_read_bool+0x240/0x240 [ 1367.957076] ? kernel_read+0x120/0x120 [ 1367.961175] ? __lock_is_held+0xb6/0x140 [ 1367.965256] ? check_preemption_disabled+0x3c/0x250 [ 1367.970294] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1367.975762] ? rcu_read_lock_sched_held+0x110/0x130 [ 1367.980798] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 1367.985575] ? __sb_start_write+0x153/0x2f0 [ 1367.989925] vfs_write+0x198/0x500 [ 1367.993486] SyS_write+0xfd/0x230 [ 1367.997008] ? SyS_read+0x230/0x230 [ 1368.000654] ? do_syscall_64+0x53/0x640 [ 1368.006036] ? SyS_read+0x230/0x230 [ 1368.009775] do_syscall_64+0x1e8/0x640 [ 1368.013703] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1368.018570] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1368.023810] RIP: 0033:0x45b349 [ 1368.027007] RSP: 002b:00007f76bb2b4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1368.034731] RAX: ffffffffffffffda RBX: 00007f76bb2b56d4 RCX: 000000000045b349 [ 1368.042014] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005 [ 1368.049410] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1368.056739] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006 [ 1368.064022] R13: 0000000000000cb1 R14: 00000000004cd905 R15: 0000000000000000 [ 1368.073095] Mem-Info: [ 1368.075556] active_anon:441826 inactive_anon:209 isolated_anon:0 [ 1368.075556] active_file:1963 inactive_file:6789 isolated_file:0 [ 1368.075556] unevictable:0 dirty:58 writeback:0 unstable:0 [ 1368.075556] slab_reclaimable:18608 slab_unreclaimable:147801 [ 1368.075556] mapped:56970 shmem:285 pagetables:32954 bounce:0 [ 1368.075556] free:860435 free_pcp:340 free_cma:0 [ 1368.119008] cgroup: cgroup2: unknown option "º" [ 1368.137297] Node 0 active_anon:1607024kB inactive_anon:764kB active_file:1644kB inactive_file:9688kB unevictable:0kB isolated(anon):0kB isolated(file):128kB mapped:216956kB dirty:164kB writeback:0kB shmem:1056kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 995328kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1368.165956] Node 1 active_anon:160448kB inactive_anon:80kB active_file:6616kB inactive_file:17056kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:11072kB dirty:24kB writeback:0kB shmem:84kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1368.194423] Node 0 DMA free:10544kB min:216kB low:268kB high:320kB active_anon:4508kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:128kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1368.232826] lowmem_reserve[]: 0 2569 2569 2569 2569 06:48:32 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r2) fadvise64(r2, 0x7f, 0x7fffffff00000000, 0x1) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) 06:48:32 executing program 3: r0 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/commit_pending_bools\x00', 0x1, 0x0) ioctl$KVM_SET_MSRS(r0, 0x4008ae89, &(0x7f0000000040)=ANY=[@ANYBLOB="0600000000000063360000310300000000000003000000000000006d0200000000000004000000000000002f0900000000000005000018000000007502000000000000010000800000000071030000000000000600000000000000ac0b2d2d0753291009"]) openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) [ 1368.238086] Node 0 DMA32 free:43852kB min:36380kB low:45472kB high:54564kB active_anon:1602516kB inactive_anon:764kB active_file:1848kB inactive_file:9988kB unevictable:0kB writepending:164kB present:3129332kB managed:2634344kB mlocked:0kB kernel_stack:21056kB pagetables:53712kB bounce:0kB free_pcp:732kB local_pcp:348kB free_cma:0kB [ 1368.278854] lowmem_reserve[]: 0 0 0 0 0 [ 1368.283286] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1368.311153] lowmem_reserve[]: 0 0 0 0 0 06:48:32 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) getsockopt$inet_sctp_SCTP_GET_ASSOC_NUMBER(r3, 0x84, 0x1c, &(0x7f0000000040), &(0x7f0000000080)=0x4) syz_emit_ethernet(0x3e, &(0x7f0000000000)={@broadcast, @random="96c1e9574b31", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, @time_exceeded={0x5, 0x0, 0x0, 0x0, 0x0, 0x8, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast1, @remote}}}}}}, 0x0) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) ioctl$PERF_EVENT_IOC_QUERY_BPF(r5, 0xc008240a, &(0x7f00000000c0)={0x2, 0x0, [0x0, 0x0]}) [ 1368.315864] Node 1 Normal free:3387328kB min:53508kB low:66884kB high:80260kB active_anon:160448kB inactive_anon:80kB active_file:6616kB inactive_file:17156kB unevictable:0kB writepending:24kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:26272kB pagetables:78020kB bounce:0kB free_pcp:800kB local_pcp:624kB free_cma:0kB [ 1368.409563] cgroup: cgroup2: unknown option "º" 06:48:32 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x52d281, 0x0) r0 = socket$packet(0x11, 0x2, 0x300) readv(r0, &(0x7f0000000080)=[{&(0x7f0000000100)=""/106, 0x6a}], 0x1) 06:48:32 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) r4 = socket$inet6(0xa, 0x1000000000002, 0x0) r5 = socket$inet(0x2, 0x1, 0x0) connect$inet(r5, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r5, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r5, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r4, r5) r6 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r7 = dup(r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) getsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r7, 0x84, 0x13, &(0x7f0000000180)={0x0, 0x55cb269e}, &(0x7f00000001c0)=0x8) setsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r5, 0x84, 0x76, &(0x7f00000002c0)={r8, 0x6}, 0x8) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r9 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r9, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r9, 0xae80, 0x0) ioctl$KVM_RUN(r9, 0xae80, 0x0) r10 = socket$inet6(0xa, 0x1000000000002, 0x0) r11 = socket$inet(0x2, 0x1, 0x0) connect$inet(r11, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r11, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r11, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r10, r11) getsockopt$ARPT_SO_GET_REVISION_TARGET(r11, 0x0, 0x63, &(0x7f0000000000)={'icmp6\x00'}, &(0x7f0000000040)=0x1e) [ 1368.448349] cgroup: cgroup2: unknown option "º" [ 1368.461251] lowmem_reserve[]: 0 0 0 0 0 [ 1368.479070] Node 0 DMA: 16*4kB (UME) 28*8kB (UE) 15*16kB (UME) 17*32kB (UME) 18*64kB (U) 5*128kB (UE) 6*256kB (UE) 2*512kB (ME) 3*1024kB (UME) 1*2048kB (E) 0*4096kB = 10544kB [ 1368.579389] Node 0 DMA32: 45*4kB (UMEH) 92*8kB (UEH) 678*16kB (UMEH) 491*32kB (UMH) 234*64kB (UMH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 42452kB [ 1368.600649] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB 06:48:32 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r5) ioctl$VIDIOC_S_EXT_CTRLS(r4, 0xc0205648, &(0x7f0000000d80)={0xa10000, 0x5, 0x3, r5, 0x0, &(0x7f0000000d40)={0x9b0954, 0xfff, [], @p_u8=&(0x7f0000000d00)=0x6}}) sendmsg$IPSET_CMD_DEL(r6, &(0x7f0000000f40)={&(0x7f0000000dc0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000f00)={&(0x7f00000007c0)={0xe0, 0xa, 0x6, 0x201, 0x0, 0x0, {0x2, 0x0, 0x5}, [@IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x7}, @IPSET_ATTR_ADT={0x20, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0xc4}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_PACKETS={0xc, 0x19, 0x1, 0x0, 0xc6a}}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0xb12}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x1}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_ADT={0x68, 0x8, 0x0, 0x1, [{0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_NAMEREF={0x9, 0x13, 'syz0\x00'}}, {0x1c, 0x7, 0x0, 0x1, @IPSET_ATTR_IP2_TO={0x18, 0x16, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}}}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_NAMEREF={0x9, 0x13, 'syz1\x00'}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_SKBMARK={0xc, 0x1b, 0x1, 0x0, 0x292}}, {0x18, 0x7, 0x0, 0x1, @IPSET_ATTR_COMMENT={0x11, 0x1a, '},\x98\x8f7\xde\xb1\x7f\bf\xfcDh'}}]}]}, 0xe0}, 0x1, 0x0, 0x0, 0x8000}, 0x4041) r7 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) r8 = socket$netlink(0x10, 0x3, 0x0) socket$netlink(0x10, 0x3, 0x0) r9 = socket(0x5, 0x6, 0x0) sendmsg$NBD_CMD_DISCONNECT(r9, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r9, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x2ba) r11 = socket$netlink(0x10, 0x3, 0x0) r12 = socket$netlink(0x10, 0x3, 0x0) r13 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r13, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r13, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x2ba) sendmsg$nl_route(r12, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB="3c0000001000850600"/18, @ANYRES32=r14, @ANYBLOB="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"], 0x3}}, 0x0) sendmsg$nl_route(r11, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000380)=ANY=[@ANYBLOB="4400000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012000c00010067726574617000000c00020008000100", @ANYRES32=r14, @ANYBLOB="17d7a410fe8929333a6e9e7da9115332d843e6b5c278bbb8af84826116a4928117708a9c636187dec4f5346567628b59554d7b7af686c306f3b0623f77851089c6fa74b4588f59ffa2837fb74307dcdf866a2c7bf881b6c27c8107e8b6276c7a814ba555422db126eeb857509f", @ANYRES32=r14, @ANYBLOB="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"], 0x7}}, 0x0) sendmsg$nl_route(r1, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000a00)=ANY=[@ANYBLOB="200000001400000126bd7000ffdbdf250271100030e2f442f3405dd0db23d3c65814a3cd97d9ea7a5878c3bd018942ce95ef7a397885bb767a7626da7725ddaa978dd7f34b3ee9ea426bdab2e92947df9f1d11bb96cabdd352ed5989a690a5603fd02b7940ef3b20e45d983d4aea43be345e5c01e2887a9adb51c3f77abe1e5744bfbf16fc6a7ff94362f7f30b0efb890d94413664e982560b856a37e63d501c634e04711fe2248dcf8d5ebee094f359f00273f960e6c5e919087539b8384471a66854c5c8830b33", @ANYRES32=r14, @ANYBLOB="08000400ac1e0001"], 0x20}, 0x1, 0x0, 0x0, 0x40090}, 0x20008000) r15 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r16 = dup(r15) ioctl$PERF_EVENT_IOC_ENABLE(r16, 0x8912, 0x400200) sendmsg$nl_route(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000f80)=ANY=[@ANYBLOB="4400000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012000c00010067726574617000000c00020008000100", @ANYRES32=r16, @ANYPTR64=&(0x7f0000000280)=ANY=[@ANYRESOCT], @ANYRES32=r10, @ANYBLOB="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"], 0x7}, 0x1, 0x0, 0x0, 0x10}, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1c, &(0x7f0000000080)={@ipv4={[], [], @empty}, r10}, 0x14) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) dup(r0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='ext3\x00', 0x8000, &(0x7f00000000c0)='},\x98\x8f7\xde\xb1\x7f\bf\xfcDh') [ 1368.638892] Node 1 Normal: 89*4kB (UME) 324*8kB (UME) 230*16kB (UME) 123*32kB (UE) 59*64kB (U) 95*128kB (UM) 53*256kB (U) 22*512kB (U) 6*1024kB (UM) 4*2048kB (UME) 811*4096kB (M) = 3387524kB [ 1368.714142] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1368.732761] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1368.757165] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1368.767999] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1368.800097] 10024 total pagecache pages [ 1368.804250] 0 pages in swap cache [ 1368.807716] Swap cache stats: add 0, delete 0, find 0/0 [ 1368.833331] Free swap = 0kB [ 1368.839163] Total swap = 0kB [ 1368.852653] 1965979 pages RAM [ 1368.860650] 0 pages HighMem/MovableOnly [ 1368.868960] 335868 pages reserved [ 1368.882357] 0 pages cma reserved [ 1368.914428] FAULT_INJECTION: forcing a failure. [ 1368.914428] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1368.926580] CPU: 0 PID: 8300 Comm: syz-executor.1 Not tainted 4.14.167-syzkaller #0 [ 1368.934681] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1368.944098] Call Trace: [ 1368.946861] dump_stack+0x142/0x197 [ 1368.950511] should_fail.cold+0x10f/0x159 [ 1368.954773] ? save_trace+0x290/0x290 [ 1368.958677] __alloc_pages_nodemask+0x1d6/0x7a0 [ 1368.963352] ? find_held_lock+0x35/0x130 [ 1368.967416] ? __alloc_pages_slowpath+0x2930/0x2930 [ 1368.972433] ? lock_downgrade+0x740/0x740 [ 1368.976588] alloc_pages_current+0xec/0x1e0 [ 1368.980915] __get_free_pages+0xf/0x40 [ 1368.984807] __tlb_remove_page_size+0x2c5/0x4f0 [ 1368.989481] unmap_page_range+0xb59/0x19f0 [ 1368.994526] ? vm_normal_page_pmd+0x360/0x360 [ 1368.999723] ? uprobe_munmap+0x94/0x210 [ 1369.003799] unmap_single_vma+0x15d/0x2c0 [ 1369.007954] unmap_vmas+0xac/0x170 [ 1369.011506] exit_mmap+0x285/0x4e0 [ 1369.015049] ? SyS_munmap+0x30/0x30 [ 1369.018681] ? kmem_cache_free+0x244/0x2b0 [ 1369.023914] ? __khugepaged_exit+0xcf/0x3d0 [ 1369.028229] ? mm_update_next_owner+0x450/0x5d0 [ 1369.032895] mmput+0x114/0x440 [ 1369.036098] do_exit+0x952/0x2cd0 [ 1369.039596] ? get_signal+0x319/0x1cd0 [ 1369.043495] ? mm_update_next_owner+0x5d0/0x5d0 [ 1369.048171] do_group_exit+0x111/0x330 [ 1369.052869] get_signal+0x381/0x1cd0 [ 1369.056596] ? save_trace+0x290/0x290 [ 1369.060398] do_signal+0x86/0x19a0 [ 1369.064075] ? lock_downgrade+0x740/0x740 [ 1369.068221] ? setup_sigcontext+0x7d0/0x7d0 [ 1369.072545] ? check_preemption_disabled+0x3c/0x250 [ 1369.077630] ? kick_process+0xef/0x180 [ 1369.081527] ? task_work_add+0x8e/0xf0 [ 1369.085423] ? fput+0xd4/0x150 [ 1369.088705] ? exit_to_usermode_loop+0x3d/0x220 [ 1369.093435] exit_to_usermode_loop+0x15c/0x220 [ 1369.098076] do_syscall_64+0x4bc/0x640 [ 1369.101960] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1369.107006] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1369.112201] RIP: 0033:0x45b349 [ 1369.115389] RSP: 002b:00007f76bb2b4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1369.123096] RAX: fffffffffffffff4 RBX: 00007f76bb2b56d4 RCX: 000000000045b349 [ 1369.130481] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005 [ 1369.137843] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1369.145143] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006 [ 1369.152416] R13: 0000000000000cb1 R14: 00000000004cd905 R15: 0000000000000000 06:48:33 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x3) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/load\x00', 0x2, 0x0) write$selinux_load(r2, 0x0, 0x0) 06:48:33 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = socket(0x10, 0x2, 0x0) r5 = openat(r2, &(0x7f0000000040)='./file0\x00', 0x8140, 0x124) r6 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r6) setsockopt$ARPT_SO_SET_REPLACE(r6, 0x0, 0x60, &(0x7f0000000700)={'filter\x00', 0x7, 0x4, 0x3e8, 0x110, 0x0, 0x0, 0x300, 0x300, 0x300, 0x4, &(0x7f0000000180), {[{{@uncond, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@mac, @empty, @rand_addr=0x1, @remote, 0x66986c0d48d4441f}}}, {{@uncond, 0xc0, 0xe8}, @unspec=@CLASSIFY={0x28, 'CLASSIFY\x00', 0x0, {0xfffffffb}}}, {{@arp={@initdev={0xac, 0x1e, 0x1, 0x0}, @multicast1, 0xffffff00, 0xff000000, 0xd, 0x2, {@mac=@dev={[], 0x24}, {[0xff, 0x0, 0xff]}}, {@empty, {[0xff, 0x0, 0xff, 0xff]}}, 0x2, 0x8, 0x29f1, 0xffc1, 0xf, 0x9, 'vcan0\x00', 'veth1_vlan\x00', {0xff}, {0xff}, 0x0, 0xeb}, 0xc0, 0x108}, @unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00', 0x0, 0x20}}}], {{[], 0xc0, 0xe8}, {0x28}}}}, 0x438) getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r3, 0x84, 0x1f, &(0x7f0000000280)={0x0, @in={{0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x37}}}, 0x200, 0x4}, &(0x7f0000000080)=0x90) getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r5, 0x84, 0x76, &(0x7f00000000c0)={r7, 0x4}, &(0x7f0000000140)=0x8) write(r4, &(0x7f0000000000)="1c0000001a009b8a14000000ff0000adf87e28000000000000000000", 0x1c) recvmmsg(r4, &(0x7f0000002ec0), 0x400000000000ec0, 0x2, &(0x7f00000001c0)={0x77359400}) r8 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000240)='IPVS\x00') sendmsg$IPVS_CMD_DEL_DEST(r4, &(0x7f0000000440)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000400)={&(0x7f00000005c0)=ANY=[@ANYRES16=r8, @ANYBLOB="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"], 0x2}, 0x1, 0x0, 0x0, 0x4000000}, 0xe206c26ae4fb48fe) syz_emit_ethernet(0x3e, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffff96c1e9574b310800450000300000000000019078ac1e0001e000000105009013c5bb58dc29194ed9dc58a899787800000800450000000000"], 0x0) 06:48:33 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$FIGETBSZ(r3, 0x2, &(0x7f0000000080)) 06:48:33 executing program 5: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000200)=@nullb='/dev/nullb0\x00', &(0x7f0000000340)='./file0\x00', &(0x7f0000000100)='reiserfs\x00', 0x0, 0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) 06:48:33 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) prctl$PR_MCE_KILL(0x21, 0x1, 0x0) 06:48:33 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r2 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x4, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 1369.345383] cgroup: cgroup2: unknown option "º" [ 1369.381653] cgroup: cgroup2: unknown option "º" 06:48:33 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x18, 0xfa00, {0x2, &(0x7f00000001c0)={0xffffffffffffffff}, 0x111, 0x9}}, 0x20) write$RDMA_USER_CM_CMD_JOIN_IP_MCAST(0xffffffffffffffff, &(0x7f0000000240)={0x10, 0x30, 0xfa00, {&(0x7f0000000100), 0x0, {0xa, 0x4e23, 0x8518, @mcast1, 0xffffffff}, r1}}, 0x38) syz_read_part_table(0x1f, 0x2, &(0x7f0000000280)=[{&(0x7f0000000300)="70ba549dd0eced63e9b04f692ff360b3bc83b5bee0e5b6af5aa84c0d7b197797b687330a3737ab6418a45aa16b3c5c1dfc6014110213d5080852bce9a7d1b7f42645a446f7442a3011bea4c7e8d43b78253e73e77f9834ff", 0x58, 0x9}, {&(0x7f0000000380)="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", 0x1000, 0x7}]) r2 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) openat$hwrng(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/hwrng\x00', 0x10840, 0x0) ioctl$VIDIOC_S_INPUT(r2, 0xc0045627, &(0x7f0000000080)=0xc48) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='ext3\x00', 0x0, &(0x7f0000001380)=';\xfeQ\xe1\xd2]\xed\xc1\xd4\xe4\xe3\x94\x7fRi\x9an*\x13fC\x00\xb4\x1d\x1bw6\xb2\x17\x97\x8a\xa9\xd8W:#<\xcfW~A\xa59\xd0\xf9Q8\xf30G\xdc\xf6`\xc8\xda\xad\x96l\xc3\x18\x00\x11\x9f=w\x99+\xa9\xd3M\xa6%w\xc8\x11\xd7\x82u\xddnovb\x8eC\x01\x1cg\xb9Fu\xc9\xba\xb7\xef\xd1Xy\'9\a\xf8\"f\x85ft_\xa4v\xdb\xff\x18\f\x19\x83\x18fg!\xaa\xf8\x8a_3F\xaa\xa9]\xb5\xd8\xb0:\x98\x0f\x9c\xd4kZ\xd0\xa2X\xaa\x9c\xe8\x03]Y\x97\x0eMA\xf8M\xc0(\xa3\xc7\x18\x1f\xf9\"\x98\x7f{~\x13\xa1\xb5k\x9f\x99/\n\x13\xae') [ 1369.453742] syz-executor.1: vmalloc: allocation failure: 0 bytes, mode:0x14000c0(GFP_KERNEL), nodemask=(null) [ 1369.470948] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1369.476502] CPU: 0 PID: 8373 Comm: syz-executor.1 Not tainted 4.14.167-syzkaller #0 [ 1369.484401] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1369.494408] Call Trace: [ 1369.497021] dump_stack+0x142/0x197 [ 1369.500673] warn_alloc.cold+0x96/0x1af [ 1369.504788] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 1369.509659] ? lock_downgrade+0x740/0x740 [ 1369.513841] ? avc_has_perm+0x2df/0x4b0 [ 1369.517846] __vmalloc_node_range+0x3c3/0x6a0 [ 1369.522368] ? trace_hardirqs_on+0x10/0x10 [ 1369.526626] vmalloc+0x46/0x50 [ 1369.529841] ? sel_write_load+0x1a0/0x1050 [ 1369.534087] sel_write_load+0x1a0/0x1050 [ 1369.538265] ? save_trace+0x290/0x290 [ 1369.542089] ? sel_read_bool+0x240/0x240 [ 1369.546175] ? trace_hardirqs_on+0x10/0x10 [ 1369.550434] ? debug_smp_processor_id+0x1c/0x20 [ 1369.555128] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1369.560104] __vfs_write+0x105/0x6b0 [ 1369.563837] ? sel_read_bool+0x240/0x240 [ 1369.567913] ? kernel_read+0x120/0x120 [ 1369.571818] ? __lock_is_held+0xb6/0x140 [ 1369.575893] ? check_preemption_disabled+0x3c/0x250 [ 1369.580926] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1369.586390] ? rcu_read_lock_sched_held+0x110/0x130 [ 1369.591423] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 1369.596279] ? __sb_start_write+0x153/0x2f0 [ 1369.600612] vfs_write+0x198/0x500 [ 1369.604339] SyS_write+0xfd/0x230 [ 1369.607814] ? SyS_read+0x230/0x230 [ 1369.611448] ? do_syscall_64+0x53/0x640 [ 1369.615435] ? SyS_read+0x230/0x230 [ 1369.619080] do_syscall_64+0x1e8/0x640 [ 1369.622976] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1369.627861] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1369.633148] RIP: 0033:0x45b349 [ 1369.636340] RSP: 002b:00007f76bb2b4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1369.644060] RAX: ffffffffffffffda RBX: 00007f76bb2b56d4 RCX: 000000000045b349 06:48:33 executing program 4: r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) ioctl$TIOCGPTLCK(r0, 0x80045439, &(0x7f0000000140)) fsetxattr$trusted_overlay_origin(r0, &(0x7f0000000180)='trusted.overlay.origin\x00', &(0x7f00000001c0)='y\x00', 0x2, 0x0) syz_emit_ethernet(0x3e, &(0x7f0000000000)={@broadcast, @random="96c1e9574b31", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, @time_exceeded={0x5, 0x0, 0x0, 0x0, 0x0, 0x8, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast1, @remote}}}}}}, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='./file1\x00', 0x80000, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040)='TIPC\x00') sendmsg$TIPC_CMD_SHOW_LINK_STATS(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)={0xa4, r3, 0x23f, 0x0, 0x0, {{}, {}, {0x88, 0x14, 'broadcast-link\x00'}}}, 0xa4}, 0x1, 0xfffffff0}, 0x0) r4 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000200)='/dev/vga_arbiter\x00', 0x48101, 0x0) r5 = socket$netlink(0x10, 0x3, 0x0) r6 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r5, &(0x7f0000000040)={0x0, 0x2a9, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r7, @ANYBLOB="000000000000000028001200090001007665746800000000180002001400010000000000", @ANYRES32=0x0, @ANYBLOB="0000b20000000000"], 0x48}}, 0x0) r8 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0)='nl80211\x00') sendmsg$NL80211_CMD_GET_INTERFACE(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000000)={0x1c, r8, 0xb0343aabd1184b87, 0x0, 0x0, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r7}]}, 0x1c}}, 0x0) r9 = socket$netlink(0x10, 0x3, 0x0) r10 = socket$netlink(0x10, 0x3, 0x0) r11 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r11, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r11, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x2ba) sendmsg$nl_route(r10, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB="3c0000001000850600"/18, @ANYRES32=r12, @ANYBLOB="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"], 0x3}}, 0x0) sendmsg$nl_route(r9, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000007c0)=ANY=[@ANYBLOB="4400000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012000c00010067726574617000000c00020008000100", @ANYRES32=r12, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r12, @ANYBLOB="186207000000126ec374ee6a55f99fbd370bb1f57135e4ab6a72c90d76416c98cc6cc1656dd0c7483cb61f8eb4eaff4d84e1a14bf6f19dbaa552f5b967722a90d5b5c696a83bd49f47135c94aa6b268b6d53dfb29765e288579700000000c30a9e82f6d6cb10648777f7adddec065ed17dccd7ee9aa112a48154b39b83cc4208109c6755a226c294c79569cbbddd6fcd6fc3094530206dd6d544275a60f31bec3b000644b256c8aa8dc23482a3ca322278747291b229175f8f5724502d92bd12c872331dcb91ffd8d2020c60d2f5ccd9db8cfc48bd8e8a9e13432bef84719cfb2aa0e3c1551d644ed2a50fe0726c779513efc78777e2362a648edec7df1fa29545825dc51190dddce0c85bab01a7efa660263439e30e569e5ceddf534dc2d602702cf8c697e6e972f8e6b7e51eb1c62c64419b3bf0987b40ff119dc040b28923f46c17c3856d58641939f32034c54601a3383ae567a6440acc1ef6108e30f828c84cce0c9840a7e576d4e6ae7925da86b6225ab0dc02783ebab27cd75f4b2c6b2f5b625a6dc64f8e3db62c62c41554c21e80fae555b57090f102a1bf1a979d7ae0414d69790122ed5202ae20b1578ade0c44b4e954001e6a92b291457c66d7d2c689d7cb5bd06b964b2e334ea2cf3c8187a44261317568955dc1898e3e"], 0x44}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r4, &(0x7f0000000440)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000400)={&(0x7f0000000280)={0x28, r8, 0x400, 0x70bd27, 0x25dfdbfc, {}, [@NL80211_ATTR_WDEV={0xc, 0x99, {0x74cb, 0x4}}, @NL80211_ATTR_IFINDEX={0x8, 0x3, r12}]}, 0x28}, 0x1, 0x0, 0x0, 0x8000}, 0x80) sendmsg$TIPC_CMD_GET_MEDIA_NAMES(r1, &(0x7f00000003c0)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x1c, r3, 0x400, 0x70bd28, 0x25dfdbfe, {}, ["", "", "", ""]}, 0x1c}}, 0x4004) r13 = open(&(0x7f0000000040)='./file0\x00', 0x12100, 0x146) ioctl$EVIOCGREP(r13, 0x80084503, &(0x7f0000000080)=""/161) [ 1369.651345] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005 [ 1369.658627] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1369.665913] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1369.673323] R13: 0000000000000cb1 R14: 00000000004cd905 R15: 000000000075bf2c [ 1369.691109] Mem-Info: [ 1369.693740] active_anon:441808 inactive_anon:212 isolated_anon:0 [ 1369.693740] active_file:2878 inactive_file:6843 isolated_file:32 [ 1369.693740] unevictable:0 dirty:123 writeback:0 unstable:0 [ 1369.693740] slab_reclaimable:18636 slab_unreclaimable:147327 [ 1369.693740] mapped:58153 shmem:287 pagetables:32944 bounce:0 [ 1369.693740] free:859675 free_pcp:555 free_cma:0 06:48:33 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x10001, 0x0) [ 1369.728474] Node 0 active_anon:1606884kB inactive_anon:764kB active_file:4440kB inactive_file:6168kB unevictable:0kB isolated(anon):0kB isolated(file):128kB mapped:217804kB dirty:356kB writeback:0kB shmem:1056kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 995328kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1369.758530] Node 1 active_anon:160348kB inactive_anon:84kB active_file:7072kB inactive_file:21204kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:14808kB dirty:136kB writeback:0kB shmem:92kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1369.801312] Node 0 DMA free:10544kB min:216kB low:268kB high:320kB active_anon:4508kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:128kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1369.843590] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 1369.848861] Node 0 DMA32 free:41104kB min:36380kB low:45472kB high:54564kB active_anon:1602476kB inactive_anon:764kB active_file:4164kB inactive_file:6420kB unevictable:0kB writepending:356kB present:3129332kB managed:2634344kB mlocked:0kB kernel_stack:20992kB pagetables:53712kB bounce:0kB free_pcp:1168kB local_pcp:484kB free_cma:0kB [ 1369.926800] batman_adv: Cannot find parent device [ 1369.932753] lowmem_reserve[]: 0 0 0 0 0 [ 1369.942521] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1369.971171] lowmem_reserve[]: 0 0 0 0 0 06:48:33 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) setsockopt$IPT_SO_SET_ADD_COUNTERS(r3, 0x0, 0x41, &(0x7f0000000000)={'raw\x00', 0x5, [{}, {}, {}, {}, {}]}, 0x78) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x14e) r4 = gettid() getsockopt$inet_sctp_SCTP_INITMSG(r3, 0x84, 0x2, &(0x7f00000000c0), &(0x7f0000000100)=0x8) tkill(r4, 0x1000000000013) getpgrp(r4) mkdir(&(0x7f0000000080)='./file0\x00', 0x3a) 06:48:34 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) syz_read_part_table(0xdaf, 0x2, &(0x7f0000000200)=[{&(0x7f0000000000)="3fa6eb2f378acb0401fc84aa5dfc52d0f80be6cba40c1b9a0b963e5527c6429dafa98b0bf99b4c12434e4be4fcdb99dee8d3f2f4b162d8", 0x37, 0x101}, {&(0x7f0000000040)="4ba2011f105a30cc772a635be9200c8a0f0f0e485bc2e5d5600b154686dc15f1ac398cb883c6c9163dc8090bdf17116be28c88e4a249f5a4d72d651d3e70c639b18c5e50e38f", 0x46, 0x80000001}]) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SIOCX25SSUBSCRIP(r1, 0x89e1, &(0x7f0000000100)={'nr0\x00', 0x1000000, 0x8}) [ 1369.980884] Node 1 Normal free:3386864kB min:53508kB low:66884kB high:80260kB active_anon:160548kB inactive_anon:84kB active_file:7072kB inactive_file:21204kB unevictable:0kB writepending:136kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:26368kB pagetables:78028kB bounce:0kB free_pcp:896kB local_pcp:544kB free_cma:0kB 06:48:34 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_emit_ethernet(0x3e, &(0x7f0000000000)={@broadcast, @random="96c1e9574b31", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x4, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, @time_exceeded={0x5, 0x0, 0x0, 0x0, 0x0, 0x8, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast1, @remote}}}}}}, 0x0) [ 1370.123603] lowmem_reserve[]: 0 0 0 0 0 [ 1370.133426] Node 0 DMA: 16*4kB (UME) 28*8kB (UE) 15*16kB (UME) 17*32kB (UME) 18*64kB (U) 5*128kB (UE) 6*256kB (UE) 2*512kB (ME) 3*1024kB (UME) 1*2048kB (E) 0*4096kB = 10544kB [ 1370.175446] Node 0 DMA32: 127*4kB (UMEH) 175*8kB (UMEH) 674*16kB (UMEH) 416*32kB (UMH) 233*64kB (UMEH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 40916kB [ 1370.260993] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1370.344667] Node 1 Normal: 146*4kB (UME) 293*8kB (UME) 229*16kB (UE) 117*32kB (UE) 59*64kB (U) 91*128kB (UM) 62*256kB (UM) 25*512kB (U) 5*1024kB (U) 3*2048kB (UME) 811*4096kB (M) = 3387552kB [ 1370.375233] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1370.392329] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1370.431191] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB 06:48:34 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/load\x00', 0x2, 0x0) openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/status\x00', 0x0, 0x0) write$selinux_load(r2, 0x0, 0xfffffffffffffece) 06:48:34 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) ioctl$KDFONTOP_SET_DEF(r5, 0x4b72, &(0x7f0000000000)={0x2, 0x1, 0x1b, 0x20, 0x1a0, &(0x7f00000002c0)="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"}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) r7 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r8 = dup(r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) ioctl$UI_SET_PHYS(r8, 0x4008556c, &(0x7f0000000040)='syz1\x00') ioctl$KVM_RUN(r6, 0xae80, 0x0) ioctl$KVM_RUN(r6, 0xae80, 0x0) 06:48:34 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/avc/cache_threshold\x00', 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_emit_ethernet(0x4a, &(0x7f00000001c0)=ANY=[@ANYBLOB="ffffffff963100007fa6081f000000000000000000019078ac1414aae0000002010000080500907800000000000000000000000000320000e0000001ac1414bb5779176394f1ca6b41895dfbf74509f883c78507218412187f5ceb5be496b1ba89870ecb1f8c12b356753af02a41eb6c235e595979d2c892e2fe591e8d5779aa506e50d7ece9a3dbfd072bb078d649dcac421b7005627cfaaf02d3b6cc557ad7631ed79ff037685f04d10f32cec6532cd8f8b42d75fb72bbc442e8a242e031f351e828"], 0x0) [ 1370.462463] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1370.472739] 9719 total pagecache pages [ 1370.476909] 0 pages in swap cache [ 1370.481001] Swap cache stats: add 0, delete 0, find 0/0 [ 1370.487222] Free swap = 0kB [ 1370.491703] Total swap = 0kB [ 1370.494897] 1965979 pages RAM [ 1370.498503] 0 pages HighMem/MovableOnly [ 1370.503271] 335868 pages reserved [ 1370.506977] 0 pages cma reserved 06:48:34 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) sendmsg$NFT_MSG_GETFLOWTABLE(r1, &(0x7f0000000440)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000400)={&(0x7f0000000380)={0x4c, 0x17, 0xa, 0x607, 0x0, 0x0, {0xa, 0x0, 0x3}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_FLAGS={0x8, 0x7, 0x1, 0x0, 0x20a4f0a3c1a0904f}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x4}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4000011}, 0x820) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ubi_ctrl\x00', 0x200, 0x0) ioctl$IMGETCOUNT(r2, 0x80044943, &(0x7f00000000c0)) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) write$RDMA_USER_CM_CMD_QUERY(r4, &(0x7f0000000300)={0x13, 0x10, 0xfa00, {&(0x7f0000000100)}}, 0x18) syz_emit_ethernet(0x3e, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffff96c1e9574b310800450000300000000000019078ac1e0001e00000010500907800000800450000000000050000000000e0000001ac1414bb"], 0x0) r5 = socket$can_bcm(0x1d, 0x2, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r5, 0x8934, &(0x7f0000000040)={'virt_wifi0\x00', 0x2}) 06:48:34 executing program 3: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) r1 = socket$inet(0x2, 0x1, 0x0) connect$inet(r1, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r1, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r1, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r0, r1) r2 = socket$inet6(0xa, 0x1000000000002, 0x0) r3 = socket$inet(0x2, 0x1, 0x0) connect$inet(r3, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r3, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r3, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r2, r3) r4 = socket$inet6(0xa, 0x1000000000002, 0x0) r5 = socket$inet(0x2, 0x1, 0x0) connect$inet(r5, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r5, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r5, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r4, r5) r6 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/attr/keycreate\x00', 0x2, 0x0) r7 = fcntl$getown(r6, 0x9) ioctl$sock_FIOSETOWN(r0, 0x8901, &(0x7f0000000000)=r7) openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) 06:48:34 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x3eb85800, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/load\x00', 0x2, 0x0) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$SIOCX25SCUDMATCHLEN(r3, 0x89e7, &(0x7f0000000040)={0x50}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) r6 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r7 = dup(r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) write$selinux_load(r1, 0x0, 0x0) 06:48:34 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r4 = gettid() tkill(r4, 0x1000000000013) sched_setaffinity(r4, 0x8, &(0x7f0000000000)=0x8001) r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) ioctl$KVM_CREATE_IRQCHIP(r6, 0xae60) r7 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r7, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r7, 0xae80, 0x0) ioctl$KVM_RUN(r7, 0xae80, 0x0) 06:48:34 executing program 5: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000000)=ANY=[@ANYBLOB="2f049bff000000000000000000"], &(0x7f0000000340)='./file0\x00', &(0x7f0000000100)='reiserfs\x00', 0x0, 0x0) [ 1370.799261] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 1370.822789] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 06:48:34 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/load\x00', 0x2, 0x0) ioctl$VT_ACTIVATE(r1, 0x5606, 0x8001) write$selinux_load(r2, 0x0, 0x0) [ 1371.086548] syz-executor.1: vmalloc: allocation failure: 0 bytes, mode:0x14000c0(GFP_KERNEL), nodemask=(null) [ 1371.107618] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1371.120659] CPU: 0 PID: 8459 Comm: syz-executor.1 Not tainted 4.14.167-syzkaller #0 [ 1371.128524] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1371.137898] Call Trace: [ 1371.140705] dump_stack+0x142/0x197 [ 1371.144367] warn_alloc.cold+0x96/0x1af [ 1371.148536] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 1371.153428] ? lock_downgrade+0x740/0x740 [ 1371.157695] ? avc_has_perm+0x2df/0x4b0 [ 1371.162099] __vmalloc_node_range+0x3c3/0x6a0 [ 1371.166612] ? trace_hardirqs_on+0x10/0x10 [ 1371.170869] vmalloc+0x46/0x50 [ 1371.174090] ? sel_write_load+0x1a0/0x1050 [ 1371.178336] sel_write_load+0x1a0/0x1050 [ 1371.182418] ? save_trace+0x290/0x290 [ 1371.186245] ? sel_read_bool+0x240/0x240 [ 1371.190334] ? trace_hardirqs_on+0x10/0x10 [ 1371.194613] ? debug_smp_processor_id+0x1c/0x20 [ 1371.199297] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1371.204465] __vfs_write+0x105/0x6b0 [ 1371.208201] ? sel_read_bool+0x240/0x240 [ 1371.212277] ? kernel_read+0x120/0x120 [ 1371.216328] ? __lock_is_held+0xb6/0x140 [ 1371.220407] ? check_preemption_disabled+0x3c/0x250 [ 1371.225517] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1371.230988] ? rcu_read_lock_sched_held+0x110/0x130 [ 1371.236034] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 1371.241061] ? __sb_start_write+0x153/0x2f0 [ 1371.245411] vfs_write+0x198/0x500 [ 1371.249007] SyS_write+0xfd/0x230 [ 1371.252490] ? SyS_read+0x230/0x230 [ 1371.256224] ? do_syscall_64+0x53/0x640 [ 1371.260218] ? SyS_read+0x230/0x230 [ 1371.263950] do_syscall_64+0x1e8/0x640 [ 1371.267861] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1371.272883] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1371.278083] RIP: 0033:0x45b349 [ 1371.281382] RSP: 002b:00007f76bb2b4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1371.289220] RAX: ffffffffffffffda RBX: 00007f76bb2b56d4 RCX: 000000000045b349 [ 1371.297097] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005 [ 1371.304491] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1371.311782] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1371.319168] R13: 0000000000000cb1 R14: 00000000004cd905 R15: 000000000075bf2c [ 1371.328406] Mem-Info: [ 1371.331750] active_anon:441903 inactive_anon:208 isolated_anon:0 [ 1371.331750] active_file:3023 inactive_file:5777 isolated_file:32 [ 1371.331750] unevictable:0 dirty:173 writeback:0 unstable:0 [ 1371.331750] slab_reclaimable:18347 slab_unreclaimable:147583 [ 1371.331750] mapped:57479 shmem:285 pagetables:32991 bounce:0 [ 1371.331750] free:860299 free_pcp:622 free_cma:0 [ 1371.367106] Node 0 active_anon:1606884kB inactive_anon:764kB active_file:4072kB inactive_file:1688kB unevictable:0kB isolated(anon):0kB isolated(file):128kB mapped:214300kB dirty:460kB writeback:0kB shmem:1056kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 995328kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1371.396225] Node 1 active_anon:160728kB inactive_anon:68kB active_file:7904kB inactive_file:21420kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:15516kB dirty:232kB writeback:0kB shmem:84kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1371.424206] Node 0 DMA free:10544kB min:216kB low:268kB high:320kB active_anon:4508kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:128kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1371.452259] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 1371.457737] Node 0 DMA32 free:41920kB min:36380kB low:45472kB high:54564kB active_anon:1602376kB inactive_anon:764kB active_file:4032kB inactive_file:2024kB unevictable:0kB writepending:460kB present:3129332kB managed:2634344kB mlocked:0kB kernel_stack:20928kB pagetables:53608kB bounce:0kB free_pcp:1424kB local_pcp:736kB free_cma:0kB [ 1371.489972] lowmem_reserve[]: 0 0 0 0 0 [ 1371.494731] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1371.522584] lowmem_reserve[]: 0 0 0 0 0 [ 1371.527089] Node 1 Normal free:3388732kB min:53508kB low:66884kB high:80260kB active_anon:160728kB inactive_anon:68kB active_file:7904kB inactive_file:21420kB unevictable:0kB writepending:232kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:26432kB pagetables:78320kB bounce:0kB free_pcp:988kB local_pcp:584kB free_cma:0kB [ 1371.559269] lowmem_reserve[]: 0 0 0 0 0 [ 1371.563992] Node 0 DMA: 16*4kB (UME) 28*8kB (UE) 15*16kB (UME) 17*32kB (UME) 18*64kB (U) 5*128kB (UE) 6*256kB (UE) 2*512kB (ME) 3*1024kB (UME) 1*2048kB (E) 0*4096kB = 10544kB [ 1371.580732] Node 0 DMA32: 912*4kB (UMEH) 399*8kB (UMEH) 692*16kB (MEH) 393*32kB (UMEH) 203*64kB (UMEH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 43480kB [ 1371.597080] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1371.609697] Node 1 Normal: 89*4kB (UME) 289*8kB (UME) 229*16kB (UE) 113*32kB (UME) 59*64kB (U) 93*128kB (U) 67*256kB (UM) 27*512kB (UM) 6*1024kB (UM) 2*2048kB (UE) 811*4096kB (M) = 3388700kB [ 1371.628408] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1371.638217] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1371.647379] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1371.657165] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1371.666288] 8676 total pagecache pages [ 1371.671128] 0 pages in swap cache [ 1371.675029] Swap cache stats: add 0, delete 0, find 0/0 [ 1371.681139] Free swap = 0kB [ 1371.684580] Total swap = 0kB [ 1371.687936] 1965979 pages RAM [ 1371.691788] 0 pages HighMem/MovableOnly [ 1371.696133] 335868 pages reserved [ 1371.700423] 0 pages cma reserved [ 1371.704813] syz-executor.1: vmalloc: allocation failure: 0 bytes, mode:0x14000c0(GFP_KERNEL), nodemask=(null) [ 1371.715964] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1371.722858] CPU: 0 PID: 8462 Comm: syz-executor.1 Not tainted 4.14.167-syzkaller #0 [ 1371.730688] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1371.740232] Call Trace: [ 1371.742837] dump_stack+0x142/0x197 [ 1371.746600] warn_alloc.cold+0x96/0x1af [ 1371.750829] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 1371.755714] ? lock_downgrade+0x740/0x740 [ 1371.759879] ? avc_has_perm+0x2df/0x4b0 [ 1371.763988] __vmalloc_node_range+0x3c3/0x6a0 [ 1371.768509] vmalloc+0x46/0x50 [ 1371.771718] ? sel_write_load+0x1a0/0x1050 [ 1371.775986] sel_write_load+0x1a0/0x1050 [ 1371.780176] ? save_trace+0x290/0x290 [ 1371.783995] ? sel_read_bool+0x240/0x240 [ 1371.788069] ? trace_hardirqs_on+0x10/0x10 [ 1371.792321] ? debug_smp_processor_id+0x1c/0x20 [ 1371.797001] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1371.802057] __vfs_write+0x105/0x6b0 [ 1371.805911] ? sel_read_bool+0x240/0x240 [ 1371.809987] ? kernel_read+0x120/0x120 [ 1371.813888] ? __lock_is_held+0xb6/0x140 [ 1371.817962] ? check_preemption_disabled+0x3c/0x250 [ 1371.822994] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1371.828459] ? rcu_read_lock_sched_held+0x110/0x130 [ 1371.833624] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 1371.838417] ? __sb_start_write+0x153/0x2f0 [ 1371.842751] vfs_write+0x198/0x500 [ 1371.846309] SyS_write+0xfd/0x230 [ 1371.849779] ? SyS_read+0x230/0x230 [ 1371.853435] ? do_syscall_64+0x53/0x640 [ 1371.857420] ? SyS_read+0x230/0x230 [ 1371.861065] do_syscall_64+0x1e8/0x640 [ 1371.864970] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1371.869837] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1371.875043] RIP: 0033:0x45b349 [ 1371.878254] RSP: 002b:00007f76bb272c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1371.885977] RAX: ffffffffffffffda RBX: 00007f76bb2736d4 RCX: 000000000045b349 [ 1371.893259] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 1371.900724] RBP: 000000000075c070 R08: 0000000000000000 R09: 0000000000000000 [ 1371.908028] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1371.915660] R13: 0000000000000cb1 R14: 00000000004cd905 R15: 000000000075c07c 06:48:37 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) fsetxattr$trusted_overlay_upper(r0, &(0x7f0000000040)='trusted.overlay.upper\x00', &(0x7f0000000080)={0x0, 0xfb, 0xf4, 0x1, 0xcf, "f42e1d99be3d9832ad9d5fd0189da5aa", "7f7482151abab07fdbe4953b4d28983693ff99704dbdf9c97d183894c5ceada2996333cfb390ea9f03fd01c3bf13d41bcd91d36567c5cc6086ebcfba82335f2dcdadfab55dc045ee3107964a8607a9c45dca2c797a31f9d46bd803b3f58c7a696a5f8a622245d56f9894e5ceaffdbaf7a43db7b1a64dac61a0a38c083c5dcc4303405e654e4179f85aebc56eff1afce7dfdebf908c72b4d611deb81d029a952099b0e96a8e28b01f0c3e45f31a6a2d1531a0c25878274119993d979a69176a83a247ed92689e891ac554076642e762614fb359aa267956ffa393bb7bbedb82"}, 0xf4, 0x2) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = msgget(0x1, 0x321) msgctl$IPC_RMID(r2, 0x0) syz_emit_ethernet(0x3e, &(0x7f0000000000)={@broadcast, @random="96c1e9574b31", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, @time_exceeded={0x5, 0x0, 0x0, 0x0, 0x0, 0x8, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast1, @remote}}}}}}, 0x0) 06:48:37 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) getsockopt$IP_VS_SO_GET_VERSION(r0, 0x0, 0x480, &(0x7f0000000080), &(0x7f00000000c0)=0x40) 06:48:37 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) getsockopt$inet_sctp6_SCTP_AUTOCLOSE(0xffffffffffffffff, 0x84, 0x4, &(0x7f00000000c0), &(0x7f0000000100)=0x4) mknod$loop(&(0x7f0000000040)='./file0\x00', 0x6000, 0x1) mkdir(0x0, 0x0) ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8914, &(0x7f0000000280)={'veth1_to_bond\x00', 0x100}) mkdir(&(0x7f00000004c0)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=.']) chdir(&(0x7f00000002c0)='./bus\x00') mknod(&(0x7f00000000c0)='./file1\x00', 0x1000, 0x0) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000140)=@nullb='/dev/nullb0\x00', &(0x7f0000000180)='./file1\x00', &(0x7f00000001c0)='gfs2\x00', 0x2000000, &(0x7f0000000240)='xfs\x00') mount(&(0x7f0000000080)=@filename='./file0\x00', &(0x7f0000000000)='./file0\x00', &(0x7f0000000200)='xfs\x00', 0x0, 0x0) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400201) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r4 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/load\x00', 0x2, 0x0) write$selinux_load(r4, 0x0, 0x0) 06:48:37 executing program 5: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x4000000000000002, 0xc) write(r2, &(0x7f0000000000)="1f0000000104ff00fd4354c007110000f30503000a000100010423dcffdf00", 0x23c) r3 = syz_genetlink_get_family_id$netlbl_mgmt(0x0) sendmsg$NLBL_MGMT_C_REMOVE(r2, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x24, r3, 0x100, 0x70bd26, 0x25dfdbfb, {}, [@NLBL_MGMT_A_DOMAIN={0x5, 0x1, '\x00'}, @NLBL_MGMT_A_DOMAIN={0x6, 0x1, 'X\x00'}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000000}, 0x20000004) sendmsg$NLBL_MGMT_C_REMOVEDEF(r1, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r3, 0x408, 0x70bd2c, 0x25dfdbfb, {}, [@NLBL_MGMT_A_FAMILY={0x6, 0xb, 0xf}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000084}, 0x4000000) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000200)=@nullb='/dev/nullb0\x00', &(0x7f0000000340)='./file0\x00', &(0x7f0000000100)='reiserfs\x00', 0x0, 0x0) 06:48:37 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x8000, 0x0) io_setup(0x9, &(0x7f0000000000)=0x0) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(r2, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r2, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r2, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r1, r2) r3 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cachefiles\x00', 0x0, 0x0) io_cancel(r0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x7, 0x7ff, r2, &(0x7f0000000040)="565f9c5ead351a3aff7e54a23dfcd395c9fd4531a1f339c5cf8ad730eeef49eb05a8b47be38e07242b9d486a53", 0x2d, 0x40000000007, 0x0, 0x1, r3}, &(0x7f0000000140)) [ 1373.363932] device veth1_to_bond entered promiscuous mode [ 1373.387078] cgroup: cgroup2: unknown option "º" [ 1373.389973] gfs2: invalid mount option: xfs [ 1373.406965] gfs2: can't parse mount arguments [ 1373.407029] cgroup: cgroup2: unknown option "º" [ 1373.428833] syz-executor.1: vmalloc: allocation failure: 0 bytes, mode:0x14000c0(GFP_KERNEL), nodemask=(null) [ 1373.449895] gfs2: invalid mount option: xfs [ 1373.451641] syz-executor.1 cpuset=syz1 mems_allowed=0-1 06:48:37 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_emit_ethernet(0x3e, &(0x7f00000000c0)=ANY=[@ANYBLOB="ffff7c0b0000a550e3050000ff0045000030000000019078ac010001e00000010500907800000800450000000000000000000000855a6ec3ac1414bb0000ead62d79630bd181e9c6bc5774472ab1a098f74b1e40052bd2fc80db5fee3a38eec8653c4a017012c5bdd8ab10b1f7ed9ab496cf54a0691addb62075d20cb4e742136100000000000000"], 0x0) mq_open(&(0x7f0000000040)='\x00', 0x80, 0x4, &(0x7f0000000080)={0x7, 0x1ff, 0x41a6910f, 0x2e4}) 06:48:37 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$LOOP_GET_STATUS64(r2, 0x4c05, &(0x7f0000001300)) r3 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) r4 = open(&(0x7f00000000c0)='./file0\x00', 0x30000, 0x1a2) recvfrom$ax25(r4, &(0x7f0000000300)=""/4096, 0x1000, 0x2000, &(0x7f00000001c0)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x5}, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}]}, 0x48) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) ioctl$VIDIOC_STREAMON(r3, 0x40045612, &(0x7f0000000080)) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vga_arbiter\x00', 0x4000, 0x0) init_module(&(0x7f0000000280)='/dev/vga_arbiter\x00', 0x11, &(0x7f0000001400)='cgroup2\x00') ioctl$EVIOCGSW(0xffffffffffffffff, 0x8040451b, &(0x7f0000000240)=""/39) [ 1373.470964] CPU: 0 PID: 8479 Comm: syz-executor.1 Not tainted 4.14.167-syzkaller #0 [ 1373.478808] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1373.488181] Call Trace: [ 1373.490793] dump_stack+0x142/0x197 [ 1373.494469] warn_alloc.cold+0x96/0x1af [ 1373.498648] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 1373.503511] ? lock_downgrade+0x740/0x740 [ 1373.508029] ? avc_has_perm+0x2df/0x4b0 [ 1373.512050] __vmalloc_node_range+0x3c3/0x6a0 [ 1373.516418] gfs2: can't parse mount arguments [ 1373.516661] ? trace_hardirqs_on+0x10/0x10 [ 1373.525521] vmalloc+0x46/0x50 [ 1373.528725] ? sel_write_load+0x1a0/0x1050 [ 1373.533063] sel_write_load+0x1a0/0x1050 [ 1373.537139] ? save_trace+0x290/0x290 [ 1373.540966] ? sel_read_bool+0x240/0x240 [ 1373.545040] ? trace_hardirqs_on+0x10/0x10 [ 1373.549319] ? debug_smp_processor_id+0x1c/0x20 [ 1373.554002] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1373.558949] __vfs_write+0x105/0x6b0 [ 1373.562766] ? sel_read_bool+0x240/0x240 [ 1373.567033] ? kernel_read+0x120/0x120 06:48:37 executing program 3: r0 = syz_init_net_socket$ax25(0x3, 0x5, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000240), &(0x7f0000000280)=0x5) r2 = getuid() setreuid(0xee00, r2) setreuid(0x0, r2) ioctl$SIOCAX25DELFWD(r0, 0x89eb, 0x0) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r3) ioctl$VIDIOC_DQBUF(0xffffffffffffffff, 0xc0585611, &(0x7f0000001500)={0x58, 0x7, 0x4, 0x10000, 0x4, {}, {0x5, 0x0, 0x5, 0x1, 0x0, 0x5, "d489b03c"}, 0x3bdb, 0x1, @planes=&(0x7f00000014c0)={0xfffffffb, 0xfffffffb, @mem_offset=0x4, 0xffff}, 0x9, 0x0, r3}) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(r4, 0xc034564b, &(0x7f0000001580)={0x8, 0x32315559, 0x10001, 0x9, 0x2, @stepwise={{0x3, 0x1}, {0x9, 0x98}, {0x9, 0x2}}}) openat$adsp1(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x240280, 0x0) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000001480)={&(0x7f0000000040)=@l2tp6={0xa, 0x0, 0x7c54, @remote, 0x1, 0x4}, 0x80, &(0x7f0000001340)=[{&(0x7f00000000c0)="4fcf5bc24fb787713c37fc49e724d79aad0f6b6995496de52f2a49904f7179a7cae717e66355765847245e2ecd85a6147f8564833060a4031440f40e0c2c27fb05f0714ba3c5d0280fd3324a8b126946ca69723255ab16b55e3ae6f0387b4f1736e9303d875a4899232c1baf60f37ceeed54d5f6db25afc126a42f99f5d26aa8bd18a7d10d03b963cd217c22d8666c0f2505cf051a9944a8e9d3165f326717de21989a068ca0de18e0376be55d6ed35fb0111cce28d5f8d93247afe2e2ecb60dd7dc312a37f211f0ebc7eb2d39a6b5d3f32c28e69703a2b5517706431643b7e058a2b0dde55b6295292e04838d8d", 0xee}, {&(0x7f00000001c0)="5e6e80d7cad8715a17ae60ff248d061713226ff75fd4948793b84b010438c95bef3ebc8c10ec64d45626a8142eaa63e1e55101dbecf052e7d28c825d2e6b79ce0e94e324b858c3309c0c2e1a19faec7463e76776e5955e05f6114b068324e8cb36bda1f14a3c96f1db16351344bb0d19d2d67a106ef1aa06d2e7b78b8bf62caa94d56307031ee0ba11cdb15efbc53e2c75a4ce257e5b8c2fd1ffa49e4783d064ccbca01b1f4e2746cee9d8ecb4ebaebcea4362495405ef5e06ef85f9612e45358034f9b3c1bb18185e8c0e235a416829ae564d701c0ebda8bc1edfd0d135a1137f90ac0ec6fa361b", 0xe8}, {&(0x7f00000002c0)="818cee7079ab2d30c95694be0d611a62630542e736ef4771446b61d7f7f5ff2c9eeb6dcda7a026586a6753762e6000f9d334113f605f6856560cc41a80b12c40cd5be4bd2d124524670197b620e5ee7a1ed7a182a48c", 0x56}, {&(0x7f0000000340)="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", 0x1000}], 0x4, &(0x7f0000001380)=[{0xc8, 0x100, 0x3ff, "55b57e98024c315d1699498bd5c0d0a0e4b8e2dc43bc2373d609fb32ef8422ae1dbfe0d082f19a7728ccd80138d37cf0887f83fbe62588cf06a873bd7762427104707f1eca953caccf03ae58a15887fe0c45770c75e5472878c842a3fabef80347b66dfec57515f3b3e3d02fd1e69aa29449c168c27113f2bfb4b69661e31f24ca4b5e30b2c561fbcbc60644a9d9d268e16da1ecec2899bb54b7d63ba723365d33b9258c31021475896792dc784b04d16733514bae5fc5"}], 0xc8}, 0x4c980) [ 1373.570936] ? __lock_is_held+0xb6/0x140 [ 1373.575017] ? check_preemption_disabled+0x3c/0x250 [ 1373.580056] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1373.585546] ? rcu_read_lock_sched_held+0x110/0x130 [ 1373.590580] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 1373.595366] ? __sb_start_write+0x153/0x2f0 [ 1373.599709] vfs_write+0x198/0x500 [ 1373.603270] SyS_write+0xfd/0x230 [ 1373.606761] ? SyS_read+0x230/0x230 [ 1373.610577] ? do_syscall_64+0x53/0x640 [ 1373.614584] ? SyS_read+0x230/0x230 [ 1373.618224] do_syscall_64+0x1e8/0x640 [ 1373.622122] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1373.626993] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1373.632194] RIP: 0033:0x45b349 [ 1373.635393] RSP: 002b:00007f76bb2b4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1373.643113] RAX: ffffffffffffffda RBX: 00007f76bb2b56d4 RCX: 000000000045b349 [ 1373.650482] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000007 [ 1373.655096] print_req_error: I/O error, dev loop3, sector 0 [ 1373.657757] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1373.657765] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1373.657771] R13: 0000000000000cb1 R14: 00000000004cd905 R15: 000000000075bf2c [ 1373.658910] warn_alloc_show_mem: 1 callbacks suppressed [ 1373.658914] Mem-Info: [ 1373.686528] XFS (loop3): SB validate failed with error -5. [ 1373.696738] cgroup: cgroup2: unknown option "º" 06:48:37 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_emit_ethernet(0x3e, &(0x7f0000000080)=ANY=[@ANYBLOB="ffff450000300000000000019078ac1e0001e0000001050090780000080045000000e3f5e32800000000e0000001ac1414bbfa025d81e538da39ae336b1f76f2df8bfa7cfcc5db7a1f309a68898d2cef124277b7ad811e57"], 0x0) [ 1373.718117] cgroup: cgroup2: unknown option "º" [ 1373.733547] active_anon:441941 inactive_anon:212 isolated_anon:0 [ 1373.733547] active_file:2961 inactive_file:6794 isolated_file:28 [ 1373.733547] unevictable:0 dirty:95 writeback:0 unstable:0 [ 1373.733547] slab_reclaimable:18363 slab_unreclaimable:147651 [ 1373.733547] mapped:58147 shmem:285 pagetables:33013 bounce:0 [ 1373.733547] free:858938 free_pcp:626 free_cma:0 [ 1373.783602] print_req_error: I/O error, dev loop3, sector 0 [ 1373.790539] print_req_error: I/O error, dev loop3, sector 0 [ 1373.838459] Node 0 active_anon:1606884kB inactive_anon:764kB active_file:1744kB inactive_file:352kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:211032kB dirty:44kB writeback:0kB shmem:1056kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 995328kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no 06:48:37 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) msync(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x4) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) [ 1373.882760] Node 1 active_anon:160980kB inactive_anon:84kB active_file:10200kB inactive_file:26824kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:21556kB dirty:336kB writeback:0kB shmem:84kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no 06:48:37 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$cgroup_ro(r3, &(0x7f0000000080)='rdma.current\x00', 0x0, 0x0) getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r4, 0x84, 0x18, &(0x7f00000000c0)={0x0, 0x7}, &(0x7f0000000100)=0x8) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mmap$fb(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0xc, 0x1010, r1, 0xbc000) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) setsockopt$RDS_GET_MR_FOR_DEST(r6, 0x114, 0x7, &(0x7f0000000300)={@llc={0x1a, 0x307, 0x2, 0x2, 0x1, 0x2, @dev={[], 0x10}}, {&(0x7f00000001c0)=""/34, 0x22}, &(0x7f0000000200)}, 0xa0) 06:48:37 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) r2 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000780)='/dev/bsg\x00', 0x90004, 0x0) r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00') sendmsg$TIPC_NL_MON_SET(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000040), 0xc, &(0x7f00000001c0)={&(0x7f00000000c0)={0xf8, r3, 0x400, 0x70bd26, 0x25dfdbff, {}, [@TIPC_NLA_PUBL={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x8}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x8001}]}, @TIPC_NLA_NET={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0xf36}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x9}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0xefec}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x100}]}, @TIPC_NLA_NET={0x38, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0xa2}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x7f}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x636c9512}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x2}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x8d}]}, @TIPC_NLA_PUBL={0x24, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x9}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x7fffffff}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0xfff}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x5a47}]}, @TIPC_NLA_MEDIA={0x14, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}]}, @TIPC_NLA_NET={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x1ff}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x7}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x101}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x20}]}]}, 0xf8}, 0x1, 0x0, 0x0, 0x10}, 0x0) sendmsg$TIPC_NL_MEDIA_SET(r2, &(0x7f0000000900)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000008c0)={&(0x7f0000000800)={0x94, r3, 0x8, 0x70bd2b, 0x25dfdbfc, {}, [@TIPC_NLA_SOCK={0x6c, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x1c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x7}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xc78a}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x4}]}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x2}, @TIPC_NLA_SOCK_CON={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x10000}]}, @TIPC_NLA_SOCK_ADDR={0x8}, @TIPC_NLA_SOCK_CON={0x1c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x9}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x7ff}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1f}]}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x5}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x9}]}, @TIPC_NLA_SOCK={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x101}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0xfffffffd}]}]}, 0x94}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000001) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_emit_ethernet(0x3e, &(0x7f0000000000)={@broadcast, @random="96c1e9574b31", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, @time_exceeded={0x5, 0x0, 0x0, 0x0, 0x0, 0x8, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast1, @remote}}}}}}, 0x0) 06:48:38 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x28a501, 0x0) [ 1374.031964] Node 0 DMA free:10544kB min:216kB low:268kB high:320kB active_anon:4508kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:128kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1374.065113] audit: type=1400 audit(1580107718.048:12337): avc: denied { map } for pid=8521 comm="syz-executor.2" path="socket:[249373]" dev="sockfs" ino=249373 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=rawip_socket permissive=1 [ 1374.094625] cgroup: cgroup2: unknown option "º" [ 1374.116482] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 1374.124225] cgroup: cgroup2: unknown option "º" 06:48:38 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f0000000000)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='squashfs\x00', 0x1108010, &(0x7f0000000300)='\x12\xcfmCm\\n\xf6\xd1\xeezC\x90U\x11%j\x81\xaf\xc4UN\x15o\xc1\xe1\x17\xb0j \b\xd3\xb5\x13Kz\x8f0\xad\"B\xde\xa8U\xd5RL\x8a\xc4\xfe>\xa5-\x01\xda\x15\xba;/\xf7]\xf9\xf0vOe\xf28\x15*Q\xe7\x84\x1cC%\x1aU\xba\x118\x80\xb4\x9e\xe3\x9b0\xa8\x89\x81\xcd\x9a\x7f\xe5\x91^HD\x87\xb3\x84\x82FcN\xdd$\x18\xd2\xd2\xcez\xa6\xf1\xa7\xc9\xdad\xd1\x83\x90\xfb\xe13?/\xbd\x12\xabw\xf0\xddF\x86\xa9\x1b\xabe\x18q\xc9\xff8\x14`\x8f0?:\x80\xee-\x1b\x00\x9a\x1c\b\x00\x00\x00\x00\x00\x00\x00y\x84\xe9\x8b\x9e\xed\xc2\x02\xdeE\'{0FA\xec\xd5\x8d\xc2t\xef\xaan\'\xb7\nR\xa1\xe9B\xf3\xcf(\x10\xa0\x8c\xfcU\xa8-\xef\xb8\x9b\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb8F\x92\x17B\xd3\r\xdc\x03C\xfc\xc4\x9e\xa3\xb0\x85\xa2K\xa7\x03\r@\xf2b\xa2\x8a\xd3\xd0\x18I\xfb\xfe\xeb\x02e\f\xeb\xc2g\x80g\xcbZpPV\xdf\xa7\xe4\x9dw\x06\x94\xdc\x8c\x02y\xe0\xd7\xa8') [ 1374.126191] Node 0 DMA32 free:43752kB min:36380kB low:45472kB high:54564kB active_anon:1602376kB inactive_anon:764kB active_file:1752kB inactive_file:268kB unevictable:0kB writepending:64kB present:3129332kB managed:2634344kB mlocked:0kB kernel_stack:20928kB pagetables:53608kB bounce:0kB free_pcp:1364kB local_pcp:672kB free_cma:0kB [ 1374.256608] lowmem_reserve[]: 0 0 0 0 0 [ 1374.311297] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1374.378840] lowmem_reserve[]: 0 0 0 0 0 [ 1374.383110] Node 1 Normal free:3384608kB min:53508kB low:66884kB high:80260kB active_anon:160884kB inactive_anon:80kB active_file:10688kB inactive_file:26944kB unevictable:0kB writepending:536kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:26464kB pagetables:78456kB bounce:0kB free_pcp:1232kB local_pcp:632kB free_cma:0kB [ 1374.422590] lowmem_reserve[]: 0 0 0 0 0 [ 1374.429296] Node 0 DMA: 16*4kB (UME) 28*8kB (UE) 15*16kB (UME) 17*32kB (UME) 18*64kB (U) 5*128kB (UE) 6*256kB (UE) 2*512kB (ME) 3*1024kB (UME) 1*2048kB (E) 0*4096kB = 10544kB [ 1374.465069] Node 0 DMA32: 764*4kB (UMEH) 509*8kB (MEH) 701*16kB (UMEH) 391*32kB (UMH) 168*64kB (UMH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 41608kB [ 1374.481242] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1374.492825] Node 1 Normal: 127*4kB (UME) 277*8kB (UME) 229*16kB (UE) 108*32kB (UE) 58*64kB (U) 92*128kB (U) 72*256kB (UM) 32*512kB (U) 7*1024kB (UM) 2*2048kB (UE) 809*4096kB (M) = 3385076kB [ 1374.510447] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1374.522601] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1374.532299] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1374.543528] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1374.552348] 10138 total pagecache pages [ 1374.557836] 0 pages in swap cache [ 1374.561475] Swap cache stats: add 0, delete 0, find 0/0 [ 1374.566969] Free swap = 0kB [ 1374.570746] Total swap = 0kB [ 1374.573927] 1965979 pages RAM [ 1374.577135] 0 pages HighMem/MovableOnly [ 1374.581590] 335868 pages reserved [ 1374.584843] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 1374.585177] 0 pages cma reserved 06:48:38 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000040)={0x7b, 0x0, [0x3a, 0x2, 0x7]}) syz_emit_ethernet(0x3e, &(0x7f0000000000)={@broadcast, @random="96c1e9574b31", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, @time_exceeded={0x5, 0x0, 0x0, 0x0, 0x0, 0x8, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast1, @remote}}}}}}, 0x0) 06:48:38 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000000)='NLBL_UNLBL\x00') 06:48:38 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) r2 = openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f0000000080)='/selinux/avc/cache_stats\x00', 0x0, 0x0) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) r5 = ioctl$LOOP_CTL_GET_FREE(r4, 0x4c82) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r5) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) 06:48:38 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x2710, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) r5 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f00000001c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r5, &(0x7f0000000040)='asymmetric\x00', &(0x7f0000000240)=@keyring={'key_or_keyring:', 0x0, 0xa}) ioctl$KVM_SET_CPUID(r3, 0x4008ae8a, &(0x7f0000000000)=ANY=[@ANYBLOB="0c00000600000000"]) newfstatat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', &(0x7f0000000300), 0x800) statx(0xffffffffffffffff, &(0x7f0000000380)='./file0\x00', 0x0, 0x8, &(0x7f00000003c0)) keyctl$assume_authority(0x10, r5) ioctl$KVM_RUN(r4, 0xae80, 0x0) 06:48:38 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x26188b00, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/load\x00', 0x2, 0x0) write$selinux_load(r2, 0x0, 0xfffffffffffffd91) connect$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e23, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10) 06:48:38 executing program 5: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) socket$inet6_udplite(0xa, 0x2, 0x88) r1 = dup(r0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(r2, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r2, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r2, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r3) ioctl$sock_SIOCINQ(r3, 0x541b, &(0x7f0000000140)) dup2(0xffffffffffffffff, r2) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) setsockopt$sock_attach_bpf(r2, 0x1, 0x32, &(0x7f0000000000)=r5, 0x4) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000200)=@nullb='/dev/nullb0\x00', &(0x7f0000000340)='./file0\x00', &(0x7f0000000100)='reiserfs\x00', 0x0, 0x0) [ 1374.672096] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 1374.744096] cgroup: cgroup2: unknown option "º" 06:48:38 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_emit_ethernet(0x3e, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffff96c1e9574b310800450000300000000000019078ac1e0001e00000010540000000000800450000000000000000000000e0000001ac1414bb"], 0x0) socket$inet6(0xa, 0x1000000000002, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(r2, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r2, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$SOUND_PCM_READ_CHANNELS(r4, 0x80045006, &(0x7f00000001c0)) r5 = socket$inet6(0xa, 0x1000000000002, 0x0) r6 = socket$inet(0x2, 0x1, 0x0) connect$inet(r6, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r6, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) r7 = syz_open_dev$video4linux(0xfffffffffffffffe, 0x8, 0x101000) ioctl$VIDIOC_SUBDEV_S_FMT(r7, 0xc0585605, &(0x7f0000000200)={0x1, 0x0, {0xff, 0xffffff81, 0x100b, 0x7, 0x4, 0x4, 0x1, 0x3cea80c797dfefd9}}) connect$inet(r6, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r8 = dup2(r5, r6) getsockopt$inet_opts(r6, 0x0, 0x4, &(0x7f0000000100)=""/159, &(0x7f0000000040)=0x9f) gettid() connect$inet(r2, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) socket$pptp(0x18, 0x1, 0x2) dup2(r2, r8) fcntl$setlease(r2, 0x400, 0x2) 06:48:38 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/load\x00', 0x2, 0x0) r3 = socket(0x10, 0x2, 0x0) write(r3, &(0x7f0000000000)="1c0000001a009b8a14000000ff0000adf87e28000000000000000000", 0x1c) recvmmsg(r3, &(0x7f0000002ec0), 0x400000000000ec0, 0x2, &(0x7f00000001c0)={0x77359400}) r4 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000240)='IPVS\x00') sendmsg$IPVS_CMD_DEL_DEST(r3, &(0x7f0000000440)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000400)={&(0x7f00000005c0)=ANY=[@ANYRES16=r4, @ANYBLOB="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"], 0x2}, 0x1, 0x0, 0x0, 0x4000000}, 0xe206c26ae4fb48fe) sendmsg$IPVS_CMD_DEL_SERVICE(r1, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000080)={0xd4, r4, 0x4, 0x70bd26, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_DAEMON={0x24, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x80}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e22}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @multicast2}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e20}]}, @IPVS_CMD_ATTR_SERVICE={0x18, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@dev={0xac, 0x14, 0x14, 0x35}}]}, @IPVS_CMD_ATTR_DAEMON={0x30, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x1}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x3}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x9}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @initdev={0xfe, 0x88, [], 0x0, 0x0}}]}, @IPVS_CMD_ATTR_SERVICE={0x54, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x1}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0xfffffff8}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@empty}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0xa}, @IPVS_SVC_ATTR_PROTOCOL={0x6, 0x2, 0x5c}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@dev={0xac, 0x14, 0x14, 0x2b}}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0xa}]}]}, 0xd4}, 0x1, 0x0, 0x0, 0x4044080}, 0x10) write$selinux_load(r2, 0x0, 0x0) 06:48:38 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000100)='/dev/btrfs-control\x00', 0x0, 0x0) ioctl$EVIOCGPROP(r1, 0x80404509, &(0x7f0000000180)=""/198) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) write$P9_RLERRORu(r3, &(0x7f00000000c0)={0x3a, 0x7, 0x1, {{0x2d, 'ppp0cpuset(mime_type}vmnet1securitywlan0}proc'}, 0x7fffffff}}, 0x3a) r4 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000080)='./file0\x00', 0x8) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) 06:48:38 executing program 3: r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x141800, 0x0) ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000080)=@usbdevfs_driver={0x9, 0xfff, &(0x7f0000000040)="458241"}) openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) 06:48:38 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) ioctl$UI_SET_EVBIT(r3, 0x40045564, 0x3) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) r5 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/btrfs-control\x00', 0x200842, 0x0) setsockopt$inet6_dccp_buf(r5, 0x21, 0xc0, &(0x7f0000000180)="93f694b70114a20d3dc0c5dd21149652160224418bf2706488a68a7c98c735c6ac1bcaabcbb8b77cab6b59b209f6ee747cbe7ff0cab80c026a1a8c3d97f1cd1ae4e5a8b90164f603", 0x48) ioctl$KVM_RUN(r4, 0xae80, 0x0) [ 1375.034717] cgroup: cgroup2: unknown option "º" [ 1375.066691] cgroup: cgroup2: unknown option "º" 06:48:39 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580)='batadv\x00') r4 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r4, &(0x7f0000000080)={0x0, 0x382, &(0x7f0000000140)={0x0, 0xb7ff}}, 0x0) getsockname$packet(r4, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$BATADV_CMD_GET_GATEWAYS(r2, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f00000075c0)={0x1c, r3, 0xb631c6b8429a7eb, 0x0, 0x0, {0xc}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r5}]}, 0x1c}}, 0x0) r6 = socket$netlink(0x10, 0x3, 0x0) r7 = socket$netlink(0x10, 0x3, 0x0) r8 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r8, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r8, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x2ba) sendmsg$nl_route(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB="3c0000001000850600"/18, @ANYRES32=r9, @ANYBLOB="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"], 0x3}}, 0x0) sendmsg$nl_route(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000007c0)=ANY=[@ANYBLOB="4400000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012000c00010067726574617000000c00020008000100", @ANYRES32=r9, @ANYBLOB="10000000", @ANYRES32=r9, @ANYBLOB="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"], 0x44}}, 0x0) ioctl$sock_SIOCDELRT(r0, 0x890c, &(0x7f0000003b80)={0x0, @l2tp={0x2, 0x0, @rand_addr=0x81, 0x4}, @tipc=@nameseq={0x1e, 0x1, 0x3}, @xdp={0x2c, 0x1, r9, 0xf}, 0x4, 0x0, 0x0, 0x0, 0xcbf, &(0x7f0000003b40)='rose0\x00', 0x6, 0x8001, 0x839}) sendmsg$BATADV_CMD_TP_METER_CANCEL(r1, &(0x7f0000003cc0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000003c80)={&(0x7f0000003c00)={0x4c, r3, 0x1, 0x70bd28, 0x25dfdbfc, {}, [@BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x6}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x1000}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r10}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x6}, @BATADV_ATTR_GW_MODE={0x5, 0x33, 0x1}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x2f}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4000080}, 0x4020041) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_emit_ethernet(0x3e, &(0x7f0000000000)={@broadcast, @random="96c1e9574b31", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, @time_exceeded={0x5, 0x0, 0x0, 0x0, 0x0, 0x8, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast1, @remote}}}}}}, 0x0) 06:48:39 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) r2 = socket$inet(0x10, 0x2, 0x0) ioctl$sock_ifreq(r2, 0x89f0, &(0x7f0000000180)={'ip6_vti0\x00', @ifru_flags}) r3 = dup2(r1, r2) r4 = socket$inet_sctp(0x2, 0x0, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f0000000280)={r5, 0x36, "ac6a82d2b5acd821e04d0478a474e9c2be3b387e029887626c7e3cf456672c29c8210efff7d4d24bdf54e0b4d427ae9a6873dd3c164e"}, 0x0) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r3, 0x84, 0x71, &(0x7f00000001c0)={r5, 0xffffffff}, &(0x7f0000000340)=0x8) getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(0xffffffffffffffff, 0x84, 0x1f, &(0x7f0000000200)={r5, @in={{0x2, 0x4e24, @rand_addr=0x6}}, 0x3, 0x6}, &(0x7f0000000000)=0x90) r6 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f0000000040)="096ea5835666a00ce4827cb086b1a84851e208ee92958b42a1d09b999a6d2f34046da004d3cbb15f8073006cfe88bd87518c0e9970f34621d071d294308e6115970602e2e577030eefb92f8fe5b32d03b8c2e9ee874c0145882b4c8b4590008e8460c1482faa22ce92c8dc545a2d97da6c0b0fc3a41b", 0x76}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) r7 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r8 = dup(r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) ioctl$EVIOCGBITSW(r8, 0x80404525, &(0x7f00000000c0)=""/64) mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000100)='cpuset\x00', 0x31c41, &(0x7f00000000c0)) 06:48:39 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = socket$inet6(0xa, 0x1000000000002, 0x0) r3 = socket$inet(0x2, 0x1, 0x0) connect$inet(r3, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r3, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r3, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r2, r3) r4 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r4, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) r5 = socket$inet(0x10, 0x2, 0x0) ioctl$sock_ifreq(r5, 0x89f0, &(0x7f0000000180)={'ip6_vti0\x00', @ifru_flags}) r6 = dup2(r4, r5) r7 = socket$inet_sctp(0x2, 0x0, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r7, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f0000000280)=ANY=[@ANYRES32=r8, @ANYBLOB="36000000ac6a82d2b5acd821e04d0478a474e987626c7e3cf456672c29c8210efff7d4d24bdf54e0b4d427ae9a6873dd3c164e00000000000000"], 0x0) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r6, 0x84, 0x71, &(0x7f00000001c0)={r8, 0xffffffff}, &(0x7f0000000340)=0x8) getsockopt$inet_sctp6_SCTP_MAXSEG(r2, 0x84, 0xd, &(0x7f0000000140)=@assoc_id=r8, &(0x7f0000000200)=0x4) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f0000000240)={r9, 0x43}, &(0x7f00000002c0)=0x8) r10 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r11 = dup(r10) ioctl$PERF_EVENT_IOC_ENABLE(r11, 0x8912, 0x400200) r12 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r12, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) r13 = socket$inet(0x10, 0x2, 0x0) ioctl$sock_ifreq(r13, 0x89f0, &(0x7f0000000180)={'ip6_vti0\x00', @ifru_flags}) r14 = dup2(r12, r13) r15 = socket$inet_sctp(0x2, 0x0, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r15, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f0000000280)=ANY=[@ANYRES32=r16, @ANYBLOB="36060000000000000000d821e04d0478a474e9ffffffff00000000626c7e3cf45667c8210efff7d4d24bdf54e0b4d40cae9a6873dd3c164e0000"], 0x0) r17 = socket$inet6(0xa, 0x1000000000002, 0x0) r18 = socket$inet(0x2, 0x1, 0x0) connect$inet(r18, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r18, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r18, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r17, r18) ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f00000000c0)={r18}) bind$llc(r19, &(0x7f0000000100)={0x1a, 0x30c, 0x40, 0xa6, 0xe4, 0x3, @local}, 0x10) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r14, 0x84, 0x71, &(0x7f00000001c0)={r16, 0xffffffff}, &(0x7f0000000340)=0x8) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r11, 0x84, 0x7c, &(0x7f0000000040)={r16, 0x29c2, 0xfffe}, &(0x7f0000000080)=0x8) r20 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/load\x00', 0x2, 0x0) write$selinux_load(r20, 0x0, 0x0) 06:48:39 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x0, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) r1 = socket$inet(0x2, 0x1, 0x0) connect$inet(r1, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r1, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r1, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r0, r1) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r3, 0x84, 0x76, &(0x7f0000000040)={0x0, 0x6}, &(0x7f0000000080)=0x8) getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000000c0)={r4, 0x9}, &(0x7f0000000100)=0xc) [ 1375.294440] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1375.323622] batman_adv: Cannot find parent device [ 1375.356663] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1375.373679] batman_adv: Cannot find parent device 06:48:39 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_GET(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x28, 0x4, 0x8, 0x201, 0x0, 0x0, {0x5, 0x0, 0x3}, [@CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x21}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz0\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x20008000}, 0x800) syz_emit_ethernet(0x3e, &(0x7f0000000000)=ANY=[@ANYBLOB="ff08ebfeffff96c1e957090000004500050000000000000001000000000000006802e6466fd80045200000000000d200000000e000"], 