0000140)='overlay\x00', 0xe9ff53660c9d7455, &(0x7f00000018c0)=ANY=[])
preadv(r4, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

02:59:01 executing program 5:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r3 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r4 = openat$cgroup_procs(r3, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r2, 0x84, 0x19, &(0x7f00000001c0)={0x0, 0x5}, 0x8)
write$cgroup_pid(r4, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x0, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000], 0x0, 0x40040})
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

02:59:01 executing program 2:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r2 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r3 = openat$cgroup_procs(r2, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r1, 0x84, 0x19, &(0x7f00000001c0)={0x0, 0x5}, 0x8)
write$cgroup_pid(r3, &(0x7f0000000300), 0x12)
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0xe9ff53660c9d7455, &(0x7f00000018c0)=ANY=[])
preadv(r4, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

02:59:01 executing program 4:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r2 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r3 = openat$cgroup_procs(r2, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r1, 0x84, 0x19, &(0x7f00000001c0)={0x0, 0x5}, 0x8)
write$cgroup_pid(r3, &(0x7f0000000300), 0x12)
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0xe9ff53660c9d7455, &(0x7f00000018c0)=ANY=[])
preadv(r4, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

02:59:01 executing program 1:
r0 = getpid()
sched_setscheduler(r0, 0x5, 0x0)
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x4000000004002, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r3 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r4 = openat$cgroup_procs(r3, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r2, 0x84, 0x19, &(0x7f00000001c0)={0x0, 0x5}, 0x8)
write$cgroup_pid(r4, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x200, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000, 0x9, 0x2], 0x1000, 0x40040})
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0xe9ff53660c9d7455, &(0x7f00000018c0)=ANY=[])
preadv(r5, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

[ 1246.092333] overlayfs: missing 'lowerdir'
02:59:02 executing program 5:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r3 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r4 = openat$cgroup_procs(r3, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r2, 0x84, 0x19, &(0x7f00000001c0)={0x0, 0x5}, 0x8)
write$cgroup_pid(r4, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x0, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000], 0x0, 0x40040})
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

02:59:02 executing program 0:
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r0 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
write$cgroup_pid(r1, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x200, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000, 0x9, 0x2], 0x1000, 0x40040})
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
r3 = socket$l2tp6(0xa, 0x2, 0x73)
ioctl$void(r3, 0x60022c3c)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0xe9ff53660c9d7455, &(0x7f00000018c0)=ANY=[])
preadv(r2, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f00000014c0)}, {&(0x7f0000001580)="0add52139a511cf3c8b3f840fe6c3aa4cbcb6d5ddfd4103a47db037a2a3f823b8107d0c782093e07819094cd8b53bc64a86b49977d6c82fa69dda3f471fae28ba47563031be1e3a1e0e4fb3c39", 0x4d}], 0x2, 0x1)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

[ 1246.559697] overlayfs: missing 'lowerdir'
02:59:02 executing program 1:
r0 = getpid()
sched_setscheduler(r0, 0x5, 0x0)
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x4000000004002, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r3 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r4 = openat$cgroup_procs(r3, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r2, 0x84, 0x19, &(0x7f00000001c0)={0x0, 0x5}, 0x8)
write$cgroup_pid(r4, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x200, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000, 0x9, 0x2], 0x1000, 0x40040})
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0xe9ff53660c9d7455, &(0x7f00000018c0)=ANY=[])
preadv(r5, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

02:59:02 executing program 3:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r2 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r3 = openat$cgroup_procs(r2, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r1, 0x84, 0x19, &(0x7f00000001c0)={0x0, 0x5}, 0x8)
write$cgroup_pid(r3, &(0x7f0000000300), 0x12)
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0xe9ff53660c9d7455, &(0x7f00000018c0)=ANY=[])
preadv(r4, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

02:59:03 executing program 0:
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r0 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
write$cgroup_pid(r1, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x200, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000, 0x9, 0x2], 0x1000, 0x40040})
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
r3 = socket$l2tp6(0xa, 0x2, 0x73)
ioctl$void(r3, 0x60022c3c)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0xe9ff53660c9d7455, &(0x7f00000018c0)=ANY=[])
preadv(r2, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f00000014c0)}, {&(0x7f0000001580)="0add52139a511cf3c8b3f840fe6c3aa4cbcb6d5ddfd4103a47db037a2a3f823b8107d0c782093e07819094cd8b53bc64a86b49977d6c82fa69dda3f471fae28ba47563031be1e3a1e0e4fb3c39", 0x4d}], 0x2, 0x1)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

02:59:03 executing program 1:
r0 = getpid()
sched_setscheduler(r0, 0x5, 0x0)
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x4000000004002, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r3 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r4 = openat$cgroup_procs(r3, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r2, 0x84, 0x19, &(0x7f00000001c0)={0x0, 0x5}, 0x8)
write$cgroup_pid(r4, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x200, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000, 0x9, 0x2], 0x1000, 0x40040})
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0xe9ff53660c9d7455, &(0x7f00000018c0)=ANY=[])
preadv(r5, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

02:59:03 executing program 4:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r2 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r3 = openat$cgroup_procs(r2, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r1, 0x84, 0x19, &(0x7f00000001c0)={0x0, 0x5}, 0x8)
write$cgroup_pid(r3, &(0x7f0000000300), 0x12)
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0xe9ff53660c9d7455, &(0x7f00000018c0)=ANY=[])
preadv(r4, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

02:59:03 executing program 5:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r3 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r4 = openat$cgroup_procs(r3, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r2, 0x84, 0x19, &(0x7f00000001c0)={0x0, 0x5}, 0x8)
write$cgroup_pid(r4, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x0, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000], 0x0, 0x40040})
openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0x0, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

02:59:03 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

02:59:03 executing program 3:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r2 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r3 = openat$cgroup_procs(r2, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r1, 0x84, 0x19, &(0x7f00000001c0)={0x0, 0x5}, 0x8)
write$cgroup_pid(r3, &(0x7f0000000300), 0x12)
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0xe9ff53660c9d7455, &(0x7f00000018c0)=ANY=[])
preadv(r4, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

02:59:03 executing program 4:
r0 = getpid()
sched_setscheduler(r0, 0x0, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x4000000004002, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r3 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r4 = openat$cgroup_procs(r3, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r2, 0x84, 0x19, &(0x7f00000001c0)={0x0, 0x5}, 0x8)
write$cgroup_pid(r4, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x200, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000, 0x9, 0x2], 0x1000, 0x40040})
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0xe9ff53660c9d7455, &(0x7f00000018c0)=ANY=[])
preadv(r5, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

[ 1248.468899] overlayfs: missing 'lowerdir'
02:59:04 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

02:59:04 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x0)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0xffffffffffffffff)

[ 1248.824787] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1248.836115] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1248.841539] CPU: 1 PID: 541 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1248.849185] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1248.858568] Call Trace:
[ 1248.861185]  dump_stack+0x197/0x210
[ 1248.864956]  dump_header+0x15e/0xa55
[ 1248.868718]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1248.873855]  ? ___ratelimit+0x60/0x595
[ 1248.877768]  ? do_raw_spin_unlock+0x181/0x270
[ 1248.882291]  oom_kill_process.cold+0x10/0x6ef
[ 1248.886814]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1248.892386]  ? task_will_free_mem+0x139/0x6e0
[ 1248.896911]  ? find_held_lock+0x35/0x130
[ 1248.901012]  out_of_memory+0x362/0x1330
[ 1248.905006]  ? lock_downgrade+0x880/0x880
[ 1248.909172]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1248.914326]  ? oom_killer_disable+0x280/0x280
[ 1248.918836]  ? find_held_lock+0x35/0x130
[ 1248.922938]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1248.927809]  ? memcg_event_wake+0x230/0x230
[ 1248.932150]  ? do_raw_spin_unlock+0x181/0x270
[ 1248.936685]  ? _raw_spin_unlock+0x2d/0x50
[ 1248.940854]  try_charge+0xec5/0x1490
[ 1248.944585]  ? lock_downgrade+0x880/0x880
[ 1248.948784]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1248.953670]  ? rcu_read_unlock+0x33/0x60
[ 1248.957751]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1248.962619]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1248.968693]  ? mark_held_locks+0x100/0x100
[ 1248.972969]  mem_cgroup_try_charge+0x259/0x6b0
[ 1248.977568]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1248.982510]  __handle_mm_fault+0x1e50/0x3f80
[ 1248.986933]  ? copy_page_range+0x2030/0x2030
[ 1248.991371]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1248.996053]  handle_mm_fault+0x1b5/0x690
[ 1249.000135]  __get_user_pages+0x609/0x1860
[ 1249.004390]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1249.008908]  ? lock_acquire+0x16f/0x3f0
[ 1249.012894]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1249.018470]  populate_vma_page_range+0x20d/0x2a0
[ 1249.023277]  __mm_populate+0x204/0x380
[ 1249.027199]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1249.032162]  __x64_sys_mlockall+0x35c/0x520
[ 1249.036516]  do_syscall_64+0xfd/0x620
[ 1249.040448]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1249.045664] RIP: 0033:0x45af49
[ 1249.049003] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1249.067949] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1249.075694] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1249.082989] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1249.090285] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1249.097581] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1249.104879] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1249.112481] Task in /syz1 killed as a result of limit of /syz1
[ 1249.118674] memory: usage 307200kB, limit 307200kB, failcnt 5106
[ 1249.124845] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1249.131735] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1249.137923] Memory cgroup stats for /syz1: cache:96KB rss:298476KB rss_huge:266240KB shmem:0KB mapped_file:0KB dirty:132KB writeback:132KB swap:0KB inactive_anon:115844KB active_anon:13004KB inactive_file:0KB active_file:0KB unevictable:169720KB
[ 1249.159930] Memory cgroup out of memory: Kill process 13106 (syz-executor.1) score 1163 or sacrifice child
[ 1249.169820] Killed process 13106 (syz-executor.1) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1250.686107] oom_reaper: reaped process 13106 (syz-executor.1), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
02:59:06 executing program 3:
getpid()
sched_setscheduler(0x0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x4000000004002, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r0, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r2 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r3 = openat$cgroup_procs(r2, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r1, 0x84, 0x19, &(0x7f00000001c0)={0x0, 0x5}, 0x8)
write$cgroup_pid(r3, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x200, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000, 0x9, 0x2], 0x1000, 0x40040})
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0xe9ff53660c9d7455, &(0x7f00000018c0)=ANY=[])
preadv(r4, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

02:59:06 executing program 5:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r3 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r4 = openat$cgroup_procs(r3, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r2, 0x84, 0x19, &(0x7f00000001c0)={0x0, 0x5}, 0x8)
write$cgroup_pid(r4, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x0, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000], 0x0, 0x40040})
openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0x0, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

02:59:06 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

02:59:07 executing program 4:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x4000000004002, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r2 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r3 = openat$cgroup_procs(r2, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
write$cgroup_pid(r3, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x200, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000, 0x9, 0x2], 0x1000, 0x40040})
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
r5 = socket$l2tp6(0xa, 0x2, 0x73)
ioctl$void(r5, 0x60022c3c)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0xe9ff53660c9d7455, &(0x7f00000018c0)=ANY=[])
preadv(r4, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f00000014c0)}, {&(0x7f0000001580)="0add52139a511cf3c8b3f840fe6c3aa4cbcb6d5ddfd4103a47db037a2a3f823b8107d0c782093e07819094cd8b53bc64a86b49977d6c82fa69dda3f471fae28ba47563031be1e3a1e0e4fb3c39", 0x4d}], 0x2, 0x1)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

[ 1251.236523] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1251.248535] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1251.254173] CPU: 1 PID: 541 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1251.261819] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1251.271285] Call Trace:
[ 1251.273916]  dump_stack+0x197/0x210
[ 1251.277581]  dump_header+0x15e/0xa55
[ 1251.281334]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1251.286466]  ? ___ratelimit+0x60/0x595
[ 1251.290381]  ? do_raw_spin_unlock+0x181/0x270
[ 1251.295025]  oom_kill_process.cold+0x10/0x6ef
[ 1251.299548]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1251.305111]  ? task_will_free_mem+0x139/0x6e0
[ 1251.309634]  ? find_held_lock+0x35/0x130
[ 1251.313729]  out_of_memory+0x362/0x1330
[ 1251.317746]  ? lock_downgrade+0x880/0x880
[ 1251.321922]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1251.327402]  ? oom_killer_disable+0x280/0x280
[ 1251.331926]  ? find_held_lock+0x35/0x130
[ 1251.336028]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1251.340906]  ? memcg_event_wake+0x230/0x230
[ 1251.345263]  ? do_raw_spin_unlock+0x181/0x270
[ 1251.349787]  ? _raw_spin_unlock+0x2d/0x50
[ 1251.353968]  try_charge+0xec5/0x1490
[ 1251.357731]  ? lock_downgrade+0x880/0x880
[ 1251.361912]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1251.366780]  ? rcu_read_unlock+0x33/0x60
[ 1251.370957]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1251.375832]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 1251.380797]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1251.386887]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1251.391676]  mem_cgroup_try_charge+0x259/0x6b0
[ 1251.396389]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1251.401341]  wp_page_copy+0x430/0x16a0
[ 1251.405262]  ? follow_pfn+0x2a0/0x2a0
[ 1251.409088]  ? do_raw_spin_unlock+0x181/0x270
[ 1251.413606]  do_wp_page+0x57d/0x10b0
[ 1251.417446]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1251.422126]  ? kasan_check_write+0x14/0x20
[ 1251.426369]  ? do_raw_spin_lock+0xd7/0x250
[ 1251.430639]  __handle_mm_fault+0x2305/0x3f80
[ 1251.435064]  ? copy_page_range+0x2030/0x2030
[ 1251.439679]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1251.444364]  handle_mm_fault+0x1b5/0x690
[ 1251.448445]  __get_user_pages+0x609/0x1860
[ 1251.452711]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1251.457213]  ? retint_kernel+0x2d/0x2d
[ 1251.461135]  populate_vma_page_range+0x20d/0x2a0
[ 1251.466009]  __mm_populate+0x204/0x380
[ 1251.470089]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1251.475050]  __x64_sys_mlockall+0x35c/0x520
[ 1251.479410]  do_syscall_64+0xfd/0x620
[ 1251.483247]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1251.488545] RIP: 0033:0x45af49
[ 1251.491770] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1251.510697] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1251.518430] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1251.525871] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1251.533189] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1251.540490] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1251.547787] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1251.556718] Task in /syz1 killed as a result of limit of /syz1
[ 1251.562872] memory: usage 307200kB, limit 307200kB, failcnt 12725
[ 1251.569255] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1251.576209] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1251.582504] Memory cgroup stats for /syz1: cache:96KB rss:298472KB rss_huge:264192KB shmem:0KB mapped_file:0KB dirty:132KB writeback:132KB swap:0KB inactive_anon:101456KB active_anon:12984KB inactive_file:0KB active_file:0KB unevictable:184092KB
[ 1251.605148] Memory cgroup out of memory: Kill process 540 (syz-executor.1) score 1226 or sacrifice child
[ 1251.616098] Killed process 546 (syz-executor.1) total-vm:72588kB, anon-rss:18204kB, file-rss:34816kB, shmem-rss:0kB
02:59:07 executing program 0:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180)}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x4000000004002, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r2 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r3 = openat$cgroup_procs(r2, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
write$cgroup_pid(r3, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x200, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000, 0x9, 0x2], 0x1000, 0x40040})
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
r5 = socket$l2tp6(0xa, 0x2, 0x73)
ioctl$void(r5, 0x60022c3c)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0xe9ff53660c9d7455, &(0x7f00000018c0)=ANY=[])
preadv(r4, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f00000014c0)}, {&(0x7f0000001580)="0add52139a511cf3c8b3f840fe6c3aa4cbcb6d5ddfd4103a47db037a2a3f823b8107d0c782093e07819094cd8b53bc64a86b49977d6c82fa69dda3f471fae28ba47563031be1e3a1e0e4fb3c39", 0x4d}], 0x2, 0x1)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

[ 1252.544602] overlayfs: missing 'lowerdir'
02:59:10 executing program 3:
getpid()
sched_setscheduler(0x0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x4000000004002, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r0, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r2 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r3 = openat$cgroup_procs(r2, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r1, 0x84, 0x19, &(0x7f00000001c0)={0x0, 0x5}, 0x8)
write$cgroup_pid(r3, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x200, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000, 0x9, 0x2], 0x1000, 0x40040})
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0xe9ff53660c9d7455, &(0x7f00000018c0)=ANY=[])
preadv(r4, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

02:59:10 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

02:59:10 executing program 5:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r3 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r4 = openat$cgroup_procs(r3, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r2, 0x84, 0x19, &(0x7f00000001c0)={0x0, 0x5}, 0x8)
write$cgroup_pid(r4, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x0, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000], 0x0, 0x40040})
openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0x0, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

02:59:10 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

02:59:10 executing program 0:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x4000000004002, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r1 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r2 = openat$cgroup_procs(r1, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
write$cgroup_pid(r2, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x200, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000, 0x9, 0x2], 0x1000, 0x40040})
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
r4 = socket$l2tp6(0xa, 0x2, 0x73)
ioctl$void(r4, 0x60022c3c)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0xe9ff53660c9d7455, &(0x7f00000018c0)=ANY=[])
preadv(r3, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f00000014c0)}, {&(0x7f0000001580)="0add52139a511cf3c8b3f840fe6c3aa4cbcb6d5ddfd4103a47db037a2a3f823b8107d0c782093e07819094cd8b53bc64a86b49977d6c82fa69dda3f471fae28ba47563031be1e3a1e0e4fb3c39", 0x4d}], 0x2, 0x1)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

[ 1255.747186] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1255.763513] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1255.769824] CPU: 0 PID: 580 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1255.777500] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1255.786873] Call Trace:
[ 1255.789489]  dump_stack+0x197/0x210
[ 1255.793283]  dump_header+0x15e/0xa55
[ 1255.797054]  oom_kill_process.cold+0x10/0x6ef
[ 1255.801599]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1255.807165]  ? task_will_free_mem+0x139/0x6e0
[ 1255.811687]  ? find_held_lock+0x35/0x130
[ 1255.815787]  out_of_memory+0x362/0x1330
[ 1255.819819]  ? lock_downgrade+0x880/0x880
[ 1255.823992]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1255.829118]  ? oom_killer_disable+0x280/0x280
[ 1255.833651]  ? find_held_lock+0x35/0x130
[ 1255.837773]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1255.842654]  ? memcg_event_wake+0x230/0x230
[ 1255.847011]  ? do_raw_spin_unlock+0x181/0x270
[ 1255.851527]  ? _raw_spin_unlock+0x2d/0x50
[ 1255.855708]  try_charge+0xec5/0x1490
[ 1255.859477]  ? lock_downgrade+0x880/0x880
[ 1255.863663]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1255.868532]  ? rcu_read_unlock+0x33/0x60
[ 1255.872611]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1255.877473]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 1255.882426]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1255.888505]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1255.893295]  mem_cgroup_try_charge+0x259/0x6b0
[ 1255.897915]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1255.902960]  wp_page_copy+0x430/0x16a0
[ 1255.906928]  ? follow_pfn+0x2a0/0x2a0
[ 1255.910760]  ? do_raw_spin_unlock+0x181/0x270
[ 1255.915282]  do_wp_page+0x57d/0x10b0
[ 1255.919039]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1255.923728]  ? kasan_check_write+0x14/0x20
[ 1255.927980]  ? do_raw_spin_lock+0xd7/0x250
[ 1255.932245]  __handle_mm_fault+0x2305/0x3f80
[ 1255.936690]  ? copy_page_range+0x2030/0x2030
[ 1255.941159]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1255.945862]  handle_mm_fault+0x1b5/0x690
[ 1255.949965]  __get_user_pages+0x609/0x1860
[ 1255.954242]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1255.958761]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1255.963547]  ? retint_kernel+0x2d/0x2d
[ 1255.967469]  populate_vma_page_range+0x20d/0x2a0
[ 1255.972261]  __mm_populate+0x204/0x380
[ 1255.976183]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1255.981152]  __x64_sys_mlockall+0x35c/0x520
[ 1255.985501]  do_syscall_64+0xfd/0x620
[ 1255.989418]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1255.994623] RIP: 0033:0x45af49
[ 1255.997837] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1256.016842] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1256.024570] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1256.031869] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1256.039164] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1256.046462] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1256.053747] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1256.061756] Task in /syz1 killed as a result of limit of /syz1
[ 1256.070251] memory: usage 307200kB, limit 307200kB, failcnt 12763
[ 1256.076747] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1256.083729] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1256.090749] Memory cgroup stats for /syz1: cache:96KB rss:298472KB rss_huge:266240KB shmem:0KB mapped_file:0KB dirty:132KB writeback:132KB swap:0KB inactive_anon:103180KB active_anon:12984KB inactive_file:0KB active_file:0KB unevictable:182316KB
[ 1256.114369] Memory cgroup out of memory: Kill process 579 (syz-executor.1) score 1226 or sacrifice child
[ 1256.125887] Killed process 586 (syz-executor.1) total-vm:72588kB, anon-rss:18204kB, file-rss:34944kB, shmem-rss:0kB
[ 1256.502712] overlayfs: missing 'lowerdir'
02:59:12 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

02:59:13 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

02:59:14 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

02:59:16 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

02:59:16 executing program 5:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r3 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r4 = openat$cgroup_procs(r3, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r2, 0x84, 0x19, &(0x7f00000001c0)={0x0, 0x5}, 0x8)
write$cgroup_pid(r4, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x0, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000], 0x0, 0x40040})
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0x0, 0x0)
preadv(r5, 0x0, 0x0, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

[ 1260.770019] overlayfs: missing 'lowerdir'
02:59:16 executing program 4:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x4000000004002, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r2 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r3 = openat$cgroup_procs(r2, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
write$cgroup_pid(r3, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x200, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000, 0x9, 0x2], 0x1000, 0x40040})
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
r5 = socket$l2tp6(0xa, 0x2, 0x73)
ioctl$void(r5, 0x60022c3c)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0xe9ff53660c9d7455, &(0x7f00000018c0)=ANY=[])
preadv(r4, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f00000014c0)}, {&(0x7f0000001580)="0add52139a511cf3c8b3f840fe6c3aa4cbcb6d5ddfd4103a47db037a2a3f823b8107d0c782093e07819094cd8b53bc64a86b49977d6c82fa69dda3f471fae28ba47563031be1e3a1e0e4fb3c39", 0x4d}], 0x2, 0x1)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

02:59:16 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

02:59:16 executing program 3:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

02:59:16 executing program 0:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x4000000004002, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r1 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r2 = openat$cgroup_procs(r1, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
write$cgroup_pid(r2, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x200, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000, 0x9, 0x2], 0x1000, 0x40040})
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
r4 = socket$l2tp6(0xa, 0x2, 0x73)
ioctl$void(r4, 0x60022c3c)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0xe9ff53660c9d7455, &(0x7f00000018c0)=ANY=[])
preadv(r3, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f00000014c0)}, {&(0x7f0000001580)="0add52139a511cf3c8b3f840fe6c3aa4cbcb6d5ddfd4103a47db037a2a3f823b8107d0c782093e07819094cd8b53bc64a86b49977d6c82fa69dda3f471fae28ba47563031be1e3a1e0e4fb3c39", 0x4d}], 0x2, 0x1)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

02:59:16 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

02:59:16 executing program 5:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r3 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r4 = openat$cgroup_procs(r3, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r2, 0x84, 0x19, &(0x7f00000001c0)={0x0, 0x5}, 0x8)
write$cgroup_pid(r4, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x0, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000], 0x0, 0x40040})
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0x0, 0x0)
preadv(r5, 0x0, 0x0, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

02:59:17 executing program 3:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

02:59:17 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1262.012571] overlayfs: missing 'lowerdir'
02:59:18 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

[ 1262.614964] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1262.626491] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1262.632323] CPU: 1 PID: 630 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1262.639964] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1262.649344] Call Trace:
[ 1262.651959]  dump_stack+0x197/0x210
[ 1262.655726]  dump_header+0x15e/0xa55
[ 1262.659481]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1262.664612]  ? ___ratelimit+0x60/0x595
[ 1262.668561]  ? do_raw_spin_unlock+0x181/0x270
[ 1262.673085]  oom_kill_process.cold+0x10/0x6ef
[ 1262.677611]  ? out_of_memory+0x14a/0x1330
[ 1262.681791]  out_of_memory+0x362/0x1330
[ 1262.685818]  ? lock_downgrade+0x880/0x880
[ 1262.689986]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1262.695116]  ? oom_killer_disable+0x280/0x280
[ 1262.699661]  ? find_held_lock+0x35/0x130
[ 1262.703850]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1262.708762]  ? memcg_event_wake+0x230/0x230
[ 1262.713131]  ? do_raw_spin_unlock+0x181/0x270
[ 1262.717638]  ? _raw_spin_unlock+0x2d/0x50
[ 1262.721788]  try_charge+0xec5/0x1490
[ 1262.725522]  ? lock_downgrade+0x880/0x880
[ 1262.729718]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1262.734570]  ? rcu_read_unlock+0x33/0x60
[ 1262.738622]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1262.743454]  ? retint_kernel+0x2d/0x2d
[ 1262.747338]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1262.753407]  mem_cgroup_try_charge+0x259/0x6b0
[ 1262.757998]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1262.762931]  wp_page_copy+0x430/0x16a0
[ 1262.767253]  ? follow_pfn+0x2a0/0x2a0
[ 1262.771049]  ? do_raw_spin_unlock+0x181/0x270
[ 1262.775559]  do_wp_page+0x57d/0x10b0
[ 1262.779271]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1262.783944]  ? kasan_check_write+0x14/0x20
[ 1262.788170]  ? do_raw_spin_lock+0xd7/0x250
[ 1262.792416]  __handle_mm_fault+0x2305/0x3f80
[ 1262.796834]  ? copy_page_range+0x2030/0x2030
[ 1262.801257]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1262.805930]  handle_mm_fault+0x1b5/0x690
[ 1262.809990]  __get_user_pages+0x609/0x1860
[ 1262.814247]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1262.818749]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1262.823521]  ? retint_kernel+0x2d/0x2d
[ 1262.827481]  populate_vma_page_range+0x20d/0x2a0
[ 1262.832265]  __mm_populate+0x204/0x380
[ 1262.836176]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1262.841135]  __x64_sys_mlockall+0x35c/0x520
[ 1262.845487]  do_syscall_64+0xfd/0x620
[ 1262.849334]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1262.854527] RIP: 0033:0x45af49
[ 1262.857735] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1262.876645] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1262.884349] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1262.891613] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1262.899083] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1262.906364] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1262.913633] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1262.921583] Task in /syz1 killed as a result of limit of /syz1
[ 1262.927667] memory: usage 307200kB, limit 307200kB, failcnt 12779
[ 1262.933912] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1262.940870] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1262.947099] Memory cgroup stats for /syz1: cache:96KB rss:298364KB rss_huge:264192KB shmem:0KB mapped_file:0KB dirty:132KB writeback:132KB swap:0KB inactive_anon:103180KB active_anon:12992KB inactive_file:0KB active_file:0KB unevictable:182248KB
[ 1262.969226] Memory cgroup out of memory: Kill process 628 (syz-executor.1) score 1226 or sacrifice child
[ 1262.979189] Killed process 646 (syz-executor.1) total-vm:72720kB, anon-rss:18332kB, file-rss:34816kB, shmem-rss:0kB
02:59:18 executing program 5:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r3 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r4 = openat$cgroup_procs(r3, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r2, 0x84, 0x19, &(0x7f00000001c0)={0x0, 0x5}, 0x8)
write$cgroup_pid(r4, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x0, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000], 0x0, 0x40040})
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0x0, 0x0)
preadv(r5, 0x0, 0x0, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

02:59:19 executing program 1:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
r2 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r3 = openat$cgroup_procs(r2, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r1, 0x84, 0x19, &(0x7f00000001c0)={0x0, 0x5}, 0x8)
write$cgroup_pid(r3, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x200, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000, 0x9, 0x2], 0x1000, 0x40040})
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0xe9ff53660c9d7455, &(0x7f00000018c0)=ANY=[])
preadv(r4, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

02:59:19 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

[ 1264.255777] overlayfs: missing 'lowerdir'
02:59:20 executing program 4:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x4000000004002, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r2 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r3 = openat$cgroup_procs(r2, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
write$cgroup_pid(r3, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x200, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000, 0x9, 0x2], 0x1000, 0x40040})
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
r5 = socket$l2tp6(0xa, 0x2, 0x73)
ioctl$void(r5, 0x60022c3c)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0xe9ff53660c9d7455, &(0x7f00000018c0)=ANY=[])
preadv(r4, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f00000014c0)}, {&(0x7f0000001580)="0add52139a511cf3c8b3f840fe6c3aa4cbcb6d5ddfd4103a47db037a2a3f823b8107d0c782093e07819094cd8b53bc64a86b49977d6c82fa69dda3f471fae28ba47563031be1e3a1e0e4fb3c39", 0x4d}], 0x2, 0x1)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

02:59:20 executing program 3:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

02:59:20 executing program 5:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r3 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r4 = openat$cgroup_procs(r3, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r2, 0x84, 0x19, &(0x7f00000001c0)={0x0, 0x5}, 0x8)
write$cgroup_pid(r4, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x0, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000], 0x0, 0x40040})
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000040), 0x0, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

02:59:21 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1266.552276] overlayfs: missing 'lowerdir'
02:59:22 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

02:59:22 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

02:59:22 executing program 3:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

02:59:22 executing program 1:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
r2 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r3 = openat$cgroup_procs(r2, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r1, 0x84, 0x19, &(0x7f00000001c0)={0x0, 0x5}, 0x8)
write$cgroup_pid(r3, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x200, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000, 0x9, 0x2], 0x1000, 0x40040})
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0xe9ff53660c9d7455, &(0x7f00000018c0)=ANY=[])
preadv(r4, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

02:59:22 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

02:59:25 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0xffffffffffffffff)

02:59:25 executing program 3:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x4000000004002, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r2 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r3 = openat$cgroup_procs(r2, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
write$cgroup_pid(r3, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x200, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000, 0x9, 0x2], 0x1000, 0x40040})
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
r5 = socket$l2tp6(0xa, 0x2, 0x73)
ioctl$void(r5, 0x60022c3c)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0xe9ff53660c9d7455, &(0x7f00000018c0)=ANY=[])
preadv(r4, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f00000014c0)}, {&(0x7f0000001580)="0add52139a511cf3c8b3f840fe6c3aa4cbcb6d5ddfd4103a47db037a2a3f823b8107d0c782093e07819094cd8b53bc64a86b49977d6c82fa69dda3f471fae28ba47563031be1e3a1e0e4fb3c39", 0x4d}], 0x2, 0x1)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

02:59:25 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

02:59:26 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

02:59:26 executing program 1:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x4000000004002, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r2 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r3 = openat$cgroup_procs(r2, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
write$cgroup_pid(r3, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x200, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000, 0x9, 0x2], 0x1000, 0x40040})
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
r5 = socket$l2tp6(0xa, 0x2, 0x73)
ioctl$void(r5, 0x60022c3c)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0xe9ff53660c9d7455, &(0x7f00000018c0)=ANY=[])
preadv(r4, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f00000014c0)}, {&(0x7f0000001580)="0add52139a511cf3c8b3f840fe6c3aa4cbcb6d5ddfd4103a47db037a2a3f823b8107d0c782093e07819094cd8b53bc64a86b49977d6c82fa69dda3f471fae28ba47563031be1e3a1e0e4fb3c39", 0x4d}], 0x2, 0x1)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

02:59:27 executing program 5:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r3 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r4 = openat$cgroup_procs(r3, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r2, 0x84, 0x19, &(0x7f00000001c0)={0x0, 0x5}, 0x8)
write$cgroup_pid(r4, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x0, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000], 0x0, 0x40040})
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000040), 0x0, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

02:59:27 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

02:59:29 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0xffffffffffffffff)

[ 1273.340392] overlayfs: missing 'lowerdir'
02:59:29 executing program 3:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x4000000004002, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r2 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r3 = openat$cgroup_procs(r2, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
write$cgroup_pid(r3, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x200, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000, 0x9, 0x2], 0x1000, 0x40040})
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
r5 = socket$l2tp6(0xa, 0x2, 0x73)
ioctl$void(r5, 0x60022c3c)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0xe9ff53660c9d7455, &(0x7f00000018c0)=ANY=[])
preadv(r4, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f00000014c0)}, {&(0x7f0000001580)="0add52139a511cf3c8b3f840fe6c3aa4cbcb6d5ddfd4103a47db037a2a3f823b8107d0c782093e07819094cd8b53bc64a86b49977d6c82fa69dda3f471fae28ba47563031be1e3a1e0e4fb3c39", 0x4d}], 0x2, 0x1)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

02:59:29 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

02:59:29 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

02:59:29 executing program 5:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r3 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r4 = openat$cgroup_procs(r3, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r2, 0x84, 0x19, &(0x7f00000001c0)={0x0, 0x5}, 0x8)
write$cgroup_pid(r4, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x0, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000], 0x0, 0x40040})
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000040), 0x0, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

02:59:30 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

02:59:32 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1276.726258] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1276.737651] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1276.743292] CPU: 1 PID: 772 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1276.750930] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1276.760300] Call Trace:
[ 1276.762923]  dump_stack+0x197/0x210
[ 1276.766586]  dump_header+0x15e/0xa55
[ 1276.770332]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1276.775435]  ? ___ratelimit+0x60/0x595
[ 1276.779327]  ? do_raw_spin_unlock+0x181/0x270
[ 1276.783835]  oom_kill_process.cold+0x10/0x6ef
[ 1276.788357]  out_of_memory+0x362/0x1330
[ 1276.792345]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1276.797141]  ? oom_killer_disable+0x280/0x280
[ 1276.801645]  ? find_held_lock+0x35/0x130
[ 1276.805715]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1276.810561]  ? memcg_event_wake+0x230/0x230
[ 1276.814885]  try_charge+0xec5/0x1490
[ 1276.818614]  ? lock_downgrade+0x880/0x880
[ 1276.822771]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1276.827606]  ? rcu_read_unlock+0x33/0x60
[ 1276.831657]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1276.836504]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1276.842591]  mem_cgroup_try_charge+0x259/0x6b0
[ 1276.847187]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1276.852126]  wp_page_copy+0x430/0x16a0
[ 1276.856026]  ? follow_pfn+0x2a0/0x2a0
[ 1276.859826]  ? do_raw_spin_unlock+0x181/0x270
[ 1276.864361]  do_wp_page+0x57d/0x10b0
[ 1276.868098]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1276.872786]  ? kasan_check_write+0x14/0x20
[ 1276.877033]  ? do_raw_spin_lock+0xd7/0x250
[ 1276.881270]  __handle_mm_fault+0x2305/0x3f80
[ 1276.885676]  ? copy_page_range+0x2030/0x2030
[ 1276.890091]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1276.894752]  handle_mm_fault+0x1b5/0x690
[ 1276.899771]  __get_user_pages+0x609/0x1860
[ 1276.904007]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1276.908515]  ? retint_kernel+0x2d/0x2d
[ 1276.912404]  populate_vma_page_range+0x20d/0x2a0
[ 1276.917161]  __mm_populate+0x204/0x380
[ 1276.921044]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1276.925987]  __x64_sys_mlockall+0x35c/0x520
[ 1276.930314]  do_syscall_64+0xfd/0x620
[ 1276.934149]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1276.939351] RIP: 0033:0x45af49
[ 1276.942544] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1276.961542] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1276.969246] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1276.976603] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1276.983871] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1276.991219] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1276.998498] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1277.007021] Task in /syz1 killed as a result of limit of /syz1
[ 1277.013129] memory: usage 307200kB, limit 307200kB, failcnt 12790
[ 1277.019512] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1277.026877] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1277.033154] Memory cgroup stats for /syz1: cache:96KB rss:298424KB rss_huge:266240KB shmem:0KB mapped_file:0KB dirty:132KB writeback:132KB swap:0KB inactive_anon:103176KB active_anon:12988KB inactive_file:4KB active_file:0KB unevictable:182208KB
[ 1277.055632] Memory cgroup out of memory: Kill process 767 (syz-executor.1) score 1226 or sacrifice child
[ 1277.066157] Killed process 774 (syz-executor.1) total-vm:72588kB, anon-rss:18204kB, file-rss:34816kB, shmem-rss:0kB
02:59:33 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

02:59:33 executing program 3:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

02:59:34 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

[ 1279.008664] overlayfs: missing 'lowerdir'
02:59:34 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

02:59:35 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

02:59:36 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

02:59:36 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1282.027591] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1282.039547] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1282.045396] CPU: 0 PID: 800 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1282.053072] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1282.062872] Call Trace:
[ 1282.065497]  dump_stack+0x197/0x210
[ 1282.069173]  dump_header+0x15e/0xa55
[ 1282.072919]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1282.078055]  ? ___ratelimit+0x60/0x595
[ 1282.081969]  ? do_raw_spin_unlock+0x181/0x270
[ 1282.086509]  oom_kill_process.cold+0x10/0x6ef
[ 1282.091404]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1282.097234]  ? task_will_free_mem+0x139/0x6e0
[ 1282.101760]  ? find_held_lock+0x35/0x130
[ 1282.106006]  out_of_memory+0x362/0x1330
[ 1282.110250]  ? lock_downgrade+0x880/0x880
[ 1282.114436]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1282.119586]  ? oom_killer_disable+0x280/0x280
[ 1282.124410]  ? find_held_lock+0x35/0x130
[ 1282.128530]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1282.133404]  ? memcg_event_wake+0x230/0x230
[ 1282.137767]  ? do_raw_spin_unlock+0x181/0x270
[ 1282.142296]  ? _raw_spin_unlock+0x2d/0x50
[ 1282.146558]  try_charge+0xec5/0x1490
[ 1282.150308]  ? lock_downgrade+0x880/0x880
[ 1282.154504]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1282.159378]  ? rcu_read_unlock+0x33/0x60
[ 1282.163468]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1282.168443]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1282.174564]  mem_cgroup_try_charge+0x259/0x6b0
[ 1282.179272]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1282.184935]  wp_page_copy+0x430/0x16a0
[ 1282.188952]  ? follow_pfn+0x2a0/0x2a0
[ 1282.192879]  ? do_raw_spin_unlock+0x181/0x270
[ 1282.197425]  do_wp_page+0x57d/0x10b0
[ 1282.201264]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1282.206209]  ? kasan_check_write+0x14/0x20
[ 1282.210482]  ? do_raw_spin_lock+0xd7/0x250
[ 1282.215041]  __handle_mm_fault+0x2305/0x3f80
[ 1282.219566]  ? copy_page_range+0x2030/0x2030
[ 1282.224054]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1282.228764]  handle_mm_fault+0x1b5/0x690
[ 1282.232867]  __get_user_pages+0x609/0x1860
[ 1282.237161]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1282.241868]  ? lock_acquire+0x16f/0x3f0
[ 1282.246123]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1282.251890]  populate_vma_page_range+0x20d/0x2a0
[ 1282.256706]  __mm_populate+0x204/0x380
[ 1282.260802]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1282.265807]  __x64_sys_mlockall+0x35c/0x520
[ 1282.270176]  do_syscall_64+0xfd/0x620
[ 1282.274015]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1282.279233] RIP: 0033:0x45af49
[ 1282.282455] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1282.301472] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1282.309299] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1282.316794] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1282.324097] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1282.331764] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1282.339077] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1282.347484] Task in /syz1 killed as a result of limit of /syz1
[ 1282.354552] memory: usage 307200kB, limit 307200kB, failcnt 12807
[ 1282.363512] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1282.370536] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1282.377515] Memory cgroup stats for /syz1: cache:96KB rss:298304KB rss_huge:266240KB shmem:0KB mapped_file:0KB dirty:132KB writeback:132KB swap:0KB inactive_anon:103180KB active_anon:12984KB inactive_file:0KB active_file:0KB unevictable:182196KB
[ 1282.404448] Memory cgroup out of memory: Kill process 799 (syz-executor.1) score 1226 or sacrifice child
[ 1282.418673] Killed process 809 (syz-executor.1) total-vm:72588kB, anon-rss:18204kB, file-rss:34944kB, shmem-rss:0kB
02:59:38 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

02:59:38 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

02:59:40 executing program 5:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r3 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r4 = openat$cgroup_procs(r3, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r2, 0x84, 0x19, &(0x7f00000001c0)={0x0, 0x5}, 0x8)
write$cgroup_pid(r4, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x0, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000], 0x0, 0x40040})
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000040)=[{0x0}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

02:59:40 executing program 3:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

02:59:40 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

02:59:40 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

02:59:40 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

02:59:42 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

02:59:42 executing program 3:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

02:59:42 executing program 0:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x4000000004002, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r2 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r3 = openat$cgroup_procs(r2, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
write$cgroup_pid(r3, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x200, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000, 0x9, 0x2], 0x1000, 0x40040})
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
r5 = socket$l2tp6(0xa, 0x2, 0x73)
ioctl$void(r5, 0x60022c3c)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0xe9ff53660c9d7455, &(0x7f00000018c0)=ANY=[])
preadv(r4, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f00000014c0)}, {&(0x7f0000001580)="0add52139a511cf3c8b3f840fe6c3aa4cbcb6d5ddfd4103a47db037a2a3f823b8107d0c782093e07819094cd8b53bc64a86b49977d6c82fa69dda3f471fae28ba47563031be1e3a1e0e4fb3c39", 0x4d}], 0x2, 0x1)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

02:59:42 executing program 5:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r3 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r4 = openat$cgroup_procs(r3, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r2, 0x84, 0x19, &(0x7f00000001c0)={0x0, 0x5}, 0x8)
write$cgroup_pid(r4, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x0, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000], 0x0, 0x40040})
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000040)=[{0x0}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

02:59:43 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1288.298783] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1288.312131] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1288.326531] CPU: 0 PID: 844 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1288.334323] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1288.343706] Call Trace:
[ 1288.346330]  dump_stack+0x197/0x210
[ 1288.350001]  dump_header+0x15e/0xa55
[ 1288.353759]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1288.361423]  ? ___ratelimit+0x60/0x595
[ 1288.365351]  ? do_raw_spin_unlock+0x181/0x270
[ 1288.369905]  oom_kill_process.cold+0x10/0x6ef
[ 1288.374465]  ? mem_cgroup_scan_tasks+0x13e/0x180
[ 1288.379277]  out_of_memory+0x362/0x1330
[ 1288.383295]  ? lock_downgrade+0x880/0x880
[ 1288.387476]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1288.392621]  ? oom_killer_disable+0x280/0x280
[ 1288.397149]  ? find_held_lock+0x35/0x130
[ 1288.401259]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1288.406138]  ? memcg_event_wake+0x230/0x230
[ 1288.410494]  ? do_raw_spin_unlock+0x181/0x270
[ 1288.415013]  ? _raw_spin_unlock+0x2d/0x50
[ 1288.419187]  try_charge+0xec5/0x1490
[ 1288.422925]  ? lock_downgrade+0x880/0x880
[ 1288.427113]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1288.431978]  ? rcu_read_unlock+0x33/0x60
[ 1288.436060]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1288.440944]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1288.447046]  mem_cgroup_try_charge+0x259/0x6b0
[ 1288.451686]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1288.456638]  wp_page_copy+0x430/0x16a0
[ 1288.460592]  ? follow_pfn+0x2a0/0x2a0
[ 1288.464441]  ? do_raw_spin_unlock+0x181/0x270
[ 1288.468980]  do_wp_page+0x57d/0x10b0
[ 1288.472733]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1288.477443]  ? kasan_check_write+0x14/0x20
[ 1288.481707]  ? do_raw_spin_lock+0xd7/0x250
[ 1288.485983]  __handle_mm_fault+0x2305/0x3f80
[ 1288.490426]  ? copy_page_range+0x2030/0x2030
[ 1288.494862]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1288.499689]  handle_mm_fault+0x1b5/0x690
[ 1288.503772]  ? __get_user_pages+0x4f5/0x1860
[ 1288.508221]  __get_user_pages+0x609/0x1860
[ 1288.512500]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1288.517013]  ? retint_kernel+0x2d/0x2d
[ 1288.520959]  populate_vma_page_range+0x20d/0x2a0
[ 1288.525750]  __mm_populate+0x204/0x380
[ 1288.529669]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1288.534638]  __x64_sys_mlockall+0x35c/0x520
[ 1288.538990]  do_syscall_64+0xfd/0x620
[ 1288.542817]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1288.548022] RIP: 0033:0x45af49
[ 1288.551232] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1288.570152] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1288.577877] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1288.585167] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1288.592450] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1288.599735] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1288.607025] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1288.614618] Task in /syz1 killed as a result of limit of /syz1
[ 1288.620751] memory: usage 307200kB, limit 307200kB, failcnt 12840
[ 1288.627408] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1288.635547] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1288.642618] Memory cgroup stats for /syz1: cache:96KB rss:298208KB rss_huge:266240KB shmem:0KB mapped_file:0KB dirty:132KB writeback:132KB swap:0KB inactive_anon:103180KB active_anon:12984KB inactive_file:0KB active_file:0KB unevictable:182164KB
[ 1288.665842] Memory cgroup out of memory: Kill process 842 (syz-executor.1) score 1226 or sacrifice child
[ 1288.675683] Killed process 852 (syz-executor.1) total-vm:72588kB, anon-rss:18204kB, file-rss:34816kB, shmem-rss:0kB
02:59:44 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

02:59:44 executing program 3:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x4000000004002, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
r2 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r3 = openat$cgroup_procs(r2, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r1, 0x84, 0x19, &(0x7f00000001c0)={0x0, 0x5}, 0x8)
write$cgroup_pid(r3, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x200, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000, 0x9, 0x2], 0x1000, 0x40040})
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0xe9ff53660c9d7455, &(0x7f00000018c0)=ANY=[])
preadv(r4, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

[ 1289.514742] overlayfs: missing 'lowerdir'
02:59:45 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

02:59:47 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

02:59:47 executing program 3:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

02:59:47 executing program 0:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x4000000004002, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r2 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r3 = openat$cgroup_procs(r2, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
write$cgroup_pid(r3, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x200, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000, 0x9, 0x2], 0x1000, 0x40040})
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
r5 = socket$l2tp6(0xa, 0x2, 0x73)
ioctl$void(r5, 0x60022c3c)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0xe9ff53660c9d7455, &(0x7f00000018c0)=ANY=[])
preadv(r4, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f00000014c0)}, {&(0x7f0000001580)="0add52139a511cf3c8b3f840fe6c3aa4cbcb6d5ddfd4103a47db037a2a3f823b8107d0c782093e07819094cd8b53bc64a86b49977d6c82fa69dda3f471fae28ba47563031be1e3a1e0e4fb3c39", 0x4d}], 0x2, 0x1)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

02:59:48 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

02:59:48 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

02:59:48 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

02:59:48 executing program 3:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

02:59:49 executing program 5:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r3 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r4 = openat$cgroup_procs(r3, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r2, 0x84, 0x19, &(0x7f00000001c0)={0x0, 0x5}, 0x8)
write$cgroup_pid(r4, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x0, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000], 0x0, 0x40040})
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000040)=[{0x0}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

[ 1293.803729] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1293.815300] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1293.821172] CPU: 1 PID: 896 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1293.828975] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1293.838350] Call Trace:
[ 1293.840961]  dump_stack+0x197/0x210
[ 1293.844626]  dump_header+0x15e/0xa55
[ 1293.848378]  ? oom_kill_process+0x136/0x150
[ 1293.852725]  oom_kill_process.cold+0x10/0x6ef
[ 1293.857259]  out_of_memory+0x362/0x1330
[ 1293.861258]  ? lock_downgrade+0x880/0x880
[ 1293.865423]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1293.870537]  ? oom_killer_disable+0x280/0x280
[ 1293.875041]  ? find_held_lock+0x35/0x130
[ 1293.879132]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1293.883987]  ? memcg_event_wake+0x230/0x230
[ 1293.888328]  ? do_raw_spin_unlock+0x181/0x270
[ 1293.892836]  ? _raw_spin_unlock+0x2d/0x50
[ 1293.896995]  try_charge+0xec5/0x1490
[ 1293.900743]  ? lock_downgrade+0x880/0x880
[ 1293.904906]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1293.909767]  ? rcu_read_unlock+0x33/0x60
[ 1293.913841]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1293.918701]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1293.924781]  mem_cgroup_try_charge+0x259/0x6b0
[ 1293.929382]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1293.934327]  wp_page_copy+0x430/0x16a0
[ 1293.938233]  ? follow_pfn+0x2a0/0x2a0
[ 1293.942051]  ? do_raw_spin_unlock+0x181/0x270
[ 1293.946557]  do_wp_page+0x57d/0x10b0
[ 1293.950291]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1293.954970]  ? kasan_check_write+0x14/0x20
[ 1293.959228]  ? do_raw_spin_lock+0xd7/0x250
[ 1293.963823]  __handle_mm_fault+0x2305/0x3f80
[ 1293.968257]  ? copy_page_range+0x2030/0x2030
[ 1293.972713]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1293.977405]  handle_mm_fault+0x1b5/0x690
[ 1293.981494]  __get_user_pages+0x609/0x1860
[ 1293.985761]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1293.990278]  ? retint_kernel+0x2d/0x2d
[ 1293.994198]  ? populate_vma_page_range+0x1b4/0x2a0
[ 1293.999158]  populate_vma_page_range+0x20d/0x2a0
[ 1294.003942]  __mm_populate+0x204/0x380
[ 1294.007857]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1294.012813]  __x64_sys_mlockall+0x35c/0x520
[ 1294.017151]  do_syscall_64+0xfd/0x620
[ 1294.020981]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1294.026186] RIP: 0033:0x45af49
[ 1294.029409] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1294.048333] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1294.056069] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1294.063361] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1294.070649] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1294.077939] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1294.085228] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1294.097573] Task in /syz1 killed as a result of limit of /syz1
[ 1294.103841] memory: usage 307200kB, limit 307200kB, failcnt 12858
[ 1294.110343] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1294.117192] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1294.123396] Memory cgroup stats for /syz1: cache:96KB rss:298308KB rss_huge:266240KB shmem:0KB mapped_file:0KB dirty:132KB writeback:132KB swap:0KB inactive_anon:103180KB active_anon:12984KB inactive_file:0KB active_file:0KB unevictable:182168KB
[ 1294.146060] Memory cgroup out of memory: Kill process 890 (syz-executor.1) score 1223 or sacrifice child
[ 1294.156289] Killed process 904 (syz-executor.1) total-vm:72588kB, anon-rss:18204kB, file-rss:34816kB, shmem-rss:0kB
02:59:52 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

[ 1297.337190] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1297.348813] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1297.354332] CPU: 1 PID: 913 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1297.361961] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1297.371318] Call Trace:
[ 1297.373939]  dump_stack+0x197/0x210
[ 1297.377593]  dump_header+0x15e/0xa55
[ 1297.381325]  ? oom_kill_process+0x136/0x150
[ 1297.385661]  ? oom_kill_process.cold+0x5/0x6ef
[ 1297.390261]  oom_kill_process.cold+0x10/0x6ef
[ 1297.394796]  out_of_memory+0x362/0x1330
[ 1297.398813]  ? oom_killer_disable+0x280/0x280
[ 1297.403335]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1297.408191]  ? memcg_event_wake+0x230/0x230
[ 1297.412528]  ? do_raw_spin_unlock+0x181/0x270
[ 1297.417042]  ? _raw_spin_unlock+0x2d/0x50
[ 1297.421204]  try_charge+0xec5/0x1490
[ 1297.424936]  ? lock_downgrade+0x880/0x880
[ 1297.429113]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1297.433967]  ? rcu_read_unlock+0x33/0x60
[ 1297.438044]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1297.442923]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1297.449005]  mem_cgroup_try_charge+0x259/0x6b0
[ 1297.453605]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1297.458548]  wp_page_copy+0x430/0x16a0
[ 1297.462454]  ? follow_pfn+0x2a0/0x2a0
[ 1297.466268]  ? do_raw_spin_unlock+0x181/0x270
[ 1297.470777]  do_wp_page+0x57d/0x10b0
[ 1297.474504]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1297.479186]  ? kasan_check_write+0x14/0x20
[ 1297.483437]  ? do_raw_spin_lock+0xd7/0x250
[ 1297.487693]  __handle_mm_fault+0x2305/0x3f80
[ 1297.492147]  ? copy_page_range+0x2030/0x2030
[ 1297.496592]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1297.501275]  handle_mm_fault+0x1b5/0x690
[ 1297.505354]  __get_user_pages+0x609/0x1860
[ 1297.509617]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1297.514138]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1297.518909]  ? retint_kernel+0x2d/0x2d
[ 1297.522816]  populate_vma_page_range+0x20d/0x2a0
[ 1297.527599]  __mm_populate+0x204/0x380
[ 1297.531502]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1297.536456]  __x64_sys_mlockall+0x35c/0x520
[ 1297.540789]  do_syscall_64+0xfd/0x620
[ 1297.544623]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1297.549837] RIP: 0033:0x45af49
[ 1297.553045] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1297.571972] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1297.579696] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1297.586971] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1297.594263] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1297.601545] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1297.608907] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1297.617791] Task in /syz1 killed as a result of limit of /syz1
[ 1297.626216] memory: usage 307200kB, limit 307200kB, failcnt 12876
[ 1297.632556] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1297.639704] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1297.646041] Memory cgroup stats for /syz1: cache:96KB rss:298308KB rss_huge:266240KB shmem:0KB mapped_file:0KB dirty:132KB writeback:132KB swap:0KB inactive_anon:103176KB active_anon:12988KB inactive_file:0KB active_file:0KB unevictable:182120KB
[ 1297.668364] Memory cgroup out of memory: Kill process 912 (syz-executor.1) score 1223 or sacrifice child
[ 1297.678515] Killed process 914 (syz-executor.1) total-vm:72588kB, anon-rss:18204kB, file-rss:34816kB, shmem-rss:0kB
02:59:54 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

02:59:54 executing program 3:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

02:59:57 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

02:59:57 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

02:59:57 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

02:59:59 executing program 0:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x4000000004002, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r2 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r3 = openat$cgroup_procs(r2, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
write$cgroup_pid(r3, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x200, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000, 0x9, 0x2], 0x1000, 0x40040})
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
r5 = socket$l2tp6(0xa, 0x2, 0x73)
ioctl$void(r5, 0x60022c3c)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0xe9ff53660c9d7455, &(0x7f00000018c0)=ANY=[])
preadv(r4, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f00000014c0)}, {&(0x7f0000001580)="0add52139a511cf3c8b3f840fe6c3aa4cbcb6d5ddfd4103a47db037a2a3f823b8107d0c782093e07819094cd8b53bc64a86b49977d6c82fa69dda3f471fae28ba47563031be1e3a1e0e4fb3c39", 0x4d}], 0x2, 0x1)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

02:59:59 executing program 5:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r3 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r4 = openat$cgroup_procs(r3, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r2, 0x84, 0x19, &(0x7f00000001c0)={0x0, 0x5}, 0x8)
write$cgroup_pid(r4, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x0, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000], 0x0, 0x40040})
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, 0x0, 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

02:59:59 executing program 3:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

02:59:59 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

02:59:59 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:00:00 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1304.519959] overlayfs: missing 'lowerdir'
[ 1304.661214] syz-executor.1 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=1000
[ 1304.674164] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1304.679634] CPU: 1 PID: 959 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1304.687355] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1304.696715] Call Trace:
[ 1304.699318]  dump_stack+0x197/0x210
[ 1304.702963]  dump_header+0x15e/0xa55
[ 1304.706688]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1304.711801]  ? ___ratelimit+0x60/0x595
[ 1304.715697]  ? do_raw_spin_unlock+0x181/0x270
[ 1304.720207]  oom_kill_process.cold+0x10/0x6ef
[ 1304.724717]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1304.730351]  ? task_will_free_mem+0x139/0x6e0
[ 1304.734859]  ? find_held_lock+0x35/0x130
[ 1304.739023]  out_of_memory+0x362/0x1330
[ 1304.743134]  ? lock_downgrade+0x880/0x880
[ 1304.747405]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1304.752542]  ? oom_killer_disable+0x280/0x280
[ 1304.757052]  ? find_held_lock+0x35/0x130
[ 1304.761169]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1304.766040]  ? memcg_event_wake+0x230/0x230
[ 1304.770383]  ? do_raw_spin_unlock+0x181/0x270
[ 1304.774891]  ? _raw_spin_unlock+0x2d/0x50
[ 1304.779052]  try_charge+0xec5/0x1490
[ 1304.782811]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1304.787668]  ? lock_downgrade+0x880/0x880
[ 1304.791915]  ? kasan_check_read+0x11/0x20
[ 1304.796085]  memcg_kmem_charge_memcg+0x83/0x170
[ 1304.800771]  ? memcg_kmem_put_cache+0xb0/0xb0
[ 1304.805410]  ? __isolate_free_page+0x4c0/0x4c0
[ 1304.810032]  memcg_kmem_charge+0x13b/0x370
[ 1304.814408]  __alloc_pages_nodemask+0x3c3/0x750
[ 1304.819120]  ? free_transhuge_page+0x230/0x310
[ 1304.823723]  ? __alloc_pages_slowpath+0x2870/0x2870
[ 1304.828751]  ? __put_compound_page+0x90/0xd0
[ 1304.833352]  ? put_page+0x1c1/0x220
[ 1304.836992]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[ 1304.842546]  alloc_pages_current+0x107/0x210
[ 1304.846971]  pte_alloc_one+0x1b/0x1a0
[ 1304.850801]  __pte_alloc+0x2a/0x360
[ 1304.854444]  __handle_mm_fault+0x340b/0x3f80
[ 1304.858868]  ? copy_page_range+0x2030/0x2030
[ 1304.863306]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1304.867990]  handle_mm_fault+0x1b5/0x690
[ 1304.872071]  __get_user_pages+0x609/0x1860
[ 1304.876334]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1304.880850]  ? lock_acquire+0x16f/0x3f0
[ 1304.884834]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1304.890393]  populate_vma_page_range+0x20d/0x2a0
[ 1304.895169]  __mm_populate+0x204/0x380
[ 1304.899767]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1304.904715]  __x64_sys_mlockall+0x35c/0x520
[ 1304.909049]  do_syscall_64+0xfd/0x620
[ 1304.912862]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1304.918058] RIP: 0033:0x45af49
[ 1304.921264] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1304.940176] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1304.947895] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1304.955169] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1304.962443] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1304.969720] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1304.977004] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1304.984507] Task in /syz1 killed as a result of limit of /syz1
[ 1304.990639] memory: usage 307200kB, limit 307200kB, failcnt 12905
[ 1304.996930] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1305.003690] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1305.009910] Memory cgroup stats for /syz1: cache:96KB rss:298192KB rss_huge:266240KB shmem:0KB mapped_file:0KB dirty:132KB writeback:132KB swap:0KB inactive_anon:109572KB active_anon:13000KB inactive_file:4KB active_file:0KB unevictable:175640KB
[ 1305.031976] Memory cgroup out of memory: Kill process 13146 (syz-executor.1) score 1163 or sacrifice child
[ 1305.043166] Killed process 13146 (syz-executor.1) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1307.665308] oom_reaper: reaped process 13146 (syz-executor.1), now anon-rss:0kB, file-rss:34688kB, shmem-rss:0kB
03:00:03 executing program 5:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r3 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r4 = openat$cgroup_procs(r3, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r2, 0x84, 0x19, &(0x7f00000001c0)={0x0, 0x5}, 0x8)
write$cgroup_pid(r4, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x0, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000], 0x0, 0x40040})
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, 0x0, 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

[ 1307.860364] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1307.871694] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1307.877201] CPU: 0 PID: 959 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1307.884846] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1307.894748] Call Trace:
[ 1307.897373]  dump_stack+0x197/0x210
[ 1307.901046]  dump_header+0x15e/0xa55
[ 1307.904794]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1307.909965]  ? ___ratelimit+0x60/0x595
[ 1307.913893]  ? do_raw_spin_unlock+0x181/0x270
[ 1307.918527]  oom_kill_process.cold+0x10/0x6ef
[ 1307.923055]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1307.928614]  ? task_will_free_mem+0x139/0x6e0
[ 1307.933219]  ? find_held_lock+0x35/0x130
[ 1307.937327]  out_of_memory+0x362/0x1330
[ 1307.941354]  ? lock_downgrade+0x880/0x880
[ 1307.945526]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1307.950653]  ? oom_killer_disable+0x280/0x280
[ 1307.955186]  ? find_held_lock+0x35/0x130
03:00:03 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1307.959342]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1307.964228]  ? memcg_event_wake+0x230/0x230
[ 1307.968606]  ? do_raw_spin_unlock+0x181/0x270
[ 1307.973141]  ? _raw_spin_unlock+0x2d/0x50
[ 1307.977416]  try_charge+0xec5/0x1490
[ 1307.981171]  ? lock_downgrade+0x880/0x880
[ 1307.985368]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1307.990249]  ? rcu_read_unlock+0x33/0x60
[ 1307.994335]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1307.999208]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1308.005337]  mem_cgroup_try_charge+0x259/0x6b0
[ 1308.010100]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1308.015071]  wp_page_copy+0x430/0x16a0
[ 1308.019013]  ? follow_pfn+0x2a0/0x2a0
[ 1308.022863]  ? do_raw_spin_unlock+0x181/0x270
[ 1308.027408]  do_wp_page+0x57d/0x10b0
[ 1308.031165]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1308.035865]  ? kasan_check_write+0x14/0x20
[ 1308.040130]  ? do_raw_spin_lock+0xd7/0x250
[ 1308.044429]  __handle_mm_fault+0x2305/0x3f80
[ 1308.048881]  ? copy_page_range+0x2030/0x2030
[ 1308.053361]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1308.058341]  handle_mm_fault+0x1b5/0x690
[ 1308.062478]  __get_user_pages+0x609/0x1860
[ 1308.066781]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1308.071372]  ? lock_acquire+0x16f/0x3f0
[ 1308.075373]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1308.080948]  populate_vma_page_range+0x20d/0x2a0
[ 1308.085763]  __mm_populate+0x204/0x380
[ 1308.089781]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1308.094773]  __x64_sys_mlockall+0x35c/0x520
[ 1308.099138]  do_syscall_64+0xfd/0x620
[ 1308.102998]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1308.108346] RIP: 0033:0x45af49
[ 1308.111566] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1308.130501] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1308.138245] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1308.145550] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1308.152849] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1308.160147] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1308.167440] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1308.175026] Task in /syz1 killed as a result of limit of /syz1
[ 1308.181104] memory: usage 307048kB, limit 307200kB, failcnt 25218
[ 1308.187447] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1308.194213] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1308.200439] Memory cgroup stats for /syz1: cache:96KB rss:297876KB rss_huge:264192KB shmem:0KB mapped_file:0KB dirty:132KB writeback:132KB swap:0KB inactive_anon:96904KB active_anon:12984KB inactive_file:0KB active_file:4KB unevictable:188108KB
[ 1308.222434] Memory cgroup out of memory: Kill process 957 (syz-executor.1) score 1226 or sacrifice child
[ 1308.232243] Killed process 960 (syz-executor.1) total-vm:72588kB, anon-rss:18204kB, file-rss:34816kB, shmem-rss:0kB
03:00:04 executing program 3:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:00:04 executing program 0:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180)}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x4000000004002, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r2 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r3 = openat$cgroup_procs(r2, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
write$cgroup_pid(r3, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x200, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000, 0x9, 0x2], 0x1000, 0x40040})
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
r5 = socket$l2tp6(0xa, 0x2, 0x73)
ioctl$void(r5, 0x60022c3c)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0xe9ff53660c9d7455, &(0x7f00000018c0)=ANY=[])
preadv(r4, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f00000014c0)}, {&(0x7f0000001580)="0add52139a511cf3c8b3f840fe6c3aa4cbcb6d5ddfd4103a47db037a2a3f823b8107d0c782093e07819094cd8b53bc64a86b49977d6c82fa69dda3f471fae28ba47563031be1e3a1e0e4fb3c39", 0x4d}], 0x2, 0x1)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

