))
timer_settime(0x0, 0x0, 0x0, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="080002"], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@ipv4_newaddr={0x18}, 0x18}}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

07:39:04 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
accept4$rose(r6, &(0x7f0000000180)=@full={0xb, @remote, @remote, 0x0, [@netrom, @netrom, @default, @bcast, @rose, @netrom]}, &(0x7f0000000240)=0x40, 0x800)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:39:04 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:39:04 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
accept4$rose(r6, &(0x7f0000000180)=@full={0xb, @remote, @remote, 0x0, [@netrom, @netrom, @default, @bcast, @rose, @netrom]}, &(0x7f0000000240)=0x40, 0x800)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:39:04 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x0)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
accept4$rose(r6, &(0x7f0000000180)=@full={0xb, @remote, @remote, 0x0, [@netrom, @netrom, @default, @bcast, @rose, @netrom]}, &(0x7f0000000240)=0x40, 0x800)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:39:04 executing program 3:
pipe(&(0x7f0000000140)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r1, 0x6, 0x10000000013, &(0x7f0000000180)=0x1, 0x233)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
r3 = dup(r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
connect$inet(r1, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r1, 0x6, 0x1d, &(0x7f0000000100)={0x0, 0xdf5, 0x21f6}, 0x14)
write$binfmt_misc(r0, &(0x7f0000000140)=ANY=[], 0xff01)
splice(0xffffffffffffffff, 0x0, r1, 0x0, 0xe8ba, 0x0)

[ 2026.929215] kauditd_printk_skb: 10 callbacks suppressed
[ 2026.929225] audit: type=1326 audit(1599896344.433:134927): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=29475 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:39:04 executing program 3:
pipe(&(0x7f0000000140)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r1, 0x6, 0x10000000013, &(0x7f0000000180)=0x1, 0x233)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
r3 = dup(r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
connect$inet(r1, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r1, 0x6, 0x1d, &(0x7f0000000100)={0x0, 0xdf5, 0x21f6}, 0x14)
write$binfmt_misc(r0, &(0x7f0000000140)=ANY=[], 0xff01)
splice(0xffffffffffffffff, 0x0, r1, 0x0, 0xe8ba, 0x0)

[ 2026.985194] audit: type=1326 audit(1599896344.473:134928): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=29476 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2027.008804] audit: type=1326 audit(1599896344.483:134929): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=29477 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:39:04 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
accept4$rose(r6, &(0x7f0000000180)=@full={0xb, @remote, @remote, 0x0, [@netrom, @netrom, @default, @bcast, @rose, @netrom]}, &(0x7f0000000240)=0x40, 0x800)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:39:04 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:39:04 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x0)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
accept4$rose(r6, &(0x7f0000000180)=@full={0xb, @remote, @remote, 0x0, [@netrom, @netrom, @default, @bcast, @rose, @netrom]}, &(0x7f0000000240)=0x40, 0x800)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

[ 2027.357518] audit: type=1326 audit(1599896344.483:134930): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=29478 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:39:04 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x0)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
accept4$rose(r6, &(0x7f0000000180)=@full={0xb, @remote, @remote, 0x0, [@netrom, @netrom, @default, @bcast, @rose, @netrom]}, &(0x7f0000000240)=0x40, 0x800)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:39:04 executing program 3:
pipe(&(0x7f0000000140)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r1, 0x6, 0x10000000013, &(0x7f0000000180)=0x1, 0x233)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
r3 = dup(r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
connect$inet(r1, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r1, 0x6, 0x1d, &(0x7f0000000100)={0x0, 0xdf5, 0x21f6}, 0x14)
write$binfmt_misc(r0, &(0x7f0000000140)=ANY=[], 0xff01)
splice(0xffffffffffffffff, 0x0, r1, 0x0, 0xe8ba, 0x0)

[ 2027.474899] audit: type=1326 audit(1599896344.953:134931): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=29519 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2027.519436] audit: type=1326 audit(1599896344.973:134932): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=29528 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2027.553813] audit: type=1326 audit(1599896344.973:134933): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=29529 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2027.750845] audit: type=1326 audit(1599896345.253:134934): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=29558 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:39:07 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, 0x0, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="080002"], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@ipv4_newaddr={0x18}, 0x18}}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

07:39:07 executing program 3:
pipe(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x10000000013, &(0x7f0000000180)=0x1, 0x233)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
r4 = dup(r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r2, 0x6, 0x1d, &(0x7f0000000100)={0x0, 0xdf5, 0x21f6}, 0x14)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0xff01)
splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0xe8ba, 0x0)

07:39:07 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x0)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
accept4$rose(r6, &(0x7f0000000180)=@full={0xb, @remote, @remote, 0x0, [@netrom, @netrom, @default, @bcast, @rose, @netrom]}, &(0x7f0000000240)=0x40, 0x800)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:39:07 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x0)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
accept4$rose(r6, &(0x7f0000000180)=@full={0xb, @remote, @remote, 0x0, [@netrom, @netrom, @default, @bcast, @rose, @netrom]}, &(0x7f0000000240)=0x40, 0x800)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:39:07 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
accept4$rose(r6, &(0x7f0000000180)=@full={0xb, @remote, @remote, 0x0, [@netrom, @netrom, @default, @bcast, @rose, @netrom]}, &(0x7f0000000240)=0x40, 0x800)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:39:07 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2029.982506] audit: type=1326 audit(1599896347.483:134935): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=29569 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:39:07 executing program 3:
pipe(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x10000000013, &(0x7f0000000180)=0x1, 0x233)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
r4 = dup(r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r2, 0x6, 0x1d, &(0x7f0000000100)={0x0, 0xdf5, 0x21f6}, 0x14)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0xff01)
splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0xe8ba, 0x0)

[ 2030.053566] audit: type=1326 audit(1599896347.513:134936): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=29570 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:39:08 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x0)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
accept4$rose(r6, &(0x7f0000000180)=@full={0xb, @remote, @remote, 0x0, [@netrom, @netrom, @default, @bcast, @rose, @netrom]}, &(0x7f0000000240)=0x40, 0x800)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:39:08 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:39:08 executing program 5:
prctl$PR_SET_NAME(0xf, &(0x7f0000000000)='//selinux\x00\x00\x01\x10')
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
fchdir(r0)
open(&(0x7f0000000040)='./file0\x00', 0xa0502, 0x0)
r1 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = socket(0x10, 0x3, 0x0)
write(r2, &(0x7f0000000000)="1c0000001a009b8a14000000ff0000adf87e28000000000000000000", 0x1c)
recvmmsg(r2, &(0x7f0000002ec0), 0x400000000000ec0, 0x2, &(0x7f00000001c0)={0x77359400})

07:39:08 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x0)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
accept4$rose(r6, &(0x7f0000000180)=@full={0xb, @remote, @remote, 0x0, [@netrom, @netrom, @default, @bcast, @rose, @netrom]}, &(0x7f0000000240)=0x40, 0x800)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:39:08 executing program 3:
pipe(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x10000000013, &(0x7f0000000180)=0x1, 0x233)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
r4 = dup(r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r2, 0x6, 0x1d, &(0x7f0000000100)={0x0, 0xdf5, 0x21f6}, 0x14)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0xff01)
splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0xe8ba, 0x0)

07:39:10 executing program 3:
pipe(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x10000000013, &(0x7f0000000180)=0x1, 0x233)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
r4 = dup(r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r2, 0x6, 0x1d, &(0x7f0000000100)={0x0, 0xdf5, 0x21f6}, 0x14)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0xff01)
splice(r0, 0x0, r2, 0x0, 0x0, 0x0)

07:39:10 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x0)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
accept4$rose(r6, &(0x7f0000000180)=@full={0xb, @remote, @remote, 0x0, [@netrom, @netrom, @default, @bcast, @rose, @netrom]}, &(0x7f0000000240)=0x40, 0x800)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:39:10 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
accept4$rose(r6, &(0x7f0000000180)=@full={0xb, @remote, @remote, 0x0, [@netrom, @netrom, @default, @bcast, @rose, @netrom]}, &(0x7f0000000240)=0x40, 0x800)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:39:10 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r2 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42500)
write$cgroup_type(r2, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:39:10 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, 0x0, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="080002"], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@ipv4_newaddr={0x18}, 0x18}}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

07:39:10 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x0)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
accept4$rose(r6, &(0x7f0000000180)=@full={0xb, @remote, @remote, 0x0, [@netrom, @netrom, @default, @bcast, @rose, @netrom]}, &(0x7f0000000240)=0x40, 0x800)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:39:10 executing program 3:
pipe(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x10000000013, &(0x7f0000000180)=0x1, 0x233)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
r4 = dup(r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r2, 0x6, 0x1d, &(0x7f0000000100)={0x0, 0xdf5, 0x21f6}, 0x14)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0xff01)
splice(r0, 0x0, r2, 0x0, 0x0, 0x0)

[ 2033.130236] kauditd_printk_skb: 5 callbacks suppressed
[ 2033.130244] audit: type=1326 audit(1599896350.633:134942): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=29657 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2033.165157] audit: type=1326 audit(1599896350.633:134943): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=29659 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2033.198601] audit: type=1326 audit(1599896350.693:134944): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=29658 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:39:11 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
accept4$rose(r6, &(0x7f0000000180)=@full={0xb, @remote, @remote, 0x0, [@netrom, @netrom, @default, @bcast, @rose, @netrom]}, &(0x7f0000000240)=0x40, 0x800)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:39:11 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x0)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
accept4$rose(r6, &(0x7f0000000180)=@full={0xb, @remote, @remote, 0x0, [@netrom, @netrom, @default, @bcast, @rose, @netrom]}, &(0x7f0000000240)=0x40, 0x800)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:39:11 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, 0x0, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="080002"], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@ipv4_newaddr={0x18}, 0x18}}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