0x0) 06:48:39 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x105000, 0x0) r0 = syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x200400) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) r2 = socket$inet(0x2, 0x6, 0x8) connect$inet(r2, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r2, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r2, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r1, r2) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000180)={&(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ff6000/0xa000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ff7000/0x4000)=nil, &(0x7f0000000100)="807edae780d29054c2dfe0322d2f40e0f2106c803cbab6816bef0cc4492b655e7c77a047ead66d4b1f856a6affc8d10ac85d7fdb79b91c89ce6155bab3953a4c6ea60f7dbb1e8b6787", 0x49, r1}, 0x68) write$FUSE_IOCTL(r0, &(0x7f0000000040)={0x20, 0xfffffffffffffff2, 0x6, {0x1, 0x0, 0x400000, 0x5}}, 0x20) [ 1375.554063] syz-executor.1: vmalloc: allocation failure: 0 bytes, mode:0x14000c0(GFP_KERNEL), nodemask=(null) [ 1375.614748] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1375.650297] CPU: 0 PID: 8622 Comm: syz-executor.1 Not tainted 4.14.167-syzkaller #0 [ 1375.658182] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1375.667555] Call Trace: [ 1375.670372] dump_stack+0x142/0x197 [ 1375.674025] warn_alloc.cold+0x96/0x1af [ 1375.678015] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 1375.683033] ? lock_downgrade+0x740/0x740 [ 1375.687206] ? avc_has_perm+0x2df/0x4b0 [ 1375.691308] __vmalloc_node_range+0x3c3/0x6a0 [ 1375.695912] ? trace_hardirqs_on+0x10/0x10 [ 1375.700277] vmalloc+0x46/0x50 [ 1375.703484] ? sel_write_load+0x1a0/0x1050 [ 1375.707780] sel_write_load+0x1a0/0x1050 [ 1375.712030] ? save_trace+0x290/0x290 [ 1375.716053] ? sel_read_bool+0x240/0x240 [ 1375.720146] ? trace_hardirqs_on+0x10/0x10 [ 1375.724407] ? debug_smp_processor_id+0x1c/0x20 [ 1375.729231] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1375.734181] __vfs_write+0x105/0x6b0 [ 1375.737923] ? sel_read_bool+0x240/0x240 [ 1375.742004] ? kernel_read+0x120/0x120 [ 1375.745925] ? __lock_is_held+0xb6/0x140 [ 1375.749995] ? check_preemption_disabled+0x3c/0x250 [ 1375.755033] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1375.760512] ? rcu_read_lock_sched_held+0x110/0x130 [ 1375.765550] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 1375.770329] ? __sb_start_write+0x153/0x2f0 [ 1375.774951] vfs_write+0x198/0x500 [ 1375.778509] SyS_write+0xfd/0x230 [ 1375.781975] ? SyS_read+0x230/0x230 [ 1375.785719] ? do_syscall_64+0x53/0x640 [ 1375.789705] ? SyS_read+0x230/0x230 [ 1375.793494] do_syscall_64+0x1e8/0x640 [ 1375.797391] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1375.802256] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1375.807457] RIP: 0033:0x45b349 [ 1375.810655] RSP: 002b:00007f76bb272c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1375.818490] RAX: ffffffffffffffda RBX: 00007f76bb2736d4 RCX: 000000000045b349 [ 1375.826523] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000d [ 1375.833916] RBP: 000000000075c070 R08: 0000000000000000 R09: 0000000000000000 [ 1375.841716] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1375.848990] R13: 0000000000000cb1 R14: 00000000004cd905 R15: 000000000075c07c [ 1375.896545] Mem-Info: [ 1375.899202] active_anon:442110 inactive_anon:209 isolated_anon:0 [ 1375.899202] active_file:3146 inactive_file:6725 isolated_file:0 [ 1375.899202] unevictable:0 dirty:128 writeback:0 unstable:0 [ 1375.899202] slab_reclaimable:17895 slab_unreclaimable:148181 [ 1375.899202] mapped:58175 shmem:285 pagetables:33075 bounce:0 [ 1375.899202] free:858282 free_pcp:443 free_cma:0 [ 1375.949059] Node 0 active_anon:1606884kB inactive_anon:764kB active_file:1520kB inactive_file:84kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:210596kB dirty:44kB writeback:0kB shmem:1056kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 995328kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1375.994414] Node 1 active_anon:161556kB inactive_anon:72kB active_file:11064kB inactive_file:26816kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:22004kB dirty:468kB writeback:0kB shmem:84kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1376.033052] Node 0 DMA free:10480kB min:216kB low:268kB high:320kB active_anon:4508kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:128kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1376.067934] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 1376.077827] Node 0 DMA32 free:39196kB min:36380kB low:45472kB high:54564kB active_anon:1602376kB inactive_anon:764kB active_file:1392kB inactive_file:192kB unevictable:0kB writepending:40kB present:3129332kB managed:2634344kB mlocked:0kB kernel_stack:20928kB pagetables:53608kB bounce:0kB free_pcp:1416kB local_pcp:688kB free_cma:0kB [ 1376.129758] lowmem_reserve[]: 0 0 0 0 0 [ 1376.172960] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1376.228695] lowmem_reserve[]: 0 0 0 0 0 [ 1376.234607] Node 1 Normal free:3384620kB min:53508kB low:66884kB high:80260kB active_anon:161356kB inactive_anon:80kB active_file:11120kB inactive_file:26848kB unevictable:0kB writepending:56kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:26464kB pagetables:78336kB bounce:0kB free_pcp:904kB local_pcp:320kB free_cma:0kB [ 1376.273338] lowmem_reserve[]: 0 0 0 0 0 [ 1376.277391] Node 0 DMA: 16*4kB (UME) 22*8kB (UE) 14*16kB (UME) 17*32kB (UME) 18*64kB (U) 5*128kB (UE) 6*256kB (UE) 2*512kB (ME) 3*1024kB (UME) 1*2048kB (E) 0*4096kB = 10480kB [ 1376.299121] Node 0 DMA32: 1153*4kB (UMEH) 595*8kB (UMEH) 663*16kB (UMEH) 343*32kB (MH) 131*64kB (UMH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 39340kB [ 1376.319374] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1376.336248] Node 1 Normal: 246*4kB (UME) 15*8kB (ME) 26*16kB (UME) 105*32kB (UE) 58*64kB (U) 107*128kB (U) 76*256kB (U) 34*512kB (UM) 7*1024kB (U) 2*2048kB (UE) 809*4096kB (M) = 3384080kB [ 1376.386456] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1376.395440] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1376.409643] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1376.418676] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1376.433645] 10153 total pagecache pages [ 1376.437804] 0 pages in swap cache [ 1376.443399] Swap cache stats: add 0, delete 0, find 0/0 [ 1376.448933] Free swap = 0kB [ 1376.455574] Total swap = 0kB [ 1376.458638] 1965979 pages RAM [ 1376.463754] 0 pages HighMem/MovableOnly [ 1376.467755] 335868 pages reserved [ 1376.477137] 0 pages cma reserved 06:48:40 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(r2, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r2, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r2, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r1, r2) r3 = openat$vimc0(0xffffffffffffff9c, &(0x7f0000000080)='/dev/video0\x00', 0x2, 0x0) clock_nanosleep(0x4, 0x1, &(0x7f0000000180), 0x0) r4 = dup(r0) openat$md(0xffffffffffffff9c, &(0x7f0000000040)='/dev/md0\x00', 0x115402, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$VIDIOC_S_STD(r3, 0x40085618, &(0x7f00000001c0)=0x400) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) getsockopt$inet_sctp_SCTP_INITMSG(r2, 0x84, 0x2, &(0x7f0000000100), &(0x7f0000000140)=0x8) r5 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/load\x00', 0x2, 0x0) write$selinux_load(r5, 0x0, 0x0) 06:48:40 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r4 = socket$inet(0x2, 0x1, 0x0) r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) connect$netrom(r6, &(0x7f0000000000)={{0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}}, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}]}, 0x48) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r7 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) setsockopt$IP_VS_SO_SET_ZERO(0xffffffffffffffff, 0x0, 0x48f, &(0x7f0000000300)={0x87, @initdev={0xac, 0x1e, 0x1, 0x0}, 0x4e22, 0x4, 'lblc\x00', 0x4, 0x5, 0x35}, 0x2c) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x281, 0x0) r8 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r9 = dup(r8) ioctl$PERF_EVENT_IOC_ENABLE(r9, 0x8912, 0x400200) getsockopt$inet_dccp_int(r9, 0x21, 0x6, &(0x7f0000000340), &(0x7f0000000380)=0x4) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r10 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) getpeername$ax25(r7, &(0x7f0000000180)={{0x3, @rose}, [@rose, @null, @null, @null, @null, @rose, @default, @rose]}, &(0x7f00000002c0)=0x48) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r10, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r10, 0xae80, 0x0) r11 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r12 = dup(r11) ioctl$PERF_EVENT_IOC_ENABLE(r12, 0x8912, 0x400200) fcntl$setflags(r12, 0x2, 0x0) ioctl$KVM_RUN(r10, 0xae80, 0x0) 06:48:40 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_emit_ethernet(0x3e, &(0x7f0000000080)=ANY=[@ANYBLOB="ffffffffffff86c1e9574b310800450000300000000000019078ac1e0001e000000105dd907800000800450000000000000000000000e0000001ac1414bbf300b3590b91ea1ff3e967536cc91f6c2611501edf1f32247c21c14f780d069356451cb17d9c1bf6e2a0e3f55ebfa6d5aa"], 0x0) 06:48:40 executing program 5: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) r2 = accept4$packet(r1, &(0x7f0000000000), &(0x7f0000000080)=0x14, 0x800) fcntl$addseals(r2, 0x409, 0x4) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$PERF_EVENT_IOC_RESET(r4, 0x2403, 0x401) mount(&(0x7f0000000140)=ANY=[@ANYBLOB="2f6465762f6e756c6c62300004a0c1a41acfa82c34e2166dd7be55f26ab073a7dad3fa2ca7e915bc2adad2ec07c543ecbba19116937a60406d30a22356d0b71a69d688fe703809b680ee6b4704cae0582fa464b7bb1da9fe829a8258abb08136c62c89361897776921468614d38212f5e139ffe5683ab00ccf7d27cbbf1c85d972fdab8072369121b3b192f313370b104d9dc62ec282287425a72fe331f907cdbe034cbade0d65a348e391deac6e6c0d15d8d67b668dbcf6e8c3fba4"], &(0x7f0000000340)='./file0\x00', &(0x7f0000000100)='reiserfs\x00', 0x0, 0x0) r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x3f) connect$caif(r6, &(0x7f00000000c0)=@rfm={0x25, 0xfffffffd, "7dcc69696fc440f443a84072d28763bd"}, 0x18) 06:48:40 executing program 3: r0 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm_plock\x00', 0x8801, 0x0) getsockopt$inet_sctp_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000040)={0x0, 0xcdc, 0x9, [0x9, 0x4, 0x1000, 0xa5f, 0x0, 0x92, 0x4, 0x2, 0x200]}, &(0x7f0000000080)=0x1a) openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) 06:48:40 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) getsockopt$inet_sctp6_SCTP_RTOINFO(r1, 0x84, 0x0, &(0x7f0000000080)={0x0, 0x7, 0x5, 0x10001}, &(0x7f00000000c0)=0x10) getsockopt$inet_sctp6_SCTP_CONTEXT(r3, 0x84, 0x11, &(0x7f0000000100)={r4, 0x1}, &(0x7f00000001c0)=0x8) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) [ 1376.581987] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 1376.658244] syz-executor.1: vmalloc: allocation failure: 0 bytes, mode:0x14000c0(GFP_KERNEL), nodemask=(null) [ 1376.695819] cgroup: cgroup2: unknown option "º" [ 1376.699431] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1376.733323] CPU: 0 PID: 8674 Comm: syz-executor.1 Not tainted 4.14.167-syzkaller #0 [ 1376.741227] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1376.750600] Call Trace: [ 1376.753216] dump_stack+0x142/0x197 [ 1376.756866] warn_alloc.cold+0x96/0x1af [ 1376.757587] cgroup: cgroup2: unknown option "º" [ 1376.760864] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 1376.760881] ? lock_downgrade+0x740/0x740 [ 1376.760898] ? avc_has_perm+0x2df/0x4b0 [ 1376.760915] __vmalloc_node_range+0x3c3/0x6a0 06:48:40 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='devpts\x00', 0x20, &(0x7f00000002c0)) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r4) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000300)={&(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ff9000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000001c0)="0476aac6bf4e4981bd7e41aaf52e4c6541882477e8c09f7f5473dac35336a0d6da34ac18b5ff7dbde8244e8bcf0b368c253f067af0147fd55a4f0981f82bf5af93ded857d5eb00d7084f32f7d9d99eac104a7c9c8f7eebb37da8b4f414925eef1fc5438a21f0850e7679558c8efaa0a8fb5332bd34c19e38764fa6d31a4facbbb1bdc424626df68f4ef41ca356bea61d2a942f40dad2fa72cf36455785c954823a15cb9c19152c42b258bf8fd77fed2a2d465f561f65b38342cd0b0d417a11563831f8756467d37440fb2eb4ef335976fc53e0b337", 0xd5, r4}, 0x68) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$FS_IOC_GET_ENCRYPTION_KEY_STATUS(r3, 0xc080661a, &(0x7f0000000080)={{0x2, 0x0, @descriptor="048f9b4ea394285c"}}) [ 1376.760927] ? trace_hardirqs_on+0x10/0x10 [ 1376.760941] vmalloc+0x46/0x50 [ 1376.760952] ? sel_write_load+0x1a0/0x1050 [ 1376.760961] sel_write_load+0x1a0/0x1050 [ 1376.760971] ? save_trace+0x290/0x290 [ 1376.760986] ? sel_read_bool+0x240/0x240 [ 1376.807081] ? trace_hardirqs_on+0x10/0x10 [ 1376.811335] ? debug_smp_processor_id+0x1c/0x20 [ 1376.816042] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1376.820989] __vfs_write+0x105/0x6b0 [ 1376.824717] ? sel_read_bool+0x240/0x240 [ 1376.828794] ? kernel_read+0x120/0x120 [ 1376.832700] ? __lock_is_held+0xb6/0x140 [ 1376.836779] ? check_preemption_disabled+0x3c/0x250 [ 1376.841816] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1376.847286] ? rcu_read_lock_sched_held+0x110/0x130 [ 1376.852321] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 1376.857336] ? __sb_start_write+0x153/0x2f0 [ 1376.861802] vfs_write+0x198/0x500 [ 1376.865364] SyS_write+0xfd/0x230 [ 1376.868831] ? SyS_read+0x230/0x230 [ 1376.872480] ? do_syscall_64+0x53/0x640 [ 1376.876470] ? SyS_read+0x230/0x230 [ 1376.880116] do_syscall_64+0x1e8/0x640 06:48:40 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) r6 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r7 = dup(r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) r8 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r9 = dup(r8) ioctl$PERF_EVENT_IOC_ENABLE(r9, 0x8912, 0x400200) ioctl$PERF_EVENT_IOC_ENABLE(r9, 0x8912, 0x3) r10 = creat(&(0x7f0000000080)='./file0\x00', 0x4) ioctl$KVM_GET_MP_STATE(r10, 0x8004ae98, &(0x7f00000000c0)) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000100)={0x0, 0x0}, &(0x7f00000001c0)=0xc) setfsuid(r11) [ 1376.884017] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1376.888884] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1376.894089] RIP: 0033:0x45b349 [ 1376.897287] RSP: 002b:00007f76bb2b4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1376.905011] RAX: ffffffffffffffda RBX: 00007f76bb2b56d4 RCX: 000000000045b349 [ 1376.912296] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000008 [ 1376.919694] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1376.926974] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff 06:48:40 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_emit_ethernet(0x3e, &(0x7f0000000080)=ANY=[@ANYBLOB="ffffffffffff96c1e976ffe46b965b8774d4ea69574b310800450000300000000000019078ac1e0001e00000010d00907800000800691ef7c900724f9c1c2b4d83369fde45000000000b96a636d011ab07d0b3cd34644d58abf813d84ae72bb4efab1911a9ad90d6a41359"], 0x0) 06:48:40 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuacct.usage_percpu\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$VIDIOC_S_EXT_CTRLS(r2, 0xc0205648, &(0x7f0000000080)={0x70004, 0x976, 0x8, 0xffffffffffffffff, 0x0, &(0x7f0000000040)={0x9909d8, 0x1, [], @value64=0x9}}) ioctl$SNDCTL_DSP_STEREO(r2, 0xc0045003, &(0x7f0000000140)) ioctl$SNDCTL_DSP_SYNC(r0, 0x5001, 0x0) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$sock_SIOCBRDELBR(r4, 0x89a1, &(0x7f0000000180)='ip6gretap0\x00') ioctl$IOC_PR_REGISTER(r4, 0x401870c8, &(0x7f0000000100)={0xff, 0x3, 0x1}) [ 1376.934261] R13: 0000000000000cb1 R14: 00000000004cd905 R15: 000000000075bf2c [ 1377.047770] cgroup: cgroup2: unknown option "º" [ 1377.064085] cgroup: cgroup2: unknown option "º" 06:48:41 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) sendto$l2tp6(r3, &(0x7f0000000000)="d9f7", 0x2, 0x40014, &(0x7f0000000040)={0xa, 0x0, 0xfffffffb, @empty, 0xac5, 0x1}, 0x20) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 06:48:41 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = open(&(0x7f0000000080)='./file0\x00', 0x111200, 0x120) getsockopt$ARPT_SO_GET_REVISION_TARGET(r1, 0x0, 0x63, &(0x7f00000000c0)={'icmp\x00'}, &(0x7f0000000100)=0x1e) r2 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x9) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) 06:48:41 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_emit_ethernet(0xb7, &(0x7f0000000040)={@broadcast, @random, @void, {@ipv4={0x800, @generic={{0x5, 0x4, 0x3, 0x3, 0xa9, 0x67, 0x0, 0x7f, 0x21, 0x0, @remote, @loopback}, "f7439ba637286a1e457f43d45b60dde5fa2aa090aa200d5f7de7d8b1b10bef5e7c371ab02f5415cbd69b07fab34e521656ab0baf98656a15e63d2533063707c07cf25d7dd088ffc81e5bb9a585ada24e7d9c37ac6dff79cd8c9f50a1f3c401a1b0bd030b64a1281f01d500b72a520c43aa222acafcbc02fb884d7f09d39d2b0c08675368b8883e3594184adb46486c203c88cff4e6"}}}}, 0x0) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r3, 0xc0406618, &(0x7f0000000000)={{0x0, 0x0, @reserved="8bd5a0fe6fb0b8bb9847257e29dae379fdb5f7781f619788fe56ad7ebb95225d"}}) [ 1377.189502] Mem-Info: [ 1377.218216] active_anon:442154 inactive_anon:209 isolated_anon:0 [ 1377.218216] active_file:3120 inactive_file:6791 isolated_file:26 [ 1377.218216] unevictable:0 dirty:110 writeback:0 unstable:0 [ 1377.218216] slab_reclaimable:17601 slab_unreclaimable:148802 [ 1377.218216] mapped:58197 shmem:284 pagetables:33084 bounce:0 [ 1377.218216] free:858261 free_pcp:680 free_cma:0 [ 1377.298135] cgroup: cgroup2: unknown option "º" [ 1377.343204] Node 0 active_anon:1606884kB inactive_anon:764kB active_file:1236kB inactive_file:68kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:210220kB dirty:16kB writeback:0kB shmem:1056kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 995328kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1377.418179] Node 1 active_anon:161732kB inactive_anon:72kB active_file:11244kB inactive_file:27096kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:22468kB dirty:424kB writeback:0kB shmem:80kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1377.476290] Node 0 DMA free:10480kB min:216kB low:268kB high:320kB active_anon:4508kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:128kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1377.526287] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 1377.549045] Node 0 DMA32 free:39260kB min:36380kB low:45472kB high:54564kB active_anon:1602376kB inactive_anon:764kB active_file:1140kB inactive_file:68kB unevictable:0kB writepending:16kB present:3129332kB managed:2634344kB mlocked:0kB kernel_stack:20928kB pagetables:53608kB bounce:0kB free_pcp:1392kB local_pcp:728kB free_cma:0kB [ 1377.607443] lowmem_reserve[]: 0 0 0 0 0 [ 1377.611599] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1377.649785] lowmem_reserve[]: 0 0 0 0 0 [ 1377.653951] Node 1 Normal free:3384984kB min:53508kB low:66884kB high:80260kB active_anon:161532kB inactive_anon:72kB active_file:11244kB inactive_file:27096kB unevictable:0kB writepending:424kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:26432kB pagetables:78692kB bounce:0kB free_pcp:1120kB local_pcp:636kB free_cma:0kB [ 1377.689932] lowmem_reserve[]: 0 0 0 0 0 [ 1377.694055] Node 0 DMA: 16*4kB (UME) 22*8kB (UE) 14*16kB (UME) 17*32kB (UME) 18*64kB (U) 5*128kB (UE) 6*256kB (UE) 2*512kB (ME) 3*1024kB (UME) 1*2048kB (E) 0*4096kB = 10480kB [ 1377.715322] Node 0 DMA32: 1175*4kB (UMEH) 637*8kB (UMEH) 655*16kB (UMEH) 341*32kB (UMH) 126*64kB (UMH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 39252kB [ 1377.741184] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1377.761364] Node 1 Normal: 217*4kB (UME) 22*8kB (UME) 18*16kB (UME) 5*32kB (UE) 59*64kB (UM) 120*128kB (U) 80*256kB (UM) 37*512kB (UM) 9*1024kB (UM) 3*2048kB (UME) 808*4096kB (M) = 3384980kB [ 1377.783942] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1377.794293] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1377.807374] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1377.817182] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1377.831703] 10238 total pagecache pages [ 1377.835722] 0 pages in swap cache [ 1377.839185] Swap cache stats: add 0, delete 0, find 0/0 [ 1377.847921] Free swap = 0kB [ 1377.853698] Total swap = 0kB [ 1377.856830] 1965979 pages RAM [ 1377.863622] 0 pages HighMem/MovableOnly [ 1377.867632] 335868 pages reserved [ 1377.872924] 0 pages cma reserved [ 1378.983024] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 1379.580243] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 06:48:44 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/load\x00', 0x2, 0x0) write$selinux_load(r2, 0x0, 0x0) socketpair(0x26, 0x4, 0x33, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = socket$netlink(0x10, 0x3, 0x0) r5 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000300)='/dev/vga_arbiter\x00', 0x10000, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f0000000400)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000440)=0xffffffffffffff47) sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x2a9, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r6, @ANYBLOB="000000000000000028001200090001007665746800000000180002001400010000000000", @ANYRES32=0x0, @ANYBLOB="0000b20000000000"], 0x48}}, 0x0) r7 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0)='nl80211\x00') sendmsg$NL80211_CMD_GET_INTERFACE(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000000)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="874b00000000000000000500000008000300", @ANYRES32=r6, @ANYBLOB], 0x1c}}, 0x0) r8 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r9 = dup(r8) ioctl$PERF_EVENT_IOC_ENABLE(r9, 0x8912, 0x400200) sendmsg$NL80211_CMD_SET_BEACON(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x1010}, 0xc, &(0x7f0000000280)={&(0x7f0000000a00)={0x8f8, 0x0, 0x200, 0x70bd29, 0x25dfdbfd, {}, [@NL80211_ATTR_IE_PROBE_RESP={0x8da, 0x7f, "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"}, @NL80211_ATTR_BEACON_INTERVAL={0x8, 0xc, 0x7}]}, 0x8f8}, 0x1, 0x0, 0x0, 0xc840}, 0x4080) getsockopt$inet_mreqn(r9, 0x0, 0x24, &(0x7f00000000c0)={@broadcast, @loopback, 0x0}, &(0x7f0000000100)=0xc) r11 = socket$netlink(0x10, 0x3, 0x0) setsockopt$inet_buf(r0, 0x0, 0x2f, &(0x7f0000000340)="a9426712ba3daf04a97211ef5281621228d14ab803ae09f76b715c928e85", 0x1e) r12 = socket$netlink(0x10, 0x3, 0x0) r13 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r13, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r13, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x2ba) r15 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r16 = dup(r15) ioctl$PERF_EVENT_IOC_ENABLE(r16, 0x8912, 0x400200) ioctl$LOOP_SET_DIRECT_IO(r16, 0x4c08, 0x7) sendmsg$nl_route(r12, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB="3c0000001000850600"/18, @ANYRES32=r14, @ANYBLOB="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"], 0x3}}, 0x0) sendmsg$nl_route(r11, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000007c0)=ANY=[@ANYBLOB="4400000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012000c00010067726574617000000c00020008000100", @ANYRES32=r14, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r14, @ANYBLOB="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"], 0x44}}, 0x0) sendmsg$NL80211_CMD_SET_MPATH(r3, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x5040}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="7c000200", @ANYRES16=r7, @ANYBLOB="000426bd7000fcdbdf251600000008000300", @ANYRES32=r10, @ANYBLOB="080001000000000008000300", @ANYRES32=r14, @ANYBLOB="0a00060000000000000000000a00060000000000000000000a000600aaaaaaaaaabb00000a00060000000000000000000c009900050000000300000008000100040000000a000600aaaaaaaaaa330000"], 0x7c}, 0x1, 0x0, 0x0, 0x800}, 0x4000040) 06:48:44 executing program 3: syz_init_net_socket$llc(0x1a, 0x1, 0x0) syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x2000000000, 0x101000) openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) 06:48:44 executing program 5: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0) fstat(r0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) setregid(r1, 0x0) chown(&(0x7f0000000000)='./file0\x00', 0x0, r1) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000200)=@nullb='/dev/nullb0\x00', &(0x7f0000000340)='./file0\x00', &(0x7f0000000100)='reiserfs\x00', 0x0, 0x0) 06:48:44 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$RTC_WIE_ON(0xffffffffffffffff, 0x700f) ioctl$KVM_RUN(r4, 0xae80, 0x0) 06:48:44 executing program 4: migrate_pages(0xffffffffffffffff, 0x3, &(0x7f0000000000)=0x40d, &(0x7f0000000140)=0x968) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_emit_ethernet(0xa7, &(0x7f0000000040)={@broadcast, @random="96c1e9574b31", @void, {@ipv4={0x800, @udp={{0xc, 0x4, 0x3, 0x4, 0x99, 0x64, 0x0, 0x7, 0x11, 0x0, @empty, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@cipso={0x86, 0x6, 0x2}, @ra={0x94, 0x4}, @noop, @timestamp={0x44, 0x10, 0x48, 0x0, 0xd, [0x3, 0x0, 0x1]}]}}, {0x4e24, 0x4e22, 0x69, 0x0, [@guehdr={0x1, 0x1, 0x0, 0x7f, 0x0, @void}, @guehdr={0x2, 0x0, 0x3, 0x81, 0x0, @val=0x80}, @guehdr={0x2, 0x1, 0x3, 0x5, 0x100, @val=0x80}, @guehdr={0x1, 0x1, 0x1, 0x21, 0x100, @void}, @guehdr={0x1, 0x0, 0x3, 0xfd, 0x100, @void}, @guehdr={0x2, 0x1, 0x0, 0x20, 0x100}, @guehdr={0x2, 0x0, 0x0, 0xff, 0x100, @val=0x80}], "494189063d1a5fc2742820df698d514bbd4782d7fa4069a519b16cf5aa8ded33f01b75120900f2ab7b16d07aad45088d38862f4d69"}}}}}, 0x0) r2 = getuid() write$FUSE_ATTR(r1, &(0x7f0000000180)={0x78, 0x0, 0x4, {0x6, 0x800, 0x0, {0x0, 0x3, 0xa0, 0x4, 0x4e, 0xfffffffffffff001, 0x3, 0xffff6b38, 0x2, 0x8, 0x401, r2, 0xee00, 0x5, 0x1}}}, 0x78) [ 1380.217646] syz-executor.1: vmalloc: allocation failure: 0 bytes, mode:0x14000c0(GFP_KERNEL), nodemask=(null) [ 1380.247640] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1380.273644] CPU: 1 PID: 8740 Comm: syz-executor.1 Not tainted 4.14.167-syzkaller #0 [ 1380.281495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1380.290964] Call Trace: [ 1380.293569] dump_stack+0x142/0x197 [ 1380.297216] warn_alloc.cold+0x96/0x1af [ 1380.301205] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 1380.306077] ? lock_downgrade+0x740/0x740 [ 1380.310252] ? avc_has_perm+0x2df/0x4b0 [ 1380.314253] __vmalloc_node_range+0x3c3/0x6a0 [ 1380.318831] ? trace_hardirqs_on+0x10/0x10 [ 1380.323091] vmalloc+0x46/0x50 [ 1380.326329] ? sel_write_load+0x1a0/0x1050 [ 1380.330715] sel_write_load+0x1a0/0x1050 [ 1380.334796] ? save_trace+0x290/0x290 [ 1380.338615] ? sel_read_bool+0x240/0x240 [ 1380.342705] ? trace_hardirqs_on+0x10/0x10 [ 1380.346955] ? debug_smp_processor_id+0x1c/0x20 [ 1380.351640] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1380.356585] __vfs_write+0x105/0x6b0 [ 1380.360400] ? sel_read_bool+0x240/0x240 [ 1380.364470] ? kernel_read+0x120/0x120 [ 1380.368363] ? __lock_is_held+0xb6/0x140 [ 1380.372430] ? check_preemption_disabled+0x3c/0x250 [ 1380.377492] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1380.383087] ? rcu_read_lock_sched_held+0x110/0x130 [ 1380.388121] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 1380.393157] ? __sb_start_write+0x153/0x2f0 [ 1380.397536] vfs_write+0x198/0x500 [ 1380.401099] SyS_write+0xfd/0x230 [ 1380.404566] ? SyS_read+0x230/0x230 [ 1380.408204] ? do_syscall_64+0x53/0x640 [ 1380.412199] ? SyS_read+0x230/0x230 [ 1380.415843] do_syscall_64+0x1e8/0x640 [ 1380.419745] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1380.424740] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1380.429950] RIP: 0033:0x45b349 [ 1380.433147] RSP: 002b:00007f76bb2b4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1380.440868] RAX: ffffffffffffffda RBX: 00007f76bb2b56d4 RCX: 000000000045b349 [ 1380.448168] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005 [ 1380.455450] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1380.462759] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff 06:48:44 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) r0 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm_plock\x00', 0x121200, 0x0) ioctl$TUNSETTXFILTER(r0, 0x400454d1, &(0x7f0000000040)={0x0, 0x5, [@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @random="1938f5cdfafb", @dev={[], 0xb}, @remote, @dev={[], 0x1d}]}) [ 1380.470196] R13: 0000000000000cb1 R14: 00000000004cd905 R15: 000000000075bf2c [ 1380.513628] batman_adv: Cannot find parent device 06:48:44 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f0000000040)=0x0) rt_sigqueueinfo(r3, 0x20, &(0x7f0000000080)={0x7, 0x1, 0x3}) r4 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) syz_emit_ethernet(0x3e, &(0x7f0000000000)={@broadcast, @random="96c1e9574b31", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, @time_exceeded={0x5, 0x0, 0x0, 0x0, 0x0, 0x8, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast1, @remote}}}}}}, 0x0) 06:48:44 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x0, 0x12) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040)='TIPC\x00') sendmsg$TIPC_CMD_GET_NETID(r3, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, r4, 0x200, 0x70bd2b, 0x25dfdbff, {}, ["", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x1004c084) r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff], 0x1}) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) 06:48:44 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) fsync(r1) 06:48:44 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_emit_ethernet(0x73, &(0x7f00000000c0)=ANY=[@ANYBLOB="ffffffffffff0000000000000805000900feb924275ba73e363f41a1e5c025d3e5677c698b67501c22a4f426854ef252bba5dacbc20ea5c3684bdd148a716fed782acd5a905c485068980829a1c348afae00ef3b64c0cdc87d902e57b19002848c766cea13b5435b9c0fd49af52bea7fea57df8bd496"], 0x0) 06:48:44 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) [ 1380.979234] Mem-Info: 06:48:45 executing program 3: r0 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/enforce\x00', 0x40000, 0x0) openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x10000, 0x0) prctl$PR_SET_NAME(0xf, &(0x7f0000000040)='&##\xc9vboxnet0.\x00') ioctl$RTC_RD_TIME(r0, 0x80247009, &(0x7f0000000080)) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(r2, 0x40405515, &(0x7f0000000100)={0x9, 0x0, 0x6, 0x2, 'syz1\x00', 0x101}) [ 1381.005515] active_anon:442246 inactive_anon:211 isolated_anon:0 [ 1381.005515] active_file:3093 inactive_file:7141 isolated_file:0 [ 1381.005515] unevictable:0 dirty:0 writeback:0 unstable:0 [ 1381.005515] slab_reclaimable:17677 slab_unreclaimable:148339 [ 1381.005515] mapped:58646 shmem:285 pagetables:33162 bounce:0 [ 1381.005515] free:857866 free_pcp:401 free_cma:0 [ 1381.184193] Node 0 active_anon:1611656kB inactive_anon:764kB active_file:44kB inactive_file:12kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208956kB dirty:4kB writeback:0kB shmem:1056kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 995328kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1381.332327] Node 1 active_anon:157160kB inactive_anon:72kB active_file:12316kB inactive_file:28392kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:25332kB dirty:8kB writeback:0kB shmem:84kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1381.418543] Node 0 DMA free:10464kB min:216kB low:268kB high:320kB active_anon:4508kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:96kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1381.522236] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 1381.542272] Node 0 DMA32 free:38508kB min:36380kB low:45472kB high:54564kB active_anon:1607148kB inactive_anon:764kB active_file:44kB inactive_file:12kB unevictable:0kB writepending:4kB present:3129332kB managed:2634344kB mlocked:0kB kernel_stack:20896kB pagetables:53608kB bounce:0kB free_pcp:804kB local_pcp:556kB free_cma:0kB [ 1381.616600] lowmem_reserve[]: 0 0 0 0 0 [ 1381.632037] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1381.699685] lowmem_reserve[]: 0 0 0 0 0 [ 1381.709585] Node 1 Normal free:3384420kB min:53508kB low:66884kB high:80260kB active_anon:157160kB inactive_anon:72kB active_file:12216kB inactive_file:28392kB unevictable:0kB writepending:108kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:26496kB pagetables:78780kB bounce:0kB free_pcp:1436kB local_pcp:704kB free_cma:0kB [ 1381.787526] lowmem_reserve[]: 0 0 0 0 0 [ 1381.801248] Node 0 DMA: 16*4kB (UME) 16*8kB (UE) 14*16kB (UME) 16*32kB (UME) 17*64kB (U) 6*128kB (UE) 6*256kB (UE) 2*512kB (ME) 3*1024kB (UME) 1*2048kB (E) 0*4096kB = 10464kB [ 1381.847781] Node 0 DMA32: 169*4kB (MEH) 942*8kB (UMEH) 677*16kB (UMEH) 346*32kB (UMH) 126*64kB (UMH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 38180kB [ 1381.889881] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1381.918627] Node 1 Normal: 177*4kB (UME) 23*8kB (UME) 9*16kB (UME) 39*32kB (UME) 24*64kB (UME) 112*128kB (UME) 84*256kB (UME) 41*512kB (UE) 10*1024kB (UME) 2*2048kB (UM) 808*4096kB (M) = 3384556kB [ 1381.966836] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1381.986876] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1382.010627] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1382.034649] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1382.059592] 10472 total pagecache pages [ 1382.073555] 0 pages in swap cache [ 1382.087483] Swap cache stats: add 0, delete 0, find 0/0 [ 1382.099962] Free swap = 0kB [ 1382.111930] Total swap = 0kB [ 1382.118449] 1965979 pages RAM 06:48:46 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r4 = dup(r3) r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r6 = dup(r5) openat$vcsa(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vcsa\x00', 0x480800, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) r7 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r7) dup3(r7, r5, 0x80000) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x1) ioctl$FS_IOC_FSGETXATTR(r4, 0x801c581f, &(0x7f0000000080)={0x8, 0x4a42, 0x7, 0x3, 0x8}) r8 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) ioctl$VIDIOC_TRY_EXT_CTRLS(r1, 0xc0205649, &(0x7f0000000040)={0xa30000, 0x100, 0xfffff10d, r8, 0x0, &(0x7f0000000000)={0xa70942, 0x7, [], @value=0x5}}) [ 1382.130512] 0 pages HighMem/MovableOnly [ 1382.139415] 335868 pages reserved [ 1382.152834] 0 pages cma reserved 06:48:46 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) r6 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r7 = dup(r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) r8 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r9 = dup(r8) ioctl$PERF_EVENT_IOC_ENABLE(r9, 0x8912, 0x400200) ioctl$KVM_CREATE_IRQCHIP(r9, 0xae60) socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) vmsplice(0xffffffffffffffff, &(0x7f0000000180)=[{&(0x7f0000000000)="5b5ed4fffee3ed82052b3919c716955fa88dace7688b7ee9984c0c727e50909f3c5b873a901d03c133acbe4cb7eb80d0b5f70f863e4af184ffc472741dc35d0b6d8141d23c218a8ca76672964ae6e63570a29eeb92fd7ddd551d05f014906830e1ae", 0x62}, {&(0x7f00000002c0)="da80eb80125ac960a77c59560b59be1f3cedd2a89fae692f23378e2de6da3ff5ed6692cce98761979a8535b4f73f795b90b762c1d03b18bb8b5fd22df9f4b770963bf8be586a77d06c5ee7fd1e1b6cc38cfc5cdb30062cd48a57d57edb84744d6d0f29259382ce4ab4e07283769238c3b65a2416d699a70c6dde13589c2869df61f51b6dac2fcd5a5ef1a69e58312ae908a45e1560e6e063553279d0211ecf430a297e1d9771370f91246b4b5f9babec6619c537494e002c434d9b9691622c355b0c3cd71dd27398a332db3b85342ed3b7a98d356455ad9213ee9279c0f67336ce5a88", 0xe3}, {&(0x7f00000003c0)="238965486a156018c5647c8c191a56d1db6e52d077d46c7099dbe33f8ed2850fb4c049f7a3bdc50c4733578f1e360ee08219780c5911a64cb55aa3701bf8fdc0e075beae6f87bb6a132390ef31f6999c3385cac3d036494e92cd0c48dc5f0b8a09701491291cefb82e42779ee64129a0d72e9e524df463fa8287e9471a4735538bcf4dfdcf770e62927231ef5df4ee8c8c4bc2dc7b6340b12ed2ab16768635378f7c142e383cf0252ad5d081b38ffb2bd3463ddbe376970928631f468fe639f20ee3f3e30edd47a4bd9ba62746d0eca9", 0xd0}], 0x3, 0xf) r10 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r10, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r10, 0xae80, 0x0) ioctl$KVM_RUN(r10, 0xae80, 0x0) 06:48:46 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x1) clone(0x8000800, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/load\x00', 0x2, 0x0) pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) r5 = socket$inet6(0xa, 0x1000000000002, 0x0) r6 = socket$inet(0x2, 0x1, 0x0) connect$inet(r6, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, [], [{0xfffff842, 0xff, 0xe206, 0x80, 0xffffffffffffffff, 0xbb}, {0x3, 0x7, 0x6, 0x3, 0xd6, 0x3}]}) r7 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r8 = dup(r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000640)={r8, &(0x7f00000005c0)="030e86fefbfd997540022b95de4e3b97f561bf7057c30a99c3", &(0x7f0000000600)="51297e126c7529c7347b5d39"}, 0x20) connect$inet(r6, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r6, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) ioctl$SNDRV_CTL_IOCTL_PCM_INFO(r4, 0xc1205531, &(0x7f0000000300)={0x80, 0xffff, 0xfffffffc, 0xfffffffc, [], [], [], 0xe8df, 0xc7e6, 0xffffffff, 0x5, "305505b1c50237d395d0f60cbee21cf5"}) dup2(r5, r6) accept$inet(r3, &(0x7f0000000540)={0x2, 0x0, @initdev}, &(0x7f0000000580)=0x10) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r5, 0x8933, &(0x7f00000000c0)={'batadv_slave_0\x00', 0x0}) sendmsg$NL80211_CMD_DEL_INTERFACE(r4, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x30, 0x0, 0x2, 0x70bd27, 0x25dfdbfe, {}, [@NL80211_ATTR_WIPHY={0x8, 0x1, 0x2}, @NL80211_ATTR_WDEV={0xc, 0x99, {0x8, 0x3}}, @NL80211_ATTR_IFINDEX={0x8, 0x3, r9}]}, 0x30}, 0x1, 0x0, 0x0, 0x880}, 0x4000000) write$selinux_load(r2, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_POLICY(r0, 0x400c6615, &(0x7f0000000440)={0x0, @aes128}) getsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f00000001c0)={{{@in=@loopback, @in6=@local}}, {{@in6=@initdev}}}, &(0x7f00000002c0)=0xe8) [ 1382.368313] syz-executor.1: vmalloc: allocation failure: 0 bytes, mode:0x14000c0(GFP_KERNEL), nodemask=(null) [ 1382.391549] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1382.434081] CPU: 0 PID: 8810 Comm: syz-executor.1 Not tainted 4.14.167-syzkaller #0 [ 1382.441971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1382.451342] Call Trace: [ 1382.453950] dump_stack+0x142/0x197 [ 1382.457618] warn_alloc.cold+0x96/0x1af [ 1382.461610] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 1382.466668] ? lock_downgrade+0x740/0x740 [ 1382.470844] ? avc_has_perm+0x2df/0x4b0 [ 1382.475032] __vmalloc_node_range+0x3c3/0x6a0 [ 1382.479547] ? trace_hardirqs_on+0x10/0x10 [ 1382.484065] vmalloc+0x46/0x50 [ 1382.487300] ? sel_write_load+0x1a0/0x1050 [ 1382.491553] sel_write_load+0x1a0/0x1050 [ 1382.495627] ? save_trace+0x290/0x290 [ 1382.499555] ? sel_read_bool+0x240/0x240 [ 1382.503631] ? trace_hardirqs_on+0x10/0x10 [ 1382.507882] ? debug_smp_processor_id+0x1c/0x20 [ 1382.512585] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1382.517627] __vfs_write+0x105/0x6b0 [ 1382.521367] ? sel_read_bool+0x240/0x240 [ 1382.525444] ? kernel_read+0x120/0x120 [ 1382.529448] ? __lock_is_held+0xb6/0x140 [ 1382.533522] ? check_preemption_disabled+0x3c/0x250 [ 1382.538567] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1382.544232] ? rcu_read_lock_sched_held+0x110/0x130 [ 1382.549266] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 1382.554040] ? __sb_start_write+0x153/0x2f0 [ 1382.558474] vfs_write+0x198/0x500 [ 1382.562124] SyS_write+0xfd/0x230 [ 1382.565592] ? SyS_read+0x230/0x230 [ 1382.569234] ? do_syscall_64+0x53/0x640 [ 1382.573332] ? SyS_read+0x230/0x230 [ 1382.576982] do_syscall_64+0x1e8/0x640 [ 1382.580886] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1382.585746] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1382.590947] RIP: 0033:0x45b349 [ 1382.594135] RSP: 002b:00007f76bb2b4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1382.601858] RAX: ffffffffffffffda RBX: 00007f76bb2b56d4 RCX: 000000000045b349 [ 1382.609139] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005 [ 1382.616444] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1382.623888] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1382.631178] R13: 0000000000000cb1 R14: 00000000004cd905 R15: 000000000075bf2c [ 1382.964291] Mem-Info: [ 1382.975449] active_anon:442235 inactive_anon:211 isolated_anon:0 [ 1382.975449] active_file:3095 inactive_file:7123 isolated_file:0 [ 1382.975449] unevictable:0 dirty:8 writeback:0 unstable:0 [ 1382.975449] slab_reclaimable:17763 slab_unreclaimable:147938 [ 1382.975449] mapped:58566 shmem:285 pagetables:33151 bounce:0 [ 1382.975449] free:858968 free_pcp:450 free_cma:0 [ 1383.058560] Node 0 active_anon:1611656kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208956kB dirty:0kB writeback:0kB shmem:1056kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 995328kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1383.129830] Node 1 active_anon:157220kB inactive_anon:80kB active_file:12240kB inactive_file:28396kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:25308kB dirty:20kB writeback:0kB shmem:84kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1383.204962] Node 0 DMA free:10464kB min:216kB low:268kB high:320kB active_anon:4508kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:96kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1383.281660] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 1383.286843] Node 0 DMA32 free:39348kB min:36380kB low:45472kB high:54564kB active_anon:1607148kB inactive_anon:764kB active_file:28kB inactive_file:4kB unevictable:0kB writepending:0kB present:3129332kB managed:2634344kB mlocked:0kB kernel_stack:20896kB pagetables:53608kB bounce:0kB free_pcp:704kB local_pcp:496kB free_cma:0kB [ 1383.367183] lowmem_reserve[]: 0 0 0 0 0 [ 1383.371397] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1383.442531] lowmem_reserve[]: 0 0 0 0 0 [ 1383.446603] Node 1 Normal free:3385652kB min:53508kB low:66884kB high:80260kB active_anon:157220kB inactive_anon:80kB active_file:12240kB inactive_file:28396kB unevictable:0kB writepending:20kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:26528kB pagetables:78920kB bounce:0kB free_pcp:1116kB local_pcp:712kB free_cma:0kB [ 1383.530061] lowmem_reserve[]: 0 0 0 0 0 [ 1383.534131] Node 0 DMA: 16*4kB (UME) 16*8kB (UE) 14*16kB (UME) 16*32kB (UME) 17*64kB (U) 6*128kB (UE) 6*256kB (UE) 2*512kB (ME) 3*1024kB (UME) 1*2048kB (E) 0*4096kB = 10464kB [ 1383.596952] Node 0 DMA32: 169*4kB (MEH) 1055*8kB (UMEH) 693*16kB (UMEH) 349*32kB (UMH) 126*64kB (UMH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 39436kB [ 1383.620370] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1383.654818] Node 1 Normal: 135*4kB (UME) 15*8kB (UME) 20*16kB (UME) 31*32kB (UME) 22*64kB (UME) 120*128kB (UME) 82*256kB (UME) 43*512kB (UE) 10*1024kB (UME) 2*2048kB (UM) 808*4096kB (M) = 3385652kB [ 1383.714119] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1383.734554] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1383.756712] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1383.780901] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1383.789534] 10456 total pagecache pages [ 1383.814121] 0 pages in swap cache [ 1383.817659] Swap cache stats: add 0, delete 0, find 0/0 [ 1383.855103] Free swap = 0kB [ 1383.858172] Total swap = 0kB [ 1383.861542] 1965979 pages RAM [ 1383.864688] 0 pages HighMem/MovableOnly [ 1383.868756] 335868 pages reserved [ 1383.894941] 0 pages cma reserved [ 1383.898506] syz-executor.1: vmalloc: allocation failure: 0 bytes, mode:0x14000c0(GFP_KERNEL), nodemask=(null) [ 1383.934861] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1383.940479] CPU: 0 PID: 8815 Comm: syz-executor.1 Not tainted 4.14.167-syzkaller #0 [ 1383.948292] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1383.957762] Call Trace: [ 1383.960501] dump_stack+0x142/0x197 [ 1383.964181] warn_alloc.cold+0x96/0x1af [ 1383.968190] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 1383.973176] ? lock_downgrade+0x740/0x740 [ 1383.977354] ? avc_has_perm+0x2df/0x4b0 [ 1383.981353] __vmalloc_node_range+0x3c3/0x6a0 [ 1383.985888] vmalloc+0x46/0x50 [ 1383.989106] ? sel_write_load+0x1a0/0x1050 [ 1383.993363] sel_write_load+0x1a0/0x1050 [ 1383.997572] ? save_trace+0x290/0x290 [ 1384.001399] ? sel_read_bool+0x240/0x240 [ 1384.005589] ? trace_hardirqs_on+0x10/0x10 [ 1384.009873] ? debug_smp_processor_id+0x1c/0x20 [ 1384.014573] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1384.019526] __vfs_write+0x105/0x6b0 [ 1384.023376] ? sel_read_bool+0x240/0x240 [ 1384.027456] ? kernel_read+0x120/0x120 [ 1384.031360] ? __lock_is_held+0xb6/0x140 [ 1384.035438] ? check_preemption_disabled+0x3c/0x250 [ 1384.040478] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1384.046081] ? rcu_read_lock_sched_held+0x110/0x130 [ 1384.051253] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 1384.056025] ? __sb_start_write+0x153/0x2f0 [ 1384.060688] vfs_write+0x198/0x500 [ 1384.064251] SyS_write+0xfd/0x230 [ 1384.067779] ? SyS_read+0x230/0x230 [ 1384.071422] ? do_syscall_64+0x53/0x640 [ 1384.075423] ? SyS_read+0x230/0x230 [ 1384.079067] do_syscall_64+0x1e8/0x640 [ 1384.083243] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1384.088110] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1384.093459] RIP: 0033:0x45b349 [ 1384.096662] RSP: 002b:00007f76bb293c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1384.104575] RAX: ffffffffffffffda RBX: 00007f76bb2946d4 RCX: 000000000045b349 [ 1384.111951] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005 [ 1384.119253] RBP: 000000000075bfc8 R08: 0000000000000000 R09: 0000000000000000 [ 1384.126714] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1384.135359] R13: 0000000000000cb1 R14: 00000000004cd905 R15: 000000000075bfd4 [ 1384.414978] Mem-Info: [ 1384.417468] active_anon:442219 inactive_anon:211 isolated_anon:0 [ 1384.417468] active_file:3072 inactive_file:7104 isolated_file:0 [ 1384.417468] unevictable:0 dirty:11 writeback:0 unstable:0 [ 1384.417468] slab_reclaimable:17784 slab_unreclaimable:147859 [ 1384.417468] mapped:58566 shmem:285 pagetables:33141 bounce:0 [ 1384.417468] free:858904 free_pcp:447 free_cma:0 [ 1384.457274] Node 0 active_anon:1611656kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208956kB dirty:0kB writeback:0kB shmem:1056kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 995328kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1384.489989] Node 1 active_anon:157220kB inactive_anon:80kB active_file:12240kB inactive_file:28408kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:25308kB dirty:44kB writeback:0kB shmem:84kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1384.523418] Node 0 DMA free:10464kB min:216kB low:268kB high:320kB active_anon:4508kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:96kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1384.555678] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 1384.561391] Node 0 DMA32 free:39436kB min:36380kB low:45472kB high:54564kB active_anon:1607148kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB writepending:0kB present:3129332kB managed:2634344kB mlocked:0kB kernel_stack:20896kB pagetables:53608kB bounce:0kB free_pcp:696kB local_pcp:488kB free_cma:0kB [ 1384.595993] lowmem_reserve[]: 0 0 0 0 0 [ 1384.600439] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1384.644083] lowmem_reserve[]: 0 0 0 0 0 [ 1384.648199] Node 1 Normal free:3385716kB min:53508kB low:66884kB high:80260kB active_anon:157220kB inactive_anon:80kB active_file:12240kB inactive_file:28408kB unevictable:0kB writepending:44kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:26496kB pagetables:78920kB bounce:0kB free_pcp:1084kB local_pcp:680kB free_cma:0kB [ 1384.724130] lowmem_reserve[]: 0 0 0 0 0 [ 1384.728201] Node 0 DMA: 16*4kB (UME) 16*8kB (UE) 14*16kB (UME) 16*32kB (UME) 17*64kB (U) 6*128kB (UE) 6*256kB (UE) 2*512kB (ME) 3*1024kB (UME) 1*2048kB (E) 0*4096kB = 10464kB [ 1384.749519] Node 0 DMA32: 169*4kB (MEH) 1055*8kB (UMEH) 693*16kB (UMEH) 349*32kB (UMH) 126*64kB (UMH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 39436kB [ 1384.769577] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1384.785723] Node 1 Normal: 135*4kB (UME) 15*8kB (UME) 20*16kB (UME) 31*32kB (UME) 23*64kB (UME) 120*128kB (UME) 82*256kB (UME) 43*512kB (UE) 10*1024kB (UME) 2*2048kB (UM) 808*4096kB (M) = 3385716kB [ 1384.810340] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1384.819226] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1384.836823] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1384.845954] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1384.861010] 10459 total pagecache pages [ 1384.865188] 0 pages in swap cache [ 1384.868644] Swap cache stats: add 0, delete 0, find 0/0 [ 1384.883013] Free swap = 0kB [ 1384.886064] Total swap = 0kB [ 1384.889094] 1965979 pages RAM [ 1384.894363] 0 pages HighMem/MovableOnly [ 1384.898365] 335868 pages reserved [ 1384.905266] 0 pages cma reserved 06:48:49 executing program 5: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400204) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) ioctl$SG_SET_TIMEOUT(r1, 0x2201, &(0x7f0000000080)=0x400000) mount(&(0x7f0000000200)=ANY=[@ANYBLOB='/tev/nullb0\x00'], &(0x7f0000000340)='./file0\x00', &(0x7f0000000100)='reiserfs\x00', 0x0, 0x0) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000000)={0x7ff, 0x5, 0xb000}, 0x4) [ 1384.971902] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 1385.009912] REISERFS warning (device nullb0): reiserfs_fill_super: Cannot allocate commit workqueue 06:48:49 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20601, 0x0) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_genetlink_get_family_id$l2tp(&(0x7f00000000c0)='l2tp\x00') sendmsg$L2TP_CMD_TUNNEL_MODIFY(r1, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x1c, r2, 0x1, 0x70bd27, 0x25dfdbfd, {}, [@L2TP_ATTR_MRU={0x6}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000001}, 0x10) setsockopt$IP_VS_SO_SET_DEL(0xffffffffffffffff, 0x0, 0x484, &(0x7f0000000040)={0x62, @empty, 0x4e21, 0x0, 'lblcr\x00', 0x3, 0x7ff, 0x67}, 0x2c) 06:48:49 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) write$FUSE_NOTIFY_DELETE(r4, &(0x7f0000000380)={0x3e, 0x6, 0x0, {0x3, 0x5, 0x15, 0x0, '/proc/self/net/pfkey\x00'}}, 0x3e) r5 = dup(r2) creat(&(0x7f0000000340)='./file0\x00', 0xd9) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r6 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000180)='/proc/self/net/pfkey\x00', 0x20000, 0x0) ioctl$VIDIOC_QUERYCTRL(r6, 0xc0445624, &(0x7f00000002c0)={0x4, 0x2, "8d597993c1408fc8a7077b8ba6efd785cf5859284eb502ef13f3b67584a26fd6", 0x0, 0x4, 0x9, 0x401, 0xd}) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r7 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) prctl$PR_GET_PDEATHSIG(0x2, &(0x7f00000001c0)) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r7, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r7, 0xae80, 0x0) ioctl$KVM_RUN(r7, 0xae80, 0x0) r8 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/avc/hash_stats\x00', 0x0, 0x0) setsockopt$inet_tcp_TCP_QUEUE_SEQ(r8, 0x6, 0x15, &(0x7f0000000040)=0x5, 0x4) 06:48:49 executing program 1: socket$inet_icmp_raw(0x2, 0x3, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = gettid() tkill(r3, 0x1000000000013) r4 = socket$inet6(0xa, 0x1000000000002, 0x0) r5 = socket$inet(0x2, 0x1, 0x0) connect$inet(r5, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r5, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r5, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r4, r5) fcntl$getownex(r5, 0x10, &(0x7f0000000080)={0x0, 0x0}) r7 = gettid() tkill(r7, 0x1000000000013) ioctl$DRM_IOCTL_GET_CLIENT(r1, 0xc0286405, &(0x7f00000000c0)={0x7dd3, 0x1, {0xffffffffffffffff}, {0xee00}, 0x8, 0x3}) sendmsg$nl_netfilter(r1, &(0x7f00000005c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000580)={&(0x7f0000000600)=ANY=[@ANYBLOB="480400000901010827bd7000fddbdf2500000009260190808d8ae6bc7daeddd2c101c62a9e4a00e0e4918a43cd0f6d13c53123e7e1a797423f192c43131d5da8b4e5da1f65b07a7277e75273b9a27dc0b4989b2d972f964ea37e0846f2a12afc21dc727f3ea59a088cc21b91751a26be724e93d0764c38bdb9f2640af48a86c1e09ece17909214096beeab123b2b20671f91c239ec23ab54d4b567b42f11152781dda6b750597994794758066edd9408002400", @ANYRES32=r3, @ANYBLOB="6fa0808c553827bbda98a080b45a1dbf01ecfba83a1d21cd11d2da6214453aeb8eb2d0e5723cbc052e467b990fc06659eb0633da2893cd78cd56a9cdec2106bf1785e990893ca8124095e3bdc2f3cc2ec72caaf08995e045acd650de8cbe5e1537fdf7e14a6da471a4197d7d492ef5663e80b08c38ad3c0fd49f240800820000020000000008008c00", @ANYRES32=r6, @ANYBLOB="0403148008006e00", @ANYRES32=r7, @ANYBLOB="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", @ANYRES32=r8, @ANYBLOB="0c005e00dd04000000000000"], 0x448}, 0x1, 0x0, 0x0, 0x20000010}, 0x8000) r9 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r10 = dup(r9) ioctl$PERF_EVENT_IOC_ENABLE(r10, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_SW_PARAMS(r10, 0xc0884113, &(0x7f0000000100)={0x0, 0x72, 0x1, 0x0, 0x2, 0xfff, 0x0, 0x9, 0x3, 0x4, 0x8, 0x5}) r11 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r11, 0x8912, 0x400200) r12 = dup(r11) ioctl$PERF_EVENT_IOC_ENABLE(r12, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r13 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/load\x00', 0x2, 0x0) write$selinux_load(r13, 0x0, 0x0) 06:48:49 executing program 3: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat(r1, &(0x7f0000000000)='./file0\x00', 0x8002, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(r2, 0x80dc5521, &(0x7f0000000100)=""/196) openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) 06:48:49 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r4) getsockopt$IP_VS_SO_GET_SERVICE(r4, 0x0, 0x483, &(0x7f0000000000), &(0x7f0000000180)=0x68) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x21, 0x0, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff], 0x0, 0x20420}) openat$zero(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/zero\x00', 0x404201, 0x0) r7 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r8 = dup(r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) r9 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r10 = dup(r9) ioctl$PERF_EVENT_IOC_ENABLE(r10, 0x8912, 0x400200) dup(r5) ioctl$KVM_RUN(r6, 0xae80, 0x0) ioctl$KVM_RUN(r6, 0xae80, 0x0) 06:48:49 executing program 3: r0 = syz_open_dev$media(&(0x7f0000000040)='/dev/media#\x00', 0x3, 0x501002) r1 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000100)='NLBL_UNLBL\x00') sendmsg$NLBL_UNLABEL_C_STATICADD(r0, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002dbd7000ffdbdf250300000008000400e000000208000400ffffffff14000600697036746e6c30000000000000004000000500010001000000"], 0x40}, 0x1, 0x0, 0x0, 0x8815}, 0x10) r2 = openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) write$P9_RREADLINK(r2, &(0x7f0000000000)={0x10, 0x17, 0x2, {0x7, './file0'}}, 0x10) [ 1385.626612] *** Guest State *** [ 1385.643115] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 06:48:49 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x44502, 0x0) [ 1385.669966] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1385.697309] CR3 = 0x00000000fffbc000 [ 1385.708255] RSP = 0x0000000000000fff RIP = 0x0000000000000000 [ 1385.731170] RFLAGS=0x00020422 DR7 = 0x0000000000000400 [ 1385.737816] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1385.749048] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1385.800086] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1385.808125] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1385.865381] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1385.898725] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1385.925071] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1385.956067] GDTR: limit=0x0000ffff, base=0x0000000000000000 06:48:50 executing program 3: prctl$PR_GET_PDEATHSIG(0x2, &(0x7f0000000000)) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) bind$isdn_base(r1, &(0x7f0000000040)={0x22, 0x8, 0x1f, 0x0, 0x4}, 0x6) openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) [ 1385.986564] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1386.023829] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1386.052890] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1386.102610] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1386.129115] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1386.159761] Interruptibility = 00000000 ActivityState = 00000000 [ 1386.187444] *** Host State *** [ 1386.199430] RIP = 0xffffffff8117a4e0 RSP = 0xffff888208957998 [ 1386.226147] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1386.250349] FSBase=00007fbd2ef8d700 GSBase=ffff8880aed00000 TRBase=fffffe0000034000 [ 1386.273763] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1386.291610] CR0=0000000080050033 CR3=00000002080cb000 CR4=00000000001426e0 [ 1386.325221] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff868018e0 [ 1386.345037] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1386.385145] *** Control State *** [ 1386.388645] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3 [ 1386.407550] EntryControls=0000d1ff ExitControls=002fefff [ 1386.414936] *** Guest State *** [ 1386.420915] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1386.444576] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1386.446114] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1386.451600] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1386.451608] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 1386.451614] reason=80000021 qualification=0000000000000000 [ 1386.451619] IDTVectoring: info=00000000 errcode=00000000 [ 1386.451623] TSC Offset = 0xfffffd17b495a333 [ 1386.451627] TPR Threshold = 0x00 [ 1386.451634] EPT pointer = 0x00000001fc46301e [ 1386.451646] Virtual processor ID = 0x0001 [ 1386.488722] CR3 = 0x00000000fffbc000 [ 1386.535565] RSP = 0x0000000000000fff RIP = 0x0000000000000000 [ 1386.553407] RFLAGS=0x00020422 DR7 = 0x0000000000000400 [ 1386.571127] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1386.589544] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1386.614112] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1386.637552] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1386.675015] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 06:48:50 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x501802, 0x0) r0 = gettid() tkill(r0, 0x1000000000013) r1 = msgget$private(0x0, 0x204) msgctl$IPC_STAT(r1, 0x2, &(0x7f00000002c0)=""/106) msgsnd(r1, &(0x7f0000000200)={0x0, "d8747d8c51fa316ffd7094b58ee8b50d018d34891bfefd0629ef7c316eedd5aebed0a8ccb3056f7ba80afb02c37a341b697dbdeeacc57d5a02acb4eeee9e9f4b1e5fd6f221d485ba622e678bc63dc1a891a70fa2bfdb0f2a23e4b09fcbab8417494c0491b73ba338b2c1ce35d7fbb885f1782445a47da48a8252309b76093686a08974342443e7685965a0a6dba4c0843c01a5c0a7de9885b38d653a79bd66f6208e00c577e59ea82c8cc031683efc1a053c408dcb8a25e8e474e420541cba0dc9c63585bff3be3bd434f2ce72a009cd64"}, 0xd9, 0x0) get_robust_list(r0, &(0x7f0000000180)=&(0x7f0000000140)={&(0x7f0000000040)={&(0x7f0000000000)}, 0x0, &(0x7f0000000100)={&(0x7f0000000080)}}, &(0x7f00000001c0)=0x18) [ 1386.683935] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1386.725227] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1386.738497] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1386.747105] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1386.760763] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1386.769197] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1386.781776] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1386.788415] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1386.802840] Interruptibility = 00000000 ActivityState = 00000000 [ 1386.812752] *** Host State *** [ 1386.816169] RIP = 0xffffffff8117a4e0 RSP = 0xffff8882070cf998 [ 1386.825850] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1386.834459] FSBase=00007fbd2ef49700 GSBase=ffff8880aed00000 TRBase=fffffe0000003000 [ 1386.845823] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1386.855697] CR0=0000000080050033 CR3=00000002080cb000 CR4=00000000001426e0 [ 1386.866542] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff868018e0 06:48:50 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$PERF_EVENT_IOC_QUERY_BPF(r4, 0xc008240a, &(0x7f0000000300)={0x4, 0x0, [0x0, 0x0, 0x0, 0x0]}) r5 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) clone(0x404000, &(0x7f0000000340)="93bf188ea971bb0bfeb16edbd1c5eedb872f421bcf0e58ec53ece92e614de0173b53c301eda9d6c44e7a8840fe92f6638db567ecae85d5415fc855773674f40ac7c4022ba78e9e3eeb81df499ab4f04b4997cc", &(0x7f00000003c0), &(0x7f0000000400), &(0x7f0000000440)="5acf58f4bb74cb53aa413dec909c75553781669273a0e21f67e11069a564b4ca400d61e95907fb87d78cec025a703a17e1d3ac21dc0585f2f4b042dc48266c98c7c6c3491419063e9a5026d3fcc4e08fc743d175d17408c941759b2d49f17f82526036dff84a57a2503e04e64e56cf4548868916b6a7bf2e171655d0293eb8df754b5d61095108d06d184a496a09349ded891c04da66146bd49f5e99aba7412d5afe32380dab4434cf3f4a2a79c98c87be090c2704afb8159718441ee033f936ce688fea71a298dba3aaedfd461c5e3b") getsockopt$inet_sctp_SCTP_AUTOCLOSE(r5, 0x84, 0x4, &(0x7f0000000240), &(0x7f0000000280)=0x4) ioctl$sock_SIOCGPGRP(r1, 0x8904, &(0x7f0000000080)) ioctl$DRM_IOCTL_GEM_FLINK(0xffffffffffffffff, 0xc008640a, &(0x7f00000001c0)={0x0}) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000200)={r6}) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) ioctl$PPPIOCGL2TPSTATS(r1, 0x80487436, &(0x7f00000000c0)="bfc75e87ec7a5f80d805f5e8836ba3afe49b55669b1ae19c8ef51731cd30037b1981f6bfb2e150ab9ef73bdc41b2d96ee43d2ec4e1738a745b8f2417cd64051f8b2eacd587e10df260d27bcce8934fa756a8d1108c4eb6bac84f3aeacdee10e05303613020076dfa2647db01302b18751b9a619fb7a95e494932a8cd20bd42b6") [ 1386.895249] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1386.917025] *** Control State *** [ 1386.931141] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3 06:48:50 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_emit_ethernet(0x3e, &(0x7f0000000000)={@broadcast, @random="96c1e9574b31", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, @time_exceeded={0x5, 0x0, 0x0, 0x0, 0x0, 0x8, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast1, @remote}}}}}}, 0x0) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r1, 0xc00c642e, &(0x7f0000000200)={0x0, 0x0, r1}) ioctl$DRM_IOCTL_GEM_OPEN(r1, 0xc010640b, &(0x7f0000000240)={0x0, 0x0, 0x6957}) ioctl$DRM_IOCTL_GEM_FLINK(r1, 0xc008640a, &(0x7f0000000280)={r2, r3}) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) accept4$tipc(r6, &(0x7f00000002c0)=@id, &(0x7f0000000300)=0x10, 0x80800) r7 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) r8 = dup(r7) r9 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000080)='NLBL_UNLBL\x00') sendmsg$NLBL_UNLABEL_C_ACCEPT(r8, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000180)={&(0x7f00000000c0)={0x8c, r9, 0x1, 0x70bd28, 0x25dfdbff, {}, [@NLBL_UNLABEL_A_SECCTX={0x27, 0x7, 'system_u:object_r:ld_so_cache_t:s0\x00'}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @loopback}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'sit0\x00'}, @NLBL_UNLABEL_A_SECCTX={0x2a, 0x7, 'system_u:object_r:selinux_config_t:s0\x00'}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @empty}]}, 0x8c}, 0x1, 0x0, 0x0, 0x44000}, 0x840) [ 1386.953969] EntryControls=0000d1ff ExitControls=002fefff [ 1386.962978] cgroup: cgroup2: unknown option "º" [ 1386.967778] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1386.993038] cgroup: cgroup2: unknown option "º" [ 1387.007165] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1387.021285] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 1387.040695] reason=80000021 qualification=0000000000000000 [ 1387.068620] IDTVectoring: info=00000000 errcode=00000000 [ 1387.081678] TSC Offset = 0xfffffd174b721c3a [ 1387.098423] TPR Threshold = 0x00 [ 1387.111322] EPT pointer = 0x00000001fc46201e [ 1387.116168] Virtual processor ID = 0x0002 06:48:51 executing program 5: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080)='batadv\x00') sendmsg$BATADV_CMD_GET_GATEWAYS(r1, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0xa030800}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x1c, r2, 0x400, 0x70bd26, 0x25dfdbfc, {}, [@BATADV_ATTR_BONDING_ENABLED={0x5, 0x2d, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x880}, 0x40080) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000200)=@nullb='/dev/nullb0\x00', &(0x7f0000000340)='./file0\x00', &(0x7f0000000100)='reiserfs\x00', 0x0, 0x0) 06:48:51 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) connect$nfc_llcp(r1, &(0x7f0000000080)={0x27, 0x1, 0x0, 0x2, 0x0, 0xb, "28d0a752da3f0b444fb083c1a35047579d4a2a0b42cc12e6baee43077734915506142ed5ba99a3610f5669408e3c0dae2129b75f53bdf2410c334898f6ea6e", 0x2e}, 0x60) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) 06:48:51 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_emit_ethernet(0x2e, &(0x7f00000000c0)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @random="96c1e9574b31", @val={@void, {0x8100, 0x7, 0x1, 0x2}}, {@arp={0x806, @ether_ipv4={0x1, 0x800, 0x6, 0x4, 0x0, @dev={[], 0xa}, @rand_addr=0x1, @empty, @rand_addr=0xae}}}}, 0x0) connect$unix(0xffffffffffffffff, &(0x7f0000000000)=@file={0x0, './file0\x00'}, 0x6e) [ 1387.208813] cgroup: cgroup2: unknown option "º" [ 1387.225366] cgroup: cgroup2: unknown option "º" [ 1387.317173] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 06:48:52 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(r2, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) r3 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000100)='/selinux/status\x00', 0x0, 0x0) bind$tipc(r3, &(0x7f0000000140)=@id={0x1e, 0x3, 0x0, {0x4e21, 0x3}}, 0x10) connect$inet(r2, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r2, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r1, r2) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/consoles\x00', 0x0, 0x0) r5 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200)='TIPC\x00') sendmsg$TIPC_CMD_GET_BEARER_NAMES(r4, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x1c, r5, 0x400, 0x70bd2b, 0x25dfdbfc, {}, ["", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x50}, 0x20000811) ioctl$sock_SIOCGIFVLAN_SET_VLAN_NAME_TYPE_CMD(r1, 0x8982, &(0x7f0000000040)={0x6, 'bond_slave_1\x00', {0x5}, 0xfff}) r6 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r7 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/load\x00', 0x2, 0x0) write$selinux_load(r7, 0x0, 0x0) 06:48:52 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_emit_ethernet(0x17e, &(0x7f0000000040)={@broadcast, @random="96c1e9574b31", @void, {@ipv4={0x800, @igmp={{0x21, 0x4, 0x3, 0x9, 0x170, 0x64, 0x0, 0x57, 0x2, 0x0, @rand_addr=0x7, @empty, {[@noop, @cipso={0x86, 0xe, 0x1, [{0x0, 0x5, "de36fb"}, {0x0, 0x3, "f4"}]}, @timestamp={0x44, 0x24, 0x51, 0x0, 0x1, [0x79, 0x3, 0x0, 0x7, 0x3, 0x2, 0x0, 0x7fffffff]}, @ssrr={0x89, 0xb, 0xd2, [@multicast2, @broadcast]}, @ssrr={0x89, 0xb, 0x96, [@initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2]}, @noop, @rr={0x7, 0xb, 0x9b, [@multicast2, @loopback]}, @timestamp_prespec={0x44, 0x14, 0x87, 0x3, 0x5, [{@dev={0xac, 0x14, 0x14, 0x29}, 0x2}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x1315}]}, @lsrr={0x83, 0x7, 0xda, [@multicast1]}]}}, {0x14, 0x3, 0x0, @loopback, "18bcd2fc1405d8436f01511f2fe5f03ef4205285a5b6eb5c35bf6be19cfd86f47471a23473c2e67d22a02a73576294844413defe068a76b21c17a5dc7f9de524d22c734bd2fed42b97d1f04c9646be805ecc146968166deeee395535d714bf4114dd2c59e7730fbb8763fc2a6644c9a2f293f47c77c87fd0b4e1b26fdaa820e983f5b1503ac3198997e0189d138995d4cf172459c389d59372b33e4d43772710e6284fcd76c82bdde97d600402d52f7e37424b29514e92b6e56f1df39945171a147b00eb046db0ec5ee6e84f6e21e848bbde72bad674d7d15f6fd8a5294c6b6c6757ffae"}}}}}, 0x0) 06:48:52 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) setsockopt$bt_hci_HCI_TIME_STAMP(r3, 0x0, 0x3, &(0x7f0000000000)=0x5, 0x4) 06:48:52 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r0) r1 = syz_open_dev$vcsa(&(0x7f0000000080)='/dev/vcsa#\x00', 0x8078, 0x201000) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x4001fc) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) 06:48:52 executing program 5: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) setsockopt$TIPC_MCAST_REPLICAST(r3, 0x10f, 0x86) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r1, 0xc0096616, &(0x7f0000000000)={0x3, [0x0, 0x0, 0x0]}) mount(&(0x7f0000000140)=ANY=[@ANYBLOB="2f64e40d148c5d9aa06c300f287605f0659bd7ba46918cf4d7138b2922ce6a83bb007648d8e142046553047995c74bad0fe5e662f8e49fa99767f758b10c1aaf0511b03d5421df3b7391d519305cbe1981893b013ad36f23e63114e2c92b582b0892bbee0244192cc9468a66cac8bee492873962e1e13de8ae8c2420ceaf0000000049506488ad6b9aad50fd924d4f7a0129817b3181bcf0d763912cd579092b29e25246cd7a2609975b5a7d153d7d55b2dea3ffb335cf"], &(0x7f0000000340)='./file0\x00', &(0x7f0000000100)='reiserfs\x00', 0x0, 0x0) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) r6 = mmap$binder(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x1, 0x11, r1, 0xfffffffffffffffc) r7 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r8 = dup(r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) r9 = mmap$binder(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x1, 0x11, r8, 0x1) r10 = mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, 0xffffffffffffffff, 0x0) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f00000009c0)={0x64, 0x0, &(0x7f0000000900)=[@free_buffer={0x40086303, r10}, @increfs_done, @reply={0x40406301, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r11 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r12 = dup(r11) ioctl$PERF_EVENT_IOC_ENABLE(r12, 0x8912, 0x400200) ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f0000000700)={0x100, 0x0, &(0x7f00000005c0)=[@acquire_done={0x40106309, 0x1}, @free_buffer={0x40086303, r6}, @reply_sg={0x40486312, {0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x68, 0x18, &(0x7f0000000080)={@flat=@binder={0x73622a85, 0x0, 0x3}, @ptr={0x70742a85, 0x1, &(0x7f0000000200)=""/161, 0xa1, 0x1, 0x5}, @ptr={0x70742a85, 0x0, &(0x7f0000000380)=""/172, 0xac, 0x1}}, &(0x7f00000002c0)={0x0, 0x18, 0x40}}, 0x1000}, @free_buffer={0x40086303, r9}, @free_buffer={0x40086303, r10}, @acquire_done={0x40106309, 0x1}, @acquire_done={0x40106309, 0x1}, @reply_sg={0x40486312, {0x2, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x58, 0x18, &(0x7f0000000540)={@fd={0x66642a85, 0x0, r12}, @ptr={0x70742a85, 0x0, &(0x7f0000000440)=""/250, 0xfa, 0x2, 0x10}, @flat=@handle={0x73682a85, 0x200, 0x1}}, &(0x7f0000000300)={0x0, 0x18, 0x40}}, 0x40}, @release={0x40046306, 0x2}], 0x32, 0x0, &(0x7f00000006c0)="83940b020d906f6d742c374953758f13fff60f842db0ceb9b97c4e79806a62ee5226b2e16e85ae4d4ccb3a5d759d115a7981"}) 06:48:52 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = syz_open_procfs(0x0, &(0x7f0000000040)='attr/exec\x00') ioctl$VIDIOC_S_SELECTION(r1, 0xc040565f, &(0x7f0000000080)={0x4, 0x0, 0x1, {0xe44, 0x9, 0x6, 0x2}}) r2 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) syz_emit_ethernet(0x3e, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffff96c1e9574b310800450000300000000000019078ac1e0001e0000001050090780000080045000000000000000000f84240b37d11a5157ad4"], 0x0) [ 1388.153661] cgroup: cgroup2: unknown option "º" [ 1388.198246] cgroup: cgroup2: unknown option "º" [ 1388.226282] syz-executor.1: vmalloc: allocation failure: 0 bytes, mode:0x14000c0(GFP_KERNEL), nodemask=(null) [ 1388.238495] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1388.244445] CPU: 0 PID: 8916 Comm: syz-executor.1 Not tainted 4.14.167-syzkaller #0 [ 1388.252261] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1388.261625] Call Trace: [ 1388.264223] dump_stack+0x142/0x197 [ 1388.268053] warn_alloc.cold+0x96/0x1af [ 1388.272060] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 1388.276938] ? lock_downgrade+0x740/0x740 [ 1388.281113] ? avc_has_perm+0x2df/0x4b0 [ 1388.285115] __vmalloc_node_range+0x3c3/0x6a0 [ 1388.289626] ? trace_hardirqs_on+0x10/0x10 [ 1388.293884] vmalloc+0x46/0x50 [ 1388.297267] ? sel_write_load+0x1a0/0x1050 [ 1388.301783] sel_write_load+0x1a0/0x1050 [ 1388.305869] ? save_trace+0x290/0x290 [ 1388.310191] ? sel_read_bool+0x240/0x240 [ 1388.314267] ? trace_hardirqs_on+0x10/0x10 [ 1388.318520] ? debug_smp_processor_id+0x1c/0x20 [ 1388.323205] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1388.328261] __vfs_write+0x105/0x6b0 [ 1388.331990] ? sel_read_bool+0x240/0x240 [ 1388.336206] ? kernel_read+0x120/0x120 [ 1388.342414] ? __lock_is_held+0xb6/0x140 [ 1388.346489] ? check_preemption_disabled+0x3c/0x250 [ 1388.351617] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1388.357187] ? rcu_read_lock_sched_held+0x110/0x130 [ 1388.362222] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 1388.366998] ? __sb_start_write+0x153/0x2f0 [ 1388.371351] vfs_write+0x198/0x500 [ 1388.374922] SyS_write+0xfd/0x230 [ 1388.378409] ? SyS_read+0x230/0x230 [ 1388.382062] ? do_syscall_64+0x53/0x640 [ 1388.386223] ? SyS_read+0x230/0x230 [ 1388.389984] do_syscall_64+0x1e8/0x640 [ 1388.394147] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1388.399013] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1388.404214] RIP: 0033:0x45b349 [ 1388.407533] RSP: 002b:00007f76bb2b4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1388.415254] RAX: ffffffffffffffda RBX: 00007f76bb2b56d4 RCX: 000000000045b349 [ 1388.423236] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000009 [ 1388.430518] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1388.437805] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1388.445090] R13: 0000000000000cb1 R14: 00000000004cd905 R15: 000000000075bf2c [ 1388.494449] Mem-Info: [ 1388.497135] active_anon:442323 inactive_anon:211 isolated_anon:0 [ 1388.497135] active_file:3170 inactive_file:7075 isolated_file:0 [ 1388.497135] unevictable:0 dirty:134 writeback:0 unstable:0 [ 1388.497135] slab_reclaimable:17810 slab_unreclaimable:147913 [ 1388.497135] mapped:58656 shmem:285 pagetables:33228 bounce:0 [ 1388.497135] free:858470 free_pcp:324 free_cma:0 [ 1388.535098] Node 0 active_anon:1616720kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208956kB dirty:4kB writeback:0kB shmem:1056kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 995328kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1388.568929] Node 1 active_anon:152572kB inactive_anon:80kB active_file:12632kB inactive_file:28292kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:25468kB dirty:532kB writeback:0kB shmem:84kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1388.603493] Node 0 DMA free:10464kB min:216kB low:268kB high:320kB active_anon:4508kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:96kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1388.633032] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 1388.638137] Node 0 DMA32 free:40588kB min:36380kB low:45472kB high:54564kB active_anon:1612212kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB writepending:4kB present:3129332kB managed:2634344kB mlocked:0kB kernel_stack:20864kB pagetables:53608kB bounce:0kB free_pcp:416kB local_pcp:156kB free_cma:0kB [ 1388.667746] lowmem_reserve[]: 0 0 0 0 0 [ 1388.671960] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1388.698014] lowmem_reserve[]: 0 0 0 0 0 [ 1388.702096] Node 1 Normal free:3384384kB min:53508kB low:66884kB high:80260kB active_anon:152472kB inactive_anon:80kB active_file:12632kB inactive_file:28292kB unevictable:0kB writepending:532kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:26656kB pagetables:79120kB bounce:0kB free_pcp:1236kB local_pcp:556kB free_cma:0kB [ 1388.732942] lowmem_reserve[]: 0 0 0 0 0 [ 1388.737081] Node 0 DMA: 16*4kB (UME) 16*8kB (UE) 14*16kB (UME) 16*32kB (UME) 17*64kB (U) 6*128kB (UE) 6*256kB (UE) 2*512kB (ME) 3*1024kB (UME) 1*2048kB (E) 0*4096kB = 10464kB [ 1388.752949] Node 0 DMA32: 109*4kB (EH) 922*8kB (UEH) 845*16kB (UMEH) 353*32kB (UMH) 126*64kB (UMH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 40692kB [ 1388.768058] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1388.779361] Node 1 Normal: 138*4kB (UME) 27*8kB (ME) 24*16kB (UME) 35*32kB (UME) 21*64kB (ME) 74*128kB (UME) 87*256kB (UME) 47*512kB (UME) 11*1024kB (UME) 2*2048kB (UM) 808*4096kB (M) = 3384352kB [ 1388.797085] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1388.806443] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1388.815087] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1388.824051] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1388.832783] 10528 total pagecache pages [ 1388.836834] 0 pages in swap cache [ 1388.840365] Swap cache stats: add 0, delete 0, find 0/0 [ 1388.846054] Free swap = 0kB [ 1388.849067] Total swap = 0kB [ 1388.852170] 1965979 pages RAM [ 1388.855753] 0 pages HighMem/MovableOnly [ 1388.859860] 335868 pages reserved [ 1388.863920] 0 pages cma reserved 06:48:53 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @multicast2}, 0x10) r3 = dup(r2) ioctl$VIDIOC_S_STD(r3, 0x40085618, &(0x7f0000000040)=0x1c00020) r4 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000180)='/dev/dlm_plock\x00', 0x80, 0x0) r5 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r5, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) r6 = socket$inet(0x10, 0x2, 0x0) ioctl$sock_ifreq(r6, 0x89f0, &(0x7f0000000180)={'ip6_vti0\x00', @ifru_flags}) r7 = dup2(r5, r6) r8 = socket$inet_sctp(0x2, 0x0, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r8, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f0000000280)=ANY=[@ANYRES32=r9, @ANYBLOB="36000000ac6a82d2b5acd821e04e0478a474e9c2be3b387e029887626c7e3cf456672c29c8210efff7d4d24bdf54e0b4d427ae9a6873dd3c164e"], 0x0) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r7, 0x84, 0x71, &(0x7f00000001c0)={r9, 0xffffffff}, &(0x7f0000000340)=0x8) setsockopt$inet_sctp6_SCTP_AUTH_KEY(r4, 0x84, 0x17, &(0x7f00000001c0)=ANY=[@ANYRES32=r9, @ANYBLOB="cdb2f0e4"], 0x8) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r10 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_RUN(r10, 0xae80, 0x0) ioctl$KVM_RUN(r10, 0xae80, 0x0) r11 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r12 = dup(r11) ioctl$PERF_EVENT_IOC_ENABLE(r12, 0x8912, 0x400200) setsockopt$inet6_tcp_TLS_TX(r12, 0x6, 0x1, &(0x7f0000000000)=@gcm_128={{0x303}, "759ef799a2dcd309", "0e582c82b06f9bc4b30163e4f0a8423b", "74ed6126", "5237b596568c6d21"}, 0x28) 06:48:53 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f00000001c0)={{{@in=@local, @in=@empty}}, {{@in6=@local}, 0x0, @in=@local}}, &(0x7f0000000080)=0xe8) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) 06:48:53 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) pipe2(&(0x7f0000000140)={0xffffffffffffffff}, 0x800) ioctl$RTC_ALM_READ(r2, 0x80247008, &(0x7f0000000180)) ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r1, 0xc01064b5, &(0x7f00000000c0)={&(0x7f0000000080)=[0x0], 0x1}) ioctl$DRM_IOCTL_MODE_SETPLANE(r1, 0xc03064b7, &(0x7f0000000100)={r3, 0x200, 0x81, 0x5, 0x8, 0x3, 0x5, 0x4, 0x6, 0x401, 0x9, 0x1}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_emit_ethernet(0x3e, &(0x7f0000000000)={@broadcast, @random="96c1e9574b31", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, @time_exceeded={0x5, 0x0, 0x0, 0x0, 0x0, 0x8, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast1, @remote}}}}}}, 0x0) openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nvme-fabrics\x00', 0x2080, 0x0) 06:48:53 executing program 5: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000080)=ANY=[@ANYBLOB="2f0064300000000000a664e24e5900"], &(0x7f0000000000)='./file0\x00', &(0x7f0000000100)='nilfs2\x00', 0x4000, 0x0) 06:48:53 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/load\x00', 0x2, 0x0) write$selinux_load(r2, 0x0, 0x0) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$SCSI_IOCTL_DOORLOCK(r4, 0x5380) 06:48:53 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$PNPIPE_ENCAP(r1, 0x113, 0x1, &(0x7f0000000000), 0x4) [ 1389.755911] syz-executor.1: vmalloc: allocation failure: 0 bytes, mode:0x14000c0(GFP_KERNEL), nodemask=(null) [ 1389.781358] cgroup: cgroup2: unknown option "º" [ 1389.793041] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1389.798608] CPU: 0 PID: 8943 Comm: syz-executor.1 Not tainted 4.14.167-syzkaller #0 [ 1389.806536] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1389.816147] Call Trace: [ 1389.818766] dump_stack+0x142/0x197 [ 1389.822434] warn_alloc.cold+0x96/0x1af [ 1389.826434] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 1389.831487] ? lock_downgrade+0x740/0x740 [ 1389.835665] ? avc_has_perm+0x2df/0x4b0 [ 1389.839800] __vmalloc_node_range+0x3c3/0x6a0 [ 1389.844321] ? trace_hardirqs_on+0x10/0x10 [ 1389.848584] vmalloc+0x46/0x50 [ 1389.851798] ? sel_write_load+0x1a0/0x1050 [ 1389.856055] sel_write_load+0x1a0/0x1050 [ 1389.860133] ? save_trace+0x290/0x290 [ 1389.863954] ? sel_read_bool+0x240/0x240 [ 1389.868030] ? trace_hardirqs_on+0x10/0x10 [ 1389.872419] ? debug_smp_processor_id+0x1c/0x20 [ 1389.878062] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1389.883017] __vfs_write+0x105/0x6b0 [ 1389.886768] ? sel_read_bool+0x240/0x240 [ 1389.890970] ? kernel_read+0x120/0x120 [ 1389.894872] ? __lock_is_held+0xb6/0x140 [ 1389.898944] ? check_preemption_disabled+0x3c/0x250 [ 1389.903998] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1389.909474] ? rcu_read_lock_sched_held+0x110/0x130 [ 1389.914516] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 1389.919537] ? __sb_start_write+0x153/0x2f0 [ 1389.923881] vfs_write+0x198/0x500 [ 1389.927655] SyS_write+0xfd/0x230 [ 1389.931133] ? SyS_read+0x230/0x230 [ 1389.934776] ? do_syscall_64+0x53/0x640 [ 1389.939026] ? SyS_read+0x230/0x230 [ 1389.942664] do_syscall_64+0x1e8/0x640 [ 1389.946577] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1389.951436] entry_SYSCALL_64_after_hwframe+0x42/0xb7 06:48:53 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_genetlink_get_family_id$nl80211(&(0x7f0000000040)='nl80211\x00') syz_emit_ethernet(0x3e, &(0x7f0000000000)={@broadcast, @random="96c1e9574b31", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, @time_exceeded={0x5, 0x0, 0x0, 0x0, 0x0, 0x8, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast1, @remote}}}}}}, 0x0) 06:48:53 executing program 3: r0 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nvme-fabrics\x00', 0x408040, 0x0) r1 = getuid() setreuid(0xee00, r1) r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0) fstat(r2, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$PIO_SCRNMAP(r0, 0x4b41, &(0x7f0000000140)="ada9d841f9c1b0da859a89494cc93273e9195a05296d95c7501eed37c1d891d8c246fadefc883d1c7cc9985f06aa5c8a05ecd4f9c04d421e2349e7ca4ddde98fd20900e97ef7234a826cfa3847116bb239e9f0f7c71e5c0b84ff2b7b0678773108aa0e7bfecaa2a6af39c475d79117197de9c9c9784d5fe10280eab3a2829dcf16c52ee5eccbf6c5c7a1867fc3f4c09da653c8e44d838e4e0d2d65d0356114ec5cfa6ee3b05c7b6713dc52471ff671ead228b889e8ee018b89d33a52ef19240d394ae38d6e416db467ec9e1358e8ef7b") setregid(r3, 0x0) fchownat(r0, &(0x7f0000000040)='./file0\x00', r1, r3, 0x800) openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0xc4240, 0x0) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) ioctl$SNDCTL_DSP_SPEED(r5, 0xc0045002, &(0x7f0000000240)=0x1) [ 1389.956637] RIP: 0033:0x45b349 [ 1389.959830] RSP: 002b:00007f76bb2b4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1389.967669] RAX: ffffffffffffffda RBX: 00007f76bb2b56d4 RCX: 000000000045b349 [ 1389.974976] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005 [ 1389.982265] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1389.989817] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1389.997098] R13: 0000000000000cb1 R14: 00000000004cd905 R15: 000000000075bf2c [ 1390.030630] cgroup: cgroup2: unknown option "º" [ 1390.085065] Mem-Info: [ 1390.088216] active_anon:442356 inactive_anon:208 isolated_anon:0 [ 1390.088216] active_file:3171 inactive_file:7085 isolated_file:0 [ 1390.088216] unevictable:0 dirty:175 writeback:0 unstable:0 [ 1390.088216] slab_reclaimable:17828 slab_unreclaimable:147977 [ 1390.088216] mapped:58657 shmem:285 pagetables:33315 bounce:0 [ 1390.088216] free:858157 free_pcp:357 free_cma:0 06:48:54 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_emit_ethernet(0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa080045000028000000000001a878ac1414aae00000010e0090780043005a0000040700000008fffffffc"], 0x0) 06:48:54 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x40000, 0x0) [ 1390.128802] Node 0 active_anon:1616696kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208956kB dirty:4kB writeback:0kB shmem:1056kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 995328kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes 06:48:54 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) prlimit64(0x0, 0xe, 0x0, 0x0) pipe2(&(0x7f0000001180), 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)) r2 = getpid() sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) pipe(&(0x7f0000000340)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0) read(r5, &(0x7f0000000040)=""/11, 0xff9b) r6 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r7 = dup(r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) r8 = socket$nl_generic(0x10, 0x3, 0x10) r9 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000100)='SEG6\x00') sendmsg$SEG6_CMD_SETHMAC(r8, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="2c000001", @ANYRES16=r9, @ANYBLOB="31ad000000000000000001000000050005000000000008000300100000000500060000000000"], 0x2c}}, 0x0) sendmsg$SEG6_CMD_SETHMAC(r7, &(0x7f0000001280)={&(0x7f0000001140)={0x10, 0x0, 0x0, 0x1000214}, 0xc, &(0x7f0000001240)={&(0x7f00000011c0)={0x50, r9, 0x8, 0x70bd29, 0x25dfdbfc, {}, [@SEG6_ATTR_HMACKEYID={0x8}, @SEG6_ATTR_ALGID={0x5, 0x6, 0x7}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x9}, @SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x4}, @SEG6_ATTR_SECRET={0x8, 0x4, [0xa000]}, @SEG6_ATTR_SECRET={0x14, 0x4, [0x5, 0x1, 0x80000000, 0x8]}]}, 0x50}, 0x1, 0x0, 0x0, 0x8000}, 0x1) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) clock_gettime(0x0, &(0x7f0000000380)={0x0, 0x0}) sched_setattr(0x0, &(0x7f0000000400)={0x30, 0x1}, 0x0) pselect6(0x40, &(0x7f0000000100)={0x0, 0x0, 0x3}, 0x0, &(0x7f0000000140)={0x1b4}, &(0x7f0000000200)={0x0, r10+30000000}, 0x0) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) socket(0x10, 0x3, 0xc) write(0xffffffffffffffff, &(0x7f0000000000)="1f0000000104ff00fd4354c007110000f30501000a000100010423dcffdf", 0x1e) ptrace$getregset(0x4204, 0x0, 0x2, &(0x7f00000000c0)={&(0x7f0000000140)=""/4090, 0xffa}) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) faccessat(r1, &(0x7f0000000080)='./file1\x00', 0x100, 0x1800) [ 1390.219864] Node 1 active_anon:152828kB inactive_anon:68kB active_file:12736kB inactive_file:28432kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:25772kB dirty:696kB writeback:0kB shmem:84kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1390.255942] Node 0 DMA free:10464kB min:216kB low:268kB high:320kB active_anon:4508kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:96kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1390.283846] lowmem_reserve[]: 0 2569 2569 2569 2569 06:48:54 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) r0 = creat(&(0x7f0000000000)='./file0\x00', 0x86) ioctl$FBIOGET_CON2FBMAP(r0, 0x460f, &(0x7f0000000040)={0x12}) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$RTC_SET_TIME(r4, 0x4024700a, &(0x7f0000000240)={0x3a, 0x1a, 0x7, 0x10, 0x0, 0x80000000, 0x6, 0x7a, 0xffffffffffffffff}) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r0, 0xc00c642d, &(0x7f0000000080)={0x0, 0x80000, r2}) ioctl$DRM_IOCTL_GET_UNIQUE(r5, 0xc0106401, &(0x7f0000000200)={0xc8, &(0x7f0000000100)=""/200}) [ 1390.296183] Node 0 DMA32 free:38592kB min:36380kB low:45472kB high:54564kB active_anon:1612188kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB writepending:4kB present:3129332kB managed:2634344kB mlocked:0kB kernel_stack:20864kB pagetables:53608kB bounce:0kB free_pcp:428kB local_pcp:160kB free_cma:0kB [ 1390.376037] lowmem_reserve[]: 0 0 0 0 0 [ 1390.380422] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1390.412303] lowmem_reserve[]: 0 0 0 0 0 [ 1390.432062] Node 1 Normal free:3381740kB min:53508kB low:66884kB high:80260kB active_anon:153228kB inactive_anon:68kB active_file:12736kB inactive_file:28432kB unevictable:0kB writepending:696kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:27008kB pagetables:79468kB bounce:0kB free_pcp:1292kB local_pcp:732kB free_cma:0kB [ 1390.471431] cgroup: cgroup2: unknown option "º" [ 1390.492588] lowmem_reserve[]: 0 0 0 0 0 [ 1390.497272] Node 0 DMA: 16*4kB (UME) 16*8kB (UE) 14*16kB (UME) 16*32kB (UME) 17*64kB (U) 6*128kB (UE) 6*256kB (UE) 2*512kB (ME) 3*1024kB (UME) 1*2048kB (E) 0*4096kB = 10464kB [ 1390.514607] Node 0 DMA32: 110*4kB (UEH) 505*8kB (UEH) 910*16kB (UMEH) 354*32kB (UMH) 126*64kB (UMH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 38432kB [ 1390.531360] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1390.542591] Node 1 Normal: 103*4kB (UME) 3*8kB (UME) 3*16kB (UE) 6*32kB (UE) 6*64kB (UME) 48*128kB (UME) 84*256kB (UME) 50*512kB (UME) 11*1024kB (UME) 2*2048kB (UM) 808*4096kB (M) = 3379236kB [ 1390.561011] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1390.570412] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1390.579324] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1390.601085] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1390.609975] 10576 total pagecache pages [ 1390.619844] 0 pages in swap cache [ 1390.623609] Swap cache stats: add 0, delete 0, find 0/0 [ 1390.647169] Free swap = 0kB 06:48:54 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) ioctl$KVM_GET_REGS(r6, 0x8090ae81, &(0x7f0000000300)) r7 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r8 = dup(r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040)='nl80211\x00') sendmsg$NL80211_CMD_REQ_SET_REG(r8, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, r9, 0x100, 0x70bd2c, 0x25dfdbfd, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40a34ddf088212dd}, 0x40c5) ioctl$KVM_RUN(r4, 0xae80, 0x0) 06:48:54 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) r2 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/avc/hash_stats\x00', 0x0, 0x0) ioctl$SNDCTL_DSP_SETDUPLEX(r2, 0x5016, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$PERF_EVENT_IOC_RESET(r4, 0x2403, 0x3ff) syz_emit_ethernet(0x3e, &(0x7f0000000000)={@broadcast, @random="96c1e9574b31", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, @time_exceeded={0x5, 0x0, 0x0, 0x0, 0x0, 0x8, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast1, @remote}}}}}}, 0x0) 06:48:54 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$RTC_VL_CLR(r1, 0x7014) [ 1390.659075] Total swap = 0kB [ 1390.664774] 1965979 pages RAM [ 1390.670651] 0 pages HighMem/MovableOnly [ 1390.677733] 335868 pages reserved [ 1390.688088] 0 pages cma reserved 06:48:54 executing program 5: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0) ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f0000000080)) r2 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) ioctl$sock_inet_tcp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000000)) mount(&(0x7f0000000200)=@nullb='/dev/nullb0\x00', &(0x7f0000000340)='./file0\x00', &(0x7f0000000100)='reiserfs\x00', 0x0, 0x0) 06:48:54 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) r5 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer\x00', 0x90000, 0x0) getpeername$llc(r5, &(0x7f0000000040)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast}, &(0x7f00000001c0)=0x49) r6 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r7 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/load\x00', 0x2, 0x0) write$selinux_load(r7, 0x0, 0x0) 06:48:54 executing program 3: r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) ioctl$SNDCTL_DSP_STEREO(r0, 0xc0045003, &(0x7f0000000000)=0x1) 06:48:54 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) fcntl$setflags(r1, 0x2, 0x0) [ 1390.957507] syz-executor.1: vmalloc: allocation failure: 0 bytes, mode:0x14000c0(GFP_KERNEL), nodemask=(null) [ 1390.991858] syz-executor.1 cpuset=syz1 mems_allowed=0-1 06:48:55 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) personality(0x400000) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_emit_ethernet(0x3e, &(0x7f0000000000)={@broadcast, @random="96c1e9574b31", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, @time_exceeded={0x5, 0x0, 0x0, 0x0, 0x0, 0x8, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast1, @remote}}}}}}, 0x0) [ 1391.061558] CPU: 1 PID: 9025 Comm: syz-executor.1 Not tainted 4.14.167-syzkaller #0 [ 1391.069528] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1391.078908] Call Trace: [ 1391.081545] dump_stack+0x142/0x197 [ 1391.085200] warn_alloc.cold+0x96/0x1af [ 1391.089826] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 1391.094780] ? lock_downgrade+0x740/0x740 [ 1391.099069] ? avc_has_perm+0x2df/0x4b0 [ 1391.103088] __vmalloc_node_range+0x3c3/0x6a0 [ 1391.107706] ? trace_hardirqs_on+0x10/0x10 [ 1391.112368] vmalloc+0x46/0x50 [ 1391.115719] ? sel_write_load+0x1a0/0x1050 [ 1391.119972] sel_write_load+0x1a0/0x1050 [ 1391.124049] ? save_trace+0x290/0x290 [ 1391.127874] ? sel_read_bool+0x240/0x240 [ 1391.131946] ? trace_hardirqs_on+0x10/0x10 [ 1391.136483] ? debug_smp_processor_id+0x1c/0x20 [ 1391.141167] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1391.146325] __vfs_write+0x105/0x6b0 [ 1391.150050] ? sel_read_bool+0x240/0x240 [ 1391.154126] ? kernel_read+0x120/0x120 [ 1391.158039] ? __lock_is_held+0xb6/0x140 [ 1391.162116] ? check_preemption_disabled+0x3c/0x250 [ 1391.167162] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1391.172800] ? rcu_read_lock_sched_held+0x110/0x130 [ 1391.178102] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 1391.182876] ? __sb_start_write+0x153/0x2f0 [ 1391.187245] vfs_write+0x198/0x500 [ 1391.190893] SyS_write+0xfd/0x230 [ 1391.194368] ? SyS_read+0x230/0x230 [ 1391.198027] ? do_syscall_64+0x53/0x640 [ 1391.202038] ? SyS_read+0x230/0x230 [ 1391.205840] do_syscall_64+0x1e8/0x640 [ 1391.209740] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1391.214599] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1391.219796] RIP: 0033:0x45b349 [ 1391.222987] RSP: 002b:00007f76bb2b4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1391.230691] RAX: ffffffffffffffda RBX: 00007f76bb2b56d4 RCX: 000000000045b349 [ 1391.237980] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000009 [ 1391.245253] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1391.252528] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff 06:48:55 executing program 3: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_DELETE(r0, &(0x7f0000000080)={0x31, 0x6, 0x0, {0x0, 0x0, 0x8, 0x0, 'eth1eth1'}}, 0x31) openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) 06:48:55 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) umount2(&(0x7f0000000000)='./file0\x00', 0x1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) ioctl$VIDIOC_SUBDEV_G_SELECTION(r5, 0xc040563d, &(0x7f0000000380)={0x1, 0x0, 0x0, 0x2, {0x3ff, 0xffffffff, 0x4}}) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) sendmsg$BATADV_CMD_TP_METER(r3, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="000000000000050000000000000400", @ANYRES16=0x0, @ANYBLOB="01002cbd7000ffdbdf25020000000500330001000000050029000000000008002b00000000000a000900fd58124671ac000005002a0000000000"], 0x40}, 0x1, 0x0, 0x0, 0x18}, 0x90) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000200)={[0x200, 0x405, 0x0, 0x0, 0x0, 0x8, 0xfff, 0x0, 0x81, 0x0, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x1, 0x4]}) ioctl$KVM_RUN(r6, 0xae80, 0x0) ioctl$KVM_RUN(r6, 0xae80, 0x0) r7 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_inet_SIOCSIFDSTADDR(r7, 0x8918, &(0x7f0000000180)={'batadv_slave_1\x00', {0x2, 0x4e24, @remote}}) getsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r1, 0x84, 0xc, &(0x7f00000003c0), &(0x7f0000000400)=0x4) ioctl$FS_IOC_GETVERSION(0xffffffffffffffff, 0x80087601, &(0x7f0000000440)) [ 1391.259792] R13: 0000000000000cb1 R14: 00000000004cd905 R15: 000000000075bf2c [ 1391.399314] cgroup: cgroup2: unknown option "º" 06:48:55 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f0000000080)={0x20, {{0x2, 0x4e21, @multicast2}}}, 0x88) r3 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) 06:48:55 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) r4 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x450342, 0x0) r5 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r5, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) r6 = socket$inet(0x10, 0x2, 0x0) ioctl$sock_ifreq(r6, 0x89f0, &(0x7f0000000180)={'ip6_vti0\x00', @ifru_flags}) r7 = dup2(r5, r6) r8 = socket$inet_sctp(0x2, 0x0, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r8, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f0000000280)={r9, 0x36, "ac6a82d2b5acd821e04d0478a474e9c2be3b387e029887626c7e3cf456672c29c8210efff7d4d24bdf54e0b4d427ae9a6873dd3c164e"}, 0x0) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r7, 0x84, 0x71, &(0x7f00000001c0)={r9, 0xffffffff}, &(0x7f0000000340)=0x8) getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r3, 0x84, 0x75, &(0x7f00000000c0)={r9, 0x400}, &(0x7f0000000100)=0x8) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r4, 0x84, 0x7c, &(0x7f0000000140)={r10, 0x8001, 0x3}, &(0x7f0000000180)=0x8) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$KVM_GET_MSR_INDEX_LIST(r3, 0xc004ae02, &(0x7f0000000040)=ANY=[@ANYBLOB="0400"/20]) syz_emit_ethernet(0x3e, &(0x7f0000000000)={@broadcast, @random="96c1e9574b31", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, @time_exceeded={0x5, 0x0, 0x0, 0x0, 0x0, 0x8, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast1, @remote}}}}}}, 0x0) r11 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r11) ioctl$void(r11, 0x5451) 06:48:55 executing program 0: openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) [ 1391.476956] Mem-Info: [ 1391.489685] active_anon:442418 inactive_anon:212 isolated_anon:0 [ 1391.489685] active_file:3212 inactive_file:7097 isolated_file:0 [ 1391.489685] unevictable:0 dirty:187 writeback:0 unstable:0 [ 1391.489685] slab_reclaimable:17777 slab_unreclaimable:148733 [ 1391.489685] mapped:58586 shmem:287 pagetables:33331 bounce:0 [ 1391.489685] free:857269 free_pcp:520 free_cma:0 06:48:55 executing program 3: openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x109000, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) r1 = socket$inet(0x2, 0x1, 0x0) connect$inet(r1, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r1, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r1, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r0, r1) setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f00000002c0)={0x156d7dd2, {{0xa, 0x4e22, 0x2, @remote, 0xd5}}, {{0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0x18}, 0xffffffff}}}, 0x108) r2 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vga_arbiter\x00', 0x800, 0x0) r3 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000100)='/dev/bsg\x00', 0x400100, 0x0) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f0000000240)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000200)={0xffffffffffffffff}, 0x111, 0x4}}, 0x20) socket$phonet(0x23, 0x2, 0x1) write$RDMA_USER_CM_CMD_INIT_QP_ATTR(r3, &(0x7f0000000280)={0xb, 0x10, 0xfa00, {&(0x7f0000000140), r6, 0x400}}, 0x18) accept$inet6(r2, &(0x7f0000000080)={0xa, 0x0, 0x0, @local}, &(0x7f00000000c0)=0x1c) [ 1391.544951] Node 0 active_anon:1616696kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208956kB dirty:4kB writeback:0kB shmem:1056kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 995328kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1391.584060] Node 1 active_anon:152876kB inactive_anon:84kB active_file:12800kB inactive_file:28380kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:25588kB dirty:744kB writeback:0kB shmem:92kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1391.615600] Node 0 DMA free:10464kB min:216kB low:268kB high:320kB active_anon:4508kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:96kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1391.662498] cgroup: cgroup2: unknown option "º" [ 1391.670890] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 1391.676084] Node 0 DMA32 free:40548kB min:36380kB low:45472kB high:54564kB active_anon:1612188kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB writepending:4kB present:3129332kB managed:2634344kB mlocked:0kB kernel_stack:20864kB pagetables:53608kB bounce:0kB free_pcp:792kB local_pcp:516kB free_cma:0kB [ 1391.719129] cgroup: cgroup2: unknown option "º" 06:48:55 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000080)='/selinux/checkreqprot\x00', 0x10c00, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(r2, 0xc0045540, &(0x7f00000000c0)=0x1) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280)='/dev/ptmx\x00', 0x40000, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r1, 0xc0a85320, &(0x7f00000001c0)={{0x3, 0xf3}, 'port1\x00', 0x4, 0x90001, 0x1, 0x5, 0x7, 0x0, 0x40, 0x0, 0x4, 0x8}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) getsockname(r1, &(0x7f0000000300)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, &(0x7f0000000100)=0x80) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) [ 1391.740254] lowmem_reserve[]: 0 0 0 0 0 [ 1391.752919] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1391.792350] lowmem_reserve[]: 0 0 0 0 0 [ 1391.796980] Node 1 Normal free:3378964kB min:53508kB low:66884kB high:80260kB active_anon:153076kB inactive_anon:84kB active_file:12800kB inactive_file:28380kB unevictable:0kB writepending:744kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:26944kB pagetables:79532kB bounce:0kB free_pcp:1112kB local_pcp:628kB free_cma:0kB [ 1391.836062] lowmem_reserve[]: 0 0 0 0 0 [ 1391.840327] Node 0 DMA: 16*4kB (UME) 16*8kB (UE) 14*16kB (UME) 16*32kB (UME) 17*64kB (U) 6*128kB (UE) 6*256kB (UE) 2*512kB (ME) 3*1024kB (UME) 1*2048kB (E) 0*4096kB = 10464kB [ 1391.845828] cgroup: cgroup2: unknown option "º" [ 1391.858007] Node 0 DMA32: 109*4kB (EH) 390*8kB (UEH) 993*16kB (UMEH) 360*32kB (UMH) 126*64kB (UMH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 39028kB [ 1391.879327] cgroup: cgroup2: unknown option "º" [ 1391.886887] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1391.970514] Node 1 Normal: 177*4kB (UME) 116*8kB (UME) 79*16kB (UME) 77*32kB (UME) 45*64kB (UME) 32*128kB (UME) 93*256kB (UME) 53*512kB (UME) 12*1024kB (UME) 1*2048kB (U) 806*4096kB (M) = 3378996kB [ 1392.010285] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1392.033091] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1392.047774] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1392.057478] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1392.060508] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 1392.072054] 10599 total pagecache pages 06:48:56 executing program 5: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) syncfs(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcsa\x00', 0x600001, 0x0) ioctl$VIDIOC_S_JPEGCOMP(r2, 0x408c563e, &(0x7f0000000140)={0x80000000, 0xd, 0x27, "b57a909babd6359d106cf7dd1a1569e0de9d9eab2b5288172f5b6a86bb972f4f51c0073d765437b4a2ac0966ca96d2c80f1440353c7a1144b627e5f9", 0x4, "d1ff81954bcbf89674cdcd50e8a16b6f6ca5872a9a153ca05a82e7a468974523bad7fdb47a9c60437e5203de9a07bc7ffdac486cf1656762a1f8c287", 0x20}) mount(&(0x7f0000000080)=ANY=[@ANYBLOB="2f6465762f6e756c6c8230008e79aae8675cf26fddc02e741c5ccda1668f54560428be598c8752c39f909add8a42fdfa90f89a737961a02807eaaa566413c4c96f20a75c00000000000000f61b58475e43b8000000"], &(0x7f0000000340)='./file0\x00', &(0x7f0000000100)='reiserfs\x00', 0x0, 0x0) 06:48:56 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket$pppoe(0x18, 0x1, 0x0) r2 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/load\x00', 0x2, 0x0) write$selinux_load(r2, 0x0, 0x0) 06:48:56 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) setsockopt$RXRPC_SECURITY_KEY(0xffffffffffffffff, 0x110, 0x1, &(0x7f00000000c0)='procvboxnet0nodev:(}mime_type//\x00', 0x20) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000080)='./file0\x00', 0x102) dup2(r0, r1) syz_mount_image$btrfs(&(0x7f0000000100)='btrfs\x00', &(0x7f0000000180)='./file0\x00', 0x3, 0x6, &(0x7f0000001480)=[{&(0x7f00000001c0)="39c54c871677a5b67797b73f298b866f9436a0418acc07c6bbc49ee8cd05334350c606993ff3f81d74b0ad083eda02df19779a243261389fc91c3f2736612198f0ee748bc5e13dce35072307d1d7f0a75bd84482a42e337134e7b29c0a5fe579afaca584d795f1e534d4a7f7664ac8d1b63394419e8a86d8", 0x78, 0x4}, {&(0x7f0000000300)="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", 0x1000, 0x7}, {&(0x7f0000000240)="4e253847c95145bfe30f84da5dd5600bc985cdf9a77bde7d4aa2e8653281cf0325cf12849bf428e0045c522f41211a26d6731bc8ba88bf49dfd7456fe565326c4c4a9c2c098f930935af24d0", 0x4c, 0xa4a}, {&(0x7f0000001300)="d0a2d2f28c4135198d73107b", 0xc, 0x9a8}, {&(0x7f0000001340)="dac84aee467a5c08d365f8b74075d1d798dd040f527ae3fc1aa8eb2e46cbe93eea156e4da7aeec3ad8fe92f8110fba8dfdc64552f88d12bbc909516e19935bcf5072df8c96fabb82e84e9d45f7250eb8c5", 0x51, 0x51}, {&(0x7f00000013c0)="5e0e8de6c445529c993fe9e21007d93f9ab0f2a2584a78d1181e682925dec9bac1b4ca65b4b81470f5a5ce99fb553121b89df326b8db099fe396056bd375afd4692211679802ca27129bc61d0fb4693a13ed4405f977bb798c1c5a78d990f105c08f2d0530ba992876c9ef73f8b436daed98923b875f34ef52929bc840385979224070bdc33339c438488b7263e3a05e95c8afe585d7e3cd493419253b91", 0x9e, 0x100}], 0x20, &(0x7f0000001540)={[{@treelog='treelog'}, {@rescan_uuid_tree='rescan_uuid_tree'}, {@compress_force_algo={'compress-force', 0x3d, 'zlib'}}, {@treelog='treelog'}, {@noacl='noacl'}, {@barrier='barrier'}], [{@appraise_type='appraise_type=imasig'}, {@audit='audit'}]}) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) 06:48:56 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x4000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$TCSETAW(r3, 0x5407, &(0x7f0000000000)={0xffff, 0x1, 0x7, 0x4, 0x14, "0a43a2c307215af7"}) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x1000000000000, 0x4, 0x0, 0x0, 0xfff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000000000, 0xfffffffffffffffd, 0x0, 0x3]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 06:48:56 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) r2 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/policy\x00', 0x0, 0x0) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r4 = dup(r3) r5 = openat$pfkey(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/self/net/pfkey\x00', 0x40000, 0x0) ioctl$EVIOCGSW(r5, 0x8040451b, &(0x7f0000000380)=""/250) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) r6 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r6, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) r7 = socket$inet(0x10, 0x2, 0x0) ioctl$sock_ifreq(r7, 0x89f0, &(0x7f0000000180)={'ip6_vti0\x00', @ifru_flags}) r8 = dup2(r6, r7) r9 = socket$inet_sctp(0x2, 0x0, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r9, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) r11 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r11) r12 = gettid() tkill(r12, 0x1000000000013) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f00000005c0)=ANY=[@ANYBLOB="6f3d6b48ac076f5a5a7a144d9e586cb541cc0e9794810b78a7d7c02cf7905685af3796b2fd8c2227b5dc3e9071225d06e3ef44c0427755fbf98c13f2fb16dba2369cfcb077a0e3f63adb7754fc5a594b17aab62c81fdaadeaa5c33d2b21f71270963b9c7eaefe2dfc7250f031729c4cbc6f85d4641b9a301a743f6e370", @ANYBLOB="36000000ac6a0200b5acd821e04d0478a474e9c2be3b387e029887626c7e3cf456672c29c8210efff7d4d24bdf54e0b4d427ae9a6873dd3c164e", @ANYRESHEX=r4, @ANYRESHEX, @ANYRESHEX], 0x0) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r8, 0x84, 0x71, &(0x7f00000001c0)={r10, 0xffffffff}, &(0x7f0000000340)=0x8) getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(r4, 0x84, 0x70, &(0x7f0000000100)={r10, @in6={{0xa, 0x4e23, 0x7, @initdev={0xfe, 0x88, [], 0x0, 0x0}}}, [0x8, 0x200, 0x5, 0x4, 0x9, 0x7fff, 0x6, 0x10001, 0x2, 0x9, 0x1f, 0x9, 0x1, 0x4, 0x401]}, &(0x7f0000000080)=0x100) setsockopt$inet_sctp_SCTP_SET_PEER_PRIMARY_ADDR(r2, 0x84, 0x5, &(0x7f0000000200)={r13, @in={{0x2, 0x4e21, @multicast1}}}, 0x84) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$inet_sctp_SCTP_AUTOCLOSE(r1, 0x84, 0x4, &(0x7f0000000000)=0xd1, 0x4) [ 1392.084843] REISERFS warning (device nullb0): reiserfs_fill_super: Cannot allocate commit workqueue [ 1392.088429] 0 pages in swap cache [ 1392.098147] Swap cache stats: add 0, delete 0, find 0/0 [ 1392.111623] Free swap = 0kB [ 1392.114735] Total swap = 0kB [ 1392.117834] 1965979 pages RAM [ 1392.121945] 0 pages HighMem/MovableOnly [ 1392.125986] 335868 pages reserved [ 1392.129497] 0 pages cma reserved [ 1392.166470] cgroup: cgroup2: unknown option "º" 06:48:56 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$l2tp(0x2, 0x2, 0x73) getsockopt$IPT_SO_GET_REVISION_TARGET(r1, 0x0, 0x43, &(0x7f0000000080)={'icmp6\x00'}, &(0x7f00000000c0)=0x1e) r2 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) [ 1392.189578] cgroup: cgroup2: unknown option "º" 06:48:56 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) r7 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r8 = dup(r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) r9 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r9, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) r10 = socket$inet(0x10, 0x2, 0x0) ioctl$sock_ifreq(r10, 0x89f0, &(0x7f0000000180)={'ip6_vti0\x00', @ifru_flags}) r11 = dup2(r9, r10) r12 = socket$inet_sctp(0x2, 0x0, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r12, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f0000000280)={r13, 0x36, "ac6a82d2b5acd821e04d0478a474e9c2be3b387e029887626c7e3cf456672c29c8210efff7d4d24bdf54e0b4d427ae9a6873dd3c164e"}, 0x0) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r11, 0x84, 0x71, &(0x7f00000001c0)={r13, 0xffffffff}, &(0x7f0000000340)=0x8) getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(r8, 0x84, 0x1a, &(0x7f0000000180)={r13, 0x4d, "5a9e9692c23f4ac8ae73f3cd905671febe137dcd2b1e90e80277beaf05a0a6342449ef1cd563733baeed11b76fe9537a4e8fba2ad642752e2c54d56beaccb691e8161cf8b069a989da6cd98611"}, &(0x7f00000002c0)=0x55) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r6, 0x84, 0x7c, &(0x7f0000000300)={r14, 0x9, 0x6}, 0x8) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x74, 0x0, [0x4, 0x7, 0x8, 0x3]}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) prctl$PR_MPX_DISABLE_MANAGEMENT(0x2c) [ 1392.305892] syz-executor.1: vmalloc: allocation failure: 0 bytes, mode:0x14000c0(GFP_KERNEL), nodemask=(null) [ 1392.317945] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1392.338645] CPU: 1 PID: 9117 Comm: syz-executor.1 Not tainted 4.14.167-syzkaller #0 [ 1392.346491] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1392.356006] Call Trace: [ 1392.358614] dump_stack+0x142/0x197 [ 1392.362259] warn_alloc.cold+0x96/0x1af [ 1392.366257] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 1392.371116] ? lock_downgrade+0x740/0x740 [ 1392.375279] ? avc_has_perm+0x2df/0x4b0 [ 1392.376239] cgroup: cgroup2: unknown option "º" [ 1392.379281] __vmalloc_node_range+0x3c3/0x6a0 [ 1392.379302] ? trace_hardirqs_on+0x10/0x10 [ 1392.392682] vmalloc+0x46/0x50 [ 1392.395889] ? sel_write_load+0x1a0/0x1050 [ 1392.400137] sel_write_load+0x1a0/0x1050 [ 1392.404213] ? save_trace+0x290/0x290 [ 1392.408026] ? sel_read_bool+0x240/0x240 [ 1392.412104] ? trace_hardirqs_on+0x10/0x10 [ 1392.416413] ? debug_smp_processor_id+0x1c/0x20 [ 1392.421091] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1392.426023] __vfs_write+0x105/0x6b0 [ 1392.430696] ? sel_read_bool+0x240/0x240 [ 1392.434759] ? kernel_read+0x120/0x120 [ 1392.438634] ? __lock_is_held+0xb6/0x140 [ 1392.442706] ? check_preemption_disabled+0x3c/0x250 [ 1392.447729] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1392.453170] ? rcu_read_lock_sched_held+0x110/0x130 [ 1392.458450] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 1392.463197] ? __sb_start_write+0x153/0x2f0 [ 1392.467509] vfs_write+0x198/0x500 [ 1392.471159] SyS_write+0xfd/0x230 [ 1392.474602] ? SyS_read+0x230/0x230 [ 1392.478303] ? do_syscall_64+0x53/0x640 [ 1392.482303] ? SyS_read+0x230/0x230 [ 1392.485936] do_syscall_64+0x1e8/0x640 [ 1392.489812] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1392.494660] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1392.499842] RIP: 0033:0x45b349 [ 1392.503032] RSP: 002b:00007f76bb2b4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1392.510771] RAX: ffffffffffffffda RBX: 00007f76bb2b56d4 RCX: 000000000045b349 [ 1392.518048] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 1392.525320] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1392.532606] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1392.540234] R13: 0000000000000cb1 R14: 00000000004cd905 R15: 000000000075bf2c 06:48:56 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_emit_ethernet(0x92, &(0x7f00000000c0)={@broadcast, @random="096ce9574b31", @void, {@ipv4={0x800, @icmp={{0x1a, 0x4, 0x0, 0x0, 0x84, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1, {[@timestamp_addr={0x44, 0x54, 0x32, 0x1, 0x9, [{@remote, 0x7ff}, {@multicast1}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x2}, {@local, 0x3fb}, {@multicast1}, {@dev={0xac, 0x14, 0x14, 0x33}, 0x1000}, {@multicast1, 0xf2ed}, {@remote, 0x2}, {@multicast1, 0xfffffff7}, {@remote}]}]}}, @time_exceeded={0x5, 0x0, 0x0, 0x0, 0x0, 0x8, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast1, @remote}}}}}}, 0x0) [ 1392.568199] Mem-Info: [ 1392.573651] active_anon:442492 inactive_anon:211 isolated_anon:0 [ 1392.573651] active_file:3213 inactive_file:7103 isolated_file:0 [ 1392.573651] unevictable:0 dirty:204 writeback:0 unstable:0 [ 1392.573651] slab_reclaimable:17769 slab_unreclaimable:149025 [ 1392.573651] mapped:58631 shmem:285 pagetables:33371 bounce:0 [ 1392.573651] free:856741 free_pcp:438 free_cma:0 06:48:56 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) setsockopt$pppl2tp_PPPOL2TP_SO_RECVSEQ(r3, 0x111, 0x2, 0x0, 0x4) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) sendmsg$IPCTNL_MSG_EXP_NEW(r5, &(0x7f0000007e40)={&(0x7f0000002180)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000007e00)={&(0x7f0000007d40)={0xc0, 0x0, 0x2, 0x301, 0x0, 0x0, {0xc, 0x0, 0x6}, [@CTA_EXPECT_ZONE={0x6, 0x7, 0x1, 0x0, 0x1}, @CTA_EXPECT_MASTER={0x88, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @initdev={0xfe, 0x88, [], 0x0, 0x0}}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x1}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @mcast2}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}]}, @CTA_EXPECT_TIMEOUT={0x8, 0x4, 0x1, 0x0, 0x8}, @CTA_EXPECT_FN={0x13, 0xb, 'callforwarding\x00'}]}, 0xc0}}, 0x4000400) r6 = socket$pppoe(0x18, 0x1, 0x0) recvmmsg(r6, &(0x7f0000007b80)=[{{&(0x7f0000000300)=@nfc_llcp, 0x80, &(0x7f0000000280)=[{&(0x7f0000000380)=""/127, 0x7f}, {&(0x7f0000000400)=""/4096, 0x1000}], 0x2}, 0x3}, {{&(0x7f0000001400)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @empty}}}, 0x80, &(0x7f0000001a00)=[{&(0x7f0000001480)=""/196, 0xc4}, {&(0x7f0000001580)=""/63, 0x3f}, {&(0x7f00000015c0)=""/33, 0x21}, {&(0x7f0000001600)=""/232, 0xe8}, {&(0x7f0000001700)=""/220, 0xdc}, {&(0x7f0000001800)=""/139, 0x8b}, {&(0x7f00000018c0)=""/3, 0x3}, {&(0x7f0000001900)=""/55, 0x37}, {&(0x7f0000001940)=""/42, 0x2a}, {&(0x7f0000001980)=""/97, 0x61}], 0xa, &(0x7f0000001ac0)=""/141, 0x8d}, 0x9}, {{&(0x7f0000001b80)=@alg, 0x80, &(0x7f0000001d40)=[{&(0x7f0000001c00)=""/31, 0x1f}, {&(0x7f0000001c40)=""/209, 0xd1}], 0x2, &(0x7f0000001d80)=""/182, 0xb6}}, {{&(0x7f0000001e40)=@phonet, 0x80, &(0x7f0000001f40)=[{&(0x7f0000001ec0)=""/114, 0x72}], 0x1, &(0x7f0000001f80)=""/30, 0x1e}, 0x80}, {{&(0x7f0000001fc0)=@l2tp6={0xa, 0x0, 0x0, @empty}, 0x80, &(0x7f00000020c0)=[{&(0x7f0000002040)=""/29, 0x1d}, {&(0x7f0000002080)=""/52, 0x34}], 0x2}, 0x2}, {{&(0x7f0000002100)=@alg, 0x80, &(0x7f0000006600)=[{&(0x7f0000002180)}, {&(0x7f00000021c0)=""/4096, 0x1000}, {&(0x7f00000031c0)=""/4096, 0x1000}, {&(0x7f00000041c0)=""/4096, 0x1000}, {&(0x7f00000051c0)=""/38, 0x26}, {&(0x7f0000005200)=""/249, 0xf9}, {&(0x7f0000005300)=""/204, 0xcc}, {&(0x7f0000005400)=""/250, 0xfa}, {&(0x7f0000005500)=""/4096, 0x1000}, {&(0x7f0000006500)=""/208, 0xd0}], 0xa, &(0x7f00000066c0)=""/4096, 0x1000}, 0x5}, {{0x0, 0x0, &(0x7f0000007a00)=[{&(0x7f00000076c0)=""/255, 0xff}, {&(0x7f00000077c0)=""/131, 0x83}, {&(0x7f0000007880)=""/99, 0x63}, {&(0x7f0000007900)=""/95, 0x5f}, {&(0x7f0000007980)=""/39, 0x27}, {&(0x7f00000079c0)=""/36, 0x24}], 0x6, &(0x7f0000007a80)=""/224, 0xe0}, 0x1}], 0x7, 0x40, 0x0) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) r7 = openat$autofs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/autofs\x00', 0x240, 0x0) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f0000000100)={0x0, 0x8}, &(0x7f00000001c0)=0x8) getsockopt$inet_sctp6_SCTP_MAXSEG(r7, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={r8, 0x3}, &(0x7f0000000240)=0x8) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f0000000080)=']D\x82M\n\xe1\'\xba\x145') [ 1392.610873] Node 0 active_anon:1616696kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208956kB dirty:4kB writeback:0kB shmem:1056kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 995328kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1392.682944] Node 1 active_anon:153372kB inactive_anon:80kB active_file:12804kB inactive_file:28404kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:25468kB dirty:812kB writeback:0kB shmem:84kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1392.728358] cgroup: cgroup2: unknown option "]D‚M 06:48:56 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r0) syz_emit_ethernet(0x3e, &(0x7f0000000000)={@broadcast, @random="96c1e9574b31", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, @time_exceeded={0x5, 0x0, 0x0, 0x0, 0x0, 0x8, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast1, @remote}}}}}}, 0x0) [ 1392.728358] á'º5" [ 1392.737125] Node 0 DMA free:10464kB min:216kB low:268kB high:320kB active_anon:4508kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:96kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1392.765294] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 1392.770864] Node 0 DMA32 free:38392kB min:36380kB low:45472kB high:54564kB active_anon:1612188kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB writepending:4kB present:3129332kB managed:2634344kB mlocked:0kB kernel_stack:20864kB pagetables:53608kB bounce:0kB free_pcp:792kB local_pcp:424kB free_cma:0kB [ 1392.814239] lowmem_reserve[]: 0 0 0 0 0 [ 1392.814834] cgroup: cgroup2: unknown option "]D‚M [ 1392.814834] á'º5" 06:48:56 executing program 2: socket$inet_icmp_raw(0x2, 0x3, 0x1) openat$uhid(0xffffffffffffff9c, &(0x7f00000028c0)='/dev/uhid\x00', 0x802, 0x0) r0 = accept4$ax25(0xffffffffffffffff, &(0x7f0000002900)={{0x3, @rose}, [@rose, @bcast, @netrom, @rose, @netrom, @bcast, @null, @bcast]}, &(0x7f0000002980)=0x48, 0x800) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) ioctl$EXT4_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000380)) r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcsa\x00', 0x2, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_REM(r2, 0x84, 0x65, &(0x7f00000001c0)=[@in={0x2, 0x4e21, @multicast1}, @in={0x2, 0x4e20, @rand_addr=0x4}, @in6={0xa, 0x4e22, 0x2bbb, @rand_addr="d86254be862742445c452ce2f3391e4f", 0xfffffffa}, @in={0x2, 0x4e21, @local}, @in={0x2, 0x4e20, @multicast2}, @in={0x2, 0x4e21, @empty}, @in={0x2, 0x4e24, @loopback}, @in6={0xa, 0x4e24, 0x20, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x3}, @in6={0xa, 0x4e23, 0x1, @dev={0xfe, 0x80, [], 0xf}, 0x5}, @in={0x2, 0x4e23, @empty}], 0xc4) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) r3 = socket$inet6(0xa, 0x1000000000002, 0x0) r4 = socket$inet(0x2, 0x1, 0x0) connect$inet(r4, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r4, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) ioctl$DRM_IOCTL_IRQ_BUSID(r6, 0xc0106403, &(0x7f00000003c0)={0x1, 0x3, 0x5, 0x3}) connect$inet(r4, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r3, r4) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffffff, 0x84, 0x7c, &(0x7f00000000c0)={0x0, 0xff, 0x7f}, &(0x7f0000000100)=0x8) getsockopt$inet_sctp_SCTP_CONTEXT(r4, 0x84, 0x11, &(0x7f0000000300)={r7}, &(0x7f0000000340)=0x8) [ 1392.818435] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB 06:48:56 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f00000000c0)={0x2, 0x4e20, @multicast2}, 0x10) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x8}, 0x0, 0x0) sendto$inet(r1, &(0x7f0000000200), 0xfffffffffffffeb4, 0x20008003, &(0x7f0000db4ff0)={0x2, 0x4e20, @loopback}, 0x10) fremovexattr(r0, &(0x7f00000001c0)=@random={'security.', '-^lo]nodev&}md5sumposix_acl_accesseth0keyringmd5sum#selinuxem0trusted{\x00'}) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r2 = openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/avc/cache_stats\x00', 0x0, 0x0) lsetxattr(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)=@known='trusted.overlay.redirect\x00', &(0x7f00000000c0)='\x00', 0x1, 0x1) mknodat(r2, &(0x7f0000000240)='./file0\x00', 0x2, 0xffffffff) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r3) setsockopt$IP_VS_SO_SET_ADDDEST(r3, 0x0, 0x487, &(0x7f0000000280)={{0x87, @remote, 0x4e23, 0x3, 'sh\x00', 0x4, 0x7a36, 0x5a}, {@local, 0x4e21, 0x10000, 0xd8, 0x8, 0x9}}, 0x44) [ 1392.909976] lowmem_reserve[]: 0 0 0 0 0 [ 1392.930245] Node 1 Normal free:3377952kB min:53508kB low:66884kB high:80260kB active_anon:153472kB inactive_anon:80kB active_file:12804kB inactive_file:28404kB unevictable:0kB writepending:812kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:27232kB pagetables:79988kB bounce:0kB free_pcp:884kB local_pcp:568kB free_cma:0kB [ 1392.967296] lowmem_reserve[]: 0 0 0 0 0 [ 1392.974370] Node 0 DMA: 16*4kB (UME) 16*8kB (UE) 14*16kB (UME) 16*32kB (UME) 17*64kB (U) 6*128kB (UE) 6*256kB (UE) [ 1392.975391] cgroup: cgroup2: unknown option "º" [ 1392.975496] 2*512kB (ME) 3*1024kB (UME) 1*2048kB (E) 0*4096kB = 10464kB 06:48:57 executing program 5: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$EVIOCGMASK(r4, 0x80104592, &(0x7f0000000300)={0x1f, 0xda, &(0x7f0000000380)="fc78e7c6142f4aab2bd1bc5e00ab586fae00a9d5bdcacb00f0fb3e5dbff8d0623d235941d4cae101ebac2af24d88e74333efb2e8631d287a05280599472ce4733e249b2dc466844bc3ed43ac8f2f53acc2f4dcd651a9f9b105eda1882aa083de417ea1b2a98f2a630554af8130748473d2148054cfb17eeb8539d7c9e2f6fee5304f9a2384942cd91713c1bf68d59f906755a98734a2686616bf25469a9cdadc5a151fc80199ec00fc7c902a3dc5f4510010ea1439a3f9ab5100870aa92c51d7598212312a9774dc95a16c0ef8b7c72aff30543535253f610d00"}) r5 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) r6 = openat$cgroup_ro(r5, &(0x7f0000000000)='cpuacct.usage_user\x00', 0x0, 0x0) r7 = socket$inet6(0xa, 0x80000, 0x0) r8 = socket$inet(0x2, 0x1, 0x0) connect$inet(r8, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r8, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r8, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r7, r8) setsockopt$inet_tcp_buf(r8, 0x6, 0xd, &(0x7f0000000280)="5361779f139619f9675740b5d84763c3d8a697861efab771809b07e451493e1a0365e25a15cf1cbc675e4d464f5b61c42b6fc551ed8b8e25760ea7ba71d6e9d441bb33c8406e43eb8a420d5553ae0ecac5195c8bc8b931de5e497514f82a8ccde2", 0x61) setsockopt$IP_VS_SO_SET_ADDDEST(r6, 0x0, 0x487, &(0x7f0000000140)={{0x33, @rand_addr=0xffff, 0x4e21, 0x3, 'wrr\x00', 0x3e, 0x6, 0x65}, {@multicast2, 0x4e21, 0x3, 0x8, 0x20, 0x40}}, 0x44) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) lsetxattr$security_evm(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='security.evm\x00', &(0x7f0000000240)=@md5={0x1, "a4d16e3662559413c2c42f7f05ec0175"}, 0x11, 0x3) mount(&(0x7f0000000080)=ANY=[@ANYBLOB="1b64658b2f6e75b8c6629f001bb95dfab1ff88467b6ed3eaa6cfd8831d3e1ef73225cb37d1a9ac4d4bd95e9c1b4964987d2e04015438a56f3c10d8a2760b0cc4fa22f6f1c843acd8d693144f0ed22c43c418d22a289b3ca65efe08d57110100000000000"], &(0x7f0000000340)='./file0\x00', &(0x7f0000000100)='reiserfs\x00', 0x0, 0x0) [ 1393.008673] Node 0 DMA32: 109*4kB (EH) 268*8kB (UEH) 1081*16kB (UMEH) 362*32kB (UMH) 126*64kB (UMH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 39524kB [ 1393.024284] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1393.024692] Node 1 Normal: 11*4kB (UE) 19*8kB (UME) 67*16kB (ME) 68*32kB (UME) 45*64kB (UME) 28*128kB (UME) 94*256kB (UME) 55*512kB (UME) 12*1024kB (UME) 1*2048kB (U) 806*4096kB (M) = 3377844kB [ 1393.024841] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1393.024852] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1393.039111] cgroup: cgroup2: unknown option "º" [ 1393.060596] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1393.088766] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1393.124840] 10610 total pagecache pages [ 1393.129339] 0 pages in swap cache [ 1393.134961] IPVS: set_ctl: invalid protocol: 135 172.20.20.187:20003 [ 1393.137925] Swap cache stats: add 0, delete 0, find 0/0 [ 1393.152529] Free swap = 0kB [ 1393.162617] Total swap = 0kB [ 1393.165922] 1965979 pages RAM [ 1393.169500] 0 pages HighMem/MovableOnly 06:48:57 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) sendto$l2tp(0xffffffffffffffff, &(0x7f0000000040)="acb0816e0b5eba5894f9e0ea5f03b2b532099c2b1bf870b0550af4b840806907eb4977adc5da46e03c629ec13d262aa01979376a84c121469940ed69e5f15c68e348b21bf098913846bc54481184a9284249779e44530a67781f69d5dd7bda16b56f66d598a2caee7ebbec7db073f7ad9406097d319555e5c077fa63c87721c8ecc59fa4f7ab5e48e81bd41180d8ed952657a7b5f3bf9622fa68ab1786349148ed343dbc2dc151527e6629f8eb6fd05bde15400f0b78040b2b4ddf737f41142d18b12893c7031cad7d3c5d004b4357b55aa7e7b255e85bfc6ec5be9f66b002bfd143271ba7", 0xe5, 0x20008080, &(0x7f0000000140)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x36}}, 0x10) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/load\x00', 0x2, 0x0) write$selinux_load(r2, 0x0, 0x0) 06:48:57 executing program 2: r0 = gettid() tkill(r0, 0x1b) getpgid(r0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = dup(r1) r3 = socket$inet6(0xa, 0x1000000000002, 0x0) tkill(r0, 0x3b) r4 = socket$inet(0x2, 0x1, 0x0) connect$inet(r4, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r4, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r4, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r5 = dup2(r3, r4) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000240)={0x0}, &(0x7f0000000280)=0xc) setsockopt$inet6_buf(r3, 0x29, 0x2e, &(0x7f00000003c0)="2339784d4a51cdde9714175482c6fa2625ea3ce62e7d2bf11d003a325b0f33e5ed1ad76d5bc744cf8fc9abdc", 0x2c) ptrace$cont(0x7, r6, 0x1, 0xa391) r7 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r8 = dup(r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) sendmsg$key(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000480)={0x2, 0x6, 0x1, 0x6, 0x1a, 0x0, 0x70bd2b, 0x25dfdbfe, [@sadb_x_sa2={0x2, 0x13, 0x7, 0x0, 0x0, 0x70bd27, 0x3504}, @sadb_key={0xc, 0x8, 0x2a0, 0x0, "fb04556a7996e3a77e0726bd00896bd9ccbb4b598902e776dbeb96d5a6538c9879c50e07b4f80e5dd96f1e144607c0b7e9624d9551c72341732a167c6322d808ce168778ac8f280f6b94649665e4fc629a92abce"}, @sadb_spirange={0x2, 0x10, 0x4d5, 0x4d3}, @sadb_x_policy={0x8, 0x12, 0x1, 0x0, 0x0, 0x0, 0x501b, {0x6, 0x3c, 0x1, 0x20, 0x0, 0x1ff, 0x0, @in6=@loopback, @in6=@remote}}]}, 0xd0}}, 0x40001) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) setsockopt$inet_tcp_TCP_REPAIR(r5, 0x6, 0x13, &(0x7f0000000440), 0x4) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) getsockopt$inet_sctp_SCTP_RECVRCVINFO(r2, 0x84, 0x20, &(0x7f0000000100), &(0x7f00000001c0)=0x4) [ 1393.174137] 335868 pages reserved [ 1393.178664] 0 pages cma reserved 06:48:57 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(r2, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r2, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r2, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r1, r2) dup(r1) dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x20040, &(0x7f00000002c0)) [ 1393.245493] syz-executor.1: vmalloc: allocation failure: 0 bytes, mode:0x14000c0(GFP_KERNEL), nodemask=(null) [ 1393.280624] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1393.298142] CPU: 1 PID: 9181 Comm: syz-executor.1 Not tainted 4.14.167-syzkaller #0 [ 1393.305990] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1393.315734] Call Trace: [ 1393.318530] dump_stack+0x142/0x197 [ 1393.322245] warn_alloc.cold+0x96/0x1af [ 1393.326422] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 1393.331411] ? lock_downgrade+0x740/0x740 [ 1393.335702] ? avc_has_perm+0x2df/0x4b0 [ 1393.339712] __vmalloc_node_range+0x3c3/0x6a0 [ 1393.344226] ? trace_hardirqs_on+0x10/0x10 [ 1393.348829] vmalloc+0x46/0x50 [ 1393.352127] ? sel_write_load+0x1a0/0x1050 [ 1393.356382] sel_write_load+0x1a0/0x1050 [ 1393.360720] ? save_trace+0x290/0x290 [ 1393.364979] ? sel_read_bool+0x240/0x240 [ 1393.369083] ? trace_hardirqs_on+0x10/0x10 [ 1393.373350] ? debug_smp_processor_id+0x1c/0x20 [ 1393.378154] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1393.383881] __vfs_write+0x105/0x6b0 [ 1393.387618] ? sel_read_bool+0x240/0x240 [ 1393.391705] ? kernel_read+0x120/0x120 [ 1393.395605] ? __lock_is_held+0xb6/0x140 [ 1393.399771] ? check_preemption_disabled+0x3c/0x250 [ 1393.404816] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1393.410283] ? rcu_read_lock_sched_held+0x110/0x130 [ 1393.415325] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 1393.420119] ? __sb_start_write+0x153/0x2f0 [ 1393.424611] vfs_write+0x198/0x500 [ 1393.428170] SyS_write+0xfd/0x230 [ 1393.431640] ? SyS_read+0x230/0x230 [ 1393.435879] ? do_syscall_64+0x53/0x640 [ 1393.439872] ? SyS_read+0x230/0x230 [ 1393.443533] do_syscall_64+0x1e8/0x640 [ 1393.447438] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1393.452312] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1393.457543] RIP: 0033:0x45b349 [ 1393.460751] RSP: 002b:00007f76bb2b4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1393.468473] RAX: ffffffffffffffda RBX: 00007f76bb2b56d4 RCX: 000000000045b349 [ 1393.475908] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005 [ 1393.483414] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1393.490951] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1393.498238] R13: 0000000000000cb1 R14: 00000000004cd905 R15: 000000000075bf2c [ 1393.798893] IPVS: set_ctl: invalid protocol: 135 172.20.20.187:20003 06:48:59 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) utimensat(0xffffffffffffffff, &(0x7f00000003c0)='./file1\x00', &(0x7f0000000400)={{}, {0x77359400}}, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) finit_module(r5, &(0x7f0000000380)='wlan0\\usersystem}*]posix_acl_access\'\x00', 0x2) ioctl$KDSETLED(r3, 0x4b32, 0x5) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) r6 = socket$inet_dccp(0x2, 0x6, 0x0) getsockopt$IP_SET_OP_GET_FNAME(r6, 0x1, 0x53, &(0x7f0000000080)={0x8, 0x7, 0x0, 'syz2\x00'}, &(0x7f00000000c0)=0x2c) r7 = getuid() setreuid(0xee00, r7) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000200)={0x0, 0x0, 0x0}, &(0x7f0000000240)=0xc) getsockopt$sock_cred(r6, 0x1, 0x11, &(0x7f0000000280)={0x0, 0x0}, &(0x7f0000000300)=0xc) r10 = socket$inet6(0xa, 0x1000000000002, 0x0) r11 = creat(&(0x7f0000000340)='./file0\x00', 0x144) r12 = socket$inet(0x2, 0x1, 0x0) ioctl$VIDIOC_SUBDEV_ENUM_FRAME_INTERVAL(r11, 0xc040564b, &(0x7f0000000440)={0x6, 0x0, 0x1005, 0x8, 0xfff, {0x97, 0x80}}) connect$inet(r12, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r12, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r12, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r10, r12) mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)='fuse\x00', 0x40, &(0x7f0000000880)=ANY=[@ANYBLOB="5fe8cf98726a00", @ANYRESHEX=r6, @ANYBLOB=',rootmode=00000000000000000120000,user_id=', @ANYRES64=r12, @ANYBLOB="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", @ANYRESDEC=r8, @ANYBLOB=',allow_other,max_read=0x0000000000000002,default_permissions,blksiz)0e=0x0000000000001000,blksize=0x0000000000001000,blksize=0x0000000000000400,max_read=0x0000000000000006,subj_type=cgroup2\x00,func=FILE_MMAP,smackfsdef=syz2\x00,ui', @ANYRESDEC=r9, @ANYBLOB=',appramasig,seclabel,\x00']) 06:48:59 executing program 1: socket$inet_icmp_raw(0x2, 0x3, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r0) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/load\x00', 0x2, 0x0) write$selinux_load(r2, 0x0, 0x0) 06:48:59 executing program 5: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000200)=ANY=[@ANYBLOB='od\x00\x00\x00'], &(0x7f0000000340)='./file0\x00', &(0x7f0000000100)='reiserfs\x00', 0x0, 0x0) 06:48:59 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x262602, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r5 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcsa\x00', 0x408140, 0x0) ioctl$KVM_IRQ_LINE(r5, 0x4008ae61, &(0x7f0000000040)={0x4, 0x3}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 06:48:59 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_emit_ethernet(0x3e, &(0x7f0000000000)={@broadcast, @random="96c1e9574b31", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, @time_exceeded={0x5, 0x0, 0x0, 0x0, 0x0, 0x8, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast1, @remote}}}}}}, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX_OLD(r1, 0x84, 0x6b, &(0x7f0000000040)=[@in={0x2, 0x4e24, @loopback}, @in6={0xa, 0x4e23, 0x0, @remote, 0x97}, @in={0x2, 0x4e22, @loopback}, @in6={0xa, 0x4e20, 0x8, @mcast2, 0xff}], 0x58) 06:48:59 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) openat$adsp1(0xffffffffffffff9c, &(0x7f0000000600)='/dev/adsp1\x00', 0x2, 0x0) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = socket$inet6(0xa, 0x1000000000002, 0x0) r5 = socket$inet(0x2, 0x1, 0x0) connect$inet(r5, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r5, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r5, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r6 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r6) r7 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r7) dup2(r4, r7) r8 = socket$inet6(0xa, 0x1000000000002, 0x0) r9 = socket$inet(0x2, 0x1, 0x0) connect$inet(r9, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r9, &(0x7f0000000140)={0x2, 0x4e20, @multicast1}, 0x10) connect$inet(r9, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r8, r9) fstat(r1, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000180)={0x0, 0x0, 0x0}, &(0x7f00000001c0)=0xc) r12 = getuid() setreuid(0xee00, r12) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000200)={{{@in=@broadcast, @in=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast2}, 0x0, @in=@multicast1}}, &(0x7f0000000300)=0xe8) inotify_add_watch(r1, &(0x7f0000000540)='./file0\x00', 0x100) mount$fuseblk(&(0x7f0000000000)='/dev/loop0\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='fuseblk\x00', 0x805, &(0x7f0000000340)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x2000}, 0x2c, {'user_id', 0x3d, r10}, 0x2c, {'group_id', 0x3d, r11}, 0x2c, {[{@default_permissions='default_permissions'}, {@blksize={'blksize', 0x3d, 0x400}}, {@max_read={'max_read', 0x3d, 0x8}}, {@default_permissions='default_permissions'}, {@blksize={'blksize', 0x3d, 0x1000}}, {@allow_other='allow_other'}, {@blksize={'blksize', 0x3d, 0x200}}], [{@subj_user={'subj_user', 0x3d, '%\','}}, {@dont_measure='dont_measure'}, {@obj_role={'obj_role', 0x3d, '/dev/adsp1\x00'}}, {@context={'context', 0x3d, 'staff_u'}}, {@fowner_eq={'fowner', 0x3d, r12}}, {@uid_eq={'uid', 0x3d, r13}}, {@subj_role={'subj_role', 0x3d, '/dev/adsp1\x00'}}, {@smackfsfloor={'smackfsfloor', 0x3d, '/dev/adsp1\x00'}}, {@smackfshat={'smackfshat', 0x3d, '/dev/adsp1\x00'}}]}}) r14 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r15 = dup(r14) ioctl$PERF_EVENT_IOC_ENABLE(r15, 0x8912, 0x400200) ioctl$SIOCPNGETOBJECT(r15, 0x89e0, &(0x7f0000000100)=0x1ff) [ 1395.193106] cgroup: cgroup2: unknown option "º" [ 1395.203800] syz-executor.1: vmalloc: allocation failure: 0 bytes, mode:0x14000c0(GFP_KERNEL), nodemask=(null) 06:48:59 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) r2 = socket$inet6(0xa, 0x1000000000002, 0x0) r3 = socket$inet(0x2, 0x1, 0x0) connect$inet(r3, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r3, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r3, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r2, r3) dup(r2) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r4) getsockopt$inet_int(r4, 0x0, 0xd, &(0x7f0000000000), &(0x7f0000000040)=0x4) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) [ 1395.253657] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1395.262200] cgroup: cgroup2: unknown option "º" [ 1395.283813] CPU: 0 PID: 9224 Comm: syz-executor.1 Not tainted 4.14.167-syzkaller #0 [ 1395.291750] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1395.301121] Call Trace: [ 1395.303726] dump_stack+0x142/0x197 [ 1395.307373] warn_alloc.cold+0x96/0x1af [ 1395.311368] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 1395.316237] ? lock_downgrade+0x740/0x740 [ 1395.320417] ? avc_has_perm+0x2df/0x4b0 [ 1395.324418] __vmalloc_node_range+0x3c3/0x6a0 [ 1395.328943] ? trace_hardirqs_on+0x10/0x10 [ 1395.333363] vmalloc+0x46/0x50 [ 1395.336574] ? sel_write_load+0x1a0/0x1050 [ 1395.340822] sel_write_load+0x1a0/0x1050 [ 1395.344892] ? save_trace+0x290/0x290 [ 1395.348711] ? sel_read_bool+0x240/0x240 [ 1395.352788] ? trace_hardirqs_on+0x10/0x10 [ 1395.357047] ? debug_smp_processor_id+0x1c/0x20 [ 1395.361731] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1395.366712] __vfs_write+0x105/0x6b0 [ 1395.370454] ? sel_read_bool+0x240/0x240 [ 1395.374556] ? kernel_read+0x120/0x120 [ 1395.378487] ? __lock_is_held+0xb6/0x140 [ 1395.382559] ? check_preemption_disabled+0x3c/0x250 [ 1395.387595] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1395.393244] ? rcu_read_lock_sched_held+0x110/0x130 [ 1395.398547] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 1395.403314] ? __sb_start_write+0x153/0x2f0 [ 1395.407648] vfs_write+0x198/0x500 [ 1395.411285] SyS_write+0xfd/0x230 [ 1395.414768] ? SyS_read+0x230/0x230 [ 1395.418521] ? do_syscall_64+0x53/0x640 [ 1395.422502] ? SyS_read+0x230/0x230 [ 1395.426145] do_syscall_64+0x1e8/0x640 [ 1395.430038] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1395.434902] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1395.440133] RIP: 0033:0x45b349 [ 1395.443326] RSP: 002b:00007f76bb2b4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 06:48:59 executing program 3: r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0xc0a40, 0x0) ioctl$SNDCTL_DSP_STEREO(r0, 0xc0045003, &(0x7f0000000000)=0x1) 06:48:59 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, &(0x7f00000001c0)={0x96, 0x1, 0x4, 0x1000, 0x0, {0x77359400}, {0x4, 0x0, 0x20, 0x5, 0x6, 0x8, "ec86c6f3"}, 0x2, 0x1, @fd=r3, 0x6, 0x0, 0xffffffffffffffff}) ioctl$BLKTRACETEARDOWN(r4, 0x1276, 0x0) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) write$FUSE_NOTIFY_POLL(r1, &(0x7f0000000080)={0x18, 0x1, 0x0, {0x2bc}}, 0x18) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='adfs\x00', 0x0, &(0x7f0000000100)) [ 1395.451049] RAX: ffffffffffffffda RBX: 00007f76bb2b56d4 RCX: 000000000045b349 [ 1395.458333] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000007 [ 1395.465617] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1395.472887] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1395.480269] R13: 0000000000000cb1 R14: 00000000004cd905 R15: 000000000075bf2c 06:48:59 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$SNDCTL_DSP_POST(r2, 0x5008, 0x0) r3 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_emit_ethernet(0x0, &(0x7f0000000000)=ANY=[], 0x0) [ 1395.613326] warn_alloc_show_mem: 1 callbacks suppressed [ 1395.613330] Mem-Info: [ 1395.633874] active_anon:442559 inactive_anon:211 isolated_anon:0 [ 1395.633874] active_file:3222 inactive_file:7107 isolated_file:0 [ 1395.633874] unevictable:0 dirty:231 writeback:0 unstable:0 [ 1395.633874] slab_reclaimable:17691 slab_unreclaimable:149252 [ 1395.633874] mapped:58596 shmem:285 pagetables:33471 bounce:0 [ 1395.633874] free:856416 free_pcp:424 free_cma:0 06:48:59 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$PPPIOCGDEBUG(r3, 0x80047441, &(0x7f0000000000)) syz_emit_ethernet(0x92, &(0x7f0000000100)=ANY=[@ANYBLOB="ffffffffffff00000000000008004aa400840000000000019078ac1e0001e0000001444c7bb1ac1e000100001595ac1414b900000c2aac14142c00000007ac14143a000007ffac14142500000004e00000f500000bc8e00000020000a8a8e00000010000013fac1e00010000000500940401000000000500907800000800452000000000000014bb00"/146], 0x0) 06:48:59 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) socket$inet_icmp_raw(0x2, 0x3, 0x1) r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcsa\x00', 0x100, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x1000400203) openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000140)='/dev/cachefiles\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) connect$pptp(r2, &(0x7f0000000000)={0x18, 0x2, {0x1, @local}}, 0x1e) [ 1395.695733] Node 0 active_anon:1616696kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208956kB dirty:4kB writeback:0kB shmem:1056kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 995328kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes 06:48:59 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) write$P9_RREADLINK(r1, &(0x7f0000000080)={0x10, 0x17, 0x1, {0x7, './file0'}}, 0x10) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) [ 1395.770313] Node 1 active_anon:153440kB inactive_anon:80kB active_file:12840kB inactive_file:28420kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:25728kB dirty:920kB writeback:0kB shmem:84kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1395.834382] Node 0 DMA free:10464kB min:216kB low:268kB high:320kB active_anon:4508kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:96kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1395.867334] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 1395.873425] Node 0 DMA32 free:39400kB min:36380kB low:45472kB high:54564kB active_anon:1612188kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB writepending:4kB present:3129332kB managed:2634344kB mlocked:0kB kernel_stack:20864kB pagetables:53608kB bounce:0kB free_pcp:1136kB local_pcp:592kB free_cma:0kB [ 1395.910927] cgroup: cgroup2: unknown option "º" [ 1395.930323] lowmem_reserve[]: 0 0 0 0 0 [ 1395.941903] cgroup: cgroup2: unknown option "º" [ 1395.947517] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1395.986970] lowmem_reserve[]: 0 0 0 0 0 [ 1395.991219] Node 1 Normal free:3375148kB min:53508kB low:66884kB high:80260kB active_anon:153540kB inactive_anon:80kB active_file:12840kB inactive_file:28420kB unevictable:0kB writepending:920kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:27040kB pagetables:80092kB bounce:0kB free_pcp:716kB local_pcp:680kB free_cma:0kB [ 1396.060956] lowmem_reserve[]: 0 0 0 0 0 [ 1396.065201] Node 0 DMA: 16*4kB (UME) 16*8kB (UE) 14*16kB (UME) 16*32kB (UME) 17*64kB (U) 6*128kB (UE) 6*256kB (UE) 2*512kB (ME) 3*1024kB (UME) 1*2048kB (E) 0*4096kB = 10464kB [ 1396.118514] Node 0 DMA32: 110*4kB (UEH) 160*8kB (UMEH) 1055*16kB (UMEH) 362*32kB (UMH) 126*64kB (UMH) 3*128kB (UM) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 38632kB [ 1396.134923] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1396.146537] Node 1 Normal: 184*4kB (UME) 16*8kB (UME) 66*16kB (UME) 76*32kB (UME) 50*64kB (UME) 31*128kB (UME) 80*256kB (UME) 54*512kB (UME) 13*1024kB (UME) 1*2048kB (U) 806*4096kB (M) = 3376384kB [ 1396.165593] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1396.174826] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1396.183552] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1396.192813] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1396.201593] 10618 total pagecache pages [ 1396.205579] 0 pages in swap cache [ 1396.209212] Swap cache stats: add 0, delete 0, find 0/0 [ 1396.215058] Free swap = 0kB 06:49:00 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$PPPIOCATTACH(r1, 0x4004743d, &(0x7f0000000040)=0x1) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/load\x00', 0x2, 0x0) write$selinux_load(r2, 0x0, 0x0) 06:49:00 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) write$binfmt_elf64(r2, &(0x7f0000000900)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x6, 0x6, 0xdc, 0x1, 0x2, 0x3e, 0x9, 0x346, 0x40, 0x1ba, 0x2, 0x1, 0x38, 0x1, 0xffff, 0x6, 0x77a4}, [{0x1, 0x5, 0x101, 0x8, 0x3093, 0x80, 0x7, 0x8000}, {0x2, 0x10000, 0x5, 0x8, 0x4f1, 0x6, 0x1000, 0xa7}], "9e0ab402cbaaf01738a3f6636d6711adf40c1b87aa36de98fa93652f2f76afe26b327febd23fbb08df5fcbfeee87156059b538b31e5ec97150d538745201f49d621b7071933f4b2a3082d3437840e55eb05e9251e6202d89d4c8707d1b2764a61304c4af1db59aeb0272d3befed5e0eb95998e762a91df83cf3ab1f77aa24a007b1f68f8c0e8f1ab27196ab7da9eed551fb136925f6e42e4b806d5733780041a9a", [[], [], [], [], [], [], []]}, 0x851) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 06:49:00 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_emit_ethernet(0x3e, &(0x7f0000000000)={@broadcast, @random="96c1e9574b31", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, @time_exceeded={0x5, 0x0, 0x0, 0x0, 0x0, 0x8, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast1, @remote}}}}}}, 0x0) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) ioctl$GIO_FONT(r5, 0x4b60, &(0x7f0000000140)=""/115) 06:49:00 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f00000000c0)=0x0) process_vm_readv(r2, &(0x7f0000000100)=[{&(0x7f00000001c0)=""/187, 0xbb}, {&(0x7f0000000300)=""/133, 0x85}], 0x2, &(0x7f00000005c0)=[{&(0x7f0000000680)=""/148, 0x94}, {&(0x7f0000000480)=""/90, 0x5a}, {&(0x7f0000000280)=""/56, 0x38}, {&(0x7f0000000500)=""/6, 0x6}, {&(0x7f0000000540)=""/89, 0x59}], 0x5, 0x0) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cramfs\x00', 0x2000, &(0x7f00000002c0)) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$SIOCGIFMTU(r4, 0x8921, &(0x7f0000000640)) write$binfmt_misc(r1, &(0x7f0000000080)={'syz1', "bc90754d08"}, 0x9) 06:49:00 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x404801, 0x0) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000080)='/selinux/enforce\x00', 0x200, 0x0) ioctl$TCSETSF2(r1, 0x402c542d, &(0x7f00000000c0)={0x3, 0x1f, 0x2, 0xffff, 0xd5, "5a42a5cd3233f948cf54971c247c320817df58", 0x5, 0x3}) r2 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$VIDIOC_STREAMON(r2, 0x40045612, &(0x7f0000000040)=0x2) 06:49:00 executing program 5: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000000)=@md0='/dev/md0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='reiserfs\x00', 0x1080, 0x0) [ 1396.218091] Total swap = 0kB [ 1396.221496] 1965979 pages RAM [ 1396.224846] 0 pages HighMem/MovableOnly [ 1396.228825] 335868 pages reserved [ 1396.233369] 0 pages cma reserved 06:49:00 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x50402, 0x0) 06:49:00 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067eeedb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0df96bbfb5a910f011c2666b8bf008ee0", 0x4a}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 06:49:00 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) preadv(r1, &(0x7f0000000100)=[{&(0x7f00000001c0)=""/200, 0xc8}, {&(0x7f0000000300)=""/4096, 0x1000}], 0x2, 0x10000) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400202) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) socket$inet6(0xa, 0x1000000000002, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(r2, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r2, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r2, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = userfaultfd(0x80800) dup2(r3, r2) setsockopt$inet_tcp_TLS_TX(r2, 0x6, 0x1, &(0x7f0000000080)=@ccm_128={{0x304}, "497247ea3cc73703", "a3e15152fddb77baa1d271c7a4e738df", "df7989b7", "95a95a48bf055494"}, 0x28) 06:49:00 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_emit_ethernet(0x3e, &(0x7f0000000000)=ANY=[@ANYBLOB="fffdffffffff96c1e9574b310800450000300000000000019078ac1e0001e000000008e1750000000000000000000000e0000001ac1414bb000000000000"], 0x0) 06:49:00 executing program 3: r0 = socket$inet_sctp(0x2, 0x5, 0x84) ioctl$sock_inet_SIOCDARP(r0, 0x8953, &(0x7f0000000000)={{0x2, 0x4e23, @remote}, {0x306, @local}, 0x12, {0x2, 0x4e21, @local}, 'veth0_to_bond\x00'}) openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) [ 1396.494226] syz-executor.1: vmalloc: allocation failure: 0 bytes, mode:0x14000c0(GFP_KERNEL), nodemask=(null) [ 1396.523548] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1396.536740] CPU: 0 PID: 9304 Comm: syz-executor.1 Not tainted 4.14.167-syzkaller #0 [ 1396.544621] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1396.554106] Call Trace: [ 1396.556850] dump_stack+0x142/0x197 [ 1396.560504] warn_alloc.cold+0x96/0x1af [ 1396.564501] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 1396.569367] ? lock_downgrade+0x740/0x740 [ 1396.573568] ? avc_has_perm+0x2df/0x4b0 [ 1396.577573] __vmalloc_node_range+0x3c3/0x6a0 [ 1396.582313] ? trace_hardirqs_on+0x10/0x10 [ 1396.586554] vmalloc+0x46/0x50 [ 1396.589883] ? sel_write_load+0x1a0/0x1050 [ 1396.594128] sel_write_load+0x1a0/0x1050 [ 1396.598198] ? save_trace+0x290/0x290 [ 1396.602027] ? sel_read_bool+0x240/0x240 [ 1396.606101] ? trace_hardirqs_on+0x10/0x10 [ 1396.610442] ? debug_smp_processor_id+0x1c/0x20 [ 1396.615124] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1396.620161] __vfs_write+0x105/0x6b0 [ 1396.623920] ? sel_read_bool+0x240/0x240 [ 1396.627974] ? kernel_read+0x120/0x120 [ 1396.631961] ? __lock_is_held+0xb6/0x140 [ 1396.636014] ? check_preemption_disabled+0x3c/0x250 [ 1396.641067] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1396.646520] ? rcu_read_lock_sched_held+0x110/0x130 [ 1396.651550] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 1396.656747] ? __sb_start_write+0x153/0x2f0 [ 1396.661410] vfs_write+0x198/0x500 [ 1396.664988] SyS_write+0xfd/0x230 [ 1396.668490] ? SyS_read+0x230/0x230 [ 1396.672316] ? do_syscall_64+0x53/0x640 [ 1396.677260] ? SyS_read+0x230/0x230 [ 1396.681072] do_syscall_64+0x1e8/0x640 [ 1396.685507] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1396.690708] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1396.696091] RIP: 0033:0x45b349 [ 1396.699456] RSP: 002b:00007f76bb2b4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1396.708089] RAX: ffffffffffffffda RBX: 00007f76bb2b56d4 RCX: 000000000045b349 [ 1396.715926] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005 [ 1396.723216] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1396.730666] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1396.741228] R13: 0000000000000cb1 R14: 00000000004cd905 R15: 000000000075bf2c [ 1396.755667] cgroup: cgroup2: unknown option "º" 06:49:00 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$VIDIOC_S_EXT_CTRLS(r1, 0xc0205648, &(0x7f00000000c0)={0x9d0000, 0x5, 0x2, r1, 0x0, &(0x7f0000000080)={0x347, 0x80, [], @p_u16=&(0x7f0000000040)=0x4}}) sched_yield() syz_emit_ethernet(0x3e, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffff96c1e9574b31080045000030000000000078ac1e0001e00000010500907800000800450000000000000000000000e0000001ac1414bb0000"], 0x0) [ 1396.791373] cgroup: cgroup2: unknown option "º" [ 1396.818145] Mem-Info: [ 1396.825212] active_anon:442598 inactive_anon:211 isolated_anon:0 [ 1396.825212] active_file:3224 inactive_file:7111 isolated_file:0 [ 1396.825212] unevictable:0 dirty:241 writeback:0 unstable:0 [ 1396.825212] slab_reclaimable:17680 slab_unreclaimable:149395 [ 1396.825212] mapped:58621 shmem:285 pagetables:33436 bounce:0 [ 1396.825212] free:855696 free_pcp:489 free_cma:0 [ 1396.916495] Node 0 active_anon:1616696kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208956kB dirty:4kB writeback:0kB shmem:1056kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 995328kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1396.955485] Node 1 active_anon:153696kB inactive_anon:80kB active_file:12848kB inactive_file:28436kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:25628kB dirty:960kB writeback:0kB shmem:84kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1396.997998] Node 0 DMA free:10464kB min:216kB low:268kB high:320kB active_anon:4508kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:96kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1397.035999] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 1397.041232] Node 0 DMA32 free:38516kB min:36380kB low:45472kB high:54564kB active_anon:1612188kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB writepending:4kB present:3129332kB managed:2634344kB mlocked:0kB kernel_stack:20864kB pagetables:53608kB bounce:0kB free_pcp:1268kB local_pcp:612kB free_cma:0kB [ 1397.075918] lowmem_reserve[]: 0 0 0 0 0 [ 1397.082252] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1397.108291] lowmem_reserve[]: 0 0 0 0 0 [ 1397.112649] Node 1 Normal free:3375412kB min:53508kB low:66884kB high:80260kB active_anon:153484kB inactive_anon:80kB active_file:12952kB inactive_file:28460kB unevictable:0kB writepending:996kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:26976kB pagetables:79920kB bounce:0kB free_pcp:1376kB local_pcp:708kB free_cma:0kB [ 1397.143271] lowmem_reserve[]: 0 0 0 0 0 [ 1397.147315] Node 0 DMA: 16*4kB (UME) 16*8kB (UE) 14*16kB (UME) 16*32kB (UME) 17*64kB (U) 6*128kB (UE) 6*256kB (UE) 2*512kB (ME) 3*1024kB (UME) 1*2048kB (E) 0*4096kB = 10464kB [ 1397.163799] Node 0 DMA32: 127*4kB (UEH) 352*8kB (UMEH) 1059*16kB (UMEH) 362*32kB (UMH) 126*64kB (UMH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 39916kB [ 1397.178775] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1397.189629] Node 1 Normal: 185*4kB (UME) 16*8kB (UME) 70*16kB (UME) 71*32kB (UME) 44*64kB (UME) 32*128kB (UME) 