03:00:04 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:00:04 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:00:04 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1310.032771] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1310.044092] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1310.049555] CPU: 1 PID: 985 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1310.057179] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1310.066535] Call Trace:
[ 1310.069162]  dump_stack+0x197/0x210
[ 1310.072810]  dump_header+0x15e/0xa55
[ 1310.076541]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1310.081656]  ? ___ratelimit+0x60/0x595
[ 1310.085551]  ? do_raw_spin_unlock+0x181/0x270
[ 1310.090235]  oom_kill_process.cold+0x10/0x6ef
[ 1310.094772]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1310.100330]  ? task_will_free_mem+0x139/0x6e0
[ 1310.104844]  ? find_held_lock+0x35/0x130
[ 1310.108924]  out_of_memory+0x362/0x1330
[ 1310.112919]  ? lock_downgrade+0x880/0x880
[ 1310.117079]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1310.122193]  ? oom_killer_disable+0x280/0x280
[ 1310.126697]  ? find_held_lock+0x35/0x130
[ 1310.130799]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1310.135657]  ? memcg_event_wake+0x230/0x230
[ 1310.139999]  ? do_raw_spin_unlock+0x181/0x270
[ 1310.144510]  ? _raw_spin_unlock+0x2d/0x50
[ 1310.148691]  try_charge+0xec5/0x1490
[ 1310.152445]  ? lock_downgrade+0x880/0x880
[ 1310.156620]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1310.161504]  ? rcu_read_unlock+0x33/0x60
[ 1310.165580]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1310.170497]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1310.176585]  mem_cgroup_try_charge+0x259/0x6b0
[ 1310.181189]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1310.186134]  wp_page_copy+0x430/0x16a0
[ 1310.190042]  ? follow_pfn+0x2a0/0x2a0
[ 1310.193857]  ? do_raw_spin_unlock+0x181/0x270
[ 1310.198364]  do_wp_page+0x57d/0x10b0
[ 1310.202090]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1310.206892]  ? kasan_check_write+0x14/0x20
[ 1310.211155]  ? do_raw_spin_lock+0xd7/0x250
[ 1310.215417]  __handle_mm_fault+0x2305/0x3f80
[ 1310.219875]  ? copy_page_range+0x2030/0x2030
[ 1310.224335]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1310.229022]  handle_mm_fault+0x1b5/0x690
[ 1310.233103]  __get_user_pages+0x609/0x1860
[ 1310.237365]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1310.241870]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1310.247436]  ? lock_acquire+0x16f/0x3f0
[ 1310.251418]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1310.256976]  populate_vma_page_range+0x20d/0x2a0
[ 1310.261860]  __mm_populate+0x204/0x380
[ 1310.265852]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1310.270804]  __x64_sys_mlockall+0x35c/0x520
[ 1310.275140]  do_syscall_64+0xfd/0x620
[ 1310.280002]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1310.285200] RIP: 0033:0x45af49
[ 1310.288403] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1310.307310] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1310.315027] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1310.322306] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1310.329580] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1310.336856] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1310.344131] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1310.351702] Task in /syz1 killed as a result of limit of /syz1
[ 1310.357741] memory: usage 307200kB, limit 307200kB, failcnt 25294
[ 1310.363999] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1310.370845] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1310.377037] Memory cgroup stats for /syz1: cache:96KB rss:298160KB rss_huge:268288KB shmem:0KB mapped_file:0KB dirty:132KB writeback:132KB swap:0KB inactive_anon:96904KB active_anon:12984KB inactive_file:4KB active_file:0KB unevictable:188212KB
[ 1310.398947] Memory cgroup out of memory: Kill process 979 (syz-executor.1) score 1223 or sacrifice child
[ 1310.408688] Killed process 986 (syz-executor.1) total-vm:72588kB, anon-rss:18204kB, file-rss:34816kB, shmem-rss:0kB
03:00:06 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:00:07 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:00:07 executing program 3:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1312.074620] overlayfs: missing 'lowerdir'
[ 1312.153598] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1312.165062] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1312.170633] CPU: 0 PID: 995 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1312.178291] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1312.187686] Call Trace:
[ 1312.190318]  dump_stack+0x197/0x210
[ 1312.194002]  dump_header+0x15e/0xa55
[ 1312.197757]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1312.202901]  ? ___ratelimit+0x60/0x595
[ 1312.206823]  ? do_raw_spin_unlock+0x181/0x270
[ 1312.211365]  oom_kill_process.cold+0x10/0x6ef
[ 1312.215909]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1312.221482]  ? task_will_free_mem+0x139/0x6e0
[ 1312.226007]  ? find_held_lock+0x35/0x130
[ 1312.230120]  out_of_memory+0x362/0x1330
[ 1312.234127]  ? lock_downgrade+0x880/0x880
[ 1312.238314]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1312.243450]  ? oom_killer_disable+0x280/0x280
[ 1312.247989]  ? find_held_lock+0x35/0x130
[ 1312.252110]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1312.257002]  ? memcg_event_wake+0x230/0x230
[ 1312.261364]  ? do_raw_spin_unlock+0x181/0x270
[ 1312.265899]  ? _raw_spin_unlock+0x2d/0x50
[ 1312.270092]  try_charge+0xec5/0x1490
[ 1312.273854]  ? lock_downgrade+0x880/0x880
[ 1312.278058]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1312.282940]  ? rcu_read_unlock+0x33/0x60
[ 1312.287036]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1312.291919]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1312.298037]  mem_cgroup_try_charge+0x259/0x6b0
[ 1312.302694]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1312.307665]  wp_page_copy+0x430/0x16a0
[ 1312.311714]  ? follow_pfn+0x2a0/0x2a0
[ 1312.315596]  ? do_raw_spin_unlock+0x181/0x270
[ 1312.320144]  do_wp_page+0x57d/0x10b0
[ 1312.323910]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1312.328617]  ? kasan_check_write+0x14/0x20
[ 1312.332970]  ? do_raw_spin_lock+0xd7/0x250
[ 1312.337251]  __handle_mm_fault+0x2305/0x3f80
[ 1312.341701]  ? copy_page_range+0x2030/0x2030
[ 1312.346189]  ? count_memcg_event_mm+0x2b1/0x4d0
03:00:08 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:00:08 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1312.350896]  handle_mm_fault+0x1b5/0x690
[ 1312.355012]  __get_user_pages+0x609/0x1860
[ 1312.359310]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1312.363944]  ? lock_acquire+0x16f/0x3f0
[ 1312.368126]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1312.373752]  populate_vma_page_range+0x20d/0x2a0
[ 1312.378576]  __mm_populate+0x204/0x380
[ 1312.382511]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1312.387499]  __x64_sys_mlockall+0x35c/0x520
[ 1312.391870]  do_syscall_64+0xfd/0x620
[ 1312.395736]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1312.400958] RIP: 0033:0x45af49
[ 1312.404194] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1312.423153] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1312.430906] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1312.438213] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1312.445521] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1312.452824] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1312.460135] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1312.468836] Task in /syz1 killed as a result of limit of /syz1
[ 1312.474886] memory: usage 307200kB, limit 307200kB, failcnt 25314
[ 1312.482458] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1312.489396] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1312.495682] Memory cgroup stats for /syz1: cache:96KB rss:298008KB rss_huge:266240KB shmem:0KB mapped_file:0KB dirty:132KB writeback:132KB swap:0KB inactive_anon:96900KB active_anon:12988KB inactive_file:0KB active_file:4KB unevictable:188156KB
[ 1312.517715] Memory cgroup out of memory: Kill process 994 (syz-executor.1) score 1223 or sacrifice child
[ 1312.527520] Killed process 997 (syz-executor.1) total-vm:72588kB, anon-rss:18204kB, file-rss:34816kB, shmem-rss:0kB
03:00:09 executing program 0:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180)}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x4000000004002, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r2 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r3 = openat$cgroup_procs(r2, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
write$cgroup_pid(r3, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x200, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000, 0x9, 0x2], 0x1000, 0x40040})
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
r5 = socket$l2tp6(0xa, 0x2, 0x73)
ioctl$void(r5, 0x60022c3c)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0xe9ff53660c9d7455, &(0x7f00000018c0)=ANY=[])
preadv(r4, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f00000014c0)}, {&(0x7f0000001580)="0add52139a511cf3c8b3f840fe6c3aa4cbcb6d5ddfd4103a47db037a2a3f823b8107d0c782093e07819094cd8b53bc64a86b49977d6c82fa69dda3f471fae28ba47563031be1e3a1e0e4fb3c39", 0x4d}], 0x2, 0x1)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

03:00:09 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:00:09 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:00:09 executing program 5:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r3 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r4 = openat$cgroup_procs(r3, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r2, 0x84, 0x19, &(0x7f00000001c0)={0x0, 0x5}, 0x8)
write$cgroup_pid(r4, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x0, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000], 0x0, 0x40040})
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, 0x0, 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

03:00:09 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1314.756213] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1314.768185] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1314.773835] CPU: 1 PID: 1022 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1314.781552] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1314.790935] Call Trace:
[ 1314.793536]  dump_stack+0x197/0x210
[ 1314.797179]  dump_header+0x15e/0xa55
[ 1314.800928]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1314.806055]  ? ___ratelimit+0x60/0x595
[ 1314.809958]  ? do_raw_spin_unlock+0x181/0x270
[ 1314.814471]  oom_kill_process.cold+0x10/0x6ef
[ 1314.818988]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1314.824532]  ? task_will_free_mem+0x139/0x6e0
[ 1314.829051]  out_of_memory+0x362/0x1330
[ 1314.833039]  ? retint_kernel+0x2d/0x2d
[ 1314.837078]  ? oom_killer_disable+0x280/0x280
[ 1314.841612]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1314.846499]  ? memcg_event_wake+0x230/0x230
[ 1314.850861]  ? do_raw_spin_unlock+0x181/0x270
[ 1314.855725]  ? _raw_spin_unlock+0x2d/0x50
[ 1314.859891]  try_charge+0xec5/0x1490
[ 1314.863620]  ? lock_downgrade+0x880/0x880
[ 1314.867784]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1314.872640]  ? rcu_read_unlock+0x33/0x60
[ 1314.876744]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1314.881682]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 1314.886624]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1314.892694]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1314.897475]  mem_cgroup_try_charge+0x259/0x6b0
[ 1314.902076]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1314.907019]  wp_page_copy+0x430/0x16a0
[ 1314.910944]  ? follow_pfn+0x2a0/0x2a0
[ 1314.914771]  ? do_raw_spin_unlock+0x181/0x270
[ 1314.919286]  do_wp_page+0x57d/0x10b0
[ 1314.923050]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1314.927755]  ? __handle_mm_fault+0x18ab/0x3f80
[ 1314.932365]  __handle_mm_fault+0x2305/0x3f80
[ 1314.936790]  ? copy_page_range+0x2030/0x2030
[ 1314.941247]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1314.945951]  handle_mm_fault+0x1b5/0x690
[ 1314.950030]  __get_user_pages+0x609/0x1860
[ 1314.954298]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1314.958890]  ? retint_kernel+0x2d/0x2d
[ 1314.962806]  populate_vma_page_range+0x20d/0x2a0
[ 1314.967589]  __mm_populate+0x204/0x380
[ 1314.971493]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1314.976448]  __x64_sys_mlockall+0x35c/0x520
[ 1314.980783]  do_syscall_64+0xfd/0x620
[ 1314.984604]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1314.989799] RIP: 0033:0x45af49
[ 1314.993002] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1315.011913] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1315.019634] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1315.026913] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1315.034186] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1315.041464] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1315.048741] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1315.061681] Task in /syz1 killed as a result of limit of /syz1
[ 1315.068128] memory: usage 307200kB, limit 307200kB, failcnt 25354
[ 1315.074487] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1315.081344] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1315.088059] Memory cgroup stats for /syz1: cache:96KB rss:297820KB rss_huge:266240KB shmem:0KB mapped_file:0KB dirty:132KB writeback:132KB swap:0KB inactive_anon:96904KB active_anon:12984KB inactive_file:4KB active_file:0KB unevictable:188076KB
[ 1315.110525] Memory cgroup out of memory: Kill process 1018 (syz-executor.1) score 1223 or sacrifice child
[ 1315.120645] Killed process 1027 (syz-executor.1) total-vm:72588kB, anon-rss:18204kB, file-rss:34816kB, shmem-rss:0kB
03:00:12 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1317.299794] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1317.311487] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1317.317070] CPU: 1 PID: 1032 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1317.324804] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1317.334162] Call Trace:
[ 1317.336768]  dump_stack+0x197/0x210
[ 1317.340415]  dump_header+0x15e/0xa55
[ 1317.344139]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1317.349250]  ? ___ratelimit+0x60/0x595
[ 1317.353142]  ? do_raw_spin_unlock+0x181/0x270
[ 1317.357650]  oom_kill_process.cold+0x10/0x6ef
[ 1317.362159]  ? out_of_memory+0x1ae/0x1330
[ 1317.366319]  out_of_memory+0x362/0x1330
[ 1317.370330]  ? lock_downgrade+0x880/0x880
[ 1317.374504]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1317.379621]  ? oom_killer_disable+0x280/0x280
[ 1317.384121]  ? find_held_lock+0x35/0x130
[ 1317.388203]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1317.393054]  ? memcg_event_wake+0x230/0x230
[ 1317.397388]  ? do_raw_spin_unlock+0x181/0x270
[ 1317.401909]  ? _raw_spin_unlock+0x2d/0x50
[ 1317.406078]  try_charge+0xec5/0x1490
[ 1317.409893]  ? lock_downgrade+0x880/0x880
[ 1317.414065]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1317.418913]  ? rcu_read_unlock+0x33/0x60
[ 1317.422980]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1317.427832]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1317.433896]  ? lock_downgrade+0x880/0x880
[ 1317.438061]  mem_cgroup_try_charge+0x259/0x6b0
[ 1317.442684]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1317.447645]  do_huge_pmd_wp_page+0x97e/0x3580
[ 1317.452174]  ? __split_huge_pmd+0x2b10/0x2b10
[ 1317.456767]  ? pmd_val+0x85/0x100
[ 1317.460244]  ? debug_smp_processor_id+0x1c/0x20
[ 1317.464927]  __handle_mm_fault+0x167b/0x3f80
[ 1317.469352]  ? copy_page_range+0x2030/0x2030
[ 1317.473810]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1317.478495]  handle_mm_fault+0x1b5/0x690
[ 1317.482575]  __get_user_pages+0x609/0x1860
[ 1317.486837]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1317.491352]  ? retint_kernel+0x2d/0x2d
[ 1317.495281]  populate_vma_page_range+0x20d/0x2a0
[ 1317.500061]  __mm_populate+0x204/0x380
[ 1317.503961]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1317.508911]  __x64_sys_mlockall+0x35c/0x520
[ 1317.513333]  do_syscall_64+0xfd/0x620
[ 1317.517145]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1317.522337] RIP: 0033:0x45af49
[ 1317.525538] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1317.544610] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1317.552343] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1317.559618] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1317.566915] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1317.574192] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1317.581575] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1317.590057] Task in /syz1 killed as a result of limit of /syz1
[ 1317.596266] memory: usage 307200kB, limit 307200kB, failcnt 25394
[ 1317.602604] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1317.609793] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1317.616153] Memory cgroup stats for /syz1: cache:96KB rss:295864KB rss_huge:258048KB shmem:0KB mapped_file:0KB dirty:132KB writeback:132KB swap:0KB inactive_anon:94852KB active_anon:12988KB inactive_file:0KB active_file:0KB unevictable:188188KB
[ 1317.638376] Memory cgroup out of memory: Kill process 1031 (syz-executor.1) score 1223 or sacrifice child
[ 1317.648669] Killed process 1033 (syz-executor.1) total-vm:72588kB, anon-rss:18204kB, file-rss:34816kB, shmem-rss:0kB
[ 1318.250911] overlayfs: missing 'lowerdir'
03:00:14 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:00:14 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:00:14 executing program 0:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180)}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x4000000004002, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r2 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r3 = openat$cgroup_procs(r2, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
write$cgroup_pid(r3, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x200, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000, 0x9, 0x2], 0x1000, 0x40040})
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
r5 = socket$l2tp6(0xa, 0x2, 0x73)
ioctl$void(r5, 0x60022c3c)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0xe9ff53660c9d7455, &(0x7f00000018c0)=ANY=[])
preadv(r4, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f00000014c0)}, {&(0x7f0000001580)="0add52139a511cf3c8b3f840fe6c3aa4cbcb6d5ddfd4103a47db037a2a3f823b8107d0c782093e07819094cd8b53bc64a86b49977d6c82fa69dda3f471fae28ba47563031be1e3a1e0e4fb3c39", 0x4d}], 0x2, 0x1)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

03:00:14 executing program 3:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:00:14 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1319.777784] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1319.789162] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1319.795274] CPU: 1 PID: 1046 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1319.803086] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1319.812454] Call Trace:
[ 1319.815079]  dump_stack+0x197/0x210
[ 1319.818727]  dump_header+0x15e/0xa55
[ 1319.822455]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1319.827593]  ? ___ratelimit+0x60/0x595
[ 1319.831498]  ? do_raw_spin_unlock+0x181/0x270
[ 1319.836019]  oom_kill_process.cold+0x10/0x6ef
[ 1319.840550]  out_of_memory+0x362/0x1330
[ 1319.844561]  ? lock_downgrade+0x880/0x880
[ 1319.848733]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1319.853867]  ? oom_killer_disable+0x280/0x280
[ 1319.858383]  ? find_held_lock+0x35/0x130
[ 1319.862598]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1319.867472]  ? memcg_event_wake+0x230/0x230
[ 1319.871818]  ? do_raw_spin_unlock+0x181/0x270
[ 1319.876328]  ? _raw_spin_unlock+0x2d/0x50
[ 1319.880493]  try_charge+0xec5/0x1490
[ 1319.884220]  ? lock_downgrade+0x880/0x880
[ 1319.888384]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1319.893240]  ? rcu_read_unlock+0x33/0x60
[ 1319.897395]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1319.902266]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1319.908356]  mem_cgroup_try_charge+0x259/0x6b0
[ 1319.912965]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1319.917923]  wp_page_copy+0x430/0x16a0
[ 1319.921835]  ? follow_pfn+0x2a0/0x2a0
[ 1319.925653]  ? do_raw_spin_unlock+0x181/0x270
[ 1319.930158]  do_wp_page+0x57d/0x10b0
[ 1319.933891]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1319.938570]  ? kasan_check_write+0x14/0x20
[ 1319.942813]  ? do_raw_spin_lock+0xd7/0x250
[ 1319.947061]  __handle_mm_fault+0x2305/0x3f80
[ 1319.951484]  ? copy_page_range+0x2030/0x2030
[ 1319.956013]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1319.960695]  handle_mm_fault+0x1b5/0x690
[ 1319.964775]  __get_user_pages+0x609/0x1860
[ 1319.969033]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1319.973533]  ? retint_kernel+0x2d/0x2d
[ 1319.977452]  populate_vma_page_range+0x20d/0x2a0
[ 1319.982223]  __mm_populate+0x204/0x380
[ 1319.986132]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1319.991098]  __x64_sys_mlockall+0x35c/0x520
[ 1319.995450]  do_syscall_64+0xfd/0x620
[ 1319.999282]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1320.004473] RIP: 0033:0x45af49
[ 1320.007679] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1320.026702] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1320.034511] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1320.041789] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1320.049182] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1320.056461] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1320.063833] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1320.072624] Task in /syz1 killed as a result of limit of /syz1
[ 1320.079251] memory: usage 307200kB, limit 307200kB, failcnt 25425
[ 1320.086001] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1320.092940] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1320.099171] Memory cgroup stats for /syz1: cache:96KB rss:297876KB rss_huge:266240KB shmem:0KB mapped_file:0KB dirty:132KB writeback:132KB swap:0KB inactive_anon:96904KB active_anon:12984KB inactive_file:0KB active_file:0KB unevictable:187988KB
[ 1320.121778] Memory cgroup out of memory: Kill process 1042 (syz-executor.1) score 1223 or sacrifice child
[ 1320.131956] Killed process 1049 (syz-executor.1) total-vm:72588kB, anon-rss:18204kB, file-rss:34816kB, shmem-rss:0kB
03:00:18 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:00:18 executing program 3:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:00:18 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1324.545860] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1324.559795] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1324.566809] CPU: 0 PID: 1058 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1324.576187] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1324.585552] Call Trace:
[ 1324.588164]  dump_stack+0x197/0x210
[ 1324.591829]  dump_header+0x15e/0xa55
[ 1324.595566]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1324.600692]  ? ___ratelimit+0x60/0x595
[ 1324.604597]  ? do_raw_spin_unlock+0x181/0x270
[ 1324.609122]  oom_kill_process.cold+0x10/0x6ef
[ 1324.613644]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1324.619203]  ? task_will_free_mem+0x139/0x6e0
[ 1324.623737]  out_of_memory+0x362/0x1330
[ 1324.627762]  ? lock_downgrade+0x880/0x880
[ 1324.631935]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1324.637059]  ? oom_killer_disable+0x280/0x280
[ 1324.641575]  ? find_held_lock+0x35/0x130
[ 1324.645680]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1324.650568]  ? memcg_event_wake+0x230/0x230
[ 1324.654923]  ? do_raw_spin_unlock+0x181/0x270
[ 1324.659447]  ? _raw_spin_unlock+0x2d/0x50
[ 1324.663625]  try_charge+0xec5/0x1490
[ 1324.667369]  ? lock_downgrade+0x880/0x880
[ 1324.671572]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1324.676461]  ? rcu_read_unlock+0x33/0x60
[ 1324.680545]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1324.685421]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1324.691540]  mem_cgroup_try_charge+0x259/0x6b0
[ 1324.696174]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1324.701153]  do_huge_pmd_wp_page+0x97e/0x3580
[ 1324.705714]  ? __split_huge_pmd+0x2b10/0x2b10
[ 1324.710262]  ? pmd_val+0x85/0x100
[ 1324.713773]  ? perf_trace_lock_acquire+0x380/0x580
[ 1324.718751]  __handle_mm_fault+0x167b/0x3f80
[ 1324.723206]  ? copy_page_range+0x2030/0x2030
[ 1324.727687]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1324.732401]  handle_mm_fault+0x1b5/0x690
[ 1324.736516]  __get_user_pages+0x609/0x1860
[ 1324.740829]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1324.745366]  ? retint_kernel+0x2d/0x2d
[ 1324.749333]  populate_vma_page_range+0x20d/0x2a0
[ 1324.754139]  __mm_populate+0x204/0x380
[ 1324.758198]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1324.763191]  __x64_sys_mlockall+0x35c/0x520
[ 1324.767563]  do_syscall_64+0xfd/0x620
[ 1324.771416]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1324.776722] RIP: 0033:0x45af49
[ 1324.779940] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1324.798872] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1324.806622] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1324.813924] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1324.821228] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1324.828546] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1324.835846] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1324.848867] Task in /syz1 killed as a result of limit of /syz1
[ 1324.855402] memory: usage 307200kB, limit 307200kB, failcnt 25481
[ 1324.862341] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1324.870052] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1324.878596] Memory cgroup stats for /syz1: cache:96KB rss:296016KB rss_huge:260096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:132KB swap:0KB inactive_anon:94856KB active_anon:12984KB inactive_file:0KB active_file:0KB unevictable:188188KB
[ 1324.903764] Memory cgroup out of memory: Kill process 1057 (syz-executor.1) score 1226 or sacrifice child
[ 1324.914835] Killed process 1063 (syz-executor.1) total-vm:72588kB, anon-rss:18204kB, file-rss:34816kB, shmem-rss:0kB
03:00:21 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:00:22 executing program 5:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r3 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r4 = openat$cgroup_procs(r3, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r2, 0x84, 0x19, &(0x7f00000001c0)={0x0, 0x5}, 0x8)
write$cgroup_pid(r4, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x0, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000], 0x0, 0x40040})
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, 0x0, 0x0)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

03:00:22 executing program 3:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:00:22 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:00:22 executing program 2:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:00:22 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1327.785949] syz-executor.2 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1327.797311] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[ 1327.802878] CPU: 1 PID: 1084 Comm: syz-executor.2 Not tainted 4.19.95-syzkaller #0
[ 1327.810595] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1327.819952] Call Trace:
[ 1327.822553]  dump_stack+0x197/0x210
[ 1327.826209]  dump_header+0x15e/0xa55
[ 1327.829933]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1327.835046]  ? ___ratelimit+0x60/0x595
[ 1327.838940]  ? do_raw_spin_unlock+0x181/0x270
[ 1327.843447]  oom_kill_process.cold+0x10/0x6ef
[ 1327.847970]  out_of_memory+0x362/0x1330
[ 1327.851953]  ? retint_kernel+0x2d/0x2d
[ 1327.855857]  ? oom_killer_disable+0x280/0x280
[ 1327.860376]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1327.865231]  ? memcg_event_wake+0x230/0x230
[ 1327.869601]  ? do_raw_spin_unlock+0x181/0x270
[ 1327.874105]  ? _raw_spin_unlock+0x2d/0x50
[ 1327.878269]  try_charge+0xec5/0x1490
[ 1327.881996]  ? lock_downgrade+0x880/0x880
[ 1327.886165]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1327.891036]  ? rcu_read_unlock+0x33/0x60
[ 1327.895126]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1327.899988]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 1327.904943]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1327.911032]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1327.915818]  mem_cgroup_try_charge+0x259/0x6b0
[ 1327.920441]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1327.925505]  wp_page_copy+0x430/0x16a0
[ 1327.929424]  ? follow_pfn+0x2a0/0x2a0
[ 1327.933244]  ? do_raw_spin_unlock+0x181/0x270
[ 1327.937770]  do_wp_page+0x57d/0x10b0
[ 1327.941512]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1327.946381]  ? kasan_check_write+0x14/0x20
[ 1327.950649]  ? do_raw_spin_lock+0xd7/0x250
[ 1327.954908]  __handle_mm_fault+0x2305/0x3f80
[ 1327.959352]  ? copy_page_range+0x2030/0x2030
[ 1327.963806]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1327.968497]  handle_mm_fault+0x1b5/0x690
[ 1327.972587]  __get_user_pages+0x609/0x1860
[ 1327.976982]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1327.981590]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1327.986365]  ? retint_kernel+0x2d/0x2d
[ 1327.990285]  populate_vma_page_range+0x20d/0x2a0
[ 1327.995081]  __mm_populate+0x204/0x380
[ 1327.998996]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1328.003966]  __x64_sys_mlockall+0x35c/0x520
[ 1328.008313]  do_syscall_64+0xfd/0x620
[ 1328.012136]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1328.017341] RIP: 0033:0x45af49
[ 1328.020562] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1328.039482] RSP: 002b:00007f66bf404c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1328.047214] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1328.054507] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1328.061806] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1328.069984] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f66bf4056d4
[ 1328.077282] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1328.084746] Task in /syz2 killed as a result of limit of /syz2
[ 1328.091398] memory: usage 307200kB, limit 307200kB, failcnt 43
[ 1328.097674] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1328.104759] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1328.111170] Memory cgroup stats for /syz2: cache:124KB rss:298232KB rss_huge:266240KB shmem:0KB mapped_file:0KB dirty:0KB writeback:0KB swap:0KB inactive_anon:46020KB active_anon:2248KB inactive_file:20KB active_file:16KB unevictable:249984KB
[ 1328.133344] Memory cgroup out of memory: Kill process 1079 (syz-executor.2) score 1223 or sacrifice child
[ 1328.143263] Killed process 1093 (syz-executor.2) total-vm:72588kB, anon-rss:18204kB, file-rss:34816kB, shmem-rss:0kB
03:00:24 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1330.849954] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1330.861415] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1330.868043] CPU: 1 PID: 1098 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1330.875779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1330.885497] Call Trace:
[ 1330.888107]  dump_stack+0x197/0x210
[ 1330.891752]  dump_header+0x15e/0xa55
[ 1330.895516]  oom_kill_process.cold+0x10/0x6ef
[ 1330.900044]  ? mem_cgroup_get_max+0xa8/0x240
[ 1330.904472]  out_of_memory+0x362/0x1330
[ 1330.908466]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1330.913585]  ? oom_killer_disable+0x280/0x280
[ 1330.918096]  ? find_held_lock+0x35/0x130
[ 1330.922178]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1330.927029]  ? memcg_event_wake+0x230/0x230
[ 1330.931363]  ? do_raw_spin_unlock+0x181/0x270
[ 1330.936131]  ? _raw_spin_unlock+0x2d/0x50
[ 1330.940289]  try_charge+0xec5/0x1490
[ 1330.944013]  ? lock_downgrade+0x880/0x880
[ 1330.948176]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1330.953031]  ? rcu_read_unlock+0x33/0x60
[ 1330.957114]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1330.961997]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1330.968075]  mem_cgroup_try_charge+0x259/0x6b0
[ 1330.972775]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1330.977720]  wp_page_copy+0x430/0x16a0
[ 1330.981627]  ? follow_pfn+0x2a0/0x2a0
[ 1330.985440]  ? do_raw_spin_unlock+0x181/0x270
[ 1330.989947]  do_wp_page+0x57d/0x10b0
[ 1330.993687]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1330.998364]  ? kasan_check_write+0x14/0x20
[ 1331.002621]  ? do_raw_spin_lock+0xd7/0x250
[ 1331.006893]  __handle_mm_fault+0x2305/0x3f80
[ 1331.011326]  ? copy_page_range+0x2030/0x2030
[ 1331.015775]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1331.020484]  handle_mm_fault+0x1b5/0x690
[ 1331.024575]  __get_user_pages+0x609/0x1860
[ 1331.028839]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1331.033350]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1331.038122]  ? retint_kernel+0x2d/0x2d
[ 1331.042032]  populate_vma_page_range+0x20d/0x2a0
[ 1331.046808]  __mm_populate+0x204/0x380
[ 1331.050721]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1331.055672]  __x64_sys_mlockall+0x35c/0x520
[ 1331.060069]  do_syscall_64+0xfd/0x620
[ 1331.063919]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1331.069113] RIP: 0033:0x45af49
[ 1331.072329] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1331.091758] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1331.099664] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1331.108978] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1331.116257] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1331.123534] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1331.130813] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1331.139279] Task in /syz1 killed as a result of limit of /syz1
[ 1331.145404] memory: usage 307200kB, limit 307200kB, failcnt 25510
[ 1331.151763] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1331.158606] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1331.164973] Memory cgroup stats for /syz1: cache:96KB rss:297772KB rss_huge:241664KB shmem:0KB mapped_file:0KB dirty:132KB writeback:132KB swap:0KB inactive_anon:104796KB active_anon:12984KB inactive_file:0KB active_file:0KB unevictable:179996KB
[ 1331.189721] Memory cgroup out of memory: Kill process 1097 (syz-executor.1) score 1223 or sacrifice child
[ 1331.200069] Killed process 1099 (syz-executor.1) total-vm:72588kB, anon-rss:18204kB, file-rss:34816kB, shmem-rss:0kB
03:00:28 executing program 2:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:00:28 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1332.954417] syz-executor.2 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1332.965865] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[ 1332.971325] CPU: 1 PID: 1109 Comm: syz-executor.2 Not tainted 4.19.95-syzkaller #0
[ 1332.979054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1332.988406] Call Trace:
[ 1332.991006]  dump_stack+0x197/0x210
[ 1332.994651]  dump_header+0x15e/0xa55
[ 1332.998386]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1333.003497]  ? ___ratelimit+0x60/0x595
[ 1333.007445]  ? do_raw_spin_unlock+0x181/0x270
[ 1333.011957]  oom_kill_process.cold+0x10/0x6ef
[ 1333.016490]  ? out_of_memory+0x43d/0x1330
[ 1333.020672]  out_of_memory+0x362/0x1330
[ 1333.024668]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1333.029469]  ? lockdep_hardirqs_on+0x415/0x5d0
[ 1333.034066]  ? oom_killer_disable+0x280/0x280
[ 1333.038584]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 1333.043553]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1333.048440]  ? memcg_event_wake+0x230/0x230
[ 1333.052777]  ? retint_kernel+0x2d/0x2d
[ 1333.056779]  try_charge+0xec5/0x1490
[ 1333.060506]  ? lock_downgrade+0x880/0x880
[ 1333.064669]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1333.069521]  ? rcu_read_unlock+0x33/0x60
[ 1333.073593]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1333.078452]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1333.084521]  ? lock_downgrade+0x880/0x880
[ 1333.088698]  mem_cgroup_try_charge+0x259/0x6b0
[ 1333.093497]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1333.098675]  do_huge_pmd_wp_page+0x97e/0x3580
[ 1333.103190]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 1333.108156]  ? __split_huge_pmd+0x2b10/0x2b10
[ 1333.112707]  ? pmd_val+0x85/0x100
[ 1333.116264]  ? __handle_mm_fault+0x525/0x3f80
[ 1333.120772]  ? write_comp_data+0x1e/0x70
[ 1333.124852]  __handle_mm_fault+0x167b/0x3f80
[ 1333.129281]  ? copy_page_range+0x2030/0x2030
[ 1333.133755]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1333.138444]  handle_mm_fault+0x1b5/0x690
[ 1333.142546]  __get_user_pages+0x609/0x1860
[ 1333.146826]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1333.151339]  ? retint_kernel+0x2d/0x2d
[ 1333.155274]  populate_vma_page_range+0x20d/0x2a0
[ 1333.160051]  __mm_populate+0x204/0x380
[ 1333.163958]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1333.168911]  __x64_sys_mlockall+0x35c/0x520
[ 1333.173278]  do_syscall_64+0xfd/0x620
[ 1333.177116]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1333.182333] RIP: 0033:0x45af49
[ 1333.185551] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1333.204472] RSP: 002b:00007f66bf404c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1333.212196] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1333.219648] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1333.226923] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1333.234224] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f66bf4056d4
[ 1333.241586] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1333.250347] Task in /syz2 killed as a result of limit of /syz2
[ 1333.256849] memory: usage 307200kB, limit 307200kB, failcnt 59
[ 1333.263059] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1333.270299] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1333.277093] Memory cgroup stats for /syz2: cache:124KB rss:297788KB rss_huge:258048KB shmem:0KB mapped_file:0KB dirty:0KB writeback:0KB swap:0KB inactive_anon:43968KB active_anon:2252KB inactive_file:16KB active_file:12KB unevictable:251676KB
[ 1333.299366] Memory cgroup out of memory: Kill process 1107 (syz-executor.2) score 1223 or sacrifice child
[ 1333.309324] Killed process 1110 (syz-executor.2) total-vm:72588kB, anon-rss:18204kB, file-rss:34816kB, shmem-rss:0kB
03:00:29 executing program 3:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1334.220485] overlayfs: missing 'lowerdir'
03:00:30 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:00:32 executing program 2:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1337.666199] syz-executor.2 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1337.677635] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[ 1337.683176] CPU: 1 PID: 1126 Comm: syz-executor.2 Not tainted 4.19.95-syzkaller #0
[ 1337.690947] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1337.700583] Call Trace:
[ 1337.703198]  dump_stack+0x197/0x210
[ 1337.706848]  dump_header+0x15e/0xa55
[ 1337.710582]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1337.715715]  ? ___ratelimit+0x60/0x595
[ 1337.719629]  ? do_raw_spin_unlock+0x181/0x270
[ 1337.724148]  oom_kill_process.cold+0x10/0x6ef
[ 1337.728663]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1337.734217]  ? task_will_free_mem+0x139/0x6e0
[ 1337.738730]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 1337.743679]  out_of_memory+0x362/0x1330
[ 1337.747667]  ? retint_kernel+0x2d/0x2d
[ 1337.751566]  ? oom_killer_disable+0x280/0x280
[ 1337.756110]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1337.761056]  ? memcg_event_wake+0x230/0x230
[ 1337.765412]  ? do_raw_spin_unlock+0x181/0x270
[ 1337.769922]  ? _raw_spin_unlock+0x2d/0x50
[ 1337.774095]  try_charge+0xec5/0x1490
[ 1337.777825]  ? lock_downgrade+0x880/0x880
[ 1337.782011]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1337.786868]  ? rcu_read_unlock+0x33/0x60
[ 1337.790937]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1337.795795]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1337.801895]  mem_cgroup_try_charge+0x259/0x6b0
[ 1337.806498]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1337.811443]  wp_page_copy+0x430/0x16a0
[ 1337.815352]  ? follow_pfn+0x2a0/0x2a0
[ 1337.819174]  ? do_raw_spin_unlock+0x181/0x270
[ 1337.823681]  do_wp_page+0x57d/0x10b0
[ 1337.827411]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1337.832094]  ? kasan_check_write+0x14/0x20
[ 1337.836374]  ? do_raw_spin_lock+0xd7/0x250
[ 1337.840655]  __handle_mm_fault+0x2305/0x3f80
[ 1337.845100]  ? copy_page_range+0x2030/0x2030
[ 1337.849565]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1337.854264]  handle_mm_fault+0x1b5/0x690
[ 1337.858352]  __get_user_pages+0x609/0x1860
[ 1337.862620]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1337.867242]  ? retint_kernel+0x2d/0x2d
[ 1337.871196]  populate_vma_page_range+0x20d/0x2a0
[ 1337.875984]  __mm_populate+0x204/0x380
[ 1337.879900]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1337.884889]  __x64_sys_mlockall+0x35c/0x520
[ 1337.889238]  do_syscall_64+0xfd/0x620
[ 1337.893063]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1337.898261] RIP: 0033:0x45af49
[ 1337.901467] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1337.920374] RSP: 002b:00007f66bf404c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1337.928112] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1337.935390] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1337.942668] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1337.949946] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f66bf4056d4
[ 1337.957224] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1337.971192] Task in /syz2 killed as a result of limit of /syz2
[ 1337.977398] memory: usage 307200kB, limit 307200kB, failcnt 75
[ 1337.983416] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1337.990235] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1337.996928] Memory cgroup stats for /syz2: cache:124KB rss:298244KB rss_huge:247808KB shmem:0KB mapped_file:0KB dirty:0KB writeback:0KB swap:0KB inactive_anon:46336KB active_anon:2248KB inactive_file:8KB active_file:4KB unevictable:249628KB
[ 1338.018670] Memory cgroup out of memory: Kill process 1125 (syz-executor.2) score 1223 or sacrifice child
[ 1338.028908] Killed process 1127 (syz-executor.2) total-vm:72588kB, anon-rss:18204kB, file-rss:34816kB, shmem-rss:0kB
[ 1338.048469] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1338.060944] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1338.066798] CPU: 0 PID: 1120 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1338.074515] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1338.083894] Call Trace:
[ 1338.086513]  dump_stack+0x197/0x210
[ 1338.090173]  dump_header+0x15e/0xa55
[ 1338.093936]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1338.099068]  ? ___ratelimit+0x60/0x595
[ 1338.102993]  ? do_raw_spin_unlock+0x181/0x270
[ 1338.107543]  oom_kill_process.cold+0x10/0x6ef
[ 1338.112114]  out_of_memory+0x362/0x1330
[ 1338.116142]  ? retint_kernel+0x2d/0x2d
[ 1338.120158]  ? oom_killer_disable+0x280/0x280
[ 1338.124717]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1338.129621]  ? memcg_event_wake+0x230/0x230
[ 1338.134007]  ? do_raw_spin_unlock+0x181/0x270
[ 1338.138549]  ? _raw_spin_unlock+0x2d/0x50
[ 1338.142797]  try_charge+0xec5/0x1490
[ 1338.146549]  ? lock_downgrade+0x880/0x880
[ 1338.150754]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1338.155923]  ? rcu_read_unlock+0x33/0x60
[ 1338.160031]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1338.164920]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1338.171034]  mem_cgroup_try_charge+0x259/0x6b0
[ 1338.175670]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1338.180658]  wp_page_copy+0x430/0x16a0
[ 1338.184603]  ? follow_pfn+0x2a0/0x2a0
[ 1338.188481]  ? do_raw_spin_unlock+0x181/0x270
[ 1338.193028]  do_wp_page+0x57d/0x10b0
[ 1338.196788]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1338.201490]  ? kasan_check_write+0x14/0x20
[ 1338.205756]  ? do_raw_spin_lock+0xd7/0x250
[ 1338.210041]  __handle_mm_fault+0x2305/0x3f80
[ 1338.214497]  ? copy_page_range+0x2030/0x2030
[ 1338.218995]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1338.223709]  handle_mm_fault+0x1b5/0x690
[ 1338.227822]  __get_user_pages+0x609/0x1860
[ 1338.232113]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1338.236672]  ? retint_kernel+0x2d/0x2d
[ 1338.240633]  populate_vma_page_range+0x20d/0x2a0
[ 1338.245440]  __mm_populate+0x204/0x380
[ 1338.249366]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1338.254354]  __x64_sys_mlockall+0x35c/0x520
[ 1338.258720]  do_syscall_64+0xfd/0x620
[ 1338.262568]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1338.267790] RIP: 0033:0x45af49
[ 1338.271021] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1338.289951] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1338.297697] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1338.305003] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1338.312317] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1338.319613] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1338.326910] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1338.335736] Task in /syz1 killed as a result of limit of /syz1
[ 1338.342217] memory: usage 295516kB, limit 307200kB, failcnt 25530
[ 1338.348605] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1338.355467] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1338.363065] Memory cgroup stats for /syz1: cache:96KB rss:286236KB rss_huge:241664KB shmem:0KB mapped_file:0KB dirty:132KB writeback:132KB swap:0KB inactive_anon:93284KB active_anon:12984KB inactive_file:0KB active_file:0KB unevictable:179996KB
[ 1338.387885] Memory cgroup out of memory: Kill process 1119 (syz-executor.1) score 1226 or sacrifice child
[ 1338.400050] Killed process 1120 (syz-executor.1) total-vm:72588kB, anon-rss:18204kB, file-rss:54368kB, shmem-rss:0kB
[ 1338.415753] oom_reaper: reaped process 1120 (syz-executor.1), now anon-rss:18204kB, file-rss:54360kB, shmem-rss:0kB
[ 1338.428432] syz-executor.2 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1338.440091] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[ 1338.446114] CPU: 1 PID: 1126 Comm: syz-executor.2 Not tainted 4.19.95-syzkaller #0
[ 1338.453837] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1338.463195] Call Trace:
[ 1338.465799]  dump_stack+0x197/0x210
[ 1338.469620]  dump_header+0x15e/0xa55
[ 1338.473348]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1338.478464]  ? ___ratelimit+0x60/0x595
[ 1338.482362]  ? do_raw_spin_unlock+0x181/0x270
[ 1338.486881]  oom_kill_process.cold+0x10/0x6ef
[ 1338.491394]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1338.496950]  ? task_will_free_mem+0x139/0x6e0
[ 1338.501552]  out_of_memory+0x362/0x1330
[ 1338.505544]  ? oom_killer_disable+0x280/0x280
[ 1338.510068]  ? mem_cgroup_out_of_memory+0xab/0x240
[ 1338.515041]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1338.519915]  ? memcg_event_wake+0x230/0x230
[ 1338.524269]  ? do_raw_spin_unlock+0x181/0x270
[ 1338.528794]  ? _raw_spin_unlock+0x2d/0x50
[ 1338.532963]  try_charge+0xec5/0x1490
[ 1338.536701]  ? lock_downgrade+0x880/0x880
[ 1338.540876]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1338.545744]  ? rcu_read_unlock+0x33/0x60
[ 1338.549837]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1338.554710]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1338.560831]  mem_cgroup_try_charge+0x259/0x6b0
[ 1338.565454]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1338.571557]  wp_page_copy+0x430/0x16a0
[ 1338.575487]  ? follow_pfn+0x2a0/0x2a0
[ 1338.579307]  ? do_raw_spin_unlock+0x181/0x270
[ 1338.583819]  do_wp_page+0x57d/0x10b0
[ 1338.587555]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1338.592245]  ? kasan_check_write+0x14/0x20
[ 1338.596499]  ? do_raw_spin_lock+0xd7/0x250
[ 1338.600759]  __handle_mm_fault+0x2305/0x3f80
[ 1338.605198]  ? copy_page_range+0x2030/0x2030
[ 1338.609649]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1338.614343]  handle_mm_fault+0x1b5/0x690
[ 1338.618430]  __get_user_pages+0x609/0x1860
[ 1338.622692]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1338.627217]  ? retint_kernel+0x2d/0x2d
[ 1338.631139]  populate_vma_page_range+0x20d/0x2a0
[ 1338.635929]  __mm_populate+0x204/0x380
[ 1338.639847]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1338.644823]  __x64_sys_mlockall+0x35c/0x520
[ 1338.649176]  do_syscall_64+0xfd/0x620
[ 1338.653013]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1338.658221] RIP: 0033:0x45af49
[ 1338.661434] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1338.680358] RSP: 002b:00007f66bf404c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1338.688266] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1338.695568] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1338.702862] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1338.710162] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f66bf4056d4
[ 1338.717455] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1338.730130] Task in /syz2 killed as a result of limit of /syz2
[ 1338.736550] memory: usage 303072kB, limit 307200kB, failcnt 81
[ 1338.742660] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1338.749577] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1338.756072] Memory cgroup stats for /syz2: cache:124KB rss:294416KB rss_huge:247808KB shmem:0KB mapped_file:0KB dirty:0KB writeback:0KB swap:0KB inactive_anon:42400KB active_anon:2248KB inactive_file:12KB active_file:0KB unevictable:249628KB
[ 1338.777938] Memory cgroup out of memory: Kill process 1125 (syz-executor.2) score 1223 or sacrifice child
[ 1338.788186] Killed process 1125 (syz-executor.2) total-vm:72588kB, anon-rss:18156kB, file-rss:53404kB, shmem-rss:0kB
03:00:34 executing program 5:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r3 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r4 = openat$cgroup_procs(r3, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r2, 0x84, 0x19, &(0x7f00000001c0)={0x0, 0x5}, 0x8)
write$cgroup_pid(r4, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x0, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000], 0x0, 0x40040})
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, 0x0, 0x0)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

03:00:34 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:00:34 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:00:34 executing program 3:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:00:35 executing program 2:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1340.175566] syz-executor.2 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1340.187129] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[ 1340.192608] CPU: 1 PID: 1140 Comm: syz-executor.2 Not tainted 4.19.95-syzkaller #0
[ 1340.200324] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1340.209688] Call Trace:
[ 1340.212291]  dump_stack+0x197/0x210
[ 1340.215933]  dump_header+0x15e/0xa55
[ 1340.219686]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1340.224799]  ? ___ratelimit+0x60/0x595
[ 1340.228693]  ? do_raw_spin_unlock+0x181/0x270
[ 1340.233204]  oom_kill_process.cold+0x10/0x6ef
[ 1340.237736]  ? out_of_memory+0x1ae/0x1330
[ 1340.241920]  ? mem_cgroup_get_max+0x2a/0x240
[ 1340.246366]  out_of_memory+0x362/0x1330
[ 1340.250366]  ? retint_kernel+0x2d/0x2d
[ 1340.254278]  ? oom_killer_disable+0x280/0x280
[ 1340.258803]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1340.263667]  ? memcg_event_wake+0x230/0x230
[ 1340.268005]  ? do_raw_spin_unlock+0x181/0x270
[ 1340.272513]  ? _raw_spin_unlock+0x2d/0x50
[ 1340.276674]  try_charge+0xec5/0x1490
[ 1340.280401]  ? lock_downgrade+0x880/0x880
[ 1340.284570]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1340.289448]  ? rcu_read_unlock+0x33/0x60
[ 1340.293520]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1340.298502]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1340.304681]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1340.309485]  mem_cgroup_try_charge+0x259/0x6b0
[ 1340.314093]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1340.319058]  wp_page_copy+0x430/0x16a0
[ 1340.322973]  ? follow_pfn+0x2a0/0x2a0
[ 1340.326789]  ? do_raw_spin_unlock+0x181/0x270
[ 1340.331300]  do_wp_page+0x57d/0x10b0
[ 1340.335028]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1340.339706]  ? kasan_check_write+0x14/0x20
[ 1340.343966]  ? do_raw_spin_lock+0xd7/0x250
[ 1340.348234]  __handle_mm_fault+0x2305/0x3f80
[ 1340.352667]  ? copy_page_range+0x2030/0x2030
[ 1340.357119]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1340.361806]  handle_mm_fault+0x1b5/0x690
[ 1340.365999]  __get_user_pages+0x609/0x1860
[ 1340.370268]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1340.374785]  ? retint_kernel+0x2d/0x2d
[ 1340.378698]  ? populate_vma_page_range+0x142/0x2a0
[ 1340.383668]  populate_vma_page_range+0x20d/0x2a0
[ 1340.388446]  __mm_populate+0x204/0x380
[ 1340.392372]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1340.397325]  ? __x64_sys_mlockall+0x27c/0x520
[ 1340.401850]  __x64_sys_mlockall+0x35c/0x520
[ 1340.406185]  do_syscall_64+0xfd/0x620
[ 1340.410026]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1340.415221] RIP: 0033:0x45af49
[ 1340.418423] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1340.437332] RSP: 002b:00007f66bf404c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1340.445048] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1340.452324] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1340.459602] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1340.466894] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f66bf4056d4
[ 1340.474168] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1340.481647] Task in /syz2 killed as a result of limit of /syz2
[ 1340.488192] memory: usage 307200kB, limit 307200kB, failcnt 107
[ 1340.494372] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1340.501199] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1340.507434] Memory cgroup stats for /syz2: cache:124KB rss:298236KB rss_huge:247808KB shmem:0KB mapped_file:0KB dirty:0KB writeback:0KB swap:0KB inactive_anon:46240KB active_anon:2252KB inactive_file:4KB active_file:4KB unevictable:249628KB
[ 1340.529307] Memory cgroup out of memory: Kill process 1138 (syz-executor.2) score 1223 or sacrifice child
[ 1340.539562] Killed process 1141 (syz-executor.2) total-vm:72588kB, anon-rss:18204kB, file-rss:34816kB, shmem-rss:0kB
[ 1340.651444] syz-executor.2 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1340.662933] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[ 1340.668405] CPU: 1 PID: 1140 Comm: syz-executor.2 Not tainted 4.19.95-syzkaller #0
[ 1340.676129] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1340.685484] Call Trace:
[ 1340.688134]  dump_stack+0x197/0x210
[ 1340.691795]  dump_header+0x15e/0xa55
[ 1340.695559]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1340.700704]  ? ___ratelimit+0x60/0x595
[ 1340.704625]  ? do_raw_spin_unlock+0x181/0x270
[ 1340.709150]  oom_kill_process.cold+0x10/0x6ef
[ 1340.713698]  out_of_memory+0x362/0x1330
[ 1340.717705]  ? lock_downgrade+0x880/0x880
[ 1340.721907]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1340.727038]  ? oom_killer_disable+0x280/0x280
[ 1340.731550]  ? find_held_lock+0x35/0x130
[ 1340.735645]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1340.740507]  ? memcg_event_wake+0x230/0x230
[ 1340.744847]  ? do_raw_spin_unlock+0x181/0x270
[ 1340.749354]  ? _raw_spin_unlock+0x2d/0x50
[ 1340.753516]  try_charge+0xec5/0x1490
[ 1340.757243]  ? lock_downgrade+0x880/0x880
[ 1340.761406]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1340.766260]  ? rcu_read_unlock+0x33/0x60
[ 1340.770327]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1340.775181]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1340.781269]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1340.786047]  mem_cgroup_try_charge+0x259/0x6b0
[ 1340.790661]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1340.795599]  wp_page_copy+0x430/0x16a0
[ 1340.799502]  ? follow_pfn+0x2a0/0x2a0
[ 1340.803321]  ? do_raw_spin_unlock+0x181/0x270
[ 1340.807827]  do_wp_page+0x57d/0x10b0
[ 1340.811554]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1340.816233]  ? kasan_check_write+0x14/0x20
[ 1340.820475]  ? do_raw_spin_lock+0xd7/0x250
[ 1340.824724]  __handle_mm_fault+0x2305/0x3f80
[ 1340.829240]  ? copy_page_range+0x2030/0x2030
[ 1340.833678]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1340.838360]  handle_mm_fault+0x1b5/0x690
[ 1340.842440]  __get_user_pages+0x609/0x1860
[ 1340.846701]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1340.851202]  ? retint_kernel+0x2d/0x2d
[ 1340.855107]  ? populate_vma_page_range+0x142/0x2a0
[ 1340.860053]  populate_vma_page_range+0x20d/0x2a0
[ 1340.864827]  __mm_populate+0x204/0x380
[ 1340.868731]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1340.873673]  ? __x64_sys_mlockall+0x27c/0x520
[ 1340.878196]  __x64_sys_mlockall+0x35c/0x520
[ 1340.882530]  do_syscall_64+0xfd/0x620
[ 1340.886353]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1340.891546] RIP: 0033:0x45af49
[ 1340.894766] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1340.913693] RSP: 002b:00007f66bf404c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1340.921416] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1340.928699] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1340.935975] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1340.943248] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f66bf4056d4
[ 1340.950537] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1340.958206] Task in /syz2 killed as a result of limit of /syz2
[ 1340.964470] memory: usage 303164kB, limit 307200kB, failcnt 125
[ 1340.970785] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1340.977657] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1340.984104] Memory cgroup stats for /syz2: cache:124KB rss:294416KB rss_huge:247808KB shmem:0KB mapped_file:0KB dirty:0KB writeback:0KB swap:0KB inactive_anon:42400KB active_anon:2248KB inactive_file:4KB active_file:4KB unevictable:249628KB
[ 1341.006559] Memory cgroup out of memory: Kill process 1138 (syz-executor.2) score 1223 or sacrifice child
[ 1341.016786] Killed process 1138 (syz-executor.2) total-vm:72588kB, anon-rss:18156kB, file-rss:53404kB, shmem-rss:0kB
[ 1341.033287] oom_reaper: reaped process 1138 (syz-executor.2), now anon-rss:18156kB, file-rss:53396kB, shmem-rss:0kB
03:00:37 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:00:39 executing program 2:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:00:39 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1343.933146] syz-executor.2 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1343.945044] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[ 1343.950889] CPU: 1 PID: 1149 Comm: syz-executor.2 Not tainted 4.19.95-syzkaller #0
[ 1343.958622] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1343.968002] Call Trace:
[ 1343.970629]  dump_stack+0x197/0x210
[ 1343.974277]  dump_header+0x15e/0xa55
[ 1343.978009]  ? oom_kill_process+0x136/0x150
[ 1343.982363]  oom_kill_process.cold+0x10/0x6ef
[ 1343.986880]  ? out_of_memory+0x357/0x1330
[ 1343.991042]  out_of_memory+0x362/0x1330
[ 1343.995028]  ? retint_kernel+0x2d/0x2d
[ 1343.998928]  ? oom_killer_disable+0x280/0x280
[ 1344.003461]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1344.008329]  ? memcg_event_wake+0x230/0x230
[ 1344.012677]  try_charge+0xec5/0x1490
[ 1344.016402]  ? lock_downgrade+0x880/0x880
[ 1344.020567]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1344.025421]  ? rcu_read_unlock+0x33/0x60
[ 1344.029487]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1344.034349]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1344.040429]  mem_cgroup_try_charge+0x259/0x6b0
[ 1344.045179]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1344.050131]  wp_page_copy+0x430/0x16a0
[ 1344.054080]  ? retint_kernel+0x2d/0x2d
[ 1344.057982]  ? follow_pfn+0x2a0/0x2a0
[ 1344.061790]  ? do_raw_spin_unlock+0x10e/0x270
[ 1344.066309]  ? do_raw_spin_unlock+0x181/0x270
[ 1344.070815]  do_wp_page+0x57d/0x10b0
[ 1344.074559]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1344.079239]  ? kasan_check_write+0x14/0x20
[ 1344.083591]  ? do_raw_spin_lock+0xd7/0x250
[ 1344.087844]  __handle_mm_fault+0x2305/0x3f80
[ 1344.092269]  ? copy_page_range+0x2030/0x2030
[ 1344.096710]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1344.101413]  handle_mm_fault+0x1b5/0x690
[ 1344.105497]  __get_user_pages+0x609/0x1860
[ 1344.110197]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1344.114707]  ? retint_kernel+0x2d/0x2d
[ 1344.118624]  populate_vma_page_range+0x20d/0x2a0
[ 1344.123415]  __mm_populate+0x204/0x380
[ 1344.127333]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1344.132293]  __x64_sys_mlockall+0x35c/0x520
[ 1344.136645]  do_syscall_64+0xfd/0x620
[ 1344.140475]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1344.145694] RIP: 0033:0x45af49
[ 1344.149040] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1344.168098] RSP: 002b:00007f66bf404c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1344.175833] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1344.183132] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1344.190426] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1344.197837] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f66bf4056d4
[ 1344.205133] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1344.214042] Task in /syz2 killed as a result of limit of /syz2
[ 1344.220353] memory: usage 307200kB, limit 307200kB, failcnt 155
[ 1344.226555] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1344.233473] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1344.239704] Memory cgroup stats for /syz2: cache:124KB rss:298096KB rss_huge:266240KB shmem:0KB mapped_file:0KB dirty:0KB writeback:0KB swap:0KB inactive_anon:46020KB active_anon:2248KB inactive_file:4KB active_file:4KB unevictable:249812KB
[ 1344.261986] Memory cgroup out of memory: Kill process 1148 (syz-executor.2) score 1223 or sacrifice child
[ 1344.272918] Killed process 1151 (syz-executor.2) total-vm:72588kB, anon-rss:18204kB, file-rss:34816kB, shmem-rss:0kB
[ 1344.323382] syz-executor.2 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1344.334884] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[ 1344.340745] CPU: 1 PID: 1149 Comm: syz-executor.2 Not tainted 4.19.95-syzkaller #0
[ 1344.348465] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1344.357822] Call Trace:
[ 1344.360560]  dump_stack+0x197/0x210
[ 1344.364212]  dump_header+0x15e/0xa55
[ 1344.367945]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1344.373063]  ? ___ratelimit+0x60/0x595
[ 1344.376963]  ? do_raw_spin_unlock+0x181/0x270
[ 1344.381474]  oom_kill_process.cold+0x10/0x6ef
[ 1344.385999]  out_of_memory+0x362/0x1330
[ 1344.390525]  ? retint_kernel+0x2d/0x2d
[ 1344.394525]  ? oom_killer_disable+0x280/0x280
[ 1344.399051]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1344.403907]  ? memcg_event_wake+0x230/0x230
[ 1344.408244]  ? _raw_spin_unlock+0x2d/0x50
[ 1344.412409]  try_charge+0xec5/0x1490
[ 1344.416140]  ? lock_downgrade+0x880/0x880
[ 1344.420306]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1344.425163]  ? rcu_read_unlock+0x33/0x60
[ 1344.429233]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1344.434090]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1344.440170]  mem_cgroup_try_charge+0x259/0x6b0
[ 1344.444774]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1344.449719]  wp_page_copy+0x430/0x16a0
[ 1344.453616]  ? retint_kernel+0x2d/0x2d
[ 1344.457519]  ? follow_pfn+0x2a0/0x2a0
[ 1344.461335]  ? do_raw_spin_unlock+0x10e/0x270
[ 1344.465874]  ? do_raw_spin_unlock+0x181/0x270
[ 1344.470396]  do_wp_page+0x57d/0x10b0
[ 1344.474121]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1344.478803]  ? kasan_check_write+0x14/0x20
[ 1344.483042]  ? do_raw_spin_lock+0xd7/0x250
[ 1344.487297]  __handle_mm_fault+0x2305/0x3f80
[ 1344.491735]  ? copy_page_range+0x2030/0x2030
[ 1344.496176]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1344.500855]  handle_mm_fault+0x1b5/0x690
[ 1344.504934]  __get_user_pages+0x609/0x1860
[ 1344.509191]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1344.513712]  ? retint_kernel+0x2d/0x2d
[ 1344.517630]  populate_vma_page_range+0x20d/0x2a0
[ 1344.522404]  __mm_populate+0x204/0x380
[ 1344.526323]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1344.531275]  __x64_sys_mlockall+0x35c/0x520
[ 1344.535737]  do_syscall_64+0xfd/0x620
[ 1344.539563]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1344.544766] RIP: 0033:0x45af49
[ 1344.547984] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1344.567106] RSP: 002b:00007f66bf404c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1344.574840] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1344.582645] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1344.590059] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1344.597338] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f66bf4056d4
[ 1344.605559] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1344.614495] Task in /syz2 killed as a result of limit of /syz2
[ 1344.621050] memory: usage 303388kB, limit 307200kB, failcnt 161
[ 1344.632854] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1344.639847] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1344.646278] Memory cgroup stats for /syz2: cache:124KB rss:294600KB rss_huge:264192KB shmem:0KB mapped_file:0KB dirty:0KB writeback:0KB swap:0KB inactive_anon:44448KB active_anon:2248KB inactive_file:8KB active_file:0KB unevictable:247764KB
03:00:40 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:00:40 executing program 3:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1344.668205] Memory cgroup out of memory: Kill process 1148 (syz-executor.2) score 1223 or sacrifice child
[ 1344.678193] Killed process 1148 (syz-executor.2) total-vm:72588kB, anon-rss:18204kB, file-rss:54368kB, shmem-rss:0kB
[ 1344.692330] oom_reaper: reaped process 1148 (syz-executor.2), now anon-rss:18204kB, file-rss:54360kB, shmem-rss:0kB
[ 1344.987655] overlayfs: missing 'lowerdir'
03:00:40 executing program 2:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:00:41 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1345.893661] syz-executor.2 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1345.905068] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[ 1345.911708] CPU: 0 PID: 1169 Comm: syz-executor.2 Not tainted 4.19.95-syzkaller #0
[ 1345.919428] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1345.929744] Call Trace:
[ 1345.932351]  dump_stack+0x197/0x210
[ 1345.935993]  dump_header+0x15e/0xa55
[ 1345.940414]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1345.945527]  ? ___ratelimit+0x60/0x595
[ 1345.949421]  ? do_raw_spin_unlock+0x181/0x270
[ 1345.954018]  oom_kill_process.cold+0x10/0x6ef
[ 1345.958533]  ? mem_cgroup_get_max+0xa8/0x240
[ 1345.963054]  out_of_memory+0x362/0x1330
[ 1345.967046]  ? oom_killer_disable+0x280/0x280
[ 1345.971565]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1345.976417]  ? memcg_event_wake+0x230/0x230
[ 1345.981642]  ? do_raw_spin_unlock+0x181/0x270
[ 1345.986152]  ? _raw_spin_unlock+0x2d/0x50
[ 1345.990313]  try_charge+0xec5/0x1490
[ 1345.994038]  ? lock_downgrade+0x880/0x880
[ 1345.998202]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1346.003060]  ? rcu_read_unlock+0x33/0x60
[ 1346.007227]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1346.012122]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1346.018194]  ? lock_downgrade+0x880/0x880
[ 1346.022376]  mem_cgroup_try_charge+0x259/0x6b0
[ 1346.026990]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1346.032022]  do_huge_pmd_wp_page+0x97e/0x3580
[ 1346.036528]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 1346.041480]  ? __split_huge_pmd+0x2b10/0x2b10
[ 1346.045993]  ? __handle_mm_fault+0xbfc/0x3f80
[ 1346.050500]  ? write_comp_data+0x1e/0x70
[ 1346.054586]  __handle_mm_fault+0x167b/0x3f80
[ 1346.059017]  ? copy_page_range+0x2030/0x2030
[ 1346.063451]  ? retint_kernel+0x2d/0x2d
[ 1346.067381]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1346.072085]  handle_mm_fault+0x1b5/0x690
[ 1346.076200]  __get_user_pages+0x609/0x1860
[ 1346.080470]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1346.085560]  ? retint_kernel+0x2d/0x2d
[ 1346.097216]  ? populate_vma_page_range+0x59/0x2a0
[ 1346.102107]  populate_vma_page_range+0x20d/0x2a0
[ 1346.107247]  __mm_populate+0x204/0x380
[ 1346.111350]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1346.116416]  __x64_sys_mlockall+0x35c/0x520
[ 1346.120863]  do_syscall_64+0xfd/0x620
[ 1346.124696]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1346.129914] RIP: 0033:0x45af49
[ 1346.133121] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1346.152035] RSP: 002b:00007f66bf404c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1346.159761] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1346.167203] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1346.174483] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1346.181772] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f66bf4056d4
[ 1346.189054] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1346.197744] Task in /syz2 killed as a result of limit of /syz2
[ 1346.204180] memory: usage 307200kB, limit 307200kB, failcnt 190
[ 1346.210530] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1346.217710] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1346.224994] Memory cgroup stats for /syz2: cache:124KB rss:297856KB rss_huge:251904KB shmem:0KB mapped_file:0KB dirty:0KB writeback:0KB swap:0KB inactive_anon:43972KB active_anon:2248KB inactive_file:4KB active_file:4KB unevictable:251676KB
[ 1346.246955] Memory cgroup out of memory: Kill process 1168 (syz-executor.2) score 1223 or sacrifice child
[ 1346.256839] Killed process 1170 (syz-executor.2) total-vm:72588kB, anon-rss:18204kB, file-rss:34816kB, shmem-rss:0kB
03:00:43 executing program 5:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r3 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r4 = openat$cgroup_procs(r3, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r2, 0x84, 0x19, &(0x7f00000001c0)={0x0, 0x5}, 0x8)
write$cgroup_pid(r4, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x0, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000], 0x0, 0x40040})
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, 0x0, 0x0)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x2, 0x0)