07:39:11 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, 0x0, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="080002"], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@ipv4_newaddr={0x18}, 0x18}}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

07:39:11 executing program 3:
pipe(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x10000000013, &(0x7f0000000180)=0x1, 0x233)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
r4 = dup(r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r2, 0x6, 0x1d, &(0x7f0000000100)={0x0, 0xdf5, 0x21f6}, 0x14)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0xff01)
splice(r0, 0x0, r2, 0x0, 0x0, 0x0)

07:39:11 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r2 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42500)
write$cgroup_type(r2, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2033.998631] audit: type=1326 audit(1599896350.773:134945): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=29668 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:39:12 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r2 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42500)
write$cgroup_type(r2, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2034.513895] audit: type=1326 audit(1599896351.413:134946): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=29697 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2034.627720] audit: type=1326 audit(1599896352.073:134947): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=29710 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:39:12 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{0x0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:39:12 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, 0x0, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="080002"], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@ipv4_newaddr={0x18}, 0x18}}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

[ 2035.133949] audit: type=1326 audit(1599896352.163:134948): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=29716 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:39:12 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
accept4$rose(r6, &(0x7f0000000180)=@full={0xb, @remote, @remote, 0x0, [@netrom, @netrom, @default, @bcast, @rose, @netrom]}, &(0x7f0000000240)=0x40, 0x800)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:39:12 executing program 3:
prctl$PR_SET_NAME(0xf, &(0x7f0000000000)='//selinux\x00\x00\x01\x10')
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
fchdir(r0)
open(&(0x7f0000000040)='./file0\x00', 0xa0502, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = socket(0x10, 0x3, 0x0)
write(r3, &(0x7f0000000000)="1c0000001a009b8a14000000ff0000adf87e28000000000000000000", 0x1c)
recvmmsg(r3, &(0x7f0000002ec0), 0x400000000000ec0, 0x2, &(0x7f00000001c0)={0x77359400})

[ 2035.479205] audit: type=1326 audit(1599896352.973:134949): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=29733 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:39:13 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="080002"], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@ipv4_newaddr={0x18}, 0x18}}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

07:39:13 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r2 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42500)
write$cgroup_type(r2, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2035.863075] audit: type=1326 audit(1599896353.023:134950): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=29741 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:39:13 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000), 0x0, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

[ 2036.099124] audit: type=1326 audit(1599896353.533:134951): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=29765 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:39:15 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r2 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42500)
write$cgroup_type(r2, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:39:15 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
accept4$rose(r6, &(0x7f0000000180)=@full={0xb, @remote, @remote, 0x0, [@netrom, @netrom, @default, @bcast, @rose, @netrom]}, &(0x7f0000000240)=0x40, 0x800)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:39:15 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
accept4$rose(r6, &(0x7f0000000180)=@full={0xb, @remote, @remote, 0x0, [@netrom, @netrom, @default, @bcast, @rose, @netrom]}, &(0x7f0000000240)=0x40, 0x800)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:39:15 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="080002"], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@ipv4_newaddr={0x18}, 0x18}}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

07:39:15 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
accept4$rose(r6, &(0x7f0000000180)=@full={0xb, @remote, @remote, 0x0, [@netrom, @netrom, @default, @bcast, @rose, @netrom]}, &(0x7f0000000240)=0x40, 0x800)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:39:15 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2038.417412] kauditd_printk_skb: 2 callbacks suppressed
[ 2038.417421] audit: type=1326 audit(1599896355.913:134954): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=29801 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2038.463795] audit: type=1326 audit(1599896355.953:134955): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=29797 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2038.485573] audit: type=1326 audit(1599896355.963:134956): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=29798 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2038.507539] audit: type=1326 audit(1599896355.973:134957): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=29809 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:39:16 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
accept4$rose(r6, &(0x7f0000000180)=@full={0xb, @remote, @remote, 0x0, [@netrom, @netrom, @default, @bcast, @rose, @netrom]}, &(0x7f0000000240)=0x40, 0x800)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:39:16 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
accept4$rose(r6, &(0x7f0000000180)=@full={0xb, @remote, @remote, 0x0, [@netrom, @netrom, @default, @bcast, @rose, @netrom]}, &(0x7f0000000240)=0x40, 0x800)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:39:16 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='timers\x00')
preadv(r0, &(0x7f0000000840)=[{&(0x7f0000000100)=""/128, 0x80}], 0x1, 0x200, 0x0)

[ 2039.130525] audit: type=1326 audit(1599896356.623:134958): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=29839 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:39:16 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
accept4$rose(r6, &(0x7f0000000180)=@full={0xb, @remote, @remote, 0x0, [@netrom, @netrom, @default, @bcast, @rose, @netrom]}, &(0x7f0000000240)=0x40, 0x800)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:39:16 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:39:16 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
accept4$rose(r6, &(0x7f0000000180)=@full={0xb, @remote, @remote, 0x0, [@netrom, @netrom, @default, @bcast, @rose, @netrom]}, &(0x7f0000000240)=0x40, 0x800)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:39:17 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
accept4$rose(r6, &(0x7f0000000180)=@full={0xb, @remote, @remote, 0x0, [@netrom, @netrom, @default, @bcast, @rose, @netrom]}, &(0x7f0000000240)=0x40, 0x800)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:39:17 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:39:17 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="080002"], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@ipv4_newaddr={0x18}, 0x18}}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

[ 2039.492412] audit: type=1326 audit(1599896356.713:134959): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=29842 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2039.600202] audit: type=1326 audit(1599896357.043:134960): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=29862 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:39:17 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
accept4$rose(r6, &(0x7f0000000180)=@full={0xb, @remote, @remote, 0x0, [@netrom, @netrom, @default, @bcast, @rose, @netrom]}, &(0x7f0000000240)=0x40, 0x800)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

[ 2040.152285] audit: type=1326 audit(1599896357.053:134961): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=29861 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2040.181621] audit: type=1326 audit(1599896357.683:134962): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=29887 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:39:17 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
accept4$rose(r6, &(0x7f0000000180)=@full={0xb, @remote, @remote, 0x0, [@netrom, @netrom, @default, @bcast, @rose, @netrom]}, &(0x7f0000000240)=0x40, 0x800)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:39:17 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
accept4$rose(r6, &(0x7f0000000180)=@full={0xb, @remote, @remote, 0x0, [@netrom, @netrom, @default, @bcast, @rose, @netrom]}, &(0x7f0000000240)=0x40, 0x800)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:39:17 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
accept4$rose(r6, &(0x7f0000000180)=@full={0xb, @remote, @remote, 0x0, [@netrom, @netrom, @default, @bcast, @rose, @netrom]}, &(0x7f0000000240)=0x40, 0x800)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

[ 2040.492767] audit: type=1326 audit(1599896357.993:134963): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=29898 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:39:18 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
accept4$rose(r6, &(0x7f0000000180)=@full={0xb, @remote, @remote, 0x0, [@netrom, @netrom, @default, @bcast, @rose, @netrom]}, &(0x7f0000000240)=0x40, 0x800)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:39:18 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
accept4$rose(r6, &(0x7f0000000180)=@full={0xb, @remote, @remote, 0x0, [@netrom, @netrom, @default, @bcast, @rose, @netrom]}, &(0x7f0000000240)=0x40, 0x800)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:39:18 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
accept4$rose(r6, &(0x7f0000000180)=@full={0xb, @remote, @remote, 0x0, [@netrom, @netrom, @default, @bcast, @rose, @netrom]}, &(0x7f0000000240)=0x40, 0x800)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:39:18 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:39:18 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="080002"], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@ipv4_newaddr={0x18}, 0x18}}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

07:39:18 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:39:18 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
accept4$rose(r6, &(0x7f0000000180)=@full={0xb, @remote, @remote, 0x0, [@netrom, @netrom, @default, @bcast, @rose, @netrom]}, &(0x7f0000000240)=0x40, 0x800)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:39:18 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
accept4$rose(r6, &(0x7f0000000180)=@full={0xb, @remote, @remote, 0x0, [@netrom, @netrom, @default, @bcast, @rose, @netrom]}, &(0x7f0000000240)=0x40, 0x800)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:39:19 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
accept4$rose(r6, &(0x7f0000000180)=@full={0xb, @remote, @remote, 0x0, [@netrom, @netrom, @default, @bcast, @rose, @netrom]}, &(0x7f0000000240)=0x40, 0x800)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:39:19 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:39:19 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:39:19 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
accept4$rose(r6, &(0x7f0000000180)=@full={0xb, @remote, @remote, 0x0, [@netrom, @netrom, @default, @bcast, @rose, @netrom]}, &(0x7f0000000240)=0x40, 0x800)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:39:19 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="080002"], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@ipv4_newaddr={0x18}, 0x18}}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

07:39:19 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
accept4$rose(r6, &(0x7f0000000180)=@full={0xb, @remote, @remote, 0x0, [@netrom, @netrom, @default, @bcast, @rose, @netrom]}, &(0x7f0000000240)=0x40, 0x800)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:39:20 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, 0x0, 0x0)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:39:20 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="200000001400fa", @ANYRES32=0x0, @ANYBLOB="080002"], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@ipv4_newaddr={0x18}, 0x18}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