79*256kB (UME) 54*512kB (UME) 13*1024kB (UME) 1*2048kB (U) 806*4096kB (M) = 3375780kB [ 1397.209720] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1397.218820] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1397.227807] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1397.236922] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1397.245841] 10651 total pagecache pages [ 1397.250010] 0 pages in swap cache [ 1397.253722] Swap cache stats: add 0, delete 0, find 0/0 [ 1397.259437] Free swap = 0kB [ 1397.262763] Total swap = 0kB 06:49:01 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) 06:49:01 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) r4 = socket$inet6(0xa, 0x1000000000002, 0x0) r5 = socket$inet(0x2, 0x1, 0x0) connect$inet(r5, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r5, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r5, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r4, r5) ioctl$sock_inet6_SIOCDELRT(r4, 0x890c, &(0x7f0000000000)={@local, @remote, @rand_addr="e3110b3e47ac21b18e1cdb184dd52646", 0x5, 0x5, 0x47, 0x500, 0x5, 0x840100}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r6, 0xae80, 0x0) ioctl$KVM_RUN(r6, 0xae80, 0x0) r7 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r8 = dup(r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) r9 = openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/avc/cache_stats\x00', 0x0, 0x0) ioctl$KVM_IOEVENTFD(r8, 0x4040ae79, &(0x7f00000002c0)={0x0, &(0x7f0000000180), 0x28ee6888602a2f00, r9, 0x4}) 06:49:01 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_emit_ethernet(0x0, &(0x7f0000000180)=ANY=[], 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040)) 06:49:01 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$TCSETA(r1, 0x5406, &(0x7f0000000000)={0x7f, 0x4, 0x7, 0x1, 0x17, "db6d1a91b9ad42bf"}) 06:49:01 executing program 5: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000080)=ANY=[@ANYBLOB="27d15ca90d3400eb3b29ca2b1a52bd6162b093191323f448f1d9fc4093aef442b4014491659b8c26514384ee89c68396b5683052f135219f86b0a8817a4fbe983d5b2d40537c1d0399bf29a750296ac153b6e4b2469797c574a06713841a34a1a35fbd07ee9d08aa7b3adcb6a2c1ebe7"], &(0x7f0000000340)='./file0\x00', &(0x7f0000000100)='reiserfs\x00', 0x0, 0x0) 06:49:01 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(r2, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r2, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r2, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r1, r2) r3 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r3, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) r4 = socket$inet(0x10, 0x2, 0x0) ioctl$sock_ifreq(r4, 0x89f0, &(0x7f0000000180)={'ip6_vti0\x00', @ifru_flags}) r5 = dup2(r3, r4) r6 = socket$inet_sctp(0x2, 0x0, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r6, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f0000000280)={r7, 0x36, "ac6a82d2b5acd821e04d0478a474e9c2be3b387e029887626c7e3cf456672c29c8210efff7d4d24bdf54e0b4d427ae9a6873dd3c164e"}, 0x0) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r5, 0x84, 0x71, &(0x7f00000001c0)={r7, 0xffffffff}, &(0x7f0000000340)=0x8) ioctl$TUNSETCARRIER(r5, 0x400454e2, &(0x7f0000000140)) getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f0000000040)={r7, 0xfe00}, &(0x7f0000000080)=0x8) getsockopt$inet_sctp6_SCTP_CONTEXT(r1, 0x84, 0x11, &(0x7f00000000c0)={r8, 0x7fff}, &(0x7f0000000100)=0x8) r9 = dup(r0) prctl$PR_GET_TIMERSLACK(0x1e) ioctl$PERF_EVENT_IOC_ENABLE(r9, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r10 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/load\x00', 0x2, 0x0) write$selinux_load(r10, 0x0, 0x0) [ 1397.266075] 1965979 pages RAM [ 1397.269208] 0 pages HighMem/MovableOnly [ 1397.273281] 335868 pages reserved [ 1397.276759] 0 pages cma reserved [ 1397.333792] cgroup: cgroup2: unknown option "º" 06:49:01 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$VIDIOC_QBUF(0xffffffffffffffff, 0xc058560f, &(0x7f0000000080)={0x4, 0x6, 0x4, 0x400, 0x508, {0x0, 0x2710}, {0x3, 0x2, 0x5, 0x7, 0x93, 0x7f, "8a85b810"}, 0x8001, 0x4, @planes=&(0x7f0000000040)={0xfffff801, 0xfff, @userptr, 0x9}, 0x2, 0x0, 0xffffffffffffffff}) ioctl$VIDIOC_S_STD(r1, 0x40085618, &(0x7f0000000100)=0x10000) dup(r0) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0)='nl80211\x00') sendmsg$NL80211_CMD_SET_BEACON(r1, &(0x7f0000000a80)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000a40)={&(0x7f0000000200)={0x82c, r2, 0x200, 0x70bd2c, 0x25dfdbfc, {}, [@NL80211_ATTR_IE_PROBE_RESP={0x2e1, 0x7f, "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"}, @NL80211_ATTR_IE_RIC={0x531, 0xb2, "bed71a5866b1dd7fe59009a026781254d7acd1d45ee2607768c1222df426f405f0c7d0a5a508688ddd2fe1dfd87a4fe403b83e3f51f7b4ab2004735df7f0b2b156f37e94c3767036d178b355ffba50f149f43f09ab1f68492180d5b848d157e414361b26e20bcd08fbb16e9d7d5db661b0a79394b2dba2e52088731b8e66a3c13291cc6502f9ab853bf25c2ce23b305a404365a3f0340409ce79e428b479a294cdb0f800a19e1d6da87bc822516e083fbe18af860fda795a8294e046a3ae34e5b4c197492661cef86bf795b6b1a35e56038354c725071ed0ad7209fdc0459b0d930ff91655042cfad3ebecab6f33e627470358802360722e28f9c572f28e612d4b05c6953a10926b25aa1620f40dd3e78eb70d212c4c426711ced26722397f2613b1de5e37afd56b01ff1c1171f145486c844c074459efaa8a0f242432235080f937123201e1b194bc52ac74b3e7e5e514603af834a139ba986a9ec037833bab2bcd1f99ef55de74205795b93fe2cb249bf0b1c20583cd443baabe411a911bdca2c49c76de6405548baad795303e7a416ec777bdce0f392146eedc71a5a9926aa621ef78d24b628d3bce2ede3ff2daa0deaa968273fd203610a65634e1bc717c00c06af06ddc764ee33ff469b7b12cd8c2b1607b6007226884e1b8c157f460ba7ce5daf210bd6ce6e5083b9d53a61e2874f2db57d32d027ba35943ae1f81a13f54e17fbd33b44d10c9339bbf52b5b46bad6ff9a1c321a3c92fe058906b5f730c5163263e83155040cce085bf1dc5016ef1b7d109166c7fdedf18eae79e4584b5b5d1daa47450e8ede7734af4eb380f358a13172e414dd30a5c253faa8653c5a3bd2eb9a1aa11211f4ba20bc5384ad71257fca17d7c4fcc4735428589e033e7bbec6b9556ca6e10ab731d8a96bc69751f95e004ed6e92102658ff07ce86e3efd034ec5c3a343e450a9af943dc2bf69adc5ee62b9a983b95830d108776b096d7eed7fad0788e40061ce77e44d492971d222494541dcc0fc297d6565a83cf5a725f6a8e1763740b8d5e5ae00e9bfc884ea1fde288cb2715c63a5fca30f016f63becd96df37df6f09babf76b7b941c28c0605703688e98ad0fcfa5a9793f6d869b692c44b9200392190fc1c5960933cab6778fa62a4c46a1e6feb2d6de4605b8d3947eebce270d426652caccc35a1b846cccb90e52fd04e67f10e7ace53c824d665a3a50a8513ed4b9f8b5734534b85a3a535bca50e5eeed7932ed1e0a2dfeb870ebc4365bd82d51bace465254f77b257c54403873dab0b9199bbb9842bdb90ce96f57a71305cf2026cc780574bbb56cc803316fe590db6df9de7538ba7a5f67a1c6a97d7f1af077b0b5dba3cac7597bbb72df88bdd6fb5b8542c6a5c05e65ae74bfe7c00a3281d2644d41adec8bc14a9ce026e14ce572ae2dd34c3651b3448ff2f5c3ec5b5b1789a202098da970e2f0961a976ff0667a1626ab514ea05c518ea5c120c2f4d56b0ffbf20e991331f0995f5d1b8dc0192826fa9df07a86eefe9484335d6a993b09b287cb06ee7331ed24e148875943a15510be0aac0d7ae3dbbcc4c0ad38cc85b252f74943826c37f237b813ca34f26b72e29de8d80d03b0942c668cb68208d3fa3e2d461373dd27f3002762a2963f7145ac309ae7313af23cffdb32261adde82b98a7000e058c2ef5c84174826ed55553a22a83f1b7affa0e7b0f8532ea108fa2fd8d458081fdf3c4377af9c34bfbfb6abdbee5f8602cabfa4136a7dd75df88450c06f860513c7cc7dacd09a0ebae79c591f8bc4d487c736eb01ad1cd821c8024b8b9c7cd8f127daade6c50dbee87f396ac0daf1291045906b9df6d1567e87ea781320e29952233f4"}]}, 0x82c}, 0x1, 0x0, 0x0, 0x40000}, 0x4000000) syz_emit_ethernet(0x3e, &(0x7f0000000140)=ANY=[@ANYBLOB="ffff310800000000e1000001acca5c41ff162547be615e66ef051400000000000000000000a3411b86357508db71cb2d4b66c212b64e8ff68d059b36b680376cf9dff70200aa2be11d389044"], 0x0) 06:49:01 executing program 3: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) getsockopt$inet_udp_int(r1, 0x11, 0xb, &(0x7f0000000080), &(0x7f00000000c0)=0x4) r2 = shmget$private(0x0, 0x2000, 0x4, &(0x7f0000ffc000/0x2000)=nil) shmctl$IPC_STAT(r2, 0x2, &(0x7f0000000000)=""/58) socket$pppl2tp(0x18, 0x1, 0x1) 06:49:01 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$USBDEVFS_REAPURB(r3, 0x4008550c, &(0x7f0000000100)) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000000080)=0x0) r5 = gettid() tkill(r5, 0x1000000000013) r6 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/timer_list\x00', 0x0, 0x0) kcmp(r4, r5, 0x5, r1, r6) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) 06:49:01 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) sendmsg$NLBL_CIPSOV4_C_REMOVE(r3, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x7c, 0x0, 0x300, 0x70bd2c, 0x25dfdbff, {}, [@NLBL_CIPSOV4_A_MLSLVLLST={0x68, 0x8, 0x0, 0x1, [{0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x62bece54}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x1d49f180}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x22bc2e63}]}, {0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x74}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5deaf347}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x89}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x7b}]}, {0x14, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x65a612b9}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x681697da}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4417b7f3}]}]}]}, 0x7c}, 0x1, 0x0, 0x0, 0x10}, 0x40) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_emit_ethernet(0x3e, &(0x7f0000000180)=ANY=[@ANYBLOB="ffffffffffff96c1e95f4b332acb117b7fa7e8616d2f7ec6a1310800450000300000000000019094ac1e0001e00000010500907800800800450000000000000000000000e00000017194dab39bd756b9013fe4ac1414bb"], 0x0) 06:49:01 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r4) r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) ioctl$SOUND_MIXER_READ_CAPS(r6, 0x80044dfc, &(0x7f0000000180)) ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r4, 0xc0506617, &(0x7f0000000000)={{0x0, 0x0, @reserved="2a9dd4dc13bcf1828c875712f6e887861f0631560f497528a22bf3b1d0ebb1df"}, 0x30, [], "92df172f47205691f4341626e82bec8a32ffcec6c16550807bd04b0703ad3541f9344b4fab8b70151566a65f859b38f3"}) r7 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r7, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r7, 0xae80, 0x0) ioctl$KVM_RUN(r7, 0xae80, 0x0) r8 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r8) fsetxattr$security_selinux(r8, &(0x7f00000001c0)='security.selinux\x00', &(0x7f00000002c0)='system_u:object_r:faillog_t:s0\x00', 0x1f, 0x2) [ 1397.563199] syz-executor.1: vmalloc: allocation failure: 0 bytes, mode:0x14000c0(GFP_KERNEL), nodemask=(null) [ 1397.602560] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1397.614462] CPU: 1 PID: 9382 Comm: syz-executor.1 Not tainted 4.14.167-syzkaller #0 [ 1397.622503] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1397.631985] Call Trace: [ 1397.634709] dump_stack+0x142/0x197 [ 1397.638362] warn_alloc.cold+0x96/0x1af [ 1397.642991] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 1397.647867] ? lock_downgrade+0x740/0x740 [ 1397.652054] ? avc_has_perm+0x2df/0x4b0 [ 1397.656067] __vmalloc_node_range+0x3c3/0x6a0 [ 1397.660584] ? trace_hardirqs_on+0x10/0x10 [ 1397.664896] vmalloc+0x46/0x50 [ 1397.668107] ? sel_write_load+0x1a0/0x1050 [ 1397.672364] sel_write_load+0x1a0/0x1050 [ 1397.676439] ? save_trace+0x290/0x290 [ 1397.680359] ? sel_read_bool+0x240/0x240 [ 1397.684436] ? trace_hardirqs_on+0x10/0x10 [ 1397.688698] ? debug_smp_processor_id+0x1c/0x20 [ 1397.691530] audit: type=1400 audit(1580107741.598:12338): avc: denied { relabelto } for pid=9393 comm="syz-executor.0" name="RAW" dev="sockfs" ino=253694 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:faillog_t:s0 tclass=rawip_socket permissive=1 [ 1397.693378] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1397.693394] __vfs_write+0x105/0x6b0 [ 1397.693408] ? sel_read_bool+0x240/0x240 [ 1397.693418] ? kernel_read+0x120/0x120 [ 1397.693442] ? __lock_is_held+0xb6/0x140 [ 1397.693456] ? check_preemption_disabled+0x3c/0x250 [ 1397.747856] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1397.753445] ? rcu_read_lock_sched_held+0x110/0x130 [ 1397.758490] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 1397.763274] ? __sb_start_write+0x153/0x2f0 [ 1397.767625] vfs_write+0x198/0x500 [ 1397.771294] SyS_write+0xfd/0x230 [ 1397.774866] ? SyS_read+0x230/0x230 [ 1397.778516] ? do_syscall_64+0x53/0x640 [ 1397.782682] ? SyS_read+0x230/0x230 [ 1397.786326] do_syscall_64+0x1e8/0x640 [ 1397.790277] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1397.795235] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1397.800442] RIP: 0033:0x45b349 [ 1397.803661] RSP: 002b:00007f76bb272c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 06:49:01 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_open_dev$tty20(0xc, 0x4, 0x0) syz_emit_ethernet(0x3e, &(0x7f0000000000)={@broadcast, @random="96c1e9574b31", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, @time_exceeded={0x5, 0x0, 0x0, 0x0, 0x0, 0x8, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast1, @remote}}}}}}, 0x0) r2 = socket$inet6(0xa, 0x1000000000002, 0x0) r3 = socket$inet(0x2, 0x1, 0x0) connect$inet(r3, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r3, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r3, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r2, r3) getsockopt$inet6_opts(r2, 0x29, 0x37, &(0x7f0000000040)=""/110, &(0x7f00000000c0)=0x6e) 06:49:01 executing program 5: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$inet_tcp_TCP_FASTOPEN_KEY(0xffffffffffffffff, 0x6, 0x21, &(0x7f0000000000)="4f5727110449c8cc2bd2431a69549b7f", 0x10) r2 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dlm_plock\x00', 0x100001, 0x0) r3 = getuid() setreuid(0xee00, r3) quotactl(0x100000000, &(0x7f0000000140)='./file0\x00', r3, &(0x7f0000000180)="78279c8375aaa4d6aafb8fadbaad8ba77c7471b95fb9e3b4e06ae0209893215b22c3652be49e9e397d9a605af5f92c8e85659ef94c9f7dd5d6dab858fba6") accept4$vsock_stream(r2, &(0x7f00000000c0)={0x28, 0x0, 0x0, @my=0x1}, 0x10, 0x0) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6406000000000000"], &(0x7f0000000340)='./file0\x00', &(0x7f0000000100)='reiserfs\x00', 0x70051, 0x0) [ 1397.811505] RAX: ffffffffffffffda RBX: 00007f76bb2736d4 RCX: 000000000045b349 [ 1397.819574] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000009 [ 1397.826858] RBP: 000000000075c070 R08: 0000000000000000 R09: 0000000000000000 [ 1397.834142] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1397.841426] R13: 0000000000000cb1 R14: 00000000004cd905 R15: 000000000075c07c 06:49:01 executing program 3: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='smaps_rollup\x00') r1 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$sock_buf(r1, 0x1, 0x3b, 0x0, &(0x7f0000000300)) sendmsg$IPVS_CMD_SET_INFO(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="1b000010", @ANYRES16=0x0, @ANYBLOB="00022abd7000fedbdf250e0000000800060000000000140003800800030004000000060004000500000008000500ef70000068000280080004000300000014000100fe8000000000000000000000000000bb05000d000000000014000100e00000020000000000000000000000000800080005000000080008000600000014000100ac1414aa00000000000000000000000008000400000000002c00028006000b0002000000080007000100000006000e004e230000080004000000000008000700090000001c0001800800050001000000080009004e000000080009007500000004000280"], 0xec}, 0x1, 0x0, 0x0, 0x80}, 0x14) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) setsockopt$inet6_tcp_buf(r3, 0x6, 0xd, &(0x7f0000000200)="6c5eb6977e4b9d875c7a3e77574da1f81b3facaf1c0ba57707955d58d3d42a60", 0x20) [ 1397.871991] Mem-Info: [ 1397.874536] active_anon:442657 inactive_anon:215 isolated_anon:0 [ 1397.874536] active_file:3250 inactive_file:7122 isolated_file:0 [ 1397.874536] unevictable:0 dirty:256 writeback:0 unstable:0 [ 1397.874536] slab_reclaimable:17635 slab_unreclaimable:149627 [ 1397.874536] mapped:58627 shmem:287 pagetables:33473 bounce:0 [ 1397.874536] free:855683 free_pcp:509 free_cma:0 [ 1397.915944] Node 0 active_anon:1616696kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208956kB dirty:4kB writeback:0kB shmem:1056kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 995328kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes 06:49:01 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_emit_ethernet(0x3e, &(0x7f0000000100)=ANY=[@ANYBLOB="ffffffffffff96c1e9574b310800450000300000000000019078ac1e0001e000000105009078000008004500000000000000000000ff03000001ac1414bb08ba5e36c2ba383cf862e464adeaf84afc15ea2ca08ba9fd82e769b6f87857e7057058d4ea4d431e88489bc767b149d5949238a0bb389d5dda20548af67ce6de2a1f019d68b66192b5324797f542295a2e41f17df488d2a0c085fc5daefcb482c9f8e10fb40d556b13c8ef6daa3e123aad9b7647ccde4d3ace32067816cffe903edc26580ab940c490df6d36bcc640f0405f8df6ba4a46a8d3cba55c3c85cdf0cfdeaf6b90ea1b9c4d30fe4b"], 0x0) 06:49:01 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r5 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm_plock\x00', 0x600341, 0x0) ioctl$ASHMEM_SET_SIZE(r5, 0x40087703, 0x7) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) fcntl$F_GET_RW_HINT(r2, 0x40b, &(0x7f0000000040)) ioctl$KVM_RUN(r4, 0xae80, 0x0) [ 1397.958259] Node 1 active_anon:154032kB inactive_anon:96kB active_file:12952kB inactive_file:28480kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:25652kB dirty:1020kB writeback:0kB shmem:92kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1397.987561] Node 0 DMA free:10464kB min:216kB low:268kB high:320kB active_anon:4508kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:96kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1398.016148] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 1398.021725] Node 0 DMA32 free:40464kB min:36380kB low:45472kB high:54564kB active_anon:1612188kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB writepending:4kB present:3129332kB managed:2634344kB mlocked:0kB kernel_stack:20864kB pagetables:53608kB bounce:0kB free_pcp:1128kB local_pcp:540kB free_cma:0kB [ 1398.062890] lowmem_reserve[]: 0 0 0 0 0 06:49:02 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x24e083, 0x0) [ 1398.070192] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1398.121618] lowmem_reserve[]: 0 0 0 0 0 [ 1398.125762] Node 1 Normal free:3372188kB min:53508kB low:66884kB high:80260kB active_anon:153688kB inactive_anon:68kB active_file:12968kB inactive_file:28524kB unevictable:0kB writepending:1040kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:27136kB pagetables:80120kB bounce:0kB free_pcp:1112kB local_pcp:500kB free_cma:0kB [ 1398.157679] lowmem_reserve[]: 0 0 0 0 0 [ 1398.163380] Node 0 DMA: 16*4kB (UME) 16*8kB (UE) 14*16kB (UME) 16*32kB (UME) 17*64kB (U) 6*128kB (UE) 6*256kB (UE) 2*512kB (ME) 3*1024kB (UME) 1*2048kB (E) 0*4096kB = 10464kB [ 1398.181167] Node 0 DMA32: 134*4kB (UMEH) 134*8kB (UMEH) 1183*16kB (UMEH) 364*32kB (UMH) 126*64kB (UMH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 40248kB [ 1398.211137] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1398.242057] Node 1 Normal: 106*4kB (UME) 10*8kB (UME) 48*16kB (UME) 71*32kB (UME) 47*64kB (UME) 24*128kB (UME) 67*256kB (UME) 56*512kB (UME) 13*1024kB (UME) 1*2048kB (U) 806*4096kB (M) = 3372184kB [ 1398.287108] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1398.296596] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1398.306248] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1398.335038] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1398.360969] 10670 total pagecache pages [ 1398.369144] 0 pages in swap cache [ 1398.385542] Swap cache stats: add 0, delete 0, find 0/0 [ 1398.401416] Free swap = 0kB [ 1398.422206] Total swap = 0kB [ 1398.427918] 1965979 pages RAM 06:49:02 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r2) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)=@can_newroute={0x1c, 0x18, 0x200, 0x70bd2b, 0x25dfdbfe, {0x1d, 0x1, 0x1}, [@CGW_SRC_IF={0x8, 0x9, r3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x10000004}, 0x40080) r4 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/load\x00', 0x2, 0x0) write$selinux_load(r4, 0x0, 0x0) 06:49:02 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f0000000080)='/dev/adsp1\x00', 0x0, 0x0) r0 = socket$l2tp6(0xa, 0x2, 0x73) getsockopt$IP_SET_OP_GET_FNAME(r0, 0x1, 0x53, &(0x7f0000000000)={0x8, 0x7, 0x0, 'syz1\x00'}, &(0x7f0000000040)=0x2c) 06:49:02 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_emit_ethernet(0x3e, &(0x7f0000000140)=ANY=[@ANYBLOB="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"], 0x0) [ 1398.435357] 0 pages HighMem/MovableOnly [ 1398.442481] 335868 pages reserved [ 1398.450666] 0 pages cma reserved [ 1398.597278] syz-executor.1: vmalloc: allocation failure: 0 bytes, mode:0x14000c0(GFP_KERNEL), nodemask=(null) [ 1398.614115] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1398.619944] CPU: 0 PID: 9461 Comm: syz-executor.1 Not tainted 4.14.167-syzkaller #0 [ 1398.627752] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1398.637242] Call Trace: [ 1398.639859] dump_stack+0x142/0x197 [ 1398.643513] warn_alloc.cold+0x96/0x1af [ 1398.647511] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 1398.652391] ? lock_downgrade+0x740/0x740 [ 1398.656569] ? avc_has_perm+0x2df/0x4b0 [ 1398.660704] __vmalloc_node_range+0x3c3/0x6a0 [ 1398.665367] ? trace_hardirqs_on+0x10/0x10 [ 1398.669640] vmalloc+0x46/0x50 [ 1398.672841] ? sel_write_load+0x1a0/0x1050 [ 1398.677066] sel_write_load+0x1a0/0x1050 [ 1398.681128] ? save_trace+0x290/0x290 [ 1398.684949] ? sel_read_bool+0x240/0x240 [ 1398.689021] ? trace_hardirqs_on+0x10/0x10 [ 1398.693268] ? debug_smp_processor_id+0x1c/0x20 [ 1398.697931] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1398.702913] __vfs_write+0x105/0x6b0 [ 1398.706623] ? sel_read_bool+0x240/0x240 [ 1398.710687] ? kernel_read+0x120/0x120 [ 1398.714635] ? __lock_is_held+0xb6/0x140 [ 1398.718692] ? check_preemption_disabled+0x3c/0x250 [ 1398.723722] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1398.729273] ? rcu_read_lock_sched_held+0x110/0x130 [ 1398.734300] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 1398.739176] ? __sb_start_write+0x153/0x2f0 [ 1398.743495] vfs_write+0x198/0x500 [ 1398.747061] SyS_write+0xfd/0x230 [ 1398.750632] ? SyS_read+0x230/0x230 [ 1398.754268] ? do_syscall_64+0x53/0x640 [ 1398.758255] ? SyS_read+0x230/0x230 [ 1398.761978] do_syscall_64+0x1e8/0x640 [ 1398.766141] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1398.771005] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1398.776295] RIP: 0033:0x45b349 [ 1398.780331] RSP: 002b:00007f76bb2b4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1398.789675] RAX: ffffffffffffffda RBX: 00007f76bb2b56d4 RCX: 000000000045b349 [ 1398.798227] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000007 [ 1398.807434] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1398.814974] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1398.822686] R13: 0000000000000cb1 R14: 00000000004cd905 R15: 000000000075bf2c [ 1398.847580] syz-executor.1: vmalloc: allocation failure: 0 bytes, mode:0x14000c0(GFP_KERNEL), nodemask=(null) [ 1398.860110] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1398.897969] CPU: 1 PID: 9462 Comm: syz-executor.1 Not tainted 4.14.167-syzkaller #0 [ 1398.906410] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1398.916467] Call Trace: [ 1398.919091] dump_stack+0x142/0x197 [ 1398.922765] warn_alloc.cold+0x96/0x1af [ 1398.926784] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 1398.931729] ? lock_downgrade+0x740/0x740 [ 1398.935990] ? avc_has_perm+0x2df/0x4b0 [ 1398.940068] __vmalloc_node_range+0x3c3/0x6a0 [ 1398.944703] ? drop_futex_key_refs.isra.0+0x56/0xb0 [ 1398.949872] vmalloc+0x46/0x50 [ 1398.953258] ? sel_write_load+0x1a0/0x1050 [ 1398.957586] sel_write_load+0x1a0/0x1050 [ 1398.961707] ? find_held_lock+0x35/0x130 [ 1398.965787] ? sel_read_bool+0x240/0x240 [ 1398.969859] ? trace_hardirqs_on+0x10/0x10 [ 1398.974110] ? debug_smp_processor_id+0x1c/0x20 [ 1398.978903] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1398.983933] __vfs_write+0x105/0x6b0 [ 1398.987676] ? sel_read_bool+0x240/0x240 [ 1398.991788] ? kernel_read+0x120/0x120 [ 1398.995797] ? __lock_is_held+0xb6/0x140 [ 1399.000081] ? check_preemption_disabled+0x3c/0x250 [ 1399.005302] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1399.011290] ? rcu_read_lock_sched_held+0x110/0x130 [ 1399.016323] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 1399.021073] ? __sb_start_write+0x153/0x2f0 [ 1399.025737] vfs_write+0x198/0x500 [ 1399.029279] SyS_write+0xfd/0x230 [ 1399.032724] ? SyS_read+0x230/0x230 [ 1399.036504] ? do_syscall_64+0x53/0x640 [ 1399.040486] ? SyS_read+0x230/0x230 [ 1399.044107] do_syscall_64+0x1e8/0x640 [ 1399.048006] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1399.052838] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1399.058053] RIP: 0033:0x45b349 [ 1399.061232] RSP: 002b:00007f76bb2b4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1399.069425] RAX: ffffffffffffffda RBX: 00007f76bb2b56d4 RCX: 000000000045b349 [ 1399.076999] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000008 [ 1399.084355] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1399.091633] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1399.099522] R13: 0000000000000cb1 R14: 00000000004cd905 R15: 000000000075bf2c [ 1399.108487] warn_alloc_show_mem: 1 callbacks suppressed [ 1399.108490] Mem-Info: [ 1399.116422] active_anon:442620 inactive_anon:211 isolated_anon:0 [ 1399.116422] active_file:3256 inactive_file:7138 isolated_file:0 [ 1399.116422] unevictable:0 dirty:271 writeback:0 unstable:0 [ 1399.116422] slab_reclaimable:17638 slab_unreclaimable:149516 [ 1399.116422] mapped:58602 shmem:285 pagetables:33454 bounce:0 [ 1399.116422] free:856053 free_pcp:530 free_cma:0 [ 1399.152117] Node 0 active_anon:1616696kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208956kB dirty:4kB writeback:0kB shmem:1056kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 995328kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1399.180179] Node 1 active_anon:153784kB inactive_anon:80kB active_file:12976kB inactive_file:28544kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:25452kB dirty:1080kB writeback:0kB shmem:84kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1399.207998] Node 0 DMA free:10464kB min:216kB low:268kB high:320kB active_anon:4508kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:96kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1399.236408] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 1399.241849] Node 0 DMA32 free:41120kB min:36380kB low:45472kB high:54564kB active_anon:1612188kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB writepending:4kB present:3129332kB managed:2634344kB mlocked:0kB kernel_stack:20864kB pagetables:53608kB bounce:0kB free_pcp:1236kB local_pcp:616kB free_cma:0kB [ 1399.271171] lowmem_reserve[]: 0 0 0 0 0 [ 1399.275417] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1399.300908] lowmem_reserve[]: 0 0 0 0 0 [ 1399.305197] Node 1 Normal free:3372816kB min:53508kB low:66884kB high:80260kB active_anon:153784kB inactive_anon:80kB active_file:12976kB inactive_file:28544kB unevictable:0kB writepending:1084kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:27040kB pagetables:80172kB bounce:0kB free_pcp:916kB local_pcp:232kB free_cma:0kB [ 1399.335725] lowmem_reserve[]: 0 0 0 0 0 [ 1399.339744] Node 0 DMA: 16*4kB (UME) 16*8kB (UE) 14*16kB (UME) 16*32kB (UME) 17*64kB (U) 6*128kB (UE) 6*256kB (UE) 2*512kB (ME) 3*1024kB (UME) 1*2048kB (E) 0*4096kB = 10464kB [ 1399.355787] Node 0 DMA32: 134*4kB (UMEH) 145*8kB (UMEH) 1166*16kB (UMEH) 395*32kB (UMEH) 127*64kB (UMH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 41120kB [ 1399.371537] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1399.382594] Node 1 Normal: 172*4kB (UME) 38*8kB (UME) 51*16kB (UME) 82*32kB (UME) 45*64kB (UME) 25*128kB (UME) 66*256kB (UME) 56*512kB (UME) 13*1024kB (UME) 1*2048kB (U) 806*4096kB (M) = 3372816kB [ 1399.400831] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1399.409698] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1399.418548] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1399.427474] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1399.436279] 10682 total pagecache pages [ 1399.440378] 0 pages in swap cache [ 1399.446030] Swap cache stats: add 0, delete 0, find 0/0 [ 1399.451738] Free swap = 0kB [ 1399.454780] Total swap = 0kB [ 1399.457835] 1965979 pages RAM [ 1399.461016] 0 pages HighMem/MovableOnly [ 1399.465117] 335868 pages reserved [ 1399.468687] 0 pages cma reserved 06:49:04 executing program 5: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) socket$inet_icmp_raw(0x2, 0x3, 0x1) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) r1 = socket$inet(0x2, 0x1, 0x0) connect$inet(r1, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r1, &(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r1, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r0, r1) r2 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000200)=@nullb='/dev/nullb0\x00', &(0x7f0000000340)='./file0\x00', &(0x7f0000000100)='reiserfs\x00', 0x0, 0x0) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) ioctl$TIOCGSERIAL(r6, 0x541e, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000380)=""/129}) 06:49:04 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x4, 0x405, 0x4000000, 0x0, 0x0, 0x0, 0xfff, 0x2, 0x0, 0x0, 0x0, 0x0, 0x6]}) delete_module(&(0x7f0000000300)='GPLvboxnet0eth1user\x00', 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040)='nl80211\x00') sendmsg$NL80211_CMD_GET_STATION(r3, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x14, r5, 0x20, 0x70bd2c, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x8090}, 0x40000) ioctl$KVM_RUN(r4, 0xae80, 0x0) 06:49:04 executing program 4: socket$inet_icmp_raw(0x2, 0x3, 0x1) openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/expire_quiescent_template\x00', 0x2, 0x0) r0 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/attr/sockcreate\x00', 0x2, 0x0) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_emit_ethernet(0x3e, &(0x7f0000000000)={@broadcast, @random="96c1e9574b31", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, @time_exceeded={0x5, 0x0, 0x0, 0x0, 0x0, 0x8, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast1, @remote}}}}}}, 0x0) 06:49:04 executing program 3: clock_gettime(0x0, &(0x7f0000000000)={0x0, 0x0}) r2 = socket$inet6(0xa, 0x1000000000002, 0x0) r3 = socket$inet(0x2, 0x1, 0x0) connect$inet(r3, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r3, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r3, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r2, r3) ioctl$VIDIOC_QBUF(0xffffffffffffffff, 0xc058560f, &(0x7f0000000080)={0xa1, 0x6, 0x4, 0x0, 0x5, {r0, r1/1000+10000}, {0x3, 0x1, 0x6, 0x4, 0x0, 0xff, "93f015ba"}, 0x8, 0x7, @planes=&(0x7f0000000040)={0x85, 0x5, @mem_offset=0x9, 0x8001}, 0xb9, 0x0, r2}) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r4, 0x84, 0x6b, &(0x7f0000000100)=[@in={0x2, 0x4e20, @initdev={0xac, 0x1e, 0x1, 0x0}}], 0x10) 06:49:04 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(0xffffffffffffffff, 0x84, 0x16, &(0x7f0000000080)={0x3, [0x9, 0x0, 0x4]}, 0xa) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/load\x00', 0x2, 0x0) write$selinux_load(r2, 0x0, 0x0) 06:49:04 executing program 2: pipe2(&(0x7f0000000280)={0xffffffffffffffff}, 0x4800) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040)='TIPC\x00') sendmsg$TIPC_CMD_SHOW_LINK_STATS(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000700)=ANY=[@ANYBLOB="a4000000", @ANYRES16=r2, @ANYBLOB="3f02000000000000000001000000000000000b000000008800146272818aba636173742d7c696e6b000024c513e7c06b4041543facf725950f5cf793af57a8633064970b88b15a648a0d11999348f263ec3fb9c0070549e8f3762bcfa224329acf202512214a60d00c2059fd203214f2596a19a4e4369f856c54a90e86833ccc6853b57d980e09c0573c4098e7b570abf02c52d38dac1e21fa14a3e78650afb6e804bf4677708d65313270da240d59623d7899c92c714fa7804c100e9e"], 0xa4}, 0x1, 0xfffffff0}, 0x0) sendmsg$TIPC_CMD_ENABLE_BEARER(r0, &(0x7f00000003c0)={&(0x7f0000000300), 0xc, &(0x7f0000000380)={&(0x7f00000005c0)=ANY=[@ANYBLOB="a66bf04d", @ANYRES16=r2, @ANYRESDEC], 0x3}, 0x1, 0x0, 0x0, 0x20008884}, 0x4040000) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) getuid() r5 = syz_open_dev$dmmidi(&(0x7f0000000640)='/dev/dmmidi#\x00', 0x7, 0x40480) fstat(r5, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) getgid() r7 = getuid() setreuid(0xee00, r7) r8 = getuid() r9 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000400)='/selinux/checkreqprot\x00', 0x24a000, 0x0) r10 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r10, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) r11 = socket$inet(0x10, 0x2, 0x0) ioctl$sock_ifreq(r11, 0x89f0, &(0x7f0000000180)={'ip6_vti0\x00', @ifru_mtu=0x100}) r12 = dup2(r10, r11) r13 = socket$inet_sctp(0x2, 0x0, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r13, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f0000000280)={r14, 0x30, "ac6a82d2b5acd821e04d0478a404040000000000000087626c7e3cf456672c29c8210efff7d41ca642f4117fc2f8164e"}, 0x0) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r12, 0x84, 0x71, &(0x7f00000001c0)={r14, 0xffffffff}, &(0x7f0000000340)=0x8) getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000440)={r14, @in6={{0xa, 0x4e21, 0x2, @remote}}}, &(0x7f0000000500)=0x84) getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(r9, 0x84, 0x6d, &(0x7f0000000540)=ANY=[@ANYRES32=r15, @ANYBLOB="1e0000001f373a8197114d77e22a4a66e6e43f7ce9dcf822c8d5772480ea64e5afd6"], &(0x7f0000000580)=0x26) setreuid(0xee00, r8) r16 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r17 = dup(r16) ioctl$PERF_EVENT_IOC_ENABLE(r17, 0x8912, 0x400200) ioctl$PPPIOCSACTIVE(r17, 0x40107446, &(0x7f0000000080)={0xa, &(0x7f0000000200)=[{0x8d9, 0x1, 0x4, 0x7}, {0xef, 0xa7, 0x0, 0x400}, {0x3, 0x7f, 0x81, 0x80000000}, {0x301, 0x20, 0x5, 0x7e}, {0x3f, 0x1f, 0x80, 0x8}, {0xf87f, 0x5, 0x80, 0x2fc}, {0x1, 0xeb, 0x3f, 0x467}, {0xa66, 0x2, 0x3f, 0x8}, {0x3, 0x80, 0x13, 0x3}, {0x3f, 0x1, 0x0, 0xffff}]}) lchown(&(0x7f00000001c0)='./file0\x00', 0xffffffffffffffff, r6) [ 1400.583442] syz-executor.1: vmalloc: allocation failure: 0 bytes, mode:0x14000c0(GFP_KERNEL), nodemask=(null) 06:49:04 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/load\x00', 0x2, 0x0) [ 1400.645098] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1400.687392] cgroup: cgroup2: unknown option "º" [ 1400.697742] CPU: 1 PID: 9474 Comm: syz-executor.1 Not tainted 4.14.167-syzkaller #0 [ 1400.707372] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1400.717238] Call Trace: [ 1400.720044] dump_stack+0x142/0x197 [ 1400.723836] warn_alloc.cold+0x96/0x1af [ 1400.728485] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 1400.733713] ? lock_downgrade+0x740/0x740 [ 1400.738075] ? avc_has_perm+0x2df/0x4b0 [ 1400.742435] __vmalloc_node_range+0x3c3/0x6a0 [ 1400.747278] ? trace_hardirqs_on+0x10/0x10 [ 1400.752479] vmalloc+0x46/0x50 [ 1400.756520] ? sel_write_load+0x1a0/0x1050 [ 1400.761225] sel_write_load+0x1a0/0x1050 [ 1400.765395] ? save_trace+0x290/0x290 [ 1400.769245] ? sel_read_bool+0x240/0x240 [ 1400.773341] ? trace_hardirqs_on+0x10/0x10 [ 1400.778552] ? debug_smp_processor_id+0x1c/0x20 [ 1400.783262] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1400.788211] __vfs_write+0x105/0x6b0 [ 1400.792821] ? sel_read_bool+0x240/0x240 [ 1400.797507] ? kernel_read+0x120/0x120 [ 1400.801521] ? __lock_is_held+0xb6/0x140 [ 1400.805643] ? check_preemption_disabled+0x3c/0x250 [ 1400.810686] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1400.816157] ? rcu_read_lock_sched_held+0x110/0x130 [ 1400.821191] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 1400.826051] ? __sb_start_write+0x153/0x2f0 [ 1400.830390] vfs_write+0x198/0x500 [ 1400.833948] SyS_write+0xfd/0x230 [ 1400.837594] ? SyS_read+0x230/0x230 [ 1400.841766] ? do_syscall_64+0x53/0x640 [ 1400.845884] ? SyS_read+0x230/0x230 [ 1400.849569] do_syscall_64+0x1e8/0x640 [ 1400.853496] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1400.858632] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1400.863837] RIP: 0033:0x45b349 [ 1400.867050] RSP: 002b:00007f76bb2b4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1400.874786] RAX: ffffffffffffffda RBX: 00007f76bb2b56d4 RCX: 000000000045b349 [ 1400.882070] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005 [ 1400.889354] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 06:49:04 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) getsockopt$inet_mtu(r2, 0x0, 0xa, &(0x7f0000000080), &(0x7f00000000c0)=0x4) r3 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) ioctl$VIDIOC_OVERLAY(r5, 0x4004560e, &(0x7f0000000100)=0xfff) 06:49:04 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_emit_ethernet(0x3e, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffff310800450000300000000000019078ac1e0001e00000010500907800000800450000000000000000000000e0000001ac1414bb"], 0x0) [ 1400.896648] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1400.903935] R13: 0000000000000cb1 R14: 00000000004cd905 R15: 000000000075bf2c [ 1400.918305] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 1400.929251] Mem-Info: [ 1400.933166] active_anon:442638 inactive_anon:211 isolated_anon:0 [ 1400.933166] active_file:3258 inactive_file:7138 isolated_file:0 06:49:04 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r0) syz_emit_ethernet(0x3e, &(0x7f0000000000)={@broadcast, @random="96c1e9574b31", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, @time_exceeded={0x5, 0x0, 0x0, 0x0, 0x0, 0x8, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast1, @remote}}}}}}, 0x0) 06:49:04 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) r5 = openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/avc/cache_stats\x00', 0x0, 0x0) write$P9_RREADLINK(r5, &(0x7f0000000040)={0x10, 0x17, 0x1, {0x7, './file0'}}, 0x10) [ 1400.933166] unevictable:0 dirty:275 writeback:0 unstable:0 [ 1400.933166] slab_reclaimable:17625 slab_unreclaimable:149820 [ 1400.933166] mapped:58602 shmem:285 pagetables:33502 bounce:0 [ 1400.933166] free:855594 free_pcp:419 free_cma:0 06:49:05 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000080)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='coda\x00', 0xac60da, &(0x7f0000000100)='\x8ch\x1c\xb0Q\xc7m\x87\xeez\r\xa4\xe2\x9d\x98\x01\x93/\b\xebe\x83\x9a\x18\x81') [ 1400.983505] Node 0 active_anon:1616696kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208956kB dirty:4kB writeback:0kB shmem:1056kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 995328kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1401.015019] cgroup: cgroup2: unknown option "º" [ 1401.035084] cgroup: cgroup2: unknown option "º" [ 1401.094363] Node 1 active_anon:153856kB inactive_anon:80kB active_file:12984kB inactive_file:28544kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:25452kB dirty:1096kB writeback:0kB shmem:84kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1401.218798] Node 0 DMA free:10464kB min:216kB low:268kB high:320kB active_anon:4508kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:96kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1401.258838] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 1401.265037] Node 0 DMA32 free:40300kB min:36380kB low:45472kB high:54564kB active_anon:1612188kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB writepending:4kB present:3129332kB managed:2634344kB mlocked:0kB kernel_stack:20864kB pagetables:53608kB bounce:0kB free_pcp:1036kB local_pcp:404kB free_cma:0kB [ 1401.299175] lowmem_reserve[]: 0 0 0 0 0 [ 1401.303635] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1401.308183] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 1401.334131] lowmem_reserve[]: 0 0 0 0 0 06:49:05 executing program 5: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$sock_SIOCGIFVLAN_GET_VLAN_VID_CMD(r0, 0x8982, &(0x7f0000000180)) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) ioctl$VIDIOC_TRY_EXT_CTRLS(r1, 0xc0205649, &(0x7f00000000c0)={0xa00000, 0x401, 0x2, 0xffffffffffffffff, 0x0, &(0x7f0000000080)={0x9c0906, 0xe676, [], @string=&(0x7f0000000000)=0x5}}) write$P9_RXATTRWALK(r2, &(0x7f0000000140)={0xf, 0x1f, 0x2, 0xb406}, 0xf) mount(&(0x7f00000001c0)=ANY=[@ANYBLOB="2f9badc52000149ec2623000ca0a021ee19133f60c09f080953af314e6311d9e4c54ecb17eb8b4ab4d5aa06e5f1c123a64dfbbb9ec"], &(0x7f0000000340)='./file0\x00', &(0x7f0000000100)='reiserfs\x00', 0x0, 0x0) 06:49:05 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/load\x00', 0x2, 0x0) write$selinux_load(r2, 0x0, 0x0) socketpair(0x26, 0x4, 0x33, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = socket$netlink(0x10, 0x3, 0x0) r5 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000300)='/dev/vga_arbiter\x00', 0x10000, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f0000000400)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000440)=0xffffffffffffff47) sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x2a9, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r6, @ANYBLOB="000000000000000028001200090001007665746800000000180002001400010000000000", @ANYRES32=0x0, @ANYBLOB="0000b20000000000"], 0x48}}, 0x0) r7 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0)='nl80211\x00') sendmsg$NL80211_CMD_GET_INTERFACE(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000000)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="874b00000000000000000500000008000300", @ANYRES32=r6, @ANYBLOB], 0x1c}}, 0x0) r8 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r9 = dup(r8) ioctl$PERF_EVENT_IOC_ENABLE(r9, 0x8912, 0x400200) sendmsg$NL80211_CMD_SET_BEACON(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x1010}, 0xc, &(0x7f0000000280)={&(0x7f0000000a00)={0x8f8, 0x0, 0x200, 0x70bd29, 0x25dfdbfd, {}, [@NL80211_ATTR_IE_PROBE_RESP={0x8da, 0x7f, "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"}, @NL80211_ATTR_BEACON_INTERVAL={0x8, 0xc, 0x7}]}, 0x8f8}, 0x1, 0x0, 0x0, 0xc840}, 0x4080) getsockopt$inet_mreqn(r9, 0x0, 0x24, &(0x7f00000000c0)={@broadcast, @loopback, 0x0}, &(0x7f0000000100)=0xc) r11 = socket$netlink(0x10, 0x3, 0x0) setsockopt$inet_buf(r0, 0x0, 0x2f, &(0x7f0000000340)="a9426712ba3daf04a97211ef5281621228d14ab803ae09f76b715c928e85", 0x1e) r12 = socket$netlink(0x10, 0x3, 0x0) r13 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r13, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r13, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x2ba) r15 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r16 = dup(r15) ioctl$PERF_EVENT_IOC_ENABLE(r16, 0x8912, 0x400200) ioctl$LOOP_SET_DIRECT_IO(r16, 0x4c08, 0x7) sendmsg$nl_route(r12, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB="3c0000001000850600"/18, @ANYRES32=r14, @ANYBLOB="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"], 0x3}}, 0x0) sendmsg$nl_route(r11, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000007c0)=ANY=[@ANYBLOB="4400000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012000c00010067726574617000000c00020008000100", @ANYRES32=r14, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r14, @ANYBLOB="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"], 0x44}}, 0x0) sendmsg$NL80211_CMD_SET_MPATH(r3, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x5040}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="7c000200", @ANYRES16=r7, @ANYBLOB="000426bd7000fcdbdf251600000008000300", @ANYRES32=r10, @ANYBLOB="080001000000000008000300", @ANYRES32=r14, @ANYBLOB="0a00060000000000000000000a00060000000000000000000a000600aaaaaaaaaabb00000a00060000000000000000000c009900050000000300000008000100040000000a000600aaaaaaaaaa330000"], 0x7c}, 0x1, 0x0, 0x0, 0x800}, 0x4000040) 06:49:05 executing program 3: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$TIOCL_PASTESEL(r1, 0x541c, &(0x7f0000000000)) openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) 06:49:05 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) clock_gettime(0x0, &(0x7f0000000080)={0x0, 0x0}) ioctl$TUNSETVNETHDRSZ(r1, 0x400454d8, &(0x7f00000001c0)=0x1) timerfd_settime(r3, 0x0, &(0x7f00000000c0)={{0x77359400}, {r4, r5+10000000}}, &(0x7f0000000100)) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x400, &(0x7f00000002c0)) [ 1401.344717] Node 1 Normal free:3372080kB min:53508kB low:66884kB high:80260kB active_anon:153900kB inactive_anon:72kB active_file:12992kB inactive_file:28580kB unevictable:0kB writepending:1120kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:27168kB pagetables:80220kB bounce:0kB free_pcp:1340kB local_pcp:708kB free_cma:0kB [ 1401.382580] cgroup: cgroup2: unknown option "º" [ 1401.425481] batman_adv: Cannot find parent device [ 1401.437989] lowmem_reserve[]: 0 0 0 0 0 [ 1401.443797] Node 0 DMA: 16*4kB (UME) 16*8kB (UE) 14*16kB (UME) 16*32kB (UME) 17*64kB (U) 6*128kB (UE) 6*256kB (UE) 2*512kB (ME) 3*1024kB (UME) 1*2048kB (E) 0*4096kB = 10464kB [ 1401.472095] Node 0 DMA32: 133*4kB (UMEH) 208*8kB (UMEH) 1033*16kB (UMEH) 430*32kB (UMEH) 128*64kB (UMH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 40676kB [ 1401.505764] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1401.530243] Node 1 Normal: 177*4kB (UME) 40*8kB (UME) 27*16kB (UME) 73*32kB (UME) 47*64kB (UME) 29*128kB (UME) 64*256kB (UME) 56*512kB (UME) 13*1024kB (UME) 1*2048kB (U) 806*4096kB (M) = 3372308kB [ 1401.559618] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1401.579652] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1401.595589] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1401.605808] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1401.619438] 10690 total pagecache pages [ 1401.625924] 0 pages in swap cache [ 1401.629403] Swap cache stats: add 0, delete 0, find 0/0 [ 1401.639608] Free swap = 0kB [ 1401.643653] Total swap = 0kB [ 1401.646693] 1965979 pages RAM [ 1401.649811] 0 pages HighMem/MovableOnly [ 1401.658364] 335868 pages reserved [ 1401.662803] 0 pages cma reserved [ 1401.666234] syz-executor.4: vmalloc: allocation failure: 0 bytes, mode:0x14000c0(GFP_KERNEL), nodemask=(null) [ 1401.678272] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 1401.683809] CPU: 1 PID: 9531 Comm: syz-executor.4 Not tainted 4.14.167-syzkaller #0 [ 1401.692396] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1401.701900] Call Trace: [ 1401.704691] dump_stack+0x142/0x197 [ 1401.709706] warn_alloc.cold+0x96/0x1af [ 1401.713889] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 1401.718751] ? lock_downgrade+0x740/0x740 [ 1401.722934] ? avc_has_perm+0x2df/0x4b0 [ 1401.727362] __vmalloc_node_range+0x3c3/0x6a0 [ 1401.731881] vmalloc+0x46/0x50 [ 1401.735094] ? sel_write_load+0x1a0/0x1050 [ 1401.739434] sel_write_load+0x1a0/0x1050 [ 1401.743559] ? save_trace+0x290/0x290 [ 1401.747398] ? sel_read_bool+0x240/0x240 [ 1401.751513] ? trace_hardirqs_on+0x10/0x10 [ 1401.755776] ? debug_smp_processor_id+0x1c/0x20 [ 1401.760462] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1401.765409] __vfs_write+0x105/0x6b0 [ 1401.769132] ? sel_read_bool+0x240/0x240 [ 1401.773216] ? kernel_read+0x120/0x120 [ 1401.777114] ? __lock_is_held+0xb6/0x140 [ 1401.781189] ? check_preemption_disabled+0x3c/0x250 [ 1401.786214] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1401.791672] ? rcu_read_lock_sched_held+0x110/0x130 [ 1401.796696] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 1401.801465] ? __sb_start_write+0x153/0x2f0 [ 1401.805804] vfs_write+0x198/0x500 [ 1401.809348] SyS_write+0xfd/0x230 [ 1401.812818] ? SyS_read+0x230/0x230 [ 1401.816466] ? do_syscall_64+0x53/0x640 [ 1401.820444] ? SyS_read+0x230/0x230 [ 1401.824098] do_syscall_64+0x1e8/0x640 [ 1401.828014] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1401.832899] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1401.838101] RIP: 0033:0x45b349 [ 1401.841296] RSP: 002b:00007f5a14f59c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1401.849022] RAX: ffffffffffffffda RBX: 00007f5a14f5a6d4 RCX: 000000000045b349 [ 1401.856308] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005 [ 1401.863634] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1401.870917] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff 06:49:05 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/load\x00', 0x2, 0x0) socket$rds(0x15, 0x5, 0x0) write$selinux_load(r2, 0x0, 0x0) r3 = socket$inet6(0xa, 0x1000000000002, 0x0) r4 = socket$inet(0x2, 0x1, 0x0) connect$inet(r4, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r4, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r4, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r3, r4) read(r4, &(0x7f0000000040)=""/93, 0x5d) 06:49:05 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = syz_open_dev$mice(&(0x7f0000000040)='/dev/input/mice\x00', 0x0, 0xa2000) ioctl$VIDIOC_SUBDEV_S_FMT(r4, 0xc0585605, &(0x7f0000000180)={0x0, 0x0, {0x9, 0xffffffff, 0x1016, 0x5, 0x8, 0x2, 0x2, 0x2}}) r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x32d29351e9b7a225, 0x0) 06:49:05 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) 06:49:05 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x204000, 0x0) r0 = getuid() setuid(r0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$EVIOCGBITSW(r2, 0x80404525, &(0x7f0000000040)=""/55) 06:49:05 executing program 5: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = getuid() setreuid(0xee00, r1) lstat(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0}) newfstatat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x4000) r4 = getuid() setreuid(0xee00, r4) r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) r7 = getuid() setreuid(0xee00, r7) ioctl$DRM_IOCTL_GET_CLIENT(r6, 0xc0286405, &(0x7f0000000300)={0x6, 0x8f93, {}, {r7}, 0x7, 0x8}) r9 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r10 = dup(r9) ioctl$PERF_EVENT_IOC_ENABLE(r10, 0x8912, 0x400200) ioctl$NS_GET_OWNER_UID(r10, 0xb704, &(0x7f0000000380)=0x0) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f00000003c0)={{{@in6=@loopback, @in=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@remote}, 0x0, @in=@loopback}}, &(0x7f00000004c0)=0xe8) lsetxattr$system_posix_acl(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='system.posix_acl_default\x00', &(0x7f0000000500)={{}, {0x1, 0x6}, [{0x2, 0x0, r1}, {0x2, 0x5, r2}, {0x2, 0x4, r3}, {0x2, 0x2, r4}, {0x2, 0x4, r8}, {0x2, 0x4, r11}, {0x2, 0x1, r12}], {0x4, 0x5}, [], {0x10, 0x4}, {0x20, 0x1}}, 0x5c, 0x0) r13 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r13, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r14 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r15 = dup(r14) ioctl$PERF_EVENT_IOC_ENABLE(r15, 0x8912, 0x400200) connect$bt_l2cap(r15, &(0x7f0000000000)={0x1f, 0x3, @any, 0x8, 0x2}, 0xe) mount(&(0x7f0000000200)=@nullb='/dev/nullb0\x00', &(0x7f0000000340)='./file0\x00', &(0x7f0000000100)='reiserfs\x00', 0x0, 0x0) [ 1401.878272] R13: 0000000000000cb1 R14: 00000000004cd905 R15: 000000000075bf2c 06:49:05 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) ioctl$TUNSETSNDBUF(r5, 0x400454d4, &(0x7f0000000000)=0x53) r6 = gettid() tkill(r6, 0x1000000000013) r7 = syz_open_procfs(r6, &(0x7f00000002c0)='net/rt6_stats\x00') openat$cgroup_int(r7, &(0x7f0000000180)='cgroup.max.depth\x00', 0x2, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r8 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r8, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x4, 0x0, 0x0, 0x0, 0xfff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffff8]}) ioctl$KVM_RUN(r8, 0xae80, 0x0) ioctl$KVM_RUN(r8, 0xae80, 0x0) [ 1401.906535] cgroup: cgroup2: unknown option "º" [ 1401.915629] syz-executor.1: vmalloc: allocation failure: 0 bytes, mode:0x14000c0(GFP_KERNEL), nodemask=(null) [ 1401.936329] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1401.943764] CPU: 1 PID: 9554 Comm: syz-executor.1 Not tainted 4.14.167-syzkaller #0 [ 1401.951584] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1401.961207] Call Trace: [ 1401.963807] dump_stack+0x142/0x197 [ 1401.967584] warn_alloc.cold+0x96/0x1af [ 1401.971570] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 1401.976461] ? lock_downgrade+0x740/0x740 [ 1401.981782] ? avc_has_perm+0x2df/0x4b0 [ 1401.985775] __vmalloc_node_range+0x3c3/0x6a0 [ 1401.990318] vmalloc+0x46/0x50 [ 1401.993520] ? sel_write_load+0x1a0/0x1050 [ 1401.997746] sel_write_load+0x1a0/0x1050 [ 1402.001817] ? save_trace+0x290/0x290 [ 1402.005636] ? sel_read_bool+0x240/0x240 [ 1402.009702] ? trace_hardirqs_on+0x10/0x10 [ 1402.013977] ? debug_smp_processor_id+0x1c/0x20 [ 1402.018687] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1402.023632] __vfs_write+0x105/0x6b0 [ 1402.027353] ? sel_read_bool+0x240/0x240 [ 1402.031417] ? kernel_read+0x120/0x120 [ 1402.035299] ? __lock_is_held+0xb6/0x140 [ 1402.039365] ? check_preemption_disabled+0x3c/0x250 [ 1402.044531] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1402.050007] ? rcu_read_lock_sched_held+0x110/0x130 [ 1402.055061] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 1402.059844] ? __sb_start_write+0x153/0x2f0 [ 1402.064163] vfs_write+0x198/0x500 [ 1402.067846] SyS_write+0xfd/0x230 [ 1402.071304] ? SyS_read+0x230/0x230 [ 1402.074928] ? do_syscall_64+0x53/0x640 [ 1402.078919] ? SyS_read+0x230/0x230 [ 1402.082540] do_syscall_64+0x1e8/0x640 [ 1402.086454] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1402.091310] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1402.096613] RIP: 0033:0x45b349 06:49:05 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/load\x00', 0x2, 0x0) write$selinux_load(r2, 0x0, 0x0) socketpair(0x26, 0x4, 0x33, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = socket$netlink(0x10, 0x3, 0x0) r5 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000300)='/dev/vga_arbiter\x00', 0x10000, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f0000000400)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000440)=0xffffffffffffff47) sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x2a9, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r6, @ANYBLOB="000000000000000028001200090001007665746800000000180002001400010000000000", @ANYRES32=0x0, @ANYBLOB="0000b20000000000"], 0x48}}, 0x0) r7 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0)='nl80211\x00') sendmsg$NL80211_CMD_GET_INTERFACE(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000000)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="874b00000000000000000500000008000300", @ANYRES32=r6, @ANYBLOB], 0x1c}}, 0x0) r8 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r9 = dup(r8) ioctl$PERF_EVENT_IOC_ENABLE(r9, 0x8912, 0x400200) sendmsg$NL80211_CMD_SET_BEACON(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x1010}, 0xc, &(0x7f0000000280)={&(0x7f0000000a00)={0x8f8, 0x0, 0x200, 0x70bd29, 0x25dfdbfd, {}, [@NL80211_ATTR_IE_PROBE_RESP={0x8da, 0x7f, "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"}, @NL80211_ATTR_BEACON_INTERVAL={0x8, 0xc, 0x7}]}, 0x8f8}, 0x1, 0x0, 0x0, 0xc840}, 0x4080) getsockopt$inet_mreqn(r9, 0x0, 0x24, &(0x7f00000000c0)={@broadcast, @loopback, 0x0}, &(0x7f0000000100)=0xc) r11 = socket$netlink(0x10, 0x3, 0x0) setsockopt$inet_buf(r0, 0x0, 0x2f, &(0x7f0000000340)="a9426712ba3daf04a97211ef5281621228d14ab803ae09f76b715c928e85", 0x1e) r12 = socket$netlink(0x10, 0x3, 0x0) r13 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r13, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r13, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x2ba) r15 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r16 = dup(r15) ioctl$PERF_EVENT_IOC_ENABLE(r16, 0x8912, 0x400200) ioctl$LOOP_SET_DIRECT_IO(r16, 0x4c08, 0x7) sendmsg$nl_route(r12, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB="3c0000001000850600"/18, @ANYRES32=r14, @ANYBLOB="fe3a0400000000001c0012000c000100626f6e64000000000c00020008001374041b00004cb9e4ea438ea8a879d2e52eb7310007987a919b6f9de59ad8758bff5d89d7e0a89755452d1c03d6d08dc8eefc7a35bbf73840e4205087b8af82c7d3cedffa1b3655fdfa5388aae78167b1f9ac91e4fba0047de31d550ff2244227009353346bd339665d1a0576848ba28ee46665bc8da41d458dd9c7afade6071676b0ad2c62466dbb3d07905f344dcee7864cab559b7d94e910c9904c6bb2ad9559b3283c56c0aa36a1d7f563e2e5668758391db6494c6c3e1cf7d8b9114dda05005edfd548d26bc74c6aa732b7a864b511cf75de52ae120d2330da36328c150e38"], 0x3}}, 0x0) sendmsg$nl_route(r11, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000007c0)=ANY=[@ANYBLOB="4400000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012000c00010067726574617000000c00020008000100", @ANYRES32=r14, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r14, @ANYBLOB="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"], 0x44}}, 0x0) sendmsg$NL80211_CMD_SET_MPATH(r3, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x5040}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="7c000200", @ANYRES16=r7, @ANYBLOB="000426bd7000fcdbdf251600000008000300", @ANYRES32=r10, @ANYBLOB="080001000000000008000300", @ANYRES32=r14, @ANYBLOB="0a00060000000000000000000a00060000000000000000000a000600aaaaaaaaaabb00000a00060000000000000000000c009900050000000300000008000100040000000a000600aaaaaaaaaa330000"], 0x7c}, 0x1, 0x0, 0x0, 0x800}, 0x4000040) 06:49:05 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) clock_gettime(0x0, &(0x7f00000000c0)={0x0, 0x0}) ioctl$VIDIOC_QBUF(0xffffffffffffffff, 0xc058560f, &(0x7f00000001c0)={0x10000, 0x621b2b5a50090b8d, 0x4, 0x4000000, 0x2, {r4, r5/1000+10000}, {0x3, 0x1, 0x0, 0x4, 0x1, 0x9, "2c1774e8"}, 0x4f69, 0x1, @userptr=0x8, 0x80000001, 0x0, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x189e600000000) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) ioctl$USBDEVFS_SETCONFIGURATION(r1, 0x80045505, &(0x7f0000000080)=0x9) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) 06:49:06 executing program 3: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='memory.stat\x00', 0x0, 0x0) getsockopt$inet_sctp_SCTP_MAXSEG(r2, 0x84, 0xd, &(0x7f0000000040)=@assoc_value={0x0, 0x7}, &(0x7f0000000080)=0x8) ioctl$UI_SET_SNDBIT(r1, 0x4004556a, 0x3) openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) [ 1402.099966] RSP: 002b:00007f76bb2b4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1402.107818] RAX: ffffffffffffffda RBX: 00007f76bb2b56d4 RCX: 000000000045b349 [ 1402.115198] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005 [ 1402.122473] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1402.129747] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1402.137111] R13: 0000000000000cb1 R14: 00000000004cd905 R15: 000000000075bf2c [ 1402.254342] warn_alloc_show_mem: 1 callbacks suppressed [ 1402.254346] Mem-Info: [ 1402.268675] active_anon:442726 inactive_anon:206 isolated_anon:0 [ 1402.268675] active_file:3261 inactive_file:7153 isolated_file:0 [ 1402.268675] unevictable:0 dirty:294 writeback:0 unstable:0 [ 1402.268675] slab_reclaimable:17622 slab_unreclaimable:149934 [ 1402.268675] mapped:58616 shmem:285 pagetables:33577 bounce:0 [ 1402.268675] free:855256 free_pcp:570 free_cma:0 [ 1402.279740] cgroup: cgroup2: unknown option "º" [ 1402.316668] batman_adv: Cannot find parent device 06:49:06 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) syz_open_dev$ptys(0xc, 0x3, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) [ 1402.351804] Node 0 active_anon:1616696kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208956kB dirty:4kB writeback:0kB shmem:1056kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 995328kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes 06:49:06 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x4000, 0x0) [ 1402.413164] Node 1 active_anon:154408kB inactive_anon:60kB active_file:12996kB inactive_file:28604kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:25508kB dirty:1172kB writeback:0kB shmem:84kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1402.455179] cgroup: cgroup2: unknown option "º" [ 1402.460258] Node 0 DMA free:10464kB min:216kB low:268kB high:320kB active_anon:4508kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:96kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1402.495287] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 1402.501066] Node 0 DMA32 free:40012kB min:36380kB low:45472kB high:54564kB active_anon:1612188kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB writepending:4kB present:3129332kB managed:2634344kB mlocked:0kB kernel_stack:20864kB pagetables:53608kB bounce:0kB free_pcp:1188kB local_pcp:500kB free_cma:0kB [ 1402.532065] cgroup: cgroup2: unknown option "º" [ 1402.532267] lowmem_reserve[]: 0 0 0 0 0 [ 1402.543787] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1402.599247] lowmem_reserve[]: 0 0 0 0 0 06:49:06 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) socket$inet_icmp_raw(0x2, 0x3, 0x1) r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000200)='/dev/vcs\x00', 0x2, 0x0) connect(r0, &(0x7f0000000240)=@rxrpc=@in6={0x21, 0x1, 0x2, 0x1c, {0xa, 0x4e24, 0x80000000, @ipv4={[], [], @remote}}}, 0x80) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) syz_open_dev$dri(&(0x7f0000000140)='/dev/dri/card#\x00', 0x9e8, 0x309840) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r3) socket$inet_icmp_raw(0x2, 0x3, 0x1) r4 = socket$inet6(0xa, 0x1000000000002, 0x0) r5 = socket$inet(0x2, 0x1, 0x0) connect$inet(r5, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r5, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r5, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r4, r5) r6 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) ioctl$ASHMEM_SET_PROT_MASK(r6, 0x40087705, &(0x7f00000002c0)={0x6, 0x4}) r7 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) r8 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm_plock\x00', 0x101800, 0x0) r9 = syz_genetlink_get_family_id$batadv(&(0x7f0000000380)='batadv\x00') sendmsg$BATADV_CMD_GET_TRANSTABLE_LOCAL(r8, &(0x7f0000000440)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000400)={&(0x7f0000000480)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="00042bbd7000fbdbdf250600000008000300", @ANYRES32=0x0, @ANYBLOB="080000e50b96421210d14a2decd8affb1f765318ec74051b546e9b0cab334f8aebc0a34ad8fd7caf38bc9680b880d7470f6048e92795ab590020653fdf23dd8196147e8a2a116075171cd14589da00"/91], 0x2c}, 0x1, 0x0, 0x0, 0x4000080}, 0x2004c880) openat$cgroup_ro(r7, &(0x7f0000000000)='cgroup.stat\x00', 0x0, 0x0) ioctl$BLKFRASET(r7, 0x1264, &(0x7f0000000100)=0x7) r10 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r11 = dup(r10) ioctl$PERF_EVENT_IOC_ENABLE(r11, 0x8912, 0x400200) r12 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r13 = dup(r12) ioctl$PERF_EVENT_IOC_ENABLE(r13, 0x8912, 0x400200) r14 = creat(&(0x7f0000000180)='./file0\x00', 0x100) ioctl$DRM_IOCTL_ADD_MAP(r14, 0xc0286415, &(0x7f00000001c0)={&(0x7f0000fff000/0x1000)=nil, 0x7, 0x3, 0x0, &(0x7f0000ffc000/0x2000)=nil, 0x10001}) getsockopt$rose(r13, 0x104, 0x5, &(0x7f0000000040), &(0x7f0000000080)=0x4) [ 1402.603744] Node 1 Normal free:3370584kB min:53508kB low:66884kB high:80260kB active_anon:154408kB inactive_anon:60kB active_file:12996kB inactive_file:28604kB unevictable:0kB writepending:1172kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:27328kB pagetables:80664kB bounce:0kB free_pcp:1308kB local_pcp:608kB free_cma:0kB [ 1402.642740] lowmem_reserve[]: 0 0 0 0 0 [ 1402.651570] Node 0 DMA: 16*4kB (UME) 16*8kB (UE) 14*16kB (UME) 16*32kB (UME) 17*64kB (U) 6*128kB (UE) 6*256kB (UE) 2*512kB (ME) 3*1024kB (UME) 1*2048kB (E) 0*4096kB = 10464kB [ 1402.680679] Node 0 DMA32: 147*4kB (UEH) 290*8kB (UMEH) 855*16kB (UMEH) 444*32kB (UMEH) 141*64kB (UMEH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 39820kB [ 1402.696204] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1402.707472] Node 1 Normal: 95*4kB (UME) 24*8kB (UME) 15*16kB (UE) 74*32kB (UME) 47*64kB (UME) 24*128kB (UME) 64*256kB (UME) 56*512kB (UME) 13*1024kB (UME) 1*2048kB (U) 806*4096kB (M) = 3371052kB [ 1402.727010] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1402.737000] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1402.746441] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1402.755899] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1402.768610] 10697 total pagecache pages [ 1402.779997] 0 pages in swap cache [ 1402.784388] Swap cache stats: add 0, delete 0, find 0/0 [ 1402.790688] Free swap = 0kB [ 1402.794445] Total swap = 0kB [ 1402.798255] 1965979 pages RAM [ 1402.802074] 0 pages HighMem/MovableOnly [ 1402.806407] 335868 pages reserved [ 1402.810414] 0 pages cma reserved [ 1402.814240] syz-executor.4: vmalloc: allocation failure: 0 bytes, mode:0x14000c0(GFP_KERNEL), nodemask=(null) [ 1402.830987] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 1402.837070] CPU: 1 PID: 9567 Comm: syz-executor.4 Not tainted 4.14.167-syzkaller #0 [ 1402.845114] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1402.854483] Call Trace: [ 1402.857228] dump_stack+0x142/0x197 [ 1402.860891] warn_alloc.cold+0x96/0x1af [ 1402.864876] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 1402.870000] ? lock_downgrade+0x740/0x740 [ 1402.874169] ? avc_has_perm+0x2df/0x4b0 [ 1402.878165] __vmalloc_node_range+0x3c3/0x6a0 [ 1402.882699] vmalloc+0x46/0x50 [ 1402.885956] ? sel_write_load+0x1a0/0x1050 [ 1402.890205] sel_write_load+0x1a0/0x1050 [ 1402.894282] ? save_trace+0x290/0x290 [ 1402.898104] ? sel_read_bool+0x240/0x240 [ 1402.902329] ? trace_hardirqs_on+0x10/0x10 [ 1402.906672] ? debug_smp_processor_id+0x1c/0x20 [ 1402.912327] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1402.917286] __vfs_write+0x105/0x6b0 [ 1402.921023] ? sel_read_bool+0x240/0x240 [ 1402.925111] ? kernel_read+0x120/0x120 [ 1402.929022] ? __lock_is_held+0xb6/0x140 [ 1402.933089] ? check_preemption_disabled+0x3c/0x250 [ 1402.938178] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1402.943916] ? rcu_read_lock_sched_held+0x110/0x130 [ 1402.948999] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 1402.953776] ? __sb_start_write+0x153/0x2f0 [ 1402.958117] vfs_write+0x198/0x500 [ 1402.961680] SyS_write+0xfd/0x230 [ 1402.965143] ? SyS_read+0x230/0x230 [ 1402.968780] ? do_syscall_64+0x53/0x640 [ 1402.972767] ? SyS_read+0x230/0x230 [ 1402.976437] do_syscall_64+0x1e8/0x640 [ 1402.980335] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1402.985220] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1402.991493] RIP: 0033:0x45b349 [ 1402.994685] RSP: 002b:00007f5a14f59c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1403.002531] RAX: ffffffffffffffda RBX: 00007f5a14f5a6d4 RCX: 000000000045b349 [ 1403.009804] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005 [ 1403.017127] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1403.024490] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1403.032505] R13: 0000000000000cb1 R14: 00000000004cd905 R15: 000000000075bf2c [ 1403.041252] syz-executor.1: vmalloc: allocation failure: 0 bytes, mode:0x14000c0(GFP_KERNEL), nodemask=(null) [ 1403.051743] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1403.057158] CPU: 1 PID: 9590 Comm: syz-executor.1 Not tainted 4.14.167-syzkaller #0 [ 1403.064967] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1403.074437] Call Trace: [ 1403.077052] dump_stack+0x142/0x197 [ 1403.080717] warn_alloc.cold+0x96/0x1af [ 1403.084713] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 1403.089699] ? lock_downgrade+0x740/0x740 [ 1403.094004] ? avc_has_perm+0x2df/0x4b0 [ 1403.098013] __vmalloc_node_range+0x3c3/0x6a0 [ 1403.102548] vmalloc+0x46/0x50 [ 1403.105747] ? sel_write_load+0x1a0/0x1050 [ 1403.110096] sel_write_load+0x1a0/0x1050 [ 1403.114180] ? save_trace+0x290/0x290 [ 1403.118117] ? sel_read_bool+0x240/0x240 [ 1403.122187] ? trace_hardirqs_on+0x10/0x10 [ 1403.126428] ? debug_smp_processor_id+0x1c/0x20 [ 1403.131111] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1403.136142] __vfs_write+0x105/0x6b0 [ 1403.139862] ? sel_read_bool+0x240/0x240 [ 1403.143966] ? kernel_read+0x120/0x120 [ 1403.147959] ? __lock_is_held+0xb6/0x140 [ 1403.152110] ? check_preemption_disabled+0x3c/0x250 [ 1403.157232] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1403.163562] ? rcu_read_lock_sched_held+0x110/0x130 [ 1403.168636] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 1403.173636] ? __sb_start_write+0x153/0x2f0 [ 1403.177962] vfs_write+0x198/0x500 [ 1403.181504] SyS_write+0xfd/0x230 [ 1403.184968] ? SyS_read+0x230/0x230 [ 1403.188593] ? do_syscall_64+0x53/0x640 [ 1403.192571] ? SyS_read+0x230/0x230 [ 1403.196200] do_syscall_64+0x1e8/0x640 [ 1403.200087] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1403.204942] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1403.210138] RIP: 0033:0x45b349 06:49:07 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000000240)='/selinux/mls\x00', 0x0, 0x0) getsockopt$CAN_RAW_RECV_OWN_MSGS(r1, 0x65, 0x4, &(0x7f0000000280), &(0x7f00000002c0)=0x4) r2 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) rt_sigpending(&(0x7f0000000200), 0x8) r3 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/load\x00', 0x2, 0x0) r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0) ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r4, 0xc05064a7, &(0x7f0000000180)={&(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000100)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000140)=[0x0, 0x0, 0x0], 0x6, 0xa, 0x4}) write$selinux_load(r3, 0x0, 0x0) 06:49:07 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000280)={0xaa, 0x64}) getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x1c, &(0x7f0000000080)=""/17, &(0x7f00000000c0)=0x11) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$DRM_IOCTL_RES_CTX(0xffffffffffffffff, 0xc0106426, &(0x7f0000000100)={0x6, &(0x7f0000000380)=[{}, {}, {}, {0x0}, {}, {}]}) ioctl$DRM_IOCTL_NEW_CTX(0xffffffffffffffff, 0x40086425, &(0x7f0000000180)={r4}) ioctl$DRM_IOCTL_GET_CTX(r3, 0xc0086423, &(0x7f0000000240)={r4, 0x3}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, &(0x7f00000001c0)={0x2, 0x70, 0x8, 0xd, 0x7, 0x80, 0x0, 0x5, 0x10ac8, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x2, @perf_bp={&(0x7f0000000100), 0x2}, 0x2, 0x3, 0x8, 0x9d0637803741f42d, 0x7, 0x8, 0x7}) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) 06:49:07 executing program 3: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_open_pts(r1, 0x240001) ioctl$TCSETSF2(r2, 0x402c542d, &(0x7f0000000000)={0xfffffff9, 0xd0b, 0x6, 0x7ba, 0x0, "28a0f72030f3ad59f11db58bf2d1ad34ba8750", 0xad1, 0x80000001}) openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) 06:49:07 executing program 5: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000080)=ANY=[@ANYBLOB="eefbedb986da00000000000000003fa9b12c7eeca51c83125d3f48937d14244434c064276d8cb5c24eb6e45e9a618ff2dc2640dc8d9c3d2506260c40a2a35fa4d766d7087f07fe9911c1c731"], &(0x7f0000000340)='./file0\x00', &(0x7f0000000100)='reiserfs\x00', 0x0, 0x0) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000580)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) r5 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000580)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f00000001c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000140)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_DESTROY_ID(r4, &(0x7f0000000100)={0x1, 0x10, 0xfa00, {0x0, r6}}, 0x18) write$RDMA_USER_CM_CMD_BIND(r3, &(0x7f0000000140)={0x14, 0x88, 0xfa00, {r6, 0x30, 0x0, @in={0x2, 0x4e20, @rand_addr=0x81}}}, 0x90) 06:49:07 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/load\x00', 0x2, 0x0) write$selinux_load(r2, 0x0, 0x0) socketpair(0x26, 0x4, 0x33, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = socket$netlink(0x10, 0x3, 0x0) r5 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000300)='/dev/vga_arbiter\x00', 0x10000, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f0000000400)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000440)=0xffffffffffffff47) sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x2a9, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r6, @ANYBLOB="000000000000000028001200090001007665746800000000180002001400010000000000", @ANYRES32=0x0, @ANYBLOB="0000b20000000000"], 0x48}}, 0x0) r7 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0)='nl80211\x00') sendmsg$NL80211_CMD_GET_INTERFACE(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000000)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="874b00000000000000000500000008000300", @ANYRES32=r6, @ANYBLOB], 0x1c}}, 0x0) r8 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r9 = dup(r8) ioctl$PERF_EVENT_IOC_ENABLE(r9, 0x8912, 0x400200) sendmsg$NL80211_CMD_SET_BEACON(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x1010}, 0xc, &(0x7f0000000280)={&(0x7f0000000a00)={0x8f8, 0x0, 0x200, 0x70bd29, 0x25dfdbfd, {}, [@NL80211_ATTR_IE_PROBE_RESP={0x8da, 0x7f, "950e41691042e1fcd268ff12d7e1192689ab262587d9a0ce277e0b7a2f911bd1e534cf8635553e6e34826bb4938d92da654d5628c7a0a59cb345912d4083803dcf25f4297648f15553014d2c2ae3b2cdb39b2abd351ae277e7c81bc420907b997c7325ebed335a1e89575cd7b966397e7ed6096c9c5c36d18268afc757849d8a57a7a6b418139c1b99421800d691f0872fa4eab6d87aa34dcf885817bda3970d5550ada9c2ab465900dfafbbf474044f2e0da791cd01e9a1e59ca76f8045197985493b7bc71e87820ff58467ae4de6825ba2762023e7cf4d71c8af4e59813a1903b922a664f41213d2cb02ad153a85784677e2c2d59975fcb5a2399911d27987650eb7808c0b0702b6705b59090ba0e1a344a34c4bea66443d7c65636063fccbb4be4dd60a9cd1c581babeb24f40c9ebe0f8e0797a0f5cc9d6a9afdce4845ea866af047d8663e4b58db994abe2257d4b0ee2e20dd7730632ff6acb10f885a48b35f5e72957f0ce95214c15a3269be1af8557ee291385664137b1f2071b728bf9a174ad527311d8b710e9cb708cd637eb04264d74da6668a19d3494bd77017ad6f71bc17cd9e348d49e89207570fe9d26b636f8d72d7dbce7ad8e82527413769155570d4f1818ece020814b238e44f37f16cb4f020dfc71eba41a732292a8398a4e5ed931457ed3ffc251074189b69535c065e6f8a0d279c55c1bf89a6cc0bdb91666637727867d57cfbec7f0e57f37999619d8012a764964c72b71b54674a4497eb9ff9be51ef371d9842ac2a7d5f7ead187e349e391040b68ee394a4ad6d9dc91487d8fc6aaff800826ac0615ee2bc1513f00c16731f47e7e6cb42fbabc7f1359504cf250b96fd89aff7da3f211ac2e375b1a6f02f8bff6142dc64535416cc7e354dd247e52f39ac3a2668694ae4df147f79c74f219ae8cfda2160bf40c130611f950c4bdcbbcbca3ea61bea129ce2e7221d9f697bb5a2f9cb94e4105ec981a99db21e60a889b453f09653bb8ae92f5685fc4aaab4ee96e48cf48a3a72bcf4a26bc7f6816a9170a2ebd1a4ab3832f682f3814b1ace8cba2871b69c4e520c4ea856d0fa8a3e72c7aa50bd6ed0e7010ecc6bdf73179102862f3762e4835fff9bde2d195a01fb2f9585a4c9320032cf700ecf5da2282b56c653a88d28443e1eefaa4f42e473ef6a5d7d66a9c4f85cf4f2053730b53283ba6b42341c0bed88e7690cf09c08dcd6f34aaefdac5bd3b5a9e2358fc9d97ddb7fdad550063dd07efdd61ed8532250cd4bd40b0d2df1586ff2c4cc0c4ce5833db1cc944727f4a0bf357b3a04c7423d8d7cf3b45914df931725721e8f3072737c3febb276efb5a4445b504235a4b30e765517c7cb25d74dce79b1e718804356b70c9d3f7311181ae44a8346915b138bb8406fa581340d579de17d37174315ace7e4ab53fc27a914b2e592784f0b5ed95f4bd692ba890dac382477a217e443d2660ced908275d4b0185026644d40c104965f048e43f99bd8d287e0f8832d4a29c919d9d72ce6e25c83cb7455fc5271fa055b42eb641ca5c3bd817af608aecce1ab7bb01f2cf04081042886586b6eb32d9a5927572eb31a53e0f270caaa80aea0316d4fbd6618f0c32dfa41ddc579783b6d029d63180c30ab3fed9afe9d0cf15b711df252eea1d2aec5fdbbe953d539402325c24f0f178953936b5a9f3a10ddc54cc554ea7fac007b6b186b17134e657e1a79c99baa412ee6bf073ed603eca4d28a65b65a942f892b549af7e734fac83875e0b8c765db8a630fb35f02b068aa4516a10039c6e1f34e28de528ccc138ef268a3bee9fa0811cbb1a5ccc495de74ca9ef245a237aea96c65b9de05642654fc5c2a60ee26e6315f9947a6ac5097eb85f33d439182de241e85c73a5cc089aea4cb49bcb5b8d1821a8f7a5e77e7377d3086cf73b4a2006af7dffc39d1c703290b54631610cc8bc1379202f4e237ee76443010886eca13366a537cd0add3f482a9cfc6f2e476a81923929e09013b67a19382236635f040506eca2f97da317180d0b5ce8b590cb39a2f93c802e32a0907bcfa9e67f65b0af5123afc685b2b32edb4b887745286db7fb6254d4dead0eccc30fde55f29a1e821add495160729263d621e6e70c3889587e91e2966f4241a7e05ea4284ffff6a8c39987afd53ca02a627b20a55694e96750a63aaecd1cd3e970b32445625c9bfac561701f8026948eceb1fb6ca00d80eec67e61790e695b77d0bf8e959d3ff4ef1159a2c8e47f77413a3c662d2c4c58025c200030e41afe6368699769db8ed61e644f021f29d733610cc7c6d623e4dafbc932c47ae41b60ad58f0841f39886913be997b8773232f8f30c93449ecc5865ec18e2447553cb1e2e4bc3a9ae2fdb68f49cff16f3f563ad61b6fec51eca5296041de03515a0790e532c5c75dda8495d349e582a106e51dd36a21621f596a9656ed604bbb712dbd9d31f21f844da6b879e9db0772b1364591829438b586735d283519b7f93a3142a81ae8000c16f755b345de6da12bad95d5a913bac81940788be1f94e30a2764a7c7e2ed16e4d5055f11e022ceb2002032bca1750be00076f8966b6d55d7fbff0e1b6750d6115e30513a4102de0ec5d15deff2fcb1a0cfbf89a200d8e92f4eb0a1b92a44d69ca9a6c8de4e90528fda652ee89f3a585087b0ff2d97facce6887bf7f0bfceb21f99dce71c125cfa5d02781b0721a969202a8eb7f0d5213e54c7ca1e8ef639d6d6119a8c7471d02c9145ed79c2e995805f66f15d8384174d8edb3cd0dde8867289b0dabd9dd41a2a16dca3a209b78f7286aa341a84c6a14d1c485cc81166b29e80bfa9efcfb252d5599b076e83a2e614eccb7274bb312bc978568b15fcaa4ca9b148b786315d812359c524950b477d0b69ce130f8ad815e9bd3cc3e11a553f9392dc9f0c9af91c0d3e355a425c807a51697ba07515472d70b982fcfc73aa86c42581e898966b00836d01122c7039d5c1a999e3c84a586a69d222d05f63da3581b1a02a3bb34a8bc64cf94156c96b24aa3feb302bc331f98d345d08fc2a1ae3807e2a476d4544a9e2cf5fc158e3106688c2e7a8b95ef239ede0e2b9f526f01b034d2f697fdd8af1bf865c4bddb245591cababa1c04e8474de7e312c14005c6023393cc8d7a273b609db02015dad5a45f8a0c7608750ba2bb86bcce7793102098"}, @NL80211_ATTR_BEACON_INTERVAL={0x8, 0xc, 0x7}]}, 0x8f8}, 0x1, 0x0, 0x0, 0xc840}, 0x4080) getsockopt$inet_mreqn(r9, 0x0, 0x24, &(0x7f00000000c0)={@broadcast, @loopback, 0x0}, &(0x7f0000000100)=0xc) r11 = socket$netlink(0x10, 0x3, 0x0) setsockopt$inet_buf(r0, 0x0, 0x2f, &(0x7f0000000340)="a9426712ba3daf04a97211ef5281621228d14ab803ae09f76b715c928e85", 0x1e) r12 = socket$netlink(0x10, 0x3, 0x0) r13 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r13, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r13, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x2ba) r15 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r16 = dup(r15) ioctl$PERF_EVENT_IOC_ENABLE(r16, 0x8912, 0x400200) ioctl$LOOP_SET_DIRECT_IO(r16, 0x4c08, 0x7) sendmsg$nl_route(r12, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB="3c0000001000850600"/18, @ANYRES32=r14, @ANYBLOB="fe3a0400000000001c0012000c000100626f6e64000000000c00020008001374041b00004cb9e4ea438ea8a879d2e52eb7310007987a919b6f9de59ad8758bff5d89d7e0a89755452d1c03d6d08dc8eefc7a35bbf73840e4205087b8af82c7d3cedffa1b3655fdfa5388aae78167b1f9ac91e4fba0047de31d550ff2244227009353346bd339665d1a0576848ba28ee46665bc8da41d458dd9c7afade6071676b0ad2c62466dbb3d07905f344dcee7864cab559b7d94e910c9904c6bb2ad9559b3283c56c0aa36a1d7f563e2e5668758391db6494c6c3e1cf7d8b9114dda05005edfd548d26bc74c6aa732b7a864b511cf75de52ae120d2330da36328c150e38"], 0x3}}, 0x0) sendmsg$nl_route(r11, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000007c0)=ANY=[@ANYBLOB="4400000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012000c00010067726574617000000c00020008000100", @ANYRES32=r14, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r14, @ANYBLOB="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"], 0x44}}, 0x0) sendmsg$NL80211_CMD_SET_MPATH(r3, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x5040}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="7c000200", @ANYRES16=r7, @ANYBLOB="000426bd7000fcdbdf251600000008000300", @ANYRES32=r10, @ANYBLOB="080001000000000008000300", @ANYRES32=r14, @ANYBLOB="0a00060000000000000000000a00060000000000000000000a000600aaaaaaaaaabb00000a00060000000000000000000c009900050000000300000008000100040000000a000600aaaaaaaaaa330000"], 0x7c}, 0x1, 0x0, 0x0, 0x800}, 0x4000040) [ 1403.213335] RSP: 002b:00007f76bb251c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1403.221042] RAX: ffffffffffffffda RBX: 00007f76bb2526d4 RCX: 000000000045b349 [ 1403.228316] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005 [ 1403.235616] RBP: 000000000075c118 R08: 0000000000000000 R09: 0000000000000000 [ 1403.243548] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1403.250936] R13: 0000000000000cb1 R14: 00000000004cd905 R15: 000000000075c124 [ 1403.290955] syz-executor.4: vmalloc: allocation failure: 0 bytes, mode:0x14000c0(GFP_KERNEL), nodemask=(null) [ 1403.323716] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 1403.335937] CPU: 1 PID: 9605 Comm: syz-executor.4 Not tainted 4.14.167-syzkaller #0 [ 1403.343778] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1403.353133] Call Trace: [ 1403.355746] dump_stack+0x142/0x197 [ 1403.359394] warn_alloc.cold+0x96/0x1af [ 1403.363373] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 1403.368320] ? lock_downgrade+0x740/0x740 [ 1403.372485] ? avc_has_perm+0x2df/0x4b0 [ 1403.376467] __vmalloc_node_range+0x3c3/0x6a0 [ 1403.381148] ? trace_hardirqs_on+0x10/0x10 [ 1403.385386] vmalloc+0x46/0x50 [ 1403.388582] ? sel_write_load+0x1a0/0x1050 [ 1403.392839] sel_write_load+0x1a0/0x1050 [ 1403.396955] ? save_trace+0x290/0x290 [ 1403.400761] ? sel_read_bool+0x240/0x240 [ 1403.404827] ? trace_hardirqs_on+0x10/0x10 [ 1403.409070] ? debug_smp_processor_id+0x1c/0x20 [ 1403.413761] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1403.418700] __vfs_write+0x105/0x6b0 [ 1403.422429] ? sel_read_bool+0x240/0x240 [ 1403.426483] ? kernel_read+0x120/0x120 [ 1403.430488] ? __lock_is_held+0xb6/0x140 [ 1403.434651] ? check_preemption_disabled+0x3c/0x250 [ 1403.439667] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1403.445134] ? rcu_read_lock_sched_held+0x110/0x130 [ 1403.450158] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 1403.454919] ? __sb_start_write+0x153/0x2f0 [ 1403.459272] vfs_write+0x198/0x500 [ 1403.462808] SyS_write+0xfd/0x230 [ 1403.466309] ? SyS_read+0x230/0x230 [ 1403.469941] ? do_syscall_64+0x53/0x640 [ 1403.474009] ? SyS_read+0x230/0x230 [ 1403.477630] do_syscall_64+0x1e8/0x640 [ 1403.481534] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1403.486391] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1403.491584] RIP: 0033:0x45b349 [ 1403.494797] RSP: 002b:00007f5a14f59c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1403.503595] RAX: ffffffffffffffda RBX: 00007f5a14f5a6d4 RCX: 000000000045b349 [ 1403.510972] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005 [ 1403.518535] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1403.525811] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1403.533096] R13: 0000000000000cb1 R14: 00000000004cd905 R15: 000000000075bf2c [ 1403.554908] cgroup: cgroup2: unknown option "º" [ 1403.597531] cgroup: cgroup2: unknown option "º" [ 1403.604451] warn_alloc_show_mem: 2 callbacks suppressed [ 1403.604456] Mem-Info: [ 1403.607362] batman_adv: Cannot find parent device [ 1403.610599] active_anon:442860 inactive_anon:211 isolated_anon:0 [ 1403.610599] active_file:3261 inactive_file:7162 isolated_file:0 [ 1403.610599] unevictable:0 dirty:309 writeback:0 unstable:0 [ 1403.610599] slab_reclaimable:17613 slab_unreclaimable:149769 [ 1403.610599] mapped:58640 shmem:285 pagetables:33634 bounce:0 [ 1403.610599] free:855030 free_pcp:631 free_cma:0 [ 1403.657497] Node 0 active_anon:1616696kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208956kB dirty:4kB writeback:0kB shmem:1056kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 995328kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1403.694245] Node 1 active_anon:154844kB inactive_anon:80kB active_file:12996kB inactive_file:28640kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:25604kB dirty:1232kB writeback:0kB shmem:84kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1403.734585] Node 0 DMA free:10464kB min:216kB low:268kB high:320kB active_anon:4508kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:96kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1403.769919] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 1403.775956] Node 0 DMA32 free:39156kB min:36380kB low:45472kB high:54564kB active_anon:1612188kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB writepending:4kB present:3129332kB managed:2634344kB mlocked:0kB kernel_stack:20864kB pagetables:53608kB bounce:0kB free_pcp:1260kB local_pcp:716kB free_cma:0kB [ 1403.806588] lowmem_reserve[]: 0 0 0 0 0 [ 1403.812771] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1403.846302] lowmem_reserve[]: 0 0 0 0 0 [ 1403.851043] Node 1 Normal free:3370044kB min:53508kB low:66884kB high:80260kB active_anon:154736kB inactive_anon:84kB active_file:13000kB inactive_file:28640kB unevictable:0kB writepending:1240kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:27360kB pagetables:80976kB bounce:0kB free_pcp:1064kB local_pcp:584kB free_cma:0kB [ 1403.881621] lowmem_reserve[]: 0 0 0 0 0 [ 1403.885837] Node 0 DMA: 16*4kB (UME) 16*8kB (UE) 14*16kB (UME) 16*32kB (UME) 17*64kB (U) 6*128kB (UE) 6*256kB (UE) 2*512kB (ME) 3*1024kB (UME) 1*2048kB (E) 0*4096kB = 10464kB [ 1403.902845] Node 0 DMA32: 168*4kB (UMEH) 269*8kB (UMEH) 811*16kB (UMEH) 448*32kB (UMEH) 146*64kB (UMEH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 39480kB [ 1403.918076] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1403.929232] Node 1 Normal: 119*4kB (UME) 5*8kB (UME) 31*16kB (UE) 64*32kB (UME) 46*64kB (UME) 19*128kB (ME) 63*256kB (UME) 56*512kB (UME) 13*1024kB (UME) 1*2048kB (U) 806*4096kB (M) = 3369972kB [ 1403.948696] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1403.957645] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1403.966605] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1403.975570] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1403.984559] 10708 total pagecache pages [ 1403.988533] 0 pages in swap cache [ 1403.992186] Swap cache stats: add 0, delete 0, find 0/0 [ 1403.997668] Free swap = 0kB [ 1404.000753] Total swap = 0kB [ 1404.003891] 1965979 pages RAM [ 1404.007343] 0 pages HighMem/MovableOnly [ 1404.011602] 335868 pages reserved [ 1404.015394] 0 pages cma reserved [ 1404.018907] syz-executor.1: vmalloc: allocation failure: 0 bytes, mode:0x14000c0(GFP_KERNEL), nodemask=(null) [ 1404.041695] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1404.047752] CPU: 1 PID: 9620 Comm: syz-executor.1 Not tainted 4.14.167-syzkaller #0 [ 1404.055689] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1404.065260] Call Trace: [ 1404.067863] dump_stack+0x142/0x197 [ 1404.071864] warn_alloc.cold+0x96/0x1af [ 1404.076067] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 1404.080911] ? lock_downgrade+0x740/0x740 [ 1404.085058] ? avc_has_perm+0x2df/0x4b0 [ 1404.089092] __vmalloc_node_range+0x3c3/0x6a0 [ 1404.093606] vmalloc+0x46/0x50 [ 1404.096980] ? sel_write_load+0x1a0/0x1050 [ 1404.101317] sel_write_load+0x1a0/0x1050 [ 1404.105398] ? save_trace+0x290/0x290 [ 1404.109218] ? sel_read_bool+0x240/0x240 [ 1404.113372] ? trace_hardirqs_on+0x10/0x10 [ 1404.117668] ? debug_smp_processor_id+0x1c/0x20 [ 1404.122376] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1404.127317] __vfs_write+0x105/0x6b0 [ 1404.131028] ? sel_read_bool+0x240/0x240 [ 1404.135168] ? kernel_read+0x120/0x120 [ 1404.139068] ? __lock_is_held+0xb6/0x140 [ 1404.143125] ? check_preemption_disabled+0x3c/0x250 [ 1404.148143] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1404.153724] ? rcu_read_lock_sched_held+0x110/0x130 [ 1404.158757] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 1404.163516] ? __sb_start_write+0x153/0x2f0 [ 1404.167867] vfs_write+0x198/0x500 [ 1404.171518] SyS_write+0xfd/0x230 [ 1404.175085] ? SyS_read+0x230/0x230 [ 1404.178724] ? do_syscall_64+0x53/0x640 [ 1404.182687] ? SyS_read+0x230/0x230 [ 1404.186305] do_syscall_64+0x1e8/0x640 [ 1404.190485] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1404.195426] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1404.200730] RIP: 0033:0x45b349 [ 1404.204092] RSP: 002b:00007f76bb2b4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1404.212075] RAX: ffffffffffffffda RBX: 00007f76bb2b56d4 RCX: 000000000045b349 [ 1404.219542] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 1404.226809] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1404.234181] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1404.241495] R13: 0000000000000cb1 R14: 00000000004cd905 R15: 000000000075bf2c 06:49:09 executing program 0: socket$pptp(0x18, 0x1, 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 06:49:09 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$DRM_IOCTL_GET_CLIENT(r1, 0xc0286405, &(0x7f0000000000)={0x0, 0x400, {0xffffffffffffffff}, {0xee01}, 0x100, 0x80}) ptrace$poke(0x4, r2, &(0x7f0000000040), 0xffff) prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) 06:49:09 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='logfs\x00', 0x0, &(0x7f0000000240)='U&R\xa2\x00\n\x90\xbe\v\xef\x13\r\x03\x06\xd1\xe7\\mM\xe8N\x8aq\x7fF\xf9\x86\xf4PMQ\x1f[N27r\xec?