03:00:43 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:00:43 executing program 2:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:00:43 executing program 3:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:00:44 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1349.194471] syz-executor.2 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1349.206037] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[ 1349.211647] CPU: 1 PID: 1185 Comm: syz-executor.2 Not tainted 4.19.95-syzkaller #0
[ 1349.219370] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1349.228744] Call Trace:
[ 1349.232319]  dump_stack+0x197/0x210
[ 1349.236050]  dump_header+0x15e/0xa55
[ 1349.239778]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1349.244904]  ? ___ratelimit+0x60/0x595
[ 1349.248803]  ? do_raw_spin_unlock+0x181/0x270
[ 1349.253316]  oom_kill_process.cold+0x10/0x6ef
[ 1349.257827]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1349.269994]  ? task_will_free_mem+0x139/0x6e0
[ 1349.274513]  out_of_memory+0x362/0x1330
[ 1349.278502]  ? retint_kernel+0x2d/0x2d
[ 1349.282527]  ? oom_killer_disable+0x280/0x280
[ 1349.287059]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1349.292064]  ? memcg_event_wake+0x230/0x230
[ 1349.296419]  ? do_raw_spin_unlock+0x181/0x270
[ 1349.300967]  ? _raw_spin_unlock+0x2d/0x50
[ 1349.305133]  try_charge+0xec5/0x1490
[ 1349.308863]  ? lock_downgrade+0x880/0x880
[ 1349.313034]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1349.317889]  ? rcu_read_unlock+0x33/0x60
[ 1349.321961]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1349.326821]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1349.332936]  mem_cgroup_try_charge+0x259/0x6b0
[ 1349.337568]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1349.342534]  wp_page_copy+0x430/0x16a0
[ 1349.346457]  ? follow_pfn+0x2a0/0x2a0
[ 1349.350281]  ? do_raw_spin_unlock+0x181/0x270
[ 1349.354812]  do_wp_page+0x57d/0x10b0
[ 1349.358560]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1349.363249]  ? kasan_check_write+0x14/0x20
[ 1349.367499]  ? do_raw_spin_lock+0xd7/0x250
[ 1349.371768]  __handle_mm_fault+0x2305/0x3f80
[ 1349.376287]  ? copy_page_range+0x2030/0x2030
[ 1349.380734]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1349.385428]  handle_mm_fault+0x1b5/0x690
[ 1349.389525]  __get_user_pages+0x609/0x1860
[ 1349.394134]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1349.398647]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1349.403426]  ? retint_kernel+0x2d/0x2d
[ 1349.407337]  populate_vma_page_range+0x20d/0x2a0
[ 1349.412115]  __mm_populate+0x204/0x380
[ 1349.416021]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1349.420972]  __x64_sys_mlockall+0x35c/0x520
[ 1349.425326]  do_syscall_64+0xfd/0x620
[ 1349.429153]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1349.434353] RIP: 0033:0x45af49
[ 1349.437557] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1349.456998] RSP: 002b:00007f66bf404c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1349.471372] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1349.478761] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1349.486060] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1349.493341] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f66bf4056d4
[ 1349.500642] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1349.512666] Task in /syz2 killed as a result of limit of /syz2
[ 1349.519021] memory: usage 307200kB, limit 307200kB, failcnt 227
[ 1349.525210] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1349.535921] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1349.542343] Memory cgroup stats for /syz2: cache:124KB rss:297724KB rss_huge:262144KB shmem:0KB mapped_file:0KB dirty:0KB writeback:0KB swap:0KB inactive_anon:45868KB active_anon:2248KB inactive_file:4KB active_file:4KB unevictable:249760KB
[ 1349.566860] Memory cgroup out of memory: Kill process 1184 (syz-executor.2) score 1226 or sacrifice child
[ 1349.578119] Killed process 1193 (syz-executor.2) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1350.594858] oom_reaper: reaped process 1193 (syz-executor.2), now anon-rss:0kB, file-rss:34688kB, shmem-rss:0kB
03:00:46 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1350.815977] overlayfs: missing 'lowerdir'
03:00:47 executing program 2:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:00:47 executing program 0:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1352.187023] syz-executor.2 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1352.198613] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[ 1352.204083] CPU: 1 PID: 1205 Comm: syz-executor.2 Not tainted 4.19.95-syzkaller #0
[ 1352.211819] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1352.221179] Call Trace:
[ 1352.223797]  dump_stack+0x197/0x210
[ 1352.227446]  dump_header+0x15e/0xa55
[ 1352.231188]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1352.236327]  ? ___ratelimit+0x60/0x595
[ 1352.240230]  ? do_raw_spin_unlock+0x181/0x270
[ 1352.244759]  oom_kill_process.cold+0x10/0x6ef
[ 1352.249301]  ? out_of_memory+0x14a/0x1330
[ 1352.253468]  out_of_memory+0x362/0x1330
[ 1352.257458]  ? retint_kernel+0x2d/0x2d
[ 1352.261354]  ? oom_killer_disable+0x280/0x280
[ 1352.265898]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1352.270753]  ? memcg_event_wake+0x230/0x230
[ 1352.275117]  try_charge+0xec5/0x1490
[ 1352.279016]  ? lock_downgrade+0x880/0x880
[ 1352.283182]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1352.288133]  ? rcu_read_unlock+0x33/0x60
[ 1352.292203]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1352.297059]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1352.303271]  mem_cgroup_try_charge+0x259/0x6b0
[ 1352.307880]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1352.312833]  wp_page_copy+0x430/0x16a0
[ 1352.316749]  ? follow_pfn+0x2a0/0x2a0
[ 1352.320566]  ? do_raw_spin_unlock+0x181/0x270
[ 1352.325078]  do_wp_page+0x57d/0x10b0
[ 1352.328893]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1352.333714]  ? kasan_check_write+0x14/0x20
[ 1352.337977]  ? do_raw_spin_lock+0xd7/0x250
[ 1352.342235]  __handle_mm_fault+0x2305/0x3f80
[ 1352.347133]  ? copy_page_range+0x2030/0x2030
[ 1352.351871]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1352.356675]  ? handle_mm_fault+0x28e/0x690
[ 1352.360931]  handle_mm_fault+0x1b5/0x690
[ 1352.365145]  __get_user_pages+0x609/0x1860
[ 1352.369414]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1352.373937]  ? retint_kernel+0x2d/0x2d
[ 1352.377858]  populate_vma_page_range+0x20d/0x2a0
[ 1352.382646]  __mm_populate+0x204/0x380
[ 1352.386561]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1352.392468]  __x64_sys_mlockall+0x35c/0x520
[ 1352.396896]  do_syscall_64+0xfd/0x620
[ 1352.400712]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1352.406052] RIP: 0033:0x45af49
[ 1352.409252] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1352.428163] RSP: 002b:00007f66bf404c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1352.435886] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1352.443597] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1352.451573] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1352.458863] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f66bf4056d4
[ 1352.466149] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1352.473752] Task in /syz2 killed as a result of limit of /syz2
[ 1352.479989] memory: usage 307200kB, limit 307200kB, failcnt 512
[ 1352.486190] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1352.493610] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1352.499894] Memory cgroup stats for /syz2: cache:124KB rss:297736KB rss_huge:256000KB shmem:0KB mapped_file:0KB dirty:0KB writeback:0KB swap:0KB inactive_anon:43912KB active_anon:2248KB inactive_file:0KB active_file:4KB unevictable:251676KB
[ 1352.522138] Memory cgroup out of memory: Kill process 1204 (syz-executor.2) score 1223 or sacrifice child
[ 1352.533135] Killed process 1207 (syz-executor.2) total-vm:72588kB, anon-rss:18204kB, file-rss:34816kB, shmem-rss:0kB
03:00:49 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:00:49 executing program 5:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r3 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r4 = openat$cgroup_procs(r3, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r2, 0x84, 0x19, &(0x7f00000001c0)={0x0, 0x5}, 0x8)
write$cgroup_pid(r4, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x0, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000], 0x0, 0x40040})
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x0, 0x0, &(0x7f0000000400), 0x2, 0x0)

03:00:49 executing program 3:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:00:49 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:00:49 executing program 2:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1356.659224] syz-executor.2 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1356.670934] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[ 1356.676820] CPU: 1 PID: 1240 Comm: syz-executor.2 Not tainted 4.19.95-syzkaller #0
[ 1356.684553] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1356.693926] Call Trace:
[ 1356.696530]  dump_stack+0x197/0x210
[ 1356.700175]  dump_header+0x15e/0xa55
[ 1356.703900]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1356.709037]  ? ___ratelimit+0x60/0x595
[ 1356.712928]  ? do_raw_spin_unlock+0x181/0x270
[ 1356.717437]  oom_kill_process.cold+0x10/0x6ef
[ 1356.722100]  ? mem_cgroup_scan_tasks+0x13f/0x180
[ 1356.726898]  out_of_memory+0x362/0x1330
[ 1356.730907]  ? lock_downgrade+0x880/0x880
[ 1356.735085]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1356.740203]  ? oom_killer_disable+0x280/0x280
[ 1356.744731]  ? find_held_lock+0x35/0x130
[ 1356.748838]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1356.753728]  ? memcg_event_wake+0x230/0x230
[ 1356.758071]  ? do_raw_spin_unlock+0x181/0x270
[ 1356.762578]  ? _raw_spin_unlock+0x2d/0x50
[ 1356.766741]  try_charge+0xec5/0x1490
[ 1356.770466]  ? lock_downgrade+0x880/0x880
[ 1356.774631]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1356.780443]  ? rcu_read_unlock+0x33/0x60
[ 1356.784512]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1356.789381]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1356.795460]  mem_cgroup_try_charge+0x259/0x6b0
[ 1356.800076]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1356.805043]  wp_page_copy+0x430/0x16a0
[ 1356.808957]  ? follow_pfn+0x2a0/0x2a0
[ 1356.812780]  ? do_raw_spin_unlock+0x181/0x270
[ 1356.817339]  do_wp_page+0x57d/0x10b0
[ 1356.821185]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1356.825868]  ? kasan_check_write+0x14/0x20
[ 1356.830117]  ? do_raw_spin_lock+0xd7/0x250
[ 1356.834402]  __handle_mm_fault+0x2305/0x3f80
[ 1356.838830]  ? copy_page_range+0x2030/0x2030
[ 1356.843269]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1356.847953]  handle_mm_fault+0x1b5/0x690
[ 1356.852035]  __get_user_pages+0x609/0x1860
[ 1356.856293]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1356.860797]  ? retint_kernel+0x2d/0x2d
[ 1356.864722]  populate_vma_page_range+0x20d/0x2a0
[ 1356.869497]  __mm_populate+0x204/0x380
[ 1356.873403]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1356.878345]  ? up_write+0xb9/0x150
[ 1356.881901]  __x64_sys_mlockall+0x35c/0x520
[ 1356.886236]  do_syscall_64+0xfd/0x620
[ 1356.890056]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1356.895249] RIP: 0033:0x45af49
[ 1356.898462] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1356.918006] RSP: 002b:00007f66bf404c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1356.925727] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1356.933004] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1356.940282] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1356.947559] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f66bf4056d4
[ 1356.955185] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1356.963501] Task in /syz2 killed as a result of limit of /syz2
[ 1356.969819] memory: usage 307200kB, limit 307200kB, failcnt 541
[ 1356.976171] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1356.983049] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1356.989522] Memory cgroup stats for /syz2: cache:124KB rss:297736KB rss_huge:247808KB shmem:0KB mapped_file:0KB dirty:0KB writeback:0KB swap:0KB inactive_anon:45908KB active_anon:2252KB inactive_file:4KB active_file:0KB unevictable:249628KB
[ 1357.011753] Memory cgroup out of memory: Kill process 1234 (syz-executor.2) score 1223 or sacrifice child
[ 1357.022745] Killed process 1241 (syz-executor.2) total-vm:72588kB, anon-rss:18204kB, file-rss:34816kB, shmem-rss:0kB
03:00:54 executing program 3:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:00:54 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:00:54 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:00:54 executing program 0:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1359.078488] overlayfs: missing 'lowerdir'
03:00:55 executing program 5:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r3 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r4 = openat$cgroup_procs(r3, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r2, 0x84, 0x19, &(0x7f00000001c0)={0x0, 0x5}, 0x8)
write$cgroup_pid(r4, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x0, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000], 0x0, 0x40040})
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x0, 0x0, &(0x7f0000000400), 0x2, 0x0)

03:00:55 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:01:00 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:01:00 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:01:00 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1368.663811] syz-executor.2 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1368.676184] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[ 1368.681684] CPU: 1 PID: 1278 Comm: syz-executor.2 Not tainted 4.19.95-syzkaller #0
[ 1368.693306] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1368.702684] Call Trace:
[ 1368.705288]  dump_stack+0x197/0x210
[ 1368.708932]  dump_header+0x15e/0xa55
[ 1368.712669]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1368.717784]  ? ___ratelimit+0x60/0x595
[ 1368.721680]  ? do_raw_spin_unlock+0x181/0x270
[ 1368.726188]  oom_kill_process.cold+0x10/0x6ef
[ 1368.730712]  out_of_memory+0x362/0x1330
[ 1368.734712]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1368.739483]  ? oom_killer_disable+0x280/0x280
[ 1368.743984]  ? find_held_lock+0x35/0x130
[ 1368.748072]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1368.752925]  ? memcg_event_wake+0x230/0x230
[ 1368.757469]  try_charge+0xec5/0x1490
[ 1368.761213]  ? lock_downgrade+0x880/0x880
[ 1368.765404]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1368.770296]  ? rcu_read_unlock+0x33/0x60
[ 1368.774375]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1368.779249]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1368.785343]  mem_cgroup_try_charge+0x259/0x6b0
[ 1368.789948]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1368.794908]  wp_page_copy+0x430/0x16a0
[ 1368.798814]  ? follow_pfn+0x2a0/0x2a0
[ 1368.802630]  ? do_raw_spin_unlock+0x181/0x270
[ 1368.807138]  do_wp_page+0x57d/0x10b0
[ 1368.810865]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1368.815540]  ? kasan_check_write+0x14/0x20
[ 1368.819780]  ? do_raw_spin_lock+0xd7/0x250
[ 1368.824042]  __handle_mm_fault+0x2305/0x3f80
[ 1368.828465]  ? copy_page_range+0x2030/0x2030
[ 1368.832930]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1368.837626]  handle_mm_fault+0x1b5/0x690
[ 1368.841714]  __get_user_pages+0x609/0x1860
[ 1368.845998]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1368.850518]  ? retint_kernel+0x2d/0x2d
[ 1368.854446]  populate_vma_page_range+0x20d/0x2a0
[ 1368.859230]  __mm_populate+0x204/0x380
[ 1368.863260]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1368.868227]  __x64_sys_mlockall+0x35c/0x520
[ 1368.872670]  do_syscall_64+0xfd/0x620
[ 1368.876501]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1368.881711] RIP: 0033:0x45af49
[ 1368.884920] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1368.903841] RSP: 002b:00007f66bf404c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1368.911577] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1368.919029] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1368.926419] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1368.933708] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f66bf4056d4
[ 1368.940998] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1368.955546] Task in /syz2 killed as a result of limit of /syz2
[ 1368.961714] memory: usage 307200kB, limit 307200kB, failcnt 555
[ 1368.968048] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1368.974906] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1368.981514] Memory cgroup stats for /syz2: cache:124KB rss:297712KB rss_huge:247808KB shmem:0KB mapped_file:0KB dirty:0KB writeback:0KB swap:0KB inactive_anon:45808KB active_anon:2248KB inactive_file:4KB active_file:0KB unevictable:249628KB
[ 1369.003433] Memory cgroup out of memory: Kill process 1277 (syz-executor.2) score 1223 or sacrifice child
[ 1369.014173] Killed process 1279 (syz-executor.2) total-vm:72588kB, anon-rss:18204kB, file-rss:34816kB, shmem-rss:0kB
03:01:06 executing program 3:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:01:06 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:01:06 executing program 5:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r3 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r4 = openat$cgroup_procs(r3, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r2, 0x84, 0x19, &(0x7f00000001c0)={0x0, 0x5}, 0x8)
write$cgroup_pid(r4, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x0, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000], 0x0, 0x40040})
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x0, 0x0, &(0x7f0000000400), 0x2, 0x0)

[ 1371.413632] syz-executor.2 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1371.425656] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[ 1371.431296] CPU: 0 PID: 1287 Comm: syz-executor.2 Not tainted 4.19.95-syzkaller #0
[ 1371.439196] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1371.448565] Call Trace:
[ 1371.451211]  dump_stack+0x197/0x210
[ 1371.454882]  dump_header+0x15e/0xa55
[ 1371.458619]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1371.463758]  ? ___ratelimit+0x60/0x595
[ 1371.467681]  ? do_raw_spin_unlock+0x181/0x270
[ 1371.472198]  oom_kill_process.cold+0x10/0x6ef
[ 1371.476723]  out_of_memory+0x362/0x1330
[ 1371.480717]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1371.485487]  ? oom_killer_disable+0x280/0x280
[ 1371.490076]  ? find_held_lock+0x35/0x130
[ 1371.494161]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1371.499032]  ? memcg_event_wake+0x230/0x230
[ 1371.503380]  try_charge+0xec5/0x1490
[ 1371.507103]  ? lock_downgrade+0x880/0x880
[ 1371.511271]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1371.516126]  ? rcu_read_unlock+0x33/0x60
[ 1371.520193]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1371.525047]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1371.531298]  mem_cgroup_try_charge+0x259/0x6b0
[ 1371.535910]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1371.540862]  wp_page_copy+0x430/0x16a0
[ 1371.544788]  ? follow_pfn+0x2a0/0x2a0
[ 1371.548623]  ? do_raw_spin_unlock+0x181/0x270
[ 1371.553151]  do_wp_page+0x57d/0x10b0
[ 1371.556917]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1371.561862]  ? kasan_check_write+0x14/0x20
[ 1371.566111]  ? do_raw_spin_lock+0xd7/0x250
[ 1371.570382]  __handle_mm_fault+0x2305/0x3f80
[ 1371.574808]  ? copy_page_range+0x2030/0x2030
[ 1371.579248]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1371.584383]  handle_mm_fault+0x1b5/0x690
[ 1371.588475]  __get_user_pages+0x609/0x1860
[ 1371.592732]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1371.597236]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1371.602007]  ? retint_kernel+0x2d/0x2d
[ 1371.605915]  populate_vma_page_range+0x20d/0x2a0
[ 1371.610687]  __mm_populate+0x204/0x380
[ 1371.614595]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1371.619544]  __x64_sys_mlockall+0x35c/0x520
[ 1371.623877]  do_syscall_64+0xfd/0x620
[ 1371.627694]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1371.632888] RIP: 0033:0x45af49
[ 1371.636089] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1371.655263] RSP: 002b:00007f66bf404c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1371.662997] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1371.670273] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1371.677547] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1371.684827] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f66bf4056d4
[ 1371.692103] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1371.701614] Task in /syz2 killed as a result of limit of /syz2
[ 1371.708110] memory: usage 307200kB, limit 307200kB, failcnt 592
[ 1371.714483] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1371.721529] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1371.727824] Memory cgroup stats for /syz2: cache:124KB rss:297464KB rss_huge:249856KB shmem:0KB mapped_file:0KB dirty:0KB writeback:0KB swap:0KB inactive_anon:45700KB active_anon:2252KB inactive_file:4KB active_file:0KB unevictable:249628KB
[ 1371.750348] Memory cgroup out of memory: Kill process 1286 (syz-executor.2) score 1223 or sacrifice child
[ 1371.761324] Killed process 1288 (syz-executor.2) total-vm:72588kB, anon-rss:18204kB, file-rss:34816kB, shmem-rss:0kB
03:01:08 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:01:08 executing program 0:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1373.401701] overlayfs: missing 'lowerdir'
03:01:09 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:01:09 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:01:11 executing program 3:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r3 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r4 = openat$cgroup_procs(r3, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r2, 0x84, 0x19, &(0x7f00000001c0)={0x0, 0x5}, 0x8)
write$cgroup_pid(r4, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x0, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000], 0x0, 0x40040})
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x0, 0x0, &(0x7f0000000400), 0x2, 0x0)

03:01:12 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:01:12 executing program 5:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r3 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r4 = openat$cgroup_procs(r3, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r2, 0x84, 0x19, &(0x7f00000001c0)={0x0, 0x5}, 0x8)
write$cgroup_pid(r4, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x0, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000], 0x0, 0x40040})
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, 0x0, 0x2, 0x0)

[ 1376.736432] overlayfs: missing 'lowerdir'
03:01:12 executing program 0:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

03:01:15 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:01:15 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:01:15 executing program 0:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
mlockall(0x3)

03:01:15 executing program 3:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1379.464554] overlayfs: missing 'lowerdir'
03:01:15 executing program 0:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
mlockall(0x3)

03:01:16 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:01:18 executing program 0:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
mlockall(0x3)

03:01:19 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:01:19 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:01:19 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:01:19 executing program 5:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r3 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r4 = openat$cgroup_procs(r3, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r2, 0x84, 0x19, &(0x7f00000001c0)={0x0, 0x5}, 0x8)
write$cgroup_pid(r4, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x0, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000], 0x0, 0x40040})
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, 0x0, 0x2, 0x0)

03:01:19 executing program 3:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:01:19 executing program 0:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

[ 1383.861048] overlayfs: missing 'lowerdir'
03:01:22 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:01:22 executing program 5:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r3 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r4 = openat$cgroup_procs(r3, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r2, 0x84, 0x19, &(0x7f00000001c0)={0x0, 0x5}, 0x8)
write$cgroup_pid(r4, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x0, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000], 0x0, 0x40040})
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, 0x0, 0x2, 0x0)

03:01:22 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:01:22 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:01:22 executing program 3:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:01:23 executing program 0:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

[ 1387.432413] overlayfs: missing 'lowerdir'
03:01:25 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:01:26 executing program 5:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r3 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r4 = openat$cgroup_procs(r3, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r2, 0x84, 0x19, &(0x7f00000001c0)={0x0, 0x5}, 0x8)
write$cgroup_pid(r4, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x0, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000], 0x0, 0x40040})
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x0, 0x0)

[ 1390.418692] syz-executor.2 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1390.430465] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[ 1390.441180] CPU: 0 PID: 1404 Comm: syz-executor.2 Not tainted 4.19.95-syzkaller #0
[ 1390.448938] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1390.458316] Call Trace:
[ 1390.460925]  dump_stack+0x197/0x210
[ 1390.464573]  dump_header+0x15e/0xa55
[ 1390.468308]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1390.473432]  ? ___ratelimit+0x60/0x595
[ 1390.477513]  ? do_raw_spin_unlock+0x181/0x270
[ 1390.482043]  oom_kill_process.cold+0x10/0x6ef
[ 1390.486561]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1390.492121]  ? task_will_free_mem+0x139/0x6e0
[ 1390.496645]  ? find_held_lock+0x35/0x130
[ 1390.500735]  out_of_memory+0x362/0x1330
[ 1390.504731]  ? lock_downgrade+0x880/0x880
[ 1390.508903]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1390.514124]  ? oom_killer_disable+0x280/0x280
03:01:26 executing program 0:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

03:01:26 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:01:26 executing program 3:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:01:26 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1390.518633]  ? find_held_lock+0x35/0x130
[ 1390.522723]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1390.527597]  ? memcg_event_wake+0x230/0x230
[ 1390.531935]  ? do_raw_spin_unlock+0x181/0x270
[ 1390.536447]  ? _raw_spin_unlock+0x2d/0x50
[ 1390.540616]  try_charge+0xec5/0x1490
[ 1390.544358]  ? lock_downgrade+0x880/0x880
[ 1390.548540]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1390.553410]  ? rcu_read_unlock+0x33/0x60
[ 1390.557494]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1390.562401]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1390.568487]  ? mark_held_locks+0x100/0x100
[ 1390.572758]  mem_cgroup_try_charge+0x259/0x6b0
[ 1390.578396]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1390.583355]  __handle_mm_fault+0x1e50/0x3f80
[ 1390.587790]  ? copy_page_range+0x2030/0x2030
[ 1390.590746] overlayfs: missing 'lowerdir'
[ 1390.592235]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1390.601084]  handle_mm_fault+0x1b5/0x690
[ 1390.605186]  __get_user_pages+0x609/0x1860
[ 1390.609465]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1390.613978]  ? retint_kernel+0x2d/0x2d
[ 1390.617913]  ? vmacache_update+0x82/0x140
[ 1390.622262]  populate_vma_page_range+0x20d/0x2a0
[ 1390.627051]  __mm_populate+0x204/0x380
[ 1390.630962]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1390.636979]  __x64_sys_mlockall+0x35c/0x520
[ 1390.641351]  do_syscall_64+0xfd/0x620
[ 1390.645175]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1390.650377] RIP: 0033:0x45af49
[ 1390.653581] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1390.672495] RSP: 002b:00007f66bf404c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1390.680224] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1390.687588] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1390.694897] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1390.702179] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f66bf4056d4
[ 1390.709461] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1390.719045] Task in /syz2 killed as a result of limit of /syz2
[ 1390.725192] memory: usage 307200kB, limit 307200kB, failcnt 649
[ 1390.731550] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1390.738609] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1390.744969] Memory cgroup stats for /syz2: cache:124KB rss:297392KB rss_huge:247808KB shmem:0KB mapped_file:0KB dirty:0KB writeback:0KB swap:0KB inactive_anon:60736KB active_anon:2264KB inactive_file:4KB active_file:4KB unevictable:234500KB
[ 1390.845832] Memory cgroup out of memory: Kill process 672 (syz-executor.2) score 1163 or sacrifice child
[ 1390.889527] Killed process 672 (syz-executor.2) total-vm:72984kB, anon-rss:18592kB, file-rss:34816kB, shmem-rss:0kB
[ 1391.119425] oom_reaper: reaped process 672 (syz-executor.2), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[ 1391.122032] syz-executor.2 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1391.141688] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[ 1391.147888] CPU: 1 PID: 1404 Comm: syz-executor.2 Not tainted 4.19.95-syzkaller #0
[ 1391.155652] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1391.165028] Call Trace:
[ 1391.167638]  dump_stack+0x197/0x210
[ 1391.171292]  dump_header+0x15e/0xa55
[ 1391.175038]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1391.180177]  ? ___ratelimit+0x60/0x595
[ 1391.184110]  ? do_raw_spin_unlock+0x181/0x270
[ 1391.188634]  oom_kill_process.cold+0x10/0x6ef
[ 1391.193171]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1391.198736]  ? task_will_free_mem+0x139/0x6e0
[ 1391.203279]  ? find_held_lock+0x35/0x130
[ 1391.207895]  out_of_memory+0x362/0x1330
[ 1391.211896]  ? lock_downgrade+0x880/0x880
[ 1391.216080]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1391.221235]  ? oom_killer_disable+0x280/0x280
[ 1391.225749]  ? find_held_lock+0x35/0x130
[ 1391.229853]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1391.234809]  ? memcg_event_wake+0x230/0x230
[ 1391.239161]  ? do_raw_spin_unlock+0x181/0x270
[ 1391.243681]  ? _raw_spin_unlock+0x2d/0x50
[ 1391.247860]  try_charge+0xec5/0x1490
[ 1391.251601]  ? lock_downgrade+0x880/0x880
[ 1391.255785]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1391.260659]  ? rcu_read_unlock+0x33/0x60
[ 1391.264776]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1391.269661]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1391.275756]  ? mark_held_locks+0x100/0x100
[ 1391.280032]  mem_cgroup_try_charge+0x259/0x6b0
[ 1391.284765]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1391.289727]  __handle_mm_fault+0x1e50/0x3f80
[ 1391.294185]  ? copy_page_range+0x2030/0x2030
[ 1391.298640]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1391.303331]  handle_mm_fault+0x1b5/0x690
[ 1391.307434]  __get_user_pages+0x609/0x1860
[ 1391.311734]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1391.316280]  ? retint_kernel+0x2d/0x2d
[ 1391.320290]  ? vmacache_update+0x82/0x140
[ 1391.324474]  populate_vma_page_range+0x20d/0x2a0
[ 1391.329266]  __mm_populate+0x204/0x380
[ 1391.333541]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1391.338512]  __x64_sys_mlockall+0x35c/0x520
[ 1391.342860]  do_syscall_64+0xfd/0x620
[ 1391.346691]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1391.351896] RIP: 0033:0x45af49
[ 1391.355219] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1391.374138] RSP: 002b:00007f66bf404c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1391.381875] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1391.389166] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1391.396477] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1391.403767] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f66bf4056d4
[ 1391.412362] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1391.435581] Task in /syz2 killed as a result of limit of /syz2
[ 1391.441654] memory: usage 288416kB, limit 307200kB, failcnt 688
[ 1391.482137] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1391.521149] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1391.549137] Memory cgroup stats for /syz2: cache:124KB rss:278824KB rss_huge:231424KB shmem:0KB mapped_file:0KB dirty:0KB writeback:0KB swap:0KB inactive_anon:58528KB active_anon:2264KB inactive_file:4KB active_file:0KB unevictable:218120KB
[ 1391.685054] Memory cgroup out of memory: Kill process 1014 (syz-executor.2) score 1163 or sacrifice child
[ 1391.740603] Killed process 1014 (syz-executor.2) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1391.836373] oom_reaper: reaped process 1014 (syz-executor.2), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
03:01:27 executing program 0:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

[ 1393.479583] syz-executor.0 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1393.491045] syz-executor.0 cpuset=syz0 mems_allowed=0-1
[ 1393.496986] CPU: 1 PID: 1428 Comm: syz-executor.0 Not tainted 4.19.95-syzkaller #0
[ 1393.504701] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1393.514058] Call Trace:
[ 1393.516665]  dump_stack+0x197/0x210
[ 1393.520307]  dump_header+0x15e/0xa55
[ 1393.524034]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1393.529151]  ? ___ratelimit+0x60/0x595
[ 1393.533048]  ? do_raw_spin_unlock+0x181/0x270
[ 1393.537555]  oom_kill_process.cold+0x10/0x6ef
[ 1393.542093]  out_of_memory+0x362/0x1330
[ 1393.546081]  ? lock_downgrade+0x880/0x880
[ 1393.550239]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1393.555462]  ? oom_killer_disable+0x280/0x280
[ 1393.560242]  ? find_held_lock+0x35/0x130
[ 1393.564343]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1393.569209]  ? memcg_event_wake+0x230/0x230
[ 1393.573561]  ? do_raw_spin_unlock+0x181/0x270
[ 1393.578610]  ? _raw_spin_unlock+0x2d/0x50
[ 1393.582785]  try_charge+0xec5/0x1490
[ 1393.586517]  ? lock_downgrade+0x880/0x880
[ 1393.590675]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1393.595534]  ? rcu_read_unlock+0x33/0x60
[ 1393.599612]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1393.604465]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1393.610547]  ? retint_kernel+0x2d/0x2d
[ 1393.614441]  mem_cgroup_try_charge+0x259/0x6b0
[ 1393.619023]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1393.623947]  wp_page_copy+0x430/0x16a0
[ 1393.627846]  ? follow_pfn+0x2a0/0x2a0
[ 1393.631643]  ? do_raw_spin_unlock+0x181/0x270
[ 1393.636139]  do_wp_page+0x57d/0x10b0
[ 1393.639851]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1393.644512]  ? kasan_check_write+0x14/0x20
[ 1393.648740]  ? do_raw_spin_lock+0xd7/0x250
[ 1393.652978]  __handle_mm_fault+0x2305/0x3f80
[ 1393.657558]  ? copy_page_range+0x2030/0x2030
[ 1393.661969]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1393.666637]  handle_mm_fault+0x1b5/0x690
[ 1393.670726]  __get_user_pages+0x609/0x1860
[ 1393.675001]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1393.679517]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1393.684278]  ? retint_kernel+0x2d/0x2d
[ 1393.688172]  populate_vma_page_range+0x20d/0x2a0
[ 1393.692930]  __mm_populate+0x204/0x380
[ 1393.696818]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1393.701747]  __x64_sys_mlockall+0x35c/0x520
[ 1393.706063]  do_syscall_64+0xfd/0x620
[ 1393.709883]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1393.715072] RIP: 0033:0x45af49
[ 1393.718258] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1393.737151] RSP: 002b:00007faf37e78c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1393.745375] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1393.752652] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1393.759922] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1393.767184] R10: 0000000000000000 R11: 0000000000000246 R12: 00007faf37e796d4
[ 1393.774446] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1393.782715] Task in /syz0 killed as a result of limit of /syz0
[ 1393.789214] memory: usage 307200kB, limit 307200kB, failcnt 57
[ 1393.795353] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1393.802329] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1393.808785] Memory cgroup stats for /syz0: cache:80KB rss:298728KB rss_huge:106496KB shmem:0KB mapped_file:132KB dirty:132KB writeback:0KB swap:0KB inactive_anon:188368KB active_anon:56KB inactive_file:16KB active_file:0KB unevictable:110364KB
[ 1393.831704] Memory cgroup out of memory: Kill process 1427 (syz-executor.0) score 1223 or sacrifice child
[ 1393.841656] Killed process 1429 (syz-executor.0) total-vm:72588kB, anon-rss:18204kB, file-rss:34816kB, shmem-rss:0kB
03:01:29 executing program 5:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r3 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r4 = openat$cgroup_procs(r3, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r2, 0x84, 0x19, &(0x7f00000001c0)={0x0, 0x5}, 0x8)
write$cgroup_pid(r4, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x0, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000], 0x0, 0x40040})
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x0, 0x0)

03:01:29 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:01:30 executing program 3:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:01:30 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:01:30 executing program 0:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

[ 1394.531248] overlayfs: missing 'lowerdir'
03:01:30 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:01:32 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x0, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:01:32 executing program 0:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

03:01:33 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:01:33 executing program 3:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

03:01:33 executing program 0:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

03:01:35 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:01:35 executing program 5:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001600)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0)
r3 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r4 = openat$cgroup_procs(r3, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r2, 0x84, 0x19, &(0x7f00000001c0)={0x0, 0x5}, 0x8)
write$cgroup_pid(r4, &(0x7f0000000300), 0x12)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000001400)={[0x4, 0xfffffffffffffff8, 0x16ddf801, 0x6, 0xff, 0x8, 0x3, 0x0, 0x0, 0x0, 0xff, 0x0, 0xfffffffffffffff9, 0x8000000000000000], 0x0, 0x40040})
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4400, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='overlay\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
waitid(0x83b895581628fca4, 0x0, &(0x7f0000000400), 0x0, 0x0)

03:01:35 executing program 0:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

[ 1400.992015] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1401.004275] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1401.009806] CPU: 1 PID: 1486 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1401.017519] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1401.026963] Call Trace:
[ 1401.029588]  dump_stack+0x197/0x210
[ 1401.033234]  dump_header+0x15e/0xa55
[ 1401.037004]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1401.042121]  ? ___ratelimit+0x60/0x595
[ 1401.046015]  ? do_raw_spin_unlock+0x181/0x270
[ 1401.050523]  oom_kill_process.cold+0x10/0x6ef
[ 1401.055049]  out_of_memory+0x362/0x1330
[ 1401.059048]  ? retint_kernel+0x2d/0x2d
[ 1401.062949]  ? oom_killer_disable+0x280/0x280
[ 1401.067470]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1401.072325]  ? memcg_event_wake+0x230/0x230
[ 1401.076664]  ? do_raw_spin_unlock+0x181/0x270
[ 1401.081170]  ? _raw_spin_unlock+0x2d/0x50
[ 1401.085329]  try_charge+0xec5/0x1490
[ 1401.089247]  ? lock_downgrade+0x880/0x880
[ 1401.093411]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1401.098266]  ? rcu_read_unlock+0x33/0x60
[ 1401.102335]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1401.107192]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1401.113275]  mem_cgroup_try_charge+0x259/0x6b0
[ 1401.117903]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1401.122842]  wp_page_copy+0x430/0x16a0
[ 1401.126767]  ? follow_pfn+0x2a0/0x2a0
[ 1401.130608]  ? do_raw_spin_unlock+0x181/0x270
[ 1401.135264]  do_wp_page+0x57d/0x10b0
[ 1401.138999]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1401.143714]  ? kasan_check_write+0x14/0x20
[ 1401.147967]  ? do_raw_spin_lock+0xd7/0x250
[ 1401.152233]  __handle_mm_fault+0x2305/0x3f80
[ 1401.156659]  ? copy_page_range+0x2030/0x2030
[ 1401.161077]  ? retint_kernel+0x2d/0x2d
[ 1401.164992]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1401.170537]  ? sync_mm_rss+0xa4/0x1c0
[ 1401.174353]  handle_mm_fault+0x1b5/0x690
[ 1401.178449]  __get_user_pages+0x609/0x1860
[ 1401.182979]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1401.187489]  ? retint_kernel+0x2d/0x2d
[ 1401.191412]  ? populate_vma_page_range+0x1b4/0x2a0
[ 1401.196359]  populate_vma_page_range+0x20d/0x2a0
[ 1401.201130]  __mm_populate+0x204/0x380
[ 1401.205049]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1401.210027]  __x64_sys_mlockall+0x35c/0x520
[ 1401.214371]  do_syscall_64+0xfd/0x620
[ 1401.218212]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1401.223415] RIP: 0033:0x45af49
[ 1401.226618] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1401.245534] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1401.253254] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1401.260545] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1401.267819] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1401.275110] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1401.282386] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1401.291092] Task in /syz1 killed as a result of limit of /syz1
[ 1401.297838] memory: usage 307200kB, limit 307200kB, failcnt 25551
[ 1401.304229] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1401.311415] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1401.317832] Memory cgroup stats for /syz1: cache:96KB rss:297280KB rss_huge:241664KB shmem:0KB mapped_file:0KB dirty:132KB writeback:132KB swap:0KB inactive_anon:104420KB active_anon:12984KB inactive_file:0KB active_file:0KB unevictable:180128KB
[ 1401.341094] Memory cgroup out of memory: Kill process 1479 (syz-executor.1) score 1226 or sacrifice child
[ 1401.351634] Killed process 1493 (syz-executor.1) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
03:01:37 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x0, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1402.083611] oom_reaper: reaped process 1493 (syz-executor.1), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
03:01:38 executing program 3:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

03:01:38 executing program 0:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

03:01:38 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:01:41 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:01:41 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:01:41 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x0, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:01:41 executing program 3:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

03:01:42 executing program 0:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

03:01:42 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x0, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1407.415553] syz-executor.3 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1407.427111] syz-executor.3 cpuset=syz3 mems_allowed=0-1
[ 1407.432728] CPU: 0 PID: 1535 Comm: syz-executor.3 Not tainted 4.19.95-syzkaller #0
[ 1407.440704] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1407.450070] Call Trace:
[ 1407.452686]  dump_stack+0x197/0x210
[ 1407.456417]  dump_header+0x15e/0xa55
[ 1407.460142]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1407.465253]  ? ___ratelimit+0x60/0x595
[ 1407.469168]  ? do_raw_spin_unlock+0x181/0x270
[ 1407.473779]  oom_kill_process.cold+0x10/0x6ef
[ 1407.478291]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1407.483840]  ? task_will_free_mem+0x139/0x6e0
[ 1407.488354]  ? find_held_lock+0x35/0x130
[ 1407.492442]  out_of_memory+0x362/0x1330
[ 1407.496431]  ? lock_downgrade+0x880/0x880
[ 1407.500590]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1407.505698]  ? oom_killer_disable+0x280/0x280
[ 1407.510201]  ? find_held_lock+0x35/0x130
[ 1407.514284]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1407.519136]  ? memcg_event_wake+0x230/0x230
[ 1407.523476]  ? do_raw_spin_unlock+0x181/0x270
[ 1407.527984]  ? _raw_spin_unlock+0x2d/0x50
[ 1407.532143]  try_charge+0xec5/0x1490
[ 1407.535868]  ? lock_downgrade+0x880/0x880
[ 1407.540037]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1407.544911]  ? rcu_read_unlock+0x33/0x60
[ 1407.549003]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1407.553881]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1407.559989]  mem_cgroup_try_charge+0x259/0x6b0
[ 1407.564596]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1407.569539]  wp_page_copy+0x430/0x16a0
[ 1407.573451]  ? follow_pfn+0x2a0/0x2a0
[ 1407.577307]  ? do_raw_spin_unlock+0x181/0x270
[ 1407.581823]  do_wp_page+0x57d/0x10b0
[ 1407.585551]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1407.590250]  ? kasan_check_write+0x14/0x20
[ 1407.594513]  ? do_raw_spin_lock+0xd7/0x250
[ 1407.598778]  __handle_mm_fault+0x2305/0x3f80
[ 1407.603201]  ? copy_page_range+0x2030/0x2030
[ 1407.607638]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1407.612330]  handle_mm_fault+0x1b5/0x690
[ 1407.616411]  __get_user_pages+0x609/0x1860
[ 1407.620666]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1407.625170]  ? retint_kernel+0x2d/0x2d
[ 1407.629083]  populate_vma_page_range+0x20d/0x2a0
[ 1407.633858]  __mm_populate+0x204/0x380
[ 1407.637759]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1407.642726]  __x64_sys_mlockall+0x35c/0x520
[ 1407.647059]  do_syscall_64+0xfd/0x620
[ 1407.650887]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1407.656103] RIP: 0033:0x45af49
[ 1407.659325] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1407.678332] RSP: 002b:00007f12b257ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1407.686052] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1407.693329] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1407.700608] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1407.707971] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f12b257f6d4
[ 1407.715244] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1407.728135] Task in /syz3 killed as a result of limit of /syz3
[ 1407.734341] memory: usage 307200kB, limit 307200kB, failcnt 56
[ 1407.740473] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1407.747380] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1407.753666] Memory cgroup stats for /syz3: cache:76KB rss:297700KB rss_huge:165888KB shmem:0KB mapped_file:132KB dirty:132KB writeback:0KB swap:0KB inactive_anon:115660KB active_anon:2256KB inactive_file:24KB active_file:20KB unevictable:179996KB
[ 1407.776196] Memory cgroup out of memory: Kill process 1534 (syz-executor.3) score 1223 or sacrifice child
[ 1407.786046] Killed process 1536 (syz-executor.3) total-vm:72588kB, anon-rss:18204kB, file-rss:34816kB, shmem-rss:0kB
03:01:45 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:01:45 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:01:45 executing program 3:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:01:45 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1409.797371] syz-executor.3 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1409.809804] syz-executor.3 cpuset=syz3 mems_allowed=0-1
[ 1409.815241] CPU: 0 PID: 1551 Comm: syz-executor.3 Not tainted 4.19.95-syzkaller #0
[ 1409.823188] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1409.832543] Call Trace:
[ 1409.835135]  dump_stack+0x197/0x210
[ 1409.838759]  dump_header+0x15e/0xa55
[ 1409.842469]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1409.847575]  ? ___ratelimit+0x60/0x595
[ 1409.851512]  ? do_raw_spin_unlock+0x181/0x270
[ 1409.856014]  oom_kill_process.cold+0x10/0x6ef
[ 1409.860506]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1409.866036]  ? task_will_free_mem+0x139/0x6e0
[ 1409.870534]  ? find_held_lock+0x35/0x130
[ 1409.874593]  out_of_memory+0x362/0x1330
[ 1409.878649]  ? lock_downgrade+0x880/0x880
[ 1409.882791]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1409.887887]  ? oom_killer_disable+0x280/0x280
[ 1409.892373]  ? find_held_lock+0x35/0x130
[ 1409.896438]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1409.901288]  ? memcg_event_wake+0x230/0x230
[ 1409.905605]  ? do_raw_spin_unlock+0x181/0x270
[ 1409.910090]  ? _raw_spin_unlock+0x2d/0x50
[ 1409.914232]  try_charge+0xec5/0x1490
[ 1409.917950]  ? lock_downgrade+0x880/0x880
[ 1409.922093]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1409.926927]  ? rcu_read_unlock+0x33/0x60
[ 1409.930977]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1409.935838]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1409.941905]  mem_cgroup_try_charge+0x259/0x6b0
[ 1409.946484]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1409.951408]  wp_page_copy+0x430/0x16a0
[ 1409.955309]  ? follow_pfn+0x2a0/0x2a0
[ 1409.959106]  ? do_raw_spin_unlock+0x181/0x270
[ 1409.963617]  do_wp_page+0x57d/0x10b0
[ 1409.967330]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1409.971992]  ? kasan_check_write+0x14/0x20
[ 1409.976220]  ? do_raw_spin_lock+0xd7/0x250
[ 1409.980449]  __handle_mm_fault+0x2305/0x3f80
[ 1409.984989]  ? copy_page_range+0x2030/0x2030
[ 1409.989416]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1409.994088]  handle_mm_fault+0x1b5/0x690
[ 1409.998188]  __get_user_pages+0x609/0x1860
[ 1410.002444]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1410.006933]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1410.012481]  ? lock_acquire+0x16f/0x3f0
[ 1410.016447]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1410.021987]  populate_vma_page_range+0x20d/0x2a0
[ 1410.026742]  __mm_populate+0x204/0x380
[ 1410.030626]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1410.035565]  __x64_sys_mlockall+0x35c/0x520
[ 1410.040150]  do_syscall_64+0xfd/0x620
[ 1410.043943]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1410.049121] RIP: 0033:0x45af49
[ 1410.052304] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1410.071194] RSP: 002b:00007f12b257ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1410.078891] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1410.086163] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1410.096986] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1410.104255] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f12b257f6d4
[ 1410.111527] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1410.119113] Task in /syz3 killed as a result of limit of /syz3
[ 1410.125133] memory: usage 307200kB, limit 307200kB, failcnt 76
[ 1410.131202] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1410.138058] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1410.144218] Memory cgroup stats for /syz3: cache:76KB rss:297748KB rss_huge:165888KB shmem:0KB mapped_file:132KB dirty:132KB writeback:0KB swap:0KB inactive_anon:115620KB active_anon:2256KB inactive_file:16KB active_file:16KB unevictable:179996KB
[ 1410.166728] Memory cgroup out of memory: Kill process 1550 (syz-executor.3) score 1223 or sacrifice child
[ 1410.176563] Killed process 1555 (syz-executor.3) total-vm:72588kB, anon-rss:18204kB, file-rss:34816kB, shmem-rss:0kB
03:01:46 executing program 0:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

03:01:46 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x0, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:01:46 executing program 3:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:01:46 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1411.328795] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1411.340124] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1411.345585] CPU: 1 PID: 1571 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1411.353601] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1411.362972] Call Trace:
[ 1411.365577]  dump_stack+0x197/0x210
[ 1411.369225]  dump_header+0x15e/0xa55
[ 1411.372958]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1411.378085]  ? ___ratelimit+0x60/0x595
[ 1411.381987]  ? do_raw_spin_unlock+0x181/0x270
[ 1411.386639]  oom_kill_process.cold+0x10/0x6ef
[ 1411.391160]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1411.396719]  ? task_will_free_mem+0x139/0x6e0
[ 1411.401235]  ? find_held_lock+0x35/0x130
[ 1411.405327]  out_of_memory+0x362/0x1330
[ 1411.409325]  ? lock_downgrade+0x880/0x880
[ 1411.413520]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1411.418621]  ? oom_killer_disable+0x280/0x280
[ 1411.423108]  ? find_held_lock+0x35/0x130
[ 1411.427170]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1411.432017]  ? memcg_event_wake+0x230/0x230
[ 1411.436338]  ? do_raw_spin_unlock+0x181/0x270
[ 1411.440834]  ? _raw_spin_unlock+0x2d/0x50
[ 1411.444977]  try_charge+0xec5/0x1490
[ 1411.448698]  ? lock_downgrade+0x880/0x880
[ 1411.452844]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1411.457703]  ? rcu_read_unlock+0x33/0x60
[ 1411.461781]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1411.466646]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1411.472717]  ? mark_held_locks+0x100/0x100
[ 1411.476969]  mem_cgroup_try_charge+0x259/0x6b0
[ 1411.481555]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1411.486480]  __handle_mm_fault+0x1e50/0x3f80
[ 1411.490904]  ? copy_page_range+0x2030/0x2030
[ 1411.495318]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1411.499992]  handle_mm_fault+0x1b5/0x690
[ 1411.504051]  __get_user_pages+0x609/0x1860
[ 1411.508289]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1411.512787]  ? lock_acquire+0x16f/0x3f0
[ 1411.516765]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1411.522307]  populate_vma_page_range+0x20d/0x2a0
[ 1411.527062]  __mm_populate+0x204/0x380
[ 1411.530957]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1411.535897]  __x64_sys_mlockall+0x35c/0x520
[ 1411.540217]  do_syscall_64+0xfd/0x620
[ 1411.544025]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1411.549215] RIP: 0033:0x45af49
[ 1411.552414] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1411.571307] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1411.579016] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1411.586286] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1411.593545] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1411.600816] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1411.608077] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1411.615854] Task in /syz1 killed as a result of limit of /syz1
[ 1411.621889] memory: usage 307200kB, limit 307200kB, failcnt 25734
[ 1411.628195] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1411.634965] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1411.641210] Memory cgroup stats for /syz1: cache:96KB rss:297284KB rss_huge:241664KB shmem:0KB mapped_file:0KB dirty:132KB writeback:132KB swap:0KB inactive_anon:111620KB active_anon:13000KB inactive_file:4KB active_file:0KB unevictable:172868KB
[ 1411.663197] Memory cgroup out of memory: Kill process 1558 (syz-executor.1) score 1163 or sacrifice child
[ 1411.673028] Killed process 1558 (syz-executor.1) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1411.698670] syz-executor.3 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1411.710019] syz-executor.3 cpuset=syz3 mems_allowed=0-1
[ 1411.715404] CPU: 0 PID: 1568 Comm: syz-executor.3 Not tainted 4.19.95-syzkaller #0
[ 1411.723105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1411.732460] Call Trace:
[ 1411.735057]  dump_stack+0x197/0x210
[ 1411.738697]  dump_header+0x15e/0xa55
[ 1411.742409]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1411.747514]  ? ___ratelimit+0x60/0x595
[ 1411.751396]  ? do_raw_spin_unlock+0x181/0x270
[ 1411.755888]  oom_kill_process.cold+0x10/0x6ef
[ 1411.760385]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1411.765920]  ? task_will_free_mem+0x139/0x6e0
[ 1411.770422]  ? find_held_lock+0x35/0x130
[ 1411.774484]  out_of_memory+0x362/0x1330
[ 1411.778459]  ? lock_downgrade+0x880/0x880
[ 1411.782605]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1411.787715]  ? oom_killer_disable+0x280/0x280
[ 1411.792206]  ? find_held_lock+0x35/0x130
[ 1411.796271]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1411.801109]  ? memcg_event_wake+0x230/0x230
[ 1411.805431]  ? do_raw_spin_unlock+0x181/0x270
[ 1411.809928]  ? _raw_spin_unlock+0x2d/0x50
[ 1411.814084]  try_charge+0xec5/0x1490
[ 1411.817801]  ? lock_downgrade+0x880/0x880
[ 1411.821960]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1411.826821]  ? rcu_read_unlock+0x33/0x60
[ 1411.830885]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1411.835746]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1411.841867]  mem_cgroup_try_charge+0x259/0x6b0
[ 1411.846469]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1411.851510]  wp_page_copy+0x430/0x16a0
[ 1411.855428]  ? follow_pfn+0x2a0/0x2a0
[ 1411.859267]  ? do_raw_spin_unlock+0x181/0x270
[ 1411.863789]  do_wp_page+0x57d/0x10b0
[ 1411.867527]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1411.872214]  ? kasan_check_write+0x14/0x20
[ 1411.876460]  ? do_raw_spin_lock+0xd7/0x250
[ 1411.880695]  __handle_mm_fault+0x2305/0x3f80
[ 1411.885102]  ? copy_page_range+0x2030/0x2030
[ 1411.889534]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1411.894203]  handle_mm_fault+0x1b5/0x690
[ 1411.898264]  __get_user_pages+0x609/0x1860
[ 1411.902503]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1411.907002]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1411.912540]  ? lock_acquire+0x16f/0x3f0
[ 1411.916518]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1411.922065]  populate_vma_page_range+0x20d/0x2a0
[ 1411.926830]  __mm_populate+0x204/0x380
[ 1411.930720]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1411.935652]  __x64_sys_mlockall+0x35c/0x520
[ 1411.939970]  do_syscall_64+0xfd/0x620
[ 1411.943775]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1411.948957] RIP: 0033:0x45af49
[ 1411.952143] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1411.971186] RSP: 002b:00007f12b257ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1411.978921] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1411.986212] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1411.993485] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1412.000759] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f12b257f6d4
[ 1412.008023] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1412.015766] Task in /syz3 killed as a result of limit of /syz3
[ 1412.021751] memory: usage 307200kB, limit 307200kB, failcnt 408
[ 1412.027829] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1412.034600] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1412.040856] Memory cgroup stats for /syz3: cache:76KB rss:297604KB rss_huge:165888KB shmem:0KB mapped_file:132KB dirty:132KB writeback:0KB swap:0KB inactive_anon:115388KB active_anon:2256KB inactive_file:8KB active_file:12KB unevictable:180128KB
[ 1412.062789] Memory cgroup out of memory: Kill process 1567 (syz-executor.3) score 1226 or sacrifice child
[ 1412.072538] Killed process 1567 (syz-executor.3) total-vm:72720kB, anon-rss:18272kB, file-rss:54368kB, shmem-rss:0kB
[ 1412.084633] oom_reaper: reaped process 1567 (syz-executor.3), now anon-rss:18272kB, file-rss:54360kB, shmem-rss:0kB
[ 1412.098491] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1412.109772] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1412.115170] CPU: 1 PID: 1571 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1412.122983] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1412.132362] Call Trace:
[ 1412.134977]  dump_stack+0x197/0x210
[ 1412.138642]  dump_header+0x15e/0xa55
[ 1412.142394]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1412.147527]  ? ___ratelimit+0x60/0x595
[ 1412.151443]  ? do_raw_spin_unlock+0x181/0x270
[ 1412.151733] oom_reaper: reaped process 1558 (syz-executor.1), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[ 1412.155979]  oom_kill_process.cold+0x10/0x6ef
[ 1412.156000]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1412.156015]  ? task_will_free_mem+0x139/0x6e0
[ 1412.156031]  ? find_held_lock+0x35/0x130
[ 1412.156052]  out_of_memory+0x362/0x1330
[ 1412.156072]  ? lock_downgrade+0x880/0x880
[ 1412.156094]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1412.199800]  ? oom_killer_disable+0x280/0x280
[ 1412.204320]  ? find_held_lock+0x35/0x130
[ 1412.208415]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1412.213279]  ? memcg_event_wake+0x230/0x230
[ 1412.217642]  ? do_raw_spin_unlock+0x181/0x270
[ 1412.222185]  ? _raw_spin_unlock+0x2d/0x50
[ 1412.226497]  try_charge+0xec5/0x1490
[ 1412.230235]  ? lock_downgrade+0x880/0x880
[ 1412.234411]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1412.239277]  ? rcu_read_unlock+0x33/0x60
[ 1412.243346]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1412.248209]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1412.254292]  ? mark_held_locks+0x100/0x100
[ 1412.258588]  mem_cgroup_try_charge+0x259/0x6b0
[ 1412.263201]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1412.268157]  __handle_mm_fault+0x1e50/0x3f80
[ 1412.272586]  ? copy_page_range+0x2030/0x2030
[ 1412.277034]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1412.281719]  handle_mm_fault+0x1b5/0x690
[ 1412.285803]  __get_user_pages+0x609/0x1860
[ 1412.290070]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1412.294600]  ? lock_acquire+0x16f/0x3f0
[ 1412.298601]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1412.304191]  populate_vma_page_range+0x20d/0x2a0
[ 1412.308995]  __mm_populate+0x204/0x380
[ 1412.312940]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1412.317937]  __x64_sys_mlockall+0x35c/0x520
[ 1412.322293]  do_syscall_64+0xfd/0x620
[ 1412.326123]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1412.331334] RIP: 0033:0x45af49
[ 1412.334535] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1412.353454] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1412.361190] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1412.368480] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1412.375772] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1412.383056] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1412.390343] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1412.397731] Task in /syz1 killed as a result of limit of /syz1
[ 1412.403749] memory: usage 288864kB, limit 307200kB, failcnt 25884
[ 1412.410069] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1412.416894] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1412.423058] Memory cgroup stats for /syz1: cache:96KB rss:279068KB rss_huge:241664KB shmem:0KB mapped_file:0KB dirty:132KB writeback:132KB swap:0KB inactive_anon:93284KB active_anon:13000KB inactive_file:4KB active_file:0KB unevictable:172868KB
[ 1412.445014] Memory cgroup out of memory: Kill process 12356 (syz-executor.1) score 1163 or sacrifice child
[ 1412.454917] Killed process 12356 (syz-executor.1) total-vm:72720kB, anon-rss:18332kB, file-rss:34816kB, shmem-rss:0kB
03:01:48 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:01:48 executing program 3:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1412.911586] syz-executor.2 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1413.008860] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[ 1413.042486] CPU: 0 PID: 1587 Comm: syz-executor.2 Not tainted 4.19.95-syzkaller #0
[ 1413.050241] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1413.059723] Call Trace:
[ 1413.062338]  dump_stack+0x197/0x210
[ 1413.065981]  dump_header+0x15e/0xa55
[ 1413.069842]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1413.075015]  ? ___ratelimit+0x60/0x595
[ 1413.079090]  ? do_raw_spin_unlock+0x181/0x270
[ 1413.084386]  oom_kill_process.cold+0x10/0x6ef
[ 1413.089092]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1413.094642]  ? task_will_free_mem+0x139/0x6e0
[ 1413.099150]  ? find_held_lock+0x35/0x130
[ 1413.103226]  out_of_memory+0x362/0x1330
[ 1413.107213]  ? lock_downgrade+0x880/0x880
[ 1413.111382]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1413.116763]  ? oom_killer_disable+0x280/0x280
[ 1413.121842]  ? find_held_lock+0x35/0x130
[ 1413.125950]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1413.130832]  ? memcg_event_wake+0x230/0x230
[ 1413.135177]  ? do_raw_spin_unlock+0x181/0x270
[ 1413.139687]  ? _raw_spin_unlock+0x2d/0x50
[ 1413.143848]  try_charge+0xec5/0x1490
[ 1413.147592]  ? lock_downgrade+0x880/0x880
[ 1413.151759]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1413.156617]  ? rcu_read_unlock+0x33/0x60
[ 1413.161641]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1413.166498]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1413.172566]  ? mark_held_locks+0x100/0x100
[ 1413.176846]  mem_cgroup_try_charge+0x259/0x6b0
[ 1413.181465]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1413.186418]  __handle_mm_fault+0x1e50/0x3f80
[ 1413.190858]  ? copy_page_range+0x2030/0x2030
[ 1413.195317]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1413.200020]  handle_mm_fault+0x1b5/0x690
[ 1413.204109]  __get_user_pages+0x609/0x1860
[ 1413.208371]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1413.213013]  ? lock_acquire+0x16f/0x3f0
[ 1413.217009]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1413.222590]  populate_vma_page_range+0x20d/0x2a0
[ 1413.227378]  __mm_populate+0x204/0x380
[ 1413.231286]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1413.236239]  __x64_sys_mlockall+0x35c/0x520
[ 1413.240577]  do_syscall_64+0xfd/0x620
[ 1413.244403]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1413.249599] RIP: 0033:0x45af49
03:01:49 executing program 0:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