07:39:20 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
socket$inet_sctp(0x2, 0x5, 0x84)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:39:20 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, 0x0, 0x0)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:39:20 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2043.719401] kauditd_printk_skb: 15 callbacks suppressed
[ 2043.719410] audit: type=1326 audit(1599896361.214:134979): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30061 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:39:23 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
socket$inet_sctp(0x2, 0x5, 0x84)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:39:23 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
socket$inet_sctp(0x2, 0x5, 0x84)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:39:23 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x0, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
accept4$rose(r6, &(0x7f0000000180)=@full={0xb, @remote, @remote, 0x0, [@netrom, @netrom, @default, @bcast, @rose, @netrom]}, &(0x7f0000000240)=0x40, 0x800)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:39:23 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="080002"], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@ipv4_newaddr={0x18}, 0x18}}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

07:39:23 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
r1 = msgget$private(0x0, 0x0)
msgctl$MSG_INFO(r1, 0xc, 0x0)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f00000000c0)=""/66)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="200000001400fa", @ANYRES32=0x0, @ANYBLOB="08000200ac1414aa"], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@ipv4_newaddr={0x18}, 0x18}}, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/timers\x00', 0x0, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

[ 2046.205214] audit: type=1326 audit(1599896363.704:134980): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30088 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2047.179395] audit: type=1326 audit(1599896363.704:134981): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30089 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2047.987656] syz-fuzzer invoked oom-killer: gfp_mask=0x14280ca(GFP_HIGHUSER_MOVABLE|__GFP_ZERO), nodemask=(null),  order=0, oom_score_adj=0
[ 2048.134095] syz-fuzzer cpuset=/ mems_allowed=0-1
[ 2048.173961] CPU: 0 PID: 6351 Comm: syz-fuzzer Not tainted 4.14.197-syzkaller #0
[ 2048.181460] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2048.190819] Call Trace:
[ 2048.193424]  dump_stack+0x1b2/0x283
[ 2048.197046]  dump_header+0x178/0x82f
[ 2048.200761]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2048.205878]  ? ___ratelimit+0x2cd/0x522
[ 2048.209849]  oom_kill_process.cold+0x10/0xa69
[ 2048.214345]  ? lock_downgrade+0x740/0x740
[ 2048.218497]  out_of_memory+0x2dc/0x1190
[ 2048.222556]  ? oom_killer_disable+0x1c0/0x1c0
[ 2048.227054]  ? mutex_trylock+0x152/0x1a0
[ 2048.231106]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2048.235974]  ? inode_dio_wait+0x1e0/0x1e0
[ 2048.240135]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2048.252961]  ? inode_dio_wait+0x1e0/0x1e0
[ 2048.258069]  ? __lock_acquire+0x5fc/0x3f20
[ 2048.262302]  alloc_pages_vma+0xd2/0x6d0
[ 2048.266288]  __handle_mm_fault+0x25fa/0x4620
[ 2048.270689]  ? vm_insert_page+0x7c0/0x7c0
[ 2048.274827]  ? __fsnotify_inode_delete+0x20/0x20
[ 2048.279571]  ? __fsnotify_update_child_dentry_flags.part.0+0x2e0/0x2e0
[ 2048.286255]  handle_mm_fault+0x306/0x7a0
[ 2048.290375]  __do_page_fault+0x578/0xb50
[ 2048.294436]  ? spurious_fault+0x640/0x640
[ 2048.298572]  ? do_page_fault+0x60/0x4f2
[ 2048.302542]  ? page_fault+0x2f/0x50
[ 2048.306158]  page_fault+0x45/0x50
[ 2048.309597] RIP: e97b40:          (null)
[ 2048.313640] RSP: 2000:000000c00df4d5b8 EFLAGS: 00000000
[ 2049.161410] Mem-Info:
[ 2049.174895] active_anon:1212041 inactive_anon:28160 isolated_anon:0
[ 2049.174895]  active_file:611 inactive_file:576 isolated_file:115
[ 2049.174895]  unevictable:0 dirty:46 writeback:1 unstable:0
[ 2049.174895]  slab_reclaimable:24806 slab_unreclaimable:149943
[ 2049.174895]  mapped:65169 shmem:38846 pagetables:58267 bounce:0
[ 2049.174895]  free:26566 free_pcp:199 free_cma:0
[ 2049.348436] Node 0 active_anon:1680924kB inactive_anon:66480kB active_file:1208kB inactive_file:1608kB unevictable:0kB isolated(anon):0kB isolated(file):196kB mapped:242608kB dirty:156kB writeback:4kB shmem:82516kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 972800kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2049.515736] Node 1 active_anon:3167240kB inactive_anon:46160kB active_file:776kB inactive_file:204kB unevictable:0kB isolated(anon):0kB isolated(file):128kB mapped:17668kB dirty:28kB writeback:0kB shmem:72868kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2049.547396] Node 0 DMA free:10356kB min:220kB low:272kB high:324kB active_anon:4668kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2049.731655] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2049.736779] Node 0 DMA32 free:39792kB min:36272kB low:45340kB high:54408kB active_anon:1676256kB inactive_anon:66480kB active_file:1924kB inactive_file:2240kB unevictable:0kB writepending:160kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:16192kB pagetables:70132kB bounce:0kB free_pcp:1156kB local_pcp:656kB free_cma:0kB
[ 2049.936387] lowmem_reserve[]: 0 0 0 0 0
[ 2049.940417] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
07:39:27 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
accept4$rose(r6, &(0x7f0000000180)=@full={0xb, @remote, @remote, 0x0, [@netrom, @netrom, @default, @bcast, @rose, @netrom]}, &(0x7f0000000240)=0x40, 0x800)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:39:27 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="080002"], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@ipv4_newaddr={0x18}, 0x18}}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

[ 2050.121679] lowmem_reserve[]: 0 0 0 0 0
[ 2050.126449] Node 1 Normal free:55128kB min:53612kB low:67012kB high:80412kB active_anon:3167152kB inactive_anon:46156kB active_file:680kB inactive_file:136kB unevictable:0kB writepending:40kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:54688kB pagetables:162824kB bounce:0kB free_pcp:84kB local_pcp:84kB free_cma:0kB
[ 2050.341651] lowmem_reserve[]: 0 0 0 0 0
[ 2050.356526] Node 0 DMA: 9*4kB (UME) 12*8kB (UM) 1*16kB (U) 7*32kB (UME) 4*64kB (UE) 2*128kB (ME) 3*256kB (UME) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10356kB
[ 2050.451653] Node 0 DMA32: 1102*4kB (UME) 1805*8kB (UME) 450*16kB (UME) 219*32kB (UME) 108*64kB (UME) 3*128kB (M) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 40352kB
[ 2050.561649] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2050.639888] Node 1 Normal: 3206*4kB (UMEH) 475*8kB (MEH) 223*16kB (UMEH) 742*32kB (UMEH) 91*64kB (UME) 35*128kB (UME) 2*256kB (UM) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 54752kB
[ 2050.722417] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2050.781604] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2050.790276] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2050.826494] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2050.869800] 39267 total pagecache pages
[ 2050.876065] 0 pages in swap cache
[ 2050.879520] Swap cache stats: add 0, delete 0, find 0/0
[ 2050.885390] Free swap  = 0kB
[ 2050.888429] Total swap = 0kB
[ 2050.891717] 1965979 pages RAM
[ 2050.894815] 0 pages HighMem/MovableOnly
[ 2050.898795] 339077 pages reserved
[ 2050.902669] 0 pages cma reserved
[ 2050.906224] Out of memory: Kill process 30113 (syz-executor.1) score 1007 or sacrifice child
[ 2050.915114] Killed process 30113 (syz-executor.1) total-vm:93676kB, anon-rss:16580kB, file-rss:34988kB, shmem-rss:0kB
[ 2051.162110] audit: type=1326 audit(1599896368.664:134982): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30121 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:39:29 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
accept4$rose(r6, &(0x7f0000000180)=@full={0xb, @remote, @remote, 0x0, [@netrom, @netrom, @default, @bcast, @rose, @netrom]}, &(0x7f0000000240)=0x40, 0x800)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:39:29 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
accept4$rose(r6, &(0x7f0000000180)=@full={0xb, @remote, @remote, 0x0, [@netrom, @netrom, @default, @bcast, @rose, @netrom]}, &(0x7f0000000240)=0x40, 0x800)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:39:29 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x0, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
accept4$rose(r6, &(0x7f0000000180)=@full={0xb, @remote, @remote, 0x0, [@netrom, @netrom, @default, @bcast, @rose, @netrom]}, &(0x7f0000000240)=0x40, 0x800)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:39:29 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
r1 = msgget$private(0x0, 0x0)
msgctl$MSG_INFO(r1, 0xc, 0x0)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f00000000c0)=""/66)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="200000001400fa", @ANYRES32=0x0, @ANYBLOB="08000200ac1414aa"], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@ipv4_newaddr={0x18}, 0x18}}, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/timers\x00', 0x0, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

07:39:29 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
socket$inet_sctp(0x2, 0x5, 0x84)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2051.993002] audit: type=1326 audit(1599896369.494:134983): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30142 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:39:29 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="080002"], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@ipv4_newaddr={0x18}, 0x18}}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

[ 2052.898944] audit: type=1326 audit(1599896369.524:134984): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30143 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:39:30 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="080002"], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@ipv4_newaddr={0x18}, 0x18}}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