\x8b\x86q{\x04\xa5\x8eFn\xe6\x1c\x97}\fF\x91\xe64W\xc1\xfa\x06E\xfc\xbb%') 06:49:09 executing program 5: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6465762f6e7506000000e4"], &(0x7f0000000340)='./file0\x00', &(0x7f0000000100)='reiserfs\x00', 0x0, 0x0) 06:49:09 executing program 4: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000200)=@nullb='/dev/nullb0\x00', &(0x7f0000000340)='./file0\x00', &(0x7f0000000100)='reiserfs\x00', 0x0, 0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) 06:49:09 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/load\x00', 0x2, 0x0) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r3) ioctl$sock_inet_SIOCSIFDSTADDR(r3, 0x8918, &(0x7f0000000040)={'tunl0\x00', {0x2, 0x4e20, @multicast1}}) write$selinux_load(r2, 0x0, 0x0) [ 1405.393157] syz-executor.1: vmalloc: allocation failure: 0 bytes, mode:0x14000c0(GFP_KERNEL), nodemask=(null) [ 1405.411082] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 1405.421067] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1405.421166] CPU: 1 PID: 9644 Comm: syz-executor.1 Not tainted 4.14.167-syzkaller #0 [ 1405.434473] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1405.443833] Call Trace: [ 1405.446422] dump_stack+0x142/0x197 [ 1405.450072] warn_alloc.cold+0x96/0x1af [ 1405.454047] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 1405.458935] ? lock_downgrade+0x740/0x740 [ 1405.463103] ? avc_has_perm+0x2df/0x4b0 [ 1405.467176] __vmalloc_node_range+0x3c3/0x6a0 [ 1405.471668] ? trace_hardirqs_on+0x10/0x10 [ 1405.475923] vmalloc+0x46/0x50 [ 1405.479110] ? sel_write_load+0x1a0/0x1050 [ 1405.483369] sel_write_load+0x1a0/0x1050 [ 1405.487430] ? save_trace+0x290/0x290 [ 1405.491254] ? sel_read_bool+0x240/0x240 [ 1405.495351] ? trace_hardirqs_on+0x10/0x10 [ 1405.499594] ? debug_smp_processor_id+0x1c/0x20 [ 1405.504264] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1405.509216] __vfs_write+0x105/0x6b0 [ 1405.512923] ? sel_read_bool+0x240/0x240 [ 1405.517008] ? kernel_read+0x120/0x120 [ 1405.520896] ? __lock_is_held+0xb6/0x140 [ 1405.524977] ? check_preemption_disabled+0x3c/0x250 [ 1405.530002] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1405.535462] ? rcu_read_lock_sched_held+0x110/0x130 [ 1405.540488] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 1405.545249] ? __sb_start_write+0x153/0x2f0 [ 1405.549675] vfs_write+0x198/0x500 [ 1405.553218] SyS_write+0xfd/0x230 [ 1405.556666] ? SyS_read+0x230/0x230 [ 1405.560410] ? do_syscall_64+0x53/0x640 [ 1405.564414] ? SyS_read+0x230/0x230 [ 1405.568037] do_syscall_64+0x1e8/0x640 [ 1405.571945] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1405.576799] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1405.582047] RIP: 0033:0x45b349 [ 1405.585227] RSP: 002b:00007f76bb2b4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 06:49:09 executing program 4: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000200)=@nullb='/dev/nullb0\x00', &(0x7f0000000340)='./file0\x00', &(0x7f0000000100)='reiserfs\x00', 0x0, 0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) [ 1405.592957] RAX: ffffffffffffffda RBX: 00007f76bb2b56d4 RCX: 000000000045b349 [ 1405.600234] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005 [ 1405.607513] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1405.614787] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1405.622232] R13: 0000000000000cb1 R14: 00000000004cd905 R15: 000000000075bf2c 06:49:09 executing program 2: r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f00000000c0)={0x0, 0x2}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f00000001c0)={r3, @in={{0x2, 0x4e20, @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x4}, 0x90) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) r6 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r7 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r8 = dup(r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) getpeername$l2tp6(r8, &(0x7f0000000300)={0xa, 0x0, 0x0, @ipv4={[], [], @empty}}, &(0x7f0000000340)=0x20) r9 = dup(r6) ioctl$PERF_EVENT_IOC_ENABLE(r9, 0x8912, 0x400200) setsockopt$SO_VM_SOCKETS_BUFFER_MAX_SIZE(r9, 0x28, 0x2, &(0x7f0000000280)=0x7, 0x8) 06:49:09 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x1, 0x0) setsockopt$inet_sctp_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000040)={0xfa, 0x4, 0x0, 0x9, 0x7f, 0x6b, 0x3c, 0x3, 0x81, 0x2, 0x0, 0xf8, 0x2, 0x7}, 0xe) [ 1405.766809] warn_alloc_show_mem: 1 callbacks suppressed [ 1405.766814] Mem-Info: [ 1405.786285] active_anon:442939 inactive_anon:211 isolated_anon:0 [ 1405.786285] active_file:3264 inactive_file:7174 isolated_file:0 [ 1405.786285] unevictable:0 dirty:328 writeback:0 unstable:0 [ 1405.786285] slab_reclaimable:17594 slab_unreclaimable:150040 [ 1405.786285] mapped:58615 shmem:285 pagetables:33786 bounce:0 [ 1405.786285] free:854682 free_pcp:466 free_cma:0 [ 1405.805894] cgroup: cgroup2: unknown option "º" [ 1405.850715] cgroup: cgroup2: unknown option "º" 06:49:09 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0)='nl80211\x00') sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[@ANYBLOB="93000000", @ANYRES16=r3, @ANYBLOB="00082bbd7000fedbdf254b00000014002c800800000000040000080000003f0000000400ff000500f6000000000008007700fdffffff3c002d8006000000000c0000050000000c00000005000000030000000b00000006071202201f1f000b00000014141d1b0610010006000000011e0000"], 0x78}, 0x1, 0x0, 0x0, 0xc080}, 0x0) r4 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) r5 = creat(&(0x7f0000000280)='./file0\x00', 0x81) ioctl$DRM_IOCTL_MODE_SETPROPERTY(r5, 0xc01064ab, &(0x7f0000000340)={0xf8, 0x0, 0xc9a}) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) ioctl$KDENABIO(r2, 0x4b36) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) 06:49:09 executing program 4 (fault-call:8 fault-nth:0): mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcsa\x00', 0x501302, 0x0) ioctl$VIDIOC_S_PARM(0xffffffffffffffff, 0xc0cc5616, &(0x7f0000000240)={0x1, @capture={0x0, 0x0, {0x3}, 0x0, 0x1}}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$GIO_UNISCRNMAP(0xffffffffffffffff, 0x4b69, &(0x7f0000000140)=""/148) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000200)=@nullb='/dev/nullb0\x00', &(0x7f0000000340)='./file0\x00', &(0x7f0000000380)='f2fs\x00', 0x4000, 0x0) [ 1405.872084] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 06:49:09 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) ioctl$SNDCTL_DSP_CHANNELS(0xffffffffffffffff, 0xc0045006, &(0x7f0000000000)=0xc74) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$MON_IOCT_RING_SIZE(r1, 0x9204, 0xad40b) [ 1405.928590] Node 0 active_anon:1616696kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208956kB dirty:4kB writeback:0kB shmem:1056kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 995328kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1405.989724] Node 1 active_anon:155360kB inactive_anon:80kB active_file:13008kB inactive_file:28688kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:25804kB dirty:1308kB writeback:0kB shmem:84kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1406.037339] Node 0 DMA free:10464kB min:216kB low:268kB high:320kB active_anon:4508kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:96kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1406.077164] FAULT_INJECTION: forcing a failure. [ 1406.077164] name failslab, interval 1, probability 0, space 0, times 0 [ 1406.092310] kvm [9659]: vcpu0, guest rIP: 0xed disabled perfctr wrmsr: 0x186 data 0xed660040d08e0052 [ 1406.098912] cgroup: cgroup2: unknown option "º" [ 1406.106872] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 1406.124669] Node 0 DMA32 free:38396kB min:36380kB low:45472kB high:54564kB active_anon:1612188kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB writepending:4kB present:3129332kB managed:2634344kB mlocked:0kB kernel_stack:20864kB pagetables:53608kB bounce:0kB free_pcp:1164kB local_pcp:556kB free_cma:0kB [ 1406.131430] CPU: 0 PID: 9689 Comm: syz-executor.4 Not tainted 4.14.167-syzkaller #0 [ 1406.161897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1406.168150] lowmem_reserve[]: [ 1406.171361] Call Trace: [ 1406.171381] dump_stack+0x142/0x197 [ 1406.171397] should_fail.cold+0x10f/0x159 [ 1406.171414] should_failslab+0xdb/0x130 [ 1406.171428] __kmalloc_track_caller+0x2ec/0x790 [ 1406.174721] 0 [ 1406.177136] ? __sb_end_write+0xc1/0x100 [ 1406.177151] ? strndup_user+0x62/0xf0 [ 1406.177165] memdup_user+0x26/0xa0 [ 1406.181012] 0 [ 1406.185060] strndup_user+0x62/0xf0 [ 1406.185076] SyS_mount+0x3c/0x120 [ 1406.185087] ? copy_mnt_ns+0x8c0/0x8c0 [ 1406.189275] 0 [ 1406.193921] do_syscall_64+0x1e8/0x640 [ 1406.193933] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1406.193949] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1406.193958] RIP: 0033:0x45b349 [ 1406.193963] RSP: 002b:00007f5a14f59c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1406.193975] RAX: ffffffffffffffda RBX: 00007f5a14f5a6d4 RCX: 000000000045b349 [ 1406.193980] RDX: 0000000020000380 RSI: 0000000020000340 RDI: 0000000020000200 [ 1406.193988] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1406.195971] 0 [ 1406.199836] R10: 0000000000004000 R11: 0000000000000246 R12: 0000000000000005 [ 1406.199848] R13: 0000000000000744 R14: 00000000004c8bd8 R15: 0000000000000000 06:49:10 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) socket$vsock_stream(0x28, 0x1, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 06:49:10 executing program 5: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) getpeername$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000080)=0x14) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$KVM_SET_SIGNAL_MASK(r1, 0x4004ae8b, &(0x7f0000000140)={0xa9, "e1ba66f11b85a236ca58466d43871a033c5c74f7ab3b28a0daa224a557b2eaeff77526480993e0e1a1290e0d6db1ff01382850b3971ef8b7145d668bf7ca3fae966a3ca078d4ad41c30be81c1c2690f0804187cd04bb8ca2642ba599790052149f013ef42d87a43c8cdbe4f7817ac3cfa7be7bc8c3d6511b278239e1e2bfc6aec12913ef3d5e6239987ecdb8fbd935e63bb016a710906098a1e516e14e283f1776b5e7a855381aaefe"}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000200)=@nullb='/dev/nullb0\x00', &(0x7f0000000340)='./file0\x00', &(0x7f0000000100)='reiserfs\x00', 0x0, 0x0) 06:49:10 executing program 3: sendmsg$L2TP_CMD_SESSION_MODIFY(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x24, 0x0, 0x10, 0x70bd29, 0x25dfdbfd, {}, [@L2TP_ATTR_MTU={0x6, 0x1c, 0x3f}, @L2TP_ATTR_SESSION_ID={0x8, 0xb, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x44041}, 0x48000) openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) 06:49:10 executing program 4: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcsa\x00', 0x501302, 0x0) ioctl$VIDIOC_S_PARM(0xffffffffffffffff, 0xc0cc5616, &(0x7f0000000240)={0x1, @capture={0x0, 0x0, {0x3}, 0x0, 0x1}}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$GIO_UNISCRNMAP(0xffffffffffffffff, 0x4b69, &(0x7f0000000140)=""/148) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000380)=ANY=[@ANYBLOB="2f6465762f6e756c6c623000b953949db4b1758d52f5a0bb27a828f9c6923de233ca792dfc2617abdf2674b9864a925bfaaed86694bfd21ecb2c02b46882ebf9141c34463f50a813a9b0333bb67ba65bb0d917035891acc55faf2aaa542003000000136ee7d323be6039c2387fb303ab81761bc41a54690cfb2068c6e27334c7e149dfb7c3e19ccb8b20b5e4431c3e2f2318ed4afae755d62307de245d2742c01e99708806434bf57795146c0a6f02adabea1f"], &(0x7f0000000340)='./file0\x00', &(0x7f00000000c0)='overlay\x00', 0x4000, 0x0) 06:49:10 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) ioctl$KDFONTOP_GET(r1, 0x4b72, &(0x7f00000000c0)={0x1, 0x1, 0x1b, 0x3, 0x182, &(0x7f0000000300)}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) [ 1406.366012] 0 [ 1406.372227] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1406.384801] overlayfs: missing 'lowerdir' [ 1406.401638] lowmem_reserve[]: 0 0 0 0 0 [ 1406.418924] Node 1 Normal free:3368836kB min:53508kB low:66884kB high:80260kB active_anon:155152kB inactive_anon:84kB active_file:13016kB inactive_file:28708kB unevictable:0kB writepending:1356kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:27456kB pagetables:81376kB bounce:0kB free_pcp:1276kB local_pcp:732kB free_cma:0kB [ 1406.458701] lowmem_reserve[]: 0 0 0 0 0 [ 1406.472759] Node 0 DMA: 16*4kB (UME) 16*8kB (UE) 14*16kB (UME) 16*32kB (UME) 17*64kB (U) 6*128kB (UE) 6*256kB (UE) 2*512kB (ME) 3*1024kB (UME) 1*2048kB (E) 0*4096kB = 10464kB [ 1406.498156] Node 0 DMA32: 195*4kB (UMEH) 227*8kB (UMEH) 691*16kB (UMEH) 472*32kB (UMEH) 155*64kB (UMEH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 38676kB [ 1406.528657] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1406.543597] Node 1 Normal: 130*4kB (UME) 13*8kB (UME) 24*16kB (UE) 45*32kB (UME) 44*64kB (UME) 25*128kB (UME) 56*256kB (UME) 55*512kB (UME) 12*1024kB (UME) 2*2048kB (U) 806*4096kB (M) = 3368720kB [ 1406.563143] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1406.574852] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1406.585960] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1406.595367] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1406.604366] 10730 total pagecache pages [ 1406.613685] 0 pages in swap cache [ 1406.617434] Swap cache stats: add 0, delete 0, find 0/0 [ 1406.623712] Free swap = 0kB [ 1406.627295] Total swap = 0kB [ 1406.630578] 1965979 pages RAM [ 1406.634655] 0 pages HighMem/MovableOnly [ 1406.638776] 335868 pages reserved [ 1406.642424] 0 pages cma reserved [ 1406.646041] syz-executor.1: vmalloc: allocation failure: 0 bytes, mode:0x14000c0(GFP_KERNEL), nodemask=(null) [ 1406.656604] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1406.675528] CPU: 1 PID: 9686 Comm: syz-executor.1 Not tainted 4.14.167-syzkaller #0 [ 1406.683633] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1406.693066] Call Trace: [ 1406.695766] dump_stack+0x142/0x197 [ 1406.700030] warn_alloc.cold+0x96/0x1af [ 1406.704022] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 1406.708890] ? lock_downgrade+0x740/0x740 [ 1406.713059] ? avc_has_perm+0x2df/0x4b0 [ 1406.717064] __vmalloc_node_range+0x3c3/0x6a0 [ 1406.721678] vmalloc+0x46/0x50 [ 1406.724894] ? sel_write_load+0x1a0/0x1050 [ 1406.729156] sel_write_load+0x1a0/0x1050 [ 1406.733238] ? save_trace+0x290/0x290 [ 1406.737079] ? sel_read_bool+0x240/0x240 [ 1406.741324] ? trace_hardirqs_on+0x10/0x10 [ 1406.745573] ? debug_smp_processor_id+0x1c/0x20 [ 1406.750269] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1406.755221] __vfs_write+0x105/0x6b0 [ 1406.758950] ? sel_read_bool+0x240/0x240 [ 1406.763032] ? kernel_read+0x120/0x120 [ 1406.766938] ? __lock_is_held+0xb6/0x140 [ 1406.771010] ? check_preemption_disabled+0x3c/0x250 [ 1406.776050] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1406.781520] ? rcu_read_lock_sched_held+0x110/0x130 [ 1406.786834] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 1406.792167] ? __sb_start_write+0x153/0x2f0 [ 1406.793676] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 1406.796626] vfs_write+0x198/0x500 [ 1406.796640] SyS_write+0xfd/0x230 [ 1406.796652] ? SyS_read+0x230/0x230 [ 1406.796662] ? do_syscall_64+0x53/0x640 [ 1406.796673] ? SyS_read+0x230/0x230 [ 1406.813746] REISERFS warning (device nullb0): reiserfs_fill_super: Cannot allocate commit workqueue [ 1406.817375] do_syscall_64+0x1e8/0x640 [ 1406.817387] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1406.817404] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1406.848706] RIP: 0033:0x45b349 [ 1406.851890] RSP: 002b:00007f76bb272c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1406.859604] RAX: ffffffffffffffda RBX: 00007f76bb2736d4 RCX: 000000000045b349 [ 1406.866888] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 1406.874159] RBP: 000000000075c070 R08: 0000000000000000 R09: 0000000000000000 [ 1406.881472] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1406.888755] R13: 0000000000000cb1 R14: 00000000004cd905 R15: 000000000075c07c [ 1406.906983] Mem-Info: [ 1406.914852] active_anon:443009 inactive_anon:213 isolated_anon:0 [ 1406.914852] active_file:3269 inactive_file:7186 isolated_file:0 [ 1406.914852] unevictable:0 dirty:350 writeback:0 unstable:0 [ 1406.914852] slab_reclaimable:17584 slab_unreclaimable:150033 [ 1406.914852] mapped:58612 shmem:287 pagetables:33765 bounce:0 [ 1406.914852] free:854587 free_pcp:456 free_cma:0 [ 1406.957651] Node 0 active_anon:1616696kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208956kB dirty:4kB writeback:0kB shmem:1056kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 995328kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1406.994186] Node 1 active_anon:155252kB inactive_anon:84kB active_file:13028kB inactive_file:28736kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:25436kB dirty:1396kB writeback:0kB shmem:84kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1407.029472] Node 0 DMA free:10464kB min:216kB low:268kB high:320kB active_anon:4508kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:96kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1407.058284] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 1407.063468] Node 0 DMA32 free:39340kB min:36380kB low:45472kB high:54564kB active_anon:1612188kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB writepending:4kB present:3129332kB managed:2634344kB mlocked:0kB kernel_stack:20864kB pagetables:53608kB bounce:0kB free_pcp:1168kB local_pcp:596kB free_cma:0kB [ 1407.092962] lowmem_reserve[]: 0 0 0 0 0 [ 1407.097057] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1407.123521] lowmem_reserve[]: 0 0 0 0 0 [ 1407.127548] Node 1 Normal free:3369264kB min:53508kB low:66884kB high:80260kB active_anon:155248kB inactive_anon:80kB active_file:13028kB inactive_file:28736kB unevictable:0kB writepending:1408kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:27360kB pagetables:81324kB bounce:0kB free_pcp:1392kB local_pcp:740kB free_cma:0kB [ 1407.158841] lowmem_reserve[]: 0 0 0 0 0 [ 1407.162967] Node 0 DMA: 16*4kB (UME) 16*8kB (UE) 14*16kB (UME) 16*32kB (UME) 17*64kB (U) 6*128kB (UE) 6*256kB (UE) 2*512kB (ME) 3*1024kB (UME) 1*2048kB (E) 0*4096kB = 10464kB [ 1407.178916] Node 0 DMA32: 195*4kB (UMEH) 251*8kB (UMEH) 684*16kB (MEH) 480*32kB (UMEH) 160*64kB (UMEH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 39332kB [ 1407.194034] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1407.204989] Node 1 Normal: 120*4kB (UME) 174*8kB (UE) 72*16kB (UE) 47*32kB (UME) 44*64kB (UME) 27*128kB (UME) 49*256kB (UME) 55*512kB (UME) 12*1024kB (UME) 2*2048kB (U) 806*4096kB (M) = 3369264kB [ 1407.222895] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1407.232319] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1407.241015] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1407.249884] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1407.258510] 10741 total pagecache pages [ 1407.262622] 0 pages in swap cache [ 1407.266224] Swap cache stats: add 0, delete 0, find 0/0 [ 1407.271771] Free swap = 0kB [ 1407.274805] Total swap = 0kB [ 1407.277819] 1965979 pages RAM 06:49:11 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = dup(r1) getsockopt$bt_BT_RCVMTU(r2, 0x112, 0xd, &(0x7f0000000040)=0xff7f, &(0x7f0000000080)=0x2) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$KVM_GET_API_VERSION(r2, 0xae00, 0x0) r3 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r4 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/load\x00', 0x2, 0x0) write$selinux_load(r4, 0x0, 0x0) 06:49:11 executing program 4: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$SNDRV_TIMER_IOCTL_STATUS32(0xffffffffffffffff, 0x80585414, &(0x7f00000000c0)) openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcsa\x00', 0x501302, 0x0) ioctl$VIDIOC_S_PARM(0xffffffffffffffff, 0xc0cc5616, &(0x7f0000000240)={0x1, @output={0x0, 0x0, {0xffffffff, 0xd62}, 0x498a, 0xd6}}) socket$nl_generic(0x10, 0x3, 0x10) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$GIO_UNISCRNMAP(0xffffffffffffffff, 0x4b69, &(0x7f0000000140)=""/148) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000200)=@sg0='/dev/sg0\x00', &(0x7f0000000340)='./file0\x00', &(0x7f0000000380)='f2fs\x00', 0x106400, 0x0) 06:49:11 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_CHANNEL_INFO(r2, 0x80184132, &(0x7f0000000080)) r3 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) 06:49:11 executing program 3: fsetxattr$trusted_overlay_nlink(0xffffffffffffffff, &(0x7f0000000000)='trusted.overlay.nlink\x00', &(0x7f0000000040)={'U-', 0xc5be}, 0x16, 0x1) openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x62c001, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) r1 = socket$inet(0x2, 0x1, 0x0) connect$inet(r1, &(0x7f00000000c0)={0x2, 0x4e1d, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10) connect$inet(r1, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) r2 = dup2(r0, r1) r3 = dup(r2) ioctl$VHOST_SET_VRING_BUSYLOOP_TIMEOUT(r3, 0x4008af23, &(0x7f0000000140)={0x3, 0x3}) getsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r0, 0x84, 0x12, &(0x7f0000000080), &(0x7f0000000100)=0x4) 06:49:11 executing program 5: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = open(&(0x7f0000000000)='./file0\x00', 0x101000, 0x108) sendmsg$NL80211_CMD_SET_BEACON(r0, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x404}, 0xc, &(0x7f00000000c0)={&(0x7f0000000380)={0xbb8, 0x0, 0x4, 0x70bd2c, 0x25dfdbfc, {}, [@NL80211_ATTR_ACL_POLICY={0x8}, @NL80211_ATTR_TWT_RESPONDER={0x4}, @NL80211_ATTR_TX_RATES={0xe8, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0xa4, 0x0, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_HT={0x25, 0x2, "2afeff4feab39c1c3795a864cee278d8b5cb75e2abf4797e5e842392fb0b927c81"}, @NL80211_TXRATE_HT={0x10, 0x2, "e9d99440ebaa71ff9cb2d3b5"}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_HT={0x8, 0x2, "728af222"}, @NL80211_TXRATE_HT={0x46, 0x2, "88ea9e90903f615d317c0f9f94f0ddb21f5941995a686918b61422d968decab57d302a027665fa6cb2974b04764d5d3c2010a575d73bd9b43b99860e0e9095ce3880"}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}]}, @NL80211_BAND_2GHZ={0x40, 0x0, [@NL80211_TXRATE_HT={0x3c, 0x2, "3ae95bf4f6f87e2dfd05e8724b42a7390fbbe311e9c5454d5b91d65601a81cd55730c0415d5098480aa7b1a5d8790d1bc1c4fdc7a32d66b6"}]}]}, @NL80211_ATTR_PBSS={0x4}, @NL80211_ATTR_EXTERNAL_AUTH_SUPPORT={0x4}, @NL80211_ATTR_PROBE_RESP={0x898, 0x91, "d9526bb14a7bd7ad541ce6d751d6df00c5a456e0d3955013cfe81c15506636f8a7d9e17663cabffefd7beb96ce281838019861c17f07f3b6cda5226ec76a6a4c984ad9d0096733b304e07e53fdc37187ff02ab78a9c81bd7fc51cccad4d915e9eda12a81d8a2ca5e5c97df549c287e79570c001fd577aab6dae6e3fd850e0391b76737796a1dbee205d4678f5149f1ee2d5a1bac34c825fff761c19d5974bb96fa6034cf38a4850b97e2e71c5c1010949c1f84dbc8e0e51a1d2d4988f72c1c3783330e6f3315a55b208dfa40bfabf76a99b2b836dd8a26726089b85080246179c7976dcdb3e02c951c2944a1851033b9acfd64cad3e6e52c85f33c4574bf963f338081e04432bd8a4baa646597a5724cf41d81e71141ff675a178eb0df8bd28360dca1f0d262bd3f3fbf0ec05bba2a97ea63d45e1b7f70fe5e44848f758b82850bfce344a31048682c6e1df718f26b058b5ba0ecd6dc898fcc33b4a7e03aa6476037a1a825066ac102fb511cb48775322182498f4fbb1ba313280cc1ff90a1fcd8dc2f931be00927386d0c2ac27af4637b90fb7764158ebe7fb7a81cf36b97f4976dda931475a67e15add833284c971d13e5cd9af91e2c6fa92773277eba428ca43cb374b87a003f5bb787b1f20fe3315a5c9cec39e892d68623035f3b2b5e8eb59e28059419aa3617d661f329345ffbffd5a6fe628119ac449f0787f91fd31e564b142e08dd73b2dd6b0553805d1b8a362bffafdd4a1a2fd58e519d7452898435ba62ce42a2175569023464070f4b13e1b075eafb7a146317b9cc2a811fb7f13a18ca8a7e02e32d68a6ce92889e183787e495e4af0e7fb677365cfc9fc0a24557f70cea67ad89ddacb30a067ebf3b6becb618753e761939aa1f11a182eb801d0b02f9ad5a0fb9181effbedbea17c9a3953a9eaf9b0e97d7cd5bdcd3952dc78dae546105df98c8939efd0ba5e064f297f743e6845c304da3d0e178ac0d3e3684bf3e66a63dc47c8906897b0f4ffc349a99a55c88ec6231db263eb40dc0f5a19a9891d50709f8ca98aaedb355a82c198ce9d14a5dcdb919a297d973bb68e5ca5a5c34a5dea2e78db08f2bbc64980ab4703ddb26dd0feef791e026f4fc809c959ebe449a32c483a53bbdcfcf11496cbc2236edf03f58681478df2153b488698813ab4e7d28cb280f308c5c5a523ab5d863ee9fe29d71642e6821a4eb43521ede4cb809c4d9176d98cb60db9bf3a1110d9762d8df1d2b6615e4f53a63e99150429b478ea6ead8fcb559f8b8df6c5bad826a80e061142cca0d175da28e34666d9dd59f787e41bfe477c345ea53f4c6003253e84e4038e1682795c653a5ebdf86ac52cf99ec0c8ac7f2509e22fe2d348270570709cdb66159678fb1134b7ba0f1f90c77c9397769f68a694832697788b5591c2b94093a1c98b749505309a6c04021b1fac4655fd374382e4f700d9c070002de3f29cf9ffccf5737d702523a1fdb9658adf050de570f2e524867d8e60c63cdeffb5a31d41a57592b5fc12e0a3da8fa72c05ff38559039f2c4e41157ce9e86588e9514ce0aae4d453d093e354720dd32fae03ceeb7ae5170cd426f76ba16da91477b7b8a224329d6e59b27910462a954251c4a722c043bc7ee72a9e6bf8dd64234cbc79a265ec5fcd12c5e3618b129fbd824b6be01710f775bd2b3516d27fa425b9355d2e503f9aeef9a2e7f2b569468a4bf539a8e56b46d448d05923aa1bf19908e80e2b82a3019c6fafc38118b49f7c5a01b627c51a72858e6fee359269948e471578d48600ce57c52506fea54f4207718d99e8d2e52c55475bf8ea0bb2d819f4e048c18f20170910c81c1ada3d85c21ca5d00d6378585dc05311a23753752ffe09793c4189ea5591fd7599dcadfe6680d1623bcde4ef04191216d7375634e4440bbcc03e72a53705c2fc7d62b443c1bd8f2fefc83895647f8cf87c5e267e110ad5e0ddd97277f733c9237808360c675912e97d25ca6d5a3d29c4c27c034dcc304204ff8bd5bc9ba03adf27d481f00f72c9e544ca741cec296d181d1664768e5d65e9dd4545791819a96f8735b0cb5c2e7e0f749be90afbca95968804c200a8622b13640efb503b0eabbaeb73edb63927afd3e62838fcfa554e1c1f2e9b1f205cbc16e3f1d232cf281da354a2303e3407c55737b9fec414421819ccffd7a32b56b1c57b50fa7af2a9ec47d870b705a7b2e1ecd2898270b62b0ef5519c4a958ccce95b3166ca0809700cceb2933160ecf83781e332cbf33388fa74fd4e35ca2afa8a0b7ed3842e405723b8d61758082fa8a96a8f3577a1f5a7135e047e649282eb8c2e2bbe1f6f6d66d2c61758f47e2b015ab438ed08c5bf5f0baf2fdbd62507c28ae603d47ff5cd1b6c33016b77760e2b24c75e022a010adcb6b7c810390ada61bfaa8f299fc8ec800dc18a2bea9325922b5064c25d514e3e111410f5dfc54213e72133a6395764ae43a5ddb39a05526d094dd3a8cb793766ad17b3c8d81102f5a05138d288060fc038afa732ce58a26cc79d2df3e947effa5e3476d34755f86964f4a77654edbeb6290bcf354562ef218f5aaae796cec2c3030ff2f462500d8fc00c6e768a1ee066ef8f0d053cc7f08e8211214cd84f97785e41611b28c0a702710c08e40023b8588ef9194d913d3bb79472de63ffda759c500dc389f071fd0ff06af9b04d80b1bdc42d38420327ae28bb9a91a4177c30c07874fe6bce247d357b97f5c1d85e56bcd4a58bdcda3ca6d925c5b3e8c4840fdf32446a579f5bba19e8e406d1a86107cdd934197c53fbc76991ae72c7be034878788a1fb0a9fb9efa72092ad63955841761891d4601471e54fc6447fd1493958d720522e0016636947209d8a864661a7145d5ec35b9e883ccdbe51badef742f7cd856c60ca85cb60755a5e3736d01619969e66a269fa3847778d99090814fb7534cb20f9236eec51a34f468a537d2dc6e7dee83e0aa9b78bc62a634a77385742e820fbea8255d23ada46602f37ea778b41cb3e4925a5cc76d59a8c506a91466d1725bf8f1f0bd94ed7c0fc2d8def28361e3297d7b8e9823defbc2f47b2103acbfb315ca83d88ff39784ec00"}, @NL80211_ATTR_AKM_SUITES={0x18, 0x4c, [0xfac11, 0xfac01, 0xfac05, 0xfac19, 0xfac0f]}, @NL80211_ATTR_BEACON_HEAD={0x1ef, 0xe, "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"}, @NL80211_ATTR_ACL_POLICY={0x8, 0xa5, 0x1}]}, 0xbb8}, 0x1, 0x0, 0x0, 0x10}, 0x4000) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) preadv(0xffffffffffffffff, &(0x7f0000001080)=[{&(0x7f0000000240)=""/183, 0xb7}, {&(0x7f0000000180)=""/74, 0x4a}, {&(0x7f0000000f80)=""/228, 0xe4}, {&(0x7f0000000300)=""/18, 0x12}], 0x4, 0xfff) mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f64f8762f6e756c6c623000"], &(0x7f0000000340)='./file0\x00', &(0x7f0000000100)='reiserfs\x00', 0x0, 0x0) 06:49:11 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r5 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x280000, 0x0) ioctl$KVM_GET_ONE_REG(r5, 0x4010aeab, &(0x7f0000000040)={0x7d, 0xa}) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) [ 1407.281812] 0 pages HighMem/MovableOnly [ 1407.285791] 335868 pages reserved [ 1407.289347] 0 pages cma reserved 06:49:11 executing program 4: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) syz_open_dev$media(&(0x7f0000000000)='/dev/media#\x00', 0x100000001, 0x503000) openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcsa\x00', 0x501302, 0x0) ioctl$VIDIOC_S_PARM(0xffffffffffffffff, 0xc0cc5616, &(0x7f0000000240)={0x1, @capture={0x0, 0x0, {0x3}, 0x0, 0x1}}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$GIO_UNISCRNMAP(0xffffffffffffffff, 0x4b69, &(0x7f0000000140)=""/148) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000200)=@nullb='/dev/nullb0\x00', &(0x7f0000000340)='./file0\x00', &(0x7f0000000380)='f2fs\x00', 0x4000, 0x0) [ 1407.352348] cgroup: cgroup2: unknown option "º" 06:49:11 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x100, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$VIDIOC_G_AUDOUT(r2, 0x80345631, &(0x7f0000000040)) ioctl$DRM_IOCTL_FREE_BUFS(r0, 0x4010641a, &(0x7f0000000080)={0x0, &(0x7f0000000040)}) 06:49:11 executing program 2: clock_gettime(0x0, &(0x7f00000001c0)={0x0, 0x0}) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$VIDIOC_QBUF(0xffffffffffffffff, 0xc058560f, &(0x7f0000000300)={0x7ff, 0x7, 0x4, 0x4000000, 0x9, {r0, r1/1000+10000}, {0x1, 0xd, 0x0, 0x8, 0x6, 0x7, "05a5c87d"}, 0x9, 0x2, @userptr=0xfff, 0xfffffff9, 0x0, r3}) fstatfs(r4, &(0x7f0000000400)=""/229) r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) r7 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r8 = dup(r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) ioctl$EVIOCSCLOCKID(r8, 0x400445a0, &(0x7f0000000080)=0x1) r9 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r10 = dup(r9) ioctl$PERF_EVENT_IOC_ENABLE(r10, 0x8912, 0x400200) sendmsg$nl_route(r10, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000240)={&(0x7f0000000380)=@ipv6_delrule={0x78, 0x21, 0x100, 0x70bd29, 0x25dfdbfe, {0xa, 0x10, 0x10, 0xbb, 0x4, 0x0, 0x0, 0x1, 0x1e}, [@FIB_RULE_POLICY=@FRA_GOTO={0x8, 0x4, 0x6}, @FRA_DST={0x14, 0x1, @mcast1}, @FRA_DST={0x14, 0x1, @initdev={0xfe, 0x88, [], 0x1, 0x0}}, @FIB_RULE_POLICY=@FRA_PRIORITY={0x8, 0x6, 0x5}, @FIB_RULE_POLICY=@FRA_PROTOCOL={0x5, 0x15, 0x1}, @FIB_RULE_POLICY=@FRA_OIFNAME={0x14, 0x11, 'veth1_to_team\x00'}, @FIB_RULE_POLICY=@FRA_SPORT_RANGE={0x8, 0x17, {0x4e24, 0x4e24}}]}, 0x78}, 0x1, 0x0, 0x0, 0x4004040}, 0x0) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) ioctl$SCSI_IOCTL_PROBE_HOST(0xffffffffffffffff, 0x5385, &(0x7f0000000500)=ANY=[@ANYBLOB="3f0000000000000000000000e00000000000000000005e7ff788ad66db1686e650d849d36100000000000000000000000000040000000000000000000000000000000000000000f8ff000000000000000000"]) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) 06:49:11 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r5 = dup(r4) ioctl$KVM_TPR_ACCESS_REPORTING(r5, 0xc028ae92, &(0x7f0000000040)={0x1f, 0x1}) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) openat$cgroup_ro(r5, &(0x7f0000000000)='memory.stat\x00', 0x0, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r6, 0xae80, 0x0) ioctl$KVM_RUN(r6, 0xae80, 0x0) [ 1407.478014] syz-executor.1: vmalloc: allocation failure: 0 bytes, mode:0x14000c0(GFP_KERNEL), nodemask=(null) [ 1407.519509] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1407.538679] f2fs_msg: 14 callbacks suppressed [ 1407.538688] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0) [ 1407.561808] CPU: 1 PID: 9753 Comm: syz-executor.1 Not tainted 4.14.167-syzkaller #0 [ 1407.569649] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1407.573285] cgroup: cgroup2: unknown option "º" [ 1407.579019] Call Trace: [ 1407.579043] dump_stack+0x142/0x197 [ 1407.579061] warn_alloc.cold+0x96/0x1af [ 1407.579072] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 1407.579090] ? lock_downgrade+0x740/0x740 [ 1407.603162] ? avc_has_perm+0x2df/0x4b0 [ 1407.607166] __vmalloc_node_range+0x3c3/0x6a0 [ 1407.609291] cgroup: cgroup2: unknown option "º" 06:49:11 executing program 2: mprotect(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x4000000) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='!em1truste\x00eth1vboxnet0system\x00', r1}, 0x10) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) [ 1407.611673] ? trace_hardirqs_on+0x10/0x10 [ 1407.611690] vmalloc+0x46/0x50 [ 1407.611700] ? sel_write_load+0x1a0/0x1050 [ 1407.611708] sel_write_load+0x1a0/0x1050 [ 1407.611718] ? save_trace+0x290/0x290 [ 1407.611734] ? sel_read_bool+0x240/0x240 [ 1407.611747] ? trace_hardirqs_on+0x10/0x10 [ 1407.611760] ? debug_smp_processor_id+0x1c/0x20 [ 1407.611768] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1407.611779] __vfs_write+0x105/0x6b0 [ 1407.611789] ? sel_read_bool+0x240/0x240 [ 1407.611804] ? kernel_read+0x120/0x120 [ 1407.666057] ? __lock_is_held+0xb6/0x140 [ 1407.666073] ? check_preemption_disabled+0x3c/0x250 [ 1407.666090] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1407.666102] ? rcu_read_lock_sched_held+0x110/0x130 [ 1407.666113] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 1407.666123] ? __sb_start_write+0x153/0x2f0 [ 1407.666135] vfs_write+0x198/0x500 [ 1407.666148] SyS_write+0xfd/0x230 [ 1407.666158] ? SyS_read+0x230/0x230 [ 1407.666168] ? do_syscall_64+0x53/0x640 [ 1407.666177] ? SyS_read+0x230/0x230 [ 1407.666188] do_syscall_64+0x1e8/0x640 [ 1407.666197] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1407.666215] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1407.666223] RIP: 0033:0x45b349 [ 1407.666228] RSP: 002b:00007f76bb2b4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1407.666238] RAX: ffffffffffffffda RBX: 00007f76bb2b56d4 RCX: 000000000045b349 [ 1407.666244] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000007 [ 1407.666249] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 06:49:11 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0xc854900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/load\x00', 0x2, 0x0) write$selinux_load(r2, 0x0, 0x0) [ 1407.666255] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1407.666260] R13: 0000000000000cb1 R14: 00000000004cd905 R15: 000000000075bf2c [ 1407.677642] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 1th superblock [ 1407.776359] cgroup: cgroup2: unknown option "º" 06:49:11 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x165301, 0x0) [ 1407.813056] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0xbfe6ad00) [ 1407.837068] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 2th superblock 06:49:11 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) r7 = socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040)='TIPC\x00') sendmsg$TIPC_CMD_SHOW_LINK_STATS(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)={0xa4, r8, 0x23f, 0x0, 0x0, {{}, {}, {0x88, 0x14, 'broadcast-link\x00'}}}, 0xa4}, 0x1, 0xfffffff0}, 0x0) sendmsg$TIPC_CMD_SET_LINK_TOL(r6, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000040)={&(0x7f0000000300)=ANY=[@ANYBLOB="002e961c81042943", @ANYRES16=r8, @ANYBLOB="000428bd7000fedbdf25010000000000000007410000004c001800000cdc73797a3000"/98], 0x68}, 0x1, 0x0, 0x0, 0x8000}, 0x4000000) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) [ 1407.868916] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0) [ 1407.893375] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 1th superblock 06:49:11 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f00000000c0)={0x0, &(0x7f00000001c0)="229c6d99872d230a687789f9dee2ce47434623f87340ae1f74fd3e6ba88a5668e1c376446acfef759527dabb8dea41f8095654de24617d0da775a0b57fbbc2e75ed65aad5d17bd6c0466d9d9567e898d5f6e1086b886e42650be45d363c0db30335bdb6a9b8afcd0e72a1d565856c508368b1553a3e90eedb50709564dc186355f0c41ea8d9b9fdb0e35ac952c7bed185c19b18e1d684f699e7385aff3885aee4db18fe3d44a8af0b9b7025bf83f32ea6461b342a17b98f3377fff12a3da025ee268e86ca6f402b681009b9cd1ed629ddd6be40c0fc57fcb06c6e623c00011d476", 0xe1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) r2 = socket$inet6(0xa, 0x1000000000002, 0x0) r3 = socket$inet(0x2, 0x1, 0x0) connect$inet(r3, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r3, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r3, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r2, r3) ioctl$VIDIOC_G_EXT_CTRLS(r1, 0xc0205647, &(0x7f0000000340)={0x9d0000, 0xfffffff7, 0x4, r3, 0x0, &(0x7f0000000300)={0xa20929, 0x451a, [], @p_u16=&(0x7f00000002c0)=0x6}}) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0)='nl80211\x00') r6 = socket$netlink(0x10, 0x3, 0x0) r7 = socket$netlink(0x10, 0x3, 0x0) r8 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r8, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) r9 = pkey_alloc(0x0, 0x1) pkey_mprotect(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x5000004, r9) getsockname$packet(r8, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x2ba) sendmsg$nl_route(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB="3c0000001000850600"/18, @ANYRES32=r10, @ANYBLOB="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"], 0x3}}, 0x0) sendmsg$nl_route(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000007c0)=ANY=[@ANYBLOB="4400000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012000c00010067726574617000000c00020008000100", @ANYRES32=r10, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r10, @ANYBLOB="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"], 0x44}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r4, &(0x7f0000000480)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x82f945e58eacdc66}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x1c, r5, 0x400, 0x70bd2b, 0x25dfdbfb, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r10}]}, 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x4000044) [ 1407.939271] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0xbfe6ad00) [ 1407.968837] syz-executor.1: vmalloc: allocation failure: 0 bytes, mode:0x14000c0(GFP_KERNEL), nodemask=(null) 06:49:12 executing program 4: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcsa\x00', 0x501302, 0x0) ioctl$VIDIOC_S_PARM(0xffffffffffffffff, 0xc0cc5616, &(0x7f0000000240)={0x1, @capture={0x0, 0x0, {0x3}, 0x0, 0x1}}) r2 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$GIO_UNISCRNMAP(0xffffffffffffffff, 0x4b69, &(0x7f0000000140)=""/148) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r3 = socket$inet6(0xa, 0x1000000000002, 0x0) r4 = socket$inet(0x2, 0x1, 0x0) connect$inet(r4, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r4, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r4, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r3, r4) ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r3, 0xc0506617, &(0x7f0000000400)={{0x2, 0x0, @descriptor="000ce591012348fa"}, 0x89, [], "bbcafb77db0fc8e77045f05fd5b1bf96a06a5425e84be53d803f5c4932fc2b15aa9d8c3eba267b80ed1f1fef220637386cea7d1dbc8952d7491832aed82d8a7d5a0ee8b42c8ce5a2b1b800cbdaf0f345e137474f59311f9fd234da35dc7f455f50e2046fc84a1e90caed11c644714bc992d24eab517d9ae5c207dbd2a695c839271cd00a942ecdd875"}) r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) r7 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r8 = dup(r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) getsockopt$inet_sctp6_SCTP_CONTEXT(r8, 0x84, 0x11, &(0x7f0000000500)={0x0, 0xfffffff9}, &(0x7f0000000540)=0x8) getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(r6, 0x84, 0x70, &(0x7f0000000580)={r9, @in6={{0xa, 0x4e21, 0x7ff, @dev={0xfe, 0x80, [], 0x1b}, 0x200}}, [0x1, 0x43, 0x2, 0x8, 0x20, 0x5, 0x6, 0xffffffffffff79d3, 0x5, 0x5, 0x941, 0x7f, 0x8, 0x3, 0x62e]}, &(0x7f0000000680)=0x100) mount(&(0x7f0000000200)=@nullb='/dev/nullb0\x00', &(0x7f0000000340)='./file0\x00', &(0x7f0000000380)='f2fs\x00', 0x4000, 0x0) setsockopt$inet_sctp6_SCTP_AUTH_DELETE_KEY(r1, 0x84, 0x19, &(0x7f00000003c0)={0x0, 0x1}, 0x8) r10 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ocfs2_control\x00', 0x60000, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(r10, 0xc04c5349, &(0x7f00000000c0)={0x1, 0xc55e, 0x2}) [ 1407.993921] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 2th superblock [ 1408.023393] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1408.043787] CPU: 0 PID: 9783 Comm: syz-executor.1 Not tainted 4.14.167-syzkaller #0 [ 1408.051640] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1408.061231] Call Trace: [ 1408.063861] dump_stack+0x142/0x197 [ 1408.067515] warn_alloc.cold+0x96/0x1af [ 1408.071510] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 1408.076368] ? lock_downgrade+0x740/0x740 [ 1408.080102] batman_adv: Cannot find parent device [ 1408.080532] ? avc_has_perm+0x2df/0x4b0 [ 1408.080655] __vmalloc_node_range+0x3c3/0x6a0 [ 1408.093974] ? trace_hardirqs_on+0x10/0x10 [ 1408.098417] vmalloc+0x46/0x50 [ 1408.101995] ? sel_write_load+0x1a0/0x1050 [ 1408.106246] sel_write_load+0x1a0/0x1050 [ 1408.110322] ? save_trace+0x290/0x290 [ 1408.114180] ? sel_read_bool+0x240/0x240 [ 1408.118258] ? trace_hardirqs_on+0x10/0x10 [ 1408.122509] ? debug_smp_processor_id+0x1c/0x20 [ 1408.127210] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1408.132154] __vfs_write+0x105/0x6b0 [ 1408.135883] ? sel_read_bool+0x240/0x240 [ 1408.140911] ? kernel_read+0x120/0x120 [ 1408.144823] ? __lock_is_held+0xb6/0x140 [ 1408.148989] ? check_preemption_disabled+0x3c/0x250 [ 1408.154139] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1408.159616] ? rcu_read_lock_sched_held+0x110/0x130 [ 1408.164679] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 1408.171458] ? __sb_start_write+0x153/0x2f0 [ 1408.175825] vfs_write+0x198/0x500 [ 1408.179381] SyS_write+0xfd/0x230 [ 1408.182850] ? SyS_read+0x230/0x230 [ 1408.186487] ? do_syscall_64+0x53/0x640 [ 1408.190476] ? SyS_read+0x230/0x230 [ 1408.194116] do_syscall_64+0x1e8/0x640 [ 1408.198129] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1408.202990] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1408.208185] RIP: 0033:0x45b349 [ 1408.211382] RSP: 002b:00007f76bb2b4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1408.219101] RAX: ffffffffffffffda RBX: 00007f76bb2b56d4 RCX: 000000000045b349 [ 1408.226517] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005 [ 1408.233846] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1408.241112] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1408.248385] R13: 0000000000000cb1 R14: 00000000004cd905 R15: 000000000075bf2c [ 1408.266890] warn_alloc_show_mem: 1 callbacks suppressed [ 1408.266894] Mem-Info: [ 1408.280894] active_anon:443209 inactive_anon:209 isolated_anon:0 [ 1408.280894] active_file:3272 inactive_file:7195 isolated_file:0 [ 1408.280894] unevictable:0 dirty:365 writeback:0 unstable:0 [ 1408.280894] slab_reclaimable:17583 slab_unreclaimable:150389 [ 1408.280894] mapped:58642 shmem:285 pagetables:33939 bounce:0 [ 1408.280894] free:853607 free_pcp:657 free_cma:0 [ 1408.282537] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0) [ 1408.315538] Node 0 active_anon:1616696kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208956kB dirty:4kB writeback:0kB shmem:1056kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 995328kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1408.315557] Node 1 active_anon:156140kB inactive_anon:72kB active_file:13040kB inactive_file:28772kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:25612kB dirty:1456kB writeback:0kB shmem:84kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1408.315562] Node 0 DMA free:10464kB min:216kB low:268kB high:320kB active_anon:4508kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:96kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1408.315587] lowmem_reserve[]: [ 1408.355750] cgroup: cgroup2: unknown option "" [ 1408.378778] 0 [ 1408.416814] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 1th superblock [ 1408.436341] 2569 2569 2569 2569 [ 1408.440440] batman_adv: Cannot find parent device [ 1408.450606] Node 0 DMA32 free:39636kB min:36380kB low:45472kB high:54564kB active_anon:1612188kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB writepending:4kB present:3129332kB managed:2634344kB mlocked:0kB kernel_stack:20864kB pagetables:53608kB bounce:0kB free_pcp:1280kB local_pcp:696kB free_cma:0kB [ 1408.481789] lowmem_reserve[]: 0 0 0 0 0 [ 1408.486038] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1408.519012] lowmem_reserve[]: 0 0 0 0 0 [ 1408.523291] Node 1 Normal free:3364836kB min:53508kB low:66884kB high:80260kB active_anon:155868kB inactive_anon:80kB active_file:13040kB inactive_file:28784kB unevictable:0kB writepending:1468kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:27584kB pagetables:82116kB bounce:0kB free_pcp:1368kB local_pcp:708kB free_cma:0kB [ 1408.573191] lowmem_reserve[]: 0 0 0 0 0 [ 1408.577368] Node 0 DMA: 16*4kB (UME) 16*8kB (UE) 14*16kB (UME) 16*32kB (UME) 17*64kB (U) 6*128kB (UE) 6*256kB (UE) 2*512kB (ME) 3*1024kB (UME) 1*2048kB (E) 0*4096kB = 10464kB 06:49:12 executing program 5: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) socket$inet_icmp_raw(0x2, 0x3, 0x1) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) r1 = socket$inet(0x2, 0x1, 0x0) connect$inet(r1, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r1, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r1, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r0, r1) r2 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000200)=@nullb='/dev/nullb0\x00', &(0x7f0000000340)='./file0\x00', &(0x7f0000000100)='reiserfs\x00', 0x200000, 0x0) [ 1408.617881] Node 0 DMA32: 195*4kB (UMEH) 486*8kB (UMEH) 703*16kB (UMEH) 436*32kB (UMEH) 160*64kB (UMEH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 40108kB [ 1408.635479] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB 06:49:12 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x0, [], [{0xffffffff, 0xf7, 0x80, 0x9, 0x1, 0x4}, {0x8, 0x5, 0x3, 0x0, 0x0, 0xff}], [[]]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) 06:49:12 executing program 3: openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000001480)='/dev/dlm_plock\x00', 0x349103, 0x0) openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x103800, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = socket$inet6(0xa, 0x1000000000002, 0x0) r3 = socket$inet(0x2, 0x1, 0x0) connect$inet(r3, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r3, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r3, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r2, r3) r4 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r4, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) r5 = socket$inet(0x10, 0x2, 0x0) ioctl$sock_ifreq(r5, 0x89f0, &(0x7f0000000180)={'ip6_vti0\x00', @ifru_flags}) r6 = dup2(r4, r5) r7 = socket$inet_sctp(0x2, 0x0, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r7, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f0000000280)={r8, 0x36, "ac6a82d2b5acd821e04d0478a474e9c2be3b387e029887626c7e3cf456672c29c8210efff7d4d24bdf54e0b4d427ae9a6873dd3c164e"}, 0x0) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r6, 0x84, 0x71, &(0x7f00000001c0)={r8, 0xffffffff}, &(0x7f0000000340)=0x8) getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(r3, 0x84, 0xf, &(0x7f0000002ec0)={r8, @in={{0x2, 0x4e24, @initdev={0xac, 0x1e, 0x1, 0x0}}}, 0x8, 0x5da, 0xffffda11, 0x2, 0x6}, &(0x7f0000002f80)=0x98) r9 = dup(r1) r10 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000014c0)='/dev/sequencer2\x00', 0x400800, 0x0) r11 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r12 = dup(r11) ioctl$PERF_EVENT_IOC_ENABLE(r12, 0x8912, 0x400200) sendmsg$IPSET_CMD_TEST(r12, &(0x7f0000002e80)={&(0x7f0000000040), 0xc, &(0x7f0000002d40)={&(0x7f0000002fc0)=ANY=[@ANYBLOB="980000000b0601040000000000000000070000023c0007801800148014000240fe8000000000000000000000000000bb0c00016b08000140e00000020c0019400000000000000005051800078005001a00000000000c001840000000000000ffff30000880100007800c0018400000000000000bc1100007800900120073797a32000000000c000780050015004f0000001de28415c105d2eeaf6d243a079274c72489964a50101a31edfa2a91fd92644826f6fc492da6513c"], 0x98}, 0x1, 0x0, 0x0, 0x8000}, 0x0) ioctl$SNDCTL_DSP_SPEED(r10, 0xc0045002, &(0x7f0000002d00)=0x3) ioctl$PERF_EVENT_IOC_ENABLE(r9, 0x8912, 0x400200) ioctl$TIOCGSID(r9, 0x5429, &(0x7f0000002c40)=0x0) prctl$PR_SET_PTRACER(0x59616d61, r13) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000100)={0x0}, &(0x7f0000000140)=0xc) process_vm_readv(r14, &(0x7f00000016c0)=[{&(0x7f0000000180)=""/186, 0xba}, {&(0x7f0000000240)=""/171, 0xab}, {&(0x7f0000000300)=""/4096, 0x1000}, {&(0x7f0000001300)=""/49, 0x31}, {&(0x7f0000001340)=""/199, 0xc7}, {&(0x7f0000001440)=""/3, 0x3}, {&(0x7f0000002c80)=""/72, 0x48}, {&(0x7f0000001500)=""/246, 0xf6}, {&(0x7f0000001600)=""/90, 0x5a}, {&(0x7f0000001680)=""/30, 0x1e}], 0xa, &(0x7f0000002bc0)=[{&(0x7f0000001780)=""/123, 0x7b}, {&(0x7f0000001800)=""/76, 0x4c}, {&(0x7f0000001880)=""/246, 0xf6}, {&(0x7f0000001980)=""/111, 0x6f}, {&(0x7f0000001a00)=""/158, 0x9e}, {&(0x7f0000001ac0)=""/245, 0xf5}, {&(0x7f0000001bc0)=""/4096, 0x1000}], 0x7, 0x0) getsockopt$PNPIPE_IFINDEX(r0, 0x113, 0x2, &(0x7f0000002d80), &(0x7f0000000080)=0x4) 06:49:12 executing program 4: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcsa\x00', 0x501302, 0x0) ioctl$VIDIOC_S_PARM(0xffffffffffffffff, 0xc0cc5616, &(0x7f0000000240)={0x1, @capture={0x0, 0x0, {0x3}, 0x0, 0x1}}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$GIO_UNISCRNMAP(0xffffffffffffffff, 0x4b69, &(0x7f0000000140)=""/148) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f00000000c0)=ANY=[@ANYBLOB="d2cac5a83dc3ed0b2ed3ffa2161659707b4f275bd39ca0348ecf74e1a88ce54637f373fc07dd4f1be54a1c870f70d9c829af0954e4168792b46baae3104389ab48a128a93ce0"], &(0x7f0000000340)='./file0\x00', &(0x7f0000000380)='f2fs\x00', 0x4000, 0x0) 06:49:12 executing program 2: r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcs\x00', 0x508482, 0x0) ioctl$SNDRV_TIMER_IOCTL_START(r0, 0x54a0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='iso9660\x00', 0x0, &(0x7f00000002c0)) 06:49:12 executing program 4: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) r1 = socket$inet(0x2, 0x1, 0x0) connect$inet(r1, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r1, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r1, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r0, r1) r2 = fcntl$dupfd(0xffffffffffffffff, 0x406, r0) getsockopt$inet6_dccp_buf(r2, 0x21, 0xc0, &(0x7f0000000440)=""/105, &(0x7f00000004c0)=0x69) mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcsa\x00', 0x501302, 0x0) ioctl$VIDIOC_S_PARM(0xffffffffffffffff, 0xc0cc5616, &(0x7f0000000240)={0x1, @capture={0x0, 0x0, {0x3}, 0x0, 0x1}}) r4 = dup(r3) r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) r7 = syz_genetlink_get_family_id$batadv(&(0x7f00000000c0)='batadv\x00') sendmsg$BATADV_CMD_GET_MESH(r6, &(0x7f0000000400)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000100)={0x1c, r7, 0x200, 0x70bd2d, 0x25dfdbfc, {}, [@BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x6}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4055}, 0x11) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$GIO_UNISCRNMAP(0xffffffffffffffff, 0x4b69, &(0x7f0000000140)=""/148) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000200)=@nullb='/dev/nullb0\x00', &(0x7f0000000340)='./file0\x00', &(0x7f0000000380)='f2fs\x00', 0x4000, 0x0) [ 1408.666815] Node 1 Normal: 168*4kB (UME) 38*8kB (UME) 97*16kB (UME) 55*32kB (UME) 45*64kB (UME) 28*128kB (UME) 36*256kB (UME) 55*512kB (UME) 12*1024kB (UME) 2*2048kB (U) 806*4096kB (M) = 3365888kB [ 1408.735853] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1408.767394] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB 06:49:12 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = openat$bsg(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/bsg\x00', 0x0, 0x0) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000180)='nbd\x00') sendmsg$NBD_CMD_STATUS(r1, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x70, r2, 0x200, 0x70bd27, 0x25dfdbfe, {}, [@NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x81}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x4b}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x1}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0x4a}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x9}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x20}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0xff}]}, 0x70}}, 0x80) r3 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000080)='./file0/file0\x00', 0x129) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) [ 1408.786672] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1408.828936] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1408.864639] 10755 total pagecache pages [ 1408.879193] 0 pages in swap cache [ 1408.903589] Swap cache stats: add 0, delete 0, find 0/0 [ 1408.927958] Free swap = 0kB [ 1408.943083] Total swap = 0kB [ 1408.949785] 1965979 pages RAM [ 1408.963617] 0 pages HighMem/MovableOnly [ 1408.974807] 335868 pages reserved [ 1409.000852] 0 pages cma reserved 06:49:13 executing program 1: r0 = socket$rds(0x15, 0x5, 0x0) setsockopt$RDS_RECVERR(r0, 0x114, 0x5, &(0x7f0000000040), 0x4) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r3 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/load\x00', 0x2, 0x0) write$selinux_load(r3, 0x0, 0x0) 06:49:13 executing program 4: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcsa\x00', 0x501302, 0x0) ioctl$VIDIOC_S_PARM(0xffffffffffffffff, 0xc0cc5616, &(0x7f0000000240)={0x1, @capture={0x0, 0x0, {0x3}, 0x0, 0x1}}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$GIO_UNISCRNMAP(0xffffffffffffffff, 0x4b69, &(0x7f0000000140)=""/148) r2 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0xa4000, 0x0) ioctl$VIDIOC_SUBSCRIBE_EVENT(r2, 0x4020565a, &(0x7f00000000c0)={0x2, 0x8, 0x3}) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000200)=@nullb='/dev/nullb0\x00', &(0x7f0000000340)='./file0\x00', &(0x7f0000000380)='f2fs\x00', 0x4000, 0x0) 06:49:13 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x8000, 0x501000) write$selinux_load(r2, &(0x7f0000000240)=ANY=[@ANYBLOB="8cff36f8709a00005345204c696e7578f027147fc810c299974653706e0d037d72eb187528078b90"], 0x11) write$FUSE_BMAP(0xffffffffffffffff, &(0x7f0000000080)={0x18, 0x0, 0x1, {0x7}}, 0x18) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) ioctl$sock_kcm_SIOCKCMCLONE(r2, 0x89e2, &(0x7f0000000200)={r2}) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) r6 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r6, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) r7 = socket$inet(0x10, 0x80000, 0x2e) ioctl$sock_ifreq(r7, 0x89f0, &(0x7f0000000180)={'ip6_vti0\x00', @ifru_flags}) r8 = dup2(r6, r7) r9 = socket$inet_sctp(0x2, 0x0, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r9, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f00000004c0)=ANY=[@ANYRES32=r10, @ANYBLOB="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"/510], 0x0) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r8, 0x84, 0x71, &(0x7f00000001c0)={r10, 0xffffffff}, &(0x7f0000000340)=0x8) getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(r5, 0x84, 0x6f, &(0x7f0000000300)={r11, 0x5c, &(0x7f0000000400)=[@in6={0xa, 0x4e24, 0x7fff, @ipv4={[], [], @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x101}, @in={0x2, 0x4e20, @initdev={0xac, 0x1e, 0x1, 0x0}}, @in={0x2, 0x4e23, @empty}, @in={0x2, 0x4e20, @multicast1}, @in={0x2, 0x4e23, @broadcast}]}, &(0x7f0000000340)=0x10) r12 = socket$inet6(0xa, 0x1000000000002, 0x0) r13 = socket$inet(0x2, 0x1, 0x0) connect$inet(r13, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r13, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r13, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r12, r13) ioctl$FS_IOC_RESVSP(r13, 0x40305828, &(0x7f00000003c0)={0x0, 0x4, 0x5, 0x1}) setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r3, 0x84, 0x7c, &(0x7f0000000380)={r10, 0x7, 0x4}, 0x8) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='cgroup2\x00', 0x403, &(0x7f0000000100)='V\xb4\xfa\xc8p\x1a\xca}\x81\x95]\x02\x1d\xc0-~\xf1\xb3\xb6\x00'/34) 06:49:13 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x2, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 06:49:13 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) signalfd4(r1, &(0x7f0000000080)={[0x1]}, 0x8, 0x80000) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f0000000300)='n\xca\xfd8\xc3B\x13X\x04\x7f\xe6\xabF\\M\x1e\x14n\xbd\xb9\x9a\xfa\xd2\x9d\xce\x93\x8d\x01\x12\x1d\x03c\x13\xce\xb8H|\xdcn \x94\xc1\n\x0e\x95&\xad@*\xc6H\xa9\xa7\x80\x1f;TC\x91\x8b\xdc\xa9\xd4x&D\xe8kv\xdek\x9e\x85\x17\xa2\xd04\xcdR?\xda\x0f#\xa8\xa9\xa5\xda\xbe\xf9F/\xf8\xb9\xf2\x166L\xe6\xe3H\x11:Yr\x92\xc0W0\xc3\xa0\xfc8;R\xb1m\xc0\xe8=^X\x96\xf8w\xbctbV{\x8b\xd7E#\x91\xe3\x00\t\x90{2w\xf4\b\xe9\x1b\xb6\x02\x8e\xb5+\xcdK\x98\x10\xb8E\xcaT\x193\x11\x86Rbt.V\x04|\x81j^\x03m\xe2}\xb00\xc7\x10\xacs\xb5G7C\xdc\xaf\xc6B\xb7\xd8\xfc\xabf\x18|cB\xe1U\xfcIf\x10\x05\xaa\x0fK\v\x8a\xa3L\xaa\x13\xd2\xca|\xbe\xa7w\x82\xea\x04\xbcy\xa8TrI\xaa\x84u\xbc:\xecg\xc3_\xf6\xa4\xeb\xf8\x84?\xe2\xf1/f7\x97\xd4\x83\xa9\xc19\x8d\x8fn\xb8\xa1\xf96\xa5\xb81\x1c\xc2\xcda\x19j:\xa8bUq\xe0\x05\xd6\xe6\xb0\xc6>\xb5\x93\xd7\xb5=') [ 1409.161638] syz-executor.1: vmalloc: allocation failure: 0 bytes, mode:0x14000c0(GFP_KERNEL), nodemask=(null) [ 1409.177133] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1409.200605] CPU: 1 PID: 9866 Comm: syz-executor.1 Not tainted 4.14.167-syzkaller #0 [ 1409.208819] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1409.218363] Call Trace: [ 1409.220973] dump_stack+0x142/0x197 [ 1409.224617] warn_alloc.cold+0x96/0x1af [ 1409.228614] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 1409.233486] ? lock_downgrade+0x740/0x740 [ 1409.237673] ? avc_has_perm+0x2df/0x4b0 [ 1409.241678] __vmalloc_node_range+0x3c3/0x6a0 [ 1409.246198] ? trace_hardirqs_on+0x10/0x10 [ 1409.250453] vmalloc+0x46/0x50 [ 1409.253665] ? sel_write_load+0x1a0/0x1050 [ 1409.257929] sel_write_load+0x1a0/0x1050 [ 1409.262018] ? save_trace+0x290/0x290 [ 1409.265844] ? sel_read_bool+0x240/0x240 [ 1409.269931] ? trace_hardirqs_on+0x10/0x10 [ 1409.274201] ? debug_smp_processor_id+0x1c/0x20 [ 1409.278891] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1409.283845] __vfs_write+0x105/0x6b0 [ 1409.287579] ? sel_read_bool+0x240/0x240 [ 1409.291661] ? kernel_read+0x120/0x120 [ 1409.295566] ? __lock_is_held+0xb6/0x140 [ 1409.299650] ? check_preemption_disabled+0x3c/0x250 [ 1409.304682] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1409.306867] cgroup: cgroup2: unknown option "nÊý8ÃBXæ«F\Mn½¹šúÒΓcθH|Ün ”Á [ 1409.306867] •&­@*ÆH©§€;TC‘‹Ü©Ôx&DèkvÞkž…¢Ð4ÍR?Ú#¨©¥Ú¾ùF/ø¹ò6LæãH:Yr’ÀW0àü8;R±mÀè=^X–øw¼tbV{‹×E#‘ã" [ 1409.310324] ? rcu_read_lock_sched_held+0x110/0x130 [ 1409.310335] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 1409.310347] ? __sb_start_write+0x153/0x2f0 [ 1409.310357] vfs_write+0x198/0x500 [ 1409.310369] SyS_write+0xfd/0x230 [ 1409.310379] ? SyS_read+0x230/0x230 [ 1409.310389] ? do_syscall_64+0x53/0x640 [ 1409.310398] ? SyS_read+0x230/0x230 [ 1409.310410] do_syscall_64+0x1e8/0x640 [ 1409.310420] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1409.310434] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1409.310443] RIP: 0033:0x45b349 [ 1409.310449] RSP: 002b:00007f76bb2b4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1409.310461] RAX: ffffffffffffffda RBX: 00007f76bb2b56d4 RCX: 000000000045b349 [ 1409.310466] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 1409.310479] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1409.408910] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1409.416207] R13: 0000000000000cb1 R14: 00000000004cd905 R15: 000000000075bf2c [ 1409.417122] cgroup: cgroup2: unknown option "nÊý8ÃBXæ«F\Mn½¹šúÒΓcθH|Ün ”Á [ 1409.417122] •&­@*ÆH©§€;TC‘‹Ü©Ôx&DèkvÞkž…¢Ð4ÍR?