03:01:49 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:01:49 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x0, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1413.252834] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1413.271747] RSP: 002b:00007f66bf404c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1413.279475] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1413.286761] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1413.294055] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1413.301371] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f66bf4056d4
03:01:49 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1413.308662] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1413.399430] Task in /syz2 killed as a result of limit of /syz2
[ 1413.415837] memory: usage 307200kB, limit 307200kB, failcnt 724
[ 1413.480586] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1413.518455] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1413.558621] Memory cgroup stats for /syz2: cache:124KB rss:297184KB rss_huge:229376KB shmem:0KB mapped_file:0KB dirty:0KB writeback:0KB swap:0KB inactive_anon:76864KB active_anon:4336KB inactive_file:0KB active_file:4KB unevictable:216096KB
[ 1413.580465] Memory cgroup out of memory: Kill process 1074 (syz-executor.2) score 1163 or sacrifice child
[ 1413.605767] Killed process 1074 (syz-executor.2) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1413.734218] syz-executor.0 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1413.797860] syz-executor.0 cpuset=syz0 mems_allowed=0-1
[ 1413.834260] CPU: 1 PID: 1602 Comm: syz-executor.0 Not tainted 4.19.95-syzkaller #0
[ 1413.842030] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1413.851419] Call Trace:
[ 1413.854036]  dump_stack+0x197/0x210
[ 1413.857681]  dump_header+0x15e/0xa55
[ 1413.861409]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1413.866528]  ? ___ratelimit+0x60/0x595
[ 1413.870423]  ? do_raw_spin_unlock+0x181/0x270
[ 1413.875546]  oom_kill_process.cold+0x10/0x6ef
[ 1413.880402]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1413.885951]  ? task_will_free_mem+0x139/0x6e0
[ 1413.890466]  out_of_memory+0x362/0x1330
[ 1413.894474]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1413.899586]  ? oom_killer_disable+0x280/0x280
[ 1413.904089]  ? find_held_lock+0x35/0x130
[ 1413.908174]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1413.913028]  ? memcg_event_wake+0x230/0x230
[ 1413.917364]  ? do_raw_spin_unlock+0x181/0x270
[ 1413.921886]  ? _raw_spin_unlock+0x2d/0x50
[ 1413.926049]  try_charge+0xec5/0x1490
[ 1413.929789]  ? lock_downgrade+0x880/0x880
[ 1413.933956]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1413.938811]  ? rcu_read_unlock+0x33/0x60
[ 1413.942881]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1413.947738]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1413.953810]  ? mark_held_locks+0x100/0x100
[ 1413.958065]  mem_cgroup_try_charge+0x259/0x6b0
[ 1413.962667]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1413.967615]  __handle_mm_fault+0x1e50/0x3f80
[ 1413.972041]  ? copy_page_range+0x2030/0x2030
[ 1413.976478]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1413.981164]  handle_mm_fault+0x1b5/0x690
[ 1413.985245]  __get_user_pages+0x609/0x1860
[ 1413.989505]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1413.994043]  ? lock_acquire+0x16f/0x3f0
[ 1413.998038]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1414.003598]  populate_vma_page_range+0x20d/0x2a0
[ 1414.008392]  __mm_populate+0x204/0x380
[ 1414.012322]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1414.017302]  __x64_sys_mlockall+0x35c/0x520
[ 1414.021652]  do_syscall_64+0xfd/0x620
[ 1414.025468]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1414.030666] RIP: 0033:0x45af49
[ 1414.033870] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1414.052781] RSP: 002b:00007faf37e78c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1414.060500] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1414.067781] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1414.075185] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1414.082826] R10: 0000000000000000 R11: 0000000000000246 R12: 00007faf37e796d4
[ 1414.090140] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1414.150219] Task in /syz0 killed as a result of limit of /syz0
[ 1414.156385] memory: usage 307176kB, limit 307200kB, failcnt 86
[ 1414.163335] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1414.170209] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1414.176436] Memory cgroup stats for /syz0: cache:80KB rss:298000KB rss_huge:108544KB shmem:0KB mapped_file:132KB dirty:132KB writeback:0KB swap:0KB inactive_anon:199892KB active_anon:2352KB inactive_file:0KB active_file:4KB unevictable:95908KB
[ 1414.198331] Memory cgroup out of memory: Kill process 548 (syz-executor.0) score 1163 or sacrifice child
[ 1414.208148] Killed process 548 (syz-executor.0) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1414.234871] oom_reaper: reaped process 548 (syz-executor.0), now anon-rss:0kB, file-rss:34688kB, shmem-rss:0kB
03:01:50 executing program 3:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1414.512135] syz-executor.3 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1414.524091] syz-executor.3 cpuset=syz3 mems_allowed=0-1
[ 1414.529579] CPU: 0 PID: 1610 Comm: syz-executor.3 Not tainted 4.19.95-syzkaller #0
[ 1414.538374] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1414.548185] Call Trace:
[ 1414.550965]  dump_stack+0x197/0x210
[ 1414.555044]  dump_header+0x15e/0xa55
[ 1414.558793]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1414.563920]  ? ___ratelimit+0x60/0x595
[ 1414.567833]  ? do_raw_spin_unlock+0x181/0x270
[ 1414.572370]  oom_kill_process.cold+0x10/0x6ef
[ 1414.576905]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1414.582465]  ? task_will_free_mem+0x139/0x6e0
[ 1414.586984]  ? find_held_lock+0x35/0x130
[ 1414.591969]  out_of_memory+0x362/0x1330
[ 1414.595969]  ? lock_downgrade+0x880/0x880
[ 1414.600133]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1414.605253]  ? oom_killer_disable+0x280/0x280
[ 1414.609766]  ? find_held_lock+0x35/0x130
[ 1414.613861]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1414.618733]  ? memcg_event_wake+0x230/0x230
[ 1414.623163]  ? do_raw_spin_unlock+0x181/0x270
[ 1414.627678]  ? _raw_spin_unlock+0x2d/0x50
[ 1414.631845]  try_charge+0xec5/0x1490
[ 1414.635580]  ? lock_downgrade+0x880/0x880
[ 1414.639760]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1414.644628]  ? rcu_read_unlock+0x33/0x60
[ 1414.648704]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1414.653564]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1414.659640]  ? mark_held_locks+0x100/0x100
[ 1414.663914]  mem_cgroup_try_charge+0x259/0x6b0
[ 1414.668590]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1414.673816]  __handle_mm_fault+0x1e50/0x3f80
[ 1414.678256]  ? copy_page_range+0x2030/0x2030
[ 1414.683152]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1414.687852]  handle_mm_fault+0x1b5/0x690
[ 1414.691960]  __get_user_pages+0x609/0x1860
[ 1414.696229]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1414.700756]  ? lock_acquire+0x16f/0x3f0
[ 1414.704749]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1414.710317]  populate_vma_page_range+0x20d/0x2a0
[ 1414.715101]  __mm_populate+0x204/0x380
[ 1414.719020]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1414.723989]  __x64_sys_mlockall+0x35c/0x520
[ 1414.728336]  do_syscall_64+0xfd/0x620
[ 1414.732166]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1414.737383] RIP: 0033:0x45af49
[ 1414.740596] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1414.759568] RSP: 002b:00007f12b257ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1414.767470] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1414.774779] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1414.782067] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1414.789352] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f12b257f6d4
[ 1414.796641] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1414.805273] Task in /syz3 killed as a result of limit of /syz3
03:01:50 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1414.811355] memory: usage 307200kB, limit 307200kB, failcnt 465
[ 1414.817525] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1414.824297] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1414.830669] Memory cgroup stats for /syz3: cache:76KB rss:297596KB rss_huge:174080KB shmem:0KB mapped_file:132KB dirty:132KB writeback:0KB swap:0KB inactive_anon:128496KB active_anon:2272KB inactive_file:12KB active_file:12KB unevictable:166980KB
[ 1414.852991] Memory cgroup out of memory: Kill process 658 (syz-executor.3) score 1163 or sacrifice child
[ 1414.862775] Killed process 658 (syz-executor.3) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1414.876924] syz-executor.3 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1414.888994] syz-executor.3 cpuset=syz3 mems_allowed=0-1
[ 1414.894777] CPU: 0 PID: 1610 Comm: syz-executor.3 Not tainted 4.19.95-syzkaller #0
[ 1414.903468] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1414.912839] Call Trace:
[ 1414.915461]  dump_stack+0x197/0x210
[ 1414.919115]  dump_header+0x15e/0xa55
[ 1414.922858]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1414.927990]  ? ___ratelimit+0x60/0x595
[ 1414.931891]  ? do_raw_spin_unlock+0x181/0x270
[ 1414.936413]  oom_kill_process.cold+0x10/0x6ef
[ 1414.940965]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1414.946605]  ? task_will_free_mem+0x139/0x6e0
[ 1414.951136]  ? find_held_lock+0x35/0x130
[ 1414.955221]  out_of_memory+0x362/0x1330
[ 1414.959287]  ? lock_downgrade+0x880/0x880
[ 1414.963451]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1414.968573]  ? oom_killer_disable+0x280/0x280
[ 1414.973166]  ? find_held_lock+0x35/0x130
[ 1414.977241]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1414.982088]  ? memcg_event_wake+0x230/0x230
[ 1414.986438]  ? do_raw_spin_unlock+0x181/0x270
[ 1414.991030]  ? _raw_spin_unlock+0x2d/0x50
[ 1414.995195]  try_charge+0xec5/0x1490
[ 1414.998910]  ? lock_downgrade+0x880/0x880
[ 1415.003059]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1415.007932]  ? rcu_read_unlock+0x33/0x60
[ 1415.011999]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1415.016905]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1415.022997]  ? mark_held_locks+0x100/0x100
[ 1415.027251]  mem_cgroup_try_charge+0x259/0x6b0
[ 1415.031837]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1415.036765]  __handle_mm_fault+0x1e50/0x3f80
[ 1415.041171]  ? copy_page_range+0x2030/0x2030
[ 1415.045616]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1415.050306]  handle_mm_fault+0x1b5/0x690
[ 1415.054381]  __get_user_pages+0x609/0x1860
[ 1415.058640]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1415.063142]  ? lock_acquire+0x16f/0x3f0
[ 1415.067246]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1415.072798]  populate_vma_page_range+0x20d/0x2a0
[ 1415.077653]  __mm_populate+0x204/0x380
[ 1415.081553]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1415.086491]  __x64_sys_mlockall+0x35c/0x520
[ 1415.090951]  do_syscall_64+0xfd/0x620
[ 1415.094791]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1415.100000] RIP: 0033:0x45af49
[ 1415.103286] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1415.122192] RSP: 002b:00007f12b257ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1415.130013] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1415.137297] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1415.144577] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1415.151876] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f12b257f6d4
[ 1415.159194] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1415.166672] Task in /syz3 killed as a result of limit of /syz3
[ 1415.172679] memory: usage 288832kB, limit 307200kB, failcnt 477
[ 1415.178888] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1415.185716] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1415.191871] Memory cgroup stats for /syz3: cache:76KB rss:279356KB rss_huge:157696KB shmem:0KB mapped_file:132KB dirty:132KB writeback:0KB swap:0KB inactive_anon:126556KB active_anon:2260KB inactive_file:16KB active_file:8KB unevictable:150596KB
[ 1415.213889] Memory cgroup out of memory: Kill process 1166 (syz-executor.3) score 1163 or sacrifice child
[ 1415.223732] Killed process 1166 (syz-executor.3) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1415.234732] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1415.246108] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1415.251510] CPU: 1 PID: 1618 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1415.259223] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1415.268584] Call Trace:
[ 1415.271188]  dump_stack+0x197/0x210
[ 1415.274834]  dump_header+0x15e/0xa55
[ 1415.278560]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1415.283670]  ? ___ratelimit+0x60/0x595
[ 1415.287562]  ? do_raw_spin_unlock+0x181/0x270
[ 1415.292070]  oom_kill_process.cold+0x10/0x6ef
[ 1415.296578]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1415.302121]  ? task_will_free_mem+0x139/0x6e0
[ 1415.306643]  out_of_memory+0x362/0x1330
[ 1415.310651]  ? lock_downgrade+0x880/0x880
[ 1415.314810]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1415.319928]  ? oom_killer_disable+0x280/0x280
[ 1415.324451]  ? find_held_lock+0x35/0x130
[ 1415.328537]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1415.333391]  ? memcg_event_wake+0x230/0x230
[ 1415.337727]  ? do_raw_spin_unlock+0x181/0x270
[ 1415.342293]  ? _raw_spin_unlock+0x2d/0x50
[ 1415.346464]  try_charge+0xec5/0x1490
[ 1415.350233]  ? lock_downgrade+0x880/0x880
[ 1415.354417]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1415.359295]  ? rcu_read_unlock+0x33/0x60
[ 1415.363383]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1415.368260]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1415.374343]  ? mark_held_locks+0x100/0x100
[ 1415.376302] oom_reaper: reaped process 1166 (syz-executor.3), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[ 1415.378596]  mem_cgroup_try_charge+0x259/0x6b0
[ 1415.393405]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1415.398359]  __handle_mm_fault+0x1e50/0x3f80
[ 1415.402794]  ? copy_page_range+0x2030/0x2030
[ 1415.407243]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1415.411937]  handle_mm_fault+0x1b5/0x690
[ 1415.416030]  __get_user_pages+0x609/0x1860
[ 1415.420299]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1415.424827]  ? lock_acquire+0x16f/0x3f0
[ 1415.428820]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1415.434386]  populate_vma_page_range+0x20d/0x2a0
[ 1415.439172]  __mm_populate+0x204/0x380
[ 1415.443093]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1415.448057]  __x64_sys_mlockall+0x35c/0x520
[ 1415.452410]  do_syscall_64+0xfd/0x620
[ 1415.456239]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1415.461535] RIP: 0033:0x45af49
[ 1415.464743] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1415.483660] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1415.491389] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1415.498684] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1415.505970] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1415.513260] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1415.520553] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1415.528437] Task in /syz1 killed as a result of limit of /syz1
[ 1415.534468] memory: usage 307200kB, limit 307200kB, failcnt 25918
[ 1415.540896] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1415.547739] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1415.553892] Memory cgroup stats for /syz1: cache:96KB rss:297224KB rss_huge:237568KB shmem:0KB mapped_file:0KB dirty:132KB writeback:132KB swap:0KB inactive_anon:119820KB active_anon:12996KB inactive_file:8KB active_file:4KB unevictable:164508KB
[ 1415.575963] Memory cgroup out of memory: Kill process 1583 (syz-executor.1) score 1163 or sacrifice child
[ 1415.585967] Killed process 1583 (syz-executor.1) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1415.942068] oom_reaper: reaped process 1583 (syz-executor.1), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
03:01:53 executing program 0:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

03:01:53 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:01:53 executing program 1:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:01:53 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

03:01:53 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1417.509798] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1417.521127] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1417.526620] CPU: 1 PID: 1636 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1417.534347] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1417.543711] Call Trace:
[ 1417.546322]  dump_stack+0x197/0x210
[ 1417.549967]  dump_header+0x15e/0xa55
[ 1417.553693]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1417.558810]  ? ___ratelimit+0x60/0x595
[ 1417.562728]  ? do_raw_spin_unlock+0x181/0x270
[ 1417.567244]  oom_kill_process.cold+0x10/0x6ef
[ 1417.571757]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1417.577326]  ? task_will_free_mem+0x139/0x6e0
[ 1417.581829]  ? find_held_lock+0x35/0x130
[ 1417.585908]  out_of_memory+0x362/0x1330
[ 1417.589894]  ? lock_downgrade+0x880/0x880
[ 1417.594050]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1417.599164]  ? oom_killer_disable+0x280/0x280
[ 1417.603667]  ? find_held_lock+0x35/0x130
[ 1417.607868]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1417.612737]  ? memcg_event_wake+0x230/0x230
[ 1417.617085]  ? do_raw_spin_unlock+0x181/0x270
[ 1417.621605]  ? _raw_spin_unlock+0x2d/0x50
[ 1417.625772]  try_charge+0xec5/0x1490
[ 1417.629504]  ? lock_downgrade+0x880/0x880
[ 1417.633672]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1417.638537]  ? rcu_read_unlock+0x33/0x60
[ 1417.642614]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1417.647485]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1417.653558]  ? mark_held_locks+0x100/0x100
[ 1417.657823]  mem_cgroup_try_charge+0x259/0x6b0
[ 1417.662430]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1417.667379]  __handle_mm_fault+0x1e50/0x3f80
[ 1417.671815]  ? copy_page_range+0x2030/0x2030
[ 1417.676364]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1417.681058]  handle_mm_fault+0x1b5/0x690
[ 1417.685154]  __get_user_pages+0x609/0x1860
[ 1417.689432]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1417.693956]  ? lock_acquire+0x16f/0x3f0
[ 1417.697948]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1417.703505]  populate_vma_page_range+0x20d/0x2a0
[ 1417.708291]  __mm_populate+0x204/0x380
[ 1417.712198]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1417.717154]  __x64_sys_mlockall+0x35c/0x520
[ 1417.721493]  do_syscall_64+0xfd/0x620
[ 1417.725319]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1417.730519] RIP: 0033:0x45af49
[ 1417.733726] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1417.752638] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1417.760365] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1417.767647] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1417.774927] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1417.782209] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1417.789489] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1417.797465] Task in /syz1 killed as a result of limit of /syz1
[ 1417.803488] memory: usage 307200kB, limit 307200kB, failcnt 25941
[ 1417.809776] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1417.816598] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1417.822749] Memory cgroup stats for /syz1: cache:96KB rss:297300KB rss_huge:243712KB shmem:0KB mapped_file:0KB dirty:132KB writeback:132KB swap:0KB inactive_anon:119820KB active_anon:12996KB inactive_file:4KB active_file:0KB unevictable:164444KB
[ 1417.844761] Memory cgroup out of memory: Kill process 1607 (syz-executor.1) score 1163 or sacrifice child
[ 1417.854581] Killed process 1607 (syz-executor.1) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1417.958133] oom_reaper: reaped process 1607 (syz-executor.1), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
03:01:53 executing program 3:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1418.740922] syz-executor.3 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1418.752405] syz-executor.3 cpuset=syz3 mems_allowed=0-1
[ 1418.758100] CPU: 0 PID: 1646 Comm: syz-executor.3 Not tainted 4.19.95-syzkaller #0
[ 1418.765818] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1418.775266] Call Trace:
[ 1418.777881]  dump_stack+0x197/0x210
[ 1418.781527]  dump_header+0x15e/0xa55
[ 1418.785255]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1418.790373]  ? ___ratelimit+0x60/0x595
[ 1418.794289]  ? do_raw_spin_unlock+0x181/0x270
[ 1418.798792]  oom_kill_process.cold+0x10/0x6ef
[ 1418.803309]  out_of_memory+0x362/0x1330
[ 1418.807304]  ? lock_downgrade+0x880/0x880
[ 1418.811462]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1418.816569]  ? oom_killer_disable+0x280/0x280
[ 1418.821066]  ? find_held_lock+0x35/0x130
[ 1418.825143]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1418.829992]  ? memcg_event_wake+0x230/0x230
[ 1418.834323]  ? do_raw_spin_unlock+0x181/0x270
[ 1418.838822]  ? _raw_spin_unlock+0x2d/0x50
[ 1418.842986]  try_charge+0xec5/0x1490
[ 1418.846705]  ? lock_downgrade+0x880/0x880
[ 1418.850864]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1418.855713]  ? rcu_read_unlock+0x33/0x60
[ 1418.859778]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1418.864630]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1418.870717]  mem_cgroup_try_charge+0x259/0x6b0
[ 1418.875314]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1418.880265]  wp_page_copy+0x430/0x16a0
[ 1418.884176]  ? follow_pfn+0x2a0/0x2a0
[ 1418.887997]  ? unlock_page+0x59/0x290
[ 1418.891933]  ? do_raw_spin_unlock+0x181/0x270
[ 1418.896447]  do_wp_page+0x57d/0x10b0
[ 1418.900178]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1418.904861]  ? kasan_check_write+0x14/0x20
[ 1418.909124]  ? do_raw_spin_lock+0xd7/0x250
[ 1418.913375]  __handle_mm_fault+0x2305/0x3f80
[ 1418.917795]  ? copy_page_range+0x2030/0x2030
[ 1418.922231]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1418.926909]  handle_mm_fault+0x1b5/0x690
[ 1418.930999]  __get_user_pages+0x609/0x1860
[ 1418.935256]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1418.939757]  ? retint_kernel+0x2d/0x2d
[ 1418.943672]  populate_vma_page_range+0x20d/0x2a0
[ 1418.948446]  __mm_populate+0x204/0x380
[ 1418.952347]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1418.957312]  __x64_sys_mlockall+0x35c/0x520
[ 1418.961643]  do_syscall_64+0xfd/0x620
[ 1418.965470]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1418.970775] RIP: 0033:0x45af49
[ 1418.973992] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1418.992918] RSP: 002b:00007f12b257ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1419.000651] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1419.007932] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1419.015207] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1419.022479] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f12b257f6d4
[ 1419.029749] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1419.037936] Task in /syz3 killed as a result of limit of /syz3
[ 1419.044152] memory: usage 307200kB, limit 307200kB, failcnt 489
[ 1419.050337] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1419.057320] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1419.063575] Memory cgroup stats for /syz3: cache:76KB rss:297556KB rss_huge:159744KB shmem:0KB mapped_file:132KB dirty:132KB writeback:0KB swap:0KB inactive_anon:129696KB active_anon:2244KB inactive_file:8KB active_file:12KB unevictable:165660KB
[ 1419.087238] Memory cgroup out of memory: Kill process 1645 (syz-executor.3) score 1223 or sacrifice child
[ 1419.097746] Killed process 1647 (syz-executor.3) total-vm:72588kB, anon-rss:18204kB, file-rss:34816kB, shmem-rss:0kB
[ 1419.112501] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1419.124406] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1419.129920] CPU: 1 PID: 1636 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1419.137642] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1419.147011] Call Trace:
[ 1419.149615]  dump_stack+0x197/0x210
[ 1419.153257]  dump_header+0x15e/0xa55
[ 1419.156982]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1419.162091]  ? ___ratelimit+0x60/0x595
[ 1419.166053]  oom_kill_process.cold+0x10/0x6ef
[ 1419.170585]  out_of_memory+0x362/0x1330
[ 1419.174747]  ? lock_downgrade+0x880/0x880
[ 1419.178903]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1419.184026]  ? oom_killer_disable+0x280/0x280
[ 1419.188660]  ? find_held_lock+0x35/0x130
[ 1419.192761]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1419.197628]  ? memcg_event_wake+0x230/0x230
[ 1419.201987]  ? do_raw_spin_unlock+0x181/0x270
[ 1419.206504]  ? _raw_spin_unlock+0x2d/0x50
[ 1419.210672]  try_charge+0xec5/0x1490
[ 1419.214406]  ? lock_downgrade+0x880/0x880
[ 1419.218552]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1419.223406]  ? rcu_read_unlock+0x33/0x60
[ 1419.227459]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1419.232297]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1419.238355]  mem_cgroup_try_charge+0x259/0x6b0
[ 1419.242932]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1419.247853]  wp_page_copy+0x430/0x16a0
[ 1419.251766]  ? follow_pfn+0x2a0/0x2a0
[ 1419.255569]  ? do_raw_spin_unlock+0x181/0x270
[ 1419.264340]  do_wp_page+0x57d/0x10b0
[ 1419.268058]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1419.272726]  ? kasan_check_write+0x14/0x20
[ 1419.276957]  ? do_raw_spin_lock+0xd7/0x250
[ 1419.281192]  __handle_mm_fault+0x2305/0x3f80
[ 1419.285595]  ? copy_page_range+0x2030/0x2030
[ 1419.290008]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1419.294671]  handle_mm_fault+0x1b5/0x690
[ 1419.298732]  __get_user_pages+0x609/0x1860
[ 1419.302969]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1419.307460]  ? retint_kernel+0x2d/0x2d
[ 1419.311356]  ? populate_vma_page_range+0x91/0x2a0
[ 1419.316208]  populate_vma_page_range+0x20d/0x2a0
[ 1419.320961]  __mm_populate+0x204/0x380
[ 1419.324845]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1419.329771]  __x64_sys_mlockall+0x35c/0x520
[ 1419.334097]  do_syscall_64+0xfd/0x620
[ 1419.337893]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1419.343070] RIP: 0033:0x45af49
[ 1419.346255] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1419.365163] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1419.372879] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1419.380157] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1419.387542] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1419.394818] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1419.402104] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1419.410143] Task in /syz1 killed as a result of limit of /syz1
[ 1419.416571] memory: usage 307200kB, limit 307200kB, failcnt 26024
[ 1419.422934] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1419.430113] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1419.436701] Memory cgroup stats for /syz1: cache:96KB rss:297012KB rss_huge:247808KB shmem:0KB mapped_file:0KB dirty:132KB writeback:132KB swap:0KB inactive_anon:104048KB active_anon:12980KB inactive_file:0KB active_file:0KB unevictable:180128KB
[ 1419.459435] Memory cgroup out of memory: Kill process 1635 (syz-executor.1) score 1226 or sacrifice child
[ 1419.469544] Killed process 1642 (syz-executor.1) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1419.483207] syz-executor.3 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1419.494560] syz-executor.3 cpuset=syz3 mems_allowed=0-1
[ 1419.500398] CPU: 0 PID: 1646 Comm: syz-executor.3 Not tainted 4.19.95-syzkaller #0
[ 1419.508124] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1419.517492] Call Trace:
[ 1419.520098]  dump_stack+0x197/0x210
[ 1419.523743]  dump_header+0x15e/0xa55
[ 1419.527462]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1419.532569]  ? ___ratelimit+0x60/0x595
[ 1419.536459]  ? do_raw_spin_unlock+0x181/0x270
[ 1419.540960]  oom_kill_process.cold+0x10/0x6ef
[ 1419.545466]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1419.551031]  ? task_will_free_mem+0x139/0x6e0
[ 1419.555539]  out_of_memory+0x362/0x1330
[ 1419.559523]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1419.564632]  ? oom_killer_disable+0x280/0x280
[ 1419.569130]  ? find_held_lock+0x35/0x130
[ 1419.573209]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1419.578059]  ? memcg_event_wake+0x230/0x230
[ 1419.582388]  ? do_raw_spin_unlock+0x181/0x270
[ 1419.586896]  ? _raw_spin_unlock+0x2d/0x50
[ 1419.591051]  try_charge+0xec5/0x1490
[ 1419.594770]  ? lock_downgrade+0x880/0x880
[ 1419.598943]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1419.603792]  ? rcu_read_unlock+0x33/0x60
[ 1419.607856]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1419.612717]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1419.618788]  mem_cgroup_try_charge+0x259/0x6b0
[ 1419.623381]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1419.628316]  wp_page_copy+0x430/0x16a0
[ 1419.632219]  ? follow_pfn+0x2a0/0x2a0
[ 1419.636021]  ? unlock_page+0x59/0x290
[ 1419.639832]  ? do_raw_spin_unlock+0x181/0x270
[ 1419.644334]  do_wp_page+0x57d/0x10b0
[ 1419.648057]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1419.652733]  ? kasan_check_write+0x14/0x20
[ 1419.656969]  ? do_raw_spin_lock+0xd7/0x250
[ 1419.661215]  __handle_mm_fault+0x2305/0x3f80
[ 1419.666086]  ? copy_page_range+0x2030/0x2030
[ 1419.670538]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1419.675229]  handle_mm_fault+0x1b5/0x690
[ 1419.679325]  __get_user_pages+0x609/0x1860
[ 1419.683584]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1419.688085]  ? retint_kernel+0x2d/0x2d
[ 1419.691997]  populate_vma_page_range+0x20d/0x2a0
[ 1419.696769]  __mm_populate+0x204/0x380
[ 1419.700670]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1419.705618]  __x64_sys_mlockall+0x35c/0x520
[ 1419.709947]  do_syscall_64+0xfd/0x620
[ 1419.713760]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1419.718950] RIP: 0033:0x45af49
[ 1419.722150] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1419.741085] RSP: 002b:00007f12b257ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1419.748795] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1419.756065] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1419.763346] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1419.770628] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f12b257f6d4
[ 1419.778420] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1419.787772] Task in /syz3 killed as a result of limit of /syz3
[ 1419.793956] memory: usage 303876kB, limit 307200kB, failcnt 495
[ 1419.800129] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1419.807174] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1419.813510] Memory cgroup stats for /syz3: cache:76KB rss:294524KB rss_huge:159744KB shmem:0KB mapped_file:132KB dirty:132KB writeback:0KB swap:0KB inactive_anon:126556KB active_anon:2244KB inactive_file:20KB active_file:0KB unevictable:165660KB
[ 1419.838922] Memory cgroup out of memory: Kill process 1645 (syz-executor.3) score 1223 or sacrifice child
[ 1419.849383] Killed process 1645 (syz-executor.3) total-vm:72588kB, anon-rss:18156kB, file-rss:53404kB, shmem-rss:0kB
[ 1419.865081] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1419.870988] oom_reaper: reaped process 1642 (syz-executor.1), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[ 1419.876622] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1419.892550] CPU: 1 PID: 1636 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1419.900277] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1419.909640] Call Trace:
[ 1419.912250]  dump_stack+0x197/0x210
[ 1419.915899]  dump_header+0x15e/0xa55
[ 1419.919634]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1419.924755]  ? ___ratelimit+0x60/0x595
[ 1419.928657]  ? do_raw_spin_unlock+0x181/0x270
[ 1419.933174]  oom_kill_process.cold+0x10/0x6ef
[ 1419.937702]  out_of_memory+0x362/0x1330
[ 1419.941696]  ? retint_kernel+0x2d/0x2d
[ 1419.945604]  ? oom_killer_disable+0x280/0x280
[ 1419.950129]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1419.954990]  ? memcg_event_wake+0x230/0x230
[ 1419.959346]  ? do_raw_spin_unlock+0x181/0x270
[ 1419.963858]  ? _raw_spin_unlock+0x2d/0x50
[ 1419.968030]  try_charge+0xec5/0x1490
[ 1419.971772]  ? lock_downgrade+0x880/0x880
[ 1419.975955]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1419.980821]  ? rcu_read_unlock+0x33/0x60
[ 1419.984905]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1419.989777]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1419.995872]  mem_cgroup_try_charge+0x259/0x6b0
[ 1420.000483]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1420.005430]  wp_page_copy+0x430/0x16a0
[ 1420.009332]  ? follow_pfn+0x2a0/0x2a0
[ 1420.013131]  ? do_raw_spin_unlock+0x181/0x270
[ 1420.017624]  do_wp_page+0x57d/0x10b0
[ 1420.021333]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1420.026006]  ? kasan_check_write+0x14/0x20
[ 1420.030239]  ? do_raw_spin_lock+0xd7/0x250
[ 1420.034573]  __handle_mm_fault+0x2305/0x3f80
[ 1420.038976]  ? copy_page_range+0x2030/0x2030
[ 1420.043582]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1420.048275]  handle_mm_fault+0x1b5/0x690
[ 1420.052344]  __get_user_pages+0x609/0x1860
[ 1420.056598]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1420.061094]  ? retint_kernel+0x2d/0x2d
[ 1420.064989]  ? populate_vma_page_range+0x91/0x2a0
[ 1420.069834]  populate_vma_page_range+0x20d/0x2a0
[ 1420.074598]  __mm_populate+0x204/0x380
[ 1420.078494]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1420.092400]  __x64_sys_mlockall+0x35c/0x520
[ 1420.097050]  do_syscall_64+0xfd/0x620
[ 1420.100850]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1420.106289] RIP: 0033:0x45af49
[ 1420.109479] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1420.128379] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1420.136078] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1420.143339] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1420.150596] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1420.157945] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1420.165214] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1420.173319] Task in /syz1 killed as a result of limit of /syz1
[ 1420.179445] memory: usage 296416kB, limit 307200kB, failcnt 26051
[ 1420.186163] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1420.192953] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1420.199191] Memory cgroup stats for /syz1: cache:96KB rss:286284KB rss_huge:239616KB shmem:0KB mapped_file:0KB dirty:132KB writeback:132KB swap:0KB inactive_anon:101484KB active_anon:12980KB inactive_file:0KB active_file:0KB unevictable:171936KB
[ 1420.221846] Memory cgroup out of memory: Kill process 1635 (syz-executor.1) score 1226 or sacrifice child
[ 1420.232256] Killed process 1635 (syz-executor.1) total-vm:72720kB, anon-rss:18272kB, file-rss:54368kB, shmem-rss:0kB
[ 1420.245028] oom_reaper: reaped process 1635 (syz-executor.1), now anon-rss:18272kB, file-rss:54360kB, shmem-rss:0kB
03:01:56 executing program 3:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:01:56 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:01:56 executing program 1:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:01:56 executing program 0:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

03:01:56 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)

[ 1421.139447] syz-executor.3 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1421.151583] syz-executor.3 cpuset=syz3 mems_allowed=0-1
[ 1421.157203] CPU: 1 PID: 1653 Comm: syz-executor.3 Not tainted 4.19.95-syzkaller #0
[ 1421.164928] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1421.174296] Call Trace:
[ 1421.176910]  dump_stack+0x197/0x210
[ 1421.180568]  dump_header+0x15e/0xa55
[ 1421.184314]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1421.189446]  ? ___ratelimit+0x60/0x595
[ 1421.193360]  ? do_raw_spin_unlock+0x181/0x270
[ 1421.197889]  oom_kill_process.cold+0x10/0x6ef
[ 1421.202439]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1421.208121]  ? task_will_free_mem+0x139/0x6e0
[ 1421.212663]  out_of_memory+0x362/0x1330
[ 1421.216682]  ? oom_killer_disable+0x280/0x280
[ 1421.221206]  ? mem_cgroup_out_of_memory+0xab/0x240
[ 1421.226205]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1421.231080]  ? memcg_event_wake+0x230/0x230
[ 1421.235433]  ? do_raw_spin_unlock+0x181/0x270
[ 1421.239971]  ? _raw_spin_unlock+0x2d/0x50
[ 1421.244171]  try_charge+0xec5/0x1490
[ 1421.247914]  ? lock_downgrade+0x880/0x880
[ 1421.252094]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1421.256957]  ? rcu_read_unlock+0x33/0x60
[ 1421.261054]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1421.265926]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1421.272045]  mem_cgroup_try_charge+0x259/0x6b0
[ 1421.276658]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1421.281620]  wp_page_copy+0x430/0x16a0
[ 1421.285541]  ? follow_pfn+0x2a0/0x2a0
[ 1421.289393]  ? do_raw_spin_unlock+0x181/0x270
[ 1421.293915]  do_wp_page+0x57d/0x10b0
[ 1421.297654]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1421.302349]  ? kasan_check_write+0x14/0x20
[ 1421.306598]  ? do_raw_spin_lock+0xd7/0x250
[ 1421.310853]  __handle_mm_fault+0x2305/0x3f80
[ 1421.315278]  ? copy_page_range+0x2030/0x2030
[ 1421.319699]  ? retint_kernel+0x2d/0x2d
[ 1421.323616]  ? sync_mm_rss+0xa4/0x1c0
[ 1421.327430]  handle_mm_fault+0x1b5/0x690
[ 1421.331510]  __get_user_pages+0x609/0x1860
[ 1421.335767]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1421.340272]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1421.345043]  ? retint_kernel+0x2d/0x2d
[ 1421.348950]  populate_vma_page_range+0x20d/0x2a0
[ 1421.353723]  __mm_populate+0x204/0x380
[ 1421.357648]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1421.362607]  __x64_sys_mlockall+0x35c/0x520
[ 1421.366965]  do_syscall_64+0xfd/0x620
[ 1421.370782]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1421.375991] RIP: 0033:0x45af49
[ 1421.379193] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1421.398108] RSP: 002b:00007f12b257ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1421.405962] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1421.413243] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1421.420519] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1421.427804] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f12b257f6d4
[ 1421.435088] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1421.443785] Task in /syz3 killed as a result of limit of /syz3
[ 1421.450086] memory: usage 307200kB, limit 307200kB, failcnt 536
[ 1421.456414] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1421.463269] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1421.469622] Memory cgroup stats for /syz3: cache:76KB rss:297348KB rss_huge:159744KB shmem:0KB mapped_file:132KB dirty:132KB writeback:0KB swap:0KB inactive_anon:129452KB active_anon:2244KB inactive_file:0KB active_file:16KB unevictable:165792KB
[ 1421.491906] Memory cgroup out of memory: Kill process 1652 (syz-executor.3) score 1226 or sacrifice child
[ 1421.502450] Killed process 1657 (syz-executor.3) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1422.457445] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1422.468961] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1422.474541] CPU: 0 PID: 1665 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1422.482252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1422.492299] Call Trace:
[ 1422.494899]  dump_stack+0x197/0x210
[ 1422.498555]  dump_header+0x15e/0xa55
[ 1422.502297]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1422.508016]  ? ___ratelimit+0x60/0x595
[ 1422.511913]  oom_kill_process.cold+0x10/0x6ef
[ 1422.516418]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1422.521971]  ? task_will_free_mem+0x139/0x6e0
[ 1422.526476]  ? find_held_lock+0x35/0x130
[ 1422.530550]  out_of_memory+0x362/0x1330
[ 1422.534548]  ? lock_downgrade+0x880/0x880
[ 1422.538699]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1422.543806]  ? oom_killer_disable+0x280/0x280
[ 1422.548303]  ? find_held_lock+0x35/0x130
[ 1422.552381]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1422.557230]  ? memcg_event_wake+0x230/0x230
[ 1422.561570]  ? do_raw_spin_unlock+0x181/0x270
[ 1422.566068]  ? _raw_spin_unlock+0x2d/0x50
[ 1422.570234]  try_charge+0xec5/0x1490
[ 1422.573961]  ? lock_downgrade+0x880/0x880
[ 1422.578484]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1422.583337]  ? rcu_read_unlock+0x33/0x60
[ 1422.587406]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1422.592255]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1422.598344]  mem_cgroup_try_charge+0x259/0x6b0
[ 1422.602951]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1422.607902]  wp_page_copy+0x430/0x16a0
[ 1422.611802]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1422.616571]  ? follow_pfn+0x2a0/0x2a0
[ 1422.620382]  ? do_raw_spin_unlock+0x181/0x270
[ 1422.624886]  do_wp_page+0x57d/0x10b0
[ 1422.628622]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1422.633301]  ? __handle_mm_fault+0x22f9/0x3f80
[ 1422.637899]  __handle_mm_fault+0x2305/0x3f80
[ 1422.642320]  ? copy_page_range+0x2030/0x2030
[ 1422.647008]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1422.651785]  ? handle_mm_fault+0x10e/0x690
[ 1422.656034]  handle_mm_fault+0x1b5/0x690
[ 1422.660107]  __get_user_pages+0x609/0x1860
[ 1422.664361]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1422.668873]  ? retint_kernel+0x2d/0x2d
[ 1422.672778]  populate_vma_page_range+0x20d/0x2a0
[ 1422.677544]  __mm_populate+0x204/0x380
[ 1422.681442]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1422.686388]  __x64_sys_mlockall+0x35c/0x520
[ 1422.690722]  do_syscall_64+0xfd/0x620
[ 1422.694529]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1422.699724] RIP: 0033:0x45af49
[ 1422.702922] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1422.721836] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1422.729650] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1422.736923] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1422.744194] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1422.751480] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1422.758760] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1422.768069] Task in /syz1 killed as a result of limit of /syz1
[ 1422.774450] memory: usage 307200kB, limit 307200kB, failcnt 26061
[ 1422.780779] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1422.787695] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1422.794349] Memory cgroup stats for /syz1: cache:96KB rss:296972KB rss_huge:241664KB shmem:0KB mapped_file:0KB dirty:132KB writeback:132KB swap:0KB inactive_anon:106168KB active_anon:12980KB inactive_file:0KB active_file:0KB unevictable:177948KB
[ 1422.816681] Memory cgroup out of memory: Kill process 1663 (syz-executor.1) score 1223 or sacrifice child
[ 1422.827557] Killed process 1667 (syz-executor.1) total-vm:72588kB, anon-rss:18204kB, file-rss:34816kB, shmem-rss:0kB
03:01:59 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, 0x0, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:01:59 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:02:00 executing program 3:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:02:00 executing program 0:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

03:02:00 executing program 1:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1425.164059] syz-executor.3 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1425.176262] syz-executor.3 cpuset=syz3 mems_allowed=0-1
[ 1425.181979] CPU: 1 PID: 1679 Comm: syz-executor.3 Not tainted 4.19.95-syzkaller #0
[ 1425.189719] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1425.199171] Call Trace:
[ 1425.201796]  dump_stack+0x197/0x210
[ 1425.205451]  dump_header+0x15e/0xa55
[ 1425.209214]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1425.214340]  ? ___ratelimit+0x60/0x595
[ 1425.218250]  ? do_raw_spin_unlock+0x181/0x270
[ 1425.222767]  oom_kill_process.cold+0x10/0x6ef
[ 1425.227302]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1425.232853]  ? task_will_free_mem+0x139/0x6e0
[ 1425.237361]  ? find_held_lock+0x35/0x130
[ 1425.241437]  out_of_memory+0x362/0x1330
[ 1425.245424]  ? lock_downgrade+0x880/0x880
[ 1425.249581]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1425.254718]  ? oom_killer_disable+0x280/0x280
[ 1425.259227]  ? find_held_lock+0x35/0x130
[ 1425.263313]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1425.268172]  ? memcg_event_wake+0x230/0x230
[ 1425.272514]  ? do_raw_spin_unlock+0x181/0x270
[ 1425.277020]  ? _raw_spin_unlock+0x2d/0x50
[ 1425.281198]  try_charge+0xec5/0x1490
[ 1425.284926]  ? lock_downgrade+0x880/0x880
[ 1425.289094]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1425.293944]  ? rcu_read_unlock+0x33/0x60
[ 1425.298015]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1425.302874]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1425.308969]  mem_cgroup_try_charge+0x259/0x6b0
[ 1425.313570]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1425.318512]  wp_page_copy+0x430/0x16a0
[ 1425.323371]  ? follow_pfn+0x2a0/0x2a0
[ 1425.327190]  ? do_raw_spin_unlock+0x181/0x270
[ 1425.331969]  do_wp_page+0x57d/0x10b0
[ 1425.335710]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1425.340409]  ? __handle_mm_fault+0x1890/0x3f80
[ 1425.345017]  __handle_mm_fault+0x2305/0x3f80
[ 1425.349451]  ? copy_page_range+0x2030/0x2030
[ 1425.353895]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1425.358581]  handle_mm_fault+0x1b5/0x690
[ 1425.362691]  __get_user_pages+0x609/0x1860
[ 1425.366958]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1425.371464]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1425.377027]  ? lock_acquire+0x16f/0x3f0
[ 1425.381013]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1425.386573]  populate_vma_page_range+0x20d/0x2a0
[ 1425.391352]  __mm_populate+0x204/0x380
[ 1425.395262]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1425.400229]  __x64_sys_mlockall+0x35c/0x520
[ 1425.404563]  do_syscall_64+0xfd/0x620
[ 1425.408383]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1425.413682] RIP: 0033:0x45af49
[ 1425.416891] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1425.436432] RSP: 002b:00007f12b257ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1425.444151] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1425.452226] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1425.459505] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1425.466781] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f12b257f6d4
[ 1425.474057] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1425.482462] Task in /syz3 killed as a result of limit of /syz3
[ 1425.488730] memory: usage 307200kB, limit 307200kB, failcnt 1063
[ 1425.495077] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1425.502385] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1425.508627] Memory cgroup stats for /syz3: cache:76KB rss:297168KB rss_huge:163840KB shmem:0KB mapped_file:132KB dirty:132KB writeback:0KB swap:0KB inactive_anon:129364KB active_anon:2244KB inactive_file:8KB active_file:8KB unevictable:165792KB
[ 1425.531560] Memory cgroup out of memory: Kill process 1677 (syz-executor.3) score 1226 or sacrifice child
[ 1425.542502] Killed process 1683 (syz-executor.3) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1425.918982] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1425.930384] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1425.936211] CPU: 0 PID: 1685 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1425.943950] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1425.953313] Call Trace:
[ 1425.955917]  dump_stack+0x197/0x210
[ 1425.959561]  dump_header+0x15e/0xa55
[ 1425.963281]  ? __sanitizer_cov_trace_pc+0x1/0x50
[ 1425.968050]  ? ___ratelimit+0x60/0x595
[ 1425.971940]  ? do_raw_spin_unlock+0x181/0x270
[ 1425.976460]  oom_kill_process.cold+0x10/0x6ef
[ 1425.980979]  ? mem_cgroup_get_max+0xe3/0x240
[ 1425.985401]  out_of_memory+0x362/0x1330
[ 1425.989400]  ? lock_downgrade+0x880/0x880
[ 1425.993556]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1425.998669]  ? oom_killer_disable+0x280/0x280
[ 1426.003166]  ? find_held_lock+0x35/0x130
[ 1426.007250]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1426.012101]  ? memcg_event_wake+0x230/0x230
[ 1426.016433]  ? do_raw_spin_unlock+0x181/0x270
[ 1426.020940]  ? _raw_spin_unlock+0x2d/0x50
[ 1426.025096]  try_charge+0xec5/0x1490
[ 1426.028818]  ? lock_downgrade+0x880/0x880
[ 1426.032982]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1426.037830]  ? rcu_read_unlock+0x33/0x60
[ 1426.041894]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1426.046752]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1426.052823]  mem_cgroup_try_charge+0x259/0x6b0
[ 1426.057419]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1426.062358]  wp_page_copy+0x430/0x16a0
[ 1426.066263]  ? follow_pfn+0x2a0/0x2a0
[ 1426.070074]  ? do_raw_spin_unlock+0x181/0x270
[ 1426.074588]  do_wp_page+0x57d/0x10b0
[ 1426.079528]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1426.084224]  ? kasan_check_write+0x14/0x20
[ 1426.089249]  ? do_raw_spin_lock+0xd7/0x250
[ 1426.093586]  __handle_mm_fault+0x2305/0x3f80
[ 1426.098007]  ? copy_page_range+0x2030/0x2030
[ 1426.102560]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1426.107256]  handle_mm_fault+0x1b5/0x690
[ 1426.111435]  __get_user_pages+0x609/0x1860
[ 1426.115693]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1426.120222]  ? retint_kernel+0x2d/0x2d
[ 1426.124145]  populate_vma_page_range+0x20d/0x2a0
[ 1426.129091]  __mm_populate+0x204/0x380
[ 1426.132998]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1426.138109]  __x64_sys_mlockall+0x35c/0x520
[ 1426.142465]  do_syscall_64+0xfd/0x620
[ 1426.146303]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1426.151506] RIP: 0033:0x45af49
[ 1426.154717] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1426.173624] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1426.181366] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1426.188663] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1426.195940] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1426.203212] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1426.210497] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1426.218674] Task in /syz1 killed as a result of limit of /syz1
[ 1426.225057] memory: usage 307200kB, limit 307200kB, failcnt 26093
[ 1426.231384] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1426.238569] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1426.244884] Memory cgroup stats for /syz1: cache:96KB rss:296984KB rss_huge:235520KB shmem:0KB mapped_file:0KB dirty:132KB writeback:132KB swap:0KB inactive_anon:112260KB active_anon:12980KB inactive_file:0KB active_file:0KB unevictable:171804KB
[ 1426.268266] Memory cgroup out of memory: Kill process 1684 (syz-executor.1) score 1223 or sacrifice child
[ 1426.278707] Killed process 1686 (syz-executor.1) total-vm:72588kB, anon-rss:18204kB, file-rss:34816kB, shmem-rss:0kB
[ 1427.218496] syz-executor.4 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1427.350375] syz-executor.4 cpuset=syz4 mems_allowed=0-1
[ 1427.388225] CPU: 0 PID: 1674 Comm: syz-executor.4 Not tainted 4.19.95-syzkaller #0
[ 1427.396007] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1427.405368] Call Trace:
[ 1427.407971]  dump_stack+0x197/0x210
[ 1427.411617]  dump_header+0x15e/0xa55
[ 1427.415344]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1427.420462]  ? ___ratelimit+0x60/0x595
[ 1427.424354]  ? do_raw_spin_unlock+0x181/0x270
[ 1427.428861]  oom_kill_process.cold+0x10/0x6ef
[ 1427.433371]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1427.439020]  ? task_will_free_mem+0x139/0x6e0
[ 1427.443524]  ? find_held_lock+0x35/0x130
[ 1427.447602]  out_of_memory+0x362/0x1330
[ 1427.451590]  ? lock_downgrade+0x880/0x880
[ 1427.455750]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1427.460859]  ? oom_killer_disable+0x280/0x280
[ 1427.465358]  ? find_held_lock+0x35/0x130
[ 1427.469461]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1427.474336]  ? memcg_event_wake+0x230/0x230
[ 1427.478686]  ? do_raw_spin_unlock+0x181/0x270
[ 1427.483194]  ? _raw_spin_unlock+0x2d/0x50
[ 1427.487358]  try_charge+0xec5/0x1490
[ 1427.491083]  ? lock_downgrade+0x880/0x880
[ 1427.495250]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1427.500115]  ? rcu_read_unlock+0x33/0x60
[ 1427.504185]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1427.509040]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1427.515129]  ? mark_held_locks+0x100/0x100
[ 1427.519380]  mem_cgroup_try_charge+0x259/0x6b0
[ 1427.523977]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1427.528918]  __handle_mm_fault+0x1e50/0x3f80
[ 1427.533339]  ? copy_page_range+0x2030/0x2030
[ 1427.537775]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1427.542469]  handle_mm_fault+0x1b5/0x690
[ 1427.546549]  __get_user_pages+0x609/0x1860
[ 1427.550834]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1427.555355]  ? lock_acquire+0x16f/0x3f0
[ 1427.559369]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1427.564945]  populate_vma_page_range+0x20d/0x2a0
[ 1427.569721]  __mm_populate+0x204/0x380
[ 1427.573625]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1427.578926]  __x64_sys_mlockall+0x35c/0x520
[ 1427.583260]  do_syscall_64+0xfd/0x620
[ 1427.587073]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1427.592266] RIP: 0033:0x45af49
[ 1427.595469] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1427.614375] RSP: 002b:00007f16bfdc4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1427.622091] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1427.629365] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1427.636644] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1427.643918] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f16bfdc56d4
[ 1427.651279] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
03:02:03 executing program 0:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

[ 1427.710747] Task in /syz4 killed as a result of limit of /syz4
[ 1427.717056] memory: usage 307200kB, limit 307200kB, failcnt 72
[ 1427.751282] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1427.771034] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1427.786549] Memory cgroup stats for /syz4: cache:36KB rss:297672KB rss_huge:192512KB shmem:0KB mapped_file:0KB dirty:0KB writeback:0KB swap:0KB inactive_anon:105516KB active_anon:8520KB inactive_file:8KB active_file:4KB unevictable:183884KB
03:02:03 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, 0x0, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1427.876460] Memory cgroup out of memory: Kill process 1582 (syz-executor.4) score 1163 or sacrifice child
[ 1427.895606] Killed process 1582 (syz-executor.4) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
03:02:03 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:02:03 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)

03:02:03 executing program 3:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1428.965958] syz-executor.3 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1428.977440] syz-executor.3 cpuset=syz3 mems_allowed=0-1
[ 1428.982951] CPU: 1 PID: 1702 Comm: syz-executor.3 Not tainted 4.19.95-syzkaller #0
[ 1428.990677] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1429.000047] Call Trace:
[ 1429.002672]  dump_stack+0x197/0x210
[ 1429.006347]  dump_header+0x15e/0xa55
[ 1429.010078]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1429.015194]  ? ___ratelimit+0x60/0x595
[ 1429.019104]  ? do_raw_spin_unlock+0x181/0x270
[ 1429.023630]  oom_kill_process.cold+0x10/0x6ef
[ 1429.028166]  out_of_memory+0x362/0x1330
[ 1429.032167]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1429.037062]  ? oom_killer_disable+0x280/0x280
[ 1429.041582]  ? find_held_lock+0x35/0x130
[ 1429.045675]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1429.050582]  ? memcg_event_wake+0x230/0x230
[ 1429.055054]  try_charge+0xec5/0x1490
[ 1429.059590]  ? lock_downgrade+0x880/0x880
[ 1429.063778]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1429.068678]  ? rcu_read_unlock+0x33/0x60
[ 1429.072767]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1429.077661]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1429.083766]  mem_cgroup_try_charge+0x259/0x6b0
[ 1429.088395]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1429.093358]  wp_page_copy+0x430/0x16a0
[ 1429.097270]  ? follow_pfn+0x2a0/0x2a0
[ 1429.101113]  ? do_raw_spin_unlock+0x181/0x270
[ 1429.105622]  do_wp_page+0x57d/0x10b0
[ 1429.109367]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1429.114057]  ? kasan_check_write+0x14/0x20
[ 1429.118325]  ? do_raw_spin_lock+0xd7/0x250
[ 1429.122601]  __handle_mm_fault+0x2305/0x3f80
[ 1429.127049]  ? copy_page_range+0x2030/0x2030
[ 1429.131499]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1429.136211]  handle_mm_fault+0x1b5/0x690
[ 1429.140385]  __get_user_pages+0x609/0x1860
[ 1429.144670]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1429.149210]  ? populate_vma_page_range+0x116/0x2a0
[ 1429.154192]  ? check_memory_region+0x112/0x190
[ 1429.158809]  populate_vma_page_range+0x20d/0x2a0
[ 1429.163598]  __mm_populate+0x204/0x380
[ 1429.167506]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1429.172458]  __x64_sys_mlockall+0x35c/0x520
[ 1429.176795]  do_syscall_64+0xfd/0x620
[ 1429.180666]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1429.185904] RIP: 0033:0x45af49
[ 1429.189113] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1429.208048] RSP: 002b:00007f12b257ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1429.215786] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1429.223079] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1429.230354] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1429.237751] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f12b257f6d4
[ 1429.245054] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1429.253329] Task in /syz3 killed as a result of limit of /syz3
[ 1429.259805] memory: usage 307200kB, limit 307200kB, failcnt 1392
[ 1429.266459] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1429.273527] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1429.280129] Memory cgroup stats for /syz3: cache:76KB rss:297356KB rss_huge:157696KB shmem:0KB mapped_file:132KB dirty:132KB writeback:0KB swap:0KB inactive_anon:129488KB active_anon:2244KB inactive_file:8KB active_file:12KB unevictable:165660KB
[ 1429.303132] Memory cgroup out of memory: Kill process 1697 (syz-executor.3) score 1223 or sacrifice child
[ 1429.313015] Killed process 1703 (syz-executor.3) total-vm:72588kB, anon-rss:18204kB, file-rss:34816kB, shmem-rss:0kB
[ 1429.327896] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1429.339327] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1429.344814] CPU: 0 PID: 1695 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1429.352545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1429.361923] Call Trace:
[ 1429.364532]  dump_stack+0x197/0x210
[ 1429.368188]  dump_header+0x15e/0xa55
[ 1429.371926]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1429.377050]  ? ___ratelimit+0x60/0x595
[ 1429.380954]  oom_kill_process.cold+0x10/0x6ef
[ 1429.385475]  ? out_of_memory+0x1ae/0x1330
[ 1429.389655]  ? mem_cgroup_get_max+0x2a/0x240
[ 1429.394101]  out_of_memory+0x362/0x1330
[ 1429.398108]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1429.403246]  ? oom_killer_disable+0x280/0x280
[ 1429.407786]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1429.412663]  ? memcg_event_wake+0x230/0x230
[ 1429.417015]  ? do_raw_spin_unlock+0x181/0x270
[ 1429.421535]  ? _raw_spin_unlock+0x2d/0x50
[ 1429.425707]  try_charge+0xec5/0x1490
[ 1429.429464]  ? lock_downgrade+0x880/0x880
[ 1429.433633]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1429.438497]  ? rcu_read_unlock+0x33/0x60
[ 1429.442576]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1429.447441]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1429.453529]  mem_cgroup_try_charge+0x259/0x6b0
[ 1429.458136]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1429.463089]  wp_page_copy+0x430/0x16a0
[ 1429.467026]  ? follow_pfn+0x2a0/0x2a0
[ 1429.470845]  ? do_raw_spin_unlock+0x181/0x270
[ 1429.475348]  do_wp_page+0x57d/0x10b0
[ 1429.479085]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1429.483780]  ? kasan_check_write+0x14/0x20
[ 1429.488073]  ? do_raw_spin_lock+0xd7/0x250
[ 1429.492341]  __handle_mm_fault+0x2305/0x3f80
[ 1429.496886]  ? copy_page_range+0x2030/0x2030
[ 1429.501352]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1429.506056]  handle_mm_fault+0x1b5/0x690
[ 1429.510180]  __get_user_pages+0x609/0x1860
[ 1429.514465]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1429.518989]  ? retint_kernel+0x2d/0x2d
[ 1429.522921]  populate_vma_page_range+0x20d/0x2a0
[ 1429.527705]  __mm_populate+0x204/0x380
[ 1429.531624]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1429.536585]  __x64_sys_mlockall+0x35c/0x520
[ 1429.540951]  do_syscall_64+0xfd/0x620
[ 1429.544774]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1429.549975] RIP: 0033:0x45af49
[ 1429.553179] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1429.572091] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1429.579820] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1429.587102] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1429.594388] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1429.601674] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1429.608984] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
03:02:05 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, 0x0, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1429.618427] Task in /syz1 killed as a result of limit of /syz1
[ 1429.625443] memory: usage 307200kB, limit 307200kB, failcnt 26137
[ 1429.632169] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1429.639158] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1429.645437] Memory cgroup stats for /syz1: cache:96KB rss:296828KB rss_huge:241664KB shmem:0KB mapped_file:0KB dirty:132KB writeback:132KB swap:0KB inactive_anon:106020KB active_anon:12980KB inactive_file:0KB active_file:0KB unevictable:177948KB
[ 1429.668912] Memory cgroup out of memory: Kill process 1693 (syz-executor.1) score 1223 or sacrifice child
[ 1429.678821] Killed process 1698 (syz-executor.1) total-vm:72588kB, anon-rss:18204kB, file-rss:34816kB, shmem-rss:0kB
[ 1429.712231] syz-executor.3 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1429.723694] syz-executor.3 cpuset=syz3 mems_allowed=0-1
[ 1429.729436] CPU: 1 PID: 1702 Comm: syz-executor.3 Not tainted 4.19.95-syzkaller #0
[ 1429.737148] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1429.746526] Call Trace:
[ 1429.749129]  dump_stack+0x197/0x210
[ 1429.752772]  dump_header+0x15e/0xa55
[ 1429.756509]  oom_kill_process.cold+0x10/0x6ef
[ 1429.761020]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1429.766565]  ? task_will_free_mem+0x139/0x6e0
[ 1429.771078]  out_of_memory+0x362/0x1330
[ 1429.775062]  ? retint_kernel+0x2d/0x2d
[ 1429.778968]  ? oom_killer_disable+0x280/0x280
[ 1429.783575]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1429.788427]  ? memcg_event_wake+0x230/0x230
[ 1429.792762]  ? do_raw_spin_unlock+0x181/0x270
[ 1429.797282]  ? _raw_spin_unlock+0x2d/0x50
[ 1429.801447]  try_charge+0xec5/0x1490
[ 1429.805172]  ? lock_downgrade+0x880/0x880
[ 1429.809337]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1429.814188]  ? rcu_read_unlock+0x33/0x60
[ 1429.818254]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1429.823105]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1429.829184]  mem_cgroup_try_charge+0x259/0x6b0
[ 1429.833802]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1429.838743]  wp_page_copy+0x430/0x16a0
[ 1429.842757]  ? follow_pfn+0x2a0/0x2a0
[ 1429.846571]  ? do_raw_spin_unlock+0x181/0x270
[ 1429.851074]  do_wp_page+0x57d/0x10b0
[ 1429.854798]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1429.859478]  ? kasan_check_write+0x14/0x20
[ 1429.863742]  ? do_raw_spin_lock+0xd7/0x250
[ 1429.868004]  __handle_mm_fault+0x2305/0x3f80
[ 1429.872427]  ? copy_page_range+0x2030/0x2030
[ 1429.876879]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1429.881560]  handle_mm_fault+0x1b5/0x690
[ 1429.885637]  __get_user_pages+0x609/0x1860
[ 1429.889893]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1429.894414]  ? populate_vma_page_range+0x116/0x2a0
[ 1429.899357]  ? check_memory_region+0x112/0x190
[ 1429.903959]  populate_vma_page_range+0x20d/0x2a0
[ 1429.908751]  __mm_populate+0x204/0x380
[ 1429.912661]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1429.917610]  __x64_sys_mlockall+0x35c/0x520
[ 1429.921945]  do_syscall_64+0xfd/0x620
[ 1429.925758]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1429.930949] RIP: 0033:0x45af49
[ 1429.934149] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1429.953143] RSP: 002b:00007f12b257ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1429.960875] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1429.968322] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1429.976137] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1429.983825] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f12b257f6d4
[ 1429.991319] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1430.001294] Task in /syz3 killed as a result of limit of /syz3
[ 1430.008081] memory: usage 304076kB, limit 307200kB, failcnt 1398
[ 1430.014580] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1430.021535] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1430.028194] Memory cgroup stats for /syz3: cache:76KB rss:294452KB rss_huge:157696KB shmem:0KB mapped_file:132KB dirty:132KB writeback:0KB swap:0KB inactive_anon:126556KB active_anon:2244KB inactive_file:12KB active_file:8KB unevictable:165660KB
[ 1430.050807] Memory cgroup out of memory: Kill process 1697 (syz-executor.3) score 1223 or sacrifice child
[ 1430.061105] Killed process 1697 (syz-executor.3) total-vm:72588kB, anon-rss:18156kB, file-rss:53404kB, shmem-rss:0kB
[ 1430.076621] oom_reaper: reaped process 1697 (syz-executor.3), now anon-rss:18156kB, file-rss:53396kB, shmem-rss:0kB
03:02:06 executing program 3:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:02:06 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1430.977003] syz-executor.3 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1430.988487] syz-executor.3 cpuset=syz3 mems_allowed=0-1
[ 1430.994190] CPU: 0 PID: 1712 Comm: syz-executor.3 Not tainted 4.19.95-syzkaller #0
[ 1431.001908] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1431.011272] Call Trace:
[ 1431.013862]  dump_stack+0x197/0x210
[ 1431.017487]  dump_header+0x15e/0xa55
[ 1431.021204]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1431.026302]  ? ___ratelimit+0x60/0x595
[ 1431.030187]  oom_kill_process.cold+0x10/0x6ef
[ 1431.034686]  out_of_memory+0x362/0x1330
[ 1431.038656]  ? lock_downgrade+0x880/0x880
[ 1431.042806]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1431.047900]  ? oom_killer_disable+0x280/0x280
[ 1431.052384]  ? find_held_lock+0x35/0x130
[ 1431.056503]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1431.061363]  ? memcg_event_wake+0x230/0x230
[ 1431.065702]  ? do_raw_spin_unlock+0x181/0x270
[ 1431.070336]  ? _raw_spin_unlock+0x2d/0x50
[ 1431.074489]  try_charge+0xec5/0x1490
[ 1431.078312]  ? lock_downgrade+0x880/0x880
[ 1431.083522]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1431.088990]  ? rcu_read_unlock+0x33/0x60
[ 1431.093069]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1431.098099]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1431.104247]  mem_cgroup_try_charge+0x259/0x6b0
[ 1431.108854]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1431.113778]  wp_page_copy+0x430/0x16a0
[ 1431.117701]  ? follow_pfn+0x2a0/0x2a0
[ 1431.121498]  ? do_raw_spin_unlock+0x181/0x270
[ 1431.129807]  do_wp_page+0x57d/0x10b0
[ 1431.133664]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1431.138363]  ? kasan_check_write+0x14/0x20
[ 1431.142617]  ? do_raw_spin_lock+0xd7/0x250
[ 1431.146861]  __handle_mm_fault+0x2305/0x3f80
[ 1431.151268]  ? copy_page_range+0x2030/0x2030
[ 1431.155708]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1431.160382]  handle_mm_fault+0x1b5/0x690
[ 1431.164451]  __get_user_pages+0x609/0x1860
[ 1431.168686]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1431.173274]  ? retint_kernel+0x2d/0x2d
[ 1431.177192]  populate_vma_page_range+0x20d/0x2a0
[ 1431.181951]  __mm_populate+0x204/0x380
[ 1431.185837]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1431.190764]  __x64_sys_mlockall+0x35c/0x520
[ 1431.195082]  do_syscall_64+0xfd/0x620
[ 1431.198884]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1431.204064] RIP: 0033:0x45af49
[ 1431.207249] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1431.226182] RSP: 002b:00007f12b257ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1431.233891] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1431.241153] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1431.248734] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1431.256010] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f12b257f6d4
[ 1431.263284] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1431.272471] Task in /syz3 killed as a result of limit of /syz3
[ 1431.278939] memory: usage 307200kB, limit 307200kB, failcnt 1433
[ 1431.285332] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1431.292514] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1431.299943] Memory cgroup stats for /syz3: cache:76KB rss:297140KB rss_huge:163840KB shmem:0KB mapped_file:132KB dirty:132KB writeback:0KB swap:0KB inactive_anon:129276KB active_anon:2244KB inactive_file:12KB active_file:8KB unevictable:165792KB
[ 1431.322272] Memory cgroup out of memory: Kill process 1711 (syz-executor.3) score 1226 or sacrifice child
[ 1431.332194] Killed process 1714 (syz-executor.3) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1432.387709] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1432.399263] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1432.404772] CPU: 1 PID: 1720 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1432.412483] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1432.421839] Call Trace:
[ 1432.424458]  dump_stack+0x197/0x210
[ 1432.428114]  dump_header+0x15e/0xa55
[ 1432.431848]  ? oom_kill_process+0x136/0x150
[ 1432.436207]  oom_kill_process.cold+0x10/0x6ef
[ 1432.440733]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1432.446290]  ? task_will_free_mem+0x139/0x6e0
[ 1432.450806]  out_of_memory+0x362/0x1330
[ 1432.454796]  ? retint_kernel+0x2d/0x2d
[ 1432.458699]  ? oom_killer_disable+0x280/0x280
[ 1432.463216]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1432.468083]  ? memcg_event_wake+0x230/0x230
[ 1432.472417]  ? do_raw_spin_unlock+0x181/0x270
[ 1432.476926]  ? _raw_spin_unlock+0x2d/0x50
[ 1432.481103]  try_charge+0xec5/0x1490
[ 1432.484835]  ? lock_downgrade+0x880/0x880
[ 1432.489015]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1432.493865]  ? rcu_read_unlock+0x33/0x60
[ 1432.497935]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1432.502790]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1432.508866]  mem_cgroup_try_charge+0x259/0x6b0
[ 1432.513471]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1432.518414]  wp_page_copy+0x430/0x16a0
[ 1432.522334]  ? follow_pfn+0x2a0/0x2a0
[ 1432.526149]  ? do_raw_spin_unlock+0x181/0x270
[ 1432.530659]  do_wp_page+0x57d/0x10b0
[ 1432.534383]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1432.539058]  ? kasan_check_write+0x14/0x20
[ 1432.543297]  ? do_raw_spin_lock+0xd7/0x250
[ 1432.547562]  __handle_mm_fault+0x2305/0x3f80
[ 1432.551983]  ? copy_page_range+0x2030/0x2030
[ 1432.556416]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1432.561093]  handle_mm_fault+0x1b5/0x690
[ 1432.565165]  __get_user_pages+0x609/0x1860
[ 1432.569438]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1432.573973]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1432.578753]  ? retint_kernel+0x2d/0x2d
[ 1432.582666]  populate_vma_page_range+0x20d/0x2a0
[ 1432.587467]  __mm_populate+0x204/0x380
[ 1432.591370]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1432.596328]  __x64_sys_mlockall+0x35c/0x520
[ 1432.600663]  do_syscall_64+0xfd/0x620
[ 1432.604561]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1432.609757] RIP: 0033:0x45af49
[ 1432.612974] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1432.631885] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1432.639601] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1432.646881] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1432.654170] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1432.661445] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1432.668719] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1432.677950] Task in /syz1 killed as a result of limit of /syz1
[ 1432.684466] memory: usage 307200kB, limit 307200kB, failcnt 26154
[ 1432.691157] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1432.698069] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1432.704259] Memory cgroup stats for /syz1: cache:96KB rss:296840KB rss_huge:235520KB shmem:0KB mapped_file:0KB dirty:132KB writeback:132KB swap:0KB inactive_anon:112072KB active_anon:12980KB inactive_file:0KB active_file:0KB unevictable:171804KB
[ 1432.727532] Memory cgroup out of memory: Kill process 1718 (syz-executor.1) score 1226 or sacrifice child
[ 1432.737463] Killed process 1722 (syz-executor.1) total-vm:72588kB, anon-rss:18204kB, file-rss:34816kB, shmem-rss:0kB
[ 1433.714418] oom_reaper: reaped process 1714 (syz-executor.3), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
03:02:09 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, 0x0, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:02:09 executing program 0:
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