07:39:30 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x0, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
accept4$rose(r6, &(0x7f0000000180)=@full={0xb, @remote, @remote, 0x0, [@netrom, @netrom, @default, @bcast, @rose, @netrom]}, &(0x7f0000000240)=0x40, 0x800)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:39:30 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

[ 2053.031810] Bluetooth: hci3 command 0x0406 tx timeout
[ 2053.033208] audit: type=1326 audit(1599896369.574:134985): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30149 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2053.096373] audit: type=1326 audit(1599896370.594:134986): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30187 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2053.187393] audit: type=1326 audit(1599896370.644:134987): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30191 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:39:31 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:39:31 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

[ 2053.577086] audit: type=1326 audit(1599896371.074:134988): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30208 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2053.687801] audit: type=1326 audit(1599896371.124:134989): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30211 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:39:31 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="200000001400fa", @ANYRES32=0x0, @ANYBLOB="080002"], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@ipv4_newaddr={0x18}, 0x18}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

[ 2055.328340] audit: type=1326 audit(1599896372.824:134990): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30245 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2061.417395] systemd-udevd invoked oom-killer: gfp_mask=0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null),  order=1, oom_score_adj=0
[ 2061.445134] systemd-udevd cpuset=/ mems_allowed=0-1
[ 2061.450230] CPU: 1 PID: 30249 Comm: systemd-udevd Not tainted 4.14.197-syzkaller #0
[ 2061.458030] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2061.467401] Call Trace:
[ 2061.470022]  dump_stack+0x1b2/0x283
[ 2061.474261]  dump_header+0x178/0x82f
[ 2061.477999]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2061.484052]  ? ___ratelimit+0x2cd/0x522
[ 2061.488025]  oom_kill_process.cold+0x10/0xa69
[ 2061.492538]  ? lock_downgrade+0x740/0x740
[ 2061.496685]  out_of_memory+0x2dc/0x1190
[ 2061.500659]  ? oom_killer_disable+0x1c0/0x1c0
[ 2061.505149]  ? mutex_trylock+0x152/0x1a0
[ 2061.509206]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2061.514060]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2061.518927]  ? check_preemption_disabled+0x35/0x240
[ 2061.523957]  ? cache_grow_begin+0x3f/0x420
[ 2061.528190]  cache_grow_begin+0x8f/0x420
[ 2061.532246]  ? mempolicy_slab_node+0x100/0x320
[ 2061.536878]  fallback_alloc+0x207/0x2c0
[ 2061.540852]  kmem_cache_alloc+0x1e5/0x3c0
[ 2061.545002]  getname_flags+0xc8/0x550
[ 2061.548806]  do_sys_open+0x1ce/0x410
[ 2061.552518]  ? filp_open+0x60/0x60
[ 2061.556053]  ? do_syscall_64+0x4c/0x640
[ 2061.560022]  ? do_sys_open+0x410/0x410
[ 2061.563906]  do_syscall_64+0x1d5/0x640
[ 2061.567795]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2061.573001] RIP: 0033:0x7f5e751396f0
[ 2061.576700] RSP: 002b:00007fff90617788 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[ 2061.584406] RAX: ffffffffffffffda RBX: 000056284dccf5d0 RCX: 00007f5e751396f0
[ 2061.591670] RDX: 00000000000001b6 RSI: 0000000000080000 RDI: 000056284c72ef4c
[ 2061.598950] RBP: 0000000000000008 R08: 0000000000000008 R09: 0000000000000001
[ 2061.606216] R10: 0000000000080000 R11: 0000000000000246 R12: 000056284c72e68a
[ 2061.613478] R13: 0000000000000001 R14: 0000000000000000 R15: 000056284dcbc910
[ 2061.962318] Mem-Info:
[ 2061.964801] active_anon:1213782 inactive_anon:28161 isolated_anon:0
[ 2061.964801]  active_file:1095 inactive_file:1122 isolated_file:0
[ 2061.964801]  unevictable:0 dirty:2061 writeback:0 unstable:0
[ 2061.964801]  slab_reclaimable:24570 slab_unreclaimable:149762
[ 2061.964801]  mapped:64366 shmem:38846 pagetables:58271 bounce:0
[ 2061.964801]  free:24458 free_pcp:0 free_cma:0
[ 2062.110888] Node 0 active_anon:1690408kB inactive_anon:66484kB active_file:852kB inactive_file:984kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:240808kB dirty:1116kB writeback:0kB shmem:82524kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 972800kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2062.199271] Node 1 active_anon:3164720kB inactive_anon:46160kB active_file:3584kB inactive_file:3724kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:16624kB dirty:7128kB writeback:0kB shmem:72860kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2062.238502] Node 0 DMA free:10416kB min:220kB low:272kB high:324kB active_anon:4640kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2062.270441] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2062.275581] Node 0 DMA32 free:34104kB min:36272kB low:45340kB high:54408kB active_anon:1685768kB inactive_anon:66484kB active_file:852kB inactive_file:956kB unevictable:0kB writepending:1116kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:16288kB pagetables:70416kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2062.380560] lowmem_reserve[]: 0 0 0 0 0
[ 2062.404346] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2062.487854] lowmem_reserve[]: 0 0 0 0 0
[ 2062.494387] Node 1 Normal free:53404kB min:53612kB low:67012kB high:80412kB active_anon:3164720kB inactive_anon:46160kB active_file:3540kB inactive_file:3540kB unevictable:0kB writepending:7128kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:54624kB pagetables:162632kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2062.529278] lowmem_reserve[]: 0 0 0 0 0
[ 2062.533346] Node 0 DMA: 6*4kB (UME) 11*8kB (U) 2*16kB (UM) 6*32kB (UE) 5*64kB (UME) 2*128kB (ME) 3*256kB (UME) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10384kB
[ 2062.554269] Node 0 DMA32: 1204*4kB (UME) 1611*8kB (UME) 359*16kB (UME) 157*32kB (UME) 80*64kB (UME) 4*128kB (UM) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 34104kB
[ 2062.670846] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2062.681708] Node 1 Normal: 2077*4kB (UME) 375*8kB (UME) 271*16kB (UME) 604*32kB (UME) 188*64kB (UME) 44*128kB (UME) 3*256kB (UM) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 53404kB
[ 2062.712889] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2062.729293] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2062.737919] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2062.746823] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2062.756200] 41099 total pagecache pages
[ 2062.760175] 0 pages in swap cache
[ 2062.770815] Swap cache stats: add 0, delete 0, find 0/0
[ 2062.776197] Free swap  = 0kB
[ 2062.779206] Total swap = 0kB
[ 2062.820849] 1965979 pages RAM
[ 2062.823994] 0 pages HighMem/MovableOnly
[ 2062.827983] 339077 pages reserved
[ 2062.863081] 0 pages cma reserved
[ 2062.866474] Out of memory: Kill process 30245 (syz-executor.4) score 1007 or sacrifice child
[ 2062.919147] Killed process 30252 (syz-executor.4) total-vm:93676kB, anon-rss:16560kB, file-rss:34880kB, shmem-rss:0kB
[ 2063.020361] oom_reaper: reaped process 30252 (syz-executor.4), now anon-rss:0kB, file-rss:8kB, shmem-rss:0kB
07:39:41 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000), 0x2000, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

07:39:41 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
r1 = msgget$private(0x0, 0x0)
msgctl$MSG_INFO(r1, 0xc, 0x0)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f00000000c0)=""/66)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="200000001400fa", @ANYRES32=0x0, @ANYBLOB="08000200ac1414aa"], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@ipv4_newaddr={0x18}, 0x18}}, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/timers\x00', 0x0, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

07:39:41 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:39:41 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="200000001400fa", @ANYRES32=0x0, @ANYBLOB="080002"], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@ipv4_newaddr={0x18}, 0x18}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

07:39:41 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="080002"], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@ipv4_newaddr={0x18}, 0x18}}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