Ú#¨©¥Ú¾ùF/ø¹ò6LæãH:Yr’ÀW0àü8;R±mÀè=^X–øw¼tbV{‹×E#‘ã" [ 1409.424164] Mem-Info: [ 1409.444233] active_anon:443181 inactive_anon:212 isolated_anon:0 [ 1409.444233] active_file:3273 inactive_file:7197 isolated_file:0 [ 1409.444233] unevictable:0 dirty:368 writeback:0 unstable:0 [ 1409.444233] slab_reclaimable:17506 slab_unreclaimable:150904 [ 1409.444233] mapped:58620 shmem:285 pagetables:33890 bounce:0 [ 1409.444233] free:853493 free_pcp:441 free_cma:0 [ 1409.488970] Node 0 active_anon:1616696kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208956kB dirty:4kB writeback:0kB shmem:1056kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 995328kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1409.557866] Node 1 active_anon:155928kB inactive_anon:84kB active_file:13044kB inactive_file:28780kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:25524kB dirty:1468kB writeback:0kB shmem:84kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1409.649680] Node 0 DMA free:10464kB min:216kB low:268kB high:320kB active_anon:4508kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:96kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1409.682532] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 1409.687626] Node 0 DMA32 free:39144kB min:36380kB low:45472kB high:54564kB active_anon:1612188kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB writepending:4kB present:3129332kB managed:2634344kB mlocked:0kB kernel_stack:20864kB pagetables:53608kB bounce:0kB free_pcp:1328kB local_pcp:652kB free_cma:0kB [ 1409.702995] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 1409.722413] lowmem_reserve[]: 0 0 0 0 0 06:49:13 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$KVM_X86_SET_MCE(r1, 0x4040ae9e, &(0x7f0000000080)={0x4880000000000000, 0xc000, 0x7bce, 0xc, 0x14}) r2 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) 06:49:13 executing program 3: ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(0xffffffffffffffff, 0xc0045540, &(0x7f0000000000)=0x7ff) r0 = syz_open_dev$vcsa(&(0x7f0000000040)='/dev/vcsa#\x00', 0xc100, 0x8c40) setsockopt$inet_icmp_ICMP_FILTER(r0, 0x1, 0x1, &(0x7f0000000080)={0xf2}, 0x4) openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) 06:49:13 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) r5 = socket$netlink(0x10, 0x3, 0x0) r6 = socket$netlink(0x10, 0x3, 0x0) r7 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x2ba) sendmsg$nl_route(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB="3c0000001000850600"/18, @ANYRES32=r8, @ANYBLOB="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"], 0x3}}, 0x0) sendmsg$nl_route(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000007c0)=ANY=[@ANYBLOB="4400000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012000c00010067726574617000000c00020008000100", @ANYRES32=r8, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r8, @ANYBLOB="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"], 0x44}}, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000000)={'batadv0\x00', r8}) ioctl$KVM_RUN(r4, 0xae80, 0x0) 06:49:13 executing program 4: mknod$loop(&(0x7f0000000040)='./file1\x00', 0x2000, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcsa\x00', 0x501302, 0x0) ioctl$VIDIOC_S_PARM(0xffffffffffffffff, 0xc0cc5616, &(0x7f0000000240)={0x1, @capture={0x0, 0x0, {0x3}, 0x0, 0x1}}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$GIO_UNISCRNMAP(0xffffffffffffffff, 0x4b69, &(0x7f0000000140)=""/148) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000200)=@nullb='/dev/nullb0\x00', &(0x7f0000000340)='./file0\x00', &(0x7f0000000380)='f2fs\x00', 0x4000, 0x0) fcntl$setpipe(0xffffffffffffffff, 0x407, 0xeb44) [ 1409.737298] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1409.769930] lowmem_reserve[]: 0 0 0 0 0 [ 1409.779125] Node 1 Normal free:3364652kB min:53508kB low:66884kB high:80260kB active_anon:155828kB inactive_anon:84kB active_file:13044kB inactive_file:28780kB unevictable:0kB writepending:1468kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:27680kB pagetables:82064kB bounce:0kB free_pcp:856kB local_pcp:684kB free_cma:0kB [ 1409.807617] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 1409.819295] cgroup: cgroup2: unknown option "º" 06:49:13 executing program 4: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcsa\x00', 0x501302, 0x0) ioctl$VIDIOC_S_PARM(0xffffffffffffffff, 0xc0cc5616, &(0x7f0000000240)={0x1, @capture={0x0, 0x0, {0x3}, 0x0, 0x1}}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$GIO_UNISCRNMAP(0xffffffffffffffff, 0x4b69, &(0x7f0000000140)=""/148) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000200)=ANY=[@ANYBLOB='/dev/nuhlb0\x00'], &(0x7f0000000340)='./file0\x00', &(0x7f0000000380)='f2fs\x00', 0x4000, 0x0) 06:49:13 executing program 3: r0 = socket$inet6_dccp(0xa, 0x6, 0x0) sendto$inet6(r0, &(0x7f0000000100)="f9d497f5928748729a0f6214dd6d2c5afd6b3550a625d3ce6401e5fe13042d4ce7f682c146f7790fa6adbe5c84f1226043becb087a3575c540467df52040ef6114e051", 0x43, 0x40801, &(0x7f0000000180)={0xa, 0x4e24, 0x8, @local, 0x8000}, 0x1c) openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) 06:49:14 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SOUND_MIXER_READ_VOLUME(r1, 0x80044d05, &(0x7f0000000fc0)) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r4) setsockopt$inet_MCAST_MSFILTER(r4, 0x0, 0x30, &(0x7f00000005c0)=ANY=[@ANYBLOB="070000000000000002004e24ffffffff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000002004e20ac1414aa00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002004e22ac1e010100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002004e21ffffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002004e2100000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000607c70f8ab0f13460fcfbc4f1d024a1be673662a9bb7f1502d471fec7c0c5951ceed52f5d5b8150b9b299d"], 0x290) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) setsockopt$inet_sctp6_SCTP_NODELAY(0xffffffffffffffff, 0x84, 0x3, &(0x7f00000001c0)=0xffff, 0x4) ioctl$SNDRV_PCM_IOCTL_SYNC_PTR(r6, 0xc0884123, &(0x7f0000000f00)={0x1, "79173dc453bb8b12fd14ee691ed5a243e1009f01b04f60e42fb5b9a4f5acdbc290da13ec53553455b39a080039d281405e23640e13bae886451e5e15fe7f69c0", {0x3, 0x80000001}}) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) syz_open_dev$mouse(&(0x7f00000000c0)='/dev/input/mouse#\x00', 0x5, 0x10002) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000dc0)={{{@in=@initdev, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6}}, &(0x7f0000000580)=0xe8) syz_mount_image$cifs(&(0x7f0000001000)='cifs\x00', &(0x7f0000001040)='./file0\x00', 0x8001, 0x7, &(0x7f00000014c0)=[{&(0x7f0000001080)="a3484d6837c18067be5d5a06aacb9f47a7aa6dabca4bddb385be955ff1e428e0ea1ef783a2a6f86b5816c5a9f9a1f2279e22ba804d3e22b11ca7eeeaf7198c7e94d825f4c19a7a61afcd2634871ec520280202e2e7664226a4235175cd3985c5cc7e4cc91c755a3bb0da4d0a2b591c539d05e5158935e1077ce35e5a19b9f863cd719e398632979f4b6ac655dbaa4397f6396859a39b03c35816fb0bc5b815fec69c56816cdf510b16053463f90923c8a794dec75001d6af971e9e0ca3be1b67ec73c6a80d4433d47ea1e3fc810dc77be39f454b3775c3dae8f52ee3dc413f017898975f08b1b2d036827d29898236fe3e7b762a495238", 0xf7, 0x7}, {&(0x7f0000001180)="84a40ce705da74f05c8ab89811d895bd9709c75de1bba241127efcb87529f35d2c3d379c6f3feb8ea4f39dc3807322b7ddbce44b78f594e4a7c499b7e3d7a74a5a16a918f61dedee289b5100fe3eade0a453691f4fefef43d1b2", 0x5a, 0xcc}, {&(0x7f0000001200)="386b6fd510ec3112ef97d4045bde169462c90d6d6d2ac8dcdd4313a83fc9e3cdae064c7af879b322f629e84a227d277c99d9123a0d13e413f20dd6d821901282d7", 0x41, 0x10000}, {&(0x7f0000001280)="e2960e631e93bb3cd8175900e5430d537ba114a8c67d29dc6ff6c7ec7dbb10a6acebe65fa6663e255b7514d76068a3a2a3ce4b3bfbe2bc156e7322ef1261688ff547498f77e4b1ee2512a424821befda8a93546a6fe2d942c97197c62c8c074fda4696a4a00f4b2155a38a", 0x6b, 0x1}, {&(0x7f0000001300)="af1edd744546f2cd38d83afe484c7d85a3e165e7347be6d27c7bf38de3cd5a831d928a911c4cbce2bb82e7667e0b037179271725a25312f6810a52ac6c42f8d7cbd8489bb78886b170aa8f106d170067086a18a8aee336bbb3c471efa84f88b92c3bc8348be56b", 0x67, 0x4}, {&(0x7f0000001380)="3db59a676705882f548b9ca9955a10e12001d7a112ffa28d9bacb46ec3b1392794f59e41b81585bacd74dcf4daeff69a381c1bd3309de085584d7195b1c090177fd5bd6746cb623f65a5d7ce68611a6bc066e44a2d180578ac8d0cb423cb2ff97e4d11e231344b15b90976e648285c7455ad5d4856133a335b0563b03b885053d393b71d1203", 0x86, 0x2}, {&(0x7f0000001440)="4b2b13f39861fe9113d6f42f99d65f75ca3075b4782f2b017db9917e679112c02f2c2b29bfc4a55afe7f948397854db1750a0c57ddb91cd0060746960e1b471ee4b729035ef61d34ff2a7cc802530cc3ebbe45d7b66fd4a0a67d732ac8c3", 0x5e, 0x7f}], 0x104c020, &(0x7f0000001580)='cgroup2\x00') syz_mount_image$hfs(&(0x7f0000000080)='hfs\x00', &(0x7f0000000100)='./file0\x00', 0x3ff, 0x9, &(0x7f0000000cc0)=[{&(0x7f0000000440)="64f8ae128c2fefbb46d9e45b8926e79aa0ff4ad6ae9c70efd5ecaa077234780ba94ee1529a2fbdfd98b73d3b7a065a446cd6817a06ec19e9741c3e93436b8f222c8f39ed9acb128873d92c62b3ba7e1238aee7056b4833aee5242822dc5b1091c4ac6b95503afd246cee75ed0ebc02e4dc8c2f827640ca6be48716b592bade02800c451bc91918c97a16320ed967df1f2e52ac63490f55e22342cedd1313cc8954fc44bd6af509f92d810e4877dafd94ac9f8d423659aa5a55804cecc5ff6e8a98771baf22e9fdfb90d6dd4a79f053019ca6c01cb9a81b", 0xd7, 0x3186}, {&(0x7f00000001c0), 0x0, 0x6b}, {&(0x7f0000000880)="67621c86d1ced7bf75e88e23ef68c5119b501c0c998134ea3f2edaa37c0be844512ad5c30a9181590fee53c44238d5a95dca679e36ff95f7ff978984a70d7d1dd99ee7cb9f0b8201986cd4473510a9b32a8f845884af0599cd47cc89055a0e9ddd8ed4169791c9b61b8840dacb7f74e820bf368cc3e978d0b21bb5a0acf0a8eb592730de1ba3d85c8369f78ebfecf3dd4150c23da5f041a03cf207f643040924a56d04a8ce6b2c8f1d4f672037e03b45f04eb862bf7611e41b5992ede96c7971c2160cd1ea88990cd727ede2ee1f1afe54310b2d43bf12d2bf98fba45247e6cafe39f2b27aca295d87b21e8c030ce02f3510171c91", 0xf5, 0x2}, {&(0x7f0000000540)="869ff2554ab712602ea3cda63c9dabcaafd85d0e3e29441785feb192fa5787d4c0ed4485276d7efc2b2d3c9e289a87", 0x2f, 0x1}, {&(0x7f0000000980)="45036fa6bb51690d009ff6b84d2af37971387ef8b114a8290a0bec871552748305fee55ddda34de4c750e8631ac99df55a2949492f7488b7aea6a97dfcabb020c3ab7b8f40dc434b77fc21a564cf7146a6d12cc3344f7f4e8ca576999bb05e8da03c886a852bf7b326f42676292e57", 0x6f, 0x1}, {&(0x7f0000000a00)="a6290cf16b60429c6810fd27d55da41a29e862f094100c9df9abcdca9b6e5d1650638c41d30e959c4d1e279d9697f42f5c1124124edd95080c1133ef0ad0ee9549ff636688d95d9c5db818f53387104427a0cae807193eef099def374ae460ae24f3df5552c86dd0695e849cb42ae88a1132a7a4f830e6a6861827d8c4248cf4c95402e12a4139314a27db0895a348ecc112978271e21f0bc491c3469f1566d70b1128cfda00b65f7ad24401247f319df4ee4b6c17e27c7cb59009d7", 0xbc, 0x8c2}, {&(0x7f0000000ac0)="74b51ab901f3aa7d336fa2625a2bb291c14dd586e4ce3dfde950cb9710ba34f64ec19ad8e4dcd0c1ba33e708d234b2f3b6744e455940470a6c1e97cbfa5b05cf2a54bedca030b5af153f0472b3114c79fe1f2b3c2794b99e14bfa26ac22d7008f82c5d303790b4133e1032050439327bfaefc47efd43416ef4779854a0e4fe42bbd759ce4fd8e04c702b8851f6a76b92fe02096160e6605f162d948fc101c8425f2f3ec1ffafad5cc87b08b7e0", 0xad}, {&(0x7f0000000b80)="2f6f244e36bfb2ff1596c4132e3bd791466a98d6f74b8dc4f85428110c376b3dda56d3bf01cf9ee09e9a8f5211551bdcad54faeaf149617e41af6ecd5601168d3372a5f1266e3b9fb9fb4574f0baa6f9a88ed57f4e17aa13b1c8a4fd339c2298b62c20e71c5c092943656d72dc62bd1b895474f84e", 0x75}, {&(0x7f0000000c00)="21423b0b1063d482d5635df114bfbbc7462af754443e9d24adb9025e1be3bf1f99c8491805e979e5249ef6b2195c8e4824af40efe8a224f97b580b1a66e4d2d4d86a7303016354e863bd5ebfaa7ad2cd2b587d64ba86adc69aeb2bbf49c65a2870131e04d5f9545108165594426107ad2e66130789354304793f15f67f5511d5e0", 0x81, 0x1000}], 0x100000, &(0x7f0000000ec0)={[], [{@permit_directio='permit_directio'}, {@fowner_eq={'fowner', 0x3d, r7}}]}) r8 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000240)='IPVS\x00') sendmsg$IPVS_CMD_SET_SERVICE(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000280)={&(0x7f0000000300)={0xdc, r8, 0x10, 0x70bd2a, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_DAEMON={0x28, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'bridge0\x00'}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x4}, @IPVS_CMD_ATTR_SERVICE={0x20, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0xff}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@loopback}]}, @IPVS_CMD_ATTR_SERVICE={0x78, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x2, 0x27}}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@local}, @IPVS_SVC_ATTR_SCHED_NAME={0x7, 0x6, 'sh\x00'}, @IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e20}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@loopback}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0xa}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x3a}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x10, 0xe}}, @IPVS_SVC_ATTR_SCHED_NAME={0xa, 0x6, 'lblcr\x00'}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0xa}]}]}, 0xdc}, 0x1, 0x0, 0x0, 0x44000}, 0x0) [ 1409.999890] batman_adv: Cannot find parent device [ 1410.008512] lowmem_reserve[]: 0 0 0 0 0 [ 1410.018097] Node 0 DMA: 16*4kB (UME) 18*8kB (UE) 14*16kB (UME) 16*32kB (UME) 17*64kB (U) 6*128kB (UE) 6*256kB (UE) 2*512kB (ME) 3*1024kB (UME) 1*2048kB (E) 0*4096kB = 10480kB [ 1410.081926] cgroup: cgroup2: unknown option "º" [ 1410.088337] Node 0 DMA32: 293*4kB (UMEH) 437*8kB (UMEH) 696*16kB (UMEH) 418*32kB (UMEH) 161*64kB (UMEH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 39484kB [ 1410.185773] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1410.263773] Node 1 Normal: 215*4kB (UME) 54*8kB (UME) 37*16kB (UME) 73*32kB (UME) 55*64kB (UME) 29*128kB (UME) 28*256kB (UME) 55*512kB (UME) 12*1024kB (UME) 2*2048kB (U) 806*4096kB (M) = 3364540kB [ 1410.333151] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1410.353583] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1410.364317] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB 06:49:14 executing program 5: mknod$loop(&(0x7f0000000000)='./file0/file0\x00', 0x1, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = semget$private(0x0, 0x6, 0x0) semtimedop(r2, &(0x7f0000000400)=[{}], 0x1, &(0x7f00000001c0)={0x0, 0x989680}) r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/autofs\x00', 0x101800, 0x0) ioctl$USBDEVFS_DISCONNECT_CLAIM(r3, 0x8108551b, &(0x7f0000000240)={0x101, 0x2, "55341371af70e2dc8ed2631f6e0f2ff5fba8afac947eddcce585b493d8737ceb89c6a6c18229d879390d38cbac9512f2a7adcdf1abee63f56c564d396567cd7e3772a9dda6020838ecfb9288afac7a7c8c380c59ff710ecf93706800dee453ddbc0e30627e9ed7f5cb8de3f1baa40d13f805487f189484d4a85bb6c14cdcea3d36a7d1000c28665e227b16a77ff2210a50f777dd4d989b6b9f5ffec9280db133cb7f98b79e4c0b9b42ff33c26e130657c2562f50730bb7f14c02ad870571954a6035262e48d3eed8194b1c9620cf71779bad11e82e0ce2d1fec242e833bc4a018ad9b3c05c9634213c87040c3ca81900a81183fbb1135c83b0c35e6bccc71fde"}) clock_gettime(0x0, &(0x7f0000000140)) clock_gettime(0x0, &(0x7f0000000200)={0x0, 0x0}) r6 = semget$private(0x0, 0x6, 0x0) semtimedop(r6, &(0x7f0000000400)=[{}], 0x1, &(0x7f0000000440)={0x0, 0x989680}) semtimedop(r6, &(0x7f0000000100), 0x0, &(0x7f0000000180)={r4, r5+30000000}) clone(0x26120900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f00000000c0)=@nullb='/dev/nullb0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='reiserfs\x00', 0x0, 0x0) 06:49:14 executing program 4: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcsa\x00', 0x501302, 0x0) ioctl$VIDIOC_S_PARM(0xffffffffffffffff, 0xc0cc5616, &(0x7f0000000240)={0x1, @capture={0x0, 0x0, {0x3}, 0x0, 0x1}}) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r3) r4 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$GIO_UNISCRNMAP(0xffffffffffffffff, 0x4b69, &(0x7f0000000140)=""/148) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000200)=ANY=[@ANYBLOB='/d \x00\x00\x00\x00 \x00\x00\x00\x00'], &(0x7f0000000340)='./file0\x00', &(0x7f0000000380)='f2fs\x00', 0x4000, 0x0) 06:49:14 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) clock_gettime(0x0, &(0x7f00000000c0)) utimes(&(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)={{0x0, 0x7530}, {0x77359400}}) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) socket$inet6_tcp(0xa, 0x1, 0x0) 06:49:14 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) getsockopt$ARPT_SO_GET_ENTRIES(r6, 0x0, 0x61, &(0x7f00000002c0)={'filter\x00', 0xa6, "e055876aaf3679b89d442112d4e5af7b458e7a4b090dc24a5d629272c0b422ff7d3602bb8b69e646fd12ac4aa5eaeac8907318bdb9a3ed4ec7218459fed78e8292a503a8a808d7c72520d2040a31455b7259d42f11031e85f0fcc914ea16b10a372c210a27e27148cfa63a12d007258b2f6f6bd93a7a8cb7571fe755e1c7414b306f664ee1441f5e80875cbb52e765973af97bf51a04eba95c7192cdb4a0911e4be2d6033d17"}, &(0x7f0000000000)=0xca) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 06:49:14 executing program 3: r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x880, 0x0) r1 = dup(r0) ioctl$SOUND_MIXER_WRITE_RECSRC(r1, 0xc0044dff, &(0x7f0000000040)) [ 1410.376682] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1410.386980] 10766 total pagecache pages [ 1410.394328] 0 pages in swap cache [ 1410.397836] Swap cache stats: add 0, delete 0, find 0/0 [ 1410.406726] Free swap = 0kB [ 1410.409777] Total swap = 0kB [ 1410.416222] 1965979 pages RAM [ 1410.419455] 0 pages HighMem/MovableOnly [ 1410.425048] 335868 pages reserved [ 1410.428528] 0 pages cma reserved 06:49:14 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) r2 = socket$inet6(0xa, 0x1000000000002, 0x0) r3 = socket$inet(0x2, 0x1, 0x0) connect$inet(r3, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r3, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r3, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r2, r3) r4 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/load\x00', 0x2, 0x0) r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) write$selinux_load(r6, 0x0, 0x0) [ 1410.518628] cgroup: cgroup2: unknown option "º" 06:49:14 executing program 4: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcsa\x00', 0x501302, 0x0) ioctl$VIDIOC_S_PARM(0xffffffffffffffff, 0xc0cc5616, &(0x7f0000000240)={0x1, @capture={0x0, 0x0, {0x3}, 0x0, 0x1}}) r2 = dup(r0) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) setsockopt$TIPC_DEST_DROPPABLE(r4, 0x10f, 0x81, &(0x7f0000000000)=0x3ff, 0x4) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$GIO_UNISCRNMAP(0xffffffffffffffff, 0x4b69, &(0x7f0000000140)=""/148) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f00000000c0)={r1, 0x3, 0x7fffffff, r1}) mount(&(0x7f0000000200)=@nullb='/dev/nullb0\x00', &(0x7f0000000340)='./file0\x00', &(0x7f0000000380)='f2fs\x00', 0x802008, 0x0) [ 1410.591226] cgroup: cgroup2: unknown option "º" 06:49:14 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$BINDER_SET_CONTEXT_MGR(r3, 0x40046207, 0x0) r4 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/load\x00', 0x2, 0x0) write$selinux_load(r4, 0x0, 0x0) munlock(&(0x7f0000ffe000/0x2000)=nil, 0x2000) 06:49:14 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) 06:49:14 executing program 3: openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x43, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) r1 = socket$inet(0x2, 0x1, 0x0) connect$inet(r1, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r1, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r1, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r0, r1) ioctl$FS_IOC_FIEMAP(r1, 0xc020660b, &(0x7f0000000100)={0x1, 0x6, 0x2, 0xb99, 0x4, [{0x6, 0x5, 0x6, [], 0x330a}, {0x3ff, 0x8, 0xb88}, {0x3, 0x2, 0x3, [], 0x2}, {0xc83e, 0x3, 0x3f, [], 0x1004}]}) openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) 06:49:14 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) write$cgroup_subtree(r5, &(0x7f0000000000)={[{0x2d, 'rdma'}]}, 0x6) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r6, 0xae80, 0x0) ioctl$KVM_RUN(r6, 0xae80, 0x0) [ 1410.889917] cgroup: cgroup2: unknown option "º" [ 1410.933531] syz-executor.1: vmalloc: allocation failure: 0 bytes, mode:0x14000c0(GFP_KERNEL), nodemask=(null) 06:49:14 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='overlay\x00', 0x4000, &(0x7f00000001c0)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@default_permissions='default_permissions'}, {@nfs_export_on='nfs_export=on'}, {@redirect_dir={'redirect_dir', 0x3d, './file0'}}], [{@defcontext={'defcontext', 0x3d, 'staff_u'}}]}) [ 1410.984578] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1411.011889] CPU: 0 PID: 9967 Comm: syz-executor.1 Not tainted 4.14.167-syzkaller #0 [ 1411.019744] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1411.029114] Call Trace: [ 1411.031726] dump_stack+0x142/0x197 [ 1411.035372] warn_alloc.cold+0x96/0x1af [ 1411.039489] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 1411.044363] ? lock_downgrade+0x740/0x740 [ 1411.048538] ? avc_has_perm+0x2df/0x4b0 [ 1411.052542] __vmalloc_node_range+0x3c3/0x6a0 [ 1411.057066] ? trace_hardirqs_on+0x10/0x10 [ 1411.061331] vmalloc+0x46/0x50 [ 1411.064556] ? sel_write_load+0x1a0/0x1050 [ 1411.068820] sel_write_load+0x1a0/0x1050 [ 1411.072906] ? save_trace+0x290/0x290 [ 1411.076727] ? sel_read_bool+0x240/0x240 [ 1411.080802] ? trace_hardirqs_on+0x10/0x10 [ 1411.085059] ? debug_smp_processor_id+0x1c/0x20 [ 1411.089741] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1411.094690] __vfs_write+0x105/0x6b0 [ 1411.098432] ? sel_read_bool+0x240/0x240 [ 1411.102775] ? kernel_read+0x120/0x120 [ 1411.106682] ? __lock_is_held+0xb6/0x140 [ 1411.110977] ? check_preemption_disabled+0x3c/0x250 [ 1411.116017] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1411.121491] ? rcu_read_lock_sched_held+0x110/0x130 [ 1411.126530] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 1411.131299] ? __sb_start_write+0x153/0x2f0 [ 1411.135772] vfs_write+0x198/0x500 [ 1411.139842] SyS_write+0xfd/0x230 [ 1411.143300] ? SyS_read+0x230/0x230 [ 1411.147077] ? do_syscall_64+0x53/0x640 [ 1411.151061] ? SyS_read+0x230/0x230 [ 1411.154681] do_syscall_64+0x1e8/0x640 [ 1411.159531] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1411.164477] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1411.169657] RIP: 0033:0x45b349 [ 1411.172957] RSP: 002b:00007f76bb2b4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1411.180662] RAX: ffffffffffffffda RBX: 00007f76bb2b56d4 RCX: 000000000045b349 [ 1411.187975] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000007 [ 1411.195263] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1411.202667] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1411.209963] R13: 0000000000000cb1 R14: 00000000004cd905 R15: 000000000075bf2c [ 1411.228417] Mem-Info: [ 1411.232655] active_anon:443220 inactive_anon:209 isolated_anon:0 [ 1411.232655] active_file:3281 inactive_file:7204 isolated_file:0 [ 1411.232655] unevictable:0 dirty:396 writeback:0 unstable:0 [ 1411.232655] slab_reclaimable:17306 slab_unreclaimable:150861 [ 1411.232655] mapped:58630 shmem:285 pagetables:33910 bounce:0 [ 1411.232655] free:853416 free_pcp:625 free_cma:0 [ 1411.281886] Node 0 active_anon:1616696kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208956kB dirty:4kB writeback:0kB shmem:1056kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 995328kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1411.310121] Node 1 active_anon:156092kB inactive_anon:80kB active_file:13068kB inactive_file:28820kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:25504kB dirty:1592kB writeback:0kB shmem:84kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1411.335676] cgroup: cgroup2: unknown option "º" [ 1411.338963] Node 0 DMA free:10480kB min:216kB low:268kB high:320kB active_anon:4508kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:96kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1411.364781] overlayfs: unrecognized mount option "nfs_export=on" or missing value [ 1411.371063] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 1411.383315] Node 0 DMA32 free:39016kB min:36380kB low:45472kB high:54564kB active_anon:1612188kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB writepending:4kB present:3129332kB managed:2634344kB mlocked:0kB kernel_stack:20864kB pagetables:53608kB bounce:0kB free_pcp:1284kB local_pcp:660kB free_cma:0kB [ 1411.413750] lowmem_reserve[]: 0 0 0 0 0 [ 1411.414135] cgroup: cgroup2: unknown option "º" [ 1411.418265] overlayfs: unrecognized mount option "nfs_export=on" or missing value [ 1411.430527] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1411.456458] lowmem_reserve[]: 0 0 0 0 0 [ 1411.460632] Node 1 Normal free:3364480kB min:53508kB low:66884kB high:80260kB active_anon:156092kB inactive_anon:80kB active_file:13068kB inactive_file:28820kB unevictable:0kB writepending:1592kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:27648kB pagetables:81956kB bounce:0kB free_pcp:1184kB local_pcp:552kB free_cma:0kB [ 1411.492932] lowmem_reserve[]: 0 0 0 0 0 [ 1411.496947] Node 0 DMA: 16*4kB (UME) 18*8kB (UE) 14*16kB (UME) 16*32kB (UME) 17*64kB (U) 6*128kB (UE) 6*256kB (UE) 2*512kB (ME) 3*1024kB (UME) 1*2048kB (E) 0*4096kB = 10480kB [ 1411.514723] Node 0 DMA32: 358*4kB (UMEH) 335*8kB (UMEH) 697*16kB (UMEH) 404*32kB (UMEH) 162*64kB (UMEH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 38560kB 06:49:15 executing program 5: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) socket$caif_stream(0x25, 0x1, 0x1) r1 = dup(r0) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$PIO_SCRNMAP(r3, 0x4b41, &(0x7f0000000100)="0aa0319850f709fac0fc6b3356b9ec081138d8a56cfc9ed7462862289ea20be9ff214499133cf5c0339c367b2dcc6404a5d0ff4fcb84847359452fcd88f388ea1fd31ce92503307444a3275b38ea2338089f7fed96942d4a4392f870766514a7234bc03e58a50fcbccba7eef3e3d51c3f787fc7e3bce6831cb71a12e8ee150bd322eca266863cb1415dc73f3480c656047750c0228e047b257941e0c4488ae1b6311e3514cad211138598b233d32802772c3dc9e7f7d6311341da869f0b4aeb0b954b3fc717fd9ba967abdf248e4d47295c448959ed7b8") ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f00000000c0)=ANY=[@ANYBLOB="2f64653a87d038cbd776"], &(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='selinuxfs\x00', 0x14000, 0x0) 06:49:15 executing program 3: mkdir(&(0x7f0000000300)='./file0\x00', 0x0) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) r1 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000100)='./file0\x00', r1, &(0x7f0000000340)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x2) sendmsg$IPSET_CMD_GET_BYNAME(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000080)={&(0x7f0000000140)={0x44, 0xe, 0x6, 0x5, 0x0, 0x0, {0x7, 0x0, 0x9}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}]}, 0x44}, 0x1, 0x0, 0x0, 0x804}, 0x40000100) openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) 06:49:15 executing program 4: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcsa\x00', 0x501302, 0x0) ioctl$VIDIOC_S_PARM(0xffffffffffffffff, 0xc0cc5616, &(0x7f0000000240)={0x1, @capture={0x0, 0x0, {0x3}, 0x0, 0x1}}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$GIO_UNISCRNMAP(0xffffffffffffffff, 0x4b69, &(0x7f0000000140)=""/148) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000200)=@nullb='/dev/nullb0\x00', &(0x7f0000000340)='./file0\x00', &(0x7f0000000380)='f2fs\x00', 0x4000, 0x0) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) getpeername$unix(r3, &(0x7f00000000c0), &(0x7f0000000000)=0x6e) 06:49:15 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040)='nl80211\x00') sendmsg$NL80211_CMD_STOP_SCHED_SCAN(r6, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000180)={&(0x7f0000000400)=ANY=[@ANYBLOB="a400000066e2110d647f427a8d15723ce5f6f9ceff83b1f12f095177c351ba43d4afdccf6bd165beb648a676efb14dbb6d259003d7113f08a1a350553af8b75453a917b327bced6b3b1b4e269e334536a6dfcb14daf55ab48fc17f6c4d93f1ff1ca29d1e9e53a429e5a2d46239ce6b954d15e11acbf210ffb26ec0c5a1a63760c7ab51b22eb4ccf955d6aa71c26607e5a0d2", @ANYRES16=r7, @ANYBLOB="100029bd7000fddbdf254c0000008800848008000200050000002c0006800800010008000000080002000004000008000100fdffffff080002000900000008000100010100001c0006800800020000000100080000000004000008000000040000000a0005000000000000000000110001006a931ec908ddd14b903051677c00000014000680080000000000000008000300ff7f00000800770006000000"], 0xa4}, 0x1, 0x0, 0x0, 0x41001}, 0x90) 06:49:15 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$VIDIOC_S_DV_TIMINGS(r3, 0xc0845657, &(0x7f0000000080)={0x0, @reserved}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) [ 1411.530850] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1411.541954] Node 1 Normal: 142*4kB (UE) 9*8kB (UME) 9*16kB (UME) 47*32kB (UME) 53*64kB (UME) 39*128kB (UME) 30*256kB (UME) 55*512kB (UME) 12*1024kB (UME) 2*2048kB (U) 806*4096kB (M) = 3364272kB [ 1411.560673] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1411.569687] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1411.591876] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1411.607338] cgroup: cgroup2: unknown option "º" [ 1411.613674] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1411.634087] 10771 total pagecache pages 06:49:15 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(0xffffffffffffffff, 0x84, 0x76, &(0x7f0000000080)={0x0, 0x40}, &(0x7f00000000c0)=0x8) getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(r2, 0x84, 0x1a, &(0x7f00000001c0)={r3, 0xd0, "8cdc77409e82006ddca2554184922274c473fee02d6fdc2f62f828bd78ef1b61d3916dd050bf14cb9b98d990a4f74d96f5612940ed15cd6cc394fdc111887b0d89d76b4d867135d67757b52418ca2a252ec7fcd68284268cac813b0088e825d27588b2d0ea4f22ce8d07e5f0bcef1714996388553a3dca9c6eb9aa2c46ef035afc987a4141ef236ae444b8759292e50d50e1d642ad92a687f47ba1cf71319fc5c1daaff0c75f8e370ce2cf0883ad9fb7467d01058c2fbbb0d5754f35b894e15c2056bf50ace901aa3431c03424868bf5"}, &(0x7f0000000100)=0xd8) r4 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) 06:49:15 executing program 1: socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400203) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/load\x00', 0x2, 0x0) write$selinux_load(r0, 0x0, 0x0) 06:49:15 executing program 4: socket$inet_icmp_raw(0x2, 0x3, 0x1) openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcsa\x00', 0x501302, 0x0) ioctl$VIDIOC_S_PARM(0xffffffffffffffff, 0xc0cc5616, &(0x7f0000000240)={0x1, @capture={0x0, 0x0, {0x3}, 0x0, 0x1}}) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) r1 = socket$inet(0x2, 0x1, 0x0) connect$inet(r1, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r1, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r1, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r0, r1) r2 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$GIO_UNISCRNMAP(0xffffffffffffffff, 0x4b69, &(0x7f0000000140)=""/148) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000200)=@nullb='/dev/nullb0\x00', &(0x7f0000000340)='./file0\x00', &(0x7f0000000380)='f2fs\x00', 0x4000, 0x0) [ 1411.642469] 0 pages in swap cache [ 1411.646083] Swap cache stats: add 0, delete 0, find 0/0 [ 1411.652180] Free swap = 0kB [ 1411.655396] Total swap = 0kB [ 1411.658542] 1965979 pages RAM [ 1411.662253] 0 pages HighMem/MovableOnly [ 1411.667241] 335868 pages reserved [ 1411.671542] 0 pages cma reserved 06:49:15 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040)='/dev/adsp1\x00', 0x20ca02, 0x0) [ 1411.832771] syz-executor.1: vmalloc: allocation failure: 0 bytes, mode:0x14000c0(GFP_KERNEL), nodemask=(null) [ 1411.858708] cgroup: cgroup2: unknown option "º" [ 1411.869300] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1411.882305] CPU: 1 PID: 10026 Comm: syz-executor.1 Not tainted 4.14.167-syzkaller #0 [ 1411.890519] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1411.900931] Call Trace: [ 1411.903546] dump_stack+0x142/0x197 [ 1411.908216] warn_alloc.cold+0x96/0x1af [ 1411.912204] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 1411.917073] ? lock_downgrade+0x740/0x740 [ 1411.922548] ? avc_has_perm+0x2df/0x4b0 [ 1411.926554] __vmalloc_node_range+0x3c3/0x6a0 [ 1411.931082] ? trace_hardirqs_on+0x10/0x10 [ 1411.935392] vmalloc+0x46/0x50 [ 1411.938522] cgroup: cgroup2: unknown option "º" [ 1411.938596] ? sel_write_load+0x1a0/0x1050 [ 1411.947534] sel_write_load+0x1a0/0x1050 [ 1411.952174] ? save_trace+0x290/0x290 [ 1411.956004] ? sel_read_bool+0x240/0x240 [ 1411.960081] ? trace_hardirqs_on+0x10/0x10 [ 1411.964337] ? debug_smp_processor_id+0x1c/0x20 [ 1411.969023] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1411.973968] __vfs_write+0x105/0x6b0 [ 1411.977691] ? sel_read_bool+0x240/0x240 06:49:15 executing program 3: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet6(0xa, 0x1000000000002, 0x0) r3 = socket$inet(0x2, 0x1, 0x0) connect$inet(r3, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r3, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r3, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r2, r3) r4 = dup(r3) setsockopt$IPT_SO_SET_ADD_COUNTERS(r4, 0x0, 0x41, &(0x7f0000000000)={'raw\x00', 0x3, [{}, {}, {}]}, 0x58) openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) [ 1411.981772] ? kernel_read+0x120/0x120 [ 1411.985675] ? __lock_is_held+0xb6/0x140 [ 1411.989748] ? check_preemption_disabled+0x3c/0x250 [ 1411.994796] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1412.000443] ? rcu_read_lock_sched_held+0x110/0x130 [ 1412.005495] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 1412.010268] ? __sb_start_write+0x153/0x2f0 [ 1412.014649] vfs_write+0x198/0x500 [ 1412.018220] SyS_write+0xfd/0x230 [ 1412.021685] ? SyS_read+0x230/0x230 [ 1412.025323] ? do_syscall_64+0x53/0x640 [ 1412.029308] ? SyS_read+0x230/0x230 06:49:16 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f00000000c0)='./file0\x00', 0x21) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) [ 1412.032949] do_syscall_64+0x1e8/0x640 [ 1412.036864] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1412.041729] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1412.046933] RIP: 0033:0x45b349 [ 1412.050135] RSP: 002b:00007f76bb2b4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1412.057855] RAX: ffffffffffffffda RBX: 00007f76bb2b56d4 RCX: 000000000045b349 [ 1412.065333] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004 [ 1412.073157] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1412.080441] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1412.087726] R13: 0000000000000cb1 R14: 00000000004cd905 R15: 000000000075bf2c 06:49:16 executing program 3: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SIOCPNADDRESOURCE(r1, 0x89e0, &(0x7f0000000000)=0x3) openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) r2 = syz_open_dev$vcsn(&(0x7f0000000040)='/dev/vcs#\x00', 0x5bdc166a, 0x428400) r3 = socket$netlink(0x10, 0x3, 0x0) r4 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x2a9, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r5, @ANYBLOB="000000000000000028001200090001007665746800000000180002001400010000000000", @ANYRES32=0x0, @ANYBLOB="0018b2ba00000001"], 0x48}}, 0x0) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0)='nl80211\x00') r7 = socket$netlink(0x10, 0x3, 0x0) r8 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r8, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r8, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r7, &(0x7f0000000040)={0x0, 0x2a9, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r9, @ANYBLOB="000000000000000028001200090001007665746800000000180002001400010000000000", @ANYRES32=0x0, @ANYBLOB="0000b60000000000123a84e0fca5247d7fb64264774bad50eb04ff7cb2481d85482c1d8ac79185d8e9344af517c201c75ed8b08c441e39509407b0aab9486cbfbb18aabb7d7e6440dbde455550a97e66b94fc9e9281cb5a13f"], 0x48}}, 0x0) lstat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000300)) r10 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0)='nl80211\x00') sendmsg$NL80211_CMD_GET_INTERFACE(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000000)={0x1c, r10, 0xb0343aabd1184b87, 0x0, 0x0, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r9}]}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_GET_INTERFACE(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000000)={0x1c, r10, 0xb0343aabd1184b87, 0x0, 0x0, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r5}]}, 0x1c}}, 0x4044) sendmsg$NL80211_CMD_GET_STATION(r2, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x3c, r6, 0x800, 0x70bd2a, 0x25dfdbfe, {}, [@NL80211_ATTR_STA_AID={0x6, 0x10, 0x416}, @NL80211_ATTR_STA_PLINK_STATE={0x5, 0x74, 0x4}, @NL80211_ATTR_STA_SUPPORT_P2P_PS={0x5}, @NL80211_ATTR_VLAN_ID={0x6, 0x11a, 0x4}, @NL80211_ATTR_STA_AID={0x6, 0x10, 0xe7}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x20004000) r11 = socket$inet6(0xa, 0x1000000000002, 0x0) r12 = socket$inet(0x2, 0x1, 0x0) connect$inet(r12, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r12, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r12, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r11, r12) r13 = socket$inet6(0xa, 0x1000000000002, 0x0) r14 = socket$inet(0x2, 0x1, 0x0) connect$inet(r14, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r14, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r14, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r13, r14) ppoll(&(0x7f0000000400)=[{r7, 0xf452}, {r11, 0x600}, {r4, 0xa400}], 0x3, &(0x7f0000000280)={0x77359400}, &(0x7f00000002c0)={[0x800208]}, 0x8) [ 1412.218211] cgroup: cgroup2: unknown option "º" 06:49:16 executing program 4: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcsa\x00', 0x501302, 0x0) r2 = dup(r0) ioctl$VIDIOC_SUBDEV_S_FRAME_INTERVAL(r1, 0xc0305616, &(0x7f0000000000)={0x0, {0x1, 0x4}}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$GIO_UNISCRNMAP(0xffffffffffffffff, 0x4b69, &(0x7f0000000140)=""/148) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f00000000c0)=ANY=[@ANYBLOB="feb9e61c00cb722e71080000000000000000000019803f8fe571ef7a000030a9449190d06cdd828572385b819279f3834b965bad78928a9d3767ca72affccfff334b8f0f02bea583ea2f9afc2a08a214b43aa54ad5df3e334e17"], &(0x7f0000000340)='./file0\x00', &(0x7f0000000380)='f2fs\x00', 0x4000, 0x0) 06:49:16 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) getdents(r0, &(0x7f00000002c0)=""/223, 0xdf) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r4, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) r5 = socket$inet(0x10, 0x2, 0x0) ioctl$sock_ifreq(r5, 0x89f0, &(0x7f0000000180)={'ip6_vti0\x00', @ifru_flags}) r6 = dup2(r4, r5) r7 = socket$inet_sctp(0x2, 0x0, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r7, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f0000000280)={r8, 0x36, "ac6a82d2b5acd821e04d0478a474e9c2be3b387e029887626c7e3cf456672c29c8210efff7d4d24bdf54e0b4d427ae9a6873dd3c164e"}, 0x0) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r6, 0x84, 0x71, &(0x7f00000001c0)={r8, 0xffffffff}, &(0x7f0000000340)=0x8) setsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r3, 0x84, 0x22, &(0x7f0000000440)={0xfffd, 0x0, 0x7ff, 0x2, r8}, 0x10) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) pipe2(&(0x7f00000001c0)={0xffffffffffffffff}, 0x4000) ioctl$KVM_CREATE_PIT2(r9, 0x4040ae77, &(0x7f00000003c0)={0x9}) r10 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r10, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x7, 0x0, 0x0, 0xfff, 0xfffffffffffffffc], 0x0, 0x800}) ioctl$KVM_RUN(r10, 0xae80, 0x0) ioctl$KVM_RUN(r10, 0xae80, 0x0) r11 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r12 = dup(r11) r13 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r14 = dup(r13) ioctl$PERF_EVENT_IOC_ENABLE(r14, 0x8912, 0x400200) ioctl$KVM_CREATE_DEVICE(r14, 0xc00caee0, &(0x7f0000000180)={0xe25014d42fe05378, 0xffffffffffffffff, 0x1}) ioctl$PERF_EVENT_IOC_ENABLE(r12, 0x8912, 0x400200) r15 = syz_open_dev$audion(&(0x7f0000000400)='/dev/audio#\x00', 0x85b, 0x0) ioctl$KVM_GET_PIT2(r15, 0x8070ae9f, &(0x7f0000000000)) 06:49:16 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/load\x00', 0x2, 0x0) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r4 = dup(r3) r5 = syz_open_procfs(0x0, &(0x7f0000000180)='net/rpc\x00') ioctl$SIOCRSGL2CALL(r5, 0x89e5, &(0x7f0000000140)=@null) r6 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r7 = dup(r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) r8 = openat(r4, &(0x7f0000000040)='./file0\x00', 0x1201, 0x104) bind$netrom(r8, &(0x7f0000000080)={{0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, 0x3}, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @default]}, 0x48) write$selinux_load(r2, 0x0, 0x0) 06:49:16 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) times(&(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='befs\x00', 0x0, &(0x7f00000002c0)) 06:49:16 executing program 3: r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x200000, 0x0) ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_CLIENT(r0, 0xc0bc5351, &(0x7f0000000100)={0x0, 0x1, 'client0\x00', 0x5, "e1c36fd196d487cf", "c82d46c47c5e2f213cec7e7207722f48e9d2a678db6bda67691abad61734c78d", 0x5, 0x6}) openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) 06:49:16 executing program 5: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bsg\x00', 0x20e200, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0xf7fffffffffffffe) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000200)=@nullb='/dev/nullb0\x00', &(0x7f0000000340)='./file0\x00', &(0x7f0000000100)='reiserfs\x00', 0x0, 0x0) setsockopt$EBT_SO_SET_COUNTERS(r1, 0x0, 0x81, &(0x7f0000000a40)={'nat\x00', 0x0, 0x0, 0x0, [], 0x9, &(0x7f0000000980)=[{}, {}, {}, {}, {}, {}, {}, {}, {}, {}], 0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}]}, 0x108) recvmmsg(r0, &(0x7f00000008c0)=[{{&(0x7f0000000080)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @empty}}, 0x80, &(0x7f0000000580)=[{&(0x7f0000000240)=""/216, 0xd8}, {&(0x7f0000000380)=""/218, 0xda}, {&(0x7f0000000140)}, {&(0x7f0000000480)=""/134, 0x86}, {&(0x7f0000000180)=""/106, 0x6a}, {&(0x7f0000000540)=""/25, 0x19}], 0x6, &(0x7f0000000600)=""/226, 0xe2}, 0x7}, {{0x0, 0x0, &(0x7f00000007c0)=[{&(0x7f0000000700)=""/191, 0xbf}], 0x1, &(0x7f0000000800)=""/131, 0x83}, 0x9}], 0x2, 0x2002, &(0x7f0000000940)) 06:49:16 executing program 4: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcsa\x00', 0x501302, 0x0) ioctl$VIDIOC_S_PARM(0xffffffffffffffff, 0xc0cc5616, &(0x7f0000000240)={0x1, @capture={0x0, 0x0, {0x3}, 0x0, 0x1}}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$GIO_UNISCRNMAP(0xffffffffffffffff, 0x4b69, &(0x7f0000000140)=""/148) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$EVIOCGKEY(r3, 0x80404518, &(0x7f0000000000)=""/30) mount(&(0x7f0000000200)=@nullb='/dev/nullb0\x00', &(0x7f0000000340)='./file0\x00', &(0x7f0000000380)='f2fs\x00', 0x4000, 0x0) 06:49:16 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) r2 = socket$inet6(0xa, 0x2, 0x0) ioctl$KVM_SET_NR_MMU_PAGES(0xffffffffffffffff, 0xae44, 0x8001) recvmmsg(r2, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) r3 = socket$inet(0x10, 0x2, 0x0) ioctl$sock_ifreq(r3, 0x89f0, &(0x7f0000000180)={'ip6_vti0\x00', @ifru_flags}) r4 = dup2(r2, r3) r5 = socket$inet_sctp(0x2, 0x0, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r5, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f0000000280)={r6, 0x36, "ac6a82d2b5acd821e04d0478a474e9c2be3b387e029887626c7e3cf456672c29c8210efff7d4d24bdf54e0b4d427ae9a6873dd3c164e"}, 0x0) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r4, 0x84, 0x71, &(0x7f00000001c0)={r6, 0xffffffff}, &(0x7f0000000340)=0x8) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f00000000c0)={r6, 0xa0, &(0x7f0000000000)=[@in6={0xa, 0x4e20, 0xffffffff, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x251}, @in={0x2, 0x4e20, @broadcast}, @in={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x33}}, @in6={0xa, 0x4e22, 0x200, @empty, 0x4}, @in6={0xa, 0x4e24, 0x87, @mcast2, 0x2}, @in6={0xa, 0x4e21, 0x800, @remote, 0x7}, @in={0x2, 0x4e21, @local}]}, &(0x7f0000000100)=0x10) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) [ 1412.448559] syz-executor.1: vmalloc: allocation failure: 0 bytes, mode:0x14000c0(GFP_KERNEL), nodemask=(null) 06:49:16 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) r0 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000680)='/dev/dlm_plock\x00', 0x80000, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in6={0xa, 0x4e21, 0x4, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x8000}, @in6={0xa, 0x4e23, 0x0, @mcast1, 0x3}, @in={0x2, 0x4e20, @empty}, @in={0x2, 0x4e24, @multicast1}, @in6={0xa, 0x4e21, 0x9, @mcast2}, @in={0x2, 0x4e20, @local}], 0x84) [ 1412.517682] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1412.548566] CPU: 1 PID: 10070 Comm: syz-executor.1 Not tainted 4.14.167-syzkaller #0 [ 1412.556633] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1412.566125] Call Trace: [ 1412.568747] dump_stack+0x142/0x197 [ 1412.572398] warn_alloc.cold+0x96/0x1af [ 1412.576405] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 1412.581298] ? lock_downgrade+0x740/0x740 [ 1412.585822] ? avc_has_perm+0x2df/0x4b0 [ 1412.589827] __vmalloc_node_range+0x3c3/0x6a0 [ 1412.594375] ? trace_hardirqs_on+0x10/0x10 [ 1412.598677] vmalloc+0x46/0x50 [ 1412.602037] ? sel_write_load+0x1a0/0x1050 [ 1412.606803] sel_write_load+0x1a0/0x1050 [ 1412.610976] ? save_trace+0x290/0x290 [ 1412.614792] ? sel_read_bool+0x240/0x240 [ 1412.618864] ? trace_hardirqs_on+0x10/0x10 [ 1412.623110] ? debug_smp_processor_id+0x1c/0x20 [ 1412.627837] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1412.632786] __vfs_write+0x105/0x6b0 [ 1412.636649] ? sel_read_bool+0x240/0x240 [ 1412.641447] ? kernel_read+0x120/0x120 [ 1412.645432] ? __lock_is_held+0xb6/0x140 [ 1412.649505] ? check_preemption_disabled+0x3c/0x250 [ 1412.654537] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1412.660002] ? rcu_read_lock_sched_held+0x110/0x130 [ 1412.665033] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 1412.669799] ? __sb_start_write+0x153/0x2f0 [ 1412.674132] vfs_write+0x198/0x500 [ 1412.677850] SyS_write+0xfd/0x230 [ 1412.681402] ? SyS_read+0x230/0x230 [ 1412.685039] ? do_syscall_64+0x53/0x640 [ 1412.689029] ? SyS_read+0x230/0x230 [ 1412.692937] do_syscall_64+0x1e8/0x640 [ 1412.696841] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1412.701712] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1412.706909] RIP: 0033:0x45b349 [ 1412.710139] RSP: 002b:00007f76bb2b4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1412.717966] RAX: ffffffffffffffda RBX: 00007f76bb2b56d4 RCX: 000000000045b349 [ 1412.725410] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005 [ 1412.732698] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1412.739982] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1412.747265] R13: 0000000000000cb1 R14: 00000000004cd905 R15: 000000000075bf2c 06:49:16 executing program 3: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) connect$x25(r1, &(0x7f0000000000)={0x9, @null=' \x00'}, 0x12) openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) [ 1412.772384] f2fs_msg: 62 callbacks suppressed [ 1412.772393] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0) [ 1412.803742] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 1th superblock [ 1412.815215] kvm [10069]: vcpu0, guest rIP: 0xed disabled perfctr wrmsr: 0xc1 data 0xed660040d08e0059 [ 1412.834060] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0) [ 1412.843289] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 2th superblock [ 1412.857126] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0) [ 1412.870213] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 1th superblock [ 1412.884139] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0) [ 1412.898869] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 2th superblock 06:49:16 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) ioctl$VHOST_VSOCK_SET_GUEST_CID(r0, 0x4008af60, &(0x7f0000000000)) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) [ 1412.925072] warn_alloc_show_mem: 1 callbacks suppressed [ 1412.925076] Mem-Info: [ 1412.933364] active_anon:443317 inactive_anon:211 isolated_anon:0 [ 1412.933364] active_file:3281 inactive_file:7214 isolated_file:0 [ 1412.933364] unevictable:0 dirty:424 writeback:0 unstable:0 [ 1412.933364] slab_reclaimable:17308 slab_unreclaimable:150917 [ 1412.933364] mapped:58638 shmem:285 pagetables:34025 bounce:0 [ 1412.933364] free:852719 free_pcp:534 free_cma:0 06:49:17 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x6401, 0x0) r0 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/btrfs-control\x00', 0x101000, 0x0) connect$netrom(r0, &(0x7f0000000040)={{0x3, @null, 0x1}, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @default, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]}, 0x48) [ 1413.005082] Node 0 active_anon:1616696kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208956kB dirty:4kB writeback:0kB shmem:1056kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 995328kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1413.039176] Node 1 active_anon:156544kB inactive_anon:72kB active_file:13076kB inactive_file:28848kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:25524kB dirty:1704kB writeback:0kB shmem:84kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1413.081568] Node 0 DMA free:10480kB min:216kB low:268kB high:320kB active_anon:4508kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:96kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1413.108804] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 1413.115155] Node 0 DMA32 free:38720kB min:36380kB low:45472kB high:54564kB active_anon:1612188kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB writepending:4kB present:3129332kB managed:2634344kB mlocked:0kB kernel_stack:20864kB pagetables:53608kB bounce:0kB free_pcp:1404kB local_pcp:740kB free_cma:0kB [ 1413.145269] lowmem_reserve[]: 0 0 0 0 0 [ 1413.149598] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1413.175688] lowmem_reserve[]: 0 0 0 0 0 [ 1413.180135] Node 1 Normal free:3362832kB min:53508kB low:66884kB high:80260kB active_anon:156472kB inactive_anon:76kB active_file:13084kB inactive_file:28864kB unevictable:0kB writepending:1732kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:27744kB pagetables:82432kB bounce:0kB free_pcp:1356kB local_pcp:640kB free_cma:0kB [ 1413.211491] lowmem_reserve[]: 0 0 0 0 0 [ 1413.215824] Node 0 DMA: 16*4kB (UME) 18*8kB (UE) 14*16kB (UME) 16*32kB (UME) 17*64kB (U) 6*128kB (UE) 6*256kB (UE) 2*512kB (ME) 3*1024kB (UME) 1*2048kB (E) 0*4096kB = 10480kB [ 1413.245786] Node 0 DMA32: 358*4kB (UMEH) 312*8kB (UMEH) 719*16kB (UMEH) 401*32kB (UMEH) 162*64kB (UMEH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 38632kB [ 1413.273872] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1413.285375] Node 1 Normal: 204*4kB (UME) 76*8kB (UME) 27*16kB (UME) 18*32kB (UE) 32*64kB (UME) 31*128kB (UME) 29*256kB (UME) 53*512kB (UME) 14*1024kB (UME) 2*2048kB (U) 806*4096kB (M) = 3362816kB [ 1413.314893] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1413.324590] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1413.342369] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB 06:49:17 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x100, 0x0) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$EVIOCSABS20(r1, 0x401845e0, &(0x7f0000000040)={0x5, 0x7fff, 0x7, 0x3f, 0x6, 0x2}) [ 1413.363545] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1413.373710] 10784 total pagecache pages [ 1413.384342] 0 pages in swap cache [ 1413.388013] Swap cache stats: add 0, delete 0, find 0/0 [ 1413.404423] Free swap = 0kB [ 1413.411413] Total swap = 0kB [ 1413.414893] 1965979 pages RAM [ 1413.419229] 0 pages HighMem/MovableOnly [ 1413.423615] 335868 pages reserved [ 1413.427353] 0 pages cma reserved [ 1413.431216] syz-executor.1: vmalloc: allocation failure: 0 bytes, mode:0x14000c0(GFP_KERNEL), nodemask=(null) [ 1413.442647] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1413.448329] CPU: 1 PID: 10119 Comm: syz-executor.1 Not tainted 4.14.167-syzkaller #0 [ 1413.456224] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1413.465852] Call Trace: [ 1413.468466] dump_stack+0x142/0x197 [ 1413.472151] warn_alloc.cold+0x96/0x1af [ 1413.476182] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 1413.481050] ? lock_downgrade+0x740/0x740 [ 1413.485235] ? avc_has_perm+0x2df/0x4b0 [ 1413.489399] __vmalloc_node_range+0x3c3/0x6a0 [ 1413.493944] vmalloc+0x46/0x50 [ 1413.497156] ? sel_write_load+0x1a0/0x1050 [ 1413.501409] sel_write_load+0x1a0/0x1050 [ 1413.505494] ? save_trace+0x290/0x290 [ 1413.509316] ? sel_read_bool+0x240/0x240 [ 1413.513397] ? trace_hardirqs_on+0x10/0x10 [ 1413.517689] ? debug_smp_processor_id+0x1c/0x20 [ 1413.522497] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1413.527445] __vfs_write+0x105/0x6b0 [ 1413.531613] ? sel_read_bool+0x240/0x240 [ 1413.535712] ? kernel_read+0x120/0x120 [ 1413.539638] ? __lock_is_held+0xb6/0x140 [ 1413.543719] ? check_preemption_disabled+0x3c/0x250 [ 1413.548861] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1413.554333] ? rcu_read_lock_sched_held+0x110/0x130 [ 1413.559510] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 1413.565680] ? __sb_start_write+0x153/0x2f0 [ 1413.570033] vfs_write+0x198/0x500 [ 1413.573608] SyS_write+0xfd/0x230 [ 1413.577104] ? SyS_read+0x230/0x230 [ 1413.580749] ? do_syscall_64+0x53/0x640 [ 1413.584748] ? SyS_read+0x230/0x230 [ 1413.588438] do_syscall_64+0x1e8/0x640 [ 1413.592454] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1413.597334] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1413.602542] RIP: 0033:0x45b349 [ 1413.605740] RSP: 002b:00007f76bb293c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1413.613578] RAX: ffffffffffffffda RBX: 00007f76bb2946d4 RCX: 000000000045b349 [ 1413.620859] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005 [ 1413.628144] RBP: 000000000075bfc8 R08: 0000000000000000 R09: 0000000000000000 [ 1413.635439] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1413.642845] R13: 0000000000000cb1 R14: 00000000004cd905 R15: 000000000075bfd4 06:49:17 executing program 1: socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) socket$inet_icmp_raw(0x2, 0x3, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) openat$selinux_create(0xffffffffffffff9c, &(0x7f0000000180)='/selinux/create\x00', 0x2, 0x0) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$selinux_access(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/access\x00', 0x2, 0x0) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) r6 = openat$vimc1(0xffffffffffffff9c, &(0x7f0000000280)='/dev/video1\x00', 0x2, 0x0) r7 = socket$inet6_sctp(0xa, 0x1, 0x84) ioctl$VIDIOC_TRY_EXT_CTRLS(r6, 0xc0205649, &(0x7f00000000c0)={0x9c0000, 0x4, 0xd5, r7, 0x0, &(0x7f0000000200)={0x9a0921, 0x739e5b30, [], @value64=0x53e}}) getsockopt$ARPT_SO_GET_REVISION_TARGET(r8, 0x0, 0x63, &(0x7f0000000100)={'ah\x00'}, &(0x7f0000000140)=0x1e) clone(0x76008d00, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) io_setup(0xffff, &(0x7f0000000040)) r9 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000300)='/selinux/load\x00', 0x2, 0x0) write$selinux_load(r9, 0x0, 0x0) r10 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r11 = dup(r10) r12 = socket$inet6(0xa, 0x1000000000002, 0x0) r13 = socket$inet(0x2, 0x1, 0x0) connect$inet(r13, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r13, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) r14 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet(r14, &(0x7f0000000080)={0x2, 0x4c29}, 0xc) dup2(r12, r13) syz_open_dev$video(&(0x7f0000000080)='/dev/video#\x00', 0x6, 0x80000) r15 = socket$inet6(0xa, 0x1000000000002, 0x0) r16 = socket$inet(0x2, 0x1, 0x0) connect$inet(r16, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r16, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r16, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r15, r16) socket$can_bcm(0x1d, 0x2, 0x2) r17 = socket$inet6(0xa, 0x1000000000002, 0x0) r18 = socket$inet(0x2, 0x1, 0x0) connect$inet(r18, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r18, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r18, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r17, r18) fstat(r11, &(0x7f0000000440)) 06:49:17 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) r2 = socket$inet6(0xa, 0x1000000000002, 0x0) r3 = socket$inet(0x2, 0x1, 0x0) connect$inet(r3, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r3, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r3, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r2, r3) setsockopt$inet_MCAST_MSFILTER(r3, 0x0, 0x30, &(0x7f0000000300)=ANY=[@ANYBLOB="7c0000000000000002004e20e0000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000400000002004e200000000300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002004e22ffffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002004e227f00000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002004e22e000000200"/656], 0x290) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000100)='./file0\x00', 0x18a) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) 06:49:17 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) r5 = openat$cgroup_ro(r4, &(0x7f0000000380)='cpuacct.stat\x00', 0x0, 0x0) r6 = epoll_create(0x9) r7 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r8 = dup(r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) r9 = mmap$binder(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1, 0x11, r8, 0x8) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000580)={0xac, 0x0, &(0x7f0000000480)=[@acquire_done, @release, @transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48, 0x18, &(0x7f00000003c0)={@flat, @fd={0x66642a85, 0x0, r5}, @fd={0x66642a85, 0x0, r6}}, &(0x7f0000000440)={0x0, 0x18, 0x30}}, 0x40}, @increfs_done, @free_buffer={0x40086303, r9}, @release={0x40046306, 0x2}, @decrefs={0x40046307, 0x3}, @acquire_done={0x40106309, 0x1}], 0x32, 0x0, &(0x7f0000000540)="a3c3bf0123cf96686b27f3d12ceb3bec27d4fe7688c7b2ebb41dbc3a155d484f6d8ac636ce5ef52641a3a9bb816c7bcde880"}) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r10 = dup(r2) finit_module(r0, &(0x7f0000000000)='\x00', 0x1) ioctl$PERF_EVENT_IOC_ENABLE(r10, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r11 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r12 = dup(r11) ioctl$PERF_EVENT_IOC_ENABLE(r12, 0x8912, 0x400200) r13 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r14 = dup(r13) r15 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r16 = dup(r15) ioctl$PERF_EVENT_IOC_ENABLE(r16, 0x8912, 0x400200) r17 = perf_event_open$cgroup(&(0x7f0000000300)={0x5, 0x70, 0x8, 0x82, 0x3, 0x4, 0x0, 0xfffffffffffffffc, 0x8000, 0x3, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x4, 0x4, @perf_bp={&(0x7f00000002c0)}, 0x284e9, 0x40, 0x400, 0x6, 0x9, 0x0, 0x5}, r16, 0x0, 0xffffffffffffffff, 0x5) ioctl$PERF_EVENT_IOC_ENABLE(r17, 0x8912, 0x400200) ioctl$DRM_IOCTL_GEM_FLINK(r14, 0xc008640a, &(0x7f0000000040)={0x0}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r12, 0xc00c642e, &(0x7f0000000180)={r18, 0x80000}) openat$vimc1(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/video1\x00', 0x2, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r19 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r19, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x8, 0x0, 0x0, 0x0, 0x0, 0xfff, 0x2, 0x0, 0x0, 0x0, 0xd20f]}) ioctl$KVM_RUN(r19, 0xae80, 0x0) 06:49:17 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f0000000080)='/dev/adsp1\x00', 0x228001, 0x0) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$TIOCL_BLANKSCREEN(0xffffffffffffffff, 0x541c, &(0x7f00000001c0)) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$DRM_IOCTL_ADD_CTX(r3, 0xc0086420, &(0x7f0000000180)) dup(r1) r4 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_mreqn(r4, 0x0, 0x0, &(0x7f0000002d80)={@multicast2, @local}, 0xc) prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r5 = getpid() sched_setattr(r5, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r6 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r6, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r8, 0x407, 0x0) write(r8, &(0x7f0000000340), 0x41395527) vmsplice(r7, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) accept(0xffffffffffffffff, &(0x7f0000000100)=@pppoe={0x18, 0x0, {0x0, @dev}}, 0x0) perf_event_open(&(0x7f0000000540)={0x1, 0xffffffffffffffb7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x7, 0x1f}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mkdir(&(0x7f00000000c0)='./file0\x00', 0x0) openat$tun(0xffffffffffffff9c, &(0x7f0000000000)='/dev/net/tun\x00', 0x0, 0x0) io_submit(0x0, 0x1, &(0x7f0000000040)=[0x0]) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0xa9d2630128c7a782, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xffffffff, 0x0, @perf_config_ext={0x0, 0x3}, 0x20280, 0x80, 0x5, 0x0, 0x200000000, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x2) r9 = socket$inet(0x2, 0x803, 0xa0) connect(r9, &(0x7f0000000340)=@ethernet={0x306, @local}, 0x80) [ 1413.893956] cgroup: cgroup2: unknown option "º" [ 1413.924341] syz-executor.1: vmalloc: allocation failure: 0 bytes, mode:0x14000c0(GFP_KERNEL), nodemask=(null) [ 1413.946334] cgroup: cgroup2: unknown option "º" [ 1413.960977] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1413.966680] CPU: 1 PID: 10151 Comm: syz-executor.1 Not tainted 4.14.167-syzkaller #0 [ 1413.974703] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1413.984072] Call Trace: [ 1413.986690] dump_stack+0x142/0x197 [ 1413.990354] warn_alloc.cold+0x96/0x1af [ 1413.994390] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 1413.999258] ? lock_downgrade+0x740/0x740 [ 1414.003433] ? avc_has_perm+0x2df/0x4b0 [ 1414.007434] __vmalloc_node_range+0x3c3/0x6a0 [ 1414.011955] ? trace_hardirqs_on+0x10/0x10 [ 1414.016212] vmalloc+0x46/0x50 [ 1414.019417] ? sel_write_load+0x1a0/0x1050 [ 1414.023672] sel_write_load+0x1a0/0x1050 [ 1414.027755] ? save_trace+0x290/0x290 [ 1414.031571] ? sel_read_bool+0x240/0x240 [ 1414.035753] ? trace_hardirqs_on+0x10/0x10 [ 1414.040006] ? debug_smp_processor_id+0x1c/0x20 [ 1414.044814] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1414.049768] __vfs_write+0x105/0x6b0 [ 1414.053498] ? sel_read_bool+0x240/0x240 [ 1414.057591] ? kernel_read+0x120/0x120 [ 1414.061510] ? __lock_is_held+0xb6/0x140 [ 1414.065612] ? check_preemption_disabled+0x3c/0x250 [ 1414.070652] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1414.076341] ? rcu_read_lock_sched_held+0x110/0x130 [ 1414.081517] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 1414.086404] ? __sb_start_write+0x153/0x2f0 [ 1414.090742] vfs_write+0x198/0x500 [ 1414.094313] SyS_write+0xfd/0x230 [ 1414.097785] ? SyS_read+0x230/0x230 [ 1414.101427] ? do_syscall_64+0x53/0x640 [ 1414.105425] ? SyS_read+0x230/0x230 [ 1414.109270] do_syscall_64+0x1e8/0x640 [ 1414.113197] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1414.118700] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1414.123914] RIP: 0033:0x45b349 [ 1414.127120] RSP: 002b:00007f76bb272c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1414.134845] RAX: ffffffffffffffda RBX: 00007f76bb2736d4 RCX: 000000000045b349 [ 1414.142417] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000e [ 1414.149904] RBP: 000000000075c070 R08: 0000000000000000 R09: 0000000000000000 [ 1414.157300] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1414.164610] R13: 0000000000000cb1 R14: 00000000004cd905 R15: 000000000075c07c [ 1414.189645] warn_alloc_show_mem: 1 callbacks suppressed [ 1414.189656] Mem-Info: [ 1414.221782] active_anon:443296 inactive_anon:211 isolated_anon:0 [ 1414.221782] active_file:3285 inactive_file:7224 isolated_file:0 [ 1414.221782] unevictable:0 dirty:152 writeback:0 unstable:0 [ 1414.221782] slab_reclaimable:17284 slab_unreclaimable:150571 [ 1414.221782] mapped:58603 shmem:285 pagetables:34004 bounce:0 [ 1414.221782] free:853566 free_pcp:608 free_cma:0 [ 1414.301590] IPVS: ftp: loaded support on port[0] = 21 [ 1414.359111] Node 0 active_anon:1616696kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208956kB dirty:4kB writeback:0kB shmem:1056kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 995328kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1414.541016] Node 1 active_anon:161488kB inactive_anon:80kB active_file:13092kB inactive_file:28888kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:25556kB dirty:604kB writeback:0kB shmem:84kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1414.666272] Node 0 DMA free:10480kB min:216kB low:268kB high:320kB active_anon:4508kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:96kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1414.789210] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 1414.812523] Node 0 DMA32 free:39048kB min:36380kB low:45472kB high:54564kB active_anon:1612188kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB writepending:4kB present:3129332kB managed:2634344kB mlocked:0kB kernel_stack:20864kB pagetables:53608kB bounce:0kB free_pcp:1372kB local_pcp:704kB free_cma:0kB [ 1414.881798] lowmem_reserve[]: 0 0 0 0 0 [ 1414.886067] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1414.913978] lowmem_reserve[]: 0 0 0 0 0 [ 1414.918320] Node 1 Normal free:3347468kB min:53508kB low:66884kB high:80260kB active_anon:172988kB inactive_anon:80kB active_file:13092kB inactive_file:28888kB unevictable:0kB writepending:604kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:27840kB pagetables:82372kB bounce:0kB free_pcp:1244kB local_pcp:612kB free_cma:0kB [ 1414.949356] lowmem_reserve[]: 0 0 0 0 0 [ 1414.955381] Node 0 DMA: 16*4kB (UME) 18*8kB (UE) 14*16kB (UME) 16*32kB (UME) 17*64kB (U) 6*128kB (UE) 6*256kB (UE) 2*512kB (ME) 3*1024kB (UME) 1*2048kB (E) 0*4096kB = 10480kB [ 1414.971977] Node 0 DMA32: 358*4kB (UMEH) 394*8kB (UMEH) 708*16kB (UMEH) 399*32kB (UMEH) 161*64kB (UMEH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 38984kB [ 1414.987471] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1414.998952] Node 1 Normal: 189*4kB (UME) 39*8kB (UE) 40*16kB (UME) 40*32kB (UE) 15*64kB (UME) 10*128kB (UE) 14*256kB (UE) 47*512kB (UME) 13*1024kB (UME) 2*2048kB (U) 805*4096kB (M) = 3347564kB [ 1415.035427] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1415.071083] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1415.095133] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1415.117581] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1415.129444] 10798 total pagecache pages [ 1415.133938] 0 pages in swap cache [ 1415.137566] Swap cache stats: add 0, delete 0, find 0/0 [ 1415.143747] Free swap = 0kB [ 1415.146950] Total swap = 0kB [ 1415.150512] 1965979 pages RAM [ 1415.153775] 0 pages HighMem/MovableOnly [ 1415.159829] 335868 pages reserved [ 1415.167903] 0 pages cma reserved 06:49:19 executing program 5: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) openat$vnet(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhost-net\x00', 0x2, 0x0) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) fchmod(r1, 0x80) mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f646576194e756c6c623000"], &(0x7f0000000340)='./file0\x00', &(0x7f0000000100)='reiserfs\x00', 0x0, 0x0) 06:49:19 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='aufs\x00', 0x2008ca1, &(0x7f00000002c0)) 06:49:19 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KDFONTOP_SET(0xffffffffffffffff, 0x4b72, &(0x7f0000000000)={0x0, 0x1, 0x1b, 0x1b, 0x1db, &(0x7f00000002c0)="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"}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 06:49:19 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) socket$inet_icmp_raw(0x2, 0x3, 0x1) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) r1 = socket$inet(0x2, 0x1, 0x0) connect$inet(r1, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r1, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r1, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r0, r1) openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r2) r3 = socket$inet6(0xa, 0x1000000000002, 0x0) r4 = socket$inet(0x2, 0x1, 0x0) connect$inet(r4, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r4, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r4, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r3, r4) socket$pppl2tp(0x18, 0x1, 0x1) r5 = fanotify_init(0x4, 0x400) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x10, 0xffff, 0x1, 0x221, 0xffffffffffffffff, 0x284, [], 0x0, r6, 0x5}, 0x3c) ioctl$FS_IOC_GETFSMAP(r7, 0xc0c0583b, &(0x7f0000000100)={0x0, 0x0, 0x2, 0x0, [], [{0x3, 0x3, 0x4, 0xaeb3, 0x0, 0x4}, {0xd90, 0x7, 0x0, 0x78, 0x2c66, 0x2}], [[], []]}) 06:49:19 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$RTC_IRQP_SET(r1, 0x4008700c, 0x1811) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/load\x00', 0x2, 0x0) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r5 = dup(r4) r6 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r7 = dup(r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) ioctl$NS_GET_OWNER_UID(r7, 0xb704, &(0x7f0000000100)=0x0) r9 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0) fstat(r9, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) setregid(r10, 0x0) r11 = socket$inet6(0xa, 0x1000000000002, 0x0) r12 = socket$inet(0x2, 0x1, 0x0) connect$inet(r12, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r12, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r12, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r11, r12) getsockopt$inet_IP_XFRM_POLICY(r12, 0x0, 0x11, &(0x7f0000000140)={{{@in6=@dev, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@remote}, 0x0, @in6=@ipv4={[], [], @dev}}}, &(0x7f0000000240)=0xe8) r14 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r15 = dup(r14) ioctl$PERF_EVENT_IOC_ENABLE(r15, 0x8912, 0x400200) statx(r15, &(0x7f0000000280)='./file0\x00', 0x2000, 0x80, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r17 = getpid() r18 = gettid() shmctl$IPC_SET(0xffffffffffffffff, 0x1, &(0x7f00000003c0)={{0x1, r8, r10, r13, r16, 0x1dd, 0xfffc}, 0x9, 0x40, 0x5, 0x3ff, r17, r18, 0x7ff}) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) ioctl$VIDIOC_ENUMINPUT(r5, 0xc050561a, &(0x7f0000000080)={0x9, "c85c7eae30e514cf2f05b6054edcfd1a42ab8a68345e4ec346cd1e248ea18f65", 0x3, 0x2, 0x1, 0x2, 0x3000e05, 0x2}) r19 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/checkreqprot\x00', 0x129800, 0x0) write$selinux_load(r19, 0x0, 0x0) [ 1415.367697] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 06:49:19 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x1f6) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) r2 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dlm-monitor\x00', 0x104000, 0x0) ioctl$NS_GET_NSTYPE(r2, 0xb703, 0x0) 06:49:19 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$ION_IOC_HEAP_QUERY(r3, 0xc0184908, &(0x7f00000000c0)={0x34, 0x0, &(0x7f0000000080)}) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r4 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/load\x00', 0x2, 0x0) write$selinux_load(r4, 0x0, 0x0) setsockopt$netrom_NETROM_T1(r1, 0x103, 0x1, &(0x7f0000000040)=0x1, 0x4) 06:49:19 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) r0 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0xf6bb, 0x40000) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000140)={r2, r0, 0x12, 0x1}, 0x10) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000040)={0xffffffffffffffff}, 0x106, 0x6}}, 0x20) write$RDMA_USER_CM_CMD_LISTEN(r0, &(0x7f0000000100)={0x7, 0x8, 0xfa00, {r3, 0x7f}}, 0x10) 06:49:19 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x7, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x2000, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 06:49:19 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) clock_adjtime(0x1, &(0x7f00000001c0)={0x16c0, 0xffff, 0x3b83, 0x7fff, 0xcc6b, 0xc5, 0xc2, 0x7bb95a60, 0x5, 0x247c, 0x5, 0x8001, 0x10000, 0x1, 0xc77c, 0x4, 0x4, 0x800, 0x9, 0x3, 0x9, 0x8, 0x0, 0x2, 0x22, 0x7}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) r2 = syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$sock_FIOGETOWN(r4, 0x8903, &(0x7f0000000100)) r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) openat$cgroup_ro(r6, &(0x7f00000000c0)='memory.stat\x00', 0x0, 0x0) getsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000080), 0x10) getsockopt$SO_TIMESTAMP(r3, 0x1, 0x23, &(0x7f0000000300), &(0x7f0000000340)=0x4) [ 1415.602680] cgroup: cgroup2: unknown option "º" [ 1415.612596] cgroup: cgroup2: unknown option "º" [ 1415.764849] cgroup: cgroup2: unknown option "º" [ 1415.786831] syz-executor.1: vmalloc: allocation failure: 0 bytes, mode:0x14000c0(GFP_KERNEL), nodemask=(null) [ 1415.807966] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1415.816996] cgroup: cgroup2: unknown option "º" 06:49:19 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000000c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) ioctl$SG_GET_TIMEOUT(r1, 0x2202, 0x0) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$VIDIOC_DQEVENT(r3, 0x80885659, &(0x7f0000000240)={0x0, @data}) ioctl$KVM_ENABLE_CAP(0xffffffffffffffff, 0x4068aea3, &(0x7f00000001c0)={0x74, 0x0, [0x0, 0xc454, 0xff, 0xfffffffffffffe01]}) getgid() mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) [ 1415.835017] CPU: 1 PID: 10217 Comm: syz-executor.1 Not tainted 4.14.167-syzkaller #0 [ 1415.843080] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1415.852451] Call Trace: [ 1415.855221] dump_stack+0x142/0x197 [ 1415.858876] warn_alloc.cold+0x96/0x1af [ 1415.862871] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 1415.867737] ? lock_downgrade+0x740/0x740 [ 1415.871912] ? avc_has_perm+0x2df/0x4b0 [ 1415.876122] __vmalloc_node_range+0x3c3/0x6a0 [ 1415.880652] ? trace_hardirqs_on+0x10/0x10 [ 1415.884910] vmalloc+0x46/0x50 [ 1415.888248] ? sel_write_load+0x1a0/0x1050 [ 1415.892502] sel_write_load+0x1a0/0x1050 [ 1415.896580] ? save_trace+0x290/0x290 [ 1415.900401] ? sel_read_bool+0x240/0x240 [ 1415.904481] ? trace_hardirqs_on+0x10/0x10 [ 1415.908759] ? debug_smp_processor_id+0x1c/0x20 [ 1415.913775] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1415.918726] __vfs_write+0x105/0x6b0 [ 1415.922454] ? sel_read_bool+0x240/0x240 [ 1415.926706] ? kernel_read+0x120/0x120 [ 1415.930694] ? __lock_is_held+0xb6/0x140 [ 1415.934875] ? check_preemption_disabled+0x3c/0x250 [ 1415.939908] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1415.945383] ? rcu_read_lock_sched_held+0x110/0x130 [ 1415.950414] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 1415.955281] ? __sb_start_write+0x153/0x2f0 [ 1415.959729] vfs_write+0x198/0x500 [ 1415.963419] SyS_write+0xfd/0x230 [ 1415.966888] ? SyS_read+0x230/0x230 [ 1415.970527] ? do_syscall_64+0x53/0x640 [ 1415.974524] ? SyS_read+0x230/0x230 [ 1415.978210] do_syscall_64+0x1e8/0x640 [ 1415.982103] ? trace_hardirqs_off_thunk+0x1a/0x1c 06:49:19 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) ioctl$IMHOLD_L1(0xffffffffffffffff, 0x80044948, &(0x7f0000000000)=0x40) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) [ 1415.986968] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1415.992161] RIP: 0033:0x45b349 [ 1415.995484] RSP: 002b:00007f76bb2b4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1416.005199] RAX: ffffffffffffffda RBX: 00007f76bb2b56d4 RCX: 000000000045b349 [ 1416.012751] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000007 [ 1416.020033] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1416.027414] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1416.034794] R13: 0000000000000cb1 R14: 00000000004cd905 R15: 000000000075bf2c [ 1416.071906] Mem-Info: [ 1416.074567] active_anon:443336 inactive_anon:209 isolated_anon:0 [ 1416.074567] active_file:3288 inactive_file:7228 isolated_file:0 [ 1416.074567] unevictable:0 dirty:170 writeback:0 unstable:0 [ 1416.074567] slab_reclaimable:17288 slab_unreclaimable:150861 [ 1416.074567] mapped:58700 shmem:285 pagetables:33997 bounce:0 [ 1416.074567] free:853033 free_pcp:572 free_cma:0 [ 1416.121475] Node 0 active_anon:1616696kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208956kB dirty:4kB writeback:0kB shmem:1056kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 995328kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1416.180590] Node 1 active_anon:156532kB inactive_anon:72kB active_file:13108kB inactive_file:28916kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:25456kB dirty:712kB writeback:0kB shmem:84kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1416.211514] Node 0 DMA free:10480kB min:216kB low:268kB high:320kB active_anon:4508kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:96kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1416.250335] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 1416.262613] Node 0 DMA32 free:41340kB min:36380kB low:45472kB high:54564kB active_anon:1612188kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB writepending:4kB present:3129332kB managed:2634344kB mlocked:0kB kernel_stack:20864kB pagetables:53608kB bounce:0kB free_pcp:1340kB local_pcp:652kB free_cma:0kB [ 1416.319666] lowmem_reserve[]: 0 0 0 0 0 [ 1416.325850] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1416.358677] lowmem_reserve[]: 0 0 0 0 0 [ 1416.363234] Node 1 Normal free:3359160kB min:53508kB low:66884kB high:80260kB active_anon:156732kB inactive_anon:72kB active_file:13108kB inactive_file:28916kB unevictable:0kB writepending:712kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:27840kB pagetables:82472kB bounce:0kB free_pcp:1316kB local_pcp:588kB free_cma:0kB [ 1416.396155] lowmem_reserve[]: 0 0 0 0 0 [ 1416.400757] Node 0 DMA: 16*4kB (UME) 18*8kB (UE) 14*16kB (UME) 16*32kB (UME) 17*64kB (U) 6*128kB (UE) 6*256kB (UE) 2*512kB (ME) 3*1024kB (UME) 1*2048kB (E) 0*4096kB = 10480kB [ 1416.419230] Node 0 DMA32: 327*4kB (UMEH) 536*8kB (UMEH) 801*16kB (UMEH) 399*32kB (UMEH) 160*64kB (UMEH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 41420kB [ 1416.454092] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1416.489256] Node 1 Normal: 159*4kB (UME) 135*8kB (UME) 67*16kB (UME) 41*32kB (UME) 61*64kB (UME) 22*128kB (UME) 16*256kB (ME) 51*512kB (UME) 15*1024kB (UME) 3*2048kB (UM) 805*4096kB (M) = 3359812kB [ 1416.560875] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1416.584004] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1416.603979] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1416.618813] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1416.629644] 10803 total pagecache pages [ 1416.639092] 0 pages in swap cache [ 1416.643084] Swap cache stats: add 0, delete 0, find 0/0 [ 1416.648633] Free swap = 0kB [ 1416.657373] Total swap = 0kB [ 1416.660618] 1965979 pages RAM [ 1416.664139] 0 pages HighMem/MovableOnly [ 1416.668320] 335868 pages reserved [ 1416.677788] 0 pages cma reserved 06:49:21 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDCTL_DSP_SETDUPLEX(r1, 0x5016, 0x0) 06:49:21 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) write$FUSE_NOTIFY_RETRIEVE(r6, &(0x7f0000000000)={0x30, 0x5, 0x0, {0x0, 0x2, 0x1, 0x1ff}}, 0x30) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 06:49:21 executing program 2: socket$inet_icmp_raw(0x2, 0x3, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) 06:49:21 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400a00) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/load\x00', 0x2, 0x0) write$selinux_load(r2, 0x0, 0x0) 06:49:21 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000080)={&(0x7f0000000000)='./file1\x00', r1}, 0x10) mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000200)=@nullb='/dev/nullb0\x00', &(0x7f0000000340)='./file0\x00', &(0x7f0000000100)='reiserfs\x00', 0x0, 0x0) 06:49:21 executing program 4: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcsa\x00', 0x501302, 0x0) ioctl$VIDIOC_S_PARM(0xffffffffffffffff, 0xc0cc5616, &(0x7f0000000240)={0x1, @capture={0x0, 0x0, {0x3}, 0x0, 0x1}}) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(r2, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r2, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r2, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r1, r2) r3 = accept4$inet6(r1, &(0x7f0000000540), &(0x7f0000000580)=0x1c, 0x80000) setsockopt$inet_sctp6_SCTP_MAX_BURST(r3, 0x84, 0x14, &(0x7f00000005c0)=@int=0x7fffffff, 0x4) r4 = dup(r0) sysfs$2(0x2, 0x400, &(0x7f0000000000)=""/48) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$GIO_UNISCRNMAP(0xffffffffffffffff, 0x4b69, &(0x7f0000000140)=""/148) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) r7 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000100)='NLBL_CALIPSO\x00') sendmsg$NLBL_CALIPSO_C_LISTALL(r6, &(0x7f0000000500)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000200)={&(0x7f0000000600)=ANY=[@ANYBLOB="4c00970400", @ANYRES16=r7, @ANYBLOB="00022abd7000fedbdf25040000000800020002000000080001000200000008000200020000000800010002000000080001000000000008000200020000000800020002000000"], 0x4c}, 0x1, 0x0, 0x0, 0x800}, 0x20000000) mount(&(0x7f00000003c0)=ANY=[@ANYBLOB="2f6465762f624ce9f2162823ed4ad2174bcdd74016e7f15c59648cce7451cda3dadafe993fe69e8448033c1dc9c6782d337ca0de2a28d575ae8864e26931222c2ba44f7c6a6e8b9360efd7e015027a799cdc71c13fb44e88f546951a1933623f35953201d0d444abfae8f603501f099eb285aa3ba31242a4f3c0b9c3fba9e28851144824bb2cd6f6f2099ba24d382ba1d12354e2a5a6bb75f61f15bfd08b44826621919e9a51a55abe526ebe09729538b88ac789f6073cc4"], &(0x7f0000000340)='./file0\x00', &(0x7f0000000380)='f2fs\x00', 0x4000, 0x0) [ 1417.461619] syz-executor.1: vmalloc: allocation failure: 0 bytes, mode:0x14000c0(GFP_KERNEL), nodemask=(null) [ 1417.466293] cgroup: cgroup2: unknown option "º" [ 1417.504198] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1417.521049] CPU: 1 PID: 10266 Comm: syz-executor.1 Not tainted 4.14.167-syzkaller #0 [ 1417.529362] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1417.540648] Call Trace: [ 1417.543465] dump_stack+0x142/0x197 [ 1417.547205] warn_alloc.cold+0x96/0x1af [ 1417.551546] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 1417.557130] ? lock_downgrade+0x740/0x740 [ 1417.562032] ? avc_has_perm+0x2df/0x4b0 [ 1417.566154] __vmalloc_node_range+0x3c3/0x6a0 [ 1417.571034] ? trace_hardirqs_on+0x10/0x10 [ 1417.575488] vmalloc+0x46/0x50 [ 1417.578807] ? sel_write_load+0x1a0/0x1050 [ 1417.583751] sel_write_load+0x1a0/0x1050 [ 1417.588538] ? save_trace+0x290/0x290 [ 1417.592416] ? sel_read_bool+0x240/0x240 [ 1417.596671] ? trace_hardirqs_on+0x10/0x10 [ 1417.601015] ? debug_smp_processor_id+0x1c/0x20 [ 1417.605833] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1417.610876] __vfs_write+0x105/0x6b0 [ 1417.614711] ? sel_read_bool+0x240/0x240 [ 1417.619170] ? kernel_read+0x120/0x120 [ 1417.623530] ? __lock_is_held+0xb6/0x140 [ 1417.631200] ? check_preemption_disabled+0x3c/0x250 [ 1417.636610] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1417.642282] ? rcu_read_lock_sched_held+0x110/0x130 [ 1417.647602] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 1417.652404] ? __sb_start_write+0x153/0x2f0 [ 1417.656744] vfs_write+0x198/0x500 [ 1417.660304] SyS_write+0xfd/0x230 [ 1417.663966] ? SyS_read+0x230/0x230 [ 1417.667629] ? do_syscall_64+0x53/0x640 [ 1417.671616] ? SyS_read+0x230/0x230 [ 1417.675257] do_syscall_64+0x1e8/0x640 [ 1417.679150] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1417.684023] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1417.689513] RIP: 0033:0x45b349 [ 1417.692712] RSP: 002b:00007f76bb2b4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 06:49:21 executing program 3: r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0xc000, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) r2 = fcntl$dupfd(r0, 0x0, r1) r3 