03:02:10 executing program 3:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:02:10 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)

03:02:10 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1436.165188] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1436.177228] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1436.182685] CPU: 0 PID: 1737 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1436.190414] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1436.199791] Call Trace:
[ 1436.202410]  dump_stack+0x197/0x210
[ 1436.206063]  dump_header+0x15e/0xa55
[ 1436.209796]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1436.214920]  ? ___ratelimit+0x60/0x595
[ 1436.218829]  ? do_raw_spin_unlock+0x181/0x270
[ 1436.223437]  oom_kill_process.cold+0x10/0x6ef
[ 1436.227962]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1436.233516]  ? task_will_free_mem+0x139/0x6e0
[ 1436.238065]  ? find_held_lock+0x35/0x130
[ 1436.242152]  out_of_memory+0x362/0x1330
[ 1436.246147]  ? lock_downgrade+0x880/0x880
[ 1436.250313]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1436.255428]  ? oom_killer_disable+0x280/0x280
[ 1436.259933]  ? find_held_lock+0x35/0x130
[ 1436.264042]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1436.268904]  ? memcg_event_wake+0x230/0x230
[ 1436.273249]  ? do_raw_spin_unlock+0x181/0x270
[ 1436.277755]  ? _raw_spin_unlock+0x2d/0x50
[ 1436.281918]  try_charge+0xec5/0x1490
[ 1436.285649]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1436.290509]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1436.295368]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1436.301456]  mem_cgroup_try_charge+0x259/0x6b0
[ 1436.306059]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1436.311004]  wp_page_copy+0x430/0x16a0
[ 1436.314907]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1436.319677]  ? follow_pfn+0x2a0/0x2a0
[ 1436.323496]  ? do_raw_spin_unlock+0x181/0x270
[ 1436.328006]  do_wp_page+0x57d/0x10b0
[ 1436.331842]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1436.336523]  ? __handle_mm_fault+0x186e/0x3f80
[ 1436.341120]  __handle_mm_fault+0x2305/0x3f80
[ 1436.345545]  ? copy_page_range+0x2030/0x2030
[ 1436.349987]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1436.354670]  handle_mm_fault+0x1b5/0x690
[ 1436.358751]  __get_user_pages+0x609/0x1860
[ 1436.363197]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1436.367731]  ? retint_kernel+0x2d/0x2d
[ 1436.371672]  ? populate_vma_page_range+0xcf/0x2a0
[ 1436.376534]  populate_vma_page_range+0x20d/0x2a0
[ 1436.381318]  __mm_populate+0x204/0x380
[ 1436.385228]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1436.390189]  __x64_sys_mlockall+0x35c/0x520
[ 1436.394531]  do_syscall_64+0xfd/0x620
[ 1436.398349]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1436.403552] RIP: 0033:0x45af49
[ 1436.406758] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1436.425682] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1436.434471] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1436.441844] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1436.449130] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1436.456418] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
03:02:12 executing program 3:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1436.463708] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1436.471202] Task in /syz1 killed as a result of limit of /syz1
[ 1436.477339] memory: usage 307200kB, limit 307200kB, failcnt 26210
[ 1436.483687] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1436.490704] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1436.497030] Memory cgroup stats for /syz1: cache:96KB rss:296836KB rss_huge:235520KB shmem:0KB mapped_file:0KB dirty:132KB writeback:132KB swap:0KB inactive_anon:112016KB active_anon:12980KB inactive_file:0KB active_file:0KB unevictable:171804KB
[ 1436.519255] Memory cgroup out of memory: Kill process 1735 (syz-executor.1) score 1223 or sacrifice child
[ 1436.529518] Killed process 1738 (syz-executor.1) total-vm:72588kB, anon-rss:18204kB, file-rss:34944kB, shmem-rss:0kB
03:02:13 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, 0x0, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:02:13 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:02:13 executing program 0:
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

[ 1437.688321] syz-executor.2 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
03:02:13 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1437.733451] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[ 1437.755805] CPU: 0 PID: 1756 Comm: syz-executor.2 Not tainted 4.19.95-syzkaller #0
[ 1437.763561] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1437.773018] Call Trace:
[ 1437.775630]  dump_stack+0x197/0x210
[ 1437.779316]  dump_header+0x15e/0xa55
[ 1437.783181]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1437.788312]  ? ___ratelimit+0x60/0x595
[ 1437.792225]  ? do_raw_spin_unlock+0x181/0x270
[ 1437.796748]  oom_kill_process.cold+0x10/0x6ef
[ 1437.801270]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1437.806827]  ? task_will_free_mem+0x139/0x6e0
[ 1437.811339]  ? find_held_lock+0x35/0x130
[ 1437.815608]  out_of_memory+0x362/0x1330
[ 1437.819603]  ? lock_downgrade+0x880/0x880
[ 1437.823765]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1437.828883]  ? oom_killer_disable+0x280/0x280
[ 1437.833390]  ? find_held_lock+0x35/0x130
[ 1437.837479]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1437.842340]  ? memcg_event_wake+0x230/0x230
[ 1437.847141]  ? do_raw_spin_unlock+0x181/0x270
[ 1437.851650]  ? _raw_spin_unlock+0x2d/0x50
[ 1437.855817]  try_charge+0xec5/0x1490
[ 1437.859725]  ? lock_downgrade+0x880/0x880
[ 1437.863890]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1437.868747]  ? rcu_read_unlock+0x33/0x60
[ 1437.872817]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1437.877672]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1437.883739]  ? mark_held_locks+0x100/0x100
[ 1437.887992]  mem_cgroup_try_charge+0x259/0x6b0
[ 1437.892591]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1437.897530]  __handle_mm_fault+0x1e50/0x3f80
[ 1437.901952]  ? copy_page_range+0x2030/0x2030
[ 1437.906389]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1437.911065]  handle_mm_fault+0x1b5/0x690
[ 1437.915145]  __get_user_pages+0x609/0x1860
[ 1437.919402]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1437.923916]  ? lock_acquire+0x16f/0x3f0
[ 1437.927896]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1437.933447]  populate_vma_page_range+0x20d/0x2a0
[ 1437.938233]  __mm_populate+0x204/0x380
[ 1437.942134]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1437.947087]  __x64_sys_mlockall+0x35c/0x520
[ 1437.951424]  do_syscall_64+0xfd/0x620
[ 1437.955253]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1437.960456] RIP: 0033:0x45af49
[ 1437.963680] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1437.982750] RSP: 002b:00007f66bf404c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1437.990472] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1437.997749] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1438.005024] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1438.012321] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f66bf4056d4
[ 1438.019603] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
03:02:13 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)

[ 1438.280532] Task in /syz2 killed as a result of limit of /syz2
[ 1438.286632] memory: usage 307200kB, limit 307200kB, failcnt 749
03:02:14 executing program 3:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1438.422315] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1438.429309] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1438.435649] Memory cgroup stats for /syz2: cache:124KB rss:297156KB rss_huge:210944KB shmem:0KB mapped_file:0KB dirty:0KB writeback:0KB swap:0KB inactive_anon:93248KB active_anon:2264KB inactive_file:0KB active_file:4KB unevictable:201716KB
[ 1438.457335] Memory cgroup out of memory: Kill process 1399 (syz-executor.2) score 1163 or sacrifice child
[ 1438.467419] Killed process 1399 (syz-executor.2) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1438.496501] oom_reaper: reaped process 1399 (syz-executor.2), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[ 1438.555968] syz-executor.0 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=1000
[ 1438.630976] syz-executor.0 cpuset=syz0 mems_allowed=0-1
[ 1438.636645] CPU: 0 PID: 1759 Comm: syz-executor.0 Not tainted 4.19.95-syzkaller #0
[ 1438.644370] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1438.653736] Call Trace:
[ 1438.656351]  dump_stack+0x197/0x210
[ 1438.660006]  dump_header+0x15e/0xa55
[ 1438.663737]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1438.668859]  ? ___ratelimit+0x60/0x595
[ 1438.672769]  ? do_raw_spin_unlock+0x181/0x270
[ 1438.677288]  oom_kill_process.cold+0x10/0x6ef
[ 1438.681806]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1438.687366]  ? task_will_free_mem+0x139/0x6e0
[ 1438.691887]  out_of_memory+0x362/0x1330
[ 1438.695884]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1438.701015]  ? oom_killer_disable+0x280/0x280
[ 1438.705535]  ? find_held_lock+0x35/0x130
[ 1438.709639]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1438.714527]  ? memcg_event_wake+0x230/0x230
[ 1438.718888]  ? do_raw_spin_unlock+0x181/0x270
[ 1438.724555]  ? _raw_spin_unlock+0x2d/0x50
[ 1438.728724]  try_charge+0xec5/0x1490
[ 1438.732464]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1438.737329]  ? lock_downgrade+0x880/0x880
[ 1438.741493]  ? kasan_check_read+0x11/0x20
[ 1438.745677]  memcg_kmem_charge_memcg+0x83/0x170
[ 1438.751329]  ? memcg_kmem_put_cache+0xb0/0xb0
[ 1438.755861]  ? __isolate_free_page+0x4c0/0x4c0
[ 1438.760458]  memcg_kmem_charge+0x13b/0x370
[ 1438.764722]  __alloc_pages_nodemask+0x3c3/0x750
[ 1438.769416]  ? __alloc_pages_slowpath+0x2870/0x2870
[ 1438.774458]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[ 1438.780015]  alloc_pages_current+0x107/0x210
[ 1438.784442]  pte_alloc_one+0x1b/0x1a0
[ 1438.788256]  __pte_alloc+0x2a/0x360
[ 1438.791896]  __handle_mm_fault+0x340b/0x3f80
[ 1438.796328]  ? copy_page_range+0x2030/0x2030
[ 1438.800771]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1438.805452]  handle_mm_fault+0x1b5/0x690
[ 1438.809532]  __get_user_pages+0x609/0x1860
[ 1438.813792]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1438.818311]  ? lock_acquire+0x16f/0x3f0
[ 1438.822298]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1438.827859]  populate_vma_page_range+0x20d/0x2a0
[ 1438.832639]  __mm_populate+0x204/0x380
[ 1438.836556]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1438.842750]  __x64_sys_mlockall+0x35c/0x520
[ 1438.847091]  do_syscall_64+0xfd/0x620
[ 1438.850911]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1438.856136] RIP: 0033:0x45af49
[ 1438.859357] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1438.878277] RSP: 002b:00007faf37e78c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1438.886003] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1438.893288] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1438.900919] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1438.908206] R10: 0000000000000000 R11: 0000000000000246 R12: 00007faf37e796d4
[ 1438.915491] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1438.941096] Task in /syz0 killed as a result of limit of /syz0
[ 1438.962265] memory: usage 307200kB, limit 307200kB, failcnt 111
[ 1438.998674] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1439.012634] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1439.041748] Memory cgroup stats for /syz0: cache:80KB rss:297892KB rss_huge:92160KB shmem:0KB mapped_file:132KB dirty:132KB writeback:0KB swap:0KB inactive_anon:201940KB active_anon:2352KB inactive_file:4KB active_file:8KB unevictable:93720KB
03:02:14 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, 0x0, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1439.124412] Memory cgroup out of memory: Kill process 1188 (syz-executor.0) score 1163 or sacrifice child
[ 1439.169969] Killed process 1188 (syz-executor.0) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1439.261370] oom_reaper: reaped process 1188 (syz-executor.0), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
03:02:15 executing program 3:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1439.795030] syz-executor.4 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1439.922747] syz-executor.4 cpuset=syz4 mems_allowed=0-1
[ 1439.966085] CPU: 1 PID: 1778 Comm: syz-executor.4 Not tainted 4.19.95-syzkaller #0
[ 1439.973844] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1439.983346] Call Trace:
[ 1439.985969]  dump_stack+0x197/0x210
[ 1439.989617]  dump_header+0x15e/0xa55
[ 1439.993342]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1439.998460]  ? ___ratelimit+0x60/0x595
[ 1440.002360]  ? do_raw_spin_unlock+0x181/0x270
[ 1440.006878]  oom_kill_process.cold+0x10/0x6ef
[ 1440.011385]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1440.016929]  ? task_will_free_mem+0x139/0x6e0
[ 1440.021434]  ? find_held_lock+0x35/0x130
[ 1440.025514]  out_of_memory+0x362/0x1330
[ 1440.029500]  ? lock_downgrade+0x880/0x880
[ 1440.033656]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1440.038788]  ? oom_killer_disable+0x280/0x280
[ 1440.043292]  ? find_held_lock+0x35/0x130
[ 1440.047387]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1440.052245]  ? memcg_event_wake+0x230/0x230
[ 1440.056580]  ? do_raw_spin_unlock+0x181/0x270
[ 1440.061083]  ? _raw_spin_unlock+0x2d/0x50
[ 1440.065244]  try_charge+0xec5/0x1490
[ 1440.068968]  ? lock_downgrade+0x880/0x880
[ 1440.073134]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1440.077985]  ? rcu_read_unlock+0x33/0x60
[ 1440.082065]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1440.086921]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1440.092991]  ? mark_held_locks+0x100/0x100
[ 1440.102014]  mem_cgroup_try_charge+0x259/0x6b0
[ 1440.106909]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1440.112591]  __handle_mm_fault+0x1e50/0x3f80
[ 1440.117317]  ? copy_page_range+0x2030/0x2030
[ 1440.122524]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1440.131607]  handle_mm_fault+0x1b5/0x690
[ 1440.135712]  __get_user_pages+0x609/0x1860
[ 1440.140002]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1440.144796]  ? lock_acquire+0x16f/0x3f0
[ 1440.149828]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1440.155471]  populate_vma_page_range+0x20d/0x2a0
[ 1440.160435]  __mm_populate+0x204/0x380
[ 1440.164343]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1440.169308]  __x64_sys_mlockall+0x35c/0x520
[ 1440.173753]  do_syscall_64+0xfd/0x620
[ 1440.177605]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1440.182830] RIP: 0033:0x45af49
[ 1440.186040] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1440.204957] RSP: 002b:00007f16bfdc4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1440.212680] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1440.220042] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1440.227327] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1440.234602] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f16bfdc56d4
[ 1440.241901] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
03:02:16 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:02:16 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:02:16 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)

03:02:17 executing program 0:
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

[ 1441.308735] Task in /syz4 killed as a result of limit of /syz4
[ 1441.314798] memory: usage 307200kB, limit 307200kB, failcnt 101
03:02:17 executing program 3:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1441.418072] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1441.424873] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1441.431547] Memory cgroup stats for /syz4: cache:36KB rss:297728KB rss_huge:192512KB shmem:0KB mapped_file:0KB dirty:0KB writeback:0KB swap:0KB inactive_anon:105516KB active_anon:8520KB inactive_file:0KB active_file:8KB unevictable:183800KB
[ 1441.480424] Memory cgroup out of memory: Kill process 1648 (syz-executor.4) score 1163 or sacrifice child
[ 1441.491501] Killed process 1648 (syz-executor.4) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1441.530000] oom_reaper: reaped process 1648 (syz-executor.4), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[ 1441.540941] syz-executor.2 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1441.572388] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[ 1441.609334] CPU: 0 PID: 1793 Comm: syz-executor.2 Not tainted 4.19.95-syzkaller #0
[ 1441.617079] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1441.626441] Call Trace:
[ 1441.629055]  dump_stack+0x197/0x210
[ 1441.632726]  dump_header+0x15e/0xa55
[ 1441.636834]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1441.641956]  ? ___ratelimit+0x60/0x595
[ 1441.645862]  ? do_raw_spin_unlock+0x181/0x270
[ 1441.650374]  oom_kill_process.cold+0x10/0x6ef
[ 1441.654883]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1441.660431]  ? task_will_free_mem+0x139/0x6e0
[ 1441.664950]  out_of_memory+0x362/0x1330
[ 1441.669997]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1441.675113]  ? oom_killer_disable+0x280/0x280
[ 1441.679634]  ? find_held_lock+0x35/0x130
[ 1441.683730]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1441.688583]  ? memcg_event_wake+0x230/0x230
[ 1441.692935]  ? do_raw_spin_unlock+0x181/0x270
[ 1441.697455]  ? _raw_spin_unlock+0x2d/0x50
[ 1441.701617]  try_charge+0xec5/0x1490
[ 1441.705354]  ? lock_downgrade+0x880/0x880
[ 1441.709519]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1441.714374]  ? rcu_read_unlock+0x33/0x60
[ 1441.718449]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1441.723318]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1441.729392]  ? mark_held_locks+0x100/0x100
[ 1441.733656]  mem_cgroup_try_charge+0x259/0x6b0
[ 1441.738253]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1441.743196]  __handle_mm_fault+0x1e50/0x3f80
[ 1441.747623]  ? copy_page_range+0x2030/0x2030
[ 1441.752105]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1441.756900]  handle_mm_fault+0x1b5/0x690
[ 1441.760985]  __get_user_pages+0x609/0x1860
[ 1441.765245]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1441.769760]  ? lock_acquire+0x16f/0x3f0
[ 1441.773740]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1441.779298]  populate_vma_page_range+0x20d/0x2a0
[ 1441.784078]  __mm_populate+0x204/0x380
[ 1441.787988]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1441.792954]  __x64_sys_mlockall+0x35c/0x520
[ 1441.797317]  do_syscall_64+0xfd/0x620
[ 1441.801143]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1441.806359] RIP: 0033:0x45af49
[ 1441.809567] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1441.828491] RSP: 002b:00007f66bf404c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1441.836229] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1441.843842] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1441.851327] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1441.858834] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f66bf4056d4
[ 1441.866345] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
03:02:18 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)

03:02:18 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)

03:02:18 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)

03:02:18 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1442.825205] Task in /syz2 killed as a result of limit of /syz2
[ 1442.831688] memory: usage 307200kB, limit 307200kB, failcnt 775
[ 1442.839028] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1442.845939] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1442.852198] Memory cgroup stats for /syz2: cache:124KB rss:297164KB rss_huge:210944KB shmem:0KB mapped_file:0KB dirty:0KB writeback:0KB swap:0KB inactive_anon:93248KB active_anon:2264KB inactive_file:4KB active_file:4KB unevictable:201692KB
[ 1442.874269] Memory cgroup out of memory: Kill process 1454 (syz-executor.2) score 1163 or sacrifice child
[ 1442.887038] Killed process 1454 (syz-executor.2) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1442.898757] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
03:02:18 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)

[ 1442.921337] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1442.929063] oom_reaper: reaped process 1454 (syz-executor.2), now anon-rss:0kB, file-rss:34688kB, shmem-rss:0kB
[ 1442.934812] CPU: 1 PID: 1794 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1442.947476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1442.956857] Call Trace:
[ 1442.959484]  dump_stack+0x197/0x210
[ 1442.963164]  dump_header+0x15e/0xa55
[ 1442.966909]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1442.972118]  ? ___ratelimit+0x60/0x595
[ 1442.976020]  ? do_raw_spin_unlock+0x181/0x270
[ 1442.980548]  oom_kill_process.cold+0x10/0x6ef
[ 1442.985074]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1442.990660]  ? task_will_free_mem+0x139/0x6e0
[ 1442.995197]  out_of_memory+0x362/0x1330
[ 1442.999213]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1443.004344]  ? oom_killer_disable+0x280/0x280
[ 1443.008893]  ? find_held_lock+0x35/0x130
[ 1443.013086]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1443.017958]  ? memcg_event_wake+0x230/0x230
[ 1443.022316]  ? do_raw_spin_unlock+0x181/0x270
[ 1443.026837]  ? _raw_spin_unlock+0x2d/0x50
[ 1443.031026]  try_charge+0xec5/0x1490
[ 1443.034858]  ? lock_downgrade+0x880/0x880
[ 1443.039047]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1443.043920]  ? rcu_read_unlock+0x33/0x60
[ 1443.048012]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1443.052890]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1443.058987]  ? mark_held_locks+0x100/0x100
[ 1443.063269]  mem_cgroup_try_charge+0x259/0x6b0
[ 1443.067893]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1443.072861]  __handle_mm_fault+0x1e50/0x3f80
[ 1443.077307]  ? copy_page_range+0x2030/0x2030
[ 1443.081773]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1443.086476]  handle_mm_fault+0x1b5/0x690
[ 1443.090577]  __get_user_pages+0x609/0x1860
[ 1443.094853]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1443.099415]  ? lock_acquire+0x16f/0x3f0
[ 1443.103419]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1443.108997]  populate_vma_page_range+0x20d/0x2a0
[ 1443.113792]  __mm_populate+0x204/0x380
[ 1443.117726]  ? populate_vma_page_range+0x2a0/0x2a0
03:02:18 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)

[ 1443.122698]  __x64_sys_mlockall+0x35c/0x520
[ 1443.127053]  do_syscall_64+0xfd/0x620
[ 1443.130975]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1443.136194] RIP: 0033:0x45af49
[ 1443.139411] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1443.158332] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1443.166076] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1443.173395] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1443.180712] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1443.188176] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1443.195460] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
03:02:19 executing program 3:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1443.248283] Task in /syz1 killed as a result of limit of /syz1
[ 1443.259932] memory: usage 307200kB, limit 307200kB, failcnt 26243
[ 1443.285593] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1443.292581] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1443.350378] Memory cgroup stats for /syz1: cache:96KB rss:296656KB rss_huge:235520KB shmem:0KB mapped_file:0KB dirty:132KB writeback:132KB swap:0KB inactive_anon:119948KB active_anon:12996KB inactive_file:4KB active_file:0KB unevictable:163796KB
[ 1443.417139] Memory cgroup out of memory: Kill process 1779 (syz-executor.1) score 1163 or sacrifice child
[ 1443.451994] Killed process 1779 (syz-executor.1) total-vm:72852kB, anon-rss:18464kB, file-rss:34816kB, shmem-rss:0kB
[ 1443.483747] syz-executor.0 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1443.515774] syz-executor.0 cpuset=syz0 mems_allowed=0-1
[ 1443.541834] CPU: 1 PID: 1802 Comm: syz-executor.0 Not tainted 4.19.95-syzkaller #0
[ 1443.549589] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1443.558952] Call Trace:
[ 1443.561573]  dump_stack+0x197/0x210
[ 1443.565405]  dump_header+0x15e/0xa55
[ 1443.569142]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1443.574265]  ? ___ratelimit+0x60/0x595
[ 1443.578164]  ? do_raw_spin_unlock+0x181/0x270
[ 1443.582681]  oom_kill_process.cold+0x10/0x6ef
[ 1443.587716]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1443.593271]  ? task_will_free_mem+0x139/0x6e0
[ 1443.597788]  out_of_memory+0x362/0x1330
[ 1443.601783]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1443.606900]  ? oom_killer_disable+0x280/0x280
[ 1443.611403]  ? find_held_lock+0x35/0x130
[ 1443.615489]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1443.620347]  ? memcg_event_wake+0x230/0x230
[ 1443.624684]  ? do_raw_spin_unlock+0x181/0x270
[ 1443.629192]  ? _raw_spin_unlock+0x2d/0x50
[ 1443.633359]  try_charge+0xec5/0x1490
[ 1443.637088]  ? lock_downgrade+0x880/0x880
[ 1443.641251]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1443.646133]  ? rcu_read_unlock+0x33/0x60
[ 1443.650237]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1443.655099]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1443.661199]  ? mark_held_locks+0x100/0x100
[ 1443.665468]  mem_cgroup_try_charge+0x259/0x6b0
[ 1443.670077]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1443.675025]  __handle_mm_fault+0x1e50/0x3f80
[ 1443.679452]  ? copy_page_range+0x2030/0x2030
[ 1443.683894]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1443.688576]  handle_mm_fault+0x1b5/0x690
[ 1443.692662]  __get_user_pages+0x609/0x1860
[ 1443.696922]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1443.701439]  ? lock_acquire+0x16f/0x3f0
[ 1443.705437]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1443.711010]  populate_vma_page_range+0x20d/0x2a0
[ 1443.715792]  __mm_populate+0x204/0x380
[ 1443.719715]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1443.724676]  __x64_sys_mlockall+0x35c/0x520
[ 1443.729018]  do_syscall_64+0xfd/0x620
[ 1443.732846]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1443.738043] RIP: 0033:0x45af49
[ 1443.741244] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1443.760152] RSP: 002b:00007faf37e78c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1443.767876] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1443.775154] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1443.782443] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1443.789722] R10: 0000000000000000 R11: 0000000000000246 R12: 00007faf37e796d4
[ 1443.797015] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1443.885240] oom_reaper: reaped process 1779 (syz-executor.1), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[ 1444.108040] Task in /syz0 killed as a result of limit of /syz0
[ 1444.114307] memory: usage 307200kB, limit 307200kB, failcnt 146
[ 1444.127985] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1444.135292] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
03:02:19 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:02:19 executing program 5:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)

03:02:19 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1444.149163] Memory cgroup stats for /syz0: cache:80KB rss:297800KB rss_huge:88064KB shmem:0KB mapped_file:132KB dirty:132KB writeback:0KB swap:0KB inactive_anon:208084KB active_anon:2352KB inactive_file:4KB active_file:0KB unevictable:87508KB
[ 1444.178707] Memory cgroup out of memory: Kill process 1401 (syz-executor.0) score 1163 or sacrifice child
[ 1444.192483] Killed process 1401 (syz-executor.0) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1444.359352] oom_reaper: reaped process 1401 (syz-executor.0), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[ 1444.376369] syz-executor.4 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1444.423083] syz-executor.4 cpuset=syz4 mems_allowed=0-1
[ 1444.481532] CPU: 1 PID: 1824 Comm: syz-executor.4 Not tainted 4.19.95-syzkaller #0
[ 1444.489293] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1444.498654] Call Trace:
[ 1444.501255]  dump_stack+0x197/0x210
[ 1444.504897]  dump_header+0x15e/0xa55
[ 1444.508631]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1444.513741]  ? ___ratelimit+0x60/0x595
[ 1444.517642]  ? do_raw_spin_unlock+0x181/0x270
[ 1444.522243]  oom_kill_process.cold+0x10/0x6ef
[ 1444.526754]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1444.532321]  ? task_will_free_mem+0x139/0x6e0
[ 1444.536855]  out_of_memory+0x362/0x1330
[ 1444.540857]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1444.545976]  ? oom_killer_disable+0x280/0x280
[ 1444.550480]  ? find_held_lock+0x35/0x130
[ 1444.554572]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1444.559428]  ? memcg_event_wake+0x230/0x230
[ 1444.563762]  ? do_raw_spin_unlock+0x181/0x270
[ 1444.568268]  ? _raw_spin_unlock+0x2d/0x50
[ 1444.572427]  try_charge+0xec5/0x1490
[ 1444.576163]  ? lock_downgrade+0x880/0x880
[ 1444.580348]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1444.585200]  ? rcu_read_unlock+0x33/0x60
[ 1444.589357]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1444.594232]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1444.600308]  ? mark_held_locks+0x100/0x100
[ 1444.604586]  mem_cgroup_try_charge+0x259/0x6b0
[ 1444.609211]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1444.614172]  __handle_mm_fault+0x1e50/0x3f80
[ 1444.618619]  ? copy_page_range+0x2030/0x2030
[ 1444.623059]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1444.627746]  handle_mm_fault+0x1b5/0x690
[ 1444.631824]  __get_user_pages+0x609/0x1860
[ 1444.636082]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1444.640599]  ? lock_acquire+0x16f/0x3f0
[ 1444.644585]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1444.650256]  populate_vma_page_range+0x20d/0x2a0
[ 1444.655038]  __mm_populate+0x204/0x380
[ 1444.658950]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1444.663911]  __x64_sys_mlockall+0x35c/0x520
[ 1444.668266]  do_syscall_64+0xfd/0x620
[ 1444.672089]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1444.677287] RIP: 0033:0x45af49
[ 1444.680489] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1444.699397] RSP: 002b:00007f16bfdc4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1444.707114] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1444.714388] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1444.721665] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1444.728955] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f16bfdc56d4
[ 1444.736375] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1444.795555] Task in /syz4 killed as a result of limit of /syz4
[ 1444.801629] memory: usage 307172kB, limit 307200kB, failcnt 114
[ 1444.825546] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1444.832344] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
03:02:20 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

03:02:20 executing program 5:
prlimit64(0x0, 0x0, 0x0, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)

[ 1444.846479] Memory cgroup stats for /syz4: cache:36KB rss:297664KB rss_huge:194560KB shmem:0KB mapped_file:0KB dirty:0KB writeback:0KB swap:0KB inactive_anon:107564KB active_anon:8520KB inactive_file:4KB active_file:4KB unevictable:181676KB
[ 1444.938196] Memory cgroup out of memory: Kill process 1772 (syz-executor.4) score 1163 or sacrifice child
[ 1444.974075] Killed process 1772 (syz-executor.4) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
03:02:20 executing program 5:
prlimit64(0x0, 0x0, 0x0, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)

03:02:20 executing program 3:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1445.114860] oom_reaper: reaped process 1772 (syz-executor.4), now anon-rss:0kB, file-rss:34688kB, shmem-rss:0kB
03:02:20 executing program 5:
prlimit64(0x0, 0x0, 0x0, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)

03:02:21 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:02:21 executing program 5:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x0, 0x8d}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)

03:02:21 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:02:21 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:02:21 executing program 5:
prlimit64(0x0, 0x0, &(0x7f0000000280), 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)

[ 1446.254069] syz-executor.2 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
03:02:22 executing program 5:
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

[ 1446.333412] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[ 1446.364740] CPU: 1 PID: 1883 Comm: syz-executor.2 Not tainted 4.19.95-syzkaller #0
[ 1446.372590] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1446.381970] Call Trace:
[ 1446.384583]  dump_stack+0x197/0x210
[ 1446.388243]  dump_header+0x15e/0xa55
[ 1446.391984]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1446.397109]  ? ___ratelimit+0x60/0x595
[ 1446.401018]  ? do_raw_spin_unlock+0x181/0x270
[ 1446.405539]  oom_kill_process.cold+0x10/0x6ef
[ 1446.410054]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1446.415614]  ? task_will_free_mem+0x139/0x6e0
[ 1446.420128]  ? find_held_lock+0x35/0x130
[ 1446.424217]  out_of_memory+0x362/0x1330
[ 1446.428238]  ? lock_downgrade+0x880/0x880
[ 1446.432406]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1446.437532]  ? oom_killer_disable+0x280/0x280
[ 1446.442056]  ? find_held_lock+0x35/0x130
[ 1446.446169]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1446.451029]  ? memcg_event_wake+0x230/0x230
[ 1446.455369]  ? do_raw_spin_unlock+0x181/0x270
[ 1446.459882]  ? _raw_spin_unlock+0x2d/0x50
[ 1446.464922]  try_charge+0xec5/0x1490
[ 1446.468666]  ? lock_downgrade+0x880/0x880
[ 1446.472843]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1446.477706]  ? rcu_read_unlock+0x33/0x60
[ 1446.482482]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1446.487357]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1446.493436]  ? mark_held_locks+0x100/0x100
[ 1446.497700]  mem_cgroup_try_charge+0x259/0x6b0
[ 1446.502317]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1446.507278]  __handle_mm_fault+0x1e50/0x3f80
[ 1446.511713]  ? copy_page_range+0x2030/0x2030
[ 1446.516291]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1446.521006]  handle_mm_fault+0x1b5/0x690
[ 1446.525098]  __get_user_pages+0x609/0x1860
[ 1446.529394]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1446.533941]  ? lock_acquire+0x16f/0x3f0
[ 1446.537944]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1446.543521]  populate_vma_page_range+0x20d/0x2a0
[ 1446.548512]  __mm_populate+0x204/0x380
[ 1446.552443]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1446.557412]  __x64_sys_mlockall+0x35c/0x520
[ 1446.561762]  do_syscall_64+0xfd/0x620
[ 1446.565588]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1446.570890] RIP: 0033:0x45af49
[ 1446.574124] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1446.593479] RSP: 002b:00007f66bf404c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1446.601219] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1446.608513] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1446.615799] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1446.623087] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f66bf4056d4
03:02:22 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, 0x0, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

[ 1446.630370] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1446.762229] Task in /syz2 killed as a result of limit of /syz2
[ 1446.768642] memory: usage 307200kB, limit 307200kB, failcnt 814
[ 1446.775024] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1446.782304] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1446.788902] Memory cgroup stats for /syz2: cache:124KB rss:297096KB rss_huge:198656KB shmem:0KB mapped_file:0KB dirty:0KB writeback:0KB swap:0KB inactive_anon:95296KB active_anon:2264KB inactive_file:0KB active_file:8KB unevictable:199600KB
[ 1446.812033] Memory cgroup out of memory: Kill process 1572 (syz-executor.2) score 1163 or sacrifice child
[ 1446.822060] Killed process 1572 (syz-executor.2) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1446.853714] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1446.854106] oom_reaper: reaped process 1572 (syz-executor.2), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[ 1446.871877] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1446.889173] CPU: 0 PID: 1881 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1446.896931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1446.906306] Call Trace:
[ 1446.908933]  dump_stack+0x197/0x210
[ 1446.912626]  dump_header+0x15e/0xa55
[ 1446.916378]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1446.921511]  ? ___ratelimit+0x60/0x595
[ 1446.925422]  ? do_raw_spin_unlock+0x181/0x270
[ 1446.929970]  oom_kill_process.cold+0x10/0x6ef
[ 1446.934962]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1446.940540]  ? task_will_free_mem+0x139/0x6e0
[ 1446.945083]  out_of_memory+0x362/0x1330
[ 1446.949111]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1446.954239]  ? oom_killer_disable+0x280/0x280
[ 1446.958772]  ? find_held_lock+0x35/0x130
[ 1446.962895]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1446.967779]  ? memcg_event_wake+0x230/0x230
[ 1446.972143]  ? do_raw_spin_unlock+0x181/0x270
[ 1446.976672]  ? _raw_spin_unlock+0x2d/0x50
[ 1446.980853]  try_charge+0xec5/0x1490
[ 1446.984852]  ? lock_downgrade+0x880/0x880
[ 1446.989056]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1446.993933]  ? rcu_read_unlock+0x33/0x60
[ 1446.998218]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1447.003095]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1447.009209]  mem_cgroup_try_charge+0x259/0x6b0
[ 1447.013857]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1447.018832]  __handle_mm_fault+0x1e50/0x3f80
[ 1447.023293]  ? copy_page_range+0x2030/0x2030
[ 1447.027807]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1447.032548]  handle_mm_fault+0x1b5/0x690
[ 1447.036692]  __get_user_pages+0x609/0x1860
[ 1447.040992]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1447.045546]  ? lock_acquire+0x16f/0x3f0
[ 1447.049552]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1447.055144]  populate_vma_page_range+0x20d/0x2a0
[ 1447.060127]  __mm_populate+0x204/0x380
[ 1447.064058]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1447.069038]  __x64_sys_mlockall+0x35c/0x520
[ 1447.073397]  do_syscall_64+0xfd/0x620
[ 1447.077249]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1447.082465] RIP: 0033:0x45af49
[ 1447.085682] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1447.120513] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1447.128281] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1447.135586] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1447.142892] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1447.150196] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1447.157494] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1447.369971] Task in /syz1 killed as a result of limit of /syz1
[ 1447.391987] memory: usage 307200kB, limit 307200kB, failcnt 26270
[ 1447.398716] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1447.413142] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1447.463311] Memory cgroup stats for /syz1: cache:96KB rss:296752KB rss_huge:235520KB shmem:0KB mapped_file:0KB dirty:132KB writeback:132KB swap:0KB inactive_anon:119820KB active_anon:12996KB inactive_file:0KB active_file:4KB unevictable:163904KB
[ 1447.555560] Memory cgroup out of memory: Kill process 1623 (syz-executor.1) score 1163 or sacrifice child
[ 1447.580478] Killed process 1623 (syz-executor.1) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
03:02:23 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1447.660315] syz-executor.4 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1447.686402] syz-executor.4 cpuset=syz4 mems_allowed=0-1
[ 1447.696986] CPU: 0 PID: 1886 Comm: syz-executor.4 Not tainted 4.19.95-syzkaller #0
[ 1447.704761] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1447.714130] Call Trace:
[ 1447.716745]  dump_stack+0x197/0x210
[ 1447.720400]  dump_header+0x15e/0xa55
[ 1447.724134]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1447.729256]  ? ___ratelimit+0x60/0x595
[ 1447.733160]  ? do_raw_spin_unlock+0x181/0x270
[ 1447.737676]  oom_kill_process.cold+0x10/0x6ef
[ 1447.742197]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1447.747751]  ? task_will_free_mem+0x139/0x6e0
[ 1447.752279]  out_of_memory+0x362/0x1330
[ 1447.756280]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1447.761404]  ? oom_killer_disable+0x280/0x280
[ 1447.765914]  ? find_held_lock+0x35/0x130
[ 1447.770007]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1447.774864]  ? memcg_event_wake+0x230/0x230
[ 1447.779208]  ? do_raw_spin_unlock+0x181/0x270
[ 1447.783735]  ? _raw_spin_unlock+0x2d/0x50
[ 1447.787902]  try_charge+0xec5/0x1490
[ 1447.791634]  ? lock_downgrade+0x880/0x880
[ 1447.795829]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1447.800684]  ? rcu_read_unlock+0x33/0x60
[ 1447.804757]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1447.809624]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1447.815717]  ? mark_held_locks+0x100/0x100
[ 1447.819981]  mem_cgroup_try_charge+0x259/0x6b0
[ 1447.824589]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1447.829559]  __handle_mm_fault+0x1e50/0x3f80
[ 1447.834000]  ? copy_page_range+0x2030/0x2030
[ 1447.838439]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1447.843265]  handle_mm_fault+0x1b5/0x690
[ 1447.847362]  __get_user_pages+0x609/0x1860
[ 1447.851643]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1447.856184]  ? lock_acquire+0x16f/0x3f0
[ 1447.860280]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1447.865867]  populate_vma_page_range+0x20d/0x2a0
[ 1447.870670]  __mm_populate+0x204/0x380
[ 1447.874599]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1447.879579]  __x64_sys_mlockall+0x35c/0x520
[ 1447.883943]  do_syscall_64+0xfd/0x620
[ 1447.887776]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1447.892987] RIP: 0033:0x45af49
03:02:23 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2}, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1447.896204] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1447.915136] RSP: 002b:00007f16bfdc4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1447.922862] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1447.930155] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1447.937443] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1447.944722] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f16bfdc56d4
[ 1447.952011] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1448.011782] Task in /syz4 killed as a result of limit of /syz4
[ 1448.026465] memory: usage 307200kB, limit 307200kB, failcnt 159
[ 1448.039964] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1448.059109] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1448.083842] Memory cgroup stats for /syz4: cache:36KB rss:297664KB rss_huge:194560KB shmem:0KB mapped_file:0KB dirty:0KB writeback:0KB swap:0KB inactive_anon:107564KB active_anon:8520KB inactive_file:0KB active_file:4KB unevictable:181668KB
[ 1448.262573] Memory cgroup out of memory: Kill process 1810 (syz-executor.4) score 1163 or sacrifice child
[ 1448.335150] Killed process 1810 (syz-executor.4) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1448.546290] oom_reaper: reaped process 1810 (syz-executor.4), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[ 1448.556793] syz-executor.0 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1448.575557] syz-executor.0 cpuset=syz0 mems_allowed=0-1
[ 1448.580994] CPU: 1 PID: 1898 Comm: syz-executor.0 Not tainted 4.19.95-syzkaller #0
[ 1448.588721] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1448.598098] Call Trace:
[ 1448.600751]  dump_stack+0x197/0x210
[ 1448.604413]  dump_header+0x15e/0xa55
[ 1448.608162]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1448.613415]  ? ___ratelimit+0x60/0x595
[ 1448.617330]  ? do_raw_spin_unlock+0x181/0x270
[ 1448.621856]  oom_kill_process.cold+0x10/0x6ef
[ 1448.626381]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1448.631940]  ? task_will_free_mem+0x139/0x6e0
[ 1448.636478]  out_of_memory+0x362/0x1330
[ 1448.640490]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1448.645618]  ? oom_killer_disable+0x280/0x280
[ 1448.650252]  ? find_held_lock+0x35/0x130
[ 1448.654365]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1448.659344]  ? memcg_event_wake+0x230/0x230
[ 1448.663702]  ? do_raw_spin_unlock+0x181/0x270
[ 1448.668204]  ? _raw_spin_unlock+0x2d/0x50
[ 1448.672377]  try_charge+0xec5/0x1490
[ 1448.676097]  ? lock_downgrade+0x880/0x880
[ 1448.680247]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1448.685087]  ? rcu_read_unlock+0x33/0x60
[ 1448.689141]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1448.693989]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1448.700064]  ? mark_held_locks+0x100/0x100
[ 1448.704312]  mem_cgroup_try_charge+0x259/0x6b0
[ 1448.708921]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1448.713858]  __handle_mm_fault+0x1e50/0x3f80
[ 1448.718272]  ? copy_page_range+0x2030/0x2030
[ 1448.722703]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1448.727383]  handle_mm_fault+0x1b5/0x690
[ 1448.731457]  __get_user_pages+0x609/0x1860
[ 1448.735693]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1448.740190]  ? lock_acquire+0x16f/0x3f0
[ 1448.744175]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1448.749739]  populate_vma_page_range+0x20d/0x2a0
[ 1448.754524]  __mm_populate+0x204/0x380
[ 1448.758420]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1448.763377]  __x64_sys_mlockall+0x35c/0x520
[ 1448.767701]  do_syscall_64+0xfd/0x620
[ 1448.771684]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1448.776863] RIP: 0033:0x45af49
[ 1448.780048] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1448.801979] RSP: 002b:00007faf37e78c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1448.809689] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1448.816952] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1448.824386] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1448.831738] R10: 0000000000000000 R11: 0000000000000246 R12: 00007faf37e796d4
[ 1448.838999] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1448.855830] Task in /syz0 killed as a result of limit of /syz0
[ 1448.862101] memory: usage 307200kB, limit 307200kB, failcnt 187
03:02:24 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1448.905904] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1448.945719] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1448.982749] Memory cgroup stats for /syz0: cache:80KB rss:297860KB rss_huge:88064KB shmem:0KB mapped_file:132KB dirty:132KB writeback:0KB swap:0KB inactive_anon:208084KB active_anon:2352KB inactive_file:4KB active_file:4KB unevictable:87528KB
[ 1449.088716] Memory cgroup out of memory: Kill process 1423 (syz-executor.0) score 1163 or sacrifice child
[ 1449.138995] Killed process 1423 (syz-executor.0) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1449.164823] oom_reaper: reaped process 1423 (syz-executor.0), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[ 1449.165698] syz-executor.2 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
03:02:24 executing program 3:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1449.225716] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[ 1449.232892] CPU: 1 PID: 1910 Comm: syz-executor.2 Not tainted 4.19.95-syzkaller #0
[ 1449.240639] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1449.250013] Call Trace:
[ 1449.252631]  dump_stack+0x197/0x210
[ 1449.256301]  dump_header+0x15e/0xa55
[ 1449.260047]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1449.265177]  ? ___ratelimit+0x60/0x595
[ 1449.269092]  ? do_raw_spin_unlock+0x181/0x270
[ 1449.276225]  oom_kill_process.cold+0x10/0x6ef
[ 1449.280757]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1449.286320]  ? task_will_free_mem+0x139/0x6e0
[ 1449.290844]  out_of_memory+0x362/0x1330
[ 1449.294843]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1449.299982]  ? oom_killer_disable+0x280/0x280
[ 1449.304493]  ? find_held_lock+0x35/0x130
[ 1449.308604]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1449.313500]  ? memcg_event_wake+0x230/0x230
[ 1449.317853]  ? do_raw_spin_unlock+0x181/0x270
[ 1449.322365]  ? _raw_spin_unlock+0x2d/0x50
[ 1449.326534]  try_charge+0xec5/0x1490
[ 1449.330263]  ? lock_downgrade+0x880/0x880
[ 1449.334430]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1449.339548]  ? rcu_read_unlock+0x33/0x60
[ 1449.343617]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1449.348476]  ? retint_kernel+0x2d/0x2d
[ 1449.352374]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1449.358551]  mem_cgroup_try_charge+0x259/0x6b0
[ 1449.363792]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1449.368757]  __handle_mm_fault+0x1e50/0x3f80
[ 1449.373191]  ? copy_page_range+0x2030/0x2030
[ 1449.377624]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1449.382422]  ? handle_mm_fault+0x156/0x690
[ 1449.386925]  ? handle_mm_fault+0x163/0x690
[ 1449.391209]  handle_mm_fault+0x1b5/0x690
[ 1449.395405]  __get_user_pages+0x609/0x1860
[ 1449.399690]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1449.404210]  ? retint_kernel+0x2d/0x2d
[ 1449.408131]  ? populate_vma_page_range+0xcf/0x2a0
[ 1449.413006]  populate_vma_page_range+0x20d/0x2a0
[ 1449.417800]  __mm_populate+0x204/0x380
[ 1449.421733]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1449.426699]  __x64_sys_mlockall+0x35c/0x520
[ 1449.431046]  do_syscall_64+0xfd/0x620
[ 1449.434896]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1449.440105] RIP: 0033:0x45af49
[ 1449.443316] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1449.462263] RSP: 002b:00007f66bf404c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1449.469995] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1449.477371] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1449.484652] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1449.491939] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f66bf4056d4
[ 1449.499223] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
03:02:25 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1449.565019] Task in /syz2 killed as a result of limit of /syz2
[ 1449.590240] memory: usage 307192kB, limit 307200kB, failcnt 836
03:02:25 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1449.623832] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1449.665746] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1449.672213] Memory cgroup stats for /syz2: cache:124KB rss:296984KB rss_huge:198656KB shmem:0KB mapped_file:0KB dirty:0KB writeback:0KB swap:0KB inactive_anon:95292KB active_anon:2360KB inactive_file:4KB active_file:4KB unevictable:199260KB
[ 1449.791419] Memory cgroup out of memory: Kill process 1746 (syz-executor.2) score 1163 or sacrifice child
[ 1449.801881] Killed process 1746 (syz-executor.2) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1449.846910] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1449.866246] oom_reaper: reaped process 1746 (syz-executor.2), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[ 1449.876679] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1449.882177] CPU: 1 PID: 1915 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1449.889917] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1449.899313] Call Trace:
[ 1449.901922]  dump_stack+0x197/0x210
[ 1449.905577]  dump_header+0x15e/0xa55
[ 1449.909317]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1449.914461]  ? ___ratelimit+0x60/0x595
[ 1449.918366]  ? do_raw_spin_unlock+0x181/0x270
[ 1449.922887]  oom_kill_process.cold+0x10/0x6ef
[ 1449.927410]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1449.932960]  ? task_will_free_mem+0x139/0x6e0
[ 1449.937477]  ? find_held_lock+0x35/0x130
[ 1449.941593]  out_of_memory+0x362/0x1330
[ 1449.945588]  ? lock_downgrade+0x880/0x880
[ 1449.949759]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1449.954877]  ? oom_killer_disable+0x280/0x280
[ 1449.959390]  ? find_held_lock+0x35/0x130
[ 1449.963479]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1449.968350]  ? memcg_event_wake+0x230/0x230
[ 1449.972699]  ? do_raw_spin_unlock+0x181/0x270
[ 1449.977219]  ? _raw_spin_unlock+0x2d/0x50
[ 1449.981391]  try_charge+0xec5/0x1490
[ 1449.985124]  ? lock_downgrade+0x880/0x880
[ 1449.989307]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1449.994269]  ? rcu_read_unlock+0x33/0x60
[ 1449.998386]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1450.003263]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1450.009375]  mem_cgroup_try_charge+0x259/0x6b0
[ 1450.013994]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1450.018954]  __handle_mm_fault+0x1e50/0x3f80
[ 1450.023396]  ? copy_page_range+0x2030/0x2030
[ 1450.027846]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1450.032537]  handle_mm_fault+0x1b5/0x690
[ 1450.036623]  __get_user_pages+0x609/0x1860
[ 1450.040892]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1450.045414]  ? lock_acquire+0x16f/0x3f0
[ 1450.049400]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1450.054965]  populate_vma_page_range+0x20d/0x2a0
[ 1450.059782]  __mm_populate+0x204/0x380
[ 1450.063695]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1450.068656]  __x64_sys_mlockall+0x35c/0x520
[ 1450.073002]  do_syscall_64+0xfd/0x620
[ 1450.076827]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1450.082039] RIP: 0033:0x45af49
[ 1450.085247] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1450.104167] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1450.111893] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1450.119179] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1450.126468] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1450.133839] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1450.141133] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
03:02:25 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, 0x0, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

[ 1450.195695] Task in /syz1 killed as a result of limit of /syz1
[ 1450.201833] memory: usage 307200kB, limit 307200kB, failcnt 26293
[ 1450.275778] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1450.297233] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1450.331699] Memory cgroup stats for /syz1: cache:96KB rss:296496KB rss_huge:225280KB shmem:0KB mapped_file:0KB dirty:132KB writeback:132KB swap:0KB inactive_anon:119820KB active_anon:12996KB inactive_file:4KB active_file:0KB unevictable:163900KB
[ 1450.504546] Memory cgroup out of memory: Kill process 1869 (syz-executor.1) score 1163 or sacrifice child
[ 1450.591152] Killed process 1869 (syz-executor.1) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1450.657931] oom_reaper: reaped process 1869 (syz-executor.1), now anon-rss:0kB, file-rss:34688kB, shmem-rss:0kB
03:02:27 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2}, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:02:27 executing program 5:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1451.821481] syz-executor.3 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1451.864649] syz-executor.3 cpuset=syz3 mems_allowed=0-1
[ 1451.884228] CPU: 1 PID: 1918 Comm: syz-executor.3 Not tainted 4.19.95-syzkaller #0
[ 1451.892152] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1451.901533] Call Trace:
[ 1451.904144]  dump_stack+0x197/0x210
[ 1451.907791]  dump_header+0x15e/0xa55
[ 1451.911519]  ? ___ratelimit+0x60/0x595
[ 1451.915425]  oom_kill_process.cold+0x10/0x6ef
[ 1451.919964]  out_of_memory+0x362/0x1330
[ 1451.923976]  ? lock_downgrade+0x880/0x880
[ 1451.928148]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1451.933281]  ? oom_killer_disable+0x280/0x280
[ 1451.937933]  ? find_held_lock+0x35/0x130
[ 1451.942145]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1451.947154]  ? memcg_event_wake+0x230/0x230
[ 1451.951530]  ? do_raw_spin_unlock+0x181/0x270
[ 1451.956052]  ? _raw_spin_unlock+0x2d/0x50
[ 1451.960219]  try_charge+0xec5/0x1490
[ 1451.963964]  ? lock_downgrade+0x880/0x880
[ 1451.968154]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1451.973049]  ? rcu_read_unlock+0x33/0x60
[ 1451.977150]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1451.982024]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1451.988418]  mem_cgroup_try_charge+0x259/0x6b0
[ 1451.993908]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1451.998954]  wp_page_copy+0x430/0x16a0
[ 1452.002882]  ? follow_pfn+0x2a0/0x2a0
[ 1452.006708]  ? do_raw_spin_unlock+0x181/0x270
[ 1452.011221]  do_wp_page+0x57d/0x10b0
[ 1452.014956]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1452.019645]  ? kasan_check_write+0x14/0x20
[ 1452.023903]  ? do_raw_spin_lock+0xd7/0x250
[ 1452.028165]  __handle_mm_fault+0x2305/0x3f80
[ 1452.032595]  ? copy_page_range+0x2030/0x2030
[ 1452.037058]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1452.041740]  handle_mm_fault+0x1b5/0x690
[ 1452.045826]  __get_user_pages+0x609/0x1860
[ 1452.050137]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1452.054655]  ? retint_kernel+0x2d/0x2d
[ 1452.058589]  populate_vma_page_range+0x20d/0x2a0
[ 1452.063383]  __mm_populate+0x204/0x380
[ 1452.067301]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1452.072242]  ? __sanitizer_cov_trace_pc+0x1/0x50
[ 1452.077032]  __x64_sys_mlockall+0x35c/0x520
[ 1452.081381]  do_syscall_64+0xfd/0x620
[ 1452.085207]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1452.090507] RIP: 0033:0x45af49
[ 1452.093713] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1452.113882] RSP: 002b:00007f12b257ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1452.121871] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1452.130132] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1452.137451] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1452.144837] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f12b257f6d4
[ 1452.152741] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
03:02:27 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:02:28 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, 0x0, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

03:02:29 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, 0x0, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

[ 1454.341751] Task in /syz3 killed as a result of limit of /syz3
[ 1454.348505] memory: usage 307192kB, limit 307200kB, failcnt 1980
[ 1454.354930] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1454.362110] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1454.369866] Memory cgroup stats for /syz3: cache:76KB rss:296356KB rss_huge:157696KB shmem:0KB mapped_file:132KB dirty:132KB writeback:0KB swap:0KB inactive_anon:128132KB active_anon:2580KB inactive_file:0KB active_file:8KB unevictable:165792KB
[ 1454.393050] Memory cgroup out of memory: Kill process 1917 (syz-executor.3) score 1226 or sacrifice child
[ 1454.403622] Killed process 1931 (syz-executor.3) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1454.435666] syz-executor.4 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1454.506919] syz-executor.4 cpuset=syz4 mems_allowed=0-1
[ 1454.512351] CPU: 0 PID: 1948 Comm: syz-executor.4 Not tainted 4.19.95-syzkaller #0
[ 1454.520251] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1454.529623] Call Trace:
[ 1454.532235]  dump_stack+0x197/0x210
[ 1454.535887]  dump_header+0x15e/0xa55
[ 1454.539640]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1454.544781]  ? ___ratelimit+0x60/0x595
[ 1454.548693]  ? do_raw_spin_unlock+0x181/0x270
[ 1454.553218]  oom_kill_process.cold+0x10/0x6ef
[ 1454.557769]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1454.563327]  ? task_will_free_mem+0x139/0x6e0
[ 1454.567859]  out_of_memory+0x362/0x1330
[ 1454.571863]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1454.577121]  ? oom_killer_disable+0x280/0x280
[ 1454.581646]  ? find_held_lock+0x35/0x130
[ 1454.585747]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1454.590623]  ? memcg_event_wake+0x230/0x230
[ 1454.594989]  ? do_raw_spin_unlock+0x181/0x270
[ 1454.599511]  ? _raw_spin_unlock+0x2d/0x50
[ 1454.603808]  try_charge+0xec5/0x1490
[ 1454.607548]  ? lock_downgrade+0x880/0x880
[ 1454.611723]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1454.616584]  ? rcu_read_unlock+0x33/0x60
[ 1454.620660]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1454.625530]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1454.631612]  ? mark_held_locks+0x100/0x100
[ 1454.635881]  mem_cgroup_try_charge+0x259/0x6b0
[ 1454.640497]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1454.645464]  __handle_mm_fault+0x1e50/0x3f80
[ 1454.649918]  ? copy_page_range+0x2030/0x2030
[ 1454.654389]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1454.659393]  handle_mm_fault+0x1b5/0x690
[ 1454.663490]  __get_user_pages+0x609/0x1860
[ 1454.667760]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1454.672290]  ? lock_acquire+0x16f/0x3f0
[ 1454.676284]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1454.681846]  populate_vma_page_range+0x20d/0x2a0
[ 1454.686737]  __mm_populate+0x204/0x380
[ 1454.690716]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1454.695682]  __x64_sys_mlockall+0x35c/0x520
[ 1454.700044]  do_syscall_64+0xfd/0x620
[ 1454.703870]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1454.709076] RIP: 0033:0x45af49
[ 1454.712285] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1454.732001] RSP: 002b:00007f16bfdc4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1454.739735] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1454.747423] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1454.754737] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1454.762034] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f16bfdc56d4
[ 1454.769351] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1454.930625] Task in /syz4 killed as a result of limit of /syz4
[ 1454.969559] memory: usage 307200kB, limit 307200kB, failcnt 187
03:02:30 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, 0x0, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

[ 1455.267075] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1455.273967] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1455.280250] Memory cgroup stats for /syz4: cache:36KB rss:297636KB rss_huge:194560KB shmem:0KB mapped_file:0KB dirty:0KB writeback:0KB swap:0KB inactive_anon:107564KB active_anon:8520KB inactive_file:0KB active_file:8KB unevictable:181652KB
[ 1455.301903] Memory cgroup out of memory: Kill process 1872 (syz-executor.4) score 1163 or sacrifice child
03:02:31 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1455.312143] Killed process 1872 (syz-executor.4) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
03:02:31 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, 0x0, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

[ 1455.434969] oom_reaper: reaped process 1872 (syz-executor.4), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
03:02:31 executing program 3:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:02:31 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2}, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:02:31 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:02:31 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, 0x0, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, 0x0, 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

[ 1456.416585] syz-executor.0 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1456.476788] syz-executor.0 cpuset=syz0 mems_allowed=0-1
[ 1456.482226] CPU: 1 PID: 1984 Comm: syz-executor.0 Not tainted 4.19.95-syzkaller #0
[ 1456.489945] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1456.499309] Call Trace:
[ 1456.501920]  dump_stack+0x197/0x210
[ 1456.505576]  dump_header+0x15e/0xa55
[ 1456.509312]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1456.514436]  ? ___ratelimit+0x60/0x595
[ 1456.518344]  ? do_raw_spin_unlock+0x181/0x270
[ 1456.522873]  oom_kill_process.cold+0x10/0x6ef
[ 1456.527392]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1456.532951]  ? task_will_free_mem+0x139/0x6e0
[ 1456.537472]  ? find_held_lock+0x35/0x130
[ 1456.541560]  out_of_memory+0x362/0x1330
[ 1456.545556]  ? lock_downgrade+0x880/0x880
[ 1456.549748]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1456.554872]  ? oom_killer_disable+0x280/0x280
[ 1456.559486]  ? find_held_lock+0x35/0x130
[ 1456.563579]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1456.568443]  ? memcg_event_wake+0x230/0x230
[ 1456.572788]  ? do_raw_spin_unlock+0x181/0x270
[ 1456.577305]  ? _raw_spin_unlock+0x2d/0x50
[ 1456.581474]  try_charge+0xec5/0x1490
[ 1456.585227]  ? lock_downgrade+0x880/0x880
[ 1456.589402]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1456.594267]  ? rcu_read_unlock+0x33/0x60
[ 1456.598347]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1456.603211]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1456.609309]  ? mark_held_locks+0x100/0x100
[ 1456.613578]  mem_cgroup_try_charge+0x259/0x6b0
[ 1456.618185]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1456.623275]  __handle_mm_fault+0x1e50/0x3f80
[ 1456.627726]  ? copy_page_range+0x2030/0x2030
[ 1456.632178]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1456.636882]  handle_mm_fault+0x1b5/0x690
[ 1456.640981]  __get_user_pages+0x609/0x1860
[ 1456.645856]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1456.650394]  ? lock_acquire+0x16f/0x3f0
[ 1456.654385]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1456.659975]  populate_vma_page_range+0x20d/0x2a0
[ 1456.664795]  __mm_populate+0x204/0x380
[ 1456.668754]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1456.673732]  __x64_sys_mlockall+0x35c/0x520
[ 1456.678093]  do_syscall_64+0xfd/0x620
[ 1456.681935]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1456.687253] RIP: 0033:0x45af49
[ 1456.690468] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1456.709584] RSP: 002b:00007faf37e78c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1456.717359] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1456.724649] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1456.731936] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1456.739312] R10: 0000000000000000 R11: 0000000000000246 R12: 00007faf37e796d4
[ 1456.746603] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
03:02:32 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, 0x0, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

[ 1456.869652] Task in /syz0 killed as a result of limit of /syz0
[ 1456.886848] memory: usage 307200kB, limit 307200kB, failcnt 218
[ 1456.926942] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1456.979917] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1457.021381] Memory cgroup stats for /syz0: cache:80KB rss:297220KB rss_huge:88064KB shmem:0KB mapped_file:132KB dirty:132KB writeback:0KB swap:0KB inactive_anon:208084KB active_anon:2664KB inactive_file:0KB active_file:0KB unevictable:86564KB
[ 1457.107758] Memory cgroup out of memory: Kill process 1577 (syz-executor.0) score 1163 or sacrifice child
[ 1457.131788] Killed process 1577 (syz-executor.0) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1457.262222] syz-executor.3 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1457.262866] oom_reaper: reaped process 1577 (syz-executor.0), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[ 1457.284281] syz-executor.3 cpuset=syz3 mems_allowed=0-1
[ 1457.289855] CPU: 1 PID: 1987 Comm: syz-executor.3 Not tainted 4.19.95-syzkaller #0
[ 1457.297928] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1457.307307] Call Trace:
[ 1457.309934]  dump_stack+0x197/0x210
[ 1457.313607]  dump_header+0x15e/0xa55
[ 1457.317358]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1457.322488]  ? ___ratelimit+0x60/0x595
[ 1457.326656]  ? do_raw_spin_unlock+0x181/0x270
[ 1457.331178]  oom_kill_process.cold+0x10/0x6ef
[ 1457.335703]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1457.341792]  ? task_will_free_mem+0x139/0x6e0
[ 1457.346345]  out_of_memory+0x362/0x1330
[ 1457.351239]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1457.356392]  ? oom_killer_disable+0x280/0x280
[ 1457.360914]  ? find_held_lock+0x35/0x130
[ 1457.365023]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1457.369934]  ? memcg_event_wake+0x230/0x230
[ 1457.374286]  ? do_raw_spin_unlock+0x181/0x270
[ 1457.378828]  ? _raw_spin_unlock+0x2d/0x50
[ 1457.383008]  try_charge+0xec5/0x1490
[ 1457.386748]  ? lock_downgrade+0x880/0x880
[ 1457.390926]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1457.395787]  ? rcu_read_unlock+0x33/0x60
[ 1457.399956]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1457.404814]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1457.410928]  mem_cgroup_try_charge+0x259/0x6b0
[ 1457.415533]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1457.420482]  wp_page_copy+0x430/0x16a0
[ 1457.424392]  ? follow_pfn+0x2a0/0x2a0
[ 1457.428212]  ? do_raw_spin_unlock+0x181/0x270
[ 1457.432813]  do_wp_page+0x57d/0x10b0
[ 1457.436544]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1457.441235]  ? kasan_check_write+0x14/0x20
[ 1457.445483]  ? do_raw_spin_lock+0xd7/0x250
[ 1457.449740]  __handle_mm_fault+0x2305/0x3f80
[ 1457.454173]  ? copy_page_range+0x2030/0x2030
[ 1457.458622]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1457.463311]  handle_mm_fault+0x1b5/0x690
[ 1457.467400]  __do_page_fault+0x62a/0xe90
[ 1457.471486]  ? vmalloc_fault+0x740/0x740
[ 1457.475563]  ? trace_hardirqs_off_caller+0x65/0x220
[ 1457.480619]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 1457.485580]  ? page_fault+0x8/0x30
[ 1457.489150]  do_page_fault+0x71/0x57d
[ 1457.492974]  ? page_fault+0x8/0x30
[ 1457.496535]  page_fault+0x1e/0x30
[ 1457.499995] RIP: 0033:0x404324
[ 1457.503202] Code: 48 8b 55 40 48 8b 75 38 48 8b 7d 30 ff 75 70 ff 75 68 ff 75 60 4c 8b 4d 58 4c 8b 45 50 ff d0 48 83 c4 20 48 89 c3 48 83 fb ff <48> 89 5d 78 41 8b 04 24 0f 85 d6 00 00 00 85 c0 0f 85 ce 00 00 00
[ 1457.522122] RSP: 002b:00007f12b255dc90 EFLAGS: 00010217
[ 1457.527594] RAX: 0000000000000000 RBX: 0000000000000cd0 RCX: 000000000045af49
[ 1457.534997] RDX: 00000000004042dc RSI: 0000000000000000 RDI: 0000000000000000
[ 1457.542496] RBP: 000000000075bfc8 R08: ffffffffffffffff R09: 0000000000000000
[ 1457.549811] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f12b255e6d4
[ 1457.557104] R13: 00000000004c1701 R14: 00000000004d6680 R15: 00000000ffffffff
03:02:33 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x0, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:02:33 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, 0x0, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