07:39:41 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2063.764708] audit: type=1326 audit(1599896381.265:134991): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30253 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2063.858990] audit: type=1326 audit(1599896381.295:134992): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30254 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:39:41 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2064.448706] kworker/u4:0 invoked oom-killer: gfp_mask=0x15080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null),  order=0, oom_score_adj=0
[ 2064.660741] kworker/u4:0 cpuset=/ mems_allowed=0-1
[ 2064.666160] CPU: 0 PID: 30268 Comm: kworker/u4:0 Not tainted 4.14.197-syzkaller #0
[ 2064.673862] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2064.683212] Call Trace:
[ 2064.685811]  dump_stack+0x1b2/0x283
[ 2064.689469]  dump_header+0x178/0x82f
[ 2064.693179]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2064.698281]  ? ___ratelimit+0x2cd/0x522
[ 2064.702257]  oom_kill_process.cold+0x10/0xa69
[ 2064.706771]  ? lock_downgrade+0x740/0x740
[ 2064.710924]  out_of_memory+0x2dc/0x1190
[ 2064.714907]  ? oom_killer_disable+0x1c0/0x1c0
[ 2064.719397]  ? mutex_trylock+0x152/0x1a0
[ 2064.723493]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2064.728340]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2064.733171]  ? perf_trace_lock_acquire+0x510/0x510
[ 2064.738094]  ? finish_task_switch+0x178/0x610
[ 2064.742581]  ? finish_task_switch+0x14d/0x610
[ 2064.747085]  alloc_pages_current+0x155/0x260
[ 2064.751487]  ? put_timespec64+0xf0/0xf0
[ 2064.755462]  get_zeroed_page+0x19/0x50
[ 2064.759367]  __pud_alloc+0x33/0x200
[ 2064.762990]  __handle_mm_fault+0x1012/0x4620
[ 2064.767397]  ? vm_insert_page+0x7c0/0x7c0
[ 2064.771540]  ? touch_atime+0xce/0x250
[ 2064.775346]  handle_mm_fault+0x306/0x7a0
[ 2064.779407]  __get_user_pages+0x445/0x11d0
[ 2064.783648]  ? follow_page_mask+0x18a0/0x18a0
[ 2064.788148]  get_user_pages_remote+0x1c5/0x3c0
[ 2064.792733]  copy_strings.isra.0+0x44f/0x8a0
[ 2064.797159]  ? open_exec+0x60/0x60
[ 2064.800691]  ? prepare_binprm+0x5c0/0x7e0
[ 2064.804832]  copy_strings_kernel+0x9e/0x110
[ 2064.809150]  do_execveat_common+0xd96/0x1f30
[ 2064.813556]  ? copy_strings_kernel+0x110/0x110
[ 2064.818135]  ? rcu_lockdep_current_cpu_online+0xed/0x140
[ 2064.823579]  ? rcu_read_lock_sched_held+0x16c/0x1d0
[ 2064.828592]  do_execve+0x33/0x50
[ 2064.831960]  call_usermodehelper_exec_async+0x28f/0x4a0
[ 2064.837491]  ? call_usermodehelper_exec_work+0x2a0/0x2a0
[ 2064.842935]  ret_from_fork+0x24/0x30
[ 2066.359709] Mem-Info:
[ 2066.380035] active_anon:1213853 inactive_anon:28162 isolated_anon:0
[ 2066.380035]  active_file:2065 inactive_file:2024 isolated_file:68
[ 2066.380035]  unevictable:0 dirty:3896 writeback:1 unstable:0
[ 2066.380035]  slab_reclaimable:24593 slab_unreclaimable:150034
[ 2066.380035]  mapped:64418 shmem:38846 pagetables:58378 bounce:0
[ 2066.380035]  free:21703 free_pcp:35 free_cma:0
[ 2066.551486] Node 0 active_anon:1688656kB inactive_anon:66488kB active_file:1916kB inactive_file:1900kB unevictable:0kB isolated(anon):0kB isolated(file):368kB mapped:240460kB dirty:3668kB writeback:0kB shmem:82524kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 972800kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2066.721211] Node 1 active_anon:3166756kB inactive_anon:46160kB active_file:6032kB inactive_file:6024kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:16712kB dirty:11916kB writeback:4kB shmem:72860kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2067.001387] Node 0 DMA free:10384kB min:220kB low:272kB high:324kB active_anon:4640kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2067.264468] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2067.390527] Node 0 DMA32 free:34672kB min:36272kB low:45340kB high:54408kB active_anon:1684016kB inactive_anon:66488kB active_file:2220kB inactive_file:1308kB unevictable:0kB writepending:3580kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:16224kB pagetables:70216kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2067.600843] lowmem_reserve[]: 0 0 0 0 0
[ 2067.604862] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2067.877326] lowmem_reserve[]: 0 0 0 0 0
[ 2067.897011] Node 1 Normal free:43916kB min:53612kB low:67012kB high:80412kB active_anon:3166756kB inactive_anon:46160kB active_file:6120kB inactive_file:5584kB unevictable:0kB writepending:11792kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:55040kB pagetables:163260kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2068.300495] lowmem_reserve[]: 0 0 0 0 0
[ 2068.304529] Node 0 DMA: 6*4kB (UME) 11*8kB (U) 2*16kB (UM) 7*32kB (UE) 5*64kB (UME) 2*128kB (ME) 3*256kB (UME) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10416kB
[ 2068.515109] Node 0 DMA32: 891*4kB (UME) 1774*8kB (UME) 456*16kB (UM) 146*32kB (UME) 76*64kB (UM) 1*128kB (M) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 34716kB
[ 2068.680433] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2068.820451] Node 1 Normal: 2494*4kB (UMEH) 242*8kB (UMEH) 122*16kB (UMEH) 424*32kB (UEH) 157*64kB (UMEH) 45*128kB (UMEH) 3*256kB (UM) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 44008kB
[ 2069.007797] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2069.076661] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2069.250407] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2069.259275] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2069.397285] 42715 total pagecache pages
[ 2069.458577] 0 pages in swap cache
[ 2069.513971] Swap cache stats: add 0, delete 0, find 0/0
[ 2069.519343] Free swap  = 0kB
[ 2069.600664] Total swap = 0kB
[ 2069.603742] 1965979 pages RAM
[ 2069.624495] 0 pages HighMem/MovableOnly
[ 2069.628496] 339077 pages reserved
[ 2069.672074] 0 pages cma reserved
[ 2069.675552] Out of memory: Kill process 30254 (syz-executor.5) score 1007 or sacrifice child
[ 2069.961083] syz-executor.1 invoked oom-killer: gfp_mask=0x14280ca(GFP_HIGHUSER_MOVABLE|__GFP_ZERO), nodemask=(null),  order=0, oom_score_adj=1000
[ 2070.104043] syz-executor.1 cpuset=/ mems_allowed=0-1
[ 2070.109236] CPU: 1 PID: 30258 Comm: syz-executor.1 Not tainted 4.14.197-syzkaller #0
[ 2070.117134] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2070.126477] Call Trace:
[ 2070.129063]  dump_stack+0x1b2/0x283
[ 2070.132691]  dump_header+0x178/0x82f
[ 2070.136402]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2070.141500]  ? ___ratelimit+0x2cd/0x522
[ 2070.145472]  oom_kill_process.cold+0x10/0xa69
[ 2070.149982]  ? lock_downgrade+0x740/0x740
[ 2070.154132]  out_of_memory+0x2dc/0x1190
[ 2070.158105]  ? oom_killer_disable+0x1c0/0x1c0
[ 2070.162595]  ? mutex_trylock+0x152/0x1a0
[ 2070.166655]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2070.171513]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2070.176351]  ? perf_trace_lock_acquire+0x510/0x510
[ 2070.181279]  ? perf_event_namespaces+0x30/0x30
[ 2070.185867]  ? __anon_vma_prepare+0x28f/0x4f0
[ 2070.190367]  ? anon_vma_interval_tree_insert+0x20a/0x3c0
[ 2070.195813]  alloc_pages_vma+0xd2/0x6d0
[ 2070.199782]  __handle_mm_fault+0x25fa/0x4620
[ 2070.204196]  ? vm_insert_page+0x7c0/0x7c0
[ 2070.208342]  ? vm_mmap_pgoff+0x168/0x1a0
[ 2070.212396]  ? vm_mmap_pgoff+0xcb/0x1a0
[ 2070.216376]  handle_mm_fault+0x306/0x7a0
[ 2070.220434]  __do_page_fault+0x578/0xb50
[ 2070.224493]  ? spurious_fault+0x640/0x640
[ 2070.228635]  ? do_page_fault+0x60/0x4f2
[ 2070.232603]  ? page_fault+0x2f/0x50
[ 2070.236222]  page_fault+0x45/0x50
[ 2070.239665] RIP: c390e700:0x9e8
[ 2070.242934] RSP: 20000:00007ffe02e57770 EFLAGS: 7ffe02e57870
[ 2071.710272] Mem-Info:
[ 2071.718534] active_anon:1213853 inactive_anon:28162 isolated_anon:0
[ 2071.718534]  active_file:1940 inactive_file:1923 isolated_file:0
[ 2071.718534]  unevictable:0 dirty:3837 writeback:0 unstable:0
[ 2071.718534]  slab_reclaimable:24588 slab_unreclaimable:150008
[ 2071.718534]  mapped:64196 shmem:38846 pagetables:58378 bounce:0
[ 2071.718534]  free:22285 free_pcp:0 free_cma:0
[ 2072.240256] Node 0 active_anon:1688656kB inactive_anon:66488kB active_file:1836kB inactive_file:1740kB unevictable:0kB isolated(anon):0kB isolated(file):4kB mapped:240132kB dirty:3580kB writeback:0kB shmem:82524kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 972800kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2072.568558] Node 1 active_anon:3166756kB inactive_anon:46160kB active_file:5776kB inactive_file:5848kB unevictable:0kB isolated(anon):0kB isolated(file):256kB mapped:16652kB dirty:11764kB writeback:0kB shmem:72860kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2072.920182] Node 0 DMA free:10384kB min:220kB low:272kB high:324kB active_anon:4640kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2073.260151] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2073.265227] Node 0 DMA32 free:34784kB min:36272kB low:45340kB high:54408kB active_anon:1684016kB inactive_anon:66488kB active_file:1932kB inactive_file:1672kB unevictable:0kB writepending:3580kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:16224kB pagetables:70216kB bounce:0kB free_pcp:4kB local_pcp:4kB free_cma:0kB
[ 2073.625261] lowmem_reserve[]: 0 0 0 0 0
[ 2073.629311] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2073.938010] lowmem_reserve[]: 0 0 0 0 0
[ 2074.030106] Node 1 Normal free:44040kB min:53612kB low:67012kB high:80412kB active_anon:3166756kB inactive_anon:46160kB active_file:5752kB inactive_file:5992kB unevictable:0kB writepending:11768kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:55040kB pagetables:163260kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2074.320094] lowmem_reserve[]: 0 0 0 0 0
[ 2074.324126] Node 0 DMA: 6*4kB (UME) 11*8kB (U) 2*16kB (UM) 6*32kB (UE) 5*64kB (UME) 2*128kB (ME) 3*256kB (UME) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10384kB
[ 2074.540076] Node 0 DMA32: 838*4kB (UME) 1778*8kB (UME) 457*16kB (UM) 146*32kB (UME) 76*64kB (UM) 1*128kB (M) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 34552kB
[ 2074.738228] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2074.835528] Node 1 Normal: 2494*4kB (UMEH) 242*8kB (UMEH) 122*16kB (UMEH) 425*32kB (UEH) 157*64kB (UMEH) 45*128kB (UMEH) 3*256kB (UM) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 44040kB
[ 2074.985700] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2075.032636] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2075.061590] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2075.230041] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2075.238666] 42715 total pagecache pages
[ 2075.340063] 0 pages in swap cache
[ 2075.343565] Swap cache stats: add 0, delete 0, find 0/0
[ 2075.348957] Free swap  = 0kB
[ 2075.455053] Total swap = 0kB
[ 2075.458135] 1965979 pages RAM
[ 2075.508302] 0 pages HighMem/MovableOnly
[ 2075.530006] 339077 pages reserved
[ 2075.533498] 0 pages cma reserved
[ 2075.536903] Out of memory: Kill process 24259 (syz-executor.1) score 1007 or sacrifice child
[ 2075.700038] Killed process 24259 (syz-executor.1) total-vm:93808kB, anon-rss:16588kB, file-rss:34816kB, shmem-rss:0kB
[ 2075.973872] oom_reaper: reaped process 24259 (syz-executor.1), now anon-rss:0kB, file-rss:0kB, shmem-rss:0kB
07:39:54 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
accept4$rose(r6, &(0x7f0000000180)=@full={0xb, @remote, @remote, 0x0, [@netrom, @netrom, @default, @bcast, @rose, @netrom]}, &(0x7f0000000240)=0x40, 0x800)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