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000080)='l2tp\x00') sendmsg$L2TP_CMD_TUNNEL_GET(r2, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x24, r3, 0x400, 0x70bd2d, 0x25dfdbfe, {}, [@L2TP_ATTR_MTU={0x6, 0x1c, 0xf3ad}, @L2TP_ATTR_DEBUG={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0xc090}, 0x10004080) [ 1417.700600] RAX: ffffffffffffffda RBX: 00007f76bb2b56d4 RCX: 000000000045b349 [ 1417.707884] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005 [ 1417.715166] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1417.722512] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1417.730197] R13: 0000000000000cb1 R14: 00000000004cd905 R15: 000000000075bf2c 06:49:21 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) unlinkat(r1, &(0x7f00000000c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) ioctl$DRM_IOCTL_SET_CLIENT_CAP(r1, 0x4010640d, &(0x7f0000000080)={0x9}) r2 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000100)='/selinux/policy\x00', 0x0, 0x0) getsockopt$inet_mreqn(r2, 0x0, 0x20, &(0x7f00000001c0)={@loopback}, &(0x7f0000000200)=0xc) 06:49:21 executing program 4: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcsa\x00', 0x501302, 0x0) ioctl$VIDIOC_S_PARM(0xffffffffffffffff, 0xc0cc5616, &(0x7f0000000240)={0x1, @capture={0x0, 0x0, {0x3}, 0x0, 0x1}}) ioctl$SCSI_IOCTL_GET_BUS_NUMBER(r1, 0x5386, &(0x7f0000000000)) r2 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$GIO_UNISCRNMAP(0xffffffffffffffff, 0x4b69, &(0x7f0000000140)=""/148) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000200)=@nullb='/dev/nullb0\x00', &(0x7f0000000340)='./file0\x00', &(0x7f0000000380)='f2fs\x00', 0x4000, 0x0) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(r2, 0xc04c5349, &(0x7f00000003c0)={0x4f, 0x1, 0x6}) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$RTC_PLL_SET(r4, 0x40207012, &(0x7f00000000c0)={0x40, 0x5e, 0x1, 0x3, 0xfff, 0x8, 0x200}) 06:49:21 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00') sendmsg$TIPC_NL_MON_SET(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000040), 0xc, &(0x7f00000001c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="f8000000", @ANYRES16=r3, @ANYBLOB="000426bd7000ffdbdf2511000000140003800800030008000000701fb115c090e3f8ca489cd7ec0800010001800000340007800c000300360f0000000000000c00030009000000000000000c000400ecef0000000000000c0003000001000000000000380007800c000300a2000000000000000c0003007f000000000000000c00040012956c63000000000800010002000000080001008d00000024000380080003000900000008000300ffffff7f08000300ff0f000008000100475a000014000580080001006574680007000100696200002c0007800c000300ff01000000000000080002000700000008000100010100000c0004002000000000000000"], 0xf8}, 0x1, 0x0, 0x0, 0x10}, 0x0) sendmsg$TIPC_NL_BEARER_GET(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000180)={0x7c, r3, 0x0, 0x70bd2c, 0x25dfdbfb, {}, [@TIPC_NLA_LINK={0x68, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_PRIO={0x8}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xffff3579}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}]}]}, 0x7c}, 0x1, 0x0, 0x0, 0x20000000}, 0x840) r4 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) sendmsg$TIPC_NL_PEER_REMOVE(r6, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x5c, 0x0, 0x10, 0x70bd2b, 0x25dfdbfb, {}, [@TIPC_NLA_NET={0x3c, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x893}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0xffffffff}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x1}, @TIPC_NLA_NET_NODEID_W1={0xc}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x2}]}, @TIPC_NLA_MON={0xc, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x20}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x20008090}, 0x800) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r7 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$sock_inet_SIOCGIFPFLAGS(r2, 0x8935, &(0x7f0000000000)={'veth1_to_hsr\x00', 0x5}) r8 = socket$inet6(0xa, 0x1000000000002, 0x0) r9 = socket$inet(0x2, 0x1, 0x0) connect$inet(r9, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r9, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r9, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r8, r9) ioctl$FS_IOC_MEASURE_VERITY(r8, 0xc0046686, &(0x7f0000000340)={0x3, 0x53, "bc11ebfd30fe8d937b93d82c162c09cdcb153afa095eaea95164e4e72689a1a1e9fca0f2a1c3405077b48e3d5c06917da83a16e2ffa71d73593d5d33b645a85113a324a6ed7b12b0e963c7862adce59ca513b8"}) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r7, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0x7]}) ioctl$KVM_RUN(r7, 0xae80, 0x0) syz_init_net_socket$nfc_raw(0x27, 0x3, 0x0) ioctl$KVM_RUN(r7, 0xae80, 0x0) [ 1417.931408] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0xdbce5c60) [ 1417.947328] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 1th superblock [ 1417.958343] cgroup: cgroup2: unknown option "º" [ 1417.966329] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0) [ 1417.974505] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 2th superblock [ 1417.982916] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0xdbce5c60) [ 1417.991364] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 1th superblock [ 1417.999451] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0) [ 1418.007437] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 2th superblock [ 1418.017856] Mem-Info: [ 1418.022153] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0xdbce5c60) 06:49:22 executing program 4: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcsa\x00', 0x501302, 0x0) ioctl$VIDIOC_S_PARM(0xffffffffffffffff, 0xc0cc5616, &(0x7f0000000240)={0x1, @capture={0x0, 0x0, {0x3}, 0x0, 0x1}}) r1 = dup(r0) socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$GIO_UNISCRNMAP(0xffffffffffffffff, 0x4b69, &(0x7f0000000140)=""/148) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000200)=@sr0='/dev/sr0\x00', &(0x7f0000000340)='./file0\x00', &(0x7f0000000380)='f2fs\x00', 0x4000, 0x0) setsockopt$inet_sctp_SCTP_EVENTS(0xffffffffffffffff, 0x84, 0xb, &(0x7f0000000000)={0x81, 0x17, 0x3, 0x4, 0x0, 0x81, 0x1, 0xe1, 0x5, 0x40, 0x20, 0x8b, 0x3, 0x7f}, 0xe) 06:49:22 executing program 3: syz_mount_image$reiserfs(&(0x7f0000000000)='reiserfs\x00', &(0x7f0000000040)='./file0\x00', 0x1d8a, 0x9, &(0x7f00000006c0)=[{&(0x7f0000000080)="67d5176fcceb544bf99e462e139bf874c721d0cd27b0cb7783a5b8092f8c914d2750086d99edb1", 0x27, 0xdf}, {&(0x7f0000000100)="0cab7aece87b354f563d16f7fe29462366cc41260797e84f0efedb30ab30359b6b6dac0fe51c760c4ce6213f395e2c4bdde4319eb53626e2e1c1e8199a1b12945731c067fb7f18f0e4353f7fab3f9a9608a5f612dc5f043069b72d38e8fd266423f43ab02791fd1a031308d6a4f013c7b71f3fe01429323dc66c481a44b5496dd83b315419897288c5f04e98cc321cdc6617ecb0f8b4d752554c88d02535329d57b7805f157a11bf3ac894bacdc3f64cd75f9f62685b4f4078ff28d3a883895f0876cf9d45841d1008e3dcc1e84535fd550abab2e88f04b4c913ab8a6fa7faa5933d", 0xe2, 0x7}, {&(0x7f0000000200)="08867dda47cc7ff8b12f97676dc45707a6c38789840c7d189dd58a1a8edb92f5aa603e6f3aafbabd4c66c6f0e1f8040086f1dd9765ed8de5d9a9c34f969d2af11114c455f6165716945aec3526ae24", 0x4f, 0x8}, {&(0x7f0000000280)="6b30e7db5c6afc3c9a087efb58a100a631047b3820729f", 0x17, 0xff}, {&(0x7f00000002c0)="7c415b397d47aad28bca91775bbdc68f0d14b7d7a970f64ff42d8b4ac26f9fb0f0a04bb6b6180071e480b3332180ca03ed85b35babc56fdcc280ad224b99eeecba529cf2a8f61b378c673761fef5f17c782e4d878913f970c6554a7f79d7b4ec92ea57a0070c8afda5c3bc50089ed0214fbc0c91fd29baa813b511cc5272f01092220a98ac953e176f6686245ed42c8e421134529ea2977b3c259c39a970ca4cf7432b191ea0b9c02bdf4a0d3422649325b71acfaeb686687a1938353b364c5840", 0xc1, 0x6}, {&(0x7f00000003c0)="62359b2ec58d5562fd4976aea3e196c9374028604e6bdd79e761829c019e32ca771fe3a075c01c5a1fd9c9d48cc1a23b12dc4ff9123aaeac201eecf76e6fc9dd54d4346fa2b3caf703a249f322cd55a9adbc76c1adf628333b1dfad34db5bddd713466ea770e4d84e28e5681dd99f9c259fe1bce46b5d7fcc4558033749ba9a41b412bedbce2a294e3cc2ffcf7d95fd264c54f35886319e6b72956de85a3170d799dfa3b93408ed32c73fe80d344d3f745bf08729976770b53a3d5960385efaaf6ac8143e92ed9", 0xc7, 0x100}, {&(0x7f00000004c0)="9f408cbb57fb2ce40fa127ae645ddd5f0ff6f36030f5482aec5aab87685f18b8e9ff87cd97932adb63c3fd9eecbfbe6a443c027e6a398c5612f3bbe8f88ab92773eca542296a20924b4ec10ad488319f4fb51a702ccd638fa97ec8ef6159a5d88dffa967acf3d8ba2faaf458b01fb74c9c504c8aa8ccf8fb13e70ecef073704fcf316b995c2f98a4a0c6f2", 0x8b, 0xe2}, {&(0x7f0000000580)="d8050cbc8e285221827274d4918418d9df8025b8b4c969b2ecdad693cbd8f97370475b0800408ea0a514d986da619ebb51e8a41ed63f06ac43a1abeb9df53caaf24ef226fb6e00ff4f7bf30b3a04e7bcab33f17f74772ab598d4b5b777f9f329f26479649006ff805b7361b12b", 0x6d, 0x1}, {&(0x7f0000000600)="5a9a35c3b48b3576f2d7a18ab14978a4135c28b0c25dcea4b55a766c37e4e2db1544fbb394f35dbe7ca64f906c67b57a977054fac7a767d21f560854f05b4a1e781d8b677e36a1288efa11031756f962a47fa160ad6c036dc4ecefc4e0f71a5ad2d598e7901b1ad1b8d70cdd8a1187fe714979a30e36883166d48688c1f42439cd6cdbe4bd043bd3856a603027b19295ed1775", 0x93, 0xffffffffffff9cdf}], 0x20, &(0x7f0000000880)=ANY=[@ANYBLOB="7573726a71756f74612c6a6465763d2e2f66696c65302c6a71666d743d684e736f6c644b59a714b7e9a01a822e2c7365636c6162656c2c00"]) pipe2(&(0x7f0000000800)={0xffffffffffffffff}, 0x80800) setsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000840)=0xc, 0x4) openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) [ 1418.029898] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 1th superblock [ 1418.030854] active_anon:443397 inactive_anon:211 isolated_anon:0 [ 1418.030854] active_file:3289 inactive_file:7236 isolated_file:0 [ 1418.030854] unevictable:0 dirty:188 writeback:0 unstable:0 [ 1418.030854] slab_reclaimable:17296 slab_unreclaimable:151168 [ 1418.030854] mapped:58628 shmem:285 pagetables:34088 bounce:0 [ 1418.030854] free:852880 free_pcp:562 free_cma:0 [ 1418.104025] Node 0 active_anon:1616696kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208956kB dirty:4kB writeback:0kB shmem:1056kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 995328kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1418.174615] Node 1 active_anon:156964kB inactive_anon:76kB active_file:13116kB inactive_file:28948kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:25504kB dirty:856kB writeback:0kB shmem:84kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1418.211278] Node 0 DMA free:10480kB min:216kB low:268kB high:320kB active_anon:4508kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:96kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1418.246815] lowmem_reserve[]: 0 2569 2569 2569 2569 06:49:22 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x501a03, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$BLKDISCARD(r4, 0x1277, &(0x7f0000000040)) r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) 06:49:22 executing program 4: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcsa\x00', 0x501302, 0x0) ioctl$VIDIOC_S_PARM(0xffffffffffffffff, 0xc0cc5616, &(0x7f0000000240)={0x1, @capture={0x0, 0x0, {0x3}, 0x0, 0x1}}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$GIO_UNISCRNMAP(0xffffffffffffffff, 0x4b69, &(0x7f0000000140)=""/148) sendmsg$NFT_BATCH(r1, &(0x7f00000004c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000200)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_DELCHAIN={0xd0, 0x5, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0xa}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz0\x00'}, @NFTA_CHAIN_COUNTERS={0x1c, 0x8, 0x0, 0x1, [@NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0x1}, @NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0x10000}]}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz1\x00'}, @NFTA_CHAIN_HOOK={0x2c, 0x4, 0x0, 0x1, [@NFTA_HOOK_DEV={0x14, 0x3, 'team0\x00'}, @NFTA_HOOK_DEV={0x14, 0x3, 'geneve0\x00'}]}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x2}, @NFTA_CHAIN_FLAGS={0x8, 0xa, 0x1, 0x0, 0x2}, @NFTA_CHAIN_FLAGS={0x8, 0xa, 0x1, 0x0, 0x3}, @NFTA_CHAIN_COUNTERS={0x28, 0x8, 0x0, 0x1, [@NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x1}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x4}, @NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0x5}]}]}], {0x14}}, 0xf8}, 0x1, 0x0, 0x0, 0x1800}, 0x4) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f00000000c0)=ANY=[@ANYBLOB="2f6465762f6e736010aa0f816f2535ba69d8cb9ff4107b63353e269c8bcbd2a16f786458dd1a206df189c967d85a4cdc065ebe0ce0959f646813dc1500bb9d86efd9d23363bd65"], &(0x7f0000000340)='./file0\x00', &(0x7f0000000380)='f2fs\x00', 0x4000, 0x0) [ 1418.269141] Node 0 DMA32 free:40560kB min:36380kB low:45472kB high:54564kB active_anon:1612188kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB writepending:4kB present:3129332kB managed:2634344kB mlocked:0kB kernel_stack:20864kB pagetables:53608kB bounce:0kB free_pcp:1360kB local_pcp:664kB free_cma:0kB 06:49:22 executing program 3: r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) r2 = socket$inet(0x10, 0x2, 0x0) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r3) ioctl$sock_SIOCGIFVLAN_GET_VLAN_REALDEV_NAME_CMD(r3, 0x8982, &(0x7f0000000200)={0x8, 'caif0\x00', {'vlan0\x00'}, 0x3f}) ioctl$sock_ifreq(r2, 0x89f0, &(0x7f0000000180)={'ip6_vti0\x00', @ifru_flags}) r4 = dup2(r1, r2) r5 = socket$inet_sctp(0x2, 0x0, 0x84) ioctl$VT_SETMODE(r4, 0x5602, &(0x7f0000000140)={0x1, 0x97, 0xfff, 0x4, 0xad8}) getsockopt$inet_sctp_SCTP_MAX_BURST(r5, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f0000000280)={r6, 0x36, "ac6a82d2b5acd821e04d0478a474e9c2be3b387e029887626c7e3cf456672c29c8210efff7d4d24bdf54e0b4d427ae9a6873dd3c164e"}, 0x0) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r4, 0x84, 0x71, &(0x7f00000001c0)={r6, 0x7fffffff}, &(0x7f0000000100)=0x8) getsockopt$inet_sctp_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f0000000040)={r6, 0x9, 0x3ff, 0x5, 0x1, 0x1ff}, &(0x7f0000000080)=0x14) openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4000, 0x0) [ 1418.425471] lowmem_reserve[]: 0 0 0 0 0 [ 1418.440759] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1418.538159] lowmem_reserve[]: 0 0 0 0 0 [ 1418.542840] Node 1 Normal free:3359132kB min:53508kB low:66884kB high:80260kB active_anon:156964kB inactive_anon:76kB active_file:13116kB inactive_file:28948kB unevictable:0kB writepending:856kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:27968kB pagetables:82628kB bounce:0kB free_pcp:1172kB local_pcp:652kB free_cma:0kB [ 1418.578525] lowmem_reserve[]: 0 0 0 0 0 [ 1418.583141] Node 0 DMA: 16*4kB (UME) 18*8kB (UE) 14*16kB (UME) 16*32kB (UME) 17*64kB (U) 6*128kB (UE) 6*256kB (UE) 2*512kB (ME) 3*1024kB (UME) 1*2048kB (E) 0*4096kB = 10480kB [ 1418.601768] Node 0 DMA32: 358*4kB (UMEH) 446*8kB (UMEH) 800*16kB (UMEH) 398*32kB (UMEH) 160*64kB (UMEH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 40776kB [ 1418.617417] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1418.630296] Node 1 Normal: 119*4kB (UME) 153*8kB (UE) 65*16kB (UME) 46*32kB (UE) 62*64kB (UME) 25*128kB (UME) 18*256kB (UME) 47*512kB (UME) 15*1024kB (UME) 3*2048kB (UM) 805*4096kB (M) = 3358836kB [ 1418.648793] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1418.659770] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1418.670556] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1418.685090] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 1418.689259] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1418.703851] 10815 total pagecache pages [ 1418.708098] 0 pages in swap cache [ 1418.711740] Swap cache stats: add 0, delete 0, find 0/0 [ 1418.717407] Free swap = 0kB [ 1418.720539] Total swap = 0kB [ 1418.723639] 1965979 pages RAM [ 1418.727140] 0 pages HighMem/MovableOnly 06:49:22 executing program 1: r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vcsa\x00', 0x7cb740, 0x0) ioctl$NBD_DISCONNECT(r0, 0xab08) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r3 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/load\x00', 0x2, 0x0) write$selinux_load(r3, 0x0, 0x0) [ 1418.741556] 335868 pages reserved [ 1418.748240] 0 pages cma reserved [ 1418.757058] cgroup: cgroup2: unknown option "º" [ 1418.937493] syz-executor.1: vmalloc: allocation failure: 0 bytes, mode:0x14000c0(GFP_KERNEL), nodemask=(null) [ 1418.956215] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1418.969434] CPU: 0 PID: 10359 Comm: syz-executor.1 Not tainted 4.14.167-syzkaller #0 [ 1418.977590] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1418.986969] Call Trace: [ 1418.989578] dump_stack+0x142/0x197 [ 1418.993212] warn_alloc.cold+0x96/0x1af [ 1418.997178] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 1419.002031] ? lock_downgrade+0x740/0x740 [ 1419.006198] ? avc_has_perm+0x2df/0x4b0 [ 1419.010171] __vmalloc_node_range+0x3c3/0x6a0 [ 1419.014688] ? trace_hardirqs_on+0x10/0x10 [ 1419.018917] vmalloc+0x46/0x50 [ 1419.022100] ? sel_write_load+0x1a0/0x1050 [ 1419.026436] sel_write_load+0x1a0/0x1050 [ 1419.030514] ? save_trace+0x290/0x290 [ 1419.034327] ? sel_read_bool+0x240/0x240 [ 1419.038382] ? trace_hardirqs_on+0x10/0x10 [ 1419.042623] ? debug_smp_processor_id+0x1c/0x20 [ 1419.047290] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1419.052247] __vfs_write+0x105/0x6b0 [ 1419.056051] ? sel_read_bool+0x240/0x240 [ 1419.060119] ? kernel_read+0x120/0x120 [ 1419.064016] ? __lock_is_held+0xb6/0x140 [ 1419.068187] ? check_preemption_disabled+0x3c/0x250 [ 1419.073301] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1419.079012] ? rcu_read_lock_sched_held+0x110/0x130 [ 1419.084035] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 1419.088896] ? __sb_start_write+0x153/0x2f0 [ 1419.093218] vfs_write+0x198/0x500 [ 1419.096865] SyS_write+0xfd/0x230 [ 1419.100315] ? SyS_read+0x230/0x230 [ 1419.104158] ? do_syscall_64+0x53/0x640 [ 1419.108150] ? SyS_read+0x230/0x230 [ 1419.111779] do_syscall_64+0x1e8/0x640 [ 1419.115673] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1419.120524] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1419.126082] RIP: 0033:0x45b349 [ 1419.129282] RSP: 002b:00007f76bb2b4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1419.137000] RAX: ffffffffffffffda RBX: 00007f76bb2b56d4 RCX: 000000000045b349 [ 1419.144275] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005 [ 1419.151653] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1419.158932] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1419.166192] R13: 0000000000000cb1 R14: 00000000004cd905 R15: 000000000075bf2c [ 1419.175134] Mem-Info: [ 1419.177923] active_anon:443445 inactive_anon:210 isolated_anon:0 06:49:23 executing program 5: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000400)='/dev/zero\x00', 0x82600, 0x0) getsockopt$bt_rfcomm_RFCOMM_CONNINFO(r2, 0x12, 0x2, &(0x7f0000000440)=""/35, &(0x7f0000000480)=0x23) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) write$P9_RSTATFS(r2, &(0x7f0000000140)={0x43, 0x9, 0x2, {0x7, 0x5, 0x6, 0xfffffffffffffffb, 0x20, 0x0, 0xd40, 0x8, 0xb73}}, 0x43) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyprintk\x00', 0x0, 0x0) r7 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nvme-fabrics\x00', 0x40040, 0x0) ioctl$VT_ACTIVATE(r7, 0x5606, 0x20000000000001) mount(&(0x7f00000000c0)=ANY=[@ANYBLOB="5f68fffdd4d26ee2400dfddbb12f643ba8b97fd7f1d25800"], &(0x7f0000000340)='./file0\x00', &(0x7f0000000100)='reiserfs\x00', 0x0, 0x0) 06:49:23 executing program 4: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setxattr$security_evm(&(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)='security.evm\x00', &(0x7f00000003c0)=ANY=[@ANYBLOB="0411d009000000000000001200a8f78d4a97960277d0ee6e78defa92b3bb1c22a2e19260c150f76f7d24946650959ff40638f911b8e7aa1252263f7b6c56a1f70b70a6a2edea8829418dd46b1754dd69887c007fc40c36c72d5382cc8ff72a0033985c68257a904327e6ecbd6b80e376cc9d9d4a9e342c85f5b69374ad59e1473be8637967f219f2c3513f2e"], 0x3, 0x0) r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcsa\x00', 0x501302, 0x0) ioctl$VIDIOC_S_PARM(0xffffffffffffffff, 0xc0cc5616, &(0x7f0000000240)={0x1, @capture={0x0, 0x0, {0x3}, 0x0, 0x1}}) r2 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$GIO_UNISCRNMAP(0xffffffffffffffff, 0x4b69, &(0x7f0000000140)=""/148) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) ioctl$BLKGETSIZE64(r1, 0x80081272, &(0x7f0000000100)) mount(&(0x7f0000000200)=@nullb='/dev/nullb0\x00', &(0x7f0000000340)='./file0\x00', &(0x7f0000000380)='f2fs\x00', 0x4000, 0x0) 06:49:23 executing program 2: socket$inet_icmp_raw(0x2, 0x3, 0x1) r0 = socket$inet6(0xa, 0x3, 0x0) r1 = socket$inet(0x2, 0x1, 0x0) connect$inet(r1, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r1, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r1, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r0, r1) mkdir(&(0x7f0000000300)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='ramfs\x00', 0x0, 0x0) r2 = open(&(0x7f0000021000)='./file0\x00', 0x0, 0x0) fchdir(r2) perf_event_open(&(0x7f0000000280)={0x1, 0x70, 0x0, 0xfc, 0x0, 0x0, 0x0, 0x7f, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x9}, 0x0, 0x2, 0xffffffffffffffff, 0x0) r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0) r4 = fanotify_init(0x0, 0x0) r5 = inotify_init1(0x0) r6 = dup2(r5, 0xffffffffffffffff) close(r6) r7 = socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$nl80211(0x0) sendmsg$NL80211_CMD_GET_INTERFACE(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="14000000", @ANYRES16=r8, @ANYBLOB="68c8"], 0x14}}, 0x0) sendmsg$NL80211_CMD_SET_MPATH(r6, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[@ANYBLOB="1400000624105efeafe8002015583d85238cf9cd56775c83a99e5f00000000d2e3f6b000000000000000001a75909539ae2a7acb21f735c9d3cee36f9511b900000000000046074a697471cea90f519e0000dd00000000e2a3b816024b5ef74a2daf763c9485861d18686b1ab0198742b1e3c2103389ac", @ANYRES16=r8, @ANYBLOB="20002cbd7000fedbdf2516000000"], 0x14}, 0x1, 0x0, 0x0, 0x40048c4}, 0x0) fanotify_mark(r4, 0x2000000000000011, 0x2, r3, 0x0) ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(0xffffffffffffffff, 0xc01064bd, &(0x7f00000001c0)={&(0x7f0000000480)="e75c484774a676a771181d64f0499527199d9799ec005a00357b92b40f878090ac0e1a21c3e25e44c3f6d0a1f33034e335b6b730b7d54fb18b67b819be6c1e9e3a17fffb7a37740e8a1778288b9b85463c8344261feedb5a85f7e66223a81a414894c8db0656a163a9815cbbd51365461c6b2196d1f1ed9403453e2b479faa3cfabed1ecb0af42613f", 0x89, 0x2}) ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(0xffffffffffffffff, 0xc01064bd, &(0x7f0000000200)={&(0x7f0000000100)="904bae503d41020a137801a56e6794e0bd", 0x11, r9}) r10 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) write$P9_RREADLINK(r10, &(0x7f0000000540)=ANY=[@ANYBLOB="ffd9030000005b7213f6012f663000000000e0520000000000000001000080009289843264198517ac0de3c78757dab8679841439d6fd4c34b13d9d0f019d706545f8b40571f0ae25b408d573f"], 0x20) sendfile(r10, r10, &(0x7f0000000240), 0x7fff) r11 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r12 = dup(r11) ioctl$PERF_EVENT_IOC_ENABLE(r12, 0x8912, 0x400200) 06:49:23 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = socket$inet6(0xa, 0x1000000000002, 0x0) r5 = socket$inet(0x2, 0x1, 0x0) connect$inet(r5, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r5, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) r6 = socket$inet_sctp(0x2, 0x1, 0x84) connect$inet(r6, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r4, r5) ioctl$sock_inet_SIOCDARP(r5, 0x8953, &(0x7f0000000000)={{0x2, 0x4e22, @broadcast}, {0x1, @local}, 0x8, {0x2, 0x4e24, @initdev={0xac, 0x1e, 0x0, 0x0}}, 'veth0_vlan\x00'}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r7 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r8 = socket$inet6(0xa, 0x1000000000002, 0x0) r9 = socket$inet(0x2, 0x1, 0x0) connect$inet(r9, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r9, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r9, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r8, r9) r10 = getuid() setreuid(0xee00, r10) r11 = getuid() setreuid(0xee00, r11) r12 = socket$inet6(0xa, 0x1000000000002, 0x0) r13 = socket$inet(0x2, 0x1, 0x0) connect$inet(r13, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r13, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r13, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r12, r13) getsockopt$sock_cred(r13, 0x1, 0x11, &(0x7f00000001c0)={0x0, 0x0, 0x0}, &(0x7f00000002c0)=0xc) r15 = getgid() lstat(&(0x7f0000000300)='./file0\x00', &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r17 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0) fstat(r17, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) setregid(r18, 0x0) getresgid(&(0x7f00000003c0)=0x0, &(0x7f0000000400), &(0x7f0000000440)) fstat(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r21 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0) fstat(r21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) setregid(r22, 0x0) getgroups(0x5, &(0x7f0000000500)=[0xee00, 0x0, 0xffffffffffffffff, 0xee00, 0x0]) newfstatat(0xffffffffffffff9c, &(0x7f0000000540)='./file0\x00', &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x800) fsetxattr$system_posix_acl(r9, &(0x7f0000000180)='system.posix_acl_default\x00', &(0x7f0000000600)={{}, {0x1, 0x4}, [{0x2, 0x5, r10}, {0x2, 0x2, r11}], {0x4, 0x4}, [{0x8, 0x2, r14}, {0x8, 0x0, 0xffffffffffffffff}, {0x8, 0x6, r15}, {0x8, 0x5, r16}, {0x8, 0x8fb8bf9ac8f90c71, r18}, {0x8, 0x2, r19}, {0x8, 0x6, r20}, {0x8, 0x6, r22}, {0x8, 0x2, r23}, {0x8, 0x3, r24}], {0x10, 0x2}, {0x20, 0x4}}, 0x84, 0x2) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r7, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x405, 0x0, 0x0, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r7, 0xae80, 0x0) ioctl$KVM_RUN(r7, 0xae80, 0x0) [ 1419.177923] active_file:3291 inactive_file:7239 isolated_file:0 [ 1419.177923] unevictable:0 dirty:135 writeback:0 unstable:0 [ 1419.177923] slab_reclaimable:17271 slab_unreclaimable:151468 [ 1419.177923] mapped:58631 shmem:285 pagetables:34125 bounce:0 [ 1419.177923] free:852419 free_pcp:514 free_cma:0 [ 1419.218956] Node 0 active_anon:1616696kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208956kB dirty:4kB writeback:0kB shmem:1056kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 995328kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1419.261605] Node 1 active_anon:157384kB inactive_anon:80kB active_file:13124kB inactive_file:28964kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:25608kB dirty:668kB writeback:0kB shmem:84kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no 06:49:23 executing program 4: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcsa\x00', 0x501302, 0x0) ioctl$VIDIOC_S_PARM(0xffffffffffffffff, 0xc0cc5616, &(0x7f0000000240)={0x1, @capture={0x0, 0x0, {0x3}, 0x0, 0x1}}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$key(0xf, 0x3, 0x2) close(r2) ioctl$GIO_UNISCRNMAP(0xffffffffffffffff, 0x4b69, &(0x7f0000000140)=""/148) r3 = gettid() tkill(r3, 0x1000000000013) migrate_pages(r3, 0x3, &(0x7f0000000000)=0xe823, &(0x7f00000000c0)=0x2) clone(0x6fa828432f1aa29d, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000200)=@nullb='/dev/nullb0\x00', &(0x7f0000000340)='./file0\x00', &(0x7f0000000380)='f2fs\x00', 0x4000, 0x0) 06:49:23 executing program 3: openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x4200, 0x0) r0 = getpgid(0xffffffffffffffff) syz_open_procfs(r0, &(0x7f0000000080)='net/ipv6_route\x00') pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_bt_hidp_HIDPCONNDEL(r1, 0x400448c9, &(0x7f0000000040)={@any, 0x401}) [ 1419.388299] Node 0 DMA free:10480kB min:216kB low:268kB high:320kB active_anon:4508kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:96kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1419.531868] lowmem_reserve[]: 0 2569 2569 2569 2569 06:49:23 executing program 0 (fault-call:5 fault-nth:0): mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mount(&(0x7f0000000080)=@nbd={'/dev/nbd', 0x0}, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000000)='ocfs2\x00', 0x0, 0x0) [ 1419.551822] Node 0 DMA32 free:40056kB min:36380kB low:45472kB high:54564kB active_anon:1612188kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB writepending:4kB present:3129332kB managed:2634344kB mlocked:0kB kernel_stack:20864kB pagetables:53608kB bounce:0kB free_pcp:1284kB local_pcp:708kB free_cma:0kB [ 1419.626089] audit: type=1804 audit(1580107763.608:12339): pid=10375 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op="invalid_pcr" cause="ToMToU" comm="syz-executor.2" name="/root/syzkaller-testdir286147970/syzkaller.AhLTmR/1923/file0/file0" dev="ramfs" ino=259229 res=1 [ 1419.664215] lowmem_reserve[]: 0 0 0 0 0 [ 1419.670503] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1419.705291] lowmem_reserve[]: 0 0 0 0 0 06:49:23 executing program 3 (fault-call:4 fault-nth:0): mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mount(&(0x7f0000000080)=@nbd={'/dev/nbd', 0x0}, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000000)='ocfs2\x00', 0x0, 0x0) [ 1419.709652] Node 1 Normal free:3358344kB min:53508kB low:66884kB high:80260kB active_anon:157484kB inactive_anon:80kB active_file:13124kB inactive_file:29064kB unevictable:0kB writepending:864kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:28224kB pagetables:82936kB bounce:0kB free_pcp:1120kB local_pcp:408kB free_cma:0kB [ 1419.743582] FAULT_INJECTION: forcing a failure. [ 1419.743582] name failslab, interval 1, probability 0, space 0, times 0 [ 1419.766244] CPU: 1 PID: 10404 Comm: syz-executor.0 Not tainted 4.14.167-syzkaller #0 06:49:23 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = socket$inet_udp(0x2, 0x2, 0x0) epoll_ctl$EPOLL_CTL_DEL(r3, 0x2, r4) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) setsockopt$pppl2tp_PPPOL2TP_SO_LNSMODE(r3, 0x111, 0x4, 0x0, 0x4) setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, 0x0, 0x0) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r6 = dup(r5) r7 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r8 = dup(r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) openat$cgroup(r6, &(0x7f00000007c0)='syz1\x00', 0x200002, 0x0) r9 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r10 = dup(r9) ioctl$PERF_EVENT_IOC_ENABLE(r10, 0x8912, 0x400200) sendmsg$nl_netfilter(r10, &(0x7f0000000780)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000740)={&(0x7f0000000800)=ANY=[@ANYBLOB="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"], 0x2e8}, 0x1, 0x0, 0x0, 0x40000}, 0x1000) ioctl$VIDIOC_QUERYBUF(r8, 0xc0585609, &(0x7f0000000240)={0x3ff, 0x3, 0x4, 0x80000, 0x1f, {0x0, 0x2710}, {0x2, 0x2, 0xf7, 0x80, 0x7, 0x8, "8fe38605"}, 0x5, 0x3, @planes=&(0x7f0000000200)={0x5, 0x5, @userptr=0x81, 0x4}, 0x1, 0x0, 0xffffffffffffffff}) getsockopt$bt_sco_SCO_OPTIONS(r11, 0x11, 0x1, &(0x7f0000000300)=""/166, &(0x7f00000003c0)=0xa6) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) ioctl$DRM_IOCTL_MODE_GETGAMMA(r6, 0xc02064a4, &(0x7f00000001c0)={0x1, 0x3, &(0x7f0000000080)=[0x2, 0x8, 0x1], &(0x7f00000000c0)=[0x8000, 0x4, 0x8001, 0x6, 0xe9, 0x9], &(0x7f0000000100)=[0x3f, 0x4, 0x5, 0x6, 0x3, 0x3, 0x0, 0x1, 0x3, 0x0]}) [ 1419.774727] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1419.784270] Call Trace: [ 1419.786906] dump_stack+0x142/0x197 [ 1419.790562] ? vprintk_func+0x65/0x159 [ 1419.791568] lowmem_reserve[]: 0 [ 1419.794502] should_fail.cold+0x10f/0x159 [ 1419.794523] should_failslab+0xdb/0x130 [ 1419.797873] 0 [ 1419.802373] __kmalloc_track_caller+0x2ec/0x790 [ 1419.802385] ? __sb_end_write+0xc1/0x100 [ 1419.802397] ? strndup_user+0x62/0xf0 [ 1419.802408] memdup_user+0x26/0xa0 [ 1419.802418] strndup_user+0x62/0xf0 [ 1419.802429] SyS_mount+0x3c/0x120 [ 1419.802437] ? copy_mnt_ns+0x8c0/0x8c0 [ 1419.802449] do_syscall_64+0x1e8/0x640 [ 1419.802457] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1419.802473] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1419.802481] RIP: 0033:0x45b349 [ 1419.802489] RSP: 002b:00007fbd2ef8cc78 EFLAGS: 00000246 [ 1419.806655] 0 [ 1419.808470] ORIG_RAX: 00000000000000a5 [ 1419.813307] 0 [ 1419.817340] RAX: ffffffffffffffda RBX: 00007fbd2ef8d6d4 RCX: 000000000045b349 [ 1419.817349] RDX: 0000000020000000 RSI: 00000000200000c0 RDI: 0000000020000080 [ 1419.821320] 0 [ 1419.824806] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1419.828416] Node 0 [ 1419.831864] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1419.831872] R13: 0000000000000744 R14: 00000000004c8bd8 R15: 0000000000000000 [ 1419.883380] FAULT_INJECTION: forcing a failure. [ 1419.883380] name failslab, interval 1, probability 0, space 0, times 0 [ 1419.884578] DMA: 06:49:23 executing program 3 (fault-call:4 fault-nth:1): mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mount(&(0x7f0000000080)=@nbd={'/dev/nbd', 0x0}, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000000)='ocfs2\x00', 0x0, 0x0) [ 1419.905472] CPU: 1 PID: 10409 Comm: syz-executor.3 Not tainted 4.14.167-syzkaller #0 [ 1419.910160] 16*4kB [ 1419.920507] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1419.920514] Call Trace: [ 1419.920536] dump_stack+0x142/0x197 [ 1419.920554] should_fail.cold+0x10f/0x159 [ 1419.920572] should_failslab+0xdb/0x130 [ 1419.920581] __kmalloc_track_caller+0x2ec/0x790 [ 1419.920592] ? __sb_end_write+0xc1/0x100 [ 1419.920604] ? strndup_user+0x62/0xf0 [ 1419.920619] memdup_user+0x26/0xa0 [ 1419.920630] strndup_user+0x62/0xf0 06:49:23 executing program 0: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) seccomp$SECCOMP_GET_NOTIF_SIZES(0x3, 0x0, &(0x7f0000000100)) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r0) r1 = syz_open_dev$media(&(0x7f0000000080)='/dev/media#\x00', 0x6, 0x1811c2) ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r1, 0xc0506617, &(0x7f0000000180)={{0x0, 0x0, @descriptor="f3dc86eabf00e648"}, 0xa6, [], "284aaa406a2aa3f7007e6bd653648e6720b049100b4f3d17392ec4e0e04c4c3bddb3dae0069857be0d50fe9715a543682d4a9848929cd648d107778c0f088bc34d9f313c8314468864a531da7140290103bc7414a1c29f4e02c8acf0529d697f08671f462eec5cb2283a1e7c10c50c319a0dab2801e0d065e244aac78d37e7117e3287735bc1f02cc8fd0655b02c17af8a53c2913de22510cf9e0e01368c4803600a44c9b0dc"}) mount(&(0x7f0000000140)=ANY=[@ANYBLOB="9f0800000000000000dfa4643000"], &(0x7f00000000c0)='./file0\x00', &(0x7f0000000000)='ocfs2\x00', 0x0, 0x0) [ 1419.920643] SyS_mount+0x3c/0x120 [ 1419.920650] ? copy_mnt_ns+0x8c0/0x8c0 [ 1419.920663] do_syscall_64+0x1e8/0x640 [ 1419.920674] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1419.920690] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1419.920699] RIP: 0033:0x45b349 [ 1419.920705] RSP: 002b:00007f214582cc78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1419.920717] RAX: ffffffffffffffda RBX: 00007f214582d6d4 RCX: 000000000045b349 [ 1419.920724] RDX: 0000000020000000 RSI: 00000000200000c0 RDI: 0000000020000080 [ 1419.920729] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1419.920735] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1419.920741] R13: 0000000000000744 R14: 00000000004c8bd8 R15: 0000000000000000 [ 1420.044431] FAULT_INJECTION: forcing a failure. [ 1420.044431] name failslab, interval 1, probability 0, space 0, times 0 [ 1420.085140] (UME) 18*8kB (UE) 14*16kB (UME) 16*32kB (UME) 17*64kB (U) 6*128kB (UE) 6*256kB (UE) 2*512kB (ME) 3*1024kB (UME) 1*2048kB (E) 0*4096kB = 10480kB [ 1420.105286] Node 0 DMA32: 358*4kB (UMEH) 378*8kB (UMEH) 719*16kB (UMEH) 398*32kB (UMEH) 160*64kB (UMEH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 38936kB [ 1420.115699] CPU: 1 PID: 10412 Comm: syz-executor.3 Not tainted 4.14.167-syzkaller #0 [ 1420.126788] Node 0 [ 1420.129146] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1420.129152] Call Trace: [ 1420.129171] dump_stack+0x142/0x197 [ 1420.129186] should_fail.cold+0x10f/0x159 [ 1420.129202] should_failslab+0xdb/0x130 [ 1420.131649] Normal: [ 1420.141928] __kmalloc_track_caller+0x2ec/0x790 [ 1420.141943] ? kasan_check_write+0x14/0x20 [ 1420.141952] ? strndup_user+0x62/0xf0 [ 1420.141963] memdup_user+0x26/0xa0 [ 1420.141972] strndup_user+0x62/0xf0 [ 1420.141984] SyS_mount+0x6b/0x120 [ 1420.141991] ? copy_mnt_ns+0x8c0/0x8c0 [ 1420.142003] do_syscall_64+0x1e8/0x640 [ 1420.142012] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1420.142030] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1420.142040] RIP: 0033:0x45b349 [ 1420.142045] RSP: 002b:00007f214582cc78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1420.142056] RAX: ffffffffffffffda RBX: 00007f214582d6d4 RCX: 000000000045b349 [ 1420.142062] RDX: 0000000020000000 RSI: 00000000200000c0 RDI: 0000000020000080 [ 1420.142068] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1420.142074] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1420.142080] R13: 0000000000000744 R14: 00000000004c8bd8 R15: 0000000000000001 [ 1420.238647] cgroup: cgroup2: unknown option "º" [ 1420.243355] 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1420.276214] cgroup: cgroup2: unknown option "º" [ 1420.297714] Node 1 Normal: 107*4kB (UME) 72*8kB (UE) 83*16kB (UME) 71*32kB (UME) 62*64kB (UME) 32*128kB (UME) 16*256kB (ME) 46*512kB (UME) 15*1024kB (UME) 3*2048kB (UM) 805*4096kB (M) = 3359100kB [ 1420.332556] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1420.350233] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1420.359836] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1420.376637] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1420.385908] 10860 total pagecache pages [ 1420.396733] 0 pages in swap cache [ 1420.400479] Swap cache stats: add 0, delete 0, find 0/0 [ 1420.406371] Free swap = 0kB [ 1420.409533] Total swap = 0kB [ 1420.417868] 1965979 pages RAM [ 1420.421344] 0 pages HighMem/MovableOnly [ 1420.425521] 335868 pages reserved [ 1420.429117] 0 pages cma reserved [ 1420.437937] syz-executor.1: vmalloc: allocation failure: 0 bytes, mode:0x14000c0(GFP_KERNEL), nodemask=(null) [ 1420.448821] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1420.460981] CPU: 1 PID: 10361 Comm: syz-executor.1 Not tainted 4.14.167-syzkaller #0 [ 1420.469111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1420.478905] Call Trace: [ 1420.481588] dump_stack+0x142/0x197 [ 1420.485928] warn_alloc.cold+0x96/0x1af [ 1420.489916] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 1420.494964] ? lock_downgrade+0x740/0x740 [ 1420.499538] ? avc_has_perm+0x2df/0x4b0 [ 1420.503513] __vmalloc_node_range+0x3c3/0x6a0 [ 1420.508025] vmalloc+0x46/0x50 [ 1420.511221] ? sel_write_load+0x1a0/0x1050 [ 1420.515460] sel_write_load+0x1a0/0x1050 [ 1420.519617] ? save_trace+0x290/0x290 [ 1420.523556] ? sel_read_bool+0x240/0x240 [ 1420.527614] ? trace_hardirqs_on+0x10/0x10 [ 1420.531949] ? debug_smp_processor_id+0x1c/0x20 [ 1420.536718] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1420.541757] __vfs_write+0x105/0x6b0 [ 1420.545588] ? sel_read_bool+0x240/0x240 [ 1420.549641] ? kernel_read+0x120/0x120 [ 1420.553526] ? __lock_is_held+0xb6/0x140 [ 1420.557851] ? check_preemption_disabled+0x3c/0x250 [ 1420.563014] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1420.568472] ? rcu_read_lock_sched_held+0x110/0x130 [ 1420.573595] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 1420.578356] ? __sb_start_write+0x153/0x2f0 [ 1420.582866] vfs_write+0x198/0x500 [ 1420.586398] SyS_write+0xfd/0x230 [ 1420.590082] ? SyS_read+0x230/0x230 [ 1420.593923] ? do_syscall_64+0x53/0x640 [ 1420.598074] ? SyS_read+0x230/0x230 [ 1420.601701] do_syscall_64+0x1e8/0x640 [ 1420.606305] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1420.611148] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1420.616336] RIP: 0033:0x45b349 [ 1420.619509] RSP: 002b:00007f76bb293c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1420.627225] RAX: ffffffffffffffda RBX: 00007f76bb2946d4 RCX: 000000000045b349 [ 1420.634506] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004 [ 1420.642440] RBP: 000000000075bfc8 R08: 0000000000000000 R09: 0000000000000000 [ 1420.650171] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1420.657616] R13: 0000000000000cb1 R14: 00000000004cd905 R15: 000000000075bfd4 [ 1420.666585] Mem-Info: [ 1420.669233] active_anon:443438 inactive_anon:209 isolated_anon:0 [ 1420.669233] active_file:3309 inactive_file:7269 isolated_file:0 [ 1420.669233] unevictable:0 dirty:243 writeback:0 unstable:0 [ 1420.669233] slab_reclaimable:17268 slab_unreclaimable:151490 [ 1420.669233] mapped:58666 shmem:285 pagetables:34099 bounce:0 [ 1420.669233] free:852360 free_pcp:625 free_cma:0 [ 1420.703746] Node 0 active_anon:1616696kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208956kB dirty:4kB writeback:0kB shmem:1056kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 995328kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1420.731856] Node 1 active_anon:157056kB inactive_anon:72kB active_file:13188kB inactive_file:29068kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:25708kB dirty:980kB writeback:0kB shmem:84kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1420.759562] Node 0 DMA free:10480kB min:216kB low:268kB high:320kB active_anon:4508kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:96kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1420.787213] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 1420.792390] Node 0 DMA32 free:39280kB min:36380kB low:45472kB high:54564kB active_anon:1612188kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB writepending:4kB present:3129332kB managed:2634344kB mlocked:0kB kernel_stack:20864kB pagetables:53608kB bounce:0kB free_pcp:1284kB local_pcp:560kB free_cma:0kB [ 1420.822042] lowmem_reserve[]: 0 0 0 0 0 [ 1420.826088] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1420.851836] lowmem_reserve[]: 0 0 0 0 0 [ 1420.855846] Node 1 Normal free:3359680kB min:53508kB low:66884kB high:80260kB active_anon:157056kB inactive_anon:72kB active_file:13188kB inactive_file:29068kB unevictable:0kB writepending:988kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:27936kB pagetables:82752kB bounce:0kB free_pcp:1360kB local_pcp:688kB free_cma:0kB [ 1420.887980] lowmem_reserve[]: 0 0 0 0 0 [ 1420.892384] Node 0 DMA: 16*4kB (UME) 18*8kB (UE) 14*16kB (UME) 16*32kB (UME) 17*64kB (U) 6*128kB (UE) 6*256kB (UE) 2*512kB (ME) 3*1024kB (UME) 1*2048kB (E) 0*4096kB = 10480kB [ 1420.908953] Node 0 DMA32: 358*4kB (UMEH) 421*8kB (UMEH) 717*16kB (UMEH) 398*32kB (UMEH) 160*64kB (UMEH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 39248kB [ 1420.924556] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1420.935955] Node 1 Normal: 144*4kB (UME) 98*8kB (UME) 83*16kB (UE) 67*32kB (UE) 68*64kB (UME) 32*128kB (UME) 16*256kB (ME) 46*512kB (UME) 15*1024kB (UME) 3*2048kB (UM) 805*4096kB (M) = 3359712kB [ 1420.953991] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1420.963592] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1420.972236] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1420.981601] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1420.990419] 10867 total pagecache pages [ 1420.994665] 0 pages in swap cache [ 1420.998320] Swap cache stats: add 0, delete 0, find 0/0 06:49:25 executing program 1: socket$inet_icmp_raw(0x2, 0x3, 0x1) r0 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vsock\x00', 0x62181, 0x0) write$UHID_GET_REPORT_REPLY(r0, &(0x7f0000000080)={0xa, {0x4, 0x2, 0x7}}, 0xa) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/load\x00', 0x2, 0x0) write$selinux_load(r1, 0x0, 0x0) 06:49:25 executing program 3 (fault-call:4 fault-nth:2): mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mount(&(0x7f0000000080)=@nbd={'/dev/nbd', 0x0}, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000000)='ocfs2\x00', 0x0, 0x0) 06:49:25 executing program 0: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mount(&(0x7f0000000180)=ANY=[@ANYBLOB="2f6465762f6e626430001ef3a3b8a87121d4e696597e53eb3634"], &(0x7f00000000c0)='./file0\x00', &(0x7f0000000000)='ocfs2\x00', 0x0, 0x0) symlinkat(&(0x7f0000000100)='./file0\x00', r1, &(0x7f0000000140)='./file0\x00') 06:49:25 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) r2 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000080)='/dev/bsg\x00', 0x40a00, 0x0) ioctl$USBDEVFS_DISCSIGNAL(r2, 0x8010550e, &(0x7f0000000280)={0x80, &(0x7f0000000200)="423d4f81abb3ed77d1d7001cb35627ff9c102734f372cb718f5e5b133da175725b4bd0d5d05fe9467d4c26c879a4d629ba458eded840e259579cfb2b6789a8f06f32232d1d2b32a86bb6f94fc76a480202ae1a5a055bcfec11bfc5"}) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) ioctl$TIOCGSERIAL(r1, 0x541e, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=""/30}) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r3) getsockopt$IP_VS_SO_GET_SERVICE(r3, 0x0, 0x483, &(0x7f0000000300), &(0x7f0000000380)=0x68) pkey_alloc(0x0, 0x2) 06:49:25 executing program 5: mknod$loop(&(0x7f00000000c0)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000200)=@nullb='/dev/nullb0\x00', &(0x7f0000000340)='./file0\x00', &(0x7f0000000100)='reiserfs\x00', 0x0, 0x0) [ 1421.003848] Free swap = 0kB [ 1421.007099] Total swap = 0kB [ 1421.010187] 1965979 pages RAM [ 1421.013287] 0 pages HighMem/MovableOnly [ 1421.017347] 335868 pages reserved [ 1421.020853] 0 pages cma reserved [ 1421.064178] FAULT_INJECTION: forcing a failure. [ 1421.064178] name failslab, interval 1, probability 0, space 0, times 0 [ 1421.085419] block nbd0: Attempted send on invalid socket [ 1421.089555] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 1421.091388] print_req_error: I/O error, dev nbd0, sector 0 [ 1421.094254] (syz-executor.0,10444,1):ocfs2_get_sector:1824 ERROR: status = -5 [ 1421.109263] cgroup: cgroup2: unknown option "º" [ 1421.115525] CPU: 1 PID: 10445 Comm: syz-executor.3 Not tainted 4.14.167-syzkaller #0 [ 1421.128559] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1421.134017] syz-executor.1: [ 1421.138189] Call Trace: [ 1421.138217] dump_stack+0x142/0x197 [ 1421.138238] should_fail.cold+0x10f/0x159 [ 1421.138257] should_failslab+0xdb/0x130 [ 1421.138270] kmem_cache_alloc+0x2d7/0x780 [ 1421.138283] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1421.138295] ? __might_fault+0x110/0x1d0 [ 1421.138309] getname_flags+0xcb/0x580 [ 1421.148565] vmalloc: allocation failure: 0 bytes [ 1421.152086] ? __might_fault+0x110/0x1d0 [ 1421.152106] user_path_at_empty+0x2f/0x50 [ 1421.152121] do_mount+0x12b/0x27d0 [ 1421.152137] ? copy_mount_string+0x40/0x40 [ 1421.152147] ? _copy_from_user+0x99/0x110 [ 1421.152160] ? memdup_user+0x58/0xa0 [ 1421.152168] ? copy_mount_options+0x1fe/0x2f0 [ 1421.152180] SyS_mount+0xab/0x120 [ 1421.152187] ? copy_mnt_ns+0x8c0/0x8c0 [ 1421.152199] do_syscall_64+0x1e8/0x640 [ 1421.152208] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1421.152224] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1421.152231] RIP: 0033:0x45b349 [ 1421.152236] RSP: 002b:00007f214582cc78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1421.152250] RAX: ffffffffffffffda RBX: 00007f214582d6d4 RCX: 000000000045b349 [ 1421.159199] , mode:0x14000c0(GFP_KERNEL), nodemask= [ 1421.161125] RDX: 0000000020000000 RSI: 00000000200000c0 RDI: 0000000020000080 [ 1421.161133] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1421.161138] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1421.161145] R13: 0000000000000744 R14: 00000000004c8bd8 R15: 0000000000000002 [ 1421.161447] (syz-executor.0,10444,1):ocfs2_sb_probe:782 ERROR: status = -5 [ 1421.176426] (null) [ 1421.181296] (syz-executor.0,10444,1):ocfs2_fill_super:1023 ERROR: superblock probe failed! [ 1421.188113] syz-executor.1 cpuset= [ 1421.188747] (syz-executor.0,10444,1):ocfs2_fill_super:1217 ERROR: status = -5 [ 1421.198838] syz1 [ 1421.314913] cgroup: cgroup2: unknown option "º" [ 1421.347516] mems_allowed=0-1 [ 1421.351000] CPU: 0 PID: 10455 Comm: syz-executor.1 Not tainted 4.14.167-syzkaller #0 [ 1421.359089] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1421.368662] Call Trace: [ 1421.371269] dump_stack+0x142/0x197 [ 1421.375063] warn_alloc.cold+0x96/0x1af [ 1421.379339] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 1421.384197] ? lock_downgrade+0x740/0x740 [ 1421.388547] ? avc_has_perm+0x2df/0x4b0 [ 1421.392699] __vmalloc_node_range+0x3c3/0x6a0 [ 1421.395563] block nbd0: Attempted send on invalid socket [ 1421.397231] ? trace_hardirqs_on+0x10/0x10 [ 1421.397249] vmalloc+0x46/0x50 [ 1421.397261] ? sel_write_load+0x1a0/0x1050 [ 1421.402857] print_req_error: I/O error, dev nbd0, sector 0 [ 1421.407132] sel_write_load+0x1a0/0x1050 [ 1421.412004] (syz-executor.0,10444,1):ocfs2_get_sector:1824 ERROR: status = -5 [ 1421.414664] ? save_trace+0x290/0x290 [ 1421.414682] ? sel_read_bool+0x240/0x240 [ 1421.414695] ? trace_hardirqs_on+0x10/0x10 [ 1421.430958] (syz-executor.0,10444,1):ocfs2_sb_probe:782 ERROR: status = -5 [ 1421.432732] ? debug_smp_processor_id+0x1c/0x20 [ 1421.432746] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1421.432760] __vfs_write+0x105/0x6b0 [ 1421.432771] ? sel_read_bool+0x240/0x240 [ 1421.432783] ? kernel_read+0x120/0x120 [ 1421.439670] (syz-executor.0,10444,1):ocfs2_fill_super:1023 ERROR: superblock probe failed! [ 1421.441084] ? __lock_is_held+0xb6/0x140 [ 1421.441095] ? check_preemption_disabled+0x3c/0x250 [ 1421.441112] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1421.441126] ? rcu_read_lock_sched_held+0x110/0x130 [ 1421.441136] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 1421.441146] ? __sb_start_write+0x153/0x2f0 [ 1421.441158] vfs_write+0x198/0x500 [ 1421.446366] (syz-executor.0,10444,1):ocfs2_fill_super:1217 ERROR: status = -5 [ 1421.453069] SyS_write+0xfd/0x230 [ 1421.453081] ? SyS_read+0x230/0x230 [ 1421.453091] ? do_syscall_64+0x53/0x640 [ 1421.453102] ? SyS_read+0x230/0x230 [ 1421.453114] do_syscall_64+0x1e8/0x640 [ 1421.453123] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1421.453139] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1421.453148] RIP: 0033:0x45b349 [ 1421.453153] RSP: 002b:00007f76bb2b4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1421.453168] RAX: ffffffffffffffda RBX: 00007f76bb2b56d4 RCX: 000000000045b349 [ 1421.575317] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005 [ 1421.583218] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1421.590525] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1421.597990] R13: 0000000000000cb1 R14: 00000000004cd905 R15: 000000000075bf2c 06:49:26 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r2) ftruncate(r2, 0x8) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) 06:49:26 executing program 3 (fault-call:4 fault-nth:3): mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mount(&(0x7f0000000080)=@nbd={'/dev/nbd', 0x0}, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000000)='ocfs2\x00', 0x0, 0x0) 06:49:26 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$KVM_GET_SUPPORTED_CPUID(0xffffffffffffffff, 0xc008ae05, &(0x7f0000000480)=""/65) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/load\x00', 0x2, 0x0) write$selinux_load(r2, 0x0, 0x0) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) recvmsg$can_bcm(r4, &(0x7f0000000740)={&(0x7f0000000040)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @empty}}}, 0x80, &(0x7f0000000600)=[{&(0x7f00000000c0)=""/99, 0x63}, {&(0x7f0000000140)=""/213, 0xd5}, {&(0x7f0000000240)=""/162, 0xa2}, {&(0x7f0000000300)=""/114, 0x72}, {&(0x7f0000000380)=""/125, 0x7d}, {&(0x7f0000000400)=""/123, 0x7b}, {&(0x7f0000000780)=""/108, 0x6c}, {&(0x7f0000000500)=""/202, 0xca}], 0x8, &(0x7f0000000680)=""/153, 0x99}, 0x40000003) ioctl$sock_inet_tcp_SIOCOUTQNSD(r1, 0x894b, &(0x7f0000000800)) 06:49:26 executing program 0: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = openat$selinux_member(0xffffffffffffff9c, &(0x7f0000000240)='/selinux/member\x00', 0x2, 0x0) write$selinux_access(r1, &(0x7f0000000000)=ANY=[@ANYBLOB='system_u:object_r:wtmp t:s0sr/srin/ntpd 00000000000000000000\x00'], 0x40) r2 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vsock\x00', 0x8000, 0x0) r3 = gettid() tkill(r3, 0x1000000000013) ioctl$SCSI_IOCTL_SEND_COMMAND(r2, 0x1, &(0x7f0000000580)={0x34, 0x6, 0x0, "7631f9759af37efdb0b76992d91a33115a27a49e3b777790356681cc2937c01cd3c9577fdbe3f5124544dd359c09a536b2d74f86"}) setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000a80)=ANY=[@ANYBLOB="6d616e676c6500000000000000000000000000000000000000000000000000001f00000006000000c804000098000000980000009800000098000000680200003004000030040000300400003004000030040000060000005a460b8d6233195a00258ddf3af2cc06c48132e4714db1d377e62de3fe72ce8e9fdc8294e9adcae3e62116b432d752b8025eaae18e7d6f5826fc6f8f6bd1341e9953c96231d03bac637be637d640", @ANYPTR=&(0x7f0000000340)=ANY=[@ANYRES32=0x0], @ANYBLOB="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"], 0x3) ioctl$MON_IOCX_GETX(0xffffffffffffffff, 0x4018920a, &(0x7f0000000a40)={&(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @iso}, &(0x7f0000000940)=""/222, 0xde}) prctl$PR_GET_ENDIAN(0x13, &(0x7f0000000540)) sendmsg$NFT_MSG_GETRULE(r2, &(0x7f0000000300)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000002c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="40010000070a01020000000000000000070000070c0003400000000000000001080009400000000208000a400000000208000a4000000003dc000480d40001800b0001006f626a72656600028008000140000000390800034000000008080001400000000008000340000000000800024000000012080002400000000b080003400000000908000240000000000b00010072656a656374000034000280080001400000000108000140000000010800014000000002080001040000000205000200030000000800014000000001090001007866726d000000000c00028008000140000000120e000100627974656f72646572000000040071800800010066776400040001800900010073797a31000000000900010073797a31000000000900010073797a310000000008000a400000000200"/320], 0x140}, 0x1, 0x0, 0x0, 0x408c4}, 0x0) r4 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) syz_open_dev$video(&(0x7f0000000500)='/dev/video#\x00', 0x80, 0x0) ioctl$USBDEVFS_GET_SPEED(0xffffffffffffffff, 0x551f) mount(&(0x7f0000000080)=@nbd={'/dev/nbd', 0x0}, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000000)='ocfs2\x00', 0x0, 0x0) 06:49:26 executing program 5: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x2000, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x4000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000200)=@nullb='/dev/nullb0\x00', &(0x7f0000000340)='./file0\x00', &(0x7f0000000100)='reiserfs\x00', 0x0, 0x0) [ 1422.525446] syz-executor.1: vmalloc: allocation failure: 0 bytes, mode:0x14000c0(GFP_KERNEL), nodemask=(null) [ 1422.537550] cgroup: cgroup2: unknown option "º" [ 1422.554114] FAULT_INJECTION: forcing a failure. [ 1422.554114] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1422.566632] CPU: 0 PID: 10478 Comm: syz-executor.3 Not tainted 4.14.167-syzkaller #0 [ 1422.574547] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1422.583920] Call Trace: [ 1422.586555] dump_stack+0x142/0x197 [ 1422.590234] should_fail.cold+0x10f/0x159 [ 1422.594430] __alloc_pages_nodemask+0x1d6/0x7a0 [ 1422.599294] ? fs_reclaim_acquire+0x20/0x20 [ 1422.603633] ? __alloc_pages_slowpath+0x2930/0x2930 [ 1422.608680] cache_grow_begin+0x80/0x400 [ 1422.612753] kmem_cache_alloc+0x6a6/0x780 [ 1422.616917] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1422.621895] getname_flags+0xcb/0x580 [ 1422.625922] ? __might_fault+0x110/0x1d0 [ 1422.630146] user_path_at_empty+0x2f/0x50 [ 1422.634537] do_mount+0x12b/0x27d0 [ 1422.638485] ? copy_mount_string+0x40/0x40 [ 1422.642830] ? _copy_from_user+0x99/0x110 [ 1422.647091] ? memdup_user+0x58/0xa0 [ 1422.650867] ? copy_mount_options+0x1fe/0x2f0 [ 1422.655501] SyS_mount+0xab/0x120 [ 1422.658968] ? copy_mnt_ns+0x8c0/0x8c0 [ 1422.662880] do_syscall_64+0x1e8/0x640 [ 1422.666901] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1422.671897] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1422.677359] RIP: 0033:0x45b349 [ 1422.680857] RSP: 002b:00007f214582cc78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1422.688755] RAX: ffffffffffffffda RBX: 00007f214582d6d4 RCX: 000000000045b349 [ 1422.696065] RDX: 0000000020000000 RSI: 00000000200000c0 RDI: 0000000020000080 [ 1422.703557] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1422.710844] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1422.718597] R13: 0000000000000744 R14: 00000000004c8bd8 R15: 0000000000000003 06:49:26 executing program 2: syz_open_dev$dri(&(0x7f0000000080)='/dev/dri/card#\x00', 0x48, 0x40000) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) [ 1422.737793] cgroup: cgroup2: unknown option "º" [ 1422.738463] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1422.775696] CPU: 0 PID: 10476 Comm: syz-executor.1 Not tainted 4.14.167-syzkaller #0 [ 1422.783899] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1422.793640] Call Trace: [ 1422.796351] dump_stack+0x142/0x197 [ 1422.800545] warn_alloc.cold+0x96/0x1af [ 1422.804630] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 1422.809500] ? lock_downgrade+0x740/0x740 [ 1422.813680] ? avc_has_perm+0x2df/0x4b0 [ 1422.817678] __vmalloc_node_range+0x3c3/0x6a0 [ 1422.822373] ? trace_hardirqs_on+0x10/0x10 [ 1422.826699] vmalloc+0x46/0x50 [ 1422.829910] ? sel_write_load+0x1a0/0x1050 [ 1422.834214] sel_write_load+0x1a0/0x1050 [ 1422.838310] ? save_trace+0x290/0x290 [ 1422.842315] ? sel_read_bool+0x240/0x240 [ 1422.847309] ? trace_hardirqs_on+0x10/0x10 [ 1422.851007] cgroup: cgroup2: unknown option "º" [ 1422.851940] ? debug_smp_processor_id+0x1c/0x20 [ 1422.851954] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1422.851967] __vfs_write+0x105/0x6b0 [ 1422.869964] ? sel_read_bool+0x240/0x240 [ 1422.874077] ? kernel_read+0x120/0x120 [ 1422.878374] ? __lock_is_held+0xb6/0x140 [ 1422.882450] ? check_preemption_disabled+0x3c/0x250 06:49:26 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$sock_SIOCSIFVLAN_GET_VLAN_VID_CMD(r0, 0x8983, &(0x7f0000000080)) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000000140)={0x0, &(0x7f00000002c0)="ba", 0x1}) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, &(0x7f00000002c0)) r2 = shmget$private(0x0, 0x13000, 0x0, &(0x7f0000feb000/0x13000)=nil) shmat(r2, &(0x7f0000fea000/0x2000)=nil, 0x6ffd) shmctl$SHM_UNLOCK(r2, 0xc) [ 1422.887486] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1422.893183] ? rcu_read_lock_sched_held+0x110/0x130 [ 1422.898228] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 1422.903009] ? __sb_start_write+0x153/0x2f0 [ 1422.907555] vfs_write+0x198/0x500 [ 1422.911115] SyS_write+0xfd/0x230 [ 1422.914610] ? SyS_read+0x230/0x230 [ 1422.918334] ? do_syscall_64+0x53/0x640 [ 1422.922320] ? SyS_read+0x230/0x230 [ 1422.926069] do_syscall_64+0x1e8/0x640 [ 1422.930002] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1422.934870] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1422.940071] RIP: 0033:0x45b349 [ 1422.943270] RSP: 002b:00007f76bb2b4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1422.951001] RAX: ffffffffffffffda RBX: 00007f76bb2b56d4 RCX: 000000000045b349 [ 1422.958291] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005 [ 1422.961284] cgroup: cgroup2: unknown option "º" [ 1422.965570] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1422.965577] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1422.965582] R13: 0000000000000cb1 R14: 00000000004cd905 R15: 000000000075bf2c [ 1422.980806] block nbd3: Attempted send on invalid socket [ 1422.998537] print_req_error: I/O error, dev nbd3, sector 0 [ 1423.005525] (syz-executor.3,10478,0):ocfs2_get_sector:1824 ERROR: status = -5 [ 1423.014981] (syz-executor.3,10478,0):ocfs2_sb_probe:782 ERROR: status = -5 [ 1423.028929] (syz-executor.3,10478,0):ocfs2_fill_super:1023 ERROR: superblock probe failed! [ 1423.038071] (syz-executor.3,10478,0):ocfs2_fill_super:1217 ERROR: status = -5 [ 1423.049376] cgroup: cgroup2: unknown option "º" [ 1423.054749] warn_alloc_show_mem: 1 callbacks suppressed [ 1423.054753] Mem-Info: [ 1423.076448] active_anon:443574 inactive_anon:211 isolated_anon:0 [ 1423.076448] active_file:3310 inactive_file:7285 isolated_file:0 06:49:27 executing program 2: socket$inet_icmp_raw(0x2, 0x3, 0x1) r0 = socket$inet6(0xa, 0x3, 0x0) r1 = socket$inet(0x2, 0x1, 0x0) connect$inet(r1, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r1, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r1, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r0, r1) mkdir(&(0x7f0000000300)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='ramfs\x00', 0x0, 0x0) r2 = open(&(0x7f0000021000)='./file0\x00', 0x0, 0x0) fchdir(r2) perf_event_open(&(0x7f0000000280)={0x1, 0x70, 0x0, 0xfc, 0x0, 0x0, 0x0, 0x7f, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x9}, 0x0, 0x2, 0xffffffffffffffff, 0x0) r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0) r4 = fanotify_init(0x0, 0x0) r5 = inotify_init1(0x0) r6 = dup2(r5, 0xffffffffffffffff) close(r6) r7 = socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$nl80211(0x0) sendmsg$NL80211_CMD_GET_INTERFACE(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="14000000", @ANYRES16=r8, @ANYBLOB="68c8"], 0x14}}, 0x0) sendmsg$NL80211_CMD_SET_MPATH(r6, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[@ANYBLOB="1400000624105efeafe8002015583d85238cf9cd56775c83a99e5f00000000d2e3f6b000000000000000001a75909539ae2a7acb21f735c9d3cee36f9511b900000000000046074a697471cea90f519e0000dd00000000e2a3b816024b5ef74a2daf763c9485861d18686b1ab0198742b1e3c2103389ac", @ANYRES16=r8, @ANYBLOB="20002cbd7000fedbdf2516000000"], 0x14}, 0x1, 0x0, 0x0, 0x40048c4}, 0x0) fanotify_mark(r4, 0x2000000000000011, 0x2, r3, 0x0) ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(0xffffffffffffffff, 0xc01064bd, &(0x7f00000001c0)={&(0x7f0000000480)="e75c484774a676a771181d64f0499527199d9799ec005a00357b92b40f878090ac0e1a21c3e25e44c3f6d0a1f33034e335b6b730b7d54fb18b67b819be6c1e9e3a17fffb7a37740e8a1778288b9b85463c8344261feedb5a85f7e66223a81a414894c8db0656a163a9815cbbd51365461c6b2196d1f1ed9403453e2b479faa3cfabed1ecb0af42613f", 0x89, 0x2}) ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(0xffffffffffffffff, 0xc01064bd, &(0x7f0000000200)={&(0x7f0000000100)="904bae503d41020a137801a56e6794e0bd", 0x11, r9}) r10 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) write$P9_RREADLINK(r10, &(0x7f0000000540)=ANY=[@ANYBLOB="ffd9030000005b7213f6012f663000000000e0520000000000000001000080009289843264198517ac0de3c78757dab8679841439d6fd4c34b13d9d0f019d706545f8b40571f0ae25b408d573f"], 0x20) sendfile(r10, r10, &(0x7f0000000240), 0x7fff) r11 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r12 = dup(r11) ioctl$PERF_EVENT_IOC_ENABLE(r12, 0x8912, 0x400200) 06:49:27 executing program 3 (fault-call:4 fault-nth:4): mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mount(&(0x7f0000000080)=@nbd={'/dev/nbd', 0x0}, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000000)='ocfs2\x00', 0x0, 0x0) [ 1423.076448] unevictable:0 dirty:262 writeback:0 unstable:0 [ 1423.076448] slab_reclaimable:17229 slab_unreclaimable:151415 [ 1423.076448] mapped:58688 shmem:285 pagetables:34270 bounce:0 [ 1423.076448] free:851998 free_pcp:608 free_cma:0 [ 1423.159525] Node 0 active_anon:1616696kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208956kB dirty:4kB writeback:0kB shmem:1056kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 995328kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1423.198939] Node 1 active_anon:157552kB inactive_anon:76kB active_file:13196kB inactive_file:29152kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:25636kB dirty:1108kB writeback:0kB shmem:84kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1423.234637] Node 0 DMA free:10480kB min:216kB low:268kB high:320kB active_anon:4508kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:96kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1423.239350] FAULT_INJECTION: forcing a failure. [ 1423.239350] name failslab, interval 1, probability 0, space 0, times 0 [ 1423.268706] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 1423.309493] CPU: 1 PID: 10501 Comm: syz-executor.3 Not tainted 4.14.167-syzkaller #0 [ 1423.315550] Node 0 [ 1423.317554] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1423.317560] Call Trace: [ 1423.317580] dump_stack+0x142/0x197 [ 1423.317597] should_fail.cold+0x10f/0x159 [ 1423.317613] should_failslab+0xdb/0x130 [ 1423.317666] kmem_cache_alloc+0x2d7/0x780 [ 1423.326289] DMA32 free:38900kB min:36380kB low:45472kB high:54564kB active_anon:1612188kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB writepending:4kB present:3129332kB managed:2634344kB mlocked:0kB kernel_stack:20864kB pagetables:53608kB bounce:0kB free_pcp:1392kB local_pcp:716kB free_cma:0kB [ 1423.329276] ? lock_downgrade+0x740/0x740 [ 1423.329294] alloc_vfsmnt+0x28/0x7d0 [ 1423.329308] vfs_kern_mount.part.0+0x2a/0x3d0 [ 1423.329324] do_mount+0x417/0x27d0 [ 1423.355936] lowmem_reserve[]: [ 1423.376947] ? copy_mount_string+0x40/0x40 [ 1423.376963] ? memdup_user+0x58/0xa0 [ 1423.376972] ? copy_mount_options+0x1fe/0x2f0 [ 1423.376985] SyS_mount+0xab/0x120 [ 1423.376993] ? copy_mnt_ns+0x8c0/0x8c0 [ 1423.377006] do_syscall_64+0x1e8/0x640 [ 1423.377013] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1423.377029] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1423.377038] RIP: 0033:0x45b349 [ 1423.377043] RSP: 002b:00007f214582cc78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1423.377053] RAX: ffffffffffffffda RBX: 00007f214582d6d4 RCX: 000000000045b349 [ 1423.377058] RDX: 0000000020000000 RSI: 00000000200000c0 RDI: 0000000020000080 [ 1423.377070] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1423.377075] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1423.377081] R13: 0000000000000744 R14: 00000000004c8bd8 R15: 0000000000000004 06:49:27 executing program 3 (fault-call:4 fault-nth:5): mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mount(&(0x7f0000000080)=@nbd={'/dev/nbd', 0x0}, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000000)='ocfs2\x00', 0x0, 0x0) [ 1423.615876] 0 0 0 0 0 [ 1423.627544] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB 06:49:27 executing program 2 (fault-call:8 fault-nth:0): getsockopt$inet_sctp6_SCTP_AUTOCLOSE(0xffffffffffffffff, 0x84, 0x4, &(0x7f00000000c0), &(0x7f0000000100)=0x4) mknod$loop(&(0x7f0000000040)='./file0\x00', 0x6000, 0x1) mkdir(0x0, 0x0) mkdir(&(0x7f00000004c0)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=.']) chdir(&(0x7f00000002c0)='./bus\x00') mknod(&(0x7f00000000c0)='./file1\x00', 0x1000, 0x0) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000140)=@nullb='/dev/nullb0\x00', &(0x7f0000000180)='./file1\x00', &(0x7f00000001c0)='gfs2\x00', 0x2000000, &(0x7f0000000240)='xfs\x00') mount(&(0x7f0000000080)=@filename='./file0\x00', &(0x7f0000000000)='./file0\x00', &(0x7f0000000200)='xfs\x00', 0x0, 0x0) [ 1423.711544] lowmem_reserve[]: 0 0 0 0 0 [ 1423.720442] Node 1 Normal free:3359536kB min:53508kB low:66884kB high:80260kB active_anon:157652kB inactive_anon:76kB active_file:13196kB inactive_file:29252kB unevictable:0kB writepending:1108kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:28224kB pagetables:83196kB bounce:0kB free_pcp:988kB local_pcp:416kB free_cma:0kB [ 1423.731081] FAULT_INJECTION: forcing a failure. [ 1423.731081] name failslab, interval 1, probability 0, space 0, times 0 [ 1423.829916] lowmem_reserve[]: 0 0 0 0 0 [ 1423.838508] CPU: 1 PID: 10510 Comm: syz-executor.3 Not tainted 4.14.167-syzkaller #0 [ 1423.846576] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1423.848281] Node 0 [ 1423.856376] Call Trace: [ 1423.856399] dump_stack+0x142/0x197 [ 1423.856414] should_fail.cold+0x10f/0x159 [ 1423.856431] should_failslab+0xdb/0x130 [ 1423.856442] __kmalloc_track_caller+0x2ec/0x790 [ 1423.856458] ? kstrdup_const+0x48/0x60 [ 1423.856468] kstrdup+0x3a/0x70 [ 1423.856478] kstrdup_const+0x48/0x60 [ 1423.856487] alloc_vfsmnt+0xe5/0x7d0 [ 1423.856498] vfs_kern_mount.part.0+0x2a/0x3d0 [ 1423.856510] do_mount+0x417/0x27d0 [ 1423.856526] ? copy_mount_string+0x40/0x40 [ 1423.856538] ? memdup_user+0x58/0xa0 [ 1423.856546] ? copy_mount_options+0x1fe/0x2f0 [ 1423.856557] SyS_mount+0xab/0x120 [ 1423.856619] ? copy_mnt_ns+0x8c0/0x8c0 [ 1423.856643] do_syscall_64+0x1e8/0x640 [ 1423.874135] DMA: [ 1423.877880] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1423.877902] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1423.877911] RIP: 0033:0x45b349 [ 1423.877917] RSP: 002b:00007f214582cc78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1423.877930] RAX: ffffffffffffffda RBX: 00007f214582d6d4 RCX: 000000000045b349 [ 1423.877935] RDX: 0000000020000000 RSI: 00000000200000c0 RDI: 0000000020000080 [ 1423.877940] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1423.877949] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1423.896691] 16*4kB 06:49:28 executing program 3 (fault-call:4 fault-nth:6): mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mount(&(0x7f0000000080)=@nbd={'/dev/nbd', 0x0}, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000000)='ocfs2\x00', 0x0, 0x0) [ 1423.897056] R13: 0000000000000744 R14: 00000000004c8bd8 R15: 0000000000000005 [ 1424.006607] FAULT_INJECTION: forcing a failure. [ 1424.006607] name failslab, interval 1, probability 0, space 0, times 0 [ 1424.041033] CPU: 0 PID: 10514 Comm: syz-executor.2 Not tainted 4.14.167-syzkaller #0 [ 1424.049005] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1424.058416] Call Trace: [ 1424.061030] dump_stack+0x142/0x197 [ 1424.064696] should_fail.cold+0x10f/0x159 [ 1424.068875] should_failslab+0xdb/0x130 [ 1424.072882] __kmalloc_track_caller+0x2ec/0x790 [ 1424.078075] ? __sb_end_write+0xc1/0x100 [ 1424.082161] ? strndup_user+0x62/0xf0 [ 1424.085989] memdup_user+0x26/0xa0 [ 1424.089589] strndup_user+0x62/0xf0 [ 1424.093509] SyS_mount+0x3c/0x120 [ 1424.096985] ? copy_mnt_ns+0x8c0/0x8c0 [ 1424.100890] do_syscall_64+0x1e8/0x640 [ 1424.104804] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1424.109798] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1424.114997] RIP: 0033:0x45b349 [ 1424.118194] RSP: 002b:00007f9d77f7ac78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1424.125951] RAX: ffffffffffffffda RBX: 00007f9d77f7b6d4 RCX: 000000000045b349 [ 1424.133240] RDX: 00000000200001c0 RSI: 0000000020000180 RDI: 0000000020000140 [ 1424.140653] RBP: 000000000075bf20 R08: 0000000020000240 R09: 0000000000000000 [ 1424.148855] R10: 0000000002000000 R11: 0000000000000246 R12: 0000000000000003 [ 1424.156143] R13: 0000000000000744 R14: 00000000004c8bd8 R15: 0000000000000000 [ 1424.166645] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 1424.177625] (UME) 18*8kB (UE) 14*16kB (UME) 16*32kB (UME) 17*64kB (U) 6*128kB (UE) 6*256kB (UE) 2*512kB (ME) 3*1024kB (UME) 1*2048kB (E) 0*4096kB = 10480kB [ 1424.192468] Node 0 DMA32: 387*4kB (UMEH) 433*8kB (UMEH) 723*16kB (UMEH) 392*32kB (MEH) 160*64kB (UMEH) 4*128kB (M) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 39876kB [ 1424.208363] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1424.219501] Node 1 Normal: 7*4kB (UME) 3*8kB (UME) 2*16kB (E) 2*32kB (E) 53*64kB (UME) 53*128kB (UME) 23*256kB (UME) 46*512kB (UME) 15*1024kB (UME) 3*2048kB (UM) 805*4096kB (M) = 3358548kB [ 1424.236787] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1424.242391] FAULT_INJECTION: forcing a failure. [ 1424.242391] name failslab, interval 1, probability 0, space 0, times 0 [ 1424.247529] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1424.266478] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1424.266543] print_req_error: I/O error, dev loop5, sector 0 [ 1424.275478] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB 06:49:28 executing program 2: getsockopt$inet_sctp6_SCTP_AUTOCLOSE(0xffffffffffffffff, 0x84, 0x4, &(0x7f00000000c0), &(0x7f0000000100)=0x4) mknod$loop(&(0x7f0000000040)='./file0\x00', 0x6000, 0x1) mkdir(0x0, 0x0) mkdir(&(0x7f00000004c0)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=.']) chdir(&(0x7f00000002c0)='./bus\x00') mknod(&(0x7f00000000c0)='./file1\x00', 0x1000, 0x0) rt_sigtimedwait(&(0x7f0000000280)={[0x10001]}, &(0x7f0000000300), &(0x7f0000000380)={0x77359400}, 0x8) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000140)=@nullb='/dev/nullb0\x00', &(0x7f0000000180)='./file1\x00', &(0x7f00000001c0)='gfs2\x00', 0x2000000, &(0x7f0000000240)='xfs\x00') mount(&(0x7f0000000080)=@filename='./file0\x00', &(0x7f0000000000)='./file0\x00', &(0x7f0000000200)='xfs\x00', 0x0, 0x0) [ 1424.289827] 10923 total pagecache pages [ 1424.303252] 0 pages in swap cache [ 1424.317563] Swap cache stats: add 0, delete 0, find 0/0 [ 1424.340828] CPU: 1 PID: 10522 Comm: syz-executor.3 Not tainted 4.14.167-syzkaller #0 [ 1424.344965] Free swap = 0kB [ 1424.348787] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1424.348793] Call Trace: [ 1424.348814] dump_stack+0x142/0x197 [ 1424.348833] should_fail.cold+0x10f/0x159 [ 1424.348853] should_failslab+0xdb/0x130 [ 1424.348864] __kmalloc_track_caller+0x2ec/0x790 [ 1424.348880] ? kstrdup_const+0x48/0x60 [ 1424.375913] Total swap = 0kB [ 1424.380492] kstrdup+0x3a/0x70 [ 1424.380506] kstrdup_const+0x48/0x60 [ 1424.380517] alloc_vfsmnt+0xe5/0x7d0 [ 1424.380530] vfs_kern_mount.part.0+0x2a/0x3d0 [ 1424.380544] do_mount+0x417/0x27d0 [ 1424.380557] ? copy_mount_string+0x40/0x40 [ 1424.380569] ? memdup_user+0x58/0xa0 [ 1424.380577] ? copy_mount_options+0x1fe/0x2f0 [ 1424.380589] SyS_mount+0xab/0x120 [ 1424.380600] ? copy_mnt_ns+0x8c0/0x8c0 [ 1424.380614] do_syscall_64+0x1e8/0x640 [ 1424.380624] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1424.380642] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1424.380650] RIP: 0033:0x45b349 [ 1424.380658] RSP: 002b:00007f214582cc78 EFLAGS: 00000246 [ 1424.405552] 1965979 pages RAM [ 1424.406553] ORIG_RAX: 00000000000000a5 [ 1424.406561] RAX: ffffffffffffffda RBX: 00007f214582d6d4 RCX: 000000000045b349 [ 1424.406567] RDX: 0000000020000000 RSI: 00000000200000c0 RDI: 0000000020000080 [ 1424.406573] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1424.406579] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 06:49:28 executing program 3 (fault-call:4 fault-nth:7): mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mount(&(0x7f0000000080)=@nbd={'/dev/nbd', 0x0}, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000000)='ocfs2\x00', 0x0, 0x0) [ 1424.406585] R13: 0000000000000744 R14: 00000000004c8bd8 R15: 0000000000000006 [ 1424.599957] print_req_error: I/O error, dev loop5, sector 0 [ 1424.607115] XFS (loop5): SB validate failed with error -5. [ 1424.624838] print_req_error: I/O error, dev loop5, sector 0 [ 1424.672315] FAULT_INJECTION: forcing a failure. [ 1424.672315] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1424.673057] 0 pages HighMem/MovableOnly [ 1424.684333] CPU: 1 PID: 10542 Comm: syz-executor.3 Not tainted 4.14.167-syzkaller #0 [ 1424.684342] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1424.684347] Call Trace: [ 1424.684368] dump_stack+0x142/0x197 [ 1424.684387] should_fail.cold+0x10f/0x159 [ 1424.684403] __alloc_pages_nodemask+0x1d6/0x7a0 [ 1424.684414] ? fs_reclaim_acquire+0x20/0x20 [ 1424.684428] ? __alloc_pages_slowpath+0x2930/0x2930 [ 1424.684447] cache_grow_begin+0x80/0x400 [ 1424.684461] kmem_cache_alloc+0x6a6/0x780 [ 1424.684480] getname_kernel+0x53/0x350 [ 1424.684535] kern_path+0x20/0x40 [ 1424.684553] lookup_bdev.part.0+0x63/0x160 [ 1424.684562] ? blkdev_open+0x260/0x260 [ 1424.684575] blkdev_get_by_path+0x76/0xf0 [ 1424.684588] mount_bdev+0x50/0x370 [ 1424.684602] ? ocfs2_initialize_super.isra.0+0x3260/0x3260 [ 1424.684614] ocfs2_mount+0x35/0x40 [ 1424.684624] mount_fs+0x97/0x2a1 [ 1424.684638] vfs_kern_mount.part.0+0x5e/0x3d0 [ 1424.695256] 335868 pages reserved [ 1424.696524] do_mount+0x417/0x27d0 [ 1424.696544] ? copy_mount_string+0x40/0x40 [ 1424.696568] ? memdup_user+0x58/0xa0 [ 1424.707989] 0 pages cma reserved [ 1424.708614] ? copy_mount_options+0x1fe/0x2f0 [ 1424.708630] SyS_mount+0xab/0x120 [ 1424.708640] ? copy_mnt_ns+0x8c0/0x8c0 [ 1424.708652] do_syscall_64+0x1e8/0x640 [ 1424.708664] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1424.817622] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1424.822820] RIP: 0033:0x45b349 [ 1424.826009] RSP: 002b:00007f214582cc78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1424.833717] RAX: ffffffffffffffda RBX: 00007f214582d6d4 RCX: 000000000045b349 [ 1424.841003] RDX: 0000000020000000 RSI: 00000000200000c0 RDI: 0000000020000080 [ 1424.848278] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1424.855549] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1424.862837] R13: 0000000000000744 R14: 00000000004c8bd8 R15: 0000000000000007 06:49:28 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/policy\x00', 0x0, 0x0) ioctl$NS_GET_USERNS(r2, 0xb701, 0x0) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r3 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/load\x00', 0x2, 0x0) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) r6 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r6, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) r7 = socket$inet(0x10, 0x2, 0x0) ioctl$sock_ifreq(r7, 0x89f0, &(0x7f0000000180)={'ip6_vti0\x00', @ifru_flags}) r8 = dup2(r6, r7) socket$inet_sctp(0x2, 0x0, 0x84) r9 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r10 = dup(r9) ioctl$PERF_EVENT_IOC_ENABLE(r10, 0x8912, 0x400200) getsockopt$inet_sctp_SCTP_MAX_BURST(r10, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0}, &(0x7f0000000240)=0x35fd) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f0000000280)={r11, 