[ 1457.886492] Task in /syz3 killed as a result of limit of /syz3
[ 1457.897986] memory: usage 307184kB, limit 307200kB, failcnt 2009
[ 1457.920343] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1457.965642] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1457.984863] Memory cgroup stats for /syz3: cache:76KB rss:294800KB rss_huge:159744KB shmem:0KB mapped_file:132KB dirty:132KB writeback:0KB swap:0KB inactive_anon:126612KB active_anon:2580KB inactive_file:0KB active_file:8KB unevictable:165792KB
[ 1458.058855] Memory cgroup out of memory: Kill process 1973 (syz-executor.3) score 1226 or sacrifice child
[ 1458.104305] Killed process 1992 (syz-executor.3) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1458.219437] syz-executor.3 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1458.363372] syz-executor.3 cpuset=syz3 mems_allowed=0-1
[ 1458.408068] CPU: 0 PID: 1973 Comm: syz-executor.3 Not tainted 4.19.95-syzkaller #0
[ 1458.415911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1458.425276] Call Trace:
[ 1458.427882]  dump_stack+0x197/0x210
[ 1458.431534]  dump_header+0x15e/0xa55
[ 1458.435276]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1458.440479]  ? ___ratelimit+0x60/0x595
[ 1458.444401]  ? do_raw_spin_unlock+0x181/0x270
[ 1458.449044]  oom_kill_process.cold+0x10/0x6ef
[ 1458.453579]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1458.459494]  ? task_will_free_mem+0x139/0x6e0
[ 1458.464024]  out_of_memory+0x362/0x1330
[ 1458.468023]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1458.473152]  ? oom_killer_disable+0x280/0x280
[ 1458.477660]  ? find_held_lock+0x35/0x130
[ 1458.481748]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1458.486603]  ? memcg_event_wake+0x230/0x230
[ 1458.490942]  ? do_raw_spin_unlock+0x181/0x270
[ 1458.495471]  ? _raw_spin_unlock+0x2d/0x50
[ 1458.500070]  try_charge+0xc6e/0x1490
[ 1458.503800]  ? lock_downgrade+0x880/0x880
[ 1458.507967]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1458.512853]  ? rcu_read_unlock+0x33/0x60
[ 1458.516925]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1458.521783]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1458.527856]  ? lock_downgrade+0x880/0x880
[ 1458.532024]  mem_cgroup_try_charge+0x259/0x6b0
[ 1458.536652]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1458.541732]  do_huge_pmd_wp_page+0x97e/0x3580
[ 1458.546257]  ? __split_huge_pmd+0x2b10/0x2b10
[ 1458.550769]  ? pmd_val+0x85/0x100
[ 1458.554234]  ? debug_smp_processor_id+0x1c/0x20
[ 1458.558925]  __handle_mm_fault+0x167b/0x3f80
[ 1458.563348]  ? copy_page_range+0x2030/0x2030
[ 1458.567788]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1458.572469]  handle_mm_fault+0x1b5/0x690
[ 1458.576549]  __do_page_fault+0x62a/0xe90
[ 1458.580626]  ? vmalloc_fault+0x740/0x740
[ 1458.584698]  ? trace_hardirqs_off_caller+0x65/0x220
[ 1458.589809]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 1458.594749]  ? page_fault+0x8/0x30
[ 1458.598320]  do_page_fault+0x71/0x57d
[ 1458.602155]  ? page_fault+0x8/0x30
[ 1458.605731]  page_fault+0x1e/0x30
[ 1458.609307] RIP: 0033:0x4421a1
[ 1458.612544] Code: 2e 0f 1f 84 00 00 00 00 00 48 83 fa 20 48 89 f8 73 77 f6 c2 01 74 0b 0f b6 0e 88 0f 48 ff c6 48 ff c7 f6 c2 02 74 12 0f b7 0e <66> 89 0f 48 83 c6 02 48 83 c7 02 0f 1f 40 00 f6 c2 04 74 0c 8b 0e
[ 1458.631458] RSP: 002b:00007ffca6052e28 EFLAGS: 00010202
[ 1458.636938] RAX: 00000000200000c0 RBX: 000000000075c9a0 RCX: 000000000000642f
[ 1458.644217] RDX: 000000000000000a RSI: 0000000000760238 RDI: 00000000200000c0
[ 1458.651493] RBP: 0000000000760218 R08: 00000000ce79db02 R09: 00000000ce79db06
03:02:34 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1458.658769] R10: 00007ffca6052f00 R11: 0000000000000246 R12: 000000000075bfc8
[ 1458.666049] R13: 0000000000163ac0 R14: 0000000000760220 R15: 000000000075bfd4
03:02:34 executing program 5:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1459.005608] Task in /syz3 killed as a result of limit of /syz3
[ 1459.011821] memory: usage 306948kB, limit 307200kB, failcnt 2009
[ 1459.026306] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1459.035304] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1459.046357] Memory cgroup stats for /syz3: cache:76KB rss:294800KB rss_huge:159744KB shmem:0KB mapped_file:132KB dirty:132KB writeback:0KB swap:0KB inactive_anon:126556KB active_anon:2580KB inactive_file:0KB active_file:8KB unevictable:165792KB
[ 1459.110612] Memory cgroup out of memory: Kill process 1973 (syz-executor.3) score 1226 or sacrifice child
[ 1459.142233] Killed process 1973 (syz-executor.3) total-vm:72720kB, anon-rss:18272kB, file-rss:54368kB, shmem-rss:0kB
[ 1459.197101] oom_reaper: reaped process 1973 (syz-executor.3), now anon-rss:18272kB, file-rss:54360kB, shmem-rss:0kB
[ 1459.208298] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1459.231402] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1459.248605] CPU: 1 PID: 1998 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1459.256365] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1459.265758] Call Trace:
[ 1459.268373]  dump_stack+0x197/0x210
[ 1459.272032]  dump_header+0x15e/0xa55
[ 1459.275783]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1459.280943]  ? ___ratelimit+0x60/0x595
[ 1459.284864]  ? do_raw_spin_unlock+0x181/0x270
[ 1459.289406]  oom_kill_process.cold+0x10/0x6ef
[ 1459.293942]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1459.299502]  ? task_will_free_mem+0x139/0x6e0
[ 1459.304022]  out_of_memory+0x362/0x1330
[ 1459.308020]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1459.313142]  ? oom_killer_disable+0x280/0x280
[ 1459.317655]  ? find_held_lock+0x35/0x130
[ 1459.321751]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1459.326622]  ? memcg_event_wake+0x230/0x230
[ 1459.330963]  ? do_raw_spin_unlock+0x181/0x270
[ 1459.335477]  ? _raw_spin_unlock+0x2d/0x50
[ 1459.339646]  try_charge+0xec5/0x1490
[ 1459.343492]  ? lock_downgrade+0x880/0x880
[ 1459.347673]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1459.352538]  ? rcu_read_unlock+0x33/0x60
[ 1459.356617]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1459.361484]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1459.367581]  mem_cgroup_try_charge+0x259/0x6b0
[ 1459.372194]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1459.377150]  __handle_mm_fault+0x1e50/0x3f80
[ 1459.381584]  ? copy_page_range+0x2030/0x2030
[ 1459.386030]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1459.390723]  handle_mm_fault+0x1b5/0x690
[ 1459.395158]  __get_user_pages+0x609/0x1860
[ 1459.399520]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1459.404743]  ? lock_acquire+0x16f/0x3f0
[ 1459.408746]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1459.414306]  populate_vma_page_range+0x20d/0x2a0
[ 1459.419090]  __mm_populate+0x204/0x380
[ 1459.423009]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1459.427978]  __x64_sys_mlockall+0x35c/0x520
[ 1459.432335]  do_syscall_64+0xfd/0x620
[ 1459.436158]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1459.441373] RIP: 0033:0x45af49
[ 1459.444585] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1459.463504] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1459.471650] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1459.478961] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1459.486245] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1459.493534] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1459.500996] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1459.595657] Task in /syz1 killed as a result of limit of /syz1
[ 1459.603034] memory: usage 307200kB, limit 307200kB, failcnt 26379
[ 1459.629862] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1459.663911] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1459.701160] Memory cgroup stats for /syz1: cache:96KB rss:296704KB rss_huge:227328KB shmem:0KB mapped_file:0KB dirty:132KB writeback:132KB swap:0KB inactive_anon:117772KB active_anon:12996KB inactive_file:0KB active_file:0KB unevictable:165992KB
[ 1459.809513] Memory cgroup out of memory: Kill process 1908 (syz-executor.1) score 1163 or sacrifice child
[ 1459.855680] Killed process 1908 (syz-executor.1) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
03:02:35 executing program 3:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:02:35 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, 0x0, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, 0x0, 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

[ 1460.193433] syz-executor.4 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1460.193931] oom_reaper: reaped process 1908 (syz-executor.1), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[ 1460.218716] syz-executor.4 cpuset=syz4 mems_allowed=0-1
[ 1460.235257] CPU: 0 PID: 2004 Comm: syz-executor.4 Not tainted 4.19.95-syzkaller #0
[ 1460.243020] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1460.252391] Call Trace:
[ 1460.255001]  dump_stack+0x197/0x210
[ 1460.258679]  dump_header+0x15e/0xa55
[ 1460.262592]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1460.267866]  ? ___ratelimit+0x60/0x595
[ 1460.271796]  ? do_raw_spin_unlock+0x181/0x270
[ 1460.276327]  oom_kill_process.cold+0x10/0x6ef
[ 1460.281200]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1460.286759]  ? task_will_free_mem+0x139/0x6e0
[ 1460.291286]  out_of_memory+0x362/0x1330
[ 1460.295283]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1460.300426]  ? oom_killer_disable+0x280/0x280
[ 1460.304954]  ? find_held_lock+0x35/0x130
[ 1460.309060]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1460.313920]  ? memcg_event_wake+0x230/0x230
[ 1460.318371]  ? do_raw_spin_unlock+0x181/0x270
[ 1460.322879]  ? _raw_spin_unlock+0x2d/0x50
[ 1460.327153]  try_charge+0xec5/0x1490
[ 1460.330884]  ? lock_downgrade+0x880/0x880
[ 1460.335058]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1460.340275]  ? rcu_read_unlock+0x33/0x60
[ 1460.344360]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1460.349349]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1460.355441]  ? mark_held_locks+0x100/0x100
[ 1460.359714]  mem_cgroup_try_charge+0x259/0x6b0
[ 1460.364333]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1460.377119]  __handle_mm_fault+0x1e50/0x3f80
[ 1460.381555]  ? copy_page_range+0x2030/0x2030
[ 1460.386005]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1460.390697]  handle_mm_fault+0x1b5/0x690
[ 1460.394801]  __get_user_pages+0x609/0x1860
[ 1460.399074]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1460.403634]  ? lock_acquire+0x16f/0x3f0
[ 1460.407648]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1460.413224]  populate_vma_page_range+0x20d/0x2a0
[ 1460.418020]  __mm_populate+0x204/0x380
[ 1460.421937]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1460.426902]  __x64_sys_mlockall+0x35c/0x520
[ 1460.431265]  do_syscall_64+0xfd/0x620
[ 1460.435099]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1460.440333] RIP: 0033:0x45af49
[ 1460.443713] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1460.462645] RSP: 002b:00007f16bfdc4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1460.470372] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1460.477651] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1460.484933] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
03:02:36 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, 0x0, 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1460.492216] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f16bfdc56d4
[ 1460.499527] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1460.585615] Task in /syz4 killed as a result of limit of /syz4
[ 1460.600303] memory: usage 307200kB, limit 307200kB, failcnt 219
[ 1460.630379] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1460.657013] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1460.690252] Memory cgroup stats for /syz4: cache:36KB rss:297504KB rss_huge:188416KB shmem:0KB mapped_file:0KB dirty:0KB writeback:0KB swap:0KB inactive_anon:107564KB active_anon:8520KB inactive_file:0KB active_file:8KB unevictable:181608KB
[ 1461.031179] Memory cgroup out of memory: Kill process 1933 (syz-executor.4) score 1163 or sacrifice child
03:02:36 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x0, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1461.105770] Killed process 1933 (syz-executor.4) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1461.196933] oom_reaper: reaped process 1933 (syz-executor.4), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[ 1461.207481] syz-executor.0 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1461.249539] syz-executor.0 cpuset=syz0 mems_allowed=0-1
[ 1461.281185] CPU: 1 PID: 2015 Comm: syz-executor.0 Not tainted 4.19.95-syzkaller #0
[ 1461.288940] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1461.298307] Call Trace:
[ 1461.300915]  dump_stack+0x197/0x210
[ 1461.304564]  dump_header+0x15e/0xa55
[ 1461.308323]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1461.313441]  ? ___ratelimit+0x60/0x595
[ 1461.317344]  ? do_raw_spin_unlock+0x181/0x270
[ 1461.321884]  oom_kill_process.cold+0x10/0x6ef
[ 1461.326404]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1461.331955]  ? task_will_free_mem+0x139/0x6e0
[ 1461.336479]  out_of_memory+0x362/0x1330
[ 1461.340478]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1461.345597]  ? oom_killer_disable+0x280/0x280
[ 1461.350112]  ? find_held_lock+0x35/0x130
[ 1461.354323]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1461.359187]  ? memcg_event_wake+0x230/0x230
[ 1461.363536]  ? do_raw_spin_unlock+0x181/0x270
[ 1461.368054]  ? _raw_spin_unlock+0x2d/0x50
[ 1461.372221]  try_charge+0xec5/0x1490
[ 1461.375952]  ? lock_downgrade+0x880/0x880
[ 1461.380124]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1461.384983]  ? rcu_read_unlock+0x33/0x60
[ 1461.389056]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1461.393917]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1461.399994]  ? mark_held_locks+0x100/0x100
[ 1461.404286]  mem_cgroup_try_charge+0x259/0x6b0
[ 1461.408893]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1461.413848]  __handle_mm_fault+0x1e50/0x3f80
[ 1461.418287]  ? copy_page_range+0x2030/0x2030
[ 1461.422733]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1461.427447]  handle_mm_fault+0x1b5/0x690
[ 1461.431537]  __get_user_pages+0x609/0x1860
[ 1461.435798]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1461.440320]  ? lock_acquire+0x16f/0x3f0
[ 1461.444311]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1461.449873]  populate_vma_page_range+0x20d/0x2a0
[ 1461.454660]  __mm_populate+0x204/0x380
[ 1461.458573]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1461.463528]  __x64_sys_mlockall+0x35c/0x520
[ 1461.467872]  do_syscall_64+0xfd/0x620
[ 1461.471693]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1461.476890] RIP: 0033:0x45af49
[ 1461.480113] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
03:02:37 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, 0x0, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

[ 1461.499031] RSP: 002b:00007faf37e78c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1461.506760] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1461.514042] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1461.521324] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1461.528611] R10: 0000000000000000 R11: 0000000000000246 R12: 00007faf37e796d4
[ 1461.535899] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1461.775571] Task in /syz0 killed as a result of limit of /syz0
[ 1461.781746] memory: usage 307200kB, limit 307200kB, failcnt 229
[ 1461.796144] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1461.812343] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1461.825778] Memory cgroup stats for /syz0: cache:80KB rss:297180KB rss_huge:88064KB shmem:0KB mapped_file:132KB dirty:132KB writeback:0KB swap:0KB inactive_anon:208084KB active_anon:2664KB inactive_file:4KB active_file:0KB unevictable:86520KB
[ 1461.900870] Memory cgroup out of memory: Kill process 1747 (syz-executor.0) score 1163 or sacrifice child
[ 1461.943325] Killed process 1747 (syz-executor.0) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1461.997694] syz-executor.3 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
03:02:37 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, 0x0, 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1462.046379] syz-executor.3 cpuset=syz3 mems_allowed=0-1
[ 1462.095776] CPU: 0 PID: 2012 Comm: syz-executor.3 Not tainted 4.19.95-syzkaller #0
[ 1462.108225] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1462.117597] Call Trace:
[ 1462.120206]  dump_stack+0x197/0x210
[ 1462.123853]  dump_header+0x15e/0xa55
[ 1462.127589]  ? oom_kill_process+0x136/0x150
[ 1462.131968]  oom_kill_process.cold+0x10/0x6ef
[ 1462.136495]  ? out_of_memory+0x1ae/0x1330
[ 1462.140702]  ? mem_cgroup_get_max+0x2a/0x240
[ 1462.145128]  out_of_memory+0x362/0x1330
[ 1462.149120]  ? retint_kernel+0x2d/0x2d
[ 1462.153026]  ? oom_killer_disable+0x280/0x280
[ 1462.157551]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1462.162439]  ? memcg_event_wake+0x230/0x230
[ 1462.166796]  ? do_raw_spin_unlock+0x181/0x270
[ 1462.171325]  ? _raw_spin_unlock+0x2d/0x50
[ 1462.175499]  try_charge+0xec5/0x1490
[ 1462.179284]  ? lock_downgrade+0x880/0x880
[ 1462.183460]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1462.188344]  ? rcu_read_unlock+0x33/0x60
[ 1462.192452]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1462.197320]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1462.203410]  mem_cgroup_try_charge+0x259/0x6b0
[ 1462.208023]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1462.212974]  wp_page_copy+0x430/0x16a0
[ 1462.216882]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1462.221661]  ? follow_pfn+0x2a0/0x2a0
[ 1462.225482]  ? do_raw_spin_unlock+0x181/0x270
[ 1462.229995]  do_wp_page+0x57d/0x10b0
[ 1462.233727]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1462.238410]  ? __handle_mm_fault+0x22f9/0x3f80
[ 1462.243011]  __handle_mm_fault+0x2305/0x3f80
[ 1462.247461]  ? copy_page_range+0x2030/0x2030
[ 1462.251903]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1462.256590]  handle_mm_fault+0x1b5/0x690
[ 1462.260671]  __get_user_pages+0x609/0x1860
[ 1462.264933]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1462.269449]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1462.275014]  ? lock_acquire+0x16f/0x3f0
[ 1462.278999]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1462.284560]  populate_vma_page_range+0x20d/0x2a0
[ 1462.289338]  __mm_populate+0x204/0x380
[ 1462.293244]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1462.298215]  __x64_sys_mlockall+0x35c/0x520
[ 1462.302564]  do_syscall_64+0xfd/0x620
[ 1462.307445]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1462.312655] RIP: 0033:0x45af49
[ 1462.315887] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1462.339922] RSP: 002b:00007f12b257ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1462.347649] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1462.354939] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1462.362223] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1462.369504] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f12b257f6d4
[ 1462.376788] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1462.406466] oom_reaper: reaped process 1747 (syz-executor.0), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
03:02:38 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1462.460117] Task in /syz3 killed as a result of limit of /syz3
[ 1462.495729] memory: usage 307200kB, limit 307200kB, failcnt 2145
[ 1462.518467] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1462.557420] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1462.570194] Memory cgroup stats for /syz3: cache:76KB rss:296288KB rss_huge:157696KB shmem:0KB mapped_file:132KB dirty:132KB writeback:0KB swap:0KB inactive_anon:128132KB active_anon:2580KB inactive_file:0KB active_file:8KB unevictable:165792KB
[ 1462.633219] Memory cgroup out of memory: Kill process 2011 (syz-executor.3) score 1226 or sacrifice child
[ 1462.658810] Killed process 2023 (syz-executor.3) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1462.690268] oom_reaper: reaped process 2023 (syz-executor.3), now anon-rss:0kB, file-rss:34688kB, shmem-rss:0kB
[ 1462.707768] syz-executor.2 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1462.755965] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[ 1462.816210] CPU: 1 PID: 2036 Comm: syz-executor.2 Not tainted 4.19.95-syzkaller #0
[ 1462.823940] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1462.833469] Call Trace:
[ 1462.836074]  dump_stack+0x197/0x210
[ 1462.839716]  dump_header+0x15e/0xa55
[ 1462.843441]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1462.848814]  ? ___ratelimit+0x60/0x595
[ 1462.852719]  ? do_raw_spin_unlock+0x181/0x270
[ 1462.857249]  oom_kill_process.cold+0x10/0x6ef
[ 1462.861782]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1462.867328]  ? task_will_free_mem+0x139/0x6e0
[ 1462.871839]  out_of_memory+0x362/0x1330
[ 1462.875831]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1462.881052]  ? oom_killer_disable+0x280/0x280
[ 1462.885554]  ? find_held_lock+0x35/0x130
[ 1462.889652]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1462.894508]  ? memcg_event_wake+0x230/0x230
[ 1462.898951]  ? do_raw_spin_unlock+0x181/0x270
[ 1462.903763]  ? _raw_spin_unlock+0x2d/0x50
[ 1462.907952]  try_charge+0xec5/0x1490
[ 1462.911698]  ? lock_downgrade+0x880/0x880
[ 1462.915879]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1462.920911]  ? rcu_read_unlock+0x33/0x60
[ 1462.925072]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1462.929930]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1462.935999]  ? mark_held_locks+0x100/0x100
[ 1462.940252]  mem_cgroup_try_charge+0x259/0x6b0
[ 1462.944850]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1462.949817]  __handle_mm_fault+0x1e50/0x3f80
[ 1462.954242]  ? copy_page_range+0x2030/0x2030
[ 1462.959374]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1462.964067]  handle_mm_fault+0x1b5/0x690
[ 1462.968175]  __get_user_pages+0x609/0x1860
[ 1462.972431]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1462.976948]  ? lock_acquire+0x16f/0x3f0
[ 1462.980931]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1462.986480]  populate_vma_page_range+0x20d/0x2a0
[ 1462.991643]  __mm_populate+0x204/0x380
[ 1462.995555]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1463.000606]  __x64_sys_mlockall+0x35c/0x520
[ 1463.004952]  do_syscall_64+0xfd/0x620
[ 1463.008777]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1463.014002] RIP: 0033:0x45af49
[ 1463.017203] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1463.036135] RSP: 002b:00007f66bf404c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1463.043856] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1463.051219] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1463.058498] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1463.065773] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f66bf4056d4
[ 1463.073054] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
03:02:39 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:02:39 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, 0x0, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, 0x0, 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

03:02:40 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x0, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1464.713183] Task in /syz2 killed as a result of limit of /syz2
[ 1464.719873] memory: usage 307200kB, limit 307200kB, failcnt 856
[ 1464.726104] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1464.733315] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1464.739623] Memory cgroup stats for /syz2: cache:124KB rss:296928KB rss_huge:198656KB shmem:0KB mapped_file:0KB dirty:0KB writeback:0KB swap:0KB inactive_anon:95292KB active_anon:2268KB inactive_file:4KB active_file:4KB unevictable:199492KB
03:02:40 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, 0x0, 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1464.868055] Memory cgroup out of memory: Kill process 1781 (syz-executor.2) score 1163 or sacrifice child
[ 1464.878942] Killed process 1781 (syz-executor.2) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1465.052257] oom_reaper: reaped process 1781 (syz-executor.2), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[ 1465.163166] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1465.225017] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1465.256573] CPU: 0 PID: 2051 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1465.264341] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1465.273816] Call Trace:
[ 1465.276443]  dump_stack+0x197/0x210
[ 1465.280132]  dump_header+0x15e/0xa55
[ 1465.283890]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1465.289037]  ? ___ratelimit+0x60/0x595
[ 1465.292957]  ? do_raw_spin_unlock+0x181/0x270
[ 1465.297495]  oom_kill_process.cold+0x10/0x6ef
[ 1465.302020]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1465.307599]  ? task_will_free_mem+0x139/0x6e0
[ 1465.312550]  ? find_held_lock+0x35/0x130
[ 1465.316684]  out_of_memory+0x362/0x1330
[ 1465.320689]  ? lock_downgrade+0x880/0x880
[ 1465.325815]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1465.331286]  ? oom_killer_disable+0x280/0x280
[ 1465.337803]  ? find_held_lock+0x35/0x130
[ 1465.342047]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1465.346919]  ? memcg_event_wake+0x230/0x230
[ 1465.351381]  ? do_raw_spin_unlock+0x181/0x270
[ 1465.355905]  ? _raw_spin_unlock+0x2d/0x50
[ 1465.360088]  try_charge+0xec5/0x1490
[ 1465.363928]  ? lock_downgrade+0x880/0x880
[ 1465.369200]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1465.374341]  ? rcu_read_unlock+0x33/0x60
[ 1465.378426]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1465.383437]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1465.389547]  mem_cgroup_try_charge+0x259/0x6b0
[ 1465.394164]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1465.399310]  __handle_mm_fault+0x1e50/0x3f80
[ 1465.403751]  ? copy_page_range+0x2030/0x2030
[ 1465.408231]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1465.412927]  handle_mm_fault+0x1b5/0x690
[ 1465.417042]  __get_user_pages+0x609/0x1860
[ 1465.421323]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1465.425878]  ? lock_acquire+0x16f/0x3f0
[ 1465.429871]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1465.435443]  populate_vma_page_range+0x20d/0x2a0
[ 1465.440234]  __mm_populate+0x204/0x380
[ 1465.444161]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1465.449139]  __x64_sys_mlockall+0x35c/0x520
[ 1465.453506]  do_syscall_64+0xfd/0x620
[ 1465.457352]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1465.462565] RIP: 0033:0x45af49
[ 1465.465791] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1465.484905] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1465.492637] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1465.499926] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1465.507213] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1465.514507] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1465.521810] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
03:02:41 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, 0x0, 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:02:42 executing program 3:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:02:42 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, 0x0, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

03:02:42 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1466.981701] Task in /syz1 killed as a result of limit of /syz1
[ 1466.988097] memory: usage 307200kB, limit 307200kB, failcnt 26409
03:02:42 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, 0x0, 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1467.257816] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1467.281286] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1467.304121] Memory cgroup stats for /syz1: cache:96KB rss:296592KB rss_huge:227328KB shmem:0KB mapped_file:0KB dirty:132KB writeback:132KB swap:0KB inactive_anon:117772KB active_anon:12996KB inactive_file:0KB active_file:4KB unevictable:165940KB
[ 1467.409041] Memory cgroup out of memory: Kill process 1986 (syz-executor.1) score 1163 or sacrifice child
[ 1467.464554] Killed process 1986 (syz-executor.1) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1467.555683] syz-executor.0 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1467.595594] syz-executor.0 cpuset=syz0 mems_allowed=0-1
[ 1467.606460] oom_reaper: reaped process 1986 (syz-executor.1), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[ 1467.644854] CPU: 1 PID: 2070 Comm: syz-executor.0 Not tainted 4.19.95-syzkaller #0
[ 1467.653321] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1467.662694] Call Trace:
[ 1467.665311]  dump_stack+0x197/0x210
[ 1467.668971]  dump_header+0x15e/0xa55
[ 1467.672834]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1467.678009]  ? ___ratelimit+0x60/0x595
[ 1467.681912]  ? do_raw_spin_unlock+0x181/0x270
[ 1467.686426]  oom_kill_process.cold+0x10/0x6ef
[ 1467.690942]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1467.696577]  ? task_will_free_mem+0x139/0x6e0
[ 1467.701116]  out_of_memory+0x362/0x1330
[ 1467.705110]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1467.710225]  ? oom_killer_disable+0x280/0x280
[ 1467.714730]  ? find_held_lock+0x35/0x130
[ 1467.718814]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1467.723758]  ? memcg_event_wake+0x230/0x230
[ 1467.728113]  ? do_raw_spin_unlock+0x181/0x270
[ 1467.732617]  ? _raw_spin_unlock+0x2d/0x50
[ 1467.736785]  try_charge+0xec5/0x1490
[ 1467.740510]  ? lock_downgrade+0x880/0x880
[ 1467.744683]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1467.749545]  ? rcu_read_unlock+0x33/0x60
[ 1467.753631]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1467.758512]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1467.768194]  ? mark_held_locks+0x100/0x100
[ 1467.772466]  mem_cgroup_try_charge+0x259/0x6b0
[ 1467.777074]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1467.782105]  __handle_mm_fault+0x1e50/0x3f80
[ 1467.786561]  ? copy_page_range+0x2030/0x2030
[ 1467.791007]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1467.795691]  handle_mm_fault+0x1b5/0x690
[ 1467.799799]  __get_user_pages+0x609/0x1860
[ 1467.804068]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1467.808725]  ? lock_acquire+0x16f/0x3f0
[ 1467.812720]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1467.818283]  populate_vma_page_range+0x20d/0x2a0
[ 1467.823063]  __mm_populate+0x204/0x380
[ 1467.826970]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1467.831928]  __x64_sys_mlockall+0x35c/0x520
[ 1467.836264]  do_syscall_64+0xfd/0x620
[ 1467.840215]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1467.845426] RIP: 0033:0x45af49
[ 1467.848637] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1467.867560] RSP: 002b:00007faf37e78c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1467.875279] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1467.882586] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1467.889885] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1467.897165] R10: 0000000000000000 R11: 0000000000000246 R12: 00007faf37e796d4
[ 1467.904441] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
03:02:44 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:02:44 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, 0x0, 0x0, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1469.104272] Task in /syz0 killed as a result of limit of /syz0
03:02:44 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, 0x0, 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1469.216062] memory: usage 307200kB, limit 307200kB, failcnt 254
[ 1469.222292] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1469.230131] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1469.236449] Memory cgroup stats for /syz0: cache:80KB rss:297116KB rss_huge:88064KB shmem:0KB mapped_file:132KB dirty:132KB writeback:0KB swap:0KB inactive_anon:208084KB active_anon:2664KB inactive_file:4KB active_file:0KB unevictable:86464KB
[ 1469.258299] Memory cgroup out of memory: Kill process 1798 (syz-executor.0) score 1163 or sacrifice child
[ 1469.268295] Killed process 1798 (syz-executor.0) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1469.285880] syz-executor.2 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1469.360589] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[ 1469.389132] CPU: 0 PID: 2089 Comm: syz-executor.2 Not tainted 4.19.95-syzkaller #0
[ 1469.396925] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1469.406295] Call Trace:
[ 1469.408913]  dump_stack+0x197/0x210
[ 1469.412562]  dump_header+0x15e/0xa55
[ 1469.416298]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1469.421756]  ? ___ratelimit+0x60/0x595
[ 1469.425678]  ? do_raw_spin_unlock+0x181/0x270
[ 1469.430272]  oom_kill_process.cold+0x10/0x6ef
[ 1469.434796]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1469.440340]  ? task_will_free_mem+0x139/0x6e0
[ 1469.444852]  out_of_memory+0x362/0x1330
[ 1469.448843]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1469.453953]  ? oom_killer_disable+0x280/0x280
[ 1469.458482]  ? find_held_lock+0x35/0x130
[ 1469.462564]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1469.467419]  ? memcg_event_wake+0x230/0x230
[ 1469.471761]  ? do_raw_spin_unlock+0x181/0x270
[ 1469.476265]  ? _raw_spin_unlock+0x2d/0x50
[ 1469.480579]  try_charge+0xec5/0x1490
[ 1469.484305]  ? lock_downgrade+0x880/0x880
[ 1469.488475]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1469.493329]  ? rcu_read_unlock+0x33/0x60
[ 1469.497398]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1469.502251]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1469.508404]  ? mark_held_locks+0x100/0x100
[ 1469.519603]  mem_cgroup_try_charge+0x259/0x6b0
[ 1469.524222]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1469.529175]  __handle_mm_fault+0x1e50/0x3f80
[ 1469.533605]  ? copy_page_range+0x2030/0x2030
[ 1469.538236]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1469.542930]  handle_mm_fault+0x1b5/0x690
[ 1469.547306]  __get_user_pages+0x609/0x1860
[ 1469.551580]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1469.556191]  ? lock_acquire+0x16f/0x3f0
[ 1469.560197]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1469.566045]  populate_vma_page_range+0x20d/0x2a0
[ 1469.570846]  __mm_populate+0x204/0x380
[ 1469.574756]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1469.579721]  __x64_sys_mlockall+0x35c/0x520
[ 1469.584233]  do_syscall_64+0xfd/0x620
[ 1469.588051]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1469.593245] RIP: 0033:0x45af49
[ 1469.596448] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1469.616482] RSP: 002b:00007f66bf404c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1469.624200] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1469.632438] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1469.639714] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1469.646994] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f66bf4056d4
[ 1469.654289] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1469.718039] oom_reaper: reaped process 1798 (syz-executor.0), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
03:02:45 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:02:46 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, 0x0, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

03:02:46 executing program 3:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1471.124572] cgroup: fork rejected by pids controller in /syz5
[ 1471.324388] Task in /syz2 killed as a result of limit of /syz2
[ 1471.330619] memory: usage 307200kB, limit 307200kB, failcnt 1039
[ 1471.337107] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1471.344143] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1471.350539] Memory cgroup stats for /syz2: cache:124KB rss:296960KB rss_huge:198656KB shmem:0KB mapped_file:0KB dirty:0KB writeback:0KB swap:0KB inactive_anon:95292KB active_anon:2268KB inactive_file:4KB active_file:4KB unevictable:199412KB
[ 1471.372153] Memory cgroup out of memory: Kill process 1864 (syz-executor.2) score 1163 or sacrifice child
[ 1471.382037] Killed process 1864 (syz-executor.2) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1471.494934] oom_reaper: reaped process 1864 (syz-executor.2), now anon-rss:0kB, file-rss:34688kB, shmem-rss:0kB
03:02:47 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:02:47 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x0, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1472.313808] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1472.399793] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1472.446713] CPU: 1 PID: 2111 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1472.454477] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1472.463834] Call Trace:
[ 1472.466438]  dump_stack+0x197/0x210
[ 1472.470084]  dump_header+0x15e/0xa55
[ 1472.473807]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1472.478918]  ? ___ratelimit+0x60/0x595
[ 1472.483168]  ? do_raw_spin_unlock+0x181/0x270
[ 1472.488285]  oom_kill_process.cold+0x10/0x6ef
[ 1472.500179]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1472.505728]  ? task_will_free_mem+0x139/0x6e0
[ 1472.510236]  ? find_held_lock+0x35/0x130
[ 1472.514317]  out_of_memory+0x362/0x1330
[ 1472.518309]  ? lock_downgrade+0x880/0x880
[ 1472.522486]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1472.527596]  ? oom_killer_disable+0x280/0x280
[ 1472.532100]  ? find_held_lock+0x35/0x130
[ 1472.536207]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1472.541060]  ? memcg_event_wake+0x230/0x230
[ 1472.545399]  ? do_raw_spin_unlock+0x181/0x270
[ 1472.549904]  ? _raw_spin_unlock+0x2d/0x50
[ 1472.554062]  try_charge+0xec5/0x1490
[ 1472.557785]  ? lock_downgrade+0x880/0x880
[ 1472.562226]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1472.567082]  ? rcu_read_unlock+0x33/0x60
[ 1472.571150]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1472.576007]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1472.582076]  ? mark_held_locks+0x100/0x100
[ 1472.586332]  mem_cgroup_try_charge+0x259/0x6b0
[ 1472.590931]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1472.595872]  __handle_mm_fault+0x1e50/0x3f80
[ 1472.600324]  ? copy_page_range+0x2030/0x2030
[ 1472.604800]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1472.609580]  handle_mm_fault+0x1b5/0x690
[ 1472.613681]  __get_user_pages+0x609/0x1860
[ 1472.617960]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1472.622485]  ? lock_acquire+0x16f/0x3f0
[ 1472.626478]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1472.632054]  populate_vma_page_range+0x20d/0x2a0
[ 1472.636833]  __mm_populate+0x204/0x380
[ 1472.640735]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1472.646378]  __x64_sys_mlockall+0x35c/0x520
[ 1472.650714]  do_syscall_64+0xfd/0x620
[ 1472.654529]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1472.659721] RIP: 0033:0x45af49
[ 1472.662950] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1472.685797] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1472.693519] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1472.700803] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1472.708427] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1472.715798] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1472.723511] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
03:02:48 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

03:02:48 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, 0x0, 0x0, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:02:48 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, 0x0, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

[ 1474.179354] Task in /syz1 killed as a result of limit of /syz1
[ 1474.185432] memory: usage 307200kB, limit 307200kB, failcnt 26453
03:02:50 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x0, 0x0)
accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1474.264777] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1474.300955] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1474.308304] Memory cgroup stats for /syz1: cache:96KB rss:296644KB rss_huge:225280KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:119820KB active_anon:12996KB inactive_file:0KB active_file:4KB unevictable:163872KB
[ 1474.331449] Memory cgroup out of memory: Kill process 2042 (syz-executor.1) score 1163 or sacrifice child
[ 1474.346679] Killed process 2042 (syz-executor.1) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1474.603690] syz-executor.0 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1474.671166] syz-executor.0 cpuset=syz0 mems_allowed=0-1
[ 1474.686752] oom_reaper: reaped process 2042 (syz-executor.1), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[ 1474.729671] CPU: 1 PID: 2128 Comm: syz-executor.0 Not tainted 4.19.95-syzkaller #0
[ 1474.737514] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1474.746883] Call Trace:
[ 1474.749491]  dump_stack+0x197/0x210
[ 1474.753150]  dump_header+0x15e/0xa55
[ 1474.756904]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1474.762032]  ? ___ratelimit+0x60/0x595
[ 1474.766457]  ? do_raw_spin_unlock+0x181/0x270
[ 1474.770972]  oom_kill_process.cold+0x10/0x6ef
[ 1474.775485]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1474.781028]  ? task_will_free_mem+0x139/0x6e0
[ 1474.785542]  out_of_memory+0x362/0x1330
[ 1474.789534]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1474.794646]  ? oom_killer_disable+0x280/0x280
[ 1474.799155]  ? find_held_lock+0x35/0x130
[ 1474.803243]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1474.808099]  ? memcg_event_wake+0x230/0x230
[ 1474.812434]  ? do_raw_spin_unlock+0x181/0x270
[ 1474.816948]  ? _raw_spin_unlock+0x2d/0x50
[ 1474.821108]  try_charge+0xec5/0x1490
[ 1474.824839]  ? lock_downgrade+0x880/0x880
[ 1474.829006]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1474.833860]  ? rcu_read_unlock+0x33/0x60
[ 1474.837928]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1474.842784]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1474.848877]  ? mark_held_locks+0x100/0x100
[ 1474.853221]  mem_cgroup_try_charge+0x259/0x6b0
[ 1474.857824]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1474.862767]  __handle_mm_fault+0x1e50/0x3f80
[ 1474.867205]  ? copy_page_range+0x2030/0x2030
[ 1474.871655]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1474.876602]  handle_mm_fault+0x1b5/0x690
[ 1474.880705]  __get_user_pages+0x609/0x1860
[ 1474.884975]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1474.889491]  ? lock_acquire+0x16f/0x3f0
[ 1474.893487]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1474.899039]  populate_vma_page_range+0x20d/0x2a0
[ 1474.903816]  __mm_populate+0x204/0x380
[ 1474.907757]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1474.912720]  __x64_sys_mlockall+0x35c/0x520
[ 1474.917056]  do_syscall_64+0xfd/0x620
[ 1474.920972]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1474.926168] RIP: 0033:0x45af49
[ 1474.929377] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1474.948478] RSP: 002b:00007faf37e78c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1474.956205] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1474.963593] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1474.970885] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
03:02:50 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
mlockall(0x3)

[ 1474.978171] R10: 0000000000000000 R11: 0000000000000246 R12: 00007faf37e796d4
[ 1474.985450] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
03:02:51 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, 0x0, 0x0, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:02:51 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1476.658289] Task in /syz0 killed as a result of limit of /syz0
[ 1476.664351] memory: usage 307192kB, limit 307200kB, failcnt 301
[ 1476.670817] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1476.677690] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1476.684453] Memory cgroup stats for /syz0: cache:80KB rss:297016KB rss_huge:86016KB shmem:0KB mapped_file:132KB dirty:132KB writeback:0KB swap:0KB inactive_anon:208084KB active_anon:2664KB inactive_file:8KB active_file:4KB unevictable:86420KB
[ 1476.706479] Memory cgroup out of memory: Kill process 1875 (syz-executor.0) score 1163 or sacrifice child
[ 1476.716398] Killed process 1875 (syz-executor.0) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1476.769618] syz-executor.2 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1476.832461] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[ 1476.867716] CPU: 1 PID: 2143 Comm: syz-executor.2 Not tainted 4.19.95-syzkaller #0
[ 1476.875470] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1476.884840] Call Trace:
[ 1476.887449]  dump_stack+0x197/0x210
[ 1476.891192]  dump_header+0x15e/0xa55
[ 1476.894935]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1476.900072]  ? ___ratelimit+0x60/0x595
[ 1476.903981]  ? do_raw_spin_unlock+0x181/0x270
[ 1476.908510]  oom_kill_process.cold+0x10/0x6ef
[ 1476.913041]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1476.919041]  ? task_will_free_mem+0x139/0x6e0
[ 1476.923572]  out_of_memory+0x362/0x1330
[ 1476.927578]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1476.932711]  ? oom_killer_disable+0x280/0x280
[ 1476.937227]  ? find_held_lock+0x35/0x130
[ 1476.941318]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1476.946202]  ? memcg_event_wake+0x230/0x230
[ 1476.950554]  ? do_raw_spin_unlock+0x181/0x270
[ 1476.955150]  ? _raw_spin_unlock+0x2d/0x50
[ 1476.959314]  try_charge+0xec5/0x1490
[ 1476.963045]  ? lock_downgrade+0x880/0x880
[ 1476.967220]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1476.972082]  ? rcu_read_unlock+0x33/0x60
[ 1476.976161]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1476.981033]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1476.987288]  ? mark_held_locks+0x100/0x100
[ 1476.991579]  mem_cgroup_try_charge+0x259/0x6b0
[ 1476.996196]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1477.001152]  __handle_mm_fault+0x1e50/0x3f80
[ 1477.005592]  ? copy_page_range+0x2030/0x2030
[ 1477.008579] oom_reaper: reaped process 1875 (syz-executor.0), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[ 1477.010055]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1477.010075]  handle_mm_fault+0x1b5/0x690
[ 1477.029628]  __get_user_pages+0x609/0x1860
[ 1477.033902]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1477.038425]  ? lock_acquire+0x16f/0x3f0
[ 1477.042433]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1477.048228]  populate_vma_page_range+0x20d/0x2a0
[ 1477.053009]  __mm_populate+0x204/0x380
[ 1477.057551]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1477.062524]  __x64_sys_mlockall+0x35c/0x520
[ 1477.066893]  do_syscall_64+0xfd/0x620
[ 1477.070719]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1477.075954] RIP: 0033:0x45af49
[ 1477.079793] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1477.100288] RSP: 002b:00007f66bf404c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1477.110798] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1477.118084] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1477.125388] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
03:02:52 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x0, 0x0)
accept4$bt_l2cap(0xffffffffffffffff, 0x0, &(0x7f0000000140), 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:02:52 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, 0x0, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

03:02:52 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1477.133118] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f66bf4056d4
[ 1477.140411] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1477.404998] Task in /syz2 killed as a result of limit of /syz2
[ 1477.750588] memory: usage 307200kB, limit 307200kB, failcnt 1059
[ 1477.779723] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1477.838861] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1477.885089] Memory cgroup stats for /syz2: cache:124KB rss:297060KB rss_huge:198656KB shmem:0KB mapped_file:0KB dirty:0KB writeback:0KB swap:0KB inactive_anon:95292KB active_anon:2268KB inactive_file:0KB active_file:4KB unevictable:199400KB
[ 1478.022845] Memory cgroup out of memory: Kill process 1902 (syz-executor.2) score 1163 or sacrifice child
[ 1478.086021] Killed process 1902 (syz-executor.2) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
03:02:53 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
mlockall(0x3)

[ 1478.324973] syz-executor.3 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1478.337149] syz-executor.3 cpuset=syz3 mems_allowed=0-1
[ 1478.342699] CPU: 1 PID: 2160 Comm: syz-executor.3 Not tainted 4.19.95-syzkaller #0
[ 1478.350979] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1478.360340] Call Trace:
[ 1478.362946]  dump_stack+0x197/0x210
[ 1478.366851]  dump_header+0x15e/0xa55
[ 1478.370576]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1478.375691]  ? ___ratelimit+0x60/0x595
[ 1478.379730]  ? do_raw_spin_unlock+0x181/0x270
[ 1478.384257]  oom_kill_process.cold+0x10/0x6ef
[ 1478.388798]  out_of_memory+0x362/0x1330
[ 1478.393157]  ? retint_kernel+0x2d/0x2d
[ 1478.397077]  ? oom_killer_disable+0x280/0x280
[ 1478.401619]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1478.406603]  ? memcg_event_wake+0x230/0x230
[ 1478.410960]  ? do_raw_spin_unlock+0x181/0x270
[ 1478.415578]  ? _raw_spin_unlock+0x2d/0x50
[ 1478.419772]  try_charge+0xec5/0x1490
[ 1478.423520]  ? lock_downgrade+0x880/0x880
[ 1478.427705]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1478.432579]  ? rcu_read_unlock+0x33/0x60
[ 1478.436654]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1478.441517]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1478.447617]  mem_cgroup_try_charge+0x259/0x6b0
[ 1478.452223]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1478.457183]  wp_page_copy+0x430/0x16a0
[ 1478.461094]  ? follow_pfn+0x2a0/0x2a0
[ 1478.464922]  ? do_raw_spin_unlock+0x181/0x270
[ 1478.469442]  do_wp_page+0x57d/0x10b0
[ 1478.473184]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1478.477880]  ? kasan_check_write+0x14/0x20
[ 1478.482143]  ? do_raw_spin_lock+0xd7/0x250
[ 1478.486748]  __handle_mm_fault+0x2305/0x3f80
[ 1478.491175]  ? copy_page_range+0x2030/0x2030
[ 1478.495616]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1478.500316]  handle_mm_fault+0x1b5/0x690
[ 1478.504402]  __get_user_pages+0x609/0x1860
[ 1478.508766]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1478.513482]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1478.518261]  ? retint_kernel+0x2d/0x2d
[ 1478.522183]  populate_vma_page_range+0x20d/0x2a0
[ 1478.526976]  __mm_populate+0x204/0x380
[ 1478.530924]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1478.535926]  __x64_sys_mlockall+0x35c/0x520
[ 1478.540287]  do_syscall_64+0xfd/0x620
[ 1478.544195]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1478.549388] RIP: 0033:0x45af49
[ 1478.552597] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1478.571689] RSP: 002b:00007f12b257ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1478.579430] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1478.586723] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1478.594006] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1478.601399] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f12b257f6d4
[ 1478.608702] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1478.618445] Task in /syz3 killed as a result of limit of /syz3
[ 1478.624555] memory: usage 307200kB, limit 307200kB, failcnt 2235
[ 1478.630970] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1478.637974] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1478.644496] Memory cgroup stats for /syz3: cache:76KB rss:296368KB rss_huge:157696KB shmem:0KB mapped_file:132KB dirty:132KB writeback:0KB swap:0KB inactive_anon:128304KB active_anon:2580KB inactive_file:0KB active_file:4KB unevictable:165660KB
[ 1478.666926] Memory cgroup out of memory: Kill process 2159 (syz-executor.3) score 1223 or sacrifice child
[ 1478.677226] Killed process 2163 (syz-executor.3) total-vm:72588kB, anon-rss:18204kB, file-rss:34816kB, shmem-rss:0kB
[ 1479.606281] oom_reaper: reaped process 1902 (syz-executor.2), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
03:02:55 executing program 3:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:02:55 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, 0x0, 0x400080, 0x0)
chown(0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:02:55 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, 0x0, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:02:56 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x0, 0x0)
accept4$bt_l2cap(0xffffffffffffffff, 0x0, &(0x7f0000000140), 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:02:56 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, 0x0, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

03:02:57 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, 0x0, 0x400080, 0x0)
chown(0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:02:57 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
mlockall(0x3)

[ 1482.269201] syz-executor.3 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1482.362011] syz-executor.3 cpuset=syz3 mems_allowed=0-1
[ 1482.407944] CPU: 1 PID: 2175 Comm: syz-executor.3 Not tainted 4.19.95-syzkaller #0
[ 1482.415694] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1482.425050] Call Trace:
[ 1482.427654]  dump_stack+0x197/0x210
[ 1482.431328]  dump_header+0x15e/0xa55
[ 1482.435054]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1482.440514]  ? ___ratelimit+0x60/0x595
[ 1482.444431]  ? do_raw_spin_unlock+0x181/0x270
[ 1482.448942]  oom_kill_process.cold+0x10/0x6ef
[ 1482.453463]  ? out_of_memory+0x43d/0x1330
[ 1482.457638]  out_of_memory+0x362/0x1330
[ 1482.461641]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1482.466408]  ? oom_killer_disable+0x280/0x280
[ 1482.470910]  ? find_held_lock+0x35/0x130
[ 1482.475009]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1482.480960]  ? memcg_event_wake+0x230/0x230
[ 1482.485332]  try_charge+0xec5/0x1490
[ 1482.489059]  ? lock_downgrade+0x880/0x880
[ 1482.494096]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1482.498948]  ? rcu_read_unlock+0x33/0x60
[ 1482.503016]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1482.507869]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1482.513958]  mem_cgroup_try_charge+0x259/0x6b0
[ 1482.518569]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1482.523508]  wp_page_copy+0x430/0x16a0
[ 1482.527446]  ? follow_pfn+0x2a0/0x2a0
[ 1482.531259]  ? do_raw_spin_unlock+0x181/0x270
[ 1482.535766]  do_wp_page+0x57d/0x10b0
[ 1482.539499]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1482.544179]  ? kasan_check_write+0x14/0x20
[ 1482.548419]  ? do_raw_spin_lock+0xd7/0x250
[ 1482.552939]  __handle_mm_fault+0x2305/0x3f80
[ 1482.557383]  ? copy_page_range+0x2030/0x2030
[ 1482.561828]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1482.566508]  handle_mm_fault+0x1b5/0x690
[ 1482.570586]  __get_user_pages+0x609/0x1860
[ 1482.574843]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1482.579346]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1482.584201]  ? retint_kernel+0x2d/0x2d
[ 1482.588104]  populate_vma_page_range+0x20d/0x2a0
[ 1482.592876]  __mm_populate+0x204/0x380
[ 1482.596780]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1482.601718]  ? ns_capable_common+0x136/0x170
[ 1482.606145]  __x64_sys_mlockall+0x35c/0x520
[ 1482.610481]  do_syscall_64+0xfd/0x620
[ 1482.614294]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1482.619497] RIP: 0033:0x45af49
[ 1482.622701] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1482.641611] RSP: 002b:00007f12b257ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1482.649330] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
03:02:58 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, 0x0, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1482.656607] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1482.663890] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1482.671173] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f12b257f6d4
[ 1482.678451] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1482.755665] Task in /syz3 killed as a result of limit of /syz3
[ 1482.773626] memory: usage 307200kB, limit 307200kB, failcnt 2274
[ 1482.803802] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
03:02:58 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x0, 0x0)
accept4$bt_l2cap(0xffffffffffffffff, 0x0, &(0x7f0000000140), 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1482.903653] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1482.935702] Memory cgroup stats for /syz3: cache:76KB rss:296324KB rss_huge:157696KB shmem:0KB mapped_file:132KB dirty:132KB writeback:0KB swap:0KB inactive_anon:128088KB active_anon:2580KB inactive_file:0KB active_file:4KB unevictable:165792KB
[ 1483.026126] Memory cgroup out of memory: Kill process 2174 (syz-executor.3) score 1226 or sacrifice child
[ 1483.056044] Killed process 2191 (syz-executor.3) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1483.221898] syz-executor.2 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1483.273871] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[ 1483.321636] CPU: 0 PID: 2196 Comm: syz-executor.2 Not tainted 4.19.95-syzkaller #0
[ 1483.329390] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1483.338757] Call Trace:
[ 1483.341386]  dump_stack+0x197/0x210
[ 1483.345046]  dump_header+0x15e/0xa55
[ 1483.348774]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1483.353888]  ? ___ratelimit+0x60/0x595
[ 1483.357783]  ? do_raw_spin_unlock+0x181/0x270
[ 1483.362294]  oom_kill_process.cold+0x10/0x6ef
[ 1483.366819]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1483.372451]  ? task_will_free_mem+0x139/0x6e0
[ 1483.376965]  out_of_memory+0x362/0x1330
[ 1483.380973]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1483.386105]  ? oom_killer_disable+0x280/0x280
[ 1483.390632]  ? find_held_lock+0x35/0x130
[ 1483.394726]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1483.399583]  ? memcg_event_wake+0x230/0x230
[ 1483.403921]  ? do_raw_spin_unlock+0x181/0x270
[ 1483.408426]  ? _raw_spin_unlock+0x2d/0x50
[ 1483.412586]  try_charge+0xec5/0x1490
[ 1483.416319]  ? lock_downgrade+0x880/0x880
[ 1483.420481]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1483.425332]  ? rcu_read_unlock+0x33/0x60
[ 1483.429397]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1483.434251]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1483.440317]  ? mark_held_locks+0x100/0x100
[ 1483.444568]  mem_cgroup_try_charge+0x259/0x6b0
[ 1483.449183]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1483.454125]  __handle_mm_fault+0x1e50/0x3f80
[ 1483.458651]  ? copy_page_range+0x2030/0x2030
[ 1483.463093]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1483.467774]  handle_mm_fault+0x1b5/0x690
[ 1483.471853]  __get_user_pages+0x609/0x1860
[ 1483.476112]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1483.480628]  ? lock_acquire+0x16f/0x3f0
[ 1483.484607]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1483.490171]  populate_vma_page_range+0x20d/0x2a0
[ 1483.494952]  __mm_populate+0x204/0x380
[ 1483.498857]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1483.503812]  __x64_sys_mlockall+0x35c/0x520
[ 1483.508410]  do_syscall_64+0xfd/0x620
[ 1483.512227]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1483.517425] RIP: 0033:0x45af49
[ 1483.520639] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1483.539553] RSP: 002b:00007f66bf404c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1483.547907] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1483.555199] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1483.562576] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1483.569854] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f66bf4056d4
[ 1483.577128] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
03:02:59 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, 0x0, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

03:03:00 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

[ 1485.262090] Task in /syz2 killed as a result of limit of /syz2
[ 1485.291161] memory: usage 307160kB, limit 307200kB, failcnt 1083
[ 1485.345620] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1485.365594] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1485.385584] Memory cgroup stats for /syz2: cache:124KB rss:296844KB rss_huge:198656KB shmem:0KB mapped_file:0KB dirty:0KB writeback:0KB swap:0KB inactive_anon:95296KB active_anon:2264KB inactive_file:0KB active_file:4KB unevictable:199404KB
[ 1485.421802] Memory cgroup out of memory: Kill process 2024 (syz-executor.2) score 1163 or sacrifice child
[ 1485.450014] Killed process 2024 (syz-executor.2) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
03:03:01 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x0, 0x0)
accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000100), 0x0, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1485.540884] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1485.554080] oom_reaper: reaped process 2024 (syz-executor.2), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[ 1485.581632] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1485.614693] CPU: 0 PID: 2204 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1485.623147] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1485.633038] Call Trace:
[ 1485.635652]  dump_stack+0x197/0x210
[ 1485.639339]  dump_header+0x15e/0xa55
[ 1485.643082]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1485.648228]  ? ___ratelimit+0x60/0x595
[ 1485.652137]  ? do_raw_spin_unlock+0x181/0x270
[ 1485.656661]  oom_kill_process.cold+0x10/0x6ef
[ 1485.661196]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1485.666779]  ? task_will_free_mem+0x139/0x6e0
[ 1485.671319]  out_of_memory+0x362/0x1330
[ 1485.675334]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1485.680468]  ? oom_killer_disable+0x280/0x280
[ 1485.685026]  ? find_held_lock+0x35/0x130
[ 1485.689158]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1485.694087]  ? memcg_event_wake+0x230/0x230
[ 1485.698467]  ? do_raw_spin_unlock+0x181/0x270
[ 1485.702995]  ? _raw_spin_unlock+0x2d/0x50
[ 1485.707181]  try_charge+0xec5/0x1490
[ 1485.710934]  ? lock_downgrade+0x880/0x880
[ 1485.715135]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1485.720013]  ? rcu_read_unlock+0x33/0x60
[ 1485.724102]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1485.728982]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1485.735089]  mem_cgroup_try_charge+0x259/0x6b0
[ 1485.739713]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1485.744680]  __handle_mm_fault+0x1e50/0x3f80
[ 1485.749129]  ? copy_page_range+0x2030/0x2030
[ 1485.753611]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1485.758315]  handle_mm_fault+0x1b5/0x690
[ 1485.762697]  __get_user_pages+0x609/0x1860
[ 1485.767071]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1485.771618]  ? lock_acquire+0x16f/0x3f0
[ 1485.775622]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1485.781204]  populate_vma_page_range+0x20d/0x2a0
[ 1485.786005]  __mm_populate+0x204/0x380
[ 1485.789937]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1485.794922]  __x64_sys_mlockall+0x35c/0x520
[ 1485.799282]  do_syscall_64+0xfd/0x620
[ 1485.803120]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1485.808333] RIP: 0033:0x45af49
[ 1485.811547] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
03:03:01 executing program 3:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1485.830483] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1485.838490] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1485.845779] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1485.853066] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1485.860352] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1485.867637] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1486.020298] Task in /syz1 killed as a result of limit of /syz1
[ 1486.031015] memory: usage 307168kB, limit 307200kB, failcnt 26488
[ 1486.088494] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1486.112725] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
03:03:01 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, 0x0, 0x400080, 0x0)
chown(0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1486.145641] Memory cgroup stats for /syz1: cache:96KB rss:296520KB rss_huge:225280KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:119820KB active_anon:12996KB inactive_file:0KB active_file:4KB unevictable:163852KB
03:03:02 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

[ 1486.296260] Memory cgroup out of memory: Kill process 2100 (syz-executor.1) score 1163 or sacrifice child
[ 1486.390248] Killed process 2100 (syz-executor.1) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1486.460717] syz-executor.0 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1486.501334] syz-executor.0 cpuset=syz0 mems_allowed=0-1
[ 1486.553826] CPU: 1 PID: 2212 Comm: syz-executor.0 Not tainted 4.19.95-syzkaller #0
[ 1486.561575] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1486.570940] Call Trace:
[ 1486.573545]  dump_stack+0x197/0x210
[ 1486.577187]  dump_header+0x15e/0xa55
[ 1486.580936]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1486.586050]  ? ___ratelimit+0x60/0x595
[ 1486.589945]  ? do_raw_spin_unlock+0x181/0x270
[ 1486.594469]  oom_kill_process.cold+0x10/0x6ef
[ 1486.598987]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1486.604574]  ? task_will_free_mem+0x139/0x6e0
[ 1486.609199]  out_of_memory+0x362/0x1330
[ 1486.613193]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1486.618312]  ? oom_killer_disable+0x280/0x280
[ 1486.622848]  ? find_held_lock+0x35/0x130
[ 1486.626937]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1486.631793]  ? memcg_event_wake+0x230/0x230
[ 1486.636129]  ? do_raw_spin_unlock+0x181/0x270
[ 1486.640654]  ? _raw_spin_unlock+0x2d/0x50
[ 1486.644816]  try_charge+0xec5/0x1490
[ 1486.648545]  ? lock_downgrade+0x880/0x880
[ 1486.652709]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1486.657563]  ? rcu_read_unlock+0x33/0x60
[ 1486.661631]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1486.666485]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1486.672556]  ? mark_held_locks+0x100/0x100
[ 1486.676811]  mem_cgroup_try_charge+0x259/0x6b0
[ 1486.681421]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1486.686368]  __handle_mm_fault+0x1e50/0x3f80
[ 1486.690789]  ? copy_page_range+0x2030/0x2030
[ 1486.695230]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1486.699912]  handle_mm_fault+0x1b5/0x690
[ 1486.704000]  __get_user_pages+0x609/0x1860
[ 1486.708258]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1486.712776]  ? lock_acquire+0x16f/0x3f0
[ 1486.716760]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1486.722313]  populate_vma_page_range+0x20d/0x2a0
[ 1486.727104]  __mm_populate+0x204/0x380
[ 1486.731011]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1486.735963]  __x64_sys_mlockall+0x35c/0x520
[ 1486.740298]  do_syscall_64+0xfd/0x620
[ 1486.744131]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1486.749324] RIP: 0033:0x45af49
[ 1486.752538] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1486.773306] RSP: 002b:00007faf37e78c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1486.781027] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1486.788743] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1486.796017] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1486.803291] R10: 0000000000000000 R11: 0000000000000246 R12: 00007faf37e796d4
[ 1486.810565] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1486.867863] oom_reaper: reaped process 2100 (syz-executor.1), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
03:03:02 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, 0x0, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1487.927067] Task in /syz0 killed as a result of limit of /syz0
[ 1487.933140] memory: usage 307196kB, limit 307200kB, failcnt 355
[ 1487.939630] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1487.947481] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1487.953661] Memory cgroup stats for /syz0: cache:80KB rss:296964KB rss_huge:86016KB shmem:0KB mapped_file:132KB dirty:132KB writeback:0KB swap:0KB inactive_anon:208084KB active_anon:2664KB inactive_file:4KB active_file:8KB unevictable:86284KB
[ 1487.975490] Memory cgroup out of memory: Kill process 1935 (syz-executor.0) score 1163 or sacrifice child
[ 1487.985278] Killed process 1935 (syz-executor.0) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1488.077739] oom_reaper: reaped process 1935 (syz-executor.0), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[ 1488.260042] syz-executor.3 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1488.273025] syz-executor.3 cpuset=syz3 mems_allowed=0-1
[ 1488.280371] CPU: 1 PID: 2227 Comm: syz-executor.3 Not tainted 4.19.95-syzkaller #0
[ 1488.289260] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1488.299282] Call Trace:
[ 1488.301986]  dump_stack+0x197/0x210
[ 1488.305842]  dump_header+0x15e/0xa55
[ 1488.309603]  oom_kill_process.cold+0x10/0x6ef
[ 1488.314195]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1488.319759]  ? task_will_free_mem+0x139/0x6e0
[ 1488.324333]  ? find_held_lock+0x35/0x130
[ 1488.328867]  out_of_memory+0x362/0x1330
[ 1488.334815]  ? lock_downgrade+0x880/0x880
[ 1488.338998]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1488.344123]  ? oom_killer_disable+0x280/0x280
[ 1488.348635]  ? find_held_lock+0x35/0x130
[ 1488.352737]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1488.357692]  ? memcg_event_wake+0x230/0x230
[ 1488.362046]  ? do_raw_spin_unlock+0x181/0x270
[ 1488.366746]  ? _raw_spin_unlock+0x2d/0x50
[ 1488.370924]  try_charge+0xec5/0x1490
[ 1488.374657]  ? lock_downgrade+0x880/0x880
[ 1488.378831]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1488.383696]  ? rcu_read_unlock+0x33/0x60
[ 1488.387771]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1488.392650]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1488.398752]  mem_cgroup_try_charge+0x259/0x6b0
[ 1488.403452]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1488.408400]  wp_page_copy+0x430/0x16a0
[ 1488.412751]  ? follow_pfn+0x2a0/0x2a0
[ 1488.416740]  ? do_raw_spin_unlock+0x181/0x270
[ 1488.421597]  do_wp_page+0x57d/0x10b0
[ 1488.425325]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1488.430002]  ? kasan_check_write+0x14/0x20
[ 1488.434249]  ? do_raw_spin_lock+0xd7/0x250
[ 1488.438497]  __handle_mm_fault+0x2305/0x3f80
[ 1488.442948]  ? copy_page_range+0x2030/0x2030
[ 1488.447391]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1488.452090]  handle_mm_fault+0x1b5/0x690
[ 1488.456172]  __get_user_pages+0x609/0x1860
03:03:04 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x0, 0x0)
accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000100), 0x0, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:03:04 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, 0x0, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

[ 1488.460613]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1488.466010]  ? lock_acquire+0x1ea/0x3f0
[ 1488.470018]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1488.475606]  populate_vma_page_range+0x20d/0x2a0
[ 1488.480407]  __mm_populate+0x204/0x380
[ 1488.484422]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1488.490072]  ? ns_capable_common+0x89/0x170
[ 1488.494481]  __x64_sys_mlockall+0x35c/0x520
[ 1488.498911]  do_syscall_64+0xfd/0x620
[ 1488.502740]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1488.507955] RIP: 0033:0x45af49
[ 1488.511169] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1488.531419] RSP: 002b:00007f12b257ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1488.531440] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1488.546461] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1488.553754] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1488.562000] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f12b257f6d4
[ 1488.569297] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
03:03:04 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, 0x0, 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:03:04 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