[ 2077.150907] audit: type=1326 audit(1599896394.656:134993): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30287 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:39:54 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000), 0x2000, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

07:39:54 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, 0x0, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="080002"], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@ipv4_newaddr={0x18}, 0x18}}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

07:39:54 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="200000001400fa", @ANYRES32=0x0, @ANYBLOB="080002"], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@ipv4_newaddr={0x18}, 0x18}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

07:39:54 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:39:55 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2078.122972] audit: type=1326 audit(1599896395.626:134994): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30301 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2079.017325] audit: type=1326 audit(1599896395.656:134995): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30299 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2089.810779] systemd-journal invoked oom-killer: gfp_mask=0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null),  order=1, oom_score_adj=0
[ 2089.924315] systemd-journal cpuset=/ mems_allowed=0-1
[ 2089.961205] CPU: 1 PID: 3649 Comm: systemd-journal Not tainted 4.14.197-syzkaller #0
[ 2089.969110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2089.978457] Call Trace:
[ 2089.981048]  dump_stack+0x1b2/0x283
[ 2089.984673]  dump_header+0x178/0x82f
[ 2089.988383]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2089.993498]  ? ___ratelimit+0x2cd/0x522
[ 2089.997493]  oom_kill_process.cold+0x10/0xa69
[ 2090.002090]  ? lock_downgrade+0x740/0x740
[ 2090.006240]  out_of_memory+0x2dc/0x1190
[ 2090.010219]  ? oom_killer_disable+0x1c0/0x1c0
[ 2090.014712]  ? mutex_trylock+0x152/0x1a0
[ 2090.018777]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2090.023632]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2090.028470]  ? check_preemption_disabled+0x35/0x240
[ 2090.033494]  ? cache_grow_begin+0x3f/0x420
[ 2090.037727]  cache_grow_begin+0x8f/0x420
[ 2090.041787]  ? mempolicy_slab_node+0x100/0x320
[ 2090.046364]  fallback_alloc+0x207/0x2c0
[ 2090.050339]  kmem_cache_alloc+0x1e5/0x3c0
[ 2090.054575]  getname_flags+0xc8/0x550
[ 2090.058389]  do_sys_open+0x1ce/0x410
[ 2090.062106]  ? filp_open+0x60/0x60
[ 2090.065644]  ? do_syscall_64+0x4c/0x640
[ 2090.069609]  ? do_sys_open+0x410/0x410
[ 2090.073492]  do_syscall_64+0x1d5/0x640
[ 2090.077387]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2090.082566] RIP: 0033:0x7f073e29685d
[ 2090.086267] RSP: 002b:00007ffed36540f0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002
[ 2090.093971] RAX: ffffffffffffffda RBX: 00007ffed3654400 RCX: 00007f073e29685d
[ 2090.101234] RDX: 00000000000001a0 RSI: 0000000000080042 RDI: 0000563a084bffc0
[ 2090.108496] RBP: 000000000000000d R08: 000000000000ffc0 R09: 00000000ffffffff
[ 2090.115779] R10: 0000000000000069 R11: 0000000000000293 R12: 00000000ffffffff
[ 2090.123045] R13: 0000563a084bc060 R14: 00007ffed36543c0 R15: 0000563a084ca3d0
[ 2091.778015] Mem-Info:
[ 2091.794443] active_anon:1215435 inactive_anon:28162 isolated_anon:0
[ 2091.794443]  active_file:1298 inactive_file:1324 isolated_file:0
[ 2091.794443]  unevictable:0 dirty:2625 writeback:0 unstable:0
[ 2091.794443]  slab_reclaimable:24709 slab_unreclaimable:148961
[ 2091.794443]  mapped:64197 shmem:38846 pagetables:58376 bounce:0
[ 2091.794443]  free:22843 free_pcp:59 free_cma:0
[ 2092.218970] Node 0 active_anon:1696352kB inactive_anon:66488kB active_file:4kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:240132kB dirty:0kB writeback:0kB shmem:82524kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 972800kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2092.538935] Node 1 active_anon:3165388kB inactive_anon:46160kB active_file:5380kB inactive_file:5212kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:16656kB dirty:10500kB writeback:0kB shmem:72860kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2092.869071] Node 0 DMA free:10364kB min:220kB low:272kB high:324kB active_anon:4692kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2093.118724] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2093.188954] Node 0 DMA32 free:30304kB min:36272kB low:45340kB high:54408kB active_anon:1691660kB inactive_anon:66488kB active_file:4kB inactive_file:4kB unevictable:0kB writepending:0kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:16224kB pagetables:70668kB bounce:0kB free_pcp:232kB local_pcp:112kB free_cma:0kB
[ 2093.464968] lowmem_reserve[]: 0 0 0 0 0
[ 2093.495986] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2093.723243] lowmem_reserve[]: 0 0 0 0 0
[ 2093.727281] Node 1 Normal free:50736kB min:53612kB low:67012kB high:80412kB active_anon:3165388kB inactive_anon:46160kB active_file:5172kB inactive_file:5168kB unevictable:0kB writepending:10500kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:54880kB pagetables:162800kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2094.070748] lowmem_reserve[]: 0 0 0 0 0
[ 2094.074805] Node 0 DMA: 3*4kB (UME) 12*8kB (UM) 1*16kB (U) 8*32kB (UME) 4*64kB (UE) 2*128kB (ME) 3*256kB (UME) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10364kB
[ 2094.246755] Node 0 DMA32: 794*4kB (ME) 1537*8kB (UME) 329*16kB (UME) 128*32kB (UME) 84*64kB (UME) 1*128kB (E) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 30336kB
[ 2094.394976] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2094.518815] Node 1 Normal: 2826*4kB (UM) 1001*8kB (UME) 130*16kB (UME) 484*32kB (UME) 140*64kB (UME) 36*128kB (UME) 1*256kB (M) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 50704kB
[ 2094.688803] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2094.697690] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2094.823727] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2094.938770] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2094.978787] 41497 total pagecache pages
[ 2095.008957] 0 pages in swap cache
[ 2095.012420] Swap cache stats: add 0, delete 0, find 0/0
[ 2095.017783] Free swap  = 0kB
[ 2095.128775] Total swap = 0kB
[ 2095.131831] 1965979 pages RAM
[ 2095.134937] 0 pages HighMem/MovableOnly
[ 2095.238757] 339077 pages reserved
[ 2095.242235] 0 pages cma reserved
[ 2095.245596] Out of memory: Kill process 28138 (syz-executor.1) score 1007 or sacrifice child
[ 2095.398791] Killed process 28138 (syz-executor.1) total-vm:93808kB, anon-rss:16588kB, file-rss:34816kB, shmem-rss:0kB
[ 2095.586925] oom_reaper: reaped process 28138 (syz-executor.1), now anon-rss:0kB, file-rss:0kB, shmem-rss:0kB
07:40:13 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000), 0x2000, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

07:40:13 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
accept4$rose(r6, &(0x7f0000000180)=@full={0xb, @remote, @remote, 0x0, [@netrom, @netrom, @default, @bcast, @rose, @netrom]}, &(0x7f0000000240)=0x40, 0x800)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:40:13 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:40:14 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, 0x0, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="080002"], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@ipv4_newaddr={0x18}, 0x18}}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

[ 2098.082211] audit: type=1326 audit(1599896415.587:134996): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30341 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2098.176496] audit: type=1326 audit(1599896415.617:134997): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30343 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:40:18 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="200000001400fa", @ANYRES32=0x0, @ANYBLOB="080002"], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@ipv4_newaddr={0x18}, 0x18}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

07:40:18 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, 0x0, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="080002"], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@ipv4_newaddr={0x18}, 0x18}}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