0x36, "ac6a82d2b5acd821e04d0478a474e9c2be3b387e029887626c7e3cf456672c29c8210efff7d4d24bdf54e0b4d427ae9a6873dd3c164e"}, 0x0) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r8, 0x84, 0x71, &(0x7f00000001c0)={r11, 0xffffffff}, &(0x7f0000000340)=0x8) getsockopt$inet_sctp6_SCTP_ASSOCINFO(r5, 0x84, 0x1, &(0x7f0000000100)={r11, 0x8000, 0x1, 0x7b7d, 0x100, 0xfff}, &(0x7f0000000140)=0x14) write$selinux_load(r3, 0x0, 0x0) r12 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/btrfs-control\x00', 0x4000, 0x0) ioctl$BLKRAGET(r12, 0x1263, &(0x7f0000000080)) [ 1424.948814] block nbd3: Attempted send on invalid socket [ 1424.954584] print_req_error: I/O error, dev nbd3, sector 0 [ 1424.965493] (syz-executor.3,10542,1):ocfs2_get_sector:1824 ERROR: status = -5 [ 1424.973396] (syz-executor.3,10542,1):ocfs2_sb_probe:782 ERROR: status = -5 [ 1424.986011] (syz-executor.3,10542,1):ocfs2_fill_super:1023 ERROR: superblock probe failed! [ 1424.996177] (syz-executor.3,10542,1):ocfs2_fill_super:1217 ERROR: status = -5 [ 1425.083836] syz-executor.1: vmalloc: allocation failure: 0 bytes, mode:0x14000c0(GFP_KERNEL), nodemask=(null) [ 1425.099724] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1425.105876] CPU: 1 PID: 10551 Comm: syz-executor.1 Not tainted 4.14.167-syzkaller #0 [ 1425.113892] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1425.123365] Call Trace: [ 1425.125995] dump_stack+0x142/0x197 [ 1425.129654] warn_alloc.cold+0x96/0x1af [ 1425.133661] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 1425.138526] ? lock_downgrade+0x740/0x740 [ 1425.142744] ? avc_has_perm+0x2df/0x4b0 [ 1425.146852] __vmalloc_node_range+0x3c3/0x6a0 [ 1425.151367] ? trace_hardirqs_on+0x10/0x10 [ 1425.155626] vmalloc+0x46/0x50 [ 1425.158838] ? sel_write_load+0x1a0/0x1050 [ 1425.163087] sel_write_load+0x1a0/0x1050 [ 1425.167162] ? save_trace+0x290/0x290 [ 1425.171083] ? sel_read_bool+0x240/0x240 [ 1425.175162] ? trace_hardirqs_on+0x10/0x10 [ 1425.179530] ? debug_smp_processor_id+0x1c/0x20 [ 1425.184219] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1425.189181] __vfs_write+0x105/0x6b0 [ 1425.193063] ? sel_read_bool+0x240/0x240 [ 1425.197144] ? kernel_read+0x120/0x120 [ 1425.201086] ? __lock_is_held+0xb6/0x140 [ 1425.205181] ? check_preemption_disabled+0x3c/0x250 [ 1425.210221] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1425.215693] ? rcu_read_lock_sched_held+0x110/0x130 [ 1425.220732] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 1425.225508] ? __sb_start_write+0x153/0x2f0 [ 1425.229858] vfs_write+0x198/0x500 [ 1425.233420] SyS_write+0xfd/0x230 [ 1425.236892] ? SyS_read+0x230/0x230 [ 1425.240532] ? do_syscall_64+0x53/0x640 [ 1425.244528] ? SyS_read+0x230/0x230 [ 1425.248201] do_syscall_64+0x1e8/0x640 [ 1425.252124] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1425.256997] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1425.262213] RIP: 0033:0x45b349 [ 1425.265415] RSP: 002b:00007f76bb293c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1425.273157] RAX: ffffffffffffffda RBX: 00007f76bb2946d4 RCX: 000000000045b349 [ 1425.280440] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005 [ 1425.287725] RBP: 000000000075bfc8 R08: 0000000000000000 R09: 0000000000000000 [ 1425.295007] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1425.302907] R13: 0000000000000cb1 R14: 00000000004cd905 R15: 000000000075bfd4 [ 1425.320813] Mem-Info: [ 1425.323262] active_anon:443617 inactive_anon:211 isolated_anon:0 [ 1425.323262] active_file:3312 inactive_file:7336 isolated_file:0 [ 1425.323262] unevictable:0 dirty:307 writeback:0 unstable:0 [ 1425.323262] slab_reclaimable:17204 slab_unreclaimable:151391 [ 1425.323262] mapped:58676 shmem:285 pagetables:34226 bounce:0 [ 1425.323262] free:852072 free_pcp:594 free_cma:0 [ 1425.362272] Node 0 active_anon:1616696kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208956kB dirty:4kB writeback:0kB shmem:1056kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 995328kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1425.395798] Node 1 active_anon:157772kB inactive_anon:80kB active_file:13200kB inactive_file:29336kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:25748kB dirty:1224kB writeback:0kB shmem:84kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1425.458077] Node 0 DMA free:10480kB min:216kB low:268kB high:320kB active_anon:4508kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:96kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1425.485156] lowmem_reserve[]: 0 2569 2569 2569 2569 06:49:29 executing program 0: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) clone(0x37100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) io_setup(0x93, &(0x7f0000000100)) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mount(&(0x7f0000000080)=@nbd={'/dev/nbd', 0x0}, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000000)='ocfs2\x00', 0x0, 0x0) 06:49:29 executing program 2: getsockopt$inet_sctp6_SCTP_AUTOCLOSE(0xffffffffffffffff, 0x84, 0x4, &(0x7f00000000c0), &(0x7f0000000100)=0x4) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) getsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r1, 0x84, 0xc, &(0x7f0000000480), &(0x7f0000000500)=0x4) mknod$loop(&(0x7f0000000040)='./file0\x00', 0x6000, 0x1) mkdir(0x0, 0x0) mkdir(&(0x7f00000004c0)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=.']) chdir(&(0x7f00000002c0)='./bus\x00') mknod(&(0x7f00000000c0)='./file1\x00', 0x1000, 0x0) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) newfstatat(0xffffffffffffff9c, &(0x7f0000000380)='./bus\x00', &(0x7f00000003c0), 0x100) mount(&(0x7f0000000140)=@nullb='/dev/nullb0\x00', &(0x7f0000000180)='./file1\x00', &(0x7f00000001c0)='gfs2\x00', 0x2000000, &(0x7f0000000240)='xfs\x00') readlink(&(0x7f0000000280)='./file1\x00', &(0x7f0000000300)=""/109, 0x6d) mount(&(0x7f0000000440)=ANY=[@ANYBLOB="482f6669032a63efb88873246fbc50c9"], &(0x7f0000000000)='./file0\x00', &(0x7f0000000200)='xfs\x00', 0x0, 0x0) 06:49:29 executing program 3 (fault-call:4 fault-nth:8): mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mount(&(0x7f0000000080)=@nbd={'/dev/nbd', 0x0}, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000000)='ocfs2\x00', 0x0, 0x0) 06:49:29 executing program 5: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000000)=ANY=[@ANYBLOB="76b20c029ffd0afd2e775288ac9c16aecfe715be9d9616d798ce06a09e66bfbce15fa3e9935088"], &(0x7f0000000340)='./file0\x00', &(0x7f0000000100)='reiserfs\x00', 0x0, 0x0) [ 1425.490466] Node 0 DMA32 free:38996kB min:36380kB low:45472kB high:54564kB active_anon:1612188kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB writepending:4kB present:3129332kB managed:2634344kB mlocked:0kB kernel_stack:20864kB pagetables:53608kB bounce:0kB free_pcp:1480kB local_pcp:740kB free_cma:0kB [ 1425.530813] lowmem_reserve[]: 0 0 0 0 0 [ 1425.545044] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1425.582232] FAULT_INJECTION: forcing a failure. [ 1425.582232] name failslab, interval 1, probability 0, space 0, times 0 [ 1425.595614] CPU: 1 PID: 10560 Comm: syz-executor.3 Not tainted 4.14.167-syzkaller #0 [ 1425.603631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1425.613134] Call Trace: [ 1425.615752] dump_stack+0x142/0x197 [ 1425.619408] should_fail.cold+0x10f/0x159 [ 1425.623591] should_failslab+0xdb/0x130 [ 1425.627857] kmem_cache_alloc_trace+0x2e9/0x790 [ 1425.632559] nbd_alloc_config+0x40/0x150 [ 1425.636649] nbd_open+0x255/0x390 [ 1425.640137] ? nbd_alloc_config+0x150/0x150 [ 1425.644473] __blkdev_get+0x2c7/0x1120 [ 1425.648388] ? __blkdev_put+0x7f0/0x7f0 [ 1425.652139] gfs2: invalid mount option: xfs [ 1425.652497] ? do_raw_spin_unlock+0x174/0x260 [ 1425.661308] blkdev_get+0x43f/0x8e0 [ 1425.665134] ? dput.part.0+0x170/0x750 [ 1425.666942] gfs2: can't parse mount arguments [ 1425.669031] ? bd_may_claim+0xd0/0xd0 [ 1425.669043] ? path_put+0x50/0x70 [ 1425.669054] ? lookup_bdev.part.0+0xe1/0x160 [ 1425.669066] ? blkdev_open+0x260/0x260 [ 1425.689104] blkdev_get_by_path+0x94/0xf0 [ 1425.693279] mount_bdev+0x50/0x370 [ 1425.696862] ? ocfs2_initialize_super.isra.0+0x3260/0x3260 [ 1425.702654] ocfs2_mount+0x35/0x40 [ 1425.706219] mount_fs+0x97/0x2a1 [ 1425.706895] lowmem_reserve[]: [ 1425.709650] vfs_kern_mount.part.0+0x5e/0x3d0 [ 1425.709665] do_mount+0x417/0x27d0 [ 1425.709679] ? copy_mount_string+0x40/0x40 [ 1425.725191] ? memdup_user+0x58/0xa0 [ 1425.728920] ? copy_mount_options+0x1fe/0x2f0 [ 1425.732657] 0 0 [ 1425.733434] SyS_mount+0xab/0x120 [ 1425.733448] 0 [ 1425.735411] ? copy_mnt_ns+0x8c0/0x8c0 [ 1425.735426] do_syscall_64+0x1e8/0x640 [ 1425.735435] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1425.735489] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1425.735502] RIP: 0033:0x45b349 [ 1425.735507] RSP: 002b:00007f214582cc78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1425.735517] RAX: ffffffffffffffda RBX: 00007f214582d6d4 RCX: 000000000045b349 [ 1425.735522] RDX: 0000000020000000 RSI: 00000000200000c0 RDI: 0000000020000080 [ 1425.735528] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1425.735533] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1425.735538] R13: 0000000000000744 R14: 00000000004c8bd8 R15: 0000000000000008 06:49:29 executing program 3 (fault-call:4 fault-nth:9): mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mount(&(0x7f0000000080)=@nbd={'/dev/nbd', 0x0}, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000000)='ocfs2\x00', 0x0, 0x0) [ 1425.786524] gfs2: invalid mount option: xfs 06:49:29 executing program 2: getsockopt$inet_sctp6_SCTP_AUTOCLOSE(0xffffffffffffffff, 0x84, 0x4, &(0x7f00000000c0), &(0x7f0000000100)=0x4) mknod$loop(&(0x7f0000000040)='./file0\x00', 0x6000, 0x1) mkdir(0x0, 0x0) mkdir(&(0x7f00000004c0)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=.']) chdir(&(0x7f00000002c0)='./bus\x00') mknod(&(0x7f00000000c0)='./file1\x00', 0x1000, 0x0) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000140)=@filename='./file1\x00', &(0x7f0000000180)='./file1\x00', &(0x7f00000001c0)='gfs2\x00', 0x2800408, &(0x7f0000000240)='xfs\x00') mount(&(0x7f0000000080)=@filename='./file0\x00', &(0x7f0000000000)='./file0\x00', &(0x7f0000000200)='xfs\x00', 0x0, 0x0) [ 1425.858168] gfs2: can't parse mount arguments 06:49:30 executing program 2: getsockopt$inet_sctp6_SCTP_AUTOCLOSE(0xffffffffffffffff, 0x84, 0x4, &(0x7f00000000c0), &(0x7f0000000100)=0x4) mknod$loop(&(0x7f0000000040)='./file0\x00', 0x6000, 0x1) mkdir(0x0, 0x0) mkdir(&(0x7f00000004c0)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=.']) chdir(&(0x7f00000002c0)='./bus\x00') r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$bt_BT_SNDMTU(r1, 0x112, 0xc, &(0x7f0000000300)=0x1000, 0x2) mknod(&(0x7f00000000c0)='./file1\x00', 0x1000, 0x0) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000140)=@nullb='/dev/nullb0\x00', &(0x7f0000000180)='./file1\x00', &(0x7f00000001c0)='gfs2\x00', 0x2000000, &(0x7f0000000240)='xfs\x00') mount(&(0x7f0000000280)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000000)='./file0\x00', &(0x7f0000000200)='xfs\x00', 0x2208840, 0x0) [ 1425.978946] print_req_error: I/O error, dev loop5, sector 0 [ 1426.009574] 0 0 [ 1426.016456] FAULT_INJECTION: forcing a failure. [ 1426.016456] name failslab, interval 1, probability 0, space 0, times 0 [ 1426.023406] Node 1 [ 1426.040281] CPU: 0 PID: 10586 Comm: syz-executor.3 Not tainted 4.14.167-syzkaller #0 [ 1426.050574] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1426.059940] Call Trace: [ 1426.062913] dump_stack+0x142/0x197 [ 1426.063047] Normal free:3359912kB min:53508kB low:66884kB high:80260kB active_anon:158072kB inactive_anon:80kB active_file:13200kB inactive_file:29336kB unevictable:0kB writepending:1224kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:28416kB pagetables:83704kB bounce:0kB free_pcp:304kB local_pcp:140kB free_cma:0kB [ 1426.066562] should_fail.cold+0x10f/0x159 [ 1426.100326] should_failslab+0xdb/0x130 [ 1426.104316] __kmalloc+0x2f0/0x7a0 [ 1426.107899] ? __list_lru_init+0x6b/0x660 [ 1426.112070] __list_lru_init+0x6b/0x660 [ 1426.116071] sget_userns+0x4e0/0xc30 [ 1426.119799] ? ns_test_super+0x50/0x50 [ 1426.123703] ? set_bdev_super+0x120/0x120 [ 1426.127870] ? set_bdev_super+0x120/0x120 [ 1426.132022] ? ns_test_super+0x50/0x50 [ 1426.135918] sget+0xd6/0x120 [ 1426.138953] mount_bdev+0xd5/0x370 [ 1426.142509] ? ocfs2_initialize_super.isra.0+0x3260/0x3260 [ 1426.148182] ocfs2_mount+0x35/0x40 [ 1426.151742] mount_fs+0x97/0x2a1 [ 1426.155125] vfs_kern_mount.part.0+0x5e/0x3d0 [ 1426.159457] lowmem_reserve[]: 0 [ 1426.159629] do_mount+0x417/0x27d0 [ 1426.159631] 0 0 [ 1426.162993] ? copy_mount_string+0x40/0x40 [ 1426.163007] ? memdup_user+0x58/0xa0 [ 1426.163016] ? copy_mount_options+0x1fe/0x2f0 [ 1426.163030] SyS_mount+0xab/0x120 [ 1426.163039] ? copy_mnt_ns+0x8c0/0x8c0 [ 1426.163053] do_syscall_64+0x1e8/0x640 [ 1426.163063] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1426.163081] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1426.172250] 0 [ 1426.172824] RIP: 0033:0x45b349 [ 1426.172831] RSP: 002b:00007f214582cc78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1426.172844] RAX: ffffffffffffffda RBX: 00007f214582d6d4 RCX: 000000000045b349 [ 1426.172849] RDX: 0000000020000000 RSI: 00000000200000c0 RDI: 0000000020000080 [ 1426.172855] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1426.172862] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1426.185413] 0 [ 1426.186071] R13: 0000000000000744 R14: 00000000004c8bd8 R15: 0000000000000009 [ 1426.202823] gfs2: invalid mount option: xfs [ 1426.227121] block nbd0: Attempted send on invalid socket [ 1426.240879] print_req_error: I/O error, dev nbd0, sector 0 [ 1426.274711] (syz-executor.0,10594,0):ocfs2_get_sector:1824 ERROR: status = -5 [ 1426.274902] Node 0 [ 1426.282513] print_req_error: I/O error, dev loop5, sector 0 [ 1426.293427] XFS (loop5): SB validate failed with error -5. [ 1426.297524] DMA: 16*4kB (UME) 18*8kB (UE) 14*16kB (UME) 16*32kB (UME) 17*64kB (U) 6*128kB (UE) 6*256kB (UE) 2*512kB (ME) 3*1024kB (UME) 1*2048kB (E) 0*4096kB = 10480kB [ 1426.310269] (syz-executor.0,10594,0):ocfs2_sb_probe:782 ERROR: status = -5 [ 1426.334475] print_req_error: I/O error, dev loop5, sector 0 06:49:30 executing program 4: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcsa\x00', 0x501302, 0x0) ioctl$VIDIOC_S_PARM(0xffffffffffffffff, 0xc0cc5616, &(0x7f0000000240)={0x1, @capture={0x0, 0x0, {0x3}, 0x0, 0x1}}) r2 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x6df) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000000)={0x3, 0x6, 0x400, 0x9, 0x0}) r6 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r7 = dup(r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) read$snddsp(r7, &(0x7f0000000200)=""/53, 0x35) ioctl$DRM_IOCTL_MODE_DESTROY_DUMB(r4, 0xc00464b4, &(0x7f00000000c0)={r5}) ioctl$GIO_UNISCRNMAP(0xffffffffffffffff, 0x4b69, &(0x7f0000000140)=""/148) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f00000003c0)=@md0='/dev/md0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000380)='f2fs\x00', 0x4000, 0x0) 06:49:30 executing program 2: getsockopt$inet_sctp6_SCTP_AUTOCLOSE(0xffffffffffffffff, 0x84, 0x4, &(0x7f00000000c0), &(0x7f0000000100)=0x4) mknod$loop(&(0x7f0000000040)='./file0\x00', 0x6000, 0x1) mkdir(0x0, 0x0) mkdir(&(0x7f00000004c0)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=.']) chdir(&(0x7f00000002c0)='./bus\x00') mknod(&(0x7f00000000c0)='./file1\x00', 0x1000, 0x0) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000140)=@nullb='/dev/nullb0\x00', &(0x7f0000000180)='./file1\x00', &(0x7f00000001c0)='gfs2\x00', 0x2000000, &(0x7f0000000240)='xfs\x00') mount(&(0x7f0000000080)=@filename='./file0\x00', &(0x7f0000000000)='./file0\x00', &(0x7f0000000200)='xfs\x00', 0x0, 0x0) statfs(&(0x7f0000000280)='./bus\x00', &(0x7f0000000300)=""/110) [ 1426.349155] gfs2: can't parse mount arguments [ 1426.366749] Node 0 DMA32: 408*4kB (UMEH) 311*8kB (MEH) 703*16kB (MEH) 400*32kB (UMEH) 149*64kB (MEH) 5*128kB (M) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 38344kB [ 1426.386472] (syz-executor.0,10594,0):ocfs2_fill_super:1023 ERROR: superblock probe failed! [ 1426.430234] (syz-executor.0,10594,0):ocfs2_fill_super:1217 ERROR: status = -5 [ 1426.440689] block nbd0: Attempted send on invalid socket [ 1426.446194] print_req_error: I/O error, dev nbd0, sector 0 [ 1426.452095] (syz-executor.0,10601,0):ocfs2_get_sector:1824 ERROR: status = -5 [ 1426.459402] (syz-executor.0,10601,0):ocfs2_sb_probe:782 ERROR: status = -5 [ 1426.479527] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1426.497903] f2fs_msg: 22 callbacks suppressed [ 1426.497910] F2FS-fs (md0): Unable to read 1th superblock [ 1426.507338] (syz-executor.0,10601,0):ocfs2_fill_super:1023 ERROR: superblock probe failed! [ 1426.516906] F2FS-fs (md0): Unable to read 2th superblock [ 1426.527851] Node 1 Normal: 3*4kB (E) 1*8kB (E) 2*16kB (E) 2*32kB (E) 3*64kB (ME) 60*128kB (UME) 33*256kB (UME) 46*512kB (UME) 15*1024kB (UME) 3*2048kB (UM) 805*4096kB (M) = 3358772kB [ 1426.549639] F2FS-fs (md0): Unable to read 1th superblock [ 1426.553762] (syz-executor.0,10601,0):ocfs2_fill_super:1217 ERROR: status = -5 [ 1426.559677] F2FS-fs (md0): Unable to read 2th superblock [ 1426.576339] gfs2: invalid mount option: xfs 06:49:30 executing program 4: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcsa\x00', 0x501302, 0x0) ioctl$VIDIOC_S_PARM(0xffffffffffffffff, 0xc0cc5616, &(0x7f0000000240)={0x1, @capture={0x0, 0x0, {0x3}, 0x0, 0x1}}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$GIO_UNISCRNMAP(0xffffffffffffffff, 0x4b69, &(0x7f0000000140)=""/148) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000200)=@nullb='/dev/nullb0\x00', &(0x7f0000000000)='./file0\x00', &(0x7f0000000380)='befs\x00', 0x44014, 0x0) 06:49:30 executing program 0: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mount(&(0x7f0000000080)=ANY=[@ANYBLOB="2f6465762f6ea67162643000"], &(0x7f0000000140)='./file0\x00', &(0x7f0000000000)='ocfs2\x00', 0x0, 0x0) [ 1426.596197] gfs2: can't parse mount arguments [ 1426.603709] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1426.649344] gfs2: invalid mount option: xfs [ 1426.660336] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1426.669088] gfs2: can't parse mount arguments [ 1426.695148] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1426.720159] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1426.741870] 10944 total pagecache pages [ 1426.779300] 0 pages in swap cache [ 1426.790235] print_req_error: I/O error, dev loop5, sector 0 [ 1426.796523] XFS (loop5): SB validate failed with error -5. [ 1426.805285] Swap cache stats: add 0, delete 0, find 0/0 [ 1426.842566] Free swap = 0kB [ 1426.845856] print_req_error: I/O error, dev loop5, sector 0 [ 1426.852741] print_req_error: I/O error, dev loop5, sector 0 [ 1426.874596] Total swap = 0kB [ 1426.907608] 1965979 pages RAM [ 1426.926395] 0 pages HighMem/MovableOnly [ 1426.943484] 335868 pages reserved [ 1426.956440] 0 pages cma reserved [ 1426.970315] syz-executor.1: vmalloc: allocation failure: 0 bytes, mode:0x14000c0(GFP_KERNEL), nodemask=(null) [ 1426.981413] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1426.986852] CPU: 1 PID: 10566 Comm: syz-executor.1 Not tainted 4.14.167-syzkaller #0 [ 1426.994861] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1427.004325] Call Trace: [ 1427.006936] dump_stack+0x142/0x197 [ 1427.010593] warn_alloc.cold+0x96/0x1af [ 1427.014597] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 1427.019459] ? lock_downgrade+0x740/0x740 [ 1427.023634] ? avc_has_perm+0x2df/0x4b0 [ 1427.027754] __vmalloc_node_range+0x3c3/0x6a0 [ 1427.032279] vmalloc+0x46/0x50 [ 1427.035548] ? sel_write_load+0x1a0/0x1050 [ 1427.039809] sel_write_load+0x1a0/0x1050 [ 1427.043886] ? save_trace+0x290/0x290 [ 1427.048012] ? sel_read_bool+0x240/0x240 [ 1427.052133] ? trace_hardirqs_on+0x10/0x10 [ 1427.056543] ? debug_smp_processor_id+0x1c/0x20 [ 1427.061323] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1427.066273] __vfs_write+0x105/0x6b0 [ 1427.070239] ? sel_read_bool+0x240/0x240 [ 1427.074408] ? kernel_read+0x120/0x120 [ 1427.078320] ? __lock_is_held+0xb6/0x140 [ 1427.082576] ? check_preemption_disabled+0x3c/0x250 [ 1427.087620] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1427.093215] ? rcu_read_lock_sched_held+0x110/0x130 [ 1427.098345] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 1427.103447] ? __sb_start_write+0x153/0x2f0 [ 1427.108089] vfs_write+0x198/0x500 [ 1427.111650] SyS_write+0xfd/0x230 [ 1427.115309] ? SyS_read+0x230/0x230 [ 1427.119144] ? do_syscall_64+0x53/0x640 [ 1427.123336] ? SyS_read+0x230/0x230 [ 1427.126986] do_syscall_64+0x1e8/0x640 [ 1427.130885] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1427.135777] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1427.141504] RIP: 0033:0x45b349 [ 1427.145063] RSP: 002b:00007f76bb230c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1427.153580] RAX: ffffffffffffffda RBX: 00007f76bb2316d4 RCX: 000000000045b349 [ 1427.161129] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 1427.168712] RBP: 000000000075c1c0 R08: 0000000000000000 R09: 0000000000000000 [ 1427.176055] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1427.183686] R13: 0000000000000cb1 R14: 00000000004cd905 R15: 000000000075c1cc [ 1427.192595] Mem-Info: [ 1427.195422] active_anon:443760 inactive_anon:211 isolated_anon:0 [ 1427.195422] active_file:3320 inactive_file:7353 isolated_file:0 [ 1427.195422] unevictable:0 dirty:333 writeback:0 unstable:0 [ 1427.195422] slab_reclaimable:17176 slab_unreclaimable:151010 [ 1427.195422] mapped:58676 shmem:285 pagetables:34341 bounce:0 [ 1427.195422] free:852117 free_pcp:566 free_cma:0 [ 1427.229702] Node 0 active_anon:1616696kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208956kB dirty:4kB writeback:0kB shmem:1056kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 995328kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1427.258046] Node 1 active_anon:158344kB inactive_anon:80kB active_file:13232kB inactive_file:29404kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:25748kB dirty:1332kB writeback:0kB shmem:84kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1427.287991] Node 0 DMA free:10480kB min:216kB low:268kB high:320kB active_anon:4508kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:96kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1427.315598] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 1427.320859] Node 0 DMA32 free:39624kB min:36380kB low:45472kB high:54564kB active_anon:1612188kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB writepending:4kB present:3129332kB managed:2634344kB mlocked:0kB kernel_stack:20864kB pagetables:53608kB bounce:0kB free_pcp:1384kB local_pcp:716kB free_cma:0kB [ 1427.350737] lowmem_reserve[]: 0 0 0 0 0 [ 1427.355011] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1427.381741] lowmem_reserve[]: 0 0 0 0 0 [ 1427.385877] Node 1 Normal free:3358364kB min:53508kB low:66884kB high:80260kB active_anon:158344kB inactive_anon:80kB active_file:13232kB inactive_file:29404kB unevictable:0kB writepending:1336kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:28192kB pagetables:83720kB bounce:0kB free_pcp:1168kB local_pcp:644kB free_cma:0kB [ 1427.416339] lowmem_reserve[]: 0 0 0 0 0 [ 1427.420567] Node 0 DMA: 16*4kB (UME) 18*8kB (UE) 14*16kB (UME) 16*32kB (UME) 17*64kB (U) 6*128kB (UE) 6*256kB (UE) 2*512kB (ME) 3*1024kB (UME) 1*2048kB (E) 0*4096kB = 10480kB [ 1427.437241] Node 0 DMA32: 408*4kB (UMEH) 381*8kB (UMEH) 728*16kB (UMEH) 403*32kB (UMEH) 149*64kB (UMEH) 7*128kB (UM) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 39656kB [ 1427.453404] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1427.464271] Node 1 Normal: 19*4kB (UE) 6*8kB (UE) 6*16kB (UME) 8*32kB (UE) 3*64kB (UE) 54*128kB (UME) 33*256kB (UME) 46*512kB (UME) 15*1024kB (UME) 3*2048kB (UM) 805*4096kB (M) = 3358364kB [ 1427.482030] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1427.491069] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB 06:49:31 executing program 3 (fault-call:4 fault-nth:10): mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mount(&(0x7f0000000080)=@nbd={'/dev/nbd', 0x0}, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000000)='ocfs2\x00', 0x0, 0x0) 06:49:31 executing program 4: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcsa\x00', 0x501302, 0x0) ioctl$VIDIOC_S_PARM(0xffffffffffffffff, 0xc0cc5616, &(0x7f00000003c0)={0x1, @capture={0x0, 0x1, {0x6}, 0x0, 0x1}}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$GIO_UNISCRNMAP(0xffffffffffffffff, 0x4b69, &(0x7f0000000140)=""/148) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6465762fd3dc35fb4782cf"], &(0x7f0000000340)='./file0\x00', &(0x7f0000000380)='f2fs\x00', 0x4000, 0x0) r2 = socket$bt_rfcomm(0x1f, 0x1, 0x3) ioctl$sock_SIOCGIFVLAN_GET_VLAN_EGRESS_PRIORITY_CMD(r2, 0x8982, &(0x7f0000000000)) 06:49:31 executing program 2: getsockopt$inet_sctp6_SCTP_AUTOCLOSE(0xffffffffffffffff, 0x84, 0x4, &(0x7f00000000c0), &(0x7f0000000100)=0x4) mknod$loop(&(0x7f0000000040)='./file0\x00', 0x6000, 0x1) mkdir(0x0, 0x0) mkdir(&(0x7f00000004c0)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=.']) chdir(&(0x7f00000002c0)='./bus\x00') ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000280)=0x0) ioprio_get$pid(0x3, r0) mknod(&(0x7f00000000c0)='./file1\x00', 0x1000, 0x0) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000140)=@nullb='/dev/nullb0\x00', &(0x7f0000000180)='./file1\x00', &(0x7f00000001c0)='gfs2\x00', 0x2000000, &(0x7f0000000240)='xfs\x00') mount(&(0x7f0000000080)=@filename='./file0\x00', &(0x7f0000000000)='./file0\x00', &(0x7f0000000200)='xfs\x00', 0x0, 0x0) 06:49:31 executing program 0: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r0) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) connect$inet(r2, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r2, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r2, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r1, r2) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0xfffffffffffffff8) mount(&(0x7f0000000080)=@nbd={'/dev/nbd', 0x0}, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000000)='ocfs2\x00', 0x0, 0x0) [ 1427.502233] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1427.512104] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1427.520961] 10962 total pagecache pages [ 1427.525028] 0 pages in swap cache [ 1427.528477] Swap cache stats: add 0, delete 0, find 0/0 [ 1427.535003] Free swap = 0kB [ 1427.538226] Total swap = 0kB [ 1427.541439] 1965979 pages RAM [ 1427.544765] 0 pages HighMem/MovableOnly [ 1427.548836] 335868 pages reserved [ 1427.552638] 0 pages cma reserved 06:49:31 executing program 1: socket$inet_icmp_raw(0x2, 0x3, 0x1) r0 = socket$bt_bnep(0x1f, 0x3, 0x4) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$FS_IOC_SETVERSION(r2, 0x40087602, &(0x7f0000000040)=0x70f) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) ioctl$BLKTRACETEARDOWN(r3, 0x1276, 0x0) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r5 = dup(r4) close(r0) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) ioctl$KVM_SET_PIT(r5, 0x8048ae66, &(0x7f0000000080)={[{0x400, 0x5, 0x4, 0x1e, 0x5, 0x5, 0x4, 0xe8, 0x1, 0x1, 0x7f, 0x3, 0x6}, {0x8, 0x0, 0x1, 0x8, 0x8, 0x4, 0x6d, 0x3f, 0x5, 0x0, 0x9, 0x0, 0x7}, {0x1, 0x7, 0x8, 0x6, 0x9, 0x80, 0x2, 0x3, 0x1, 0x1, 0xff, 0x7, 0x1}], 0x4f2e}) r6 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/load\x00', 0x2, 0x0) write$selinux_load(r6, 0x0, 0x0) iopl(0x37) 06:49:31 executing program 5: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000000)=ANY=[@ANYBLOB="2f6465762f6e756c6c6230001c72183dc9be9c9f54d00c1916a265d10b0085df0e4fda852c3e4351d26f846d3a73c85e5e138381"], &(0x7f0000000340)='./file0\x00', &(0x7f0000000100)='reiserfs\x00', 0x0, 0x0) [ 1427.576123] FAULT_INJECTION: forcing a failure. [ 1427.576123] name failslab, interval 1, probability 0, space 0, times 0 [ 1427.599314] CPU: 1 PID: 10654 Comm: syz-executor.3 Not tainted 4.14.167-syzkaller #0 [ 1427.607264] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1427.617006] Call Trace: [ 1427.619726] dump_stack+0x142/0x197 [ 1427.623384] should_fail.cold+0x10f/0x159 [ 1427.627558] should_failslab+0xdb/0x130 [ 1427.631569] kmem_cache_alloc_trace+0x2e9/0x790 [ 1427.636343] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1427.641809] ? sget_userns+0xfe/0xc30 [ 1427.645686] ? rcu_read_lock_sched_held+0x110/0x130 [ 1427.650736] selinux_sb_alloc_security+0x46/0x220 [ 1427.655702] security_sb_alloc+0x6d/0xa0 [ 1427.659878] ? set_bdev_super+0x120/0x120 [ 1427.664043] sget_userns+0x196/0xc30 [ 1427.667988] ? ns_test_super+0x50/0x50 [ 1427.671893] ? ns_test_super+0x50/0x50 [ 1427.675829] ? set_bdev_super+0x120/0x120 [ 1427.680084] ? set_bdev_super+0x120/0x120 [ 1427.684518] ? ns_test_super+0x50/0x50 [ 1427.688884] sget+0xd6/0x120 [ 1427.692013] mount_bdev+0xd5/0x370 [ 1427.695693] ? ocfs2_initialize_super.isra.0+0x3260/0x3260 [ 1427.695787] syz-executor.1: [ 1427.701898] ocfs2_mount+0x35/0x40 [ 1427.701927] mount_fs+0x97/0x2a1 [ 1427.701944] vfs_kern_mount.part.0+0x5e/0x3d0 [ 1427.701958] do_mount+0x417/0x27d0 [ 1427.701972] ? copy_mount_string+0x40/0x40 06:49:31 executing program 4: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = open(&(0x7f0000000440)='./file0\x00', 0x480, 0x0) write$selinux_validatetrans(r1, &(0x7f0000000480)={'system_u:object_r:root_t:s0', 0x20, 'system_u:object_r:system_dbusd_var_run_t:s0', 0x20, 0x80000001, 0x20, 'unconfined_u:system_r:insmod_t:s0-s0:c0.c1023\x00'}, 0x8b) r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcsa\x00', 0x501302, 0x0) r3 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$GIO_UNISCRNMAP(0xffffffffffffffff, 0x4b69, &(0x7f0000000140)=""/148) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) getsockopt$inet_sctp_SCTP_HMAC_IDENT(r2, 0x84, 0x16, &(0x7f00000000c0)={0x7, [0x0, 0x1f, 0x1, 0x8, 0x400, 0xffff, 0xff]}, &(0x7f0000000400)=0x12) execve(&(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), &(0x7f00000003c0)=[&(0x7f0000000100)='lovboxnet0\x00', &(0x7f0000000240)='keyringbdev\x00', &(0x7f0000000280)='/$\x00', &(0x7f00000002c0)='\x00', &(0x7f0000000300)='{nodev@\x00']) mount(&(0x7f0000000200)=@nullb='/dev/nullb0\x00', &(0x7f0000000340)='./file0\x00', &(0x7f0000000380)='f2fs\x00', 0x4000, 0x0) [ 1427.701986] ? memdup_user+0x58/0xa0 [ 1427.701994] ? copy_mount_options+0x1fe/0x2f0 [ 1427.702007] SyS_mount+0xab/0x120 [ 1427.702014] ? copy_mnt_ns+0x8c0/0x8c0 [ 1427.702027] do_syscall_64+0x1e8/0x640 [ 1427.702037] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1427.702055] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1427.702063] RIP: 0033:0x45b349 [ 1427.702069] RSP: 002b:00007f214582cc78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1427.702080] RAX: ffffffffffffffda RBX: 00007f214582d6d4 RCX: 000000000045b349 [ 1427.702085] RDX: 0000000020000000 RSI: 00000000200000c0 RDI: 0000000020000080 [ 1427.702090] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1427.702095] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1427.702100] R13: 0000000000000744 R14: 00000000004c8bd8 R15: 000000000000000a [ 1427.748406] gfs2: invalid mount option: xfs [ 1427.768428] block nbd0: Attempted send on invalid socket [ 1427.795844] gfs2: can't parse mount arguments 06:49:31 executing program 4: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcsa\x00', 0x501302, 0x0) mount(&(0x7f0000000440)=@filename='./file0\x00', &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0)='cgroup2\x00', 0x446, &(0x7f0000000500)='f2fs\x00') r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0)='nl80211\x00') sendmsg$NL80211_CMD_DEL_INTERFACE(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000100)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="00032bbd5b00fedbdf2508000000080001000400000014e0ce9071fb68c8935f746f5f7465616d0000000c0099000003000000"], 0x3c}, 0x1, 0x0, 0x0, 0x800}, 0x40004) ioctl$VIDIOC_S_PARM(0xffffffffffffffff, 0xc0cc5616, &(0x7f0000000240)={0x1, @capture={0x0, 0x0, {0x3}, 0x0, 0x1}}) r2 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$GIO_UNISCRNMAP(0xffffffffffffffff, 0x4b69, &(0x7f0000000140)=""/148) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000200)=@nullb='/dev/nullb0\x00', &(0x7f0000000340)='./file0\x00', &(0x7f0000000380)='f2fs\x00', 0x4000, 0x0) [ 1427.798933] print_req_error: I/O error, dev nbd0, sector 0 [ 1427.799001] (syz-executor.0,10666,0):ocfs2_get_sector:1824 ERROR: status = -5 [ 1427.845109] (syz-executor.0,10666,0):ocfs2_sb_probe:782 ERROR: status = -5 [ 1427.849925] gfs2: invalid mount option: xfs [ 1427.853807] (syz-executor.0,10666,0):ocfs2_fill_super:1023 ERROR: superblock probe failed! [ 1427.858573] gfs2: can't parse mount arguments [ 1427.888434] vmalloc: allocation failure: 0 bytes, mode:0x14000c0(GFP_KERNEL), nodemask=(null) [ 1427.893526] (syz-executor.0,10666,0):ocfs2_fill_super:1217 ERROR: status = -5 [ 1427.922782] print_req_error: I/O error, dev loop5, sector 0 [ 1427.928795] XFS (loop5): SB validate failed with error -5. 06:49:31 executing program 2: getsockopt$inet_sctp6_SCTP_AUTOCLOSE(0xffffffffffffffff, 0x84, 0x4, &(0x7f00000000c0), &(0x7f0000000100)=0x4) mknod$loop(&(0x7f0000000040)='./file0\x00', 0x6000, 0x1) mkdir(0x0, 0x0) mkdir(&(0x7f0000000280)='./file1\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='lowerdiworkdir=./file1,upperdir=.\x00\x00\x00\x00\x00\x00\x00\x00']) chdir(&(0x7f00000002c0)='./bus\x00') mknod(&(0x7f00000000c0)='./file1\x00', 0x1000, 0x0) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000400)=ANY=[@ANYBLOB="0eb523d81406ace35ee2b10c3d6d91ed6d7d7369d16b74000a646584f22f6e00006c"], &(0x7f0000000180)='./file1\x00', &(0x7f00000001c0)='gfs2\x00', 0x2000000, &(0x7f0000000240)='xfs\x00') r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x24400, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) close(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000016000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="baa100b000eef36cba2100ec66b9800000c00f326635001000000f30bad104ecc80080d267d9f8f30f1bb429000f20c06635202100000f22c067f3af", 0x3c}], 0x0, 0x0, 0x0, 0x68) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x200000000000013, &(0x7f0000000280), 0x4) move_pages(0x0, 0x3, &(0x7f0000000240)=[&(0x7f0000018000/0x1000)=nil, &(0x7f000002b000/0x3000)=nil, &(0x7f000002a000/0x1000)=nil], 0x0, &(0x7f00000003c0)=[0x0], 0x0) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000280)={[0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x20000000fb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000], 0x1f004, 0x110400}) ioctl$KVM_REGISTER_COALESCED_MMIO(r4, 0x4010ae67, &(0x7f0000000040)={0x0, 0x13c000}) ioctl$KVM_RUN(r5, 0xae80, 0x0) r6 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) ioctl$VIDIOC_DQBUF(r1, 0xc0585611, &(0x7f0000000300)={0x3, 0x4, 0x4, 0x40000, 0x7, {0x77359400}, {0x1, 0xc, 0x3, 0x0, 0x1, 0xc8, "c76c1f15"}, 0x1, 0x4, @userptr=0x10000, 0x9, 0x0, r6}) getsockopt$bt_BT_DEFER_SETUP(r7, 0x112, 0x7, &(0x7f0000000380)=0x1, &(0x7f00000003c0)=0x4) [ 1427.934861] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1427.951735] CPU: 1 PID: 10670 Comm: syz-executor.1 Not tainted 4.14.167-syzkaller #0 [ 1427.960416] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1427.969986] Call Trace: [ 1427.972683] dump_stack+0x142/0x197 [ 1427.976526] warn_alloc.cold+0x96/0x1af [ 1427.980825] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 1427.985800] ? lock_downgrade+0x740/0x740 [ 1427.990061] ? avc_has_perm+0x2df/0x4b0 [ 1427.994233] __vmalloc_node_range+0x3c3/0x6a0 [ 1427.998963] ? trace_hardirqs_on+0x10/0x10 [ 1428.003486] vmalloc+0x46/0x50 [ 1428.006701] ? sel_write_load+0x1a0/0x1050 [ 1428.011151] sel_write_load+0x1a0/0x1050 [ 1428.015237] ? save_trace+0x290/0x290 [ 1428.019058] ? sel_read_bool+0x240/0x240 [ 1428.023163] ? trace_hardirqs_on+0x10/0x10 [ 1428.027420] ? debug_smp_processor_id+0x1c/0x20 [ 1428.032102] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1428.037160] __vfs_write+0x105/0x6b0 [ 1428.040899] ? sel_read_bool+0x240/0x240 [ 1428.045068] ? kernel_read+0x120/0x120 [ 1428.048975] ? __lock_is_held+0xb6/0x140 [ 1428.053056] ? check_preemption_disabled+0x3c/0x250 [ 1428.058114] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1428.063596] ? rcu_read_lock_sched_held+0x110/0x130 [ 1428.068686] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 1428.073548] ? __sb_start_write+0x153/0x2f0 [ 1428.078048] vfs_write+0x198/0x500 [ 1428.081608] SyS_write+0xfd/0x230 [ 1428.085212] ? SyS_read+0x230/0x230 [ 1428.088854] ? do_syscall_64+0x53/0x640 [ 1428.092857] ? SyS_read+0x230/0x230 [ 1428.096517] do_syscall_64+0x1e8/0x640 [ 1428.100419] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1428.105429] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1428.110636] RIP: 0033:0x45b349 [ 1428.113967] RSP: 002b:00007f76bb2b4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1428.121986] RAX: ffffffffffffffda RBX: 00007f76bb2b56d4 RCX: 000000000045b349 [ 1428.129417] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000008 06:49:32 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x4001ff) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/load\x00', 0x2, 0x0) write$selinux_load(r2, 0x0, 0x0) [ 1428.136708] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1428.143995] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1428.151630] R13: 0000000000000cb1 R14: 00000000004cd905 R15: 000000000075bf2c [ 1428.159548] print_req_error: I/O error, dev loop5, sector 0 [ 1428.166762] cgroup: cgroup2: unknown option "f2fs" 06:49:32 executing program 2: getsockopt$inet_sctp6_SCTP_AUTOCLOSE(0xffffffffffffffff, 0x84, 0x4, &(0x7f00000000c0), &(0x7f0000000100)=0x4) mknod$loop(&(0x7f0000000040)='./file0\x00', 0x6000, 0x1) mkdir(0x0, 0x0) mkdir(&(0x7f0000000300)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=.']) chdir(&(0x7f00000002c0)='./bus\x00') mknod(&(0x7f00000000c0)='./file1\x00', 0x1000, 0x0) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000140)=@nullb='/dev/nullb0\x00', &(0x7f0000000180)='./file1\x00', &(0x7f00000001c0)='gfs2\x00', 0x2000000, &(0x7f0000000240)='xfs\x00') r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r1, 0x40045532, &(0x7f0000000280)=0xa) mount(&(0x7f0000000080)=@filename='./file0\x00', &(0x7f0000000000)='./file0\x00', &(0x7f0000000200)='xfs\x00', 0x0, 0x0) 06:49:32 executing program 3 (fault-call:4 fault-nth:11): mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mount(&(0x7f0000000080)=@nbd={'/dev/nbd', 0x0}, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000000)='ocfs2\x00', 0x0, 0x0) 06:49:32 executing program 0: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) socket$inet_icmp_raw(0x2, 0x3, 0x1) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) r1 = socket$inet(0x2, 0x1, 0x0) connect$inet(r1, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r1, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r1, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r0, r1) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r2) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) openat$sequencer2(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/sequencer2\x00', 0x200600, 0x0) r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) r7 = dup(r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) r8 = socket$inet6(0xa, 0x1000000000002, 0x0) r9 = socket$inet(0x2, 0x1, 0x0) connect$inet(r9, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r9, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r9, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r8, r9) openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000380)='/dev/ubi_ctrl\x00', 0x30200, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r10 = socket$inet6(0xa, 0x1000000000002, 0x0) r11 = socket$inet(0x2, 0x1, 0x0) connect$inet(r11, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r11, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r11, &(0x7f0000000500)={0x2, 0x0, @multicast2}, 0x10) dup2(r10, r11) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r12 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r12) r13 = socket$inet6(0xa, 0x1000000000002, 0x0) r14 = socket$inet(0x2, 0x1, 0x0) connect$inet(r14, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r14, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r14, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r13, r14) r15 = socket$inet6(0xa, 0x1000000000002, 0x0) r16 = socket$inet(0x2, 0x1, 0x0) connect$inet(r16, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r16, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r16, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r15, r16) r17 = socket$inet6(0xa, 0x1000000000002, 0x0) r18 = socket$inet(0x2, 0x1, 0x0) connect$inet(r18, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r18, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r18, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r17, r18) r19 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r19) fcntl$getownex(r19, 0x10, &(0x7f00000003c0)) r20 = getuid() setreuid(0xee00, r20) r21 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0) fstat(r21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) setregid(r22, 0x0) accept$unix(0xffffffffffffffff, &(0x7f0000000400)=@abs, &(0x7f0000000480)=0x6e) openat$snapshot(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/snapshot\x00', 0x4100, 0x0) r23 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r23) r24 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r24) ioctl$PERF_EVENT_IOC_ENABLE(r16, 0x8912, 0x9) r25 = socket$inet6(0xa, 0x1000000000002, 0x0) r26 = socket$inet(0x2, 0x1, 0x0) connect$inet(r26, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r26, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r26, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r25, r26) socket$inet_udp(0x2, 0x2, 0x0) openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000600)='cgroup.procs\x00', 0x2, 0x0) r27 = socket$inet6(0xa, 0x1000000000002, 0x0) r28 = socket$inet(0x2, 0x1, 0x0) connect$inet(r28, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) connect$inet(r28, &(0x7f00009322c4)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r28, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) dup2(r27, r28) sendmsg$unix(r7, &(0x7f0000000580)={&(0x7f0000000100)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f00000006c0)=[{&(0x7f0000000180)="6cea6b5ecd9988faf76c7fe400ab1ba305d810bdf4a088834d9770d19def98c3508c34962cd51d725770483d68b4f4e3adbd0e2506a7c6b295c18e1666bd80ba15138c9e7323a4469dd22bde759e1eb61683523fe76b99c268e5ada34aad9d53313f5f7b21a8ddd86e6ec3d9dff7519e7bdda90d817267cf8f6a13e27209ca1c8983c29049a7453b12515fe810e6fa810eb8802d376f4abe6a5c0f897cf4a3c8c7c36364acf6b5fa44d19d8e045bc3d26b8c4f", 0xb3}, {&(0x7f0000000240)="4594a4516fbd34e0ca60fc84acdffcf534633789c15caa7a523180c1d934301b0af742fde2f3636e19171ab337befac4389bed4323bdd64cccfe842f2de43520550730fe126b5853af0722bc1a0514ee71ed1b3c3dd0b6546700b0a5d5b5697ee075c73cce4c6253d57b89600b1d80746f7d02b7bcca5141fa03b261c48fc09180a4f721e8d6158dba13dbdd1dfde3afcd1ff0b81033fc5842cb1f9178e417482e11591ca3a549d58f105b140d29f43ee43d7c522539860a2431c44463dd5335904aa1d036", 0xc5}, {&(0x7f0000000640)="d542b7981579311f63012b5f77e7b8a5a5ed46ceeb5856e1e7311a07685539bffe264f4cc97a3d8285cd7f7dc231618c0462dbd3ab1718df429e7a57330c8ebe4ab56c8d6e7ab153d690bf6d28104646c177c9c0107ab5bd0758f3fb8f9c788740c0fa553252fcaca1cf81dfc97e9475", 0x70}], 0x3, &(0x7f0000000500), 0x0, 0x40801}, 0x24040885) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r29 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r30 = dup(r29) ioctl$PERF_EVENT_IOC_ENABLE(r30, 0x8912, 0x400200) mount(&(0x7f0000000080)=@nbd={'/dev/nbd', 0x0}, &(0x7f00000000c0)='./file1\x00', &(0x7f0000000000)='ocfs2\x00', 0x0, 0x0) [ 1428.205497] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0) [ 1428.237739] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 1th superblock [ 1428.276860] cgroup: cgroup2: unknown option "f2fs" [ 1428.294968] syz-executor.1: vmalloc: allocation failure: 0 bytes, mode:0x14000c0(GFP_KERNEL), nodemask=(null) [ 1428.313831] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0) [ 1428.322907] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1428.341408] CPU: 0 PID: 10711 Comm: syz-executor.1 Not tainted 4.14.167-syzkaller #0 [ 1428.345902] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 2th superblock [ 1428.349476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1428.349482] Call Trace: [ 1428.349503] dump_stack+0x142/0x197 [ 1428.349519] warn_alloc.cold+0x96/0x1af [ 1428.349534] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 1428.367916] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0) [ 1428.369684] ? lock_downgrade+0x740/0x740 [ 1428.369704] ? avc_has_perm+0x2df/0x4b0 [ 1428.369721] __vmalloc_node_range+0x3c3/0x6a0 [ 1428.376698] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 1th superblock [ 1428.378186] ? trace_hardirqs_on+0x10/0x10 [ 1428.378205] vmalloc+0x46/0x50 [ 1428.378220] ? sel_write_load+0x1a0/0x1050 [ 1428.387871] FAULT_INJECTION: forcing a failure. [ 1428.387871] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1428.390556] sel_write_load+0x1a0/0x1050 [ 1428.390572] ? save_trace+0x290/0x290 [ 1428.390586] ? sel_read_bool+0x240/0x240 [ 1428.390597] ? trace_hardirqs_on+0x10/0x10 [ 1428.390612] ? debug_smp_processor_id+0x1c/0x20 [ 1428.458300] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1428.463447] __vfs_write+0x105/0x6b0 [ 1428.467195] ? sel_read_bool+0x240/0x240 [ 1428.471266] ? kernel_read+0x120/0x120 [ 1428.475171] ? __lock_is_held+0xb6/0x140 [ 1428.480035] ? check_preemption_disabled+0x3c/0x250 [ 1428.485056] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1428.490527] ? rcu_read_lock_sched_held+0x110/0x130 [ 1428.495941] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 1428.501350] ? __sb_start_write+0x153/0x2f0 [ 1428.505759] vfs_write+0x198/0x500 [ 1428.509291] SyS_write+0xfd/0x230 [ 1428.513094] ? SyS_read+0x230/0x230 [ 1428.516827] ? do_syscall_64+0x53/0x640 [ 1428.520837] ? SyS_read+0x230/0x230 [ 1428.524784] do_syscall_64+0x1e8/0x640 [ 1428.528676] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1428.533557] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1428.539354] RIP: 0033:0x45b349 [ 1428.543149] RSP: 002b:00007f76bb2b4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1428.553090] RAX: ffffffffffffffda RBX: 00007f76bb2b56d4 RCX: 000000000045b349 [ 1428.560376] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005 [ 1428.567757] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 06:49:32 executing program 4: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcsa\x00', 0x501302, 0x0) ioctl$SCSI_IOCTL_DOORUNLOCK(r1, 0x5381) ioctl$VIDIOC_S_PARM(0xffffffffffffffff, 0xc0cc5616, &(0x7f0000000240)={0x1, @capture={0x0, 0x0, {0x3}, 0x0, 0x1}}) r2 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$GIO_UNISCRNMAP(0xffffffffffffffff, 0x4b69, &(0x7f0000000140)=""/148) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000200)=ANY=[@ANYBLOB=';dev/nullb0\x00'], &(0x7f0000000340)='./file0\x00', &(0x7f0000000380)='f2fs\x00', 0x4000, 0x0) [ 1428.575121] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1428.582430] R13: 0000000000000cb1 R14: 00000000004cd905 R15: 000000000075bf2c [ 1428.600906] CPU: 0 PID: 10718 Comm: syz-executor.3 Not tainted 4.14.167-syzkaller #0 [ 1428.609119] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1428.619425] Call Trace: [ 1428.625597] dump_stack+0x142/0x197 [ 1428.629255] should_fail.cold+0x10f/0x159 [ 1428.633424] ? __might_sleep+0x93/0xb0 [ 1428.637337] __alloc_pages_nodemask+0x1d6/0x7a0 [ 1428.642055] ? __alloc_pages_slowpath+0x2930/0x2930 [ 1428.647198] ? ____cache_alloc_node+0x1be/0x1d0 [ 1428.651977] ? cache_grow_begin+0x335/0x400 [ 1428.656493] cache_grow_begin+0x80/0x400 [ 1428.660599] ? __cpuset_node_allowed+0xff/0x450 [ 1428.665456] fallback_alloc+0x1fd/0x2c0 [ 1428.669911] ____cache_alloc_node+0x1be/0x1d0 [ 1428.674430] kmem_cache_alloc+0x1f3/0x780 06:49:32 executing program 4: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcsa\x00', 0x501302, 0x0) ioctl$VIDIOC_S_PARM(0xffffffffffffffff, 0xc0cc5616, &(0x7f0000000240)={0x1, @capture={0x0, 0x0, {0x3}, 0x0, 0x1}}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$GIO_UNISCRNMAP(0xffffffffffffffff, 0x4b69, &(0x7f0000000140)=""/148) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) connect$ax25(r3, &(0x7f00000000c0)={{0x3, @bcast, 0x7}, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @bcast]}, 0x48) mount(&(0x7f0000000200)=@nullb='/dev/nullb0\x00', &(0x7f0000000340)='./file0\x00', &(0x7f0000000380)='f2fs\x00', 0x4000, 0x0) [ 1428.678615] getname_kernel+0x53/0x350 [ 1428.682712] kern_path+0x20/0x40 [ 1428.686109] lookup_bdev.part.0+0x63/0x160 [ 1428.690636] ? blkdev_open+0x260/0x260 [ 1428.694547] blkdev_get_by_path+0x76/0xf0 [ 1428.698808] mount_bdev+0x50/0x370 [ 1428.702474] ? ocfs2_initialize_super.isra.0+0x3260/0x3260 [ 1428.708205] ocfs2_mount+0x35/0x40 [ 1428.711811] mount_fs+0x97/0x2a1 [ 1428.715360] vfs_kern_mount.part.0+0x5e/0x3d0 [ 1428.720321] do_mount+0x417/0x27d0 [ 1428.724004] ? copy_mount_string+0x40/0x40 [ 1428.728262] ? memdup_user+0x58/0xa0 [ 1428.732138] ? copy_mount_options+0x1fe/0x2f0 [ 1428.737143] SyS_mount+0xab/0x120 [ 1428.740708] ? copy_mnt_ns+0x8c0/0x8c0 [ 1428.744627] do_syscall_64+0x1e8/0x640 [ 1428.748541] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1428.756165] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1428.761373] RIP: 0033:0x45b349 [ 1428.764616] RSP: 002b:00007f214582cc78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 06:49:32 executing program 4: mknod$loop(&(0x7f0000000180)='./file0\x00', 0x2, 0x0) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcsa\x00', 0x501302, 0x0) ioctl$VIDIOC_S_PARM(0xffffffffffffffff, 0xc0cc5616, &(0x7f0000000240)={0x1, @capture={0x0, 0x0, {0x3}, 0x0, 0x1}}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x80, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff}) ioctl$GIO_UNISCRNMAP(r2, 0x4b69, &(0x7f0000000600)=""/172) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000100)=ANY=[@ANYBLOB="2f6465762f6e756c6c6230004dd0cb7b6c3bf4034d205386a68b1790970c3665fe5f520d9e2071117dc21c364d293fd7a801e8459f648f1d38e4bdea753f0d66277c107ab402e1439565da85c892704e7e7258b1500721e1fdef4f3686499d3a4676566bcdb51c44748c0af68811"], &(0x7f0000000340)='./file0\x00', &(0x7f0000000380)='f2fs\x00', 0x4000, 0x0) 06:49:32 executing program 0: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mount(&(0x7f0000000080)=@nbd={'/dev/nbd', 0x0}, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000000)='ocfs2\x00', 0x0, 0x0) bind$nfc_llcp(r1, &(0x7f0000000100)={0x27, 0x1, 0x0, 0x5, 0x8, 0x40, "a9eee0b3a8790f76f7597ec096ae28cc06f25b78e97115097283f4768ac0d692350340461deb75dce1e77394421afc99a2948fef3b432854e43b10bb460ba1", 0x2f}, 0x60) [ 1428.772353] RAX: ffffffffffffffda RBX: 00007f214582d6d4 RCX: 000000000045b349 [ 1428.779637] RDX: 0000000020000000 RSI: 00000000200000c0 RDI: 0000000020000080 [ 1428.787146] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1428.794597] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1428.802686] R13: 0000000000000744 R14: 00000000004c8bd8 R15: 000000000000000b [ 1428.854315] gfs2: invalid mount option: xfs [ 1428.870730] gfs2: can't parse mount arguments [ 1428.919751] gfs2: invalid mount option: xfs [ 1428.945125] gfs2: can't parse mount arguments [ 1428.950255] XFS (loop5): SB validate failed with error -5. [ 1428.956180] warn_alloc_show_mem: 1 callbacks suppressed [ 1428.956184] Mem-Info: [ 1428.980697] active_anon:443970 inactive_anon:209 isolated_anon:0 [ 1428.980697] active_file:3320 inactive_file:7364 isolated_file:0 [ 1428.980697] unevictable:0 dirty:345 writeback:0 unstable:0 [ 1428.980697] slab_reclaimable:17157 slab_unreclaimable:150770 [ 1428.980697] mapped:58719 shmem:285 pagetables:34545 bounce:0 [ 1428.980697] free:851669 free_pcp:665 free_cma:0 [ 1429.014695] block nbd0: Attempted send on invalid socket [ 1429.021323] (syz-executor.0,10759,1):ocfs2_get_sector:1824 ERROR: status = -5 [ 1429.055324] (syz-executor.0,10759,1):ocfs2_sb_probe:782 ERROR: status = -5 [ 1429.064703] Node 0 active_anon:1616696kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208956kB dirty:4kB writeback:0kB shmem:1056kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 995328kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1429.080566] (syz-executor.0,10759,1):ocfs2_fill_super:1023 ERROR: superblock probe failed! [ 1429.099382] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 1429.105663] (syz-executor.0,10759,1):ocfs2_fill_super:1217 ERROR: status = -5 [ 1429.119125] block nbd0: Attempted send on invalid socket [ 1429.120560] Node 1 active_anon:159180kB inactive_anon:72kB active_file:13252kB inactive_file:29484kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:25808kB dirty:1476kB writeback:0kB shmem:84kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1429.125247] (syz-executor.0,10761,1):ocfs2_get_sector:1824 ERROR: status = -5 [ 1429.157961] Node 0 DMA free:10480kB min:216kB low:268kB high:320kB active_anon:4508kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:96kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1429.160779] (syz-executor.0,10761,1):ocfs2_sb_probe:782 ERROR: status = -5 06:49:33 executing program 5: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) ioctl$VIDIOC_QBUF(r1, 0xc058560f, &(0x7f0000000080)={0xfd0, 0x1, 0x4, 0x1, 0x8000, {}, {0x2, 0x8, 0x0, 0x4, 0x53, 0xbb, "0ad15d9c"}, 0x2, 0x4, @offset=0x7, 0xfffffffb, 0x0, r1}) mount(&(0x7f0000000200)=@nullb='/dev/nullb0\x00', &(0x7f0000000340)='./file0\x00', &(0x7f0000000100)='reiserfs\x00', 0x0, 0x0) 06:49:33 executing program 4: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) openat$vcsa(0xffffffffffffff9c, &(0x7f0000000400)='/dev/vcsa\x00', 0x80c00, 0x0) ioctl$VIDIOC_S_PARM(0xffffffffffffffff, 0xc0cc5616, &(0x7f0000000240)={0x1, @capture={0x0, 0x0, {0x3}, 0x0, 0x1}}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$GIO_UNISCRNMAP(0xffffffffffffffff, 0x4b69, &(0x7f0000000140)=""/148) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$VIDIOC_TRY_EXT_CTRLS(r3, 0xc0205649, &(0x7f0000000100)={0x990000, 0x100, 0x8, 0xffffffffffffffff, 0x0, &(0x7f00000000c0)={0x990a63, 0x6, [], @p_u8=&(0x7f0000000000)=0x1}}) mount(&(0x7f00000003c0)=ANY=[@ANYBLOB="2f6465762f59754c6c6230bb91386505a510a3b6831e02264900"], &(0x7f0000000340)='./file0\x00', &(0x7f0000000380)='f2fs\x00', 0x4000, 0x0) 06:49:33 executing program 2: getsockopt$inet_sctp6_SCTP_AUTOCLOSE(0xffffffffffffffff, 0x84, 0x4, &(0x7f00000000c0), &(0x7f0000000100)=0x4) mknod$loop(&(0x7f0000000040)='./file0\x00', 0x6000, 0x1) mkdir(0x0, 0x0) mkdir(&(0x7f00000004c0)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=.']) chdir(&(0x7f00000002c0)='./bus\x00') mknod(&(0x7f00000000c0)='./file1\x00', 0x1000, 0x0) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000140)=@nullb='/dev/nullb0\x00', &(0x7f0000000180)='./file1\x00', &(0x7f00000001c0)='gfs2\x00', 0x2000000, &(0x7f0000000240)='xfs\x00') mount(&(0x7f0000000080)=@filename='./file0\x00', &(0x7f0000000000)='./file0\x00', &(0x7f0000000200)='xfs\x00', 0x0, 0x0) r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000280)='/dev/vga_arbiter\x00', 0x222100, 0x0) ioctl$RTC_VL_CLR(r0, 0x7014) 06:49:33 executing program 3 (fault-call:4 fault-nth:12): mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mount(&(0x7f0000000080)=@nbd={'/dev/nbd', 0x0}, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000000)='ocfs2\x00', 0x0, 0x0) [ 1429.210207] (syz-executor.0,10761,1):ocfs2_fill_super:1023 ERROR: superblock probe failed! [ 1429.219059] (syz-executor.0,10761,1):ocfs2_fill_super:1217 ERROR: status = -5 [ 1429.228414] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 1429.237086] Node 0 DMA32 free:39672kB min:36380kB low:45472kB high:54564kB active_anon:1612188kB inactive_anon:764kB active_file:48kB inactive_file:8kB unevictable:0kB writepending:4kB present:3129332kB managed:2634344kB mlocked:0kB kernel_stack:20864kB pagetables:53608kB bounce:0kB free_pcp:1376kB local_pcp:728kB free_cma:0kB [ 1429.278606] lowmem_reserve[]: 0 0 0 0 0 [ 1429.286478] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1429.287749] gfs2: invalid mount option: xfs [ 1429.312936] FAULT_INJECTION: forcing a failure. [ 1429.312936] name failslab, interval 1, probability 0, space 0, times 0 [ 1429.326871] gfs2: can't parse mount arguments [ 1429.328271] CPU: 0 PID: 10773 Comm: syz-executor.3 Not tainted 4.14.167-syzkaller #0 [ 1429.340664] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1429.350489] Call Trace: [ 1429.353180] dump_stack+0x142/0x197 [ 1429.357027] should_fail.cold+0x10f/0x159 [ 1429.361204] should_failslab+0xdb/0x130 [ 1429.365220] __kmalloc+0x2f0/0x7a0 [ 1429.368920] ? __list_lru_init+0x6b/0x660 [ 1429.373090] __list_lru_init+0x6b/0x660 [ 1429.377086] sget_userns+0x500/0xc30 [ 1429.380814] ? ns_test_super+0x50/0x50 [ 1429.384184] gfs2: invalid mount option: xfs [ 1429.384711] ? set_bdev_super+0x120/0x120 [ 1429.389801] gfs2: can't parse mount arguments [ 1429.393216] ? set_bdev_super+0x120/0x120 [ 1429.393225] ? ns_test_super+0x50/0x50 [ 1429.393234] sget+0xd6/0x120 [ 1429.393247] mount_bdev+0xd5/0x370 [ 1429.393260] ? ocfs2_initialize_super.isra.0+0x3260/0x3260 [ 1429.393278] ocfs2_mount+0x35/0x40 [ 1429.393291] mount_fs+0x97/0x2a1 [ 1429.393306] vfs_kern_mount.part.0+0x5e/0x3d0 [ 1429.393322] do_mount+0x417/0x27d0 [ 1429.433306] ? copy_mount_string+0x40/0x40 [ 1429.437567] ? memdup_user+0x58/0xa0 [ 1429.441298] ? copy_mount_options+0x1fe/0x2f0 [ 1429.445811] SyS_mount+0xab/0x120 [ 1429.449222] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 1429.449271] ? copy_mnt_ns+0x8c0/0x8c0 [ 1429.463264] do_syscall_64+0x1e8/0x640 [ 1429.467164] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1429.472023] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1429.477224] RIP: 0033:0x45b349 [ 1429.480548] RSP: 002b:00007f214582cc78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1429.488263] RAX: ffffffffffffffda RBX: 00007f214582d6d4 RCX: 000000000045b349 [ 1429.495542] RDX: 0000000020000000 RSI: 00000000200000c0 RDI: 0000000020000080 [ 1429.502829] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1429.510362] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1429.517736] R13: 0000000000000744 R14: 00000000004c8bd8 R15: 000000000000000c [ 1429.526268] lowmem_reserve[]: 0 0 0 0 0 [ 1429.530352] Node 1 Normal free:3356100kB min:53508kB low:66884kB high:80260kB active_anon:159380kB inactive_anon:72kB active_file:13252kB inactive_file:29484kB unevictable:0kB writepending:1476kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:28832kB pagetables:84640kB bounce:0kB free_pcp:552kB local_pcp:508kB free_cma:0kB 06:49:33 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/load\x00', 0x2, 0x0) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) getsockopt$netrom_NETROM_IDLE(r4, 0x103, 0x7, &(0x7f0000000040)=0xfffffa03, &(0x7f0000000080)=0x4) prctl$PR_MCE_KILL_GET(0x22) write$selinux_load(r2, 0x0, 0x0) 06:49:33 executing program 0: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x82, 0x0) r1 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nvram\x00', 0x70100, 0x0) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$SG_IO(r3, 0x2285, &(0x7f0000000580)={0x53, 0xffffffffffffffff, 0x5b, 0xfd, @scatter={0x3, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000280)=""/97, 0x61}, {&(0x7f0000000300)=""/180, 0xb4}, {&(0x7f0000000180)}]}, &(0x7f0000000400)="335201266a37d4aa5bac9f7febcd047efe0061ffa3fa1b3512fd7ba8795edae55c1acca6689ba5b8eb9af30a136f9f234ca5bde8693421341a4fd8e519a4dcc2dee730e016f29e4d24f93bd22cc15f8d48040fd163c8b69758efd5", &(0x7f0000000480)=""/151, 0x8, 0x10000, 0xffffffffffffffff, &(0x7f0000000540)}) ioctl$DRM_IOCTL_MODE_SETGAMMA(r1, 0xc02064a5, &(0x7f0000000200)={0xfffff974, 0x3, &(0x7f0000000100)=[0x9, 0x8001, 0x4], &(0x7f0000000180), &(0x7f00000001c0)=[0x134, 0x9, 0x8, 0x0, 0xb9]}) r4 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) mount(&(0x7f0000000600)=ANY=[@ANYBLOB="2f646576036e2b92c5fa2e91df633dceda2678f8356e3c3af624bb12fedd34f44c3cbab644f33f83483011c6e9f4f441a3a90bf73853a9167f82e788a3056f690261f9ffd70e301008cd916aaff9923fe7a12d5f9d6475631c5cdc1cab3259cc7f9634b899518240dc4c21d75544913d"], &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='selinuxfs\x00', 0x80005, 0x0) 06:49:33 executing program 5: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x4, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) r5 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000140)='NLBL_MGMT\x00') r6 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r7 = dup(r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) sendmsg$NLBL_MGMT_C_LISTALL(r7, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, r5, 0x400, 0x70bd29, 0x25dfdbfe, {}, [@NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8800}, 0x24044010) r8 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) r9 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r10 = dup(r9) ioctl$PERF_EVENT_IOC_ENABLE(r10, 0x8912, 0x400200) ioctl$SNDRV_CTL_IOCTL_TLV_COMMAND(r10, 0xc008551c, &(0x7f0000000000)={0x8, 0xffffffffffffff19}) mount(&(0x7f00000000c0)=ANY=[@ANYRES64], &(0x7f0000000340)='.\x00', &(0x7f0000000100)='reiserfs\x00', 0x0, 0x0) 06:49:33 executing program 3 (fault-call:4 fault-nth:13): mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mount(&(0x7f0000000080)=@nbd={'/dev/nbd', 0x0}, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000000)='ocfs2\x00', 0x0, 0x0) 06:49:33 executing program 2: getsockopt$inet_sctp6_SCTP_AUTOCLOSE(0xffffffffffffffff, 0x84, 0x4, &(0x7f00000000c0), &(0x7f0000000100)=0x4) mknod$loop(&(0x7f0000000040)='./file0\x00', 0x6000, 0x1) mkdir(0x0, 0x0) mkdir(&(0x7f00000004c0)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=.']) chdir(&(0x7f00000002c0)='./bus\x00') mknod(&(0x7f00000000c0)='./file1\x00', 0x1000, 0x0) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000280)='/selinux/status\x00', 0x0, 0x0) ioctl$KVM_GET_DIRTY_LOG(r0, 0x4010ae42, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000ffd000/0x1000)=nil}) mount(&(0x7f0000000140)=@nullb='/dev/nullb0\x00', &(0x7f0000000180)='./file1\x00', &(0x7f00000001c0)='gfs2\x00', 0x2000000, &(0x7f0000000240)='xfs\x00') mount(&(0x7f0000000080)=@filename='./file0\x00', &(0x7f0000000000)='./file0\x00', &(0x7f0000000200)='xfs\x00', 0x0, 0x0) [ 1429.562238] lowmem_reserve[]: 0 0 0 0 0 [ 1429.562267] Node 0 DMA: 16*4kB (UME) 18*8kB (UE) 14*16kB (UME) 16*32kB (UME) 17*64kB (U) 6*128kB (UE) 6*256kB (UE) 2*512kB (ME) 3*1024kB (UME) 1*2048kB (E) 0*4096kB = 10480kB [ 1429.562354] Node 0 DMA32: 456*4kB (UMEH) 399*8kB (UMEH) 694*16kB (UMEH) 398*32kB (UMEH) 151*64kB (UMEH) 10*128kB (UM) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 39800kB [ 1429.562467] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1429.562523] Node 1 Normal: 25*4kB (UE) 15*8kB (UE) 6*16kB (UE) 4*32kB (UME) 1*64kB (E) 31*128kB (UME) 36*256kB (UME) 46*512kB (UME) 15*1024kB (UME) 3*2048kB (UM) 805*4096kB (M) = 3356028kB 06:49:33 executing program 0: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = fanotify_init(0x20, 0x2) pwritev(r2, &(0x7f0000000380)=[{&(0x7f0000000200)="5fb443a644db4a0a2878b9cc26fa06877e9c6962cea117d31a4bb7a145e4e7e26c8bfea83330807d61536da86f137af88d8649f8d7cc7da5a0274c96941bfbd127ef117b24d5baf1134aff47059ae7e1abe235d0759563ed260b7c5315f440", 0x5f}, {&(0x7f0000000280)="89ffd817f1dc2b233cbbcde03fc62c7e16ab177ae92756ce8e94bf661ff23d3cda238d5afffe0dfd89fabf14b9ba58001487cf89eb4569dd27ddca372be0e7260b", 0x41}, {&(0x7f0000000300)="6df5b16becbd81f842a5277a5cc915b4a8a0c106ccfe5d92b4e2bad571f6215a3c21454b9678b9f1bde42451e9182f83ccc68d5496337d40aae1b3adc7c609a261dc130cd74ec827bf4aee41bf5eaf195b71988b85fa94968d00f53b988abd24ba5bb014587d", 0x66}], 0x3, 0x1f) mount(&(0x7f00000003c0)=ANY=[@ANYBLOB="2f6465762f6e62643000da343567e82bbf6bdf787e64c8662c65d07cb9c65748471b57c18aa750ec8205c0be"], &(0x7f00000000c0)='./file0\x00', &(0x7f0000000000)='ocfs2\x00', 0x0, 0x0) ioctl$KVM_PPC_GET_SMMU_INFO(r1, 0x8250aea6, &(0x7f0000000100)=""/196) [ 1429.562620] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1429.562626] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1429.562634] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1429.562640] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1429.562644] 10984 total pagecache pages [ 1429.562657] 0 pages in swap cache [ 1429.562662] Swap cache stats: add 0, delete 0, find 0/0 [ 1429.562667] Free swap = 0kB [ 1429.562671] Total swap = 0kB [ 1429.562678] 1965979 pages RAM [ 1429.562681] 0 pages HighMem/MovableOnly [ 1429.562685] 335868 pages reserved [ 1429.562690] 0 pages cma reserved [ 1429.608192] XFS (loop5): SB validate failed with error -5. [ 1429.758565] syz-executor.1: [ 1429.764864] FAULT_INJECTION: forcing a failure. 06:49:33 executing program 4: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcsa\x00', 0x501302, 0x0) ioctl$VIDIOC_S_PARM(0xffffffffffffffff, 0xc0cc5616, &(0x7f0000000240)={0x1, @capture={0x0, 0x0, {0x3}, 0x0, 0x1}}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$GIO_UNISCRNMAP(0xffffffffffffffff, 0x4b69, &(0x7f0000000140)=""/148) ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f00000036c0)=ANY=[@ANYBLOB="080000000000000000200000000000000010000000000000", @ANYPTR=&(0x7f00000003c0)=ANY=[@ANYBLOB="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002c6505f8cd9a1df54d9f02e40b00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003500"/4096], @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00@\x00\x00\x00\x00\x00\x00s\x00\x00\x00\x00\x00\x00\x00', @ANYPTR=&(0x7f00000000c0)=ANY=[@ANYBLOB='\x00'/115], @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00`\x00\x00\x00\x00\x00\x00H\x00\x00\x00\x00\x00\x00\x00', @ANYPTR=&(0x7f00000013c0)=ANY=[@ANYBLOB='\x00'/72], @ANYBLOB="000000000000000000500000000000000010000000000000", @ANYPTR=&(0x7f0000001440)=ANY=[@ANYBLOB='\x00'/4096], @ANYBLOB="00000000000000000400000000000000b500000000000000", @ANYPTR=&(0x7f0000002440)=ANY=[@ANYBLOB='\x00'/181], @ANYBLOB="000000000000000000f00000000000000010000000000000", @ANYPTR=&(0x7f0000002500)=ANY=[@ANYBLOB='\x00'/4096], @ANYBLOB="00000000000000000000010000000000be00000000000000", @ANYPTR=&(0x7f0000003500)=ANY=[@ANYBLOB='\x00'/190], @ANYBLOB="00000000000000000200000000000000ee00000000000000", @ANYPTR=&(0x7f00000035c0)=ANY=[@ANYBLOB='\x00'/238], @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00']) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6465752196bdc463c90000"], &(0x7f0000000340)='./file0\x00', &(0x7f0000000380)='f2fs\x00', 0x4000, 0x0) [ 1429.764864] name failslab, interval 1, probability 0, space 0, times 0 [ 1429.795409] vmalloc: allocation failure: 0 bytes [ 1429.810651] CPU: 0 PID: 10817 Comm: syz-executor.3 Not tainted 4.14.167-syzkaller #0 [ 1429.824506] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1429.826951] gfs2: invalid mount option: xfs [ 1429.833871] Call Trace: [ 1429.833892] dump_stack+0x142/0x197 [ 1429.833907] should_fail.cold+0x10f/0x159 [ 1429.833925] should_failslab+0xdb/0x130 [ 1429.833934] __kmalloc+0x2f0/0x7a0 [ 1429.833948] ? lock_downgrade+0x740/0x740 [ 1429.833959] ? register_shrinker+0xbd/0x220 [ 1429.833971] register_shrinker+0xbd/0x220 [ 1429.833982] sget_userns+0x9bf/0xc30 [ 1429.833991] ? ns_test_super+0x50/0x50 [ 1429.834005] ? set_bdev_super+0x120/0x120 [ 1429.834014] ? set_bdev_super+0x120/0x120 [ 1429.834023] ? ns_test_super+0x50/0x50 [ 1429.834032] sget+0xd6/0x120 [ 1429.834046] mount_bdev+0xd5/0x370 [ 1429.834057] ? ocfs2_initialize_super.isra.0+0x3260/0x3260 [ 1429.834071] ocfs2_mount+0x35/0x40 [ 1429.838691] gfs2: can't parse mount arguments [ 1429.840975] mount_fs+0x97/0x2a1 [ 1429.840992] vfs_kern_mount.part.0+0x5e/0x3d0 [ 1429.841005] do_mount+0x417/0x27d0 [ 1429.841021] ? copy_mount_string+0x40/0x40 [ 1429.841036] ? memdup_user+0x58/0xa0 [ 1429.841047] ? copy_mount_options+0x1fe/0x2f0 [ 1429.848422] , mode:0x14000c0(GFP_KERNEL), nodemask= [ 1429.849157] SyS_mount+0xab/0x120 [ 1429.849167] ? copy_mnt_ns+0x8c0/0x8c0 [ 1429.849182] do_syscall_64+0x1e8/0x640 [ 1429.849195] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1429.853409] (null) [ 1429.856715] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1429.856726] RIP: 0033:0x45b349 [ 1429.856732] RSP: 002b:00007f214582cc78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1429.856743] RAX: ffffffffffffffda RBX: 00007f214582d6d4 RCX: 000000000045b349 [ 1429.856751] RDX: 0000000020000000 RSI: 00000000200000c0 RDI: 0000000020000080 [ 1429.862760] syz-executor.1 cpuset= [ 1429.866449] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1429.866456] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1429.866461] R13: 0000000000000744 R14: 00000000004c8bd8 R15: 000000000000000d [ 1429.880970] gfs2: invalid mount option: xfs [ 1429.890415] syz1 [ 1429.903094] gfs2: can't parse mount arguments [ 1429.909265] mems_allowed=0-1 [ 1429.941261] ------------[ cut here ]------------ [ 1429.942051] CPU: 1 PID: 10812 Comm: syz-executor.1 Not tainted 4.14.167-syzkaller #0 [ 1429.944905] WARNING: CPU: 0 PID: 10817 at fs/super.c:1163 kill_block_super+0xc9/0xf0 [ 1429.948772] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1429.952643] Kernel panic - not syncing: panic_on_warn set ... [ 1429.952643] [ 1429.957495] Call Trace: [ 1430.070372] dump_stack+0x142/0x197 [ 1430.073998] warn_alloc.cold+0x96/0x1af [ 1430.078039] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 1430.082995] ? lock_downgrade+0x740/0x740 [ 1430.087192] ? avc_has_perm+0x2df/0x4b0 [ 1430.091175] __vmalloc_node_range+0x3c3/0x6a0 [ 1430.095670] ? trace_hardirqs_on+0x10/0x10 [ 1430.099939] vmalloc+0x46/0x50 [ 1430.103161] ? sel_write_load+0x1a0/0x1050 [ 1430.107410] sel_write_load+0x1a0/0x1050 [ 1430.111602] ? save_trace+0x290/0x290 [ 1430.115402] ? sel_read_bool+0x240/0x240 [ 1430.119490] ? trace_hardirqs_on+0x10/0x10 [ 1430.123848] ? debug_smp_processor_id+0x1c/0x20 [ 1430.128538] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1430.133483] __vfs_write+0x105/0x6b0 [ 1430.137197] ? sel_read_bool+0x240/0x240 [ 1430.141287] ? kernel_read+0x120/0x120 [ 1430.145200] ? __lock_is_held+0xb6/0x140 [ 1430.149259] ? check_preemption_disabled+0x3c/0x250 [ 1430.154328] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1430.159793] ? rcu_read_lock_sched_held+0x110/0x130 [ 1430.165063] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 1430.169870] ? __sb_start_write+0x153/0x2f0 [ 1430.174193] vfs_write+0x198/0x500 [ 1430.177738] SyS_write+0xfd/0x230 [ 1430.181186] ? SyS_read+0x230/0x230 [ 1430.184941] ? do_syscall_64+0x53/0x640 [ 1430.189265] ? SyS_read+0x230/0x230 [ 1430.192991] do_syscall_64+0x1e8/0x640 [ 1430.196997] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1430.202278] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1430.207583] RIP: 0033:0x45b349 [ 1430.210803] RSP: 002b:00007f76bb2b4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1430.218528] RAX: ffffffffffffffda RBX: 00007f76bb2b56d4 RCX: 000000000045b349 [ 1430.225813] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005 [ 1430.233191] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1430.240463] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1430.247724] R13: 0000000000000cb1 R14: 00000000004cd905 R15: 000000000075bf2c [ 1430.255073] CPU: 0 PID: 10817 Comm: syz-executor.3 Not tainted 4.14.167-syzkaller #0 [ 1430.262975] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1430.263259] syz-executor.1: [ 1430.272466] Call Trace: [ 1430.272490] dump_stack+0x142/0x197 [ 1430.272504] panic+0x1f9/0x42d [ 1430.272513] ? add_taint.cold+0x16/0x16 [ 1430.272526] ? kill_block_super+0xc9/0xf0 [ 1430.272534] ? __warn.cold+0x14/0x2f [ 1430.272545] ? kill_block_super+0xc9/0xf0 [ 1430.272557] __warn.cold+0x2f/0x2f [ 1430.289768] vmalloc: allocation failure: 0 bytes [ 1430.293465] ? ist_end_non_atomic+0x10/0x10 [ 1430.293479] ? kill_block_super+0xc9/0xf0 [ 1430.293491] report_bug+0x216/0x254 [ 1430.293504] do_error_trap+0x1bb/0x310 [ 1430.293516] ? math_error+0x360/0x360 [ 1430.293526] ? save_trace+0x290/0x290 [ 1430.293539] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1430.302414] , mode:0x14000c0(GFP_KERNEL), nodemask= [ 1430.304981] ? generic_shutdown_super+0x27c/0x370 [ 1430.304999] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1430.305014] do_invalid_op+0x1b/0x20 [ 1430.315877] (null) [ 1430.318751] invalid_op+0x1b/0x40 [ 1430.318764] RIP: 0010:kill_block_super+0xc9/0xf0 [ 1430.318769] RSP: 0018:ffff8881fef27b98 EFLAGS: 00010246 [ 1430.318779] RAX: 0000000000040000 RBX: 0000000000000000 RCX: ffffc9000a658000 [ 1430.318784] RDX: 0000000000040000 RSI: ffffffff818fee89 RDI: ffff888097c904e0 [ 1430.318789] RBP: ffff8881fef27bb0 R08: ffff8880995663c0 R09: 0000000000000001 [ 1430.318795] R10: 0000000000000000 R11: ffff8880995663c0 R12: ffff8880541ee500 [ 1430.318800] R13: ffff888097c90140 R14: ffff8880541ee500 R15: dffffc0000000000 [ 1430.318822] ? kill_block_super+0xc9/0xf0 [ 1430.318834] ? kill_block_super+0xc9/0xf0 [ 1430.318844] deactivate_locked_super+0x74/0xe0 [ 1430.318855] sget_userns+0x9d9/0xc30 [ 1430.327336] syz-executor.1 cpuset= [ 1430.330237] ? ns_test_super+0x50/0x50 [ 1430.330253] ? set_bdev_super+0x120/0x120 [ 1430.330263] ? set_bdev_super+0x120/0x120 [ 1430.330272] ? ns_test_super+0x50/0x50 [ 1430.330279] sget+0xd6/0x120 [ 1430.330292] mount_bdev+0xd5/0x370 [ 1430.330303] ? ocfs2_initialize_super.isra.0+0x3260/0x3260 [ 1430.330315] ocfs2_mount+0x35/0x40 [ 1430.330327] mount_fs+0x97/0x2a1 [ 1430.338566] syz1 [ 1430.339182] vfs_kern_mount.part.0+0x5e/0x3d0 [ 1430.344848] mems_allowed=0-1 [ 1430.349046] do_mount+0x417/0x27d0 [ 1430.349061] ? copy_mount_string+0x40/0x40 [ 1430.349075] ? memdup_user+0x58/0xa0 [ 1430.349084] ? copy_mount_options+0x1fe/0x2f0 [ 1430.349103] SyS_mount+0xab/0x120 [ 1430.349110] ? copy_mnt_ns+0x8c0/0x8c0 [ 1430.349123] do_syscall_64+0x1e8/0x640 [ 1430.502852] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1430.507821] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1430.513008] RIP: 0033:0x45b349 [ 1430.516195] RSP: 002b:00007f214582cc78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1430.523907] RAX: ffffffffffffffda RBX: 00007f214582d6d4 RCX: 000000000045b349 [ 1430.531291] RDX: 0000000020000000 RSI: 00000000200000c0 RDI: 0000000020000080 [ 1430.538564] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1430.546097] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1430.553387] R13: 0000000000000744 R14: 00000000004c8bd8 R15: 000000000000000d [ 1430.560774] CPU: 1 PID: 10826 Comm: syz-executor.1 Not tainted 4.14.167-syzkaller #0 [ 1430.568880] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1430.578446] Call Trace: [ 1430.581066] dump_stack+0x142/0x197 [ 1430.584721] warn_alloc.cold+0x96/0x1af [ 1430.588721] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 1430.593575] ? lock_downgrade+0x740/0x740 [ 1430.597764] ? avc_has_perm+0x2df/0x4b0 [ 1430.601839] __vmalloc_node_range+0x3c3/0x6a0 [ 1430.607062] ? trace_hardirqs_on+0x10/0x10 [ 1430.611320] vmalloc+0x46/0x50 [ 1430.614532] ? sel_write_load+0x1a0/0x1050 [ 1430.618800] sel_write_load+0x1a0/0x1050 [ 1430.622873] ? save_trace+0x290/0x290 [ 1430.626802] ? sel_read_bool+0x240/0x240 [ 1430.630895] ? trace_hardirqs_on+0x10/0x10 [ 1430.635158] ? debug_smp_processor_id+0x1c/0x20 [ 1430.639852] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 1430.644818] __vfs_write+0x105/0x6b0 [ 1430.648558] ? sel_read_bool+0x240/0x240 [ 1430.652639] ? kernel_read+0x120/0x120 [ 1430.656528] ? __lock_is_held+0xb6/0x140 [ 1430.660886] ? check_preemption_disabled+0x3c/0x250 [ 1430.665931] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1430.671403] ? rcu_read_lock_sched_held+0x110/0x130 [ 1430.676960] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 1430.681817] ? __sb_start_write+0x153/0x2f0 [ 1430.686528] vfs_write+0x198/0x500 [ 1430.690074] SyS_write+0xfd/0x230 [ 1430.693532] ? SyS_read+0x230/0x230 [ 1430.697272] ? do_syscall_64+0x53/0x640 [ 1430.701276] ? SyS_read+0x230/0x230 [ 1430.704904] do_syscall_64+0x1e8/0x640 [ 1430.708809] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1430.713681] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1430.718960] RIP: 0033:0x45b349 [ 1430.722156] RSP: 002b:00007f76bb293c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1430.730322] RAX: ffffffffffffffda RBX: 00007f76bb2946d4 RCX: 000000000045b349 [ 1430.737607] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005 [ 1430.745195] RBP: 000000000075bfc8 R08: 0000000000000000 R09: 0000000000000000 [ 1430.752489] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1430.759776] R13: 0000000000000cb1 R14: 00000000004cd905 R15: 000000000075bfd4 [ 1430.768804] Kernel Offset: disabled [ 1430.772604] Rebooting in 86400 seconds..