03:03:05 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1489.979892] Task in /syz3 killed as a result of limit of /syz3
[ 1490.052489] memory: usage 305536kB, limit 307200kB, failcnt 2289
[ 1490.125141] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1490.164522] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1490.207737] Memory cgroup stats for /syz3: cache:76KB rss:294912KB rss_huge:157696KB shmem:0KB mapped_file:132KB dirty:132KB writeback:0KB swap:0KB inactive_anon:126556KB active_anon:2580KB inactive_file:0KB active_file:4KB unevictable:165792KB
[ 1490.351161] Memory cgroup out of memory: Kill process 2226 (syz-executor.3) score 1226 or sacrifice child
[ 1490.407968] Killed process 2227 (syz-executor.3) total-vm:72720kB, anon-rss:18336kB, file-rss:54368kB, shmem-rss:0kB
03:03:06 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, 0x0, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

[ 1490.467287] oom_reaper: reaped process 2227 (syz-executor.3), now anon-rss:18336kB, file-rss:54360kB, shmem-rss:0kB
[ 1490.480719] syz-executor.2 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1490.549190] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[ 1490.592708] CPU: 1 PID: 2253 Comm: syz-executor.2 Not tainted 4.19.95-syzkaller #0
[ 1490.600565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1490.609924] Call Trace:
[ 1490.612521]  dump_stack+0x197/0x210
[ 1490.616163]  dump_header+0x15e/0xa55
[ 1490.619890]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1490.625000]  ? ___ratelimit+0x60/0x595
[ 1490.628893]  ? do_raw_spin_unlock+0x181/0x270
[ 1490.633406]  oom_kill_process.cold+0x10/0x6ef
[ 1490.637914]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1490.643474]  ? task_will_free_mem+0x139/0x6e0
[ 1490.647992]  out_of_memory+0x362/0x1330
[ 1490.651980]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1490.657096]  ? oom_killer_disable+0x280/0x280
[ 1490.661601]  ? find_held_lock+0x35/0x130
[ 1490.665689]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1490.670541]  ? memcg_event_wake+0x230/0x230
[ 1490.674971]  ? do_raw_spin_unlock+0x181/0x270
[ 1490.679485]  ? _raw_spin_unlock+0x2d/0x50
[ 1490.683660]  try_charge+0xec5/0x1490
[ 1490.687393]  ? lock_downgrade+0x880/0x880
[ 1490.691654]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1490.696527]  ? rcu_read_unlock+0x33/0x60
[ 1490.700612]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1490.705511]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1490.711601]  ? mark_held_locks+0x100/0x100
[ 1490.715867]  mem_cgroup_try_charge+0x259/0x6b0
[ 1490.720574]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1490.725520]  __handle_mm_fault+0x1e50/0x3f80
[ 1490.729950]  ? copy_page_range+0x2030/0x2030
[ 1490.734484]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1490.739168]  handle_mm_fault+0x1b5/0x690
[ 1490.743263]  __get_user_pages+0x609/0x1860
[ 1490.747559]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1490.752104]  ? lock_acquire+0x16f/0x3f0
[ 1490.756096]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1490.761678]  populate_vma_page_range+0x20d/0x2a0
[ 1490.766463]  __mm_populate+0x204/0x380
[ 1490.770378]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1490.775330]  __x64_sys_mlockall+0x35c/0x520
[ 1490.779671]  do_syscall_64+0xfd/0x620
[ 1490.783490]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1490.788691] RIP: 0033:0x45af49
[ 1490.791896] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1490.810811] RSP: 002b:00007f66bf404c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1490.818552] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1490.825837] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1490.833131] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1490.840410] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f66bf4056d4
[ 1490.847704] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1491.145254] Task in /syz2 killed as a result of limit of /syz2
[ 1491.151498] memory: usage 307200kB, limit 307200kB, failcnt 1108
[ 1491.157721] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1491.164489] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1491.170731] Memory cgroup stats for /syz2: cache:124KB rss:296904KB rss_huge:198656KB shmem:0KB mapped_file:0KB dirty:0KB writeback:0KB swap:0KB inactive_anon:95296KB active_anon:2264KB inactive_file:0KB active_file:4KB unevictable:199368KB
[ 1491.192428] Memory cgroup out of memory: Kill process 2081 (syz-executor.2) score 1163 or sacrifice child
[ 1491.202274] Killed process 2081 (syz-executor.2) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
03:03:07 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

[ 1491.316642] oom_reaper: reaped process 2081 (syz-executor.2), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[ 1491.327379] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1491.369973] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1491.394381] CPU: 1 PID: 2263 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1491.402137] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1491.411500] Call Trace:
[ 1491.414108]  dump_stack+0x197/0x210
[ 1491.417753]  dump_header+0x15e/0xa55
[ 1491.421489]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1491.426607]  ? ___ratelimit+0x60/0x595
[ 1491.430516]  ? do_raw_spin_unlock+0x181/0x270
[ 1491.435029]  oom_kill_process.cold+0x10/0x6ef
[ 1491.439546]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1491.445291]  ? task_will_free_mem+0x139/0x6e0
[ 1491.449815]  out_of_memory+0x362/0x1330
[ 1491.453819]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1491.468847]  ? oom_killer_disable+0x280/0x280
[ 1491.473380]  ? find_held_lock+0x35/0x130
[ 1491.477487]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1491.482408]  ? memcg_event_wake+0x230/0x230
[ 1491.486806]  ? do_raw_spin_unlock+0x181/0x270
[ 1491.491342]  ? _raw_spin_unlock+0x2d/0x50
[ 1491.495531]  try_charge+0xec5/0x1490
[ 1491.499273]  ? lock_downgrade+0x880/0x880
[ 1491.503449]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1491.508316]  ? rcu_read_unlock+0x33/0x60
[ 1491.512401]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1491.517277]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1491.523375]  ? mark_held_locks+0x100/0x100
[ 1491.527663]  mem_cgroup_try_charge+0x259/0x6b0
[ 1491.532277]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1491.537234]  __handle_mm_fault+0x1e50/0x3f80
[ 1491.541678]  ? copy_page_range+0x2030/0x2030
[ 1491.546124]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1491.550823]  handle_mm_fault+0x1b5/0x690
[ 1491.554923]  __get_user_pages+0x609/0x1860
[ 1491.559199]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1491.563728]  ? lock_acquire+0x16f/0x3f0
[ 1491.567722]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1491.573382]  populate_vma_page_range+0x20d/0x2a0
[ 1491.578168]  __mm_populate+0x204/0x380
[ 1491.582081]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1491.587044]  __x64_sys_mlockall+0x35c/0x520
[ 1491.591388]  do_syscall_64+0xfd/0x620
[ 1491.595214]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1491.600416] RIP: 0033:0x45af49
03:03:07 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x0, 0x0)
accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000100), 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:03:07 executing program 3:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1491.603622] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1491.622548] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1491.630279] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1491.637562] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1491.644842] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1491.652125] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1491.659416] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1491.737468] Task in /syz1 killed as a result of limit of /syz1
[ 1491.743667] memory: usage 307200kB, limit 307200kB, failcnt 26509
[ 1491.754860] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1491.764726] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1491.778548] Memory cgroup stats for /syz1: cache:96KB rss:296520KB rss_huge:225280KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:119820KB active_anon:12996KB inactive_file:4KB active_file:0KB unevictable:163792KB
[ 1491.824896] Memory cgroup out of memory: Kill process 2193 (syz-executor.1) score 1163 or sacrifice child
[ 1491.840692] Killed process 2193 (syz-executor.1) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1491.960464] oom_reaper: reaped process 2193 (syz-executor.1), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[ 1491.971332] syz-executor.0 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1492.008392] syz-executor.0 cpuset=syz0 mems_allowed=0-1
[ 1492.039662] CPU: 1 PID: 2269 Comm: syz-executor.0 Not tainted 4.19.95-syzkaller #0
[ 1492.047426] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1492.056786] Call Trace:
[ 1492.059389]  dump_stack+0x197/0x210
[ 1492.063031]  dump_header+0x15e/0xa55
[ 1492.066760]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1492.071878]  ? ___ratelimit+0x60/0x595
[ 1492.075783]  ? do_raw_spin_unlock+0x181/0x270
[ 1492.080298]  oom_kill_process.cold+0x10/0x6ef
[ 1492.084810]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1492.090375]  ? task_will_free_mem+0x139/0x6e0
[ 1492.095088]  out_of_memory+0x362/0x1330
[ 1492.099128]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1492.104255]  ? oom_killer_disable+0x280/0x280
[ 1492.108765]  ? find_held_lock+0x35/0x130
[ 1492.112872]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1492.117742]  ? memcg_event_wake+0x230/0x230
[ 1492.122097]  ? do_raw_spin_unlock+0x181/0x270
[ 1492.126738]  ? _raw_spin_unlock+0x2d/0x50
[ 1492.130928]  try_charge+0xec5/0x1490
[ 1492.134688]  ? lock_downgrade+0x880/0x880
[ 1492.138885]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1492.143767]  ? rcu_read_unlock+0x33/0x60
[ 1492.147857]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1492.152719]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1492.158797]  ? mark_held_locks+0x100/0x100
[ 1492.163054]  mem_cgroup_try_charge+0x259/0x6b0
[ 1492.167656]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1492.172602]  __handle_mm_fault+0x1e50/0x3f80
[ 1492.177087]  ? copy_page_range+0x2030/0x2030
[ 1492.181527]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1492.186232]  handle_mm_fault+0x1b5/0x690
[ 1492.190317]  __get_user_pages+0x609/0x1860
[ 1492.194604]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1492.199147]  ? lock_acquire+0x16f/0x3f0
[ 1492.203135]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1492.208789]  populate_vma_page_range+0x20d/0x2a0
[ 1492.213568]  __mm_populate+0x204/0x380
[ 1492.217472]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1492.222427]  __x64_sys_mlockall+0x35c/0x520
[ 1492.226767]  do_syscall_64+0xfd/0x620
[ 1492.230584]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1492.235959] RIP: 0033:0x45af49
[ 1492.239176] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1492.259935] RSP: 002b:00007faf37e78c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1492.267656] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1492.274933] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1492.282223] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1492.289505] R10: 0000000000000000 R11: 0000000000000246 R12: 00007faf37e796d4
[ 1492.296785] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
03:03:08 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, 0x0, 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:03:09 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:03:09 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

[ 1493.707032] Task in /syz0 killed as a result of limit of /syz0
[ 1493.713123] memory: usage 307200kB, limit 307200kB, failcnt 421
[ 1493.719874] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1493.726827] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1493.732984] Memory cgroup stats for /syz0: cache:80KB rss:296896KB rss_huge:86016KB shmem:0KB mapped_file:132KB dirty:132KB writeback:0KB swap:0KB inactive_anon:208084KB active_anon:2664KB inactive_file:4KB active_file:4KB unevictable:86236KB
[ 1493.754808] Memory cgroup out of memory: Kill process 2007 (syz-executor.0) score 1163 or sacrifice child
[ 1493.764681] Killed process 2007 (syz-executor.0) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1493.856635] oom_reaper: reaped process 2007 (syz-executor.0), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[ 1494.054483] syz-executor.3 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1494.073020] syz-executor.3 cpuset=syz3 mems_allowed=0-1
[ 1494.080288] CPU: 1 PID: 2276 Comm: syz-executor.3 Not tainted 4.19.95-syzkaller #0
[ 1494.088376] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1494.114358] Call Trace:
[ 1494.116978]  dump_stack+0x197/0x210
[ 1494.120654]  dump_header+0x15e/0xa55
[ 1494.126055]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1494.131282]  ? ___ratelimit+0x60/0x595
[ 1494.135194]  ? do_raw_spin_unlock+0x181/0x270
[ 1494.139724]  oom_kill_process.cold+0x10/0x6ef
[ 1494.144429]  ? out_of_memory+0x14a/0x1330
[ 1494.148625]  out_of_memory+0x362/0x1330
[ 1494.152642]  ? lock_downgrade+0x880/0x880
[ 1494.156823]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1494.161954]  ? oom_killer_disable+0x280/0x280
[ 1494.166482]  ? find_held_lock+0x35/0x130
[ 1494.170589]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1494.175458]  ? memcg_event_wake+0x230/0x230
[ 1494.179805]  ? do_raw_spin_unlock+0x181/0x270
[ 1494.184338]  ? _raw_spin_unlock+0x2d/0x50
[ 1494.188519]  try_charge+0xec5/0x1490
[ 1494.192262]  ? lock_downgrade+0x880/0x880
[ 1494.196444]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1494.201311]  ? rcu_read_unlock+0x33/0x60
[ 1494.205389]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1494.210261]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1494.216362]  mem_cgroup_try_charge+0x259/0x6b0
[ 1494.221071]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1494.226038]  wp_page_copy+0x430/0x16a0
[ 1494.229971]  ? follow_pfn+0x2a0/0x2a0
[ 1494.233813]  ? do_raw_spin_unlock+0x181/0x270
[ 1494.238464]  do_wp_page+0x57d/0x10b0
[ 1494.242226]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1494.246950]  ? kasan_check_write+0x14/0x20
[ 1494.251215]  ? do_raw_spin_lock+0xd7/0x250
[ 1494.255479]  __handle_mm_fault+0x2305/0x3f80
[ 1494.259919]  ? copy_page_range+0x2030/0x2030
[ 1494.264384]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1494.269082]  handle_mm_fault+0x1b5/0x690
[ 1494.273174]  __get_user_pages+0x609/0x1860
[ 1494.277449]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1494.281979]  ? populate_vma_page_range+0x116/0x2a0
[ 1494.286939]  ? check_memory_region+0x112/0x190
[ 1494.291581]  populate_vma_page_range+0x20d/0x2a0
[ 1494.296378]  __mm_populate+0x204/0x380
[ 1494.300300]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1494.305260]  ? __x64_sys_mlockall+0x2e5/0x520
[ 1494.309793]  __x64_sys_mlockall+0x35c/0x520
[ 1494.314143]  do_syscall_64+0xfd/0x620
[ 1494.317974]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1494.323180] RIP: 0033:0x45af49
[ 1494.326403] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1494.345327] RSP: 002b:00007f12b257ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1494.353060] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
03:03:10 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, 0x0, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

03:03:10 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x0, 0x0)
accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000100), 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1494.360349] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1494.367636] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1494.374926] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f12b257f6d4
[ 1494.382215] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1494.396112] Task in /syz3 killed as a result of limit of /syz3
[ 1494.402583] memory: usage 307200kB, limit 307200kB, failcnt 2309
[ 1494.658977] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1494.741598] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1494.844860] Memory cgroup stats for /syz3: cache:76KB rss:294896KB rss_huge:157696KB shmem:0KB mapped_file:132KB dirty:132KB writeback:0KB swap:0KB inactive_anon:126560KB active_anon:2580KB inactive_file:0KB active_file:12KB unevictable:165792KB
03:03:10 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, 0x0, 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1495.036245] Memory cgroup out of memory: Kill process 2274 (syz-executor.3) score 1226 or sacrifice child
[ 1495.115176] Killed process 2276 (syz-executor.3) total-vm:72720kB, anon-rss:18336kB, file-rss:54368kB, shmem-rss:0kB
[ 1495.391928] syz-executor.2 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1495.485641] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[ 1495.532312] CPU: 0 PID: 2308 Comm: syz-executor.2 Not tainted 4.19.95-syzkaller #0
[ 1495.540068] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1495.550126] Call Trace:
[ 1495.552727]  dump_stack+0x197/0x210
[ 1495.556375]  dump_header+0x15e/0xa55
[ 1495.560106]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1495.565232]  ? ___ratelimit+0x60/0x595
[ 1495.569127]  ? do_raw_spin_unlock+0x181/0x270
[ 1495.573634]  oom_kill_process.cold+0x10/0x6ef
[ 1495.578145]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1495.583711]  ? task_will_free_mem+0x139/0x6e0
[ 1495.588215]  ? find_held_lock+0x35/0x130
[ 1495.592293]  out_of_memory+0x362/0x1330
[ 1495.596290]  ? lock_downgrade+0x880/0x880
[ 1495.600453]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1495.605566]  ? oom_killer_disable+0x280/0x280
[ 1495.610072]  ? find_held_lock+0x35/0x130
[ 1495.614154]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1495.619012]  ? memcg_event_wake+0x230/0x230
[ 1495.623371]  ? do_raw_spin_unlock+0x181/0x270
[ 1495.627899]  ? _raw_spin_unlock+0x2d/0x50
[ 1495.632172]  try_charge+0xec5/0x1490
[ 1495.635922]  ? lock_downgrade+0x880/0x880
[ 1495.640111]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1495.644984]  ? rcu_read_unlock+0x33/0x60
[ 1495.649056]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1495.653910]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1495.659981]  ? mark_held_locks+0x100/0x100
[ 1495.664318]  mem_cgroup_try_charge+0x259/0x6b0
[ 1495.668919]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1495.673858]  __handle_mm_fault+0x1e50/0x3f80
[ 1495.678293]  ? copy_page_range+0x2030/0x2030
[ 1495.682733]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1495.688649]  handle_mm_fault+0x1b5/0x690
[ 1495.692727]  __get_user_pages+0x609/0x1860
[ 1495.696987]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1495.701698]  ? lock_acquire+0x16f/0x3f0
[ 1495.705682]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1495.711236]  populate_vma_page_range+0x20d/0x2a0
[ 1495.716010]  __mm_populate+0x204/0x380
[ 1495.719914]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1495.724862]  __x64_sys_mlockall+0x35c/0x520
[ 1495.729197]  do_syscall_64+0xfd/0x620
[ 1495.733011]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1495.738218] RIP: 0033:0x45af49
[ 1495.741420] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1495.760420] RSP: 002b:00007f66bf404c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1495.768136] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1495.775426] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1495.782714] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1495.789992] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f66bf4056d4
[ 1495.797271] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
03:03:11 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

[ 1496.434860] Task in /syz2 killed as a result of limit of /syz2
[ 1496.435377] cgroup: fork rejected by pids controller in /syz4
[ 1496.440950] memory: usage 307200kB, limit 307200kB, failcnt 1188
[ 1496.440962] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1496.440972] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1496.440984] Memory cgroup stats for /syz2: cache:124KB rss:296804KB rss_huge:198656KB shmem:0KB mapped_file:0KB dirty:0KB writeback:0KB swap:0KB inactive_anon:95296KB active_anon:2264KB inactive_file:0KB active_file:0KB unevictable:199372KB
[ 1496.488875] Memory cgroup out of memory: Kill process 2132 (syz-executor.2) score 1163 or sacrifice child
[ 1496.500440] Killed process 2132 (syz-executor.2) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
03:03:12 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1496.596658] oom_reaper: reaped process 2132 (syz-executor.2), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
03:03:12 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x0, 0x0)
accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000100), 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:03:13 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, 0x0, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

03:03:13 executing program 3:
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1498.026039] syz-executor.0 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1498.107413] syz-executor.0 cpuset=syz0 mems_allowed=0-1
[ 1498.145609] CPU: 0 PID: 2436 Comm: syz-executor.0 Not tainted 4.19.95-syzkaller #0
[ 1498.153380] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1498.162748] Call Trace:
[ 1498.165381]  dump_stack+0x197/0x210
[ 1498.169037]  dump_header+0x15e/0xa55
[ 1498.172771]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1498.177884]  ? ___ratelimit+0x60/0x595
[ 1498.181780]  ? do_raw_spin_unlock+0x181/0x270
[ 1498.186290]  oom_kill_process.cold+0x10/0x6ef
[ 1498.190804]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1498.196351]  ? task_will_free_mem+0x139/0x6e0
[ 1498.200874]  ? find_held_lock+0x35/0x130
[ 1498.204952]  out_of_memory+0x362/0x1330
[ 1498.208939]  ? lock_downgrade+0x880/0x880
[ 1498.213098]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1498.218209]  ? oom_killer_disable+0x280/0x280
[ 1498.222716]  ? find_held_lock+0x35/0x130
[ 1498.226818]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1498.231675]  ? memcg_event_wake+0x230/0x230
[ 1498.236017]  ? do_raw_spin_unlock+0x181/0x270
[ 1498.240525]  ? _raw_spin_unlock+0x2d/0x50
[ 1498.244688]  try_charge+0xec5/0x1490
[ 1498.248451]  ? lock_downgrade+0x880/0x880
[ 1498.252636]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1498.257507]  ? rcu_read_unlock+0x33/0x60
[ 1498.261592]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1498.266451]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1498.272524]  ? mark_held_locks+0x100/0x100
[ 1498.276784]  mem_cgroup_try_charge+0x259/0x6b0
[ 1498.281412]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1498.286381]  __handle_mm_fault+0x1e50/0x3f80
[ 1498.290825]  ? copy_page_range+0x2030/0x2030
[ 1498.295274]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1498.299968]  handle_mm_fault+0x1b5/0x690
[ 1498.304053]  __get_user_pages+0x609/0x1860
[ 1498.308316]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1498.312834]  ? lock_acquire+0x16f/0x3f0
[ 1498.316816]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1498.322370]  populate_vma_page_range+0x20d/0x2a0
[ 1498.327150]  __mm_populate+0x204/0x380
[ 1498.331054]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1498.336009]  __x64_sys_mlockall+0x35c/0x520
[ 1498.340347]  do_syscall_64+0xfd/0x620
[ 1498.344169]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1498.349364] RIP: 0033:0x45af49
[ 1498.352565] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1498.371490] RSP: 002b:00007faf37e78c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1498.379246] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1498.386528] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1498.393804] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1498.401176] R10: 0000000000000000 R11: 0000000000000246 R12: 00007faf37e796d4
[ 1498.408460] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
03:03:14 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

03:03:14 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, 0x0, 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1499.173058] Task in /syz0 killed as a result of limit of /syz0
[ 1499.179310] memory: usage 307192kB, limit 307200kB, failcnt 481
[ 1499.185706] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1499.192489] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1499.199145] Memory cgroup stats for /syz0: cache:80KB rss:296744KB rss_huge:86016KB shmem:0KB mapped_file:132KB dirty:132KB writeback:0KB swap:0KB inactive_anon:208084KB active_anon:2664KB inactive_file:0KB active_file:0KB unevictable:86152KB
[ 1499.230568] Memory cgroup out of memory: Kill process 2060 (syz-executor.0) score 1163 or sacrifice child
[ 1499.245053] Killed process 2060 (syz-executor.0) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1499.288532] oom_reaper: reaped process 2060 (syz-executor.0), now anon-rss:0kB, file-rss:34688kB, shmem-rss:0kB
03:03:15 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

03:03:15 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x0, 0x0)
accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000100), 0x0, 0x80000)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:03:15 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

03:03:15 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1500.298155] syz-executor.3 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1500.332208] syz-executor.3 cpuset=syz3 mems_allowed=0-1
[ 1500.348861] CPU: 1 PID: 2439 Comm: syz-executor.3 Not tainted 4.19.95-syzkaller #0
[ 1500.356626] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1500.366013] Call Trace:
[ 1500.368642]  dump_stack+0x197/0x210
[ 1500.372297]  dump_header+0x15e/0xa55
[ 1500.376035]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1500.381162]  ? ___ratelimit+0x60/0x595
[ 1500.385068]  ? do_raw_spin_unlock+0x181/0x270
[ 1500.389593]  oom_kill_process.cold+0x10/0x6ef
[ 1500.394126]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1500.399766]  ? task_will_free_mem+0x139/0x6e0
[ 1500.404294]  ? find_held_lock+0x35/0x130
[ 1500.408398]  out_of_memory+0x362/0x1330
[ 1500.414316]  ? lock_downgrade+0x880/0x880
[ 1500.418488]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1500.423640]  ? oom_killer_disable+0x280/0x280
[ 1500.428162]  ? find_held_lock+0x35/0x130
[ 1500.432252]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1500.437122]  ? memcg_event_wake+0x230/0x230
[ 1500.441479]  ? do_raw_spin_unlock+0x181/0x270
03:03:16 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

[ 1500.446116]  ? _raw_spin_unlock+0x2d/0x50
[ 1500.450358]  try_charge+0xec5/0x1490
[ 1500.454095]  ? lock_downgrade+0x880/0x880
[ 1500.458272]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1500.463137]  ? rcu_read_unlock+0x33/0x60
[ 1500.467215]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1500.472077]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1500.478168]  mem_cgroup_try_charge+0x259/0x6b0
[ 1500.482781]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1500.487730]  wp_page_copy+0x430/0x16a0
[ 1500.491646]  ? follow_pfn+0x2a0/0x2a0
[ 1500.495483]  do_wp_page+0x57d/0x10b0
[ 1500.499224]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1500.503918]  ? kasan_check_write+0x14/0x20
[ 1500.508188]  ? do_raw_spin_lock+0xd7/0x250
[ 1500.512455]  __handle_mm_fault+0x2305/0x3f80
[ 1500.516887]  ? copy_page_range+0x2030/0x2030
[ 1500.521326]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1500.526028]  handle_mm_fault+0x1b5/0x690
[ 1500.530124]  __get_user_pages+0x609/0x1860
[ 1500.534408]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1500.538927]  ? retint_kernel+0x2d/0x2d
[ 1500.542849]  ? populate_vma_page_range+0x37/0x2a0
[ 1500.547723]  populate_vma_page_range+0x20d/0x2a0
[ 1500.552512]  __mm_populate+0x204/0x380
[ 1500.556432]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1500.561410]  __x64_sys_mlockall+0x35c/0x520
[ 1500.565760]  do_syscall_64+0xfd/0x620
[ 1500.569581]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1500.574784] RIP: 0033:0x45af49
[ 1500.577995] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1500.596915] RSP: 002b:00007f12b257ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1500.604646] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1500.611939] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1500.619229] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1500.626526] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f12b257f6d4
[ 1500.633812] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
03:03:16 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, 0x0, 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:03:16 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, 0x0, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

[ 1500.915381] Task in /syz3 killed as a result of limit of /syz3
[ 1500.922895] memory: usage 307196kB, limit 307200kB, failcnt 2351
[ 1500.929833] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1500.937333] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1500.944012] Memory cgroup stats for /syz3: cache:76KB rss:296356KB rss_huge:157696KB shmem:0KB mapped_file:132KB dirty:132KB writeback:0KB swap:0KB inactive_anon:128172KB active_anon:2580KB inactive_file:0KB active_file:4KB unevictable:165792KB
03:03:16 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x0, 0x0)
accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000100), 0x0, 0x80000)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1500.966854] Memory cgroup out of memory: Kill process 2438 (syz-executor.3) score 1226 or sacrifice child
[ 1500.992076] Killed process 2561 (syz-executor.3) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1501.014986] oom_reaper: reaped process 2561 (syz-executor.3), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[ 1501.058029] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1501.175869] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1501.181555] CPU: 1 PID: 2750 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1501.189281] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1501.198654] Call Trace:
[ 1501.201259]  dump_stack+0x197/0x210
[ 1501.204909]  dump_header+0x15e/0xa55
[ 1501.208637]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1501.213752]  ? ___ratelimit+0x60/0x595
[ 1501.217647]  ? do_raw_spin_unlock+0x181/0x270
[ 1501.222153]  oom_kill_process.cold+0x10/0x6ef
[ 1501.226661]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1501.232205]  ? task_will_free_mem+0x139/0x6e0
[ 1501.236717]  out_of_memory+0x362/0x1330
[ 1501.240706]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1501.245829]  ? oom_killer_disable+0x280/0x280
[ 1501.250340]  ? find_held_lock+0x35/0x130
[ 1501.254424]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1501.259280]  ? memcg_event_wake+0x230/0x230
[ 1501.263618]  ? do_raw_spin_unlock+0x181/0x270
[ 1501.268157]  ? _raw_spin_unlock+0x2d/0x50
[ 1501.272319]  try_charge+0xec5/0x1490
[ 1501.276045]  ? lock_downgrade+0x880/0x880
[ 1501.280213]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1501.285065]  ? rcu_read_unlock+0x33/0x60
[ 1501.289134]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1501.294002]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1501.300083]  mem_cgroup_try_charge+0x259/0x6b0
[ 1501.304686]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1501.309646]  __handle_mm_fault+0x1e50/0x3f80
[ 1501.314071]  ? copy_page_range+0x2030/0x2030
[ 1501.318514]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1501.323199]  handle_mm_fault+0x1b5/0x690
[ 1501.327277]  __get_user_pages+0x609/0x1860
[ 1501.331537]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1501.336055]  ? lock_acquire+0x16f/0x3f0
[ 1501.340034]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1501.346376]  populate_vma_page_range+0x20d/0x2a0
[ 1501.351148]  __mm_populate+0x204/0x380
[ 1501.355116]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1501.360090]  __x64_sys_mlockall+0x35c/0x520
[ 1501.364537]  do_syscall_64+0xfd/0x620
[ 1501.368366]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1501.373565] RIP: 0033:0x45af49
[ 1501.376770] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1501.395679] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1501.403398] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1501.410683] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1501.417961] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1501.425238] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1501.432516] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
03:03:17 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x0, 0x0)
accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000100), 0x0, 0x80000)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1501.560067] Task in /syz1 killed as a result of limit of /syz1
[ 1501.566224] memory: usage 307200kB, limit 307200kB, failcnt 26551
[ 1501.572469] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1501.579392] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1501.585857] Memory cgroup stats for /syz1: cache:96KB rss:296472KB rss_huge:225280KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:119820KB active_anon:12996KB inactive_file:0KB active_file:0KB unevictable:163784KB
[ 1501.607895] Memory cgroup out of memory: Kill process 2258 (syz-executor.1) score 1163 or sacrifice child
[ 1501.617938] Killed process 2258 (syz-executor.1) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1501.645941] syz-executor.2 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1501.686583] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[ 1501.692316] CPU: 0 PID: 2886 Comm: syz-executor.2 Not tainted 4.19.95-syzkaller #0
[ 1501.700084] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1501.700091] Call Trace:
[ 1501.700115]  dump_stack+0x197/0x210
[ 1501.700139]  dump_header+0x15e/0xa55
[ 1501.700156]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1501.700175]  ? ___ratelimit+0x60/0x595
[ 1501.728457]  ? do_raw_spin_unlock+0x181/0x270
[ 1501.732980]  oom_kill_process.cold+0x10/0x6ef
[ 1501.737498]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1501.743063]  ? task_will_free_mem+0x139/0x6e0
[ 1501.747585]  out_of_memory+0x362/0x1330
[ 1501.751588]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1501.756710]  ? oom_killer_disable+0x280/0x280
[ 1501.757071] oom_reaper: reaped process 2258 (syz-executor.1), now anon-rss:0kB, file-rss:34688kB, shmem-rss:0kB
[ 1501.761306]  ? find_held_lock+0x35/0x130
[ 1501.761336]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1501.761360]  ? memcg_event_wake+0x230/0x230
[ 1501.784888]  ? do_raw_spin_unlock+0x181/0x270
[ 1501.789403]  ? _raw_spin_unlock+0x2d/0x50
[ 1501.793571]  try_charge+0xec5/0x1490
[ 1501.797433]  ? lock_downgrade+0x880/0x880
[ 1501.801626]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1501.806498]  ? rcu_read_unlock+0x33/0x60
[ 1501.810576]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1501.815459]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1501.821533]  ? mark_held_locks+0x100/0x100
[ 1501.826013]  mem_cgroup_try_charge+0x259/0x6b0
[ 1501.830625]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1501.835586]  __handle_mm_fault+0x1e50/0x3f80
[ 1501.840026]  ? copy_page_range+0x2030/0x2030
[ 1501.844476]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1501.849174]  handle_mm_fault+0x1b5/0x690
[ 1501.853274]  __get_user_pages+0x609/0x1860
[ 1501.857541]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1501.862079]  ? lock_acquire+0x16f/0x3f0
[ 1501.866065]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1501.872579]  populate_vma_page_range+0x20d/0x2a0
[ 1501.877357]  __mm_populate+0x204/0x380
[ 1501.881263]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1501.886221]  __x64_sys_mlockall+0x35c/0x520
[ 1501.890556]  do_syscall_64+0xfd/0x620
[ 1501.894376]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1501.900003] RIP: 0033:0x45af49
[ 1501.903202] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1501.922113] RSP: 002b:00007f66bf404c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1501.929839] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1501.937118] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1501.944401] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1501.951683] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f66bf4056d4
[ 1501.958969] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1502.154310] Task in /syz2 killed as a result of limit of /syz2
[ 1502.160437] memory: usage 307200kB, limit 307200kB, failcnt 1219
[ 1502.167177] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1502.173965] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1502.180853] Memory cgroup stats for /syz2: cache:124KB rss:296764KB rss_huge:198656KB shmem:0KB mapped_file:0KB dirty:0KB writeback:0KB swap:0KB inactive_anon:95296KB active_anon:2264KB inactive_file:8KB active_file:0KB unevictable:199356KB
03:03:17 executing program 3:
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1502.234790] Memory cgroup out of memory: Kill process 2185 (syz-executor.2) score 1163 or sacrifice child
[ 1502.262001] Killed process 2185 (syz-executor.2) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
03:03:18 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x0, 0x0)
accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000100), 0x0, 0x80000)
perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:03:18 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

[ 1502.684005] oom_reaper: reaped process 2185 (syz-executor.2), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[ 1502.695184] syz-executor.0 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1502.712098] syz-executor.0 cpuset=syz0 mems_allowed=0-1
[ 1502.717611] CPU: 1 PID: 2889 Comm: syz-executor.0 Not tainted 4.19.95-syzkaller #0
[ 1502.725420] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1502.734794] Call Trace:
[ 1502.737413]  dump_stack+0x197/0x210
[ 1502.741073]  dump_header+0x15e/0xa55
[ 1502.744824]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1502.750055]  ? ___ratelimit+0x60/0x595
[ 1502.753969]  ? do_raw_spin_unlock+0x181/0x270
[ 1502.758500]  oom_kill_process.cold+0x10/0x6ef
[ 1502.763023]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1502.768585]  ? task_will_free_mem+0x139/0x6e0
[ 1502.773112]  out_of_memory+0x362/0x1330
[ 1502.777118]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1502.782241]  ? oom_killer_disable+0x280/0x280
[ 1502.786760]  ? find_held_lock+0x35/0x130
[ 1502.790857]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1502.795719]  ? memcg_event_wake+0x230/0x230
[ 1502.800075]  ? do_raw_spin_unlock+0x181/0x270
[ 1502.804591]  ? _raw_spin_unlock+0x2d/0x50
[ 1502.808876]  try_charge+0xec5/0x1490
[ 1502.812612]  ? lock_downgrade+0x880/0x880
[ 1502.816790]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1502.821669]  ? rcu_read_unlock+0x33/0x60
[ 1502.825756]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1502.830639]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1502.836729]  ? mark_held_locks+0x100/0x100
[ 1502.841004]  mem_cgroup_try_charge+0x259/0x6b0
[ 1502.845618]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1502.850577]  __handle_mm_fault+0x1e50/0x3f80
[ 1502.855013]  ? copy_page_range+0x2030/0x2030
[ 1502.859465]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1502.864163]  handle_mm_fault+0x1b5/0x690
[ 1502.868266]  __get_user_pages+0x609/0x1860
[ 1502.872537]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1502.877065]  ? lock_acquire+0x16f/0x3f0
[ 1502.881064]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1502.886632]  populate_vma_page_range+0x20d/0x2a0
[ 1502.891423]  __mm_populate+0x204/0x380
[ 1502.895604]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1502.900570]  __x64_sys_mlockall+0x35c/0x520
[ 1502.904925]  do_syscall_64+0xfd/0x620
[ 1502.908754]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1502.913957] RIP: 0033:0x45af49
[ 1502.917164] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1502.937035] RSP: 002b:00007faf37e78c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1502.944768] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1502.952324] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1502.959613] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1502.966901] R10: 0000000000000000 R11: 0000000000000246 R12: 00007faf37e796d4
[ 1502.974213] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
03:03:18 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x0, 0x0)
accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000100), 0x0, 0x80000)
perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1503.097125] Task in /syz0 killed as a result of limit of /syz0
[ 1503.110098] memory: usage 307200kB, limit 307200kB, failcnt 517
[ 1503.124069] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1503.131063] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1503.137417] Memory cgroup stats for /syz0: cache:80KB rss:296812KB rss_huge:86016KB shmem:0KB mapped_file:132KB dirty:132KB writeback:0KB swap:0KB inactive_anon:208084KB active_anon:2664KB inactive_file:8KB active_file:0KB unevictable:86088KB
[ 1503.159261] Memory cgroup out of memory: Kill process 2113 (syz-executor.0) score 1163 or sacrifice child
[ 1503.169334] Killed process 2113 (syz-executor.0) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1503.240602] oom_reaper: reaped process 2113 (syz-executor.0), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
03:03:19 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:03:19 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x0, 0x0)
accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000100), 0x0, 0x80000)
perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1504.108829] syz-executor.3 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1504.222407] syz-executor.3 cpuset=syz3 mems_allowed=0-1
[ 1504.272397] CPU: 0 PID: 3136 Comm: syz-executor.3 Not tainted 4.19.95-syzkaller #0
[ 1504.280254] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1504.289625] Call Trace:
[ 1504.292241]  dump_stack+0x197/0x210
[ 1504.295892]  dump_header+0x15e/0xa55
[ 1504.299635]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1504.304760]  ? ___ratelimit+0x60/0x595
[ 1504.308761]  ? do_raw_spin_unlock+0x181/0x270
[ 1504.313290]  oom_kill_process.cold+0x10/0x6ef
[ 1504.318433]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1504.323988]  ? task_will_free_mem+0x139/0x6e0
[ 1504.328512]  out_of_memory+0x362/0x1330
[ 1504.332505]  ? lock_downgrade+0x880/0x880
[ 1504.336668]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1504.341789]  ? oom_killer_disable+0x280/0x280
[ 1504.346299]  ? find_held_lock+0x35/0x130
[ 1504.350404]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1504.355281]  ? memcg_event_wake+0x230/0x230
[ 1504.359643]  ? do_raw_spin_unlock+0x181/0x270
[ 1504.364192]  ? _raw_spin_unlock+0x2d/0x50
[ 1504.368362]  try_charge+0xec5/0x1490
[ 1504.372092]  ? lock_downgrade+0x880/0x880
[ 1504.376263]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1504.381150]  ? rcu_read_unlock+0x33/0x60
[ 1504.385223]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1504.390223]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1504.396356]  mem_cgroup_try_charge+0x259/0x6b0
[ 1504.400981]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1504.405933]  wp_page_copy+0x430/0x16a0
[ 1504.409844]  ? retint_kernel+0x2d/0x2d
[ 1504.413754]  ? follow_pfn+0x2a0/0x2a0
[ 1504.417569]  ? do_raw_spin_unlock+0xf9/0x270
[ 1504.421975]  ? do_raw_spin_unlock+0x181/0x270
[ 1504.426469]  do_wp_page+0x57d/0x10b0
[ 1504.430187]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1504.435113]  ? kasan_check_write+0x14/0x20
[ 1504.439351]  ? do_raw_spin_lock+0xd7/0x250
[ 1504.443594]  __handle_mm_fault+0x2305/0x3f80
[ 1504.448012]  ? copy_page_range+0x2030/0x2030
[ 1504.452441]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1504.457117]  handle_mm_fault+0x1b5/0x690
[ 1504.461193]  __get_user_pages+0x609/0x1860
[ 1504.465435]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1504.469937]  ? retint_kernel+0x2d/0x2d
[ 1504.473828]  populate_vma_page_range+0x20d/0x2a0
[ 1504.478596]  __mm_populate+0x204/0x380
[ 1504.482487]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1504.487419]  __x64_sys_mlockall+0x35c/0x520
[ 1504.491738]  do_syscall_64+0xfd/0x620
[ 1504.495546]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1504.500728] RIP: 0033:0x45af49
[ 1504.503925] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
03:03:20 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, 0x0, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

03:03:20 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

[ 1504.522819] RSP: 002b:00007f12b257ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1504.530524] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1504.537786] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1504.545048] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1504.552319] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f12b257f6d4
[ 1504.559580] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1504.576148] Task in /syz3 killed as a result of limit of /syz3
[ 1504.582310] memory: usage 307200kB, limit 307200kB, failcnt 2366
03:03:20 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, 0x0, 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1504.625305] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1504.660867] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1504.694956] Memory cgroup stats for /syz3: cache:76KB rss:296488KB rss_huge:157696KB shmem:0KB mapped_file:132KB dirty:132KB writeback:0KB swap:0KB inactive_anon:128176KB active_anon:2580KB inactive_file:0KB active_file:4KB unevictable:165792KB
[ 1504.769791] Memory cgroup out of memory: Kill process 3135 (syz-executor.3) score 1226 or sacrifice child
[ 1504.787098] Killed process 3378 (syz-executor.3) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1504.860174] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1504.894964] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1504.922958] CPU: 0 PID: 3416 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1504.930863] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1504.940260] Call Trace:
[ 1504.942913]  dump_stack+0x197/0x210
[ 1504.946578]  dump_header+0x15e/0xa55
[ 1504.950321]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1504.955464]  ? ___ratelimit+0x60/0x595
[ 1504.959386]  ? do_raw_spin_unlock+0x181/0x270
[ 1504.963929]  oom_kill_process.cold+0x10/0x6ef
[ 1504.968463]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1504.974117]  ? task_will_free_mem+0x139/0x6e0
[ 1504.978666]  out_of_memory+0x362/0x1330
[ 1504.982689]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1504.987834]  ? oom_killer_disable+0x280/0x280
[ 1504.992367]  ? find_held_lock+0x35/0x130
[ 1504.996492]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1505.001373]  ? memcg_event_wake+0x230/0x230
[ 1505.005830]  ? do_raw_spin_unlock+0x181/0x270
[ 1505.010383]  ? _raw_spin_unlock+0x2d/0x50
[ 1505.014567]  try_charge+0xec5/0x1490
[ 1505.018323]  ? lock_downgrade+0x880/0x880
[ 1505.022521]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1505.028015]  ? rcu_read_unlock+0x33/0x60
[ 1505.032973]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1505.037848]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1505.043935]  ? mark_held_locks+0x100/0x100
[ 1505.048345]  mem_cgroup_try_charge+0x259/0x6b0
[ 1505.052971]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1505.057950]  __handle_mm_fault+0x1e50/0x3f80
[ 1505.062410]  ? copy_page_range+0x2030/0x2030
[ 1505.066908]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1505.071980]  handle_mm_fault+0x1b5/0x690
[ 1505.076087]  __get_user_pages+0x609/0x1860
[ 1505.080373]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1505.084934]  ? lock_acquire+0x16f/0x3f0
[ 1505.088939]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1505.094517]  populate_vma_page_range+0x20d/0x2a0
[ 1505.099320]  __mm_populate+0x204/0x380
[ 1505.103262]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1505.108261]  __x64_sys_mlockall+0x35c/0x520
[ 1505.112619]  do_syscall_64+0xfd/0x620
[ 1505.116467]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1505.121681] RIP: 0033:0x45af49
[ 1505.124893] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1505.143827] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1505.151567] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1505.158860] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1505.166154] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
03:03:20 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x0, 0x0)
accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000100), 0x0, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1505.173467] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1505.180801] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1505.325904] Task in /syz1 killed as a result of limit of /syz1
[ 1505.333480] memory: usage 307088kB, limit 307200kB, failcnt 26599
[ 1505.368652] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1505.422706] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1505.465637] Memory cgroup stats for /syz1: cache:96KB rss:296380KB rss_huge:225280KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:119820KB active_anon:12996KB inactive_file:4KB active_file:4KB unevictable:163700KB
[ 1505.509150] Memory cgroup out of memory: Kill process 2508 (syz-executor.1) score 1163 or sacrifice child
[ 1505.519098] Killed process 2508 (syz-executor.1) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1505.566847] syz-executor.0 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1505.604723] syz-executor.0 cpuset=syz0 mems_allowed=0-1
[ 1505.640607] CPU: 1 PID: 3557 Comm: syz-executor.0 Not tainted 4.19.95-syzkaller #0
[ 1505.648364] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1505.657727] Call Trace:
[ 1505.660330]  dump_stack+0x197/0x210
[ 1505.663975]  dump_header+0x15e/0xa55
[ 1505.667704]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1505.672819]  ? ___ratelimit+0x60/0x595
[ 1505.676728]  ? do_raw_spin_unlock+0x181/0x270
[ 1505.681242]  oom_kill_process.cold+0x10/0x6ef
[ 1505.685759]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1505.691308]  ? task_will_free_mem+0x139/0x6e0
[ 1505.695825]  out_of_memory+0x362/0x1330
[ 1505.699815]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1505.704942]  ? oom_killer_disable+0x280/0x280
[ 1505.709446]  ? find_held_lock+0x35/0x130
[ 1505.713534]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1505.718403]  ? memcg_event_wake+0x230/0x230
[ 1505.722742]  ? do_raw_spin_unlock+0x181/0x270
[ 1505.727277]  ? _raw_spin_unlock+0x2d/0x50
[ 1505.731455]  try_charge+0xec5/0x1490
[ 1505.735202]  ? lock_downgrade+0x880/0x880
[ 1505.739654]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1505.744543]  ? rcu_read_unlock+0x33/0x60
[ 1505.748630]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1505.753497]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1505.759576]  ? mark_held_locks+0x100/0x100
[ 1505.763926]  mem_cgroup_try_charge+0x259/0x6b0
[ 1505.768536]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1505.773484]  __handle_mm_fault+0x1e50/0x3f80
[ 1505.777910]  ? copy_page_range+0x2030/0x2030
[ 1505.782360]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1505.787056]  handle_mm_fault+0x1b5/0x690
[ 1505.791141]  __get_user_pages+0x609/0x1860
[ 1505.795411]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1505.799949]  ? lock_acquire+0x16f/0x3f0
[ 1505.803947]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1505.809521]  populate_vma_page_range+0x20d/0x2a0
[ 1505.814313]  __mm_populate+0x204/0x380
[ 1505.818235]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1505.823199]  __x64_sys_mlockall+0x35c/0x520
[ 1505.827553]  do_syscall_64+0xfd/0x620
[ 1505.831372]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1505.836577] RIP: 0033:0x45af49
[ 1505.839787] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1505.858708] RSP: 002b:00007faf37e78c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1505.866440] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1505.873728] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1505.881027] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1505.888312] R10: 0000000000000000 R11: 0000000000000246 R12: 00007faf37e796d4
[ 1505.895693] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1506.065661] Task in /syz0 killed as a result of limit of /syz0
[ 1506.071787] memory: usage 307200kB, limit 307200kB, failcnt 564
03:03:21 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x0, 0x0)
accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000100), 0x0, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1506.109513] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1506.172291] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1506.205639] Memory cgroup stats for /syz0: cache:80KB rss:296764KB rss_huge:86016KB shmem:0KB mapped_file:132KB dirty:132KB writeback:0KB swap:0KB inactive_anon:208084KB active_anon:2664KB inactive_file:0KB active_file:0KB unevictable:86120KB
[ 1506.309116] Memory cgroup out of memory: Kill process 2205 (syz-executor.0) score 1163 or sacrifice child
03:03:22 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x0, 0x0)
accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000100), 0x0, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1506.356459] Killed process 2205 (syz-executor.0) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1506.705868] oom_reaper: reaped process 2205 (syz-executor.0), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
03:03:22 executing program 3:
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:03:22 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

[ 1506.816872] syz-executor.0 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1506.828327] syz-executor.0 cpuset=syz0 mems_allowed=0-1
[ 1506.833727] CPU: 1 PID: 3557 Comm: syz-executor.0 Not tainted 4.19.95-syzkaller #0
[ 1506.841440] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1506.850807] Call Trace:
[ 1506.853421]  dump_stack+0x197/0x210
[ 1506.857078]  dump_header+0x15e/0xa55
[ 1506.860820]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1506.865943]  ? ___ratelimit+0x60/0x595
[ 1506.869854]  ? do_raw_spin_unlock+0x181/0x270
[ 1506.874397]  oom_kill_process.cold+0x10/0x6ef
[ 1506.878924]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1506.884600]  ? task_will_free_mem+0x139/0x6e0
[ 1506.889129]  ? find_held_lock+0x35/0x130
[ 1506.893230]  out_of_memory+0x362/0x1330
[ 1506.897237]  ? lock_downgrade+0x880/0x880
[ 1506.901417]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1506.906555]  ? oom_killer_disable+0x280/0x280
[ 1506.911081]  ? find_held_lock+0x35/0x130
[ 1506.915183]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1506.920057]  ? memcg_event_wake+0x230/0x230
[ 1506.924413]  ? do_raw_spin_unlock+0x181/0x270
[ 1506.928934]  ? _raw_spin_unlock+0x2d/0x50
[ 1506.933105]  try_charge+0xec5/0x1490
[ 1506.936932]  ? lock_downgrade+0x880/0x880
[ 1506.941116]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1506.945979]  ? rcu_read_unlock+0x33/0x60
[ 1506.950058]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1506.954926]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1506.961006]  ? mark_held_locks+0x100/0x100
[ 1506.965283]  mem_cgroup_try_charge+0x259/0x6b0
[ 1506.969895]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1506.974871]  __handle_mm_fault+0x1e50/0x3f80
[ 1506.979312]  ? copy_page_range+0x2030/0x2030
[ 1506.983762]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1506.988451]  handle_mm_fault+0x1b5/0x690
[ 1506.992546]  __get_user_pages+0x609/0x1860
[ 1506.996828]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1507.001366]  ? lock_acquire+0x16f/0x3f0
[ 1507.005362]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1507.010938]  populate_vma_page_range+0x20d/0x2a0
[ 1507.015729]  __mm_populate+0x204/0x380
[ 1507.019650]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1507.024618]  __x64_sys_mlockall+0x35c/0x520
[ 1507.028978]  do_syscall_64+0xfd/0x620
[ 1507.032806]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1507.038039] RIP: 0033:0x45af49
[ 1507.041250] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1507.060181] RSP: 002b:00007faf37e78c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1507.068265] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1507.075555] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1507.082850] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1507.090140] R10: 0000000000000000 R11: 0000000000000246 R12: 00007faf37e796d4
[ 1507.097427] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1507.136826] Task in /syz0 killed as a result of limit of /syz0
[ 1507.142884] memory: usage 302908kB, limit 307200kB, failcnt 575
[ 1507.176714] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1507.211938] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1507.231809] Memory cgroup stats for /syz0: cache:80KB rss:292688KB rss_huge:86016KB shmem:0KB mapped_file:132KB dirty:132KB writeback:0KB swap:0KB inactive_anon:189748KB active_anon:2664KB inactive_file:0KB active_file:0KB unevictable:100316KB
03:03:23 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x0, 0x0)
accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000100), 0x0, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1507.333294] Memory cgroup out of memory: Kill process 3541 (syz-executor.0) score 1163 or sacrifice child
03:03:23 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, 0x0, 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1507.381629] Killed process 3541 (syz-executor.0) total-vm:72588kB, anon-rss:16276kB, file-rss:37080kB, shmem-rss:0kB
[ 1507.405927] oom_reaper: reaped process 3541 (syz-executor.0), now anon-rss:16320kB, file-rss:37980kB, shmem-rss:0kB
03:03:23 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1507.769337] syz-executor.2 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
03:03:23 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, 0x0, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

[ 1507.843467] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[ 1507.904221] CPU: 0 PID: 3939 Comm: syz-executor.2 Not tainted 4.19.95-syzkaller #0
[ 1507.911977] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1507.921781] Call Trace:
[ 1507.924400]  dump_stack+0x197/0x210
[ 1507.928099]  dump_header+0x15e/0xa55
[ 1507.931834]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1507.936960]  ? ___ratelimit+0x60/0x595
[ 1507.940874]  ? do_raw_spin_unlock+0x181/0x270
[ 1507.945399]  oom_kill_process.cold+0x10/0x6ef
[ 1507.949926]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1507.955500]  ? task_will_free_mem+0x139/0x6e0
[ 1507.960011]  ? find_held_lock+0x35/0x130
[ 1507.964093]  out_of_memory+0x362/0x1330
[ 1507.968204]  ? lock_downgrade+0x880/0x880
[ 1507.972367]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1507.977496]  ? oom_killer_disable+0x280/0x280
[ 1507.982008]  ? find_held_lock+0x35/0x130
[ 1507.986113]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1507.990994]  ? memcg_event_wake+0x230/0x230
[ 1507.995337]  ? do_raw_spin_unlock+0x181/0x270
[ 1507.999894]  ? _raw_spin_unlock+0x2d/0x50
[ 1508.004081]  try_charge+0xec5/0x1490
[ 1508.007845]  ? lock_downgrade+0x880/0x880
[ 1508.012029]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1508.016914]  ? rcu_read_unlock+0x33/0x60
[ 1508.020983]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1508.025925]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1508.032002]  ? mark_held_locks+0x100/0x100
[ 1508.036258]  mem_cgroup_try_charge+0x259/0x6b0
[ 1508.040876]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1508.045833]  __handle_mm_fault+0x1e50/0x3f80
[ 1508.050277]  ? copy_page_range+0x2030/0x2030
[ 1508.054727]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1508.059429]  handle_mm_fault+0x1b5/0x690
[ 1508.063520]  __get_user_pages+0x609/0x1860
[ 1508.067799]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1508.072339]  ? lock_acquire+0x16f/0x3f0
[ 1508.076325]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1508.081895]  populate_vma_page_range+0x20d/0x2a0
[ 1508.086682]  __mm_populate+0x204/0x380
[ 1508.090607]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1508.095564]  __x64_sys_mlockall+0x35c/0x520
[ 1508.099903]  do_syscall_64+0xfd/0x620
[ 1508.103733]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1508.108937] RIP: 0033:0x45af49
[ 1508.112143] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1508.131062] RSP: 002b:00007f66bf404c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1508.138794] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1508.146078] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1508.153354] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1508.160630] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f66bf4056d4
[ 1508.167919] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
03:03:25 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

[ 1509.712933] Task in /syz2 killed as a result of limit of /syz2
[ 1509.731396] memory: usage 307180kB, limit 307200kB, failcnt 1256
[ 1509.737679] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1509.744455] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1509.750742] Memory cgroup stats for /syz2: cache:124KB rss:296780KB rss_huge:198656KB shmem:0KB mapped_file:0KB dirty:0KB writeback:0KB swap:0KB inactive_anon:95296KB active_anon:2264KB inactive_file:0KB active_file:0KB unevictable:199348KB
[ 1509.772519] Memory cgroup out of memory: Kill process 2240 (syz-executor.2) score 1163 or sacrifice child
[ 1509.782385] Killed process 2240 (syz-executor.2) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1509.848147] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1509.887901] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1509.942205] CPU: 0 PID: 3941 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1509.949961] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1509.959329] Call Trace:
[ 1509.961940]  dump_stack+0x197/0x210
[ 1509.965599]  dump_header+0x15e/0xa55
[ 1509.969336]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1509.974457]  ? ___ratelimit+0x60/0x595
[ 1509.978359]  ? do_raw_spin_unlock+0x181/0x270
[ 1509.982890]  oom_kill_process.cold+0x10/0x6ef
[ 1509.987412]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1509.992969]  ? task_will_free_mem+0x139/0x6e0
[ 1509.997503]  out_of_memory+0x362/0x1330
[ 1510.001559]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1510.006706]  ? oom_killer_disable+0x280/0x280
[ 1510.011227]  ? find_held_lock+0x35/0x130
[ 1510.015357]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1510.020352]  ? memcg_event_wake+0x230/0x230
[ 1510.025063]  ? do_raw_spin_unlock+0x181/0x270
[ 1510.029585]  ? _raw_spin_unlock+0x2d/0x50
[ 1510.033759]  try_charge+0xec5/0x1490
[ 1510.037492]  ? lock_downgrade+0x880/0x880
[ 1510.041673]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1510.046543]  ? rcu_read_unlock+0x33/0x60
[ 1510.050624]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1510.055491]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1510.061592]  mem_cgroup_try_charge+0x259/0x6b0
[ 1510.066212]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1510.071166]  __handle_mm_fault+0x1e50/0x3f80
[ 1510.075606]  ? copy_page_range+0x2030/0x2030
[ 1510.080076]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1510.084777]  handle_mm_fault+0x1b5/0x690
[ 1510.088878]  __get_user_pages+0x609/0x1860
[ 1510.093158]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1510.097694]  ? lock_acquire+0x16f/0x3f0
[ 1510.101688]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1510.107254]  populate_vma_page_range+0x20d/0x2a0
[ 1510.112041]  __mm_populate+0x204/0x380
[ 1510.115963]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1510.120948]  __x64_sys_mlockall+0x35c/0x520
[ 1510.125346]  do_syscall_64+0xfd/0x620
[ 1510.129199]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1510.134420] RIP: 0033:0x45af49
[ 1510.137648] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1510.156592] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1510.164320] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1510.171604] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1510.178902] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1510.186196] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1510.193511] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1510.203480] oom_reaper: reaped process 2240 (syz-executor.2), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
03:03:26 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x0, 0x0)
accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000100), 0x0, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1510.546594] Task in /syz1 killed as a result of limit of /syz1
[ 1510.552982] memory: usage 307196kB, limit 307200kB, failcnt 26630
[ 1510.570032] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1510.576924] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1510.583339] Memory cgroup stats for /syz1: cache:96KB rss:296584KB rss_huge:225280KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:119820KB active_anon:12996KB inactive_file:0KB active_file:0KB unevictable:163876KB
[ 1510.605237] Memory cgroup out of memory: Kill process 3270 (syz-executor.1) score 1163 or sacrifice child
[ 1510.615113] Killed process 3270 (syz-executor.1) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
03:03:26 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, 0x0, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mlockall(0x3)

[ 1510.913555] oom_reaper: reaped process 3270 (syz-executor.1), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
03:03:26 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, 0x0, 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1510.999999] syz-executor.0 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1511.110734] syz-executor.0 cpuset=syz0 mems_allowed=0-1
[ 1511.158304] CPU: 0 PID: 4157 Comm: syz-executor.0 Not tainted 4.19.95-syzkaller #0
[ 1511.166087] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1511.175444] Call Trace:
[ 1511.178048]  dump_stack+0x197/0x210
[ 1511.181706]  dump_header+0x15e/0xa55
[ 1511.185430]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1511.190544]  ? ___ratelimit+0x60/0x595
[ 1511.194483]  ? do_raw_spin_unlock+0x181/0x270
[ 1511.199019]  oom_kill_process.cold+0x10/0x6ef
[ 1511.203541]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1511.209197]  ? task_will_free_mem+0x139/0x6e0
[ 1511.213711]  ? find_held_lock+0x35/0x130
[ 1511.217797]  out_of_memory+0x362/0x1330
[ 1511.221792]  ? lock_downgrade+0x880/0x880
[ 1511.225951]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1511.231077]  ? oom_killer_disable+0x280/0x280
[ 1511.236019]  ? find_held_lock+0x35/0x130
[ 1511.240116]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1511.244977]  ? memcg_event_wake+0x230/0x230
[ 1511.249312]  ? do_raw_spin_unlock+0x181/0x270
[ 1511.253815]  ? _raw_spin_unlock+0x2d/0x50
[ 1511.257977]  try_charge+0xec5/0x1490
[ 1511.261699]  ? lock_downgrade+0x880/0x880
[ 1511.265865]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1511.270719]  ? rcu_read_unlock+0x33/0x60
[ 1511.274794]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1511.279648]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1511.285718]  ? mark_held_locks+0x100/0x100
[ 1511.289970]  mem_cgroup_try_charge+0x259/0x6b0
[ 1511.294568]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1511.299509]  __handle_mm_fault+0x1e50/0x3f80
[ 1511.303937]  ? copy_page_range+0x2030/0x2030
[ 1511.308379]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1511.313061]  handle_mm_fault+0x1b5/0x690
[ 1511.317164]  __get_user_pages+0x609/0x1860
[ 1511.321420]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1511.325929]  ? retint_kernel+0x2d/0x2d
[ 1511.329843]  populate_vma_page_range+0x20d/0x2a0
[ 1511.334633]  __mm_populate+0x204/0x380
[ 1511.338535]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1511.343500]  __x64_sys_mlockall+0x35c/0x520
[ 1511.347836]  do_syscall_64+0xfd/0x620
[ 1511.351736]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1511.356944] RIP: 0033:0x45af49
[ 1511.360156] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1511.379075] RSP: 002b:00007faf37e78c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1511.386796] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1511.394072] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1511.401482] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1511.408778] R10: 0000000000000000 R11: 0000000000000246 R12: 00007faf37e796d4
[ 1511.416062] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
03:03:27 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

[ 1512.939946] Task in /syz0 killed as a result of limit of /syz0
[ 1512.946060] memory: usage 307192kB, limit 307200kB, failcnt 603
[ 1512.952137] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1512.959018] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1512.965294] Memory cgroup stats for /syz0: cache:80KB rss:296680KB rss_huge:86016KB shmem:0KB mapped_file:132KB dirty:132KB writeback:0KB swap:0KB inactive_anon:208084KB active_anon:2664KB inactive_file:0KB active_file:4KB unevictable:86116KB
[ 1512.987110] Memory cgroup out of memory: Kill process 2260 (syz-executor.0) score 1163 or sacrifice child
[ 1512.996962] Killed process 2260 (syz-executor.0) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
03:03:28 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x0, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:03:29 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:03:29 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, 0x0, 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:03:29 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x0, 0x0)
accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000100), 0x0, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:03:32 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, 0x0, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mlockall(0x3)

03:03:33 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x0, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:03:33 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, 0x0, 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:03:33 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:03:33 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

03:03:33 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x0, 0x0)
accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000100), 0x0, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1517.690872] syz-executor.2 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1520.161098] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[ 1520.192322] CPU: 1 PID: 4441 Comm: syz-executor.2 Not tainted 4.19.95-syzkaller #0
[ 1520.200204] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1520.209584] Call Trace:
[ 1520.212414]  dump_stack+0x197/0x210
[ 1520.216078]  dump_header+0x15e/0xa55
[ 1520.219816]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1520.224945]  ? ___ratelimit+0x60/0x595
[ 1520.228853]  ? do_raw_spin_unlock+0x181/0x270
[ 1520.233375]  oom_kill_process.cold+0x10/0x6ef
[ 1520.237971]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1520.243627]  ? task_will_free_mem+0x139/0x6e0
[ 1520.248144]  ? find_held_lock+0x35/0x130
[ 1520.252236]  out_of_memory+0x362/0x1330
[ 1520.256237]  ? lock_downgrade+0x880/0x880
[ 1520.260510]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1520.265642]  ? oom_killer_disable+0x280/0x280
[ 1520.270155]  ? find_held_lock+0x35/0x130
[ 1520.274335]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1520.279198]  ? memcg_event_wake+0x230/0x230
[ 1520.283686]  ? do_raw_spin_unlock+0x181/0x270
[ 1520.288208]  ? _raw_spin_unlock+0x2d/0x50
[ 1520.292391]  try_charge+0xec5/0x1490
[ 1520.296223]  ? lock_downgrade+0x880/0x880
[ 1520.300666]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1520.305542]  ? rcu_read_unlock+0x33/0x60
[ 1520.309623]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1520.314497]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1520.320578]  ? mark_held_locks+0x100/0x100
[ 1520.324854]  mem_cgroup_try_charge+0x259/0x6b0
[ 1520.329469]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1520.334473]  __handle_mm_fault+0x1e50/0x3f80
[ 1520.338914]  ? copy_page_range+0x2030/0x2030
[ 1520.343370]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1520.349081]  ? sync_mm_rss+0xa4/0x1c0
[ 1520.352913]  handle_mm_fault+0x1b5/0x690
[ 1520.357355]  __get_user_pages+0x609/0x1860
[ 1520.361634]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1520.366256]  ? lock_acquire+0x16f/0x3f0
[ 1520.370254]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1520.375980]  populate_vma_page_range+0x20d/0x2a0
[ 1520.380858]  __mm_populate+0x204/0x380
[ 1520.384833]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1520.389795]  __x64_sys_mlockall+0x35c/0x520
[ 1520.394140]  do_syscall_64+0xfd/0x620
[ 1520.398033]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1520.403239] RIP: 0033:0x45af49
[ 1520.406450] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1520.425456] RSP: 002b:00007f66bf404c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1520.433201] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1520.440499] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1520.447775] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1520.455045] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f66bf4056d4
[ 1520.462403] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1520.548115] Task in /syz2 killed as a result of limit of /syz2
[ 1520.565566] memory: usage 307168kB, limit 307200kB, failcnt 1270
[ 1520.586690] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1520.600385] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1520.618915] Memory cgroup stats for /syz2: cache:124KB rss:296892KB rss_huge:198656KB shmem:0KB mapped_file:0KB dirty:0KB writeback:0KB swap:0KB inactive_anon:95296KB active_anon:2264KB inactive_file:4KB active_file:0KB unevictable:199448KB
[ 1520.676292] Memory cgroup out of memory: Kill process 2296 (syz-executor.2) score 1163 or sacrifice child
03:03:36 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, 0x0, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mlockall(0x3)