07:40:18 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
r1 = msgget$private(0x0, 0x0)
msgctl$MSG_INFO(r1, 0xc, 0x0)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f00000000c0)=""/66)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="200000001400fa", @ANYRES32=0x0, @ANYBLOB="08000200ac1414aa"], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/timers\x00', 0x0, 0x0)
sendfile(0xffffffffffffffff, r2, 0x0, 0x0)

07:40:18 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:40:18 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
accept4$rose(r6, &(0x7f0000000180)=@full={0xb, @remote, @remote, 0x0, [@netrom, @netrom, @default, @bcast, @rose, @netrom]}, &(0x7f0000000240)=0x40, 0x800)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

[ 2101.089346] audit: type=1326 audit(1599896418.597:134998): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30377 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2101.475853] audit: type=1326 audit(1599896418.727:134999): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30387 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2116.463579] systemd-journal invoked oom-killer: gfp_mask=0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null),  order=1, oom_score_adj=0
[ 2116.648525] systemd-journal cpuset=/ mems_allowed=0-1
[ 2116.653973] CPU: 1 PID: 3649 Comm: systemd-journal Not tainted 4.14.197-syzkaller #0
[ 2116.662103] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2116.671631] Call Trace:
[ 2116.674244]  dump_stack+0x1b2/0x283
[ 2116.678117]  dump_header+0x178/0x82f
[ 2116.681955]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2116.690369]  ? ___ratelimit+0x2cd/0x522
[ 2116.694535]  oom_kill_process.cold+0x10/0xa69
[ 2116.699176]  ? lock_downgrade+0x740/0x740
[ 2116.703342]  out_of_memory+0x2dc/0x1190
[ 2116.707339]  ? oom_killer_disable+0x1c0/0x1c0
[ 2116.711846]  ? mutex_trylock+0x152/0x1a0
[ 2116.716291]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2116.721167]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2116.726031]  ? check_preemption_disabled+0x35/0x240
[ 2116.731185]  ? cache_grow_begin+0x3f/0x420
[ 2116.735531]  cache_grow_begin+0x8f/0x420
[ 2116.740106]  ? mempolicy_slab_node+0x100/0x320
[ 2116.744833]  fallback_alloc+0x207/0x2c0
[ 2116.749227]  kmem_cache_alloc+0x1e5/0x3c0
[ 2116.753391]  getname_flags+0xc8/0x550
[ 2116.757204]  user_path_at_empty+0x2a/0x50
[ 2116.761373]  SyS_faccessat+0x21b/0x680
[ 2116.765275]  ? SyS_fallocate+0x80/0x80
[ 2116.769180]  ? do_syscall_64+0x4c/0x640
[ 2116.773168]  ? SyS_faccessat+0x680/0x680
[ 2116.777242]  do_syscall_64+0x1d5/0x640
[ 2116.781333]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2116.786530] RIP: 0033:0x7f073dfc29c7
[ 2116.790247] RSP: 002b:00007ffed3654598 EFLAGS: 00000246 ORIG_RAX: 0000000000000015
[ 2116.797970] RAX: ffffffffffffffda RBX: 00007ffed36574b0 RCX: 00007f073dfc29c7
[ 2116.805682] RDX: 00007f073ea33a00 RSI: 0000000000000000 RDI: 0000563a07e7c9a3
[ 2116.813049] RBP: 00007ffed36545d0 R08: 0000000000000000 R09: 0000000000000000
[ 2116.820593] R10: 0000000000000069 R11: 0000000000000246 R12: 0000000000000000
[ 2116.827874] R13: 0000000000000000 R14: 00007ffed36574b0 R15: 00007ffed3654ac0
[ 2118.686672] Mem-Info:
[ 2118.737453] active_anon:1215491 inactive_anon:28162 isolated_anon:0
[ 2118.737453]  active_file:1475 inactive_file:1341 isolated_file:32
[ 2118.737453]  unevictable:0 dirty:2777 writeback:0 unstable:0
[ 2118.737453]  slab_reclaimable:24592 slab_unreclaimable:147808
[ 2118.737453]  mapped:64221 shmem:38846 pagetables:58416 bounce:0
[ 2118.737453]  free:23832 free_pcp:23 free_cma:0
[ 2119.192968] Node 0 active_anon:1691188kB inactive_anon:66488kB active_file:1196kB inactive_file:1004kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:240140kB dirty:2144kB writeback:0kB shmem:82524kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 970752kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2119.526464] Node 1 active_anon:3170776kB inactive_anon:46160kB active_file:4396kB inactive_file:4436kB unevictable:0kB isolated(anon):0kB isolated(file):128kB mapped:16744kB dirty:8964kB writeback:0kB shmem:72860kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2119.939762] Node 0 DMA free:10372kB min:220kB low:272kB high:324kB active_anon:4692kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2120.169613] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2120.175155] Node 0 DMA32 free:33804kB min:36272kB low:45340kB high:54408kB active_anon:1686496kB inactive_anon:66488kB active_file:1032kB inactive_file:1212kB unevictable:0kB writepending:2144kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:16256kB pagetables:70300kB bounce:0kB free_pcp:212kB local_pcp:124kB free_cma:0kB
[ 2120.516982] lowmem_reserve[]: 0 0 0 0 0
[ 2120.534587] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2120.756875] lowmem_reserve[]: 0 0 0 0 0
[ 2120.867153] Node 1 Normal free:51060kB min:53612kB low:67012kB high:80412kB active_anon:3170776kB inactive_anon:46160kB active_file:4980kB inactive_file:4400kB unevictable:0kB writepending:8964kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:55136kB pagetables:163328kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2121.100789] lowmem_reserve[]: 0 0 0 0 0
[ 2121.105004] Node 0 DMA: 3*4kB (UME) 13*8kB (UM) 1*16kB (U) 7*32kB (UME) 4*64kB (UE) 2*128kB (ME) 3*256kB (UME) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10340kB
[ 2121.207955] Node 0 DMA32: 951*4kB (ME) 1678*8kB (UME) 435*16kB (UME) 139*32kB (UME) 71*64kB (UME) 1*128kB (E) 0*256kB 1*512kB (M) 0*1024kB 0*2048kB 0*4096kB = 33820kB
[ 2121.373231] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2121.537129] Node 1 Normal: 2227*4kB (UME) 1431*8kB (UME) 55*16kB (UME) 452*32kB (UME) 166*64kB (UME) 35*128kB (UM) 1*256kB (M) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 51060kB
[ 2121.687121] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2121.696212] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2121.877206] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2121.886110] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2121.931489] 41652 total pagecache pages
[ 2121.935893] 0 pages in swap cache
[ 2122.027094] Swap cache stats: add 0, delete 0, find 0/0
[ 2122.032527] Free swap  = 0kB
[ 2122.035574] Total swap = 0kB
[ 2122.121580] 1965979 pages RAM
[ 2122.124947] 0 pages HighMem/MovableOnly
[ 2122.183680] 339077 pages reserved
[ 2122.251857] 0 pages cma reserved
[ 2122.255300] Out of memory: Kill process 30039 (syz-executor.1) score 1007 or sacrifice child
[ 2122.370979] Killed process 30039 (syz-executor.1) total-vm:93808kB, anon-rss:16588kB, file-rss:34816kB, shmem-rss:0kB
07:40:40 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
accept4$rose(r6, &(0x7f0000000180)=@full={0xb, @remote, @remote, 0x0, [@netrom, @netrom, @default, @bcast, @rose, @netrom]}, &(0x7f0000000240)=0x40, 0x800)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:40:40 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
r1 = msgget$private(0x0, 0x0)
msgctl$MSG_INFO(r1, 0xc, 0x0)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f00000000c0)=""/66)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="200000001400fa", @ANYRES32=0x0, @ANYBLOB="08000200ac1414aa"], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/timers\x00', 0x0, 0x0)
sendfile(0xffffffffffffffff, r2, 0x0, 0x0)

[ 2123.331458] audit: type=1326 audit(1599896440.839:135000): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30412 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2123.441659] audit: type=1326 audit(1599896440.929:135001): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30413 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:40:42 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x0)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="080002"], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@ipv4_newaddr={0x18}, 0x18}}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

07:40:42 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:40:42 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
accept4$rose(r6, &(0x7f0000000180)=@full={0xb, @remote, @remote, 0x0, [@netrom, @netrom, @default, @bcast, @rose, @netrom]}, &(0x7f0000000240)=0x40, 0x800)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:40:42 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:40:42 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
r1 = msgget$private(0x0, 0x0)
msgctl$MSG_INFO(r1, 0xc, 0x0)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f00000000c0)=""/66)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="200000001400fa", @ANYRES32=0x0, @ANYBLOB="08000200ac1414aa"], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/timers\x00', 0x0, 0x0)
sendfile(0xffffffffffffffff, r2, 0x0, 0x0)

07:40:42 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="200000001400fa", @ANYRES32=0x0, @ANYBLOB="080002"], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@ipv4_newaddr={0x18}, 0x18}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