03:03:36 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x0, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1520.719179] Killed process 2296 (syz-executor.2) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
03:03:36 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:03:36 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x0, 0x0)
accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000100), 0x0, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mlockall(0x0)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1520.876578] oom_reaper: reaped process 2296 (syz-executor.2), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
03:03:36 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

03:03:36 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, 0x0, 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:03:36 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x0, 0x0)
accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000100), 0x0, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mlockall(0x0)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:03:37 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x0, 0x0)
accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000100), 0x0, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mlockall(0x0)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:03:37 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x0, 0x0)
accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000100), 0x0, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mlockall(0x0)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:03:37 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:03:39 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, 0x0, 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1525.653944] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1525.666540] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1525.672029] CPU: 1 PID: 4596 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1525.679758] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1525.689129] Call Trace:
[ 1525.691740]  dump_stack+0x197/0x210
[ 1525.695459]  dump_header+0x15e/0xa55
[ 1525.699208]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1525.704851]  ? ___ratelimit+0x60/0x595
[ 1525.708988]  ? do_raw_spin_unlock+0x181/0x270
[ 1525.713523]  oom_kill_process.cold+0x10/0x6ef
[ 1525.718052]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1525.723750]  ? task_will_free_mem+0x139/0x6e0
[ 1525.728363]  ? find_held_lock+0x35/0x130
[ 1525.732451]  out_of_memory+0x362/0x1330
[ 1525.736451]  ? lock_downgrade+0x880/0x880
[ 1525.740620]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1525.745744]  ? oom_killer_disable+0x280/0x280
[ 1525.750258]  ? find_held_lock+0x35/0x130
[ 1525.754355]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1525.759296]  ? memcg_event_wake+0x230/0x230
[ 1525.763730]  ? do_raw_spin_unlock+0x181/0x270
[ 1525.768244]  ? _raw_spin_unlock+0x2d/0x50
[ 1525.772412]  try_charge+0xec5/0x1490
[ 1525.776147]  ? lock_downgrade+0x880/0x880
[ 1525.780323]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1525.785190]  ? rcu_read_unlock+0x33/0x60
[ 1525.789297]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1525.794163]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1525.800253]  mem_cgroup_try_charge+0x259/0x6b0
[ 1525.804863]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1525.809816]  wp_page_copy+0x430/0x16a0
[ 1525.813802]  ? follow_pfn+0x2a0/0x2a0
[ 1525.817642]  ? do_raw_spin_unlock+0x181/0x270
[ 1525.822292]  do_wp_page+0x57d/0x10b0
[ 1525.826034]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1525.830807]  ? kasan_check_write+0x14/0x20
[ 1525.835061]  ? do_raw_spin_lock+0xd7/0x250
[ 1525.839322]  __handle_mm_fault+0x2305/0x3f80
[ 1525.843764]  ? copy_page_range+0x2030/0x2030
[ 1525.848216]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1525.852905]  handle_mm_fault+0x1b5/0x690
[ 1525.857099]  __get_user_pages+0x609/0x1860
[ 1525.861427]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1525.865937]  ? retint_kernel+0x2d/0x2d
[ 1525.869854]  ? populate_vma_page_range+0x91/0x2a0
[ 1525.874861]  populate_vma_page_range+0x20d/0x2a0
[ 1525.879650]  __mm_populate+0x204/0x380
[ 1525.883665]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1525.888914]  __x64_sys_mlockall+0x35c/0x520
[ 1525.893362]  do_syscall_64+0xfd/0x620
[ 1525.897193]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1525.902688] RIP: 0033:0x45af49
[ 1525.905910] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1525.925055] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1525.932787] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1525.940136] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1525.947418] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1525.954703] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1525.961991] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1525.969426] Task in /syz1 killed as a result of limit of /syz1
[ 1525.975541] memory: usage 307200kB, limit 307200kB, failcnt 26688
[ 1525.981942] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1525.988972] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1525.995346] Memory cgroup stats for /syz1: cache:96KB rss:296392KB rss_huge:225280KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:111448KB active_anon:13204KB inactive_file:4KB active_file:4KB unevictable:171804KB
[ 1526.017976] Memory cgroup out of memory: Kill process 4595 (syz-executor.1) score 1223 or sacrifice child
[ 1526.028067] Killed process 4597 (syz-executor.1) total-vm:72588kB, anon-rss:18204kB, file-rss:34816kB, shmem-rss:0kB
03:03:42 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

03:03:43 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, 0x0, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x0)

03:03:45 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:03:45 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, 0x0, 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:03:45 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, 0x0, 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:03:45 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:03:45 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

03:03:45 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, 0x0, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x0)

[ 1530.191540] syz-executor.0 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1531.007127] syz-executor.0 cpuset=syz0 mems_allowed=0-1
[ 1531.029637] CPU: 1 PID: 4794 Comm: syz-executor.0 Not tainted 4.19.95-syzkaller #0
[ 1531.037376] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1531.046737] Call Trace:
[ 1531.049344]  dump_stack+0x197/0x210
[ 1531.052985]  dump_header+0x15e/0xa55
[ 1531.056712]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1531.061823]  ? ___ratelimit+0x60/0x595
[ 1531.065718]  ? do_raw_spin_unlock+0x181/0x270
[ 1531.070242]  oom_kill_process.cold+0x10/0x6ef
[ 1531.074751]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1531.090837]  ? task_will_free_mem+0x139/0x6e0
[ 1531.095363]  ? find_held_lock+0x35/0x130
[ 1531.099488]  out_of_memory+0x362/0x1330
[ 1531.103490]  ? lock_downgrade+0x880/0x880
[ 1531.107744]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1531.112861]  ? oom_killer_disable+0x280/0x280
[ 1531.117365]  ? find_held_lock+0x35/0x130
[ 1531.121448]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1531.126307]  ? memcg_event_wake+0x230/0x230
[ 1531.130645]  ? do_raw_spin_unlock+0x181/0x270
[ 1531.135153]  ? _raw_spin_unlock+0x2d/0x50
[ 1531.139312]  try_charge+0xec5/0x1490
[ 1531.143039]  ? lock_downgrade+0x880/0x880
[ 1531.147207]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1531.152059]  ? rcu_read_unlock+0x33/0x60
[ 1531.156131]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1531.161005]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1531.167088]  ? mark_held_locks+0x100/0x100
[ 1531.171346]  mem_cgroup_try_charge+0x259/0x6b0
[ 1531.175947]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1531.180904]  __handle_mm_fault+0x1e50/0x3f80
[ 1531.185327]  ? copy_page_range+0x2030/0x2030
[ 1531.189768]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1531.194450]  handle_mm_fault+0x1b5/0x690
[ 1531.198530]  __get_user_pages+0x609/0x1860
[ 1531.202791]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1531.207307]  ? lock_acquire+0x1ea/0x3f0
[ 1531.211302]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1531.216856]  populate_vma_page_range+0x20d/0x2a0
[ 1531.221634]  __mm_populate+0x204/0x380
[ 1531.225536]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1531.230505]  __x64_sys_mlockall+0x35c/0x520
[ 1531.234839]  do_syscall_64+0xfd/0x620
[ 1531.238655]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1531.243849] RIP: 0033:0x45af49
[ 1531.247064] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1531.266080] RSP: 002b:00007faf37e78c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1531.273808] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1531.281103] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1531.288394] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1531.295687] R10: 0000000000000000 R11: 0000000000000246 R12: 00007faf37e796d4
[ 1531.302980] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
03:03:47 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

03:03:47 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, 0x0, 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1533.718010] Task in /syz0 killed as a result of limit of /syz0
[ 1533.724848] memory: usage 307140kB, limit 307200kB, failcnt 652
[ 1533.732164] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1533.740209] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1533.748538] Memory cgroup stats for /syz0: cache:80KB rss:296672KB rss_huge:86016KB shmem:0KB mapped_file:132KB dirty:132KB writeback:0KB swap:0KB inactive_anon:208084KB active_anon:2664KB inactive_file:0KB active_file:0KB unevictable:86080KB
[ 1533.772367] Memory cgroup out of memory: Kill process 2425 (syz-executor.0) score 1163 or sacrifice child
[ 1533.783885] Killed process 2425 (syz-executor.0) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1533.848981] oom_reaper: reaped process 2425 (syz-executor.0), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[ 1533.862077] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1533.873499] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1533.879137] CPU: 1 PID: 4833 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1533.886852] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1533.896904] Call Trace:
[ 1533.899504]  dump_stack+0x197/0x210
[ 1533.903155]  dump_header+0x15e/0xa55
[ 1533.906948]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1533.912069]  ? ___ratelimit+0x60/0x595
[ 1533.916248]  ? do_raw_spin_unlock+0x181/0x270
[ 1533.920758]  oom_kill_process.cold+0x10/0x6ef
[ 1533.925270]  ? mem_cgroup_get_max+0xe3/0x240
[ 1533.929692]  out_of_memory+0x362/0x1330
[ 1533.933677]  ? retint_kernel+0x2d/0x2d
[ 1533.937579]  ? oom_killer_disable+0x280/0x280
[ 1533.942097]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1533.947126]  ? memcg_event_wake+0x230/0x230
[ 1533.951463]  ? do_raw_spin_unlock+0x181/0x270
[ 1533.955970]  ? _raw_spin_unlock+0x2d/0x50
[ 1533.960128]  try_charge+0xec5/0x1490
[ 1533.963868]  ? lock_downgrade+0x880/0x880
[ 1533.968045]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1533.972904]  ? rcu_read_unlock+0x33/0x60
[ 1533.977018]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1533.981876]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 1533.986835]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1533.992925]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1533.997713]  mem_cgroup_try_charge+0x259/0x6b0
[ 1534.002332]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1534.007275]  wp_page_copy+0x430/0x16a0
[ 1534.011186]  ? follow_pfn+0x2a0/0x2a0
[ 1534.015003]  ? do_raw_spin_unlock+0x181/0x270
[ 1534.019513]  do_wp_page+0x57d/0x10b0
[ 1534.023251]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1534.027956]  ? kasan_check_write+0x14/0x20
[ 1534.032199]  ? do_raw_spin_lock+0xd7/0x250
[ 1534.036449]  __handle_mm_fault+0x2305/0x3f80
[ 1534.040874]  ? copy_page_range+0x2030/0x2030
[ 1534.045329]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1534.050015]  handle_mm_fault+0x1b5/0x690
[ 1534.054095]  __get_user_pages+0x609/0x1860
[ 1534.058353]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1534.062876]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1534.067677]  ? retint_kernel+0x2d/0x2d
[ 1534.071614]  populate_vma_page_range+0x20d/0x2a0
[ 1534.076411]  __mm_populate+0x204/0x380
[ 1534.080352]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1534.085328]  __x64_sys_mlockall+0x35c/0x520
[ 1534.089797]  do_syscall_64+0xfd/0x620
[ 1534.093629]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1534.098882] RIP: 0033:0x45af49
[ 1534.102105] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1534.121725] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1534.129473] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1534.136760] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1534.144045] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1534.151553] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1534.158859] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1534.167215] Task in /syz1 killed as a result of limit of /syz1
[ 1534.173349] memory: usage 307172kB, limit 307200kB, failcnt 26744
[ 1534.179711] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1534.186792] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1534.193104] Memory cgroup stats for /syz1: cache:96KB rss:296396KB rss_huge:225280KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:111512KB active_anon:13204KB inactive_file:0KB active_file:4KB unevictable:171804KB
[ 1534.215313] Memory cgroup out of memory: Kill process 4832 (syz-executor.1) score 1223 or sacrifice child
[ 1534.225434] Killed process 4834 (syz-executor.1) total-vm:72588kB, anon-rss:18204kB, file-rss:34816kB, shmem-rss:0kB
03:03:51 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:03:51 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, 0x0, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x0)

03:03:51 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, 0x0, 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:03:51 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x0, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1536.990661] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1537.002417] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1537.008273] CPU: 1 PID: 4949 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1537.015998] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1537.025547] Call Trace:
[ 1537.028159]  dump_stack+0x197/0x210
[ 1537.031803]  dump_header+0x15e/0xa55
[ 1537.035528]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1537.041096]  ? ___ratelimit+0x60/0x595
[ 1537.044994]  ? do_raw_spin_unlock+0x181/0x270
[ 1537.049505]  oom_kill_process.cold+0x10/0x6ef
[ 1537.054014]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1537.059561]  ? task_will_free_mem+0x139/0x6e0
[ 1537.064070]  ? find_held_lock+0x35/0x130
[ 1537.068239]  out_of_memory+0x362/0x1330
[ 1537.072232]  ? lock_downgrade+0x880/0x880
[ 1537.076412]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1537.081559]  ? oom_killer_disable+0x280/0x280
[ 1537.086076]  ? find_held_lock+0x35/0x130
[ 1537.090168]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1537.095032]  ? memcg_event_wake+0x230/0x230
[ 1537.099379]  ? do_raw_spin_unlock+0x181/0x270
[ 1537.103886]  ? _raw_spin_unlock+0x2d/0x50
[ 1537.108049]  try_charge+0xec5/0x1490
[ 1537.111863]  ? lock_downgrade+0x880/0x880
[ 1537.116034]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1537.120889]  ? rcu_read_unlock+0x33/0x60
[ 1537.124956]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1537.129813]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1537.135892]  mem_cgroup_try_charge+0x259/0x6b0
[ 1537.140494]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1537.145434]  wp_page_copy+0x430/0x16a0
[ 1537.149429]  ? follow_pfn+0x2a0/0x2a0
[ 1537.153256]  ? do_raw_spin_unlock+0x181/0x270
[ 1537.157783]  do_wp_page+0x57d/0x10b0
[ 1537.161526]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1537.166231]  ? kasan_check_write+0x14/0x20
[ 1537.170476]  ? do_raw_spin_lock+0xd7/0x250
[ 1537.174732]  __handle_mm_fault+0x2305/0x3f80
[ 1537.179156]  ? copy_page_range+0x2030/0x2030
[ 1537.183594]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1537.188277]  handle_mm_fault+0x1b5/0x690
[ 1537.192353]  __get_user_pages+0x609/0x1860
[ 1537.196615]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1537.201122]  ? retint_kernel+0x2d/0x2d
[ 1537.205061]  populate_vma_page_range+0x20d/0x2a0
[ 1537.209837]  __mm_populate+0x204/0x380
[ 1537.213747]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1537.218707]  ? up_write+0x6d/0x150
[ 1537.222281]  __x64_sys_mlockall+0x35c/0x520
[ 1537.226653]  do_syscall_64+0xfd/0x620
[ 1537.230477]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1537.235679] RIP: 0033:0x45af49
[ 1537.238886] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1537.257798] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1537.265531] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1537.272804] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1537.280085] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1537.287363] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1537.294639] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1537.304054] Task in /syz1 killed as a result of limit of /syz1
[ 1537.310387] memory: usage 307200kB, limit 307200kB, failcnt 26785
[ 1537.316716] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1537.323654] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1537.330110] Memory cgroup stats for /syz1: cache:96KB rss:296528KB rss_huge:225280KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:111536KB active_anon:13204KB inactive_file:0KB active_file:4KB unevictable:171804KB
[ 1537.352406] Memory cgroup out of memory: Kill process 4948 (syz-executor.1) score 1223 or sacrifice child
[ 1537.363200] Killed process 4950 (syz-executor.1) total-vm:72588kB, anon-rss:18204kB, file-rss:34816kB, shmem-rss:0kB
03:03:54 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:03:54 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

03:03:54 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x0, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:03:55 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, 0x0, 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:03:55 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, 0x0, 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:03:55 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x0, 0x0)
accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000100), 0x0, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1540.274224] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1540.285760] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1540.291310] CPU: 1 PID: 4959 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1540.299052] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1540.308408] Call Trace:
[ 1540.311987]  dump_stack+0x197/0x210
[ 1540.315645]  dump_header+0x15e/0xa55
[ 1540.319396]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1540.324536]  ? ___ratelimit+0x60/0x595
[ 1540.328448]  ? do_raw_spin_unlock+0x181/0x270
[ 1540.332969]  oom_kill_process.cold+0x10/0x6ef
[ 1540.337493]  out_of_memory+0x362/0x1330
[ 1540.341486]  ? lock_downgrade+0x880/0x880
[ 1540.345649]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1540.350784]  ? oom_killer_disable+0x280/0x280
[ 1540.355287]  ? find_held_lock+0x35/0x130
[ 1540.359383]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1540.364237]  ? memcg_event_wake+0x230/0x230
[ 1540.368578]  ? do_raw_spin_unlock+0x181/0x270
[ 1540.373088]  ? _raw_spin_unlock+0x2d/0x50
[ 1540.377249]  try_charge+0xec5/0x1490
[ 1540.380974]  ? lock_downgrade+0x880/0x880
[ 1540.385156]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1540.390009]  ? rcu_read_unlock+0x33/0x60
[ 1540.394078]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1540.398934]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1540.405019]  mem_cgroup_try_charge+0x259/0x6b0
[ 1540.409625]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1540.414567]  wp_page_copy+0x430/0x16a0
[ 1540.418479]  ? follow_pfn+0x2a0/0x2a0
[ 1540.422297]  ? do_raw_spin_unlock+0x181/0x270
[ 1540.426805]  do_wp_page+0x57d/0x10b0
[ 1540.430537]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1540.435213]  ? kasan_check_write+0x14/0x20
[ 1540.439459]  ? do_raw_spin_lock+0xd7/0x250
[ 1540.443707]  __handle_mm_fault+0x2305/0x3f80
[ 1540.448131]  ? copy_page_range+0x2030/0x2030
[ 1540.452571]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1540.457352]  handle_mm_fault+0x1b5/0x690
[ 1540.461453]  __get_user_pages+0x609/0x1860
[ 1540.465741]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1540.470250]  ? retint_kernel+0x2d/0x2d
[ 1540.474183]  populate_vma_page_range+0x20d/0x2a0
[ 1540.478971]  __mm_populate+0x204/0x380
[ 1540.482892]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1540.487860]  __x64_sys_mlockall+0x35c/0x520
[ 1540.492213]  do_syscall_64+0xfd/0x620
[ 1540.496041]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1540.501251] RIP: 0033:0x45af49
[ 1540.504458] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1540.523464] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1540.531198] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1540.538489] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1540.546044] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1540.553335] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1540.560621] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1540.568218] Task in /syz1 killed as a result of limit of /syz1
[ 1540.574645] memory: usage 307200kB, limit 307200kB, failcnt 26821
[ 1540.582772] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1540.589656] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1540.595888] Memory cgroup stats for /syz1: cache:96KB rss:296528KB rss_huge:225280KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:111540KB active_anon:13204KB inactive_file:0KB active_file:4KB unevictable:171804KB
[ 1540.617995] Memory cgroup out of memory: Kill process 4958 (syz-executor.1) score 1223 or sacrifice child
[ 1540.628536] Killed process 4960 (syz-executor.1) total-vm:72588kB, anon-rss:18204kB, file-rss:34944kB, shmem-rss:0kB
[ 1541.898965] syz-executor.0 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1541.910390] syz-executor.0 cpuset=syz0 mems_allowed=0-1
[ 1541.916004] CPU: 1 PID: 4963 Comm: syz-executor.0 Not tainted 4.19.95-syzkaller #0
[ 1541.923722] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1541.934211] Call Trace:
[ 1541.936811]  dump_stack+0x197/0x210
[ 1541.940476]  dump_header+0x15e/0xa55
[ 1541.944203]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1541.949316]  ? ___ratelimit+0x60/0x595
[ 1541.953216]  ? do_raw_spin_unlock+0x181/0x270
[ 1541.957731]  oom_kill_process.cold+0x10/0x6ef
[ 1541.962253]  out_of_memory+0x362/0x1330
[ 1541.966246]  ? lock_downgrade+0x880/0x880
[ 1541.970407]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1541.975657]  ? oom_killer_disable+0x280/0x280
[ 1541.980169]  ? find_held_lock+0x35/0x130
[ 1541.984263]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1541.989134]  ? memcg_event_wake+0x230/0x230
[ 1541.993481]  ? do_raw_spin_unlock+0x181/0x270
[ 1541.997993]  ? _raw_spin_unlock+0x2d/0x50
[ 1542.002160]  try_charge+0xec5/0x1490
[ 1542.005886]  ? lock_downgrade+0x880/0x880
[ 1542.010051]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1542.014906]  ? rcu_read_unlock+0x33/0x60
[ 1542.018972]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1542.023836]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 1542.028777]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1542.034854]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1542.039632]  mem_cgroup_try_charge+0x259/0x6b0
[ 1542.044231]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1542.049171]  wp_page_copy+0x430/0x16a0
[ 1542.053078]  ? follow_pfn+0x2a0/0x2a0
[ 1542.056889]  ? do_raw_spin_unlock+0x181/0x270
[ 1542.061396]  do_wp_page+0x57d/0x10b0
[ 1542.065122]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1542.069800]  ? kasan_check_write+0x14/0x20
[ 1542.074127]  ? do_raw_spin_lock+0xd7/0x250
[ 1542.078376]  __handle_mm_fault+0x2305/0x3f80
[ 1542.082807]  ? copy_page_range+0x2030/0x2030
[ 1542.087248]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1542.091938]  handle_mm_fault+0x1b5/0x690
[ 1542.096020]  __get_user_pages+0x609/0x1860
[ 1542.100278]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1542.104788]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1542.109561]  ? retint_kernel+0x2d/0x2d
[ 1542.113466]  populate_vma_page_range+0x20d/0x2a0
[ 1542.118255]  __mm_populate+0x204/0x380
[ 1542.122159]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1542.127128]  __x64_sys_mlockall+0x35c/0x520
[ 1542.131461]  do_syscall_64+0xfd/0x620
[ 1542.135277]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1542.140483] RIP: 0033:0x45af49
[ 1542.143684] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1542.162592] RSP: 002b:00007faf37e78c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1542.170312] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1542.177604] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1542.184889] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1542.192191] R10: 0000000000000000 R11: 0000000000000246 R12: 00007faf37e796d4
[ 1542.199488] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1542.212462] Task in /syz0 killed as a result of limit of /syz0
[ 1542.218600] memory: usage 307200kB, limit 307200kB, failcnt 664
[ 1542.224887] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1542.231989] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1542.238716] Memory cgroup stats for /syz0: cache:80KB rss:296688KB rss_huge:86016KB shmem:0KB mapped_file:132KB dirty:132KB writeback:0KB swap:0KB inactive_anon:191996KB active_anon:2652KB inactive_file:0KB active_file:0KB unevictable:102172KB
[ 1542.261317] Memory cgroup out of memory: Kill process 4962 (syz-executor.0) score 1226 or sacrifice child
[ 1542.272218] Killed process 4970 (syz-executor.0) total-vm:72588kB, anon-rss:18204kB, file-rss:34816kB, shmem-rss:0kB
03:03:59 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:03:59 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

03:03:59 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x0, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:03:59 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:03:59 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, 0x0, 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:03:59 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x0, 0x0)
accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000100), 0x0, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1545.210261] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1545.221697] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1545.228076] CPU: 1 PID: 4982 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1545.235813] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1545.245176] Call Trace:
[ 1545.247780]  dump_stack+0x197/0x210
[ 1545.251427]  dump_header+0x15e/0xa55
[ 1545.255154]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1545.260272]  ? ___ratelimit+0x60/0x595
[ 1545.264166]  ? do_raw_spin_unlock+0x181/0x270
[ 1545.268678]  oom_kill_process.cold+0x10/0x6ef
[ 1545.273192]  ? mem_cgroup_get_max+0xa8/0x240
[ 1545.277618]  out_of_memory+0x362/0x1330
[ 1545.281604]  ? lock_downgrade+0x880/0x880
[ 1545.285762]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1545.290874]  ? oom_killer_disable+0x280/0x280
[ 1545.295375]  ? find_held_lock+0x35/0x130
[ 1545.299458]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1545.304312]  ? memcg_event_wake+0x230/0x230
[ 1545.308648]  ? do_raw_spin_unlock+0x181/0x270
[ 1545.313154]  ? _raw_spin_unlock+0x2d/0x50
[ 1545.317316]  try_charge+0xec5/0x1490
[ 1545.321043]  ? lock_downgrade+0x880/0x880
[ 1545.325210]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1545.330065]  ? rcu_read_unlock+0x33/0x60
[ 1545.334132]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1545.338988]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1545.345070]  mem_cgroup_try_charge+0x259/0x6b0
[ 1545.349672]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1545.354613]  wp_page_copy+0x430/0x16a0
[ 1545.358540]  ? follow_pfn+0x2a0/0x2a0
[ 1545.362360]  ? do_raw_spin_unlock+0x181/0x270
[ 1545.366883]  do_wp_page+0x57d/0x10b0
[ 1545.370638]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1545.375322]  ? kasan_check_write+0x14/0x20
[ 1545.379567]  ? do_raw_spin_lock+0xd7/0x250
[ 1545.383838]  __handle_mm_fault+0x2305/0x3f80
[ 1545.388269]  ? copy_page_range+0x2030/0x2030
[ 1545.392710]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1545.397401]  handle_mm_fault+0x1b5/0x690
[ 1545.401483]  __get_user_pages+0x609/0x1860
[ 1545.405743]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1545.410253]  ? retint_kernel+0x2d/0x2d
[ 1545.414166]  populate_vma_page_range+0x20d/0x2a0
[ 1545.418955]  __mm_populate+0x204/0x380
[ 1545.422857]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1545.427792]  ? __sanitizer_cov_trace_pc+0x1/0x50
[ 1545.432568]  __x64_sys_mlockall+0x35c/0x520
[ 1545.436903]  do_syscall_64+0xfd/0x620
[ 1545.440716]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1545.445934] RIP: 0033:0x45af49
[ 1545.449497] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1545.468430] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1545.476151] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1545.483425] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1545.490698] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1545.497973] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1545.505251] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1545.514140] Task in /syz1 killed as a result of limit of /syz1
[ 1545.520432] memory: usage 307200kB, limit 307200kB, failcnt 26847
[ 1545.527207] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1545.534136] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1545.540364] Memory cgroup stats for /syz1: cache:96KB rss:296416KB rss_huge:225280KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:111364KB active_anon:13204KB inactive_file:4KB active_file:0KB unevictable:171936KB
[ 1545.564711] Memory cgroup out of memory: Kill process 4981 (syz-executor.1) score 1226 or sacrifice child
[ 1545.575864] Killed process 4993 (syz-executor.1) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1546.392163] oom_reaper: reaped process 4993 (syz-executor.1), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
03:04:02 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, 0x0, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:04:02 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

03:04:02 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x0, 0x0)
accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000100), 0x0, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:04:02 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:04:03 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:04:05 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, 0x0, 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x0)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:04:05 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1550.311107] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1550.322409] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1550.327901] CPU: 1 PID: 5217 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1550.335619] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1550.344984] Call Trace:
[ 1550.347600]  dump_stack+0x197/0x210
[ 1550.351267]  dump_header+0x15e/0xa55
[ 1550.355016]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1550.360145]  ? ___ratelimit+0x60/0x595
[ 1550.364050]  ? do_raw_spin_unlock+0x181/0x270
[ 1550.368577]  oom_kill_process.cold+0x10/0x6ef
[ 1550.373179]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1550.378727]  ? task_will_free_mem+0x139/0x6e0
[ 1550.383225]  ? find_held_lock+0x35/0x130
[ 1550.387287]  out_of_memory+0x362/0x1330
[ 1550.391266]  ? lock_downgrade+0x880/0x880
[ 1550.395407]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1550.400506]  ? oom_killer_disable+0x280/0x280
[ 1550.405004]  ? find_held_lock+0x35/0x130
[ 1550.409067]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1550.413905]  ? memcg_event_wake+0x230/0x230
[ 1550.418230]  ? do_raw_spin_unlock+0x181/0x270
[ 1550.422739]  ? _raw_spin_unlock+0x2d/0x50
[ 1550.426903]  try_charge+0xec5/0x1490
[ 1550.430613]  ? lock_downgrade+0x880/0x880
[ 1550.434788]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1550.439664]  ? rcu_read_unlock+0x33/0x60
[ 1550.443765]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1550.448619]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1550.454678]  ? mark_held_locks+0x100/0x100
[ 1550.458917]  mem_cgroup_try_charge+0x259/0x6b0
[ 1550.463598]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1550.468535]  __handle_mm_fault+0x1e50/0x3f80
[ 1550.472945]  ? copy_page_range+0x2030/0x2030
[ 1550.477385]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1550.482074]  handle_mm_fault+0x1b5/0x690
[ 1550.486400]  __get_user_pages+0x609/0x1860
[ 1550.490744]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1550.495251]  ? lock_acquire+0x16f/0x3f0
[ 1550.499227]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1550.504780]  populate_vma_page_range+0x20d/0x2a0
[ 1550.509539]  __mm_populate+0x204/0x380
[ 1550.513428]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1550.518373]  __x64_sys_mlockall+0x35c/0x520
[ 1550.522691]  do_syscall_64+0xfd/0x620
[ 1550.526494]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1550.531676] RIP: 0033:0x45af49
[ 1550.534864] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1550.553770] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1550.561483] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1550.568745] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1550.576007] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1550.583535] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1550.590928] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1550.598844] Task in /syz1 killed as a result of limit of /syz1
[ 1550.604868] memory: usage 307200kB, limit 307200kB, failcnt 27080
[ 1550.611642] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1550.618501] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1550.624665] Memory cgroup stats for /syz1: cache:96KB rss:296364KB rss_huge:225280KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:119808KB active_anon:13232KB inactive_file:8KB active_file:0KB unevictable:163504KB
[ 1550.646664] Memory cgroup out of memory: Kill process 3919 (syz-executor.1) score 1163 or sacrifice child
[ 1550.656500] Killed process 3919 (syz-executor.1) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1550.678473] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1550.689825] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1550.695232] CPU: 1 PID: 5217 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1550.702952] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1550.712319] Call Trace:
[ 1550.714940]  dump_stack+0x197/0x210
[ 1550.718599]  dump_header+0x15e/0xa55
[ 1550.722334]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1550.727457]  ? ___ratelimit+0x60/0x595
[ 1550.731366]  ? do_raw_spin_unlock+0x181/0x270
[ 1550.735894]  oom_kill_process.cold+0x10/0x6ef
[ 1550.740413]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1550.746147]  ? task_will_free_mem+0x139/0x6e0
[ 1550.750672]  ? find_held_lock+0x35/0x130
[ 1550.754767]  out_of_memory+0x362/0x1330
[ 1550.758775]  ? lock_downgrade+0x880/0x880
03:04:06 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, 0x0, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:04:06 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x0, 0x0)
accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000100), 0x0, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:04:06 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

[ 1550.762943]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1550.768074]  ? oom_killer_disable+0x280/0x280
[ 1550.772584]  ? find_held_lock+0x35/0x130
[ 1550.776409] oom_reaper: reaped process 3919 (syz-executor.1), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[ 1550.776670]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1550.791843]  ? memcg_event_wake+0x230/0x230
[ 1550.796200]  ? do_raw_spin_unlock+0x181/0x270
[ 1550.800745]  ? _raw_spin_unlock+0x2d/0x50
[ 1550.804933]  try_charge+0xec5/0x1490
[ 1550.808767]  ? lock_downgrade+0x880/0x880
[ 1550.812938]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1550.818151]  ? rcu_read_unlock+0x33/0x60
[ 1550.822236]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1550.827127]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1550.827149]  ? mark_held_locks+0x100/0x100
[ 1550.837471]  mem_cgroup_try_charge+0x259/0x6b0
[ 1550.842090]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1550.847051]  __handle_mm_fault+0x1e50/0x3f80
[ 1550.851487]  ? copy_page_range+0x2030/0x2030
[ 1550.855940]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1550.860636]  handle_mm_fault+0x1b5/0x690
[ 1550.864728]  __get_user_pages+0x609/0x1860
[ 1550.869029]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1550.873816]  ? lock_acquire+0x16f/0x3f0
[ 1550.877805]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1550.883371]  populate_vma_page_range+0x20d/0x2a0
[ 1550.888164]  __mm_populate+0x204/0x380
[ 1550.892081]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1550.897047]  __x64_sys_mlockall+0x35c/0x520
[ 1550.901394]  do_syscall_64+0xfd/0x620
[ 1550.905224]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1550.910626] RIP: 0033:0x45af49
[ 1550.913843] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1550.932763] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1550.940486] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1550.947767] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1550.955155] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1550.962482] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1550.969775] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1550.977450] Task in /syz1 killed as a result of limit of /syz1
[ 1550.983460] memory: usage 290456kB, limit 307200kB, failcnt 27103
[ 1550.989734] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1550.996525] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1551.002667] Memory cgroup stats for /syz1: cache:96KB rss:279836KB rss_huge:225280KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:101472KB active_anon:13232KB inactive_file:4KB active_file:0KB unevictable:165100KB
[ 1551.024489] Memory cgroup out of memory: Kill process 5109 (syz-executor.1) score 1163 or sacrifice child
[ 1551.034295] Killed process 5109 (syz-executor.1) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1551.285997] oom_reaper: reaped process 5109 (syz-executor.1), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
03:04:08 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, 0x0, 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x0)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1553.358387] syz-executor.2 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1553.421037] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[ 1553.455573] CPU: 1 PID: 5276 Comm: syz-executor.2 Not tainted 4.19.95-syzkaller #0
[ 1553.463338] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1553.472715] Call Trace:
[ 1553.475335]  dump_stack+0x197/0x210
[ 1553.478992]  dump_header+0x15e/0xa55
[ 1553.482733]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1553.487856]  ? ___ratelimit+0x60/0x595
[ 1553.491759]  ? do_raw_spin_unlock+0x181/0x270
[ 1553.496316]  oom_kill_process.cold+0x10/0x6ef
[ 1553.500839]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1553.506396]  ? task_will_free_mem+0x139/0x6e0
[ 1553.510910]  ? find_held_lock+0x35/0x130
[ 1553.514995]  out_of_memory+0x362/0x1330
[ 1553.518992]  ? lock_downgrade+0x880/0x880
[ 1553.523162]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1553.528284]  ? oom_killer_disable+0x280/0x280
[ 1553.532799]  ? find_held_lock+0x35/0x130
[ 1553.536902]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1553.541768]  ? memcg_event_wake+0x230/0x230
[ 1553.546115]  ? do_raw_spin_unlock+0x181/0x270
[ 1553.550645]  ? _raw_spin_unlock+0x2d/0x50
[ 1553.554832]  try_charge+0xec5/0x1490
[ 1553.558567]  ? lock_downgrade+0x880/0x880
[ 1553.562739]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1553.567600]  ? rcu_read_unlock+0x33/0x60
[ 1553.571690]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1553.576555]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1553.582639]  ? mark_held_locks+0x100/0x100
[ 1553.586903]  mem_cgroup_try_charge+0x259/0x6b0
[ 1553.591507]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1553.596459]  __handle_mm_fault+0x1e50/0x3f80
[ 1553.600889]  ? copy_page_range+0x2030/0x2030
[ 1553.605333]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1553.610025]  handle_mm_fault+0x1b5/0x690
[ 1553.614112]  __get_user_pages+0x609/0x1860
[ 1553.618468]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1553.623111]  ? lock_acquire+0x16f/0x3f0
[ 1553.627104]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1553.632672]  populate_vma_page_range+0x20d/0x2a0
[ 1553.637463]  __mm_populate+0x204/0x380
[ 1553.641379]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1553.646342]  __x64_sys_mlockall+0x35c/0x520
[ 1553.650698]  do_syscall_64+0xfd/0x620
[ 1553.654522]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1553.659735] RIP: 0033:0x45af49
03:04:09 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1553.663040] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1553.681968] RSP: 002b:00007f66bf404c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1553.689727] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1553.697023] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1553.704492] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1553.711789] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f66bf4056d4
[ 1553.719716] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
03:04:09 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

03:04:09 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

03:04:09 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x0, 0x0)
accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000100), 0x0, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1553.885935] Task in /syz2 killed as a result of limit of /syz2
[ 1553.901424] memory: usage 307200kB, limit 307200kB, failcnt 1302
[ 1553.987974] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1554.002646] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1554.009009] Memory cgroup stats for /syz2: cache:124KB rss:297348KB rss_huge:198656KB shmem:0KB mapped_file:0KB dirty:0KB writeback:0KB swap:0KB inactive_anon:95296KB active_anon:2264KB inactive_file:0KB active_file:4KB unevictable:199876KB
[ 1554.030772] Memory cgroup out of memory: Kill process 2738 (syz-executor.2) score 1163 or sacrifice child
[ 1554.075921] Killed process 2738 (syz-executor.2) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1554.999959] oom_reaper: reaped process 2738 (syz-executor.2), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[ 1555.013580] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1555.025510] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1555.031204] CPU: 1 PID: 5442 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1555.038920] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1555.048279] Call Trace:
[ 1555.050894]  dump_stack+0x197/0x210
[ 1555.054537]  dump_header+0x15e/0xa55
[ 1555.058269]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1555.063411]  ? ___ratelimit+0x60/0x595
[ 1555.067467]  ? do_raw_spin_unlock+0x181/0x270
[ 1555.072005]  oom_kill_process.cold+0x10/0x6ef
[ 1555.076527]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1555.082169]  ? task_will_free_mem+0x139/0x6e0
[ 1555.086685]  out_of_memory+0x362/0x1330
[ 1555.090671]  ? retint_kernel+0x2d/0x2d
[ 1555.094582]  ? oom_killer_disable+0x280/0x280
[ 1555.099106]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1555.103969]  ? memcg_event_wake+0x230/0x230
[ 1555.108308]  ? do_raw_spin_unlock+0x181/0x270
[ 1555.112816]  ? _raw_spin_unlock+0x2d/0x50
[ 1555.116994]  try_charge+0xec5/0x1490
[ 1555.120744]  ? lock_downgrade+0x880/0x880
[ 1555.124931]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1555.129812]  ? rcu_read_unlock+0x33/0x60
[ 1555.134089]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1555.138982]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1555.145069]  mem_cgroup_try_charge+0x259/0x6b0
[ 1555.149671]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1555.154613]  wp_page_copy+0x430/0x16a0
[ 1555.158521]  ? follow_pfn+0x2a0/0x2a0
[ 1555.162356]  ? do_raw_spin_unlock+0x181/0x270
[ 1555.166865]  do_wp_page+0x57d/0x10b0
[ 1555.170592]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1555.175273]  ? kasan_check_write+0x14/0x20
[ 1555.179524]  ? do_raw_spin_lock+0xd7/0x250
[ 1555.183778]  __handle_mm_fault+0x2305/0x3f80
[ 1555.188207]  ? copy_page_range+0x2030/0x2030
[ 1555.192776]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1555.197477]  handle_mm_fault+0x1b5/0x690
[ 1555.201561]  __get_user_pages+0x609/0x1860
[ 1555.205836]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1555.210362]  ? lock_acquire+0x16f/0x3f0
[ 1555.214375]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1555.219935]  populate_vma_page_range+0x20d/0x2a0
[ 1555.224714]  __mm_populate+0x204/0x380
[ 1555.228621]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1555.233656]  __x64_sys_mlockall+0x35c/0x520
[ 1555.237993]  do_syscall_64+0xfd/0x620
[ 1555.241809]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1555.247015] RIP: 0033:0x45af49
[ 1555.251787] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1555.270705] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1555.278440] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1555.285735] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1555.293018] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1555.300300] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1555.307577] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1555.314967] Task in /syz1 killed as a result of limit of /syz1
[ 1555.321027] memory: usage 307200kB, limit 307200kB, failcnt 27140
[ 1555.327326] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1555.334131] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1555.340553] Memory cgroup stats for /syz1: cache:96KB rss:296316KB rss_huge:225280KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:111400KB active_anon:13208KB inactive_file:4KB active_file:4KB unevictable:171804KB
[ 1555.362994] Memory cgroup out of memory: Kill process 5441 (syz-executor.1) score 1223 or sacrifice child
[ 1555.374529] Killed process 5445 (syz-executor.1) total-vm:72588kB, anon-rss:18204kB, file-rss:34816kB, shmem-rss:0kB
03:04:12 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, 0x0, 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x0)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1556.879227] syz-executor.4 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=3, oom_score_adj=1000
[ 1556.945546] syz-executor.4 cpuset=syz4 mems_allowed=0-1
[ 1556.950981] CPU: 0 PID: 5449 Comm: syz-executor.4 Not tainted 4.19.95-syzkaller #0
[ 1556.958706] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1556.968072] Call Trace:
[ 1556.970678]  dump_stack+0x197/0x210
[ 1556.974332]  dump_header+0x15e/0xa55
[ 1556.978082]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1556.983203]  ? ___ratelimit+0x60/0x595
[ 1556.987105]  ? do_raw_spin_unlock+0x181/0x270
[ 1556.991624]  oom_kill_process.cold+0x10/0x6ef
[ 1556.996139]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1557.001695]  ? task_will_free_mem+0x139/0x6e0
[ 1557.006224]  out_of_memory+0x362/0x1330
[ 1557.010218]  ? lock_downgrade+0x880/0x880
[ 1557.014389]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1557.019510]  ? oom_killer_disable+0x280/0x280
[ 1557.024026]  ? find_held_lock+0x35/0x130
[ 1557.028120]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1557.032989]  ? memcg_event_wake+0x230/0x230
[ 1557.037334]  ? do_raw_spin_unlock+0x181/0x270
[ 1557.041854]  ? _raw_spin_unlock+0x2d/0x50
[ 1557.046022]  try_charge+0xec5/0x1490
[ 1557.049766]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1557.054630]  ? lock_downgrade+0x880/0x880
[ 1557.058800]  ? kasan_check_read+0x11/0x20
[ 1557.063112]  memcg_kmem_charge_memcg+0x83/0x170
[ 1557.067808]  ? memcg_kmem_put_cache+0xb0/0xb0
[ 1557.072437]  ? __isolate_free_page+0x4c0/0x4c0
[ 1557.077056]  memcg_kmem_charge+0x13b/0x370
[ 1557.081589]  __alloc_pages_nodemask+0x3c3/0x750
[ 1557.086344]  ? __alloc_pages_slowpath+0x2870/0x2870
[ 1557.091403]  ? lockdep_hardirqs_on+0x415/0x5d0
[ 1557.096018]  ? trace_hardirqs_on+0x67/0x220
[ 1557.100372]  copy_process.part.0+0x3e0/0x7a30
[ 1557.104881]  ? debug_smp_processor_id+0x1c/0x20
[ 1557.109571]  ? __free_object+0xe2/0x1f0
[ 1557.113824]  ? find_held_lock+0x35/0x130
[ 1557.117901]  ? __free_object+0xe2/0x1f0
[ 1557.121890]  ? debug_object_free+0x1f4/0x430
[ 1557.126376]  ? _raw_spin_unlock_irqrestore+0x6b/0xe0
[ 1557.131506]  ? __free_object+0xe2/0x1f0
[ 1557.135504]  ? _raw_spin_unlock_irqrestore+0x6b/0xe0
[ 1557.140643]  ? __cleanup_sighand+0x70/0x70
[ 1557.144898]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1557.150020]  ? __free_object+0xe2/0x1f0
[ 1557.154012]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1557.159140]  ? __hrtimer_init+0xe1/0x250
[ 1557.163226]  _do_fork+0x257/0xfd0
[ 1557.166694]  ? fork_idle+0x1d0/0x1d0
[ 1557.170426]  ? blkg_prfill_rwstat_field_recursive+0x100/0x100
[ 1557.176341]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1557.181115]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1557.185895]  ? do_syscall_64+0x26/0x620
[ 1557.189886]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1557.195274]  ? do_syscall_64+0x26/0x620
[ 1557.199283]  __x64_sys_clone+0xbf/0x150
[ 1557.203282]  do_syscall_64+0xfd/0x620
[ 1557.207104]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1557.212302] RIP: 0033:0x45d919
[ 1557.215507] Code: ff 48 85 f6 0f 84 d7 8c fb ff 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 0f 8c ae 8c fb ff 74 01 c3 31 ed 48 f7 c7 00 00 01 00 75
[ 1557.234419] RSP: 002b:00007fff629f85f8 EFLAGS: 00000202 ORIG_RAX: 0000000000000038
[ 1557.242227] RAX: ffffffffffffffda RBX: 00007f16bfda4700 RCX: 000000000045d919
[ 1557.249516] RDX: 00007f16bfda49d0 RSI: 00007f16bfda3db0 RDI: 00000000003d0f00
[ 1557.256806] RBP: 00007fff629f8810 R08: 00007f16bfda4700 R09: 00007f16bfda4700
[ 1557.264186] R10: 00007f16bfda49d0 R11: 0000000000000202 R12: 0000000000000000
[ 1557.271598] R13: 00007fff629f86af R14: 0000000000020000 R15: 00000000016fbb70
03:04:13 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:04:13 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, 0x0, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1557.705558] Task in /syz4 killed as a result of limit of /syz4
[ 1557.711951] memory: usage 307144kB, limit 307200kB, failcnt 256
03:04:13 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

[ 1557.742218] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1557.853908] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1557.900005] Memory cgroup stats for /syz4: cache:36KB rss:283240KB rss_huge:188416KB shmem:0KB mapped_file:0KB dirty:0KB writeback:0KB swap:0KB inactive_anon:89228KB active_anon:9908KB inactive_file:0KB active_file:4KB unevictable:184224KB
[ 1557.988889] Memory cgroup out of memory: Kill process 5449 (syz-executor.4) score 1226 or sacrifice child
[ 1557.999712] Killed process 5449 (syz-executor.4) total-vm:72720kB, anon-rss:18204kB, file-rss:54360kB, shmem-rss:0kB
[ 1558.011479] oom_reaper: reaped process 5449 (syz-executor.4), now anon-rss:18204kB, file-rss:54352kB, shmem-rss:0kB
[ 1558.011810] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1558.033784] syz-executor.1 cpuset=syz1 mems_allowed=0-1
03:04:13 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

[ 1558.039315] CPU: 0 PID: 5529 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1558.047053] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1558.056436] Call Trace:
[ 1558.059058]  dump_stack+0x197/0x210
[ 1558.062726]  dump_header+0x15e/0xa55
[ 1558.066475]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1558.071613]  ? ___ratelimit+0x60/0x595
[ 1558.075529]  ? do_raw_spin_unlock+0x181/0x270
[ 1558.080069]  oom_kill_process.cold+0x10/0x6ef
[ 1558.084609]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1558.090186]  ? task_will_free_mem+0x139/0x6e0
[ 1558.094752]  out_of_memory+0x362/0x1330
[ 1558.098763]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1558.103887]  ? oom_killer_disable+0x280/0x280
[ 1558.109455]  ? find_held_lock+0x35/0x130
[ 1558.113577]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1558.118461]  ? memcg_event_wake+0x230/0x230
[ 1558.122829]  ? do_raw_spin_unlock+0x181/0x270
[ 1558.127362]  ? _raw_spin_unlock+0x2d/0x50
[ 1558.131555]  try_charge+0xec5/0x1490
[ 1558.135308]  ? lock_downgrade+0x880/0x880
[ 1558.139504]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1558.144384]  ? rcu_read_unlock+0x33/0x60
[ 1558.148488]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1558.153389]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1558.159510]  mem_cgroup_try_charge+0x259/0x6b0
[ 1558.164154]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1558.169149]  wp_page_copy+0x430/0x16a0
[ 1558.173103]  ? follow_pfn+0x2a0/0x2a0
[ 1558.176954]  ? do_raw_spin_unlock+0x181/0x270
[ 1558.181499]  do_wp_page+0x57d/0x10b0
[ 1558.185262]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1558.189977]  ? kasan_check_write+0x14/0x20
[ 1558.194264]  ? do_raw_spin_lock+0xd7/0x250
[ 1558.198542]  __handle_mm_fault+0x2305/0x3f80
[ 1558.203002]  ? copy_page_range+0x2030/0x2030
[ 1558.207484]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1558.212199]  handle_mm_fault+0x1b5/0x690
[ 1558.216321]  __get_user_pages+0x609/0x1860
[ 1558.220627]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1558.225175]  ? lock_acquire+0x16f/0x3f0
[ 1558.229173]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1558.234762]  populate_vma_page_range+0x20d/0x2a0
[ 1558.239565]  __mm_populate+0x204/0x380
[ 1558.243499]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1558.248480]  __x64_sys_mlockall+0x35c/0x520
[ 1558.252846]  do_syscall_64+0xfd/0x620
[ 1558.256686]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1558.261907] RIP: 0033:0x45af49
[ 1558.265130] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1558.284070] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1558.291838] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1558.299140] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1558.307485] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1558.314811] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1558.322115] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1558.329748] Task in /syz1 killed as a result of limit of /syz1
[ 1558.336197] memory: usage 307172kB, limit 307200kB, failcnt 27168
[ 1558.342478] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1558.349490] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1558.355790] Memory cgroup stats for /syz1: cache:96KB rss:296328KB rss_huge:225280KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:111196KB active_anon:13212KB inactive_file:4KB active_file:0KB unevictable:171940KB
[ 1558.377724] Memory cgroup out of memory: Kill process 5528 (syz-executor.1) score 1226 or sacrifice child
[ 1558.387646] Killed process 5536 (syz-executor.1) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1558.452493] oom_reaper: reaped process 5536 (syz-executor.1), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
03:04:14 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x400080, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

03:04:14 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x3)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)

03:04:14 executing program 2:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
mlockall(0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsa\x00', 0x0, 0x0)
accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000100), 0x0, 0x80000)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x3)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x0)

[ 1559.163506] syz-executor.1 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1559.174882] syz-executor.1 cpuset=syz1 mems_allowed=0-1
[ 1559.180504] CPU: 0 PID: 5548 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[ 1559.188245] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1559.197654] Call Trace:
[ 1559.200294]  dump_stack+0x197/0x210
[ 1559.203971]  dump_header+0x15e/0xa55
[ 1559.207774]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1559.212938]  ? ___ratelimit+0x60/0x595
[ 1559.216868]  ? do_raw_spin_unlock+0x181/0x270
[ 1559.221598]  oom_kill_process.cold+0x10/0x6ef
[ 1559.226151]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1559.231731]  ? task_will_free_mem+0x139/0x6e0
[ 1559.236290]  ? find_held_lock+0x35/0x130
[ 1559.240405]  out_of_memory+0x362/0x1330
[ 1559.244426]  ? lock_downgrade+0x880/0x880
[ 1559.248616]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1559.253752]  ? oom_killer_disable+0x280/0x280
[ 1559.258287]  ? find_held_lock+0x35/0x130
[ 1559.262415]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1559.267296]  ? memcg_event_wake+0x230/0x230
[ 1559.271660]  ? do_raw_spin_unlock+0x181/0x270
[ 1559.276190]  ? _raw_spin_unlock+0x2d/0x50
[ 1559.280391]  try_charge+0xec5/0x1490
[ 1559.284143]  ? lock_downgrade+0x880/0x880
[ 1559.288341]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1559.293225]  ? rcu_read_unlock+0x33/0x60
[ 1559.297333]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1559.297359]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1559.308655]  mem_cgroup_try_charge+0x259/0x6b0
[ 1559.313287]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1559.318263]  wp_page_copy+0x430/0x16a0
[ 1559.322214]  ? follow_pfn+0x2a0/0x2a0
[ 1559.326054]  ? do_raw_spin_unlock+0x181/0x270
[ 1559.330579]  do_wp_page+0x57d/0x10b0
[ 1559.334348]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1559.339044]  ? kasan_check_write+0x14/0x20
[ 1559.343320]  ? do_raw_spin_lock+0xd7/0x250
[ 1559.347623]  __handle_mm_fault+0x2305/0x3f80
[ 1559.352076]  ? copy_page_range+0x2030/0x2030
[ 1559.356554]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1559.361270]  handle_mm_fault+0x1b5/0x690
[ 1559.365370]  __get_user_pages+0x609/0x1860
[ 1559.369654]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1559.374189]  ? lock_acquire+0x16f/0x3f0
[ 1559.378188]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1559.383758]  populate_vma_page_range+0x20d/0x2a0
[ 1559.388551]  __mm_populate+0x204/0x380
[ 1559.392469]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1559.397443]  __x64_sys_mlockall+0x35c/0x520
[ 1559.401794]  do_syscall_64+0xfd/0x620
[ 1559.405626]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1559.410832] RIP: 0033:0x45af49
[ 1559.414043] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1559.433236] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1559.440970] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1559.448257] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1559.455546] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1559.462833] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1559.470139] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1559.477734] Task in /syz1 killed as a result of limit of /syz1
[ 1559.483767] memory: usage 307200kB, limit 307200kB, failcnt 27196
[ 1559.490128] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1559.496978] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1559.503138] Memory cgroup stats for /syz1: cache:96KB rss:296160KB rss_huge:225280KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:111148KB active_anon:13204KB inactive_file:4KB active_file:4KB unevictable:171936KB
[ 1559.525008] Memory cgroup out of memory: Kill process 5547 (syz-executor.1) score 1226 or sacrifice child
[ 1559.534864] Killed process 5555 (syz-executor.1) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1559.547826] syz-executor.2 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 1559.559396] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[ 1559.564982] CPU: 1 PID: 5591 Comm: syz-executor.2 Not tainted 4.19.95-syzkaller #0
[ 1559.572696] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1559.582057] Call Trace:
[ 1559.584649]  dump_stack+0x197/0x210
[ 1559.588295]  dump_header+0x15e/0xa55
[ 1559.592005]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1559.597103]  ? ___ratelimit+0x60/0x595
[ 1559.600984]  ? do_raw_spin_unlock+0x181/0x270
[ 1559.605492]  oom_kill_process.cold+0x10/0x6ef
[ 1559.610002]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1559.615537]  ? task_will_free_mem+0x139/0x6e0
[ 1559.620043]  out_of_memory+0x362/0x1330
[ 1559.624019]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1559.628785]  ? oom_killer_disable+0x280/0x280
[ 1559.633276]  ? find_held_lock+0x35/0x130
[ 1559.637351]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1559.642194]  ? memcg_event_wake+0x230/0x230
[ 1559.646528]  try_charge+0xec5/0x1490
[ 1559.650240]  ? lock_downgrade+0x880/0x880
[ 1559.654396]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1559.659238]  ? rcu_read_unlock+0x33/0x60
[ 1559.663306]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1559.668152]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1559.672906]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1559.678970]  mem_cgroup_try_charge+0x259/0x6b0
[ 1559.683565]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1559.688493]  __handle_mm_fault+0x1e50/0x3f80
[ 1559.692904]  ? copy_page_range+0x2030/0x2030
[ 1559.697334]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1559.702003]  handle_mm_fault+0x1b5/0x690
[ 1559.706077]  __get_user_pages+0x609/0x1860
[ 1559.710319]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1559.714806]  ? retint_kernel+0x2d/0x2d
[ 1559.718705]  populate_vma_page_range+0x20d/0x2a0
[ 1559.723468]  __mm_populate+0x204/0x380
[ 1559.727369]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1559.732303]  __x64_sys_mlockall+0x35c/0x520
[ 1559.736626]  do_syscall_64+0xfd/0x620
[ 1559.740429]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1559.745615] RIP: 0033:0x45af49
[ 1559.748805] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1559.767818] RSP: 002b:00007f66bf404c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1559.775643] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1559.782934] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1559.790319] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1559.797596] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f66bf4056d4
[ 1559.804869] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1559.812986] Task in /syz2 killed as a result of limit of /syz2
[ 1559.819138] memory: usage 307200kB, limit 307200kB, failcnt 1315
[ 1559.825376] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1559.832305] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1559.838542] Memory cgroup stats for /syz2: cache:124KB rss:297076KB rss_huge:198656KB shmem:0KB mapped_file:0KB dirty:0KB writeback:0KB swap:0KB inactive_anon:95296KB active_anon:2360KB inactive_file:0KB active_file:4KB unevictable:199620KB
[ 1559.860959] Memory cgroup out of memory: Kill process 3927 (syz-executor.2) score 1163 or sacrifice child
[ 1559.871043] Killed process 3927 (syz-executor.2) total-vm:72720kB, anon-rss:18336kB, file-rss:34816kB, shmem-rss:0kB
[ 1664.185483] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[ 1664.191791] rcu: 	(detected by 0, t=10502 jiffies, g=166693, q=218)
[ 1664.198324] rcu: All QSes seen, last rcu_preempt kthread activity 10502 (4295103564-4295093062), jiffies_till_next_fqs=1, root ->qsmask 0x0
[ 1664.210999] syz-executor.1  R  running task    25896  5548   8009 0x80000002
[ 1664.218231] Call Trace:
[ 1664.220834]  <IRQ>
[ 1664.223022]  sched_show_task.cold+0x2ee/0x35d
[ 1664.227665]  ? set_rq_offline.part.0+0x140/0x140
[ 1664.232478]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1664.237546]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1664.243130]  rcu_check_callbacks.cold+0xaa1/0xd90
[ 1664.248040]  update_process_times+0x32/0x80
[ 1664.252412]  tick_sched_handle+0xa2/0x190
[ 1664.256708]  tick_sched_timer+0x47/0x130
[ 1664.260807]  __hrtimer_run_queues+0x33b/0xdc0
[ 1664.265332]  ? tick_sched_do_timer+0x1b0/0x1b0
[ 1664.269957]  ? hrtimer_fixup_activate+0x30/0x30
[ 1664.274654]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[ 1664.279702]  ? ktime_get_update_offsets_now+0x2d3/0x440
[ 1664.285122]  hrtimer_interrupt+0x314/0x770
[ 1664.289475]  smp_apic_timer_interrupt+0x111/0x550
[ 1664.294386]  apic_timer_interrupt+0xf/0x20
[ 1664.298633]  </IRQ>
[ 1664.300884] RIP: 0010:_raw_spin_unlock_irq+0x54/0x90
[ 1664.305998] Code: c0 d8 5b f2 88 48 ba 00 00 00 00 00 fc ff df 48 c1 e8 03 80 3c 10 00 75 33 48 83 3d ed 73 9c 01 00 74 20 fb 66 0f 1f 44 00 00 <bf> 01 00 00 00 e8 82 f8 f2 f9 65 8b 05 cb 05 ac 78 85 c0 74 06 41
[ 1664.324907] RSP: 0018:ffff8880a54af410 EFLAGS: 00000286 ORIG_RAX: ffffffffffffff13
[ 1664.332633] RAX: 1ffffffff11e4b7b RBX: ffff8880a54af480 RCX: 1ffff1101254a556
[ 1664.340042] RDX: dffffc0000000000 RSI: ffff888092a52a90 RDI: ffff888092a52a3c
[ 1664.347336] RBP: ffff8880a54af418 R08: ffff888092a521c0 R09: ffff888092a52ab0
[ 1664.354619] R10: 0000000000000000 R11: 0000000000000000 R12: ffffffff88fba5c0
[ 1664.361896] R13: ffff8880a54af4e0 R14: ffff8880a31805c0 R15: 1ffff11014a95e8c
[ 1664.369241]  css_task_iter_next+0x175/0x210
[ 1664.373575]  ? oom_badness+0x6c0/0x6c0
[ 1664.377495]  mem_cgroup_scan_tasks+0xbb/0x180
[ 1664.382004]  ? mem_cgroup_iter_break+0x30/0x30
[ 1664.386591]  ? osq_unlock+0x2a/0x1f0
[ 1664.390343]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1664.395908]  ? task_will_free_mem+0x139/0x6e0
[ 1664.400423]  ? mutex_trylock+0x1e0/0x1e0
[ 1664.404506]  out_of_memory+0x27a/0x1330
[ 1664.408499]  ? lock_downgrade+0x880/0x880
[ 1664.412664]  ? mem_cgroup_unmark_under_oom+0x8d/0xb0
[ 1664.418045]  ? oom_killer_disable+0x280/0x280
[ 1664.422550]  ? find_held_lock+0x35/0x130
[ 1664.426644]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 1664.431624]  ? memcg_event_wake+0x230/0x230
[ 1664.436006]  ? do_raw_spin_unlock+0x181/0x270
[ 1664.440537]  ? _raw_spin_unlock+0x2d/0x50
[ 1664.445336]  try_charge+0xec5/0x1490
[ 1664.449429]  ? lock_downgrade+0x880/0x880
[ 1664.453617]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 1664.458475]  ? rcu_read_unlock+0x33/0x60
[ 1664.462555]  ? get_mem_cgroup_from_mm+0x185/0x510
[ 1664.467418]  ? __mem_cgroup_largest_soft_limit_node+0x500/0x500
[ 1664.475193]  mem_cgroup_try_charge+0x259/0x6b0
[ 1664.479800]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 1664.484747]  wp_page_copy+0x430/0x16a0
[ 1664.488668]  ? follow_pfn+0x2a0/0x2a0
[ 1664.492492]  ? do_raw_spin_unlock+0x181/0x270
[ 1664.497052]  do_wp_page+0x57d/0x10b0
[ 1664.500807]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 1664.505503]  ? kasan_check_write+0x14/0x20
[ 1664.509764]  ? do_raw_spin_lock+0xd7/0x250
[ 1664.514045]  __handle_mm_fault+0x2305/0x3f80
[ 1664.518488]  ? copy_page_range+0x2030/0x2030
[ 1664.522971]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 1664.527689]  handle_mm_fault+0x1b5/0x690
[ 1664.531808]  __get_user_pages+0x609/0x1860
[ 1664.536085]  ? follow_page_mask+0x1ac0/0x1ac0
[ 1664.540623]  ? lock_acquire+0x16f/0x3f0
[ 1664.544634]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1664.550234]  populate_vma_page_range+0x20d/0x2a0
[ 1664.555023]  __mm_populate+0x204/0x380
[ 1664.558958]  ? populate_vma_page_range+0x2a0/0x2a0
[ 1664.563948]  __x64_sys_mlockall+0x35c/0x520
[ 1664.568402]  do_syscall_64+0xfd/0x620
[ 1664.572268]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1664.577475] RIP: 0033:0x45af49
[ 1664.580747] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1664.600637] RSP: 002b:00007f9959919c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[ 1664.608371] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000045af49
[ 1664.615667] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1664.622952] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1664.630330] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f995991a6d4
[ 1664.637625] R13: 00000000004c83c5 R14: 00000000004e0568 R15: 00000000ffffffff
[ 1664.645087] rcu: rcu_preempt kthread starved for 10502 jiffies! g166693 f0x2 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0
[ 1664.655944] rcu: RCU grace-period kthread stack dump:
[ 1664.661150] rcu_preempt     R  running task    29104    10      2 0x80000000
[ 1664.668377] Call Trace:
[ 1664.671005]  __schedule+0x866/0x1dc0
[ 1664.674744]  ? firmware_map_remove+0x1a7/0x1a7
[ 1664.679513]  ? _raw_spin_unlock_irqrestore+0x6b/0xe0
[ 1664.684631]  ? lockdep_hardirqs_on+0x415/0x5d0
[ 1664.689228]  ? trace_hardirqs_on+0x67/0x220
[ 1664.693575]  schedule+0x92/0x1c0
[ 1664.696957]  schedule_timeout+0x4db/0xfc0
[ 1664.701152]  ? usleep_range+0x170/0x170
[ 1664.705137]  ? trace_hardirqs_on+0x67/0x220
[ 1664.709485]  ? __next_timer_interrupt+0x1a0/0x1a0
[ 1664.714356]  ? prepare_to_swait_exclusive+0x120/0x120
[ 1664.719581]  rcu_gp_kthread+0xd5c/0x2190
[ 1664.723699]  ? rcu_blocking_is_gp+0x90/0x90
[ 1664.728033]  ? trace_hardirqs_on+0x67/0x220
[ 1664.732375]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1664.737491]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1664.743067]  ? __kthread_parkme+0xfb/0x1b0
[ 1664.747324]  kthread+0x354/0x420
[ 1664.750703]  ? rcu_blocking_is_gp+0x90/0x90
[ 1664.755035]  ? kthread_cancel_delayed_work_sync+0x20/0x20
[ 1664.760587]  ret_from_fork+0x24/0x30