[ 2125.024764] audit: type=1326 audit(1599896442.529:135002): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30444 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2125.968298] audit: type=1326 audit(1599896442.539:135003): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30445 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2126.346981] audit: type=1326 audit(1599896442.599:135004): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30442 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2126.581918] syz-executor.1 invoked oom-killer: gfp_mask=0x14200ca(GFP_HIGHUSER_MOVABLE), nodemask=(null),  order=0, oom_score_adj=1000
[ 2126.696900] syz-executor.1 cpuset=/ mems_allowed=0-1
[ 2126.735967] CPU: 1 PID: 30455 Comm: syz-executor.1 Not tainted 4.14.197-syzkaller #0
[ 2126.743867] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2126.753213] Call Trace:
[ 2126.755807]  dump_stack+0x1b2/0x283
[ 2126.759458]  dump_header+0x178/0x82f
[ 2126.763171]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2126.768267]  ? ___ratelimit+0x2cd/0x522
[ 2126.772239]  oom_kill_process.cold+0x10/0xa69
[ 2126.776724]  ? lock_downgrade+0x740/0x740
[ 2126.780893]  out_of_memory+0x2dc/0x1190
[ 2126.784860]  ? oom_killer_disable+0x1c0/0x1c0
[ 2126.789340]  ? mutex_trylock+0x152/0x1a0
[ 2126.793392]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2126.798255]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2126.803083]  ? __lock_acquire+0x5fc/0x3f20
[ 2126.807310]  ? __lock_acquire+0x5fc/0x3f20
[ 2126.811535]  ? perf_trace_lock+0xf7/0x490
[ 2126.815670]  alloc_pages_vma+0xd2/0x6d0
[ 2126.819654]  wp_page_copy+0x1f5/0x1ba0
[ 2126.823641]  ? tlb_flush_mmu_free+0x1a0/0x1a0
[ 2126.828122]  ? __lock_acquire+0x5fc/0x3f20
[ 2126.832356]  do_wp_page+0x245/0x1db0
[ 2126.836058]  ? __handle_mm_fault+0x129c/0x4620
[ 2126.840624]  ? finish_mkwrite_fault+0x5e0/0x5e0
[ 2126.845285]  __handle_mm_fault+0x234f/0x4620
[ 2126.849697]  ? vm_insert_page+0x7c0/0x7c0
[ 2126.853835]  ? lock_downgrade+0x740/0x740
[ 2126.857989]  handle_mm_fault+0x306/0x7a0
[ 2126.862045]  __do_page_fault+0x578/0xb50
[ 2126.866099]  ? spurious_fault+0x640/0x640
[ 2126.870241]  ? do_page_fault+0x60/0x4f2
[ 2126.874203]  ? page_fault+0x2f/0x50
[ 2126.877816]  page_fault+0x45/0x50
[ 2126.881277] RIP: 0001:0x86b
[ 2126.884191] RSP: 118cfec:000000000118cfe0 EFLAGS: 01190fe0
[ 2127.526922] Mem-Info:
[ 2127.535038] active_anon:1220635 inactive_anon:28162 isolated_anon:0
[ 2127.535038]  active_file:287 inactive_file:292 isolated_file:63
[ 2127.535038]  unevictable:0 dirty:19 writeback:22 unstable:0
[ 2127.535038]  slab_reclaimable:24845 slab_unreclaimable:147344
[ 2127.535038]  mapped:64802 shmem:38846 pagetables:58539 bounce:0
[ 2127.535038]  free:20783 free_pcp:5 free_cma:0
[ 2127.625799] Node 0 active_anon:1699704kB inactive_anon:66480kB active_file:8kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:240156kB dirty:4kB writeback:0kB shmem:82516kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 970752kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2127.676756] Node 1 active_anon:3182836kB inactive_anon:46168kB active_file:912kB inactive_file:984kB unevictable:0kB isolated(anon):0kB isolated(file):252kB mapped:18552kB dirty:72kB writeback:88kB shmem:72868kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2127.831539] Node 0 DMA free:10348kB min:220kB low:272kB high:324kB active_anon:4692kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2127.941464] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2127.946558] Node 0 DMA32 free:27196kB min:36272kB low:45340kB high:54408kB active_anon:1695012kB inactive_anon:66480kB active_file:8kB inactive_file:4kB unevictable:0kB writepending:4kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:16352kB pagetables:70244kB bounce:0kB free_pcp:140kB local_pcp:120kB free_cma:0kB
[ 2128.002650] lowmem_reserve[]: 0 0 0 0 0
[ 2128.007324] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2128.100805] lowmem_reserve[]: 0 0 0 0 0
[ 2128.104837] Node 1 Normal free:54592kB min:53612kB low:67012kB high:80412kB active_anon:3173936kB inactive_anon:46168kB active_file:604kB inactive_file:1348kB unevictable:0kB writepending:100kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:54912kB pagetables:163772kB bounce:0kB free_pcp:1108kB local_pcp:476kB free_cma:0kB
[ 2128.146087] lowmem_reserve[]: 0 0 0 0 0
[ 2128.202556] Node 0 DMA: 3*4kB (UME) 14*8kB (UM) 1*16kB (U) 7*32kB (UME) 4*64kB (UE) 2*128kB (ME) 3*256kB (UME) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10348kB
[ 2128.298185] Node 0 DMA32: 123*4kB (UME) 1506*8kB (UMEH) 334*16kB (UMEH) 132*32kB (UME) 70*64kB (UME) 1*128kB (E) 0*256kB 1*512kB (M) 0*1024kB 0*2048kB 0*4096kB = 27228kB
[ 2128.361487] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2128.430997] Node 1 Normal: 2569*4kB (UME) 1912*8kB (UMEH) 216*16kB (UME) 452*32kB (UMEH) 130*64kB (UMEH) 31*128kB (UMH) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 55780kB
[ 2128.476688] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2128.485581] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2128.536692] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2128.545612] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2128.582290] 39183 total pagecache pages
[ 2128.588913] 0 pages in swap cache
[ 2128.592391] Swap cache stats: add 0, delete 0, find 0/0
[ 2128.606684] Free swap  = 0kB
[ 2128.609728] Total swap = 0kB
[ 2128.612764] 1965979 pages RAM
[ 2128.615896] 0 pages HighMem/MovableOnly
[ 2128.647036] 339077 pages reserved
[ 2128.650532] 0 pages cma reserved
[ 2128.653895] Out of memory: Kill process 30280 (syz-executor.5) score 1007 or sacrifice child
[ 2128.690201] Killed process 30280 (syz-executor.5) total-vm:93808kB, anon-rss:16580kB, file-rss:34816kB, shmem-rss:0kB
[ 2128.804487] oom_reaper: reaped process 30280 (syz-executor.5), now anon-rss:0kB, file-rss:0kB, shmem-rss:0kB
07:40:46 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
r1 = msgget$private(0x0, 0x0)
msgctl$MSG_INFO(r1, 0xc, 0x0)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f00000000c0)=""/66)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="200000001400fa", @ANYRES32=0x0, @ANYBLOB="08000200ac1414aa"], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/timers\x00', 0x0, 0x0)
sendfile(0xffffffffffffffff, r2, 0x0, 0x0)

07:40:46 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
accept4$rose(r6, &(0x7f0000000180)=@full={0xb, @remote, @remote, 0x0, [@netrom, @netrom, @default, @bcast, @rose, @netrom]}, &(0x7f0000000240)=0x40, 0x800)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:40:46 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:40:46 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:40:46 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="200000001400fa", @ANYRES32=0x0, @ANYBLOB="080002"], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@ipv4_newaddr={0x18}, 0x18}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

07:40:46 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x0)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="080002"], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@ipv4_newaddr={0x18}, 0x18}}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

[ 2129.445689] audit: type=1326 audit(1599896446.949:135005): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30481 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2129.501021] audit: type=1326 audit(1599896446.959:135006): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30480 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2130.273074] syz-executor.5 invoked oom-killer: gfp_mask=0x14280ca(GFP_HIGHUSER_MOVABLE|__GFP_ZERO), nodemask=(null),  order=0, oom_score_adj=1000
[ 2130.308151] audit: type=1326 audit(1599896446.979:135007): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30479 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2130.336387] syz-executor.5 cpuset=/ mems_allowed=0-1
[ 2130.353789] CPU: 0 PID: 30482 Comm: syz-executor.5 Not tainted 4.14.197-syzkaller #0
[ 2130.361697] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2130.371049] Call Trace:
[ 2130.373636]  dump_stack+0x1b2/0x283
[ 2130.377263]  dump_header+0x178/0x82f
[ 2130.380977]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2130.386074]  ? ___ratelimit+0x2cd/0x522
[ 2130.390049]  oom_kill_process.cold+0x10/0xa69
[ 2130.394541]  ? lock_downgrade+0x740/0x740
[ 2130.398781]  out_of_memory+0x2dc/0x1190
[ 2130.402767]  ? oom_killer_disable+0x1c0/0x1c0
[ 2130.407259]  ? mutex_trylock+0x152/0x1a0
[ 2130.411322]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2130.416195]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2130.421065]  ? perf_trace_lock_acquire+0x510/0x510
[ 2130.425987]  ? perf_event_namespaces+0x30/0x30
[ 2130.430567]  ? __anon_vma_prepare+0x28f/0x4f0
[ 2130.435067]  ? anon_vma_interval_tree_insert+0x20a/0x3c0
[ 2130.440517]  alloc_pages_vma+0xd2/0x6d0
[ 2130.444495]  __handle_mm_fault+0x25fa/0x4620
[ 2130.448904]  ? vm_insert_page+0x7c0/0x7c0
[ 2130.453044]  ? vm_mmap_pgoff+0x168/0x1a0
[ 2130.457096]  ? vm_mmap_pgoff+0xcb/0x1a0
[ 2130.461072]  handle_mm_fault+0x306/0x7a0
[ 2130.465132]  __do_page_fault+0x578/0xb50
[ 2130.469190]  ? spurious_fault+0x640/0x640
[ 2130.473351]  ? do_page_fault+0x60/0x4f2
[ 2130.477337]  ? page_fault+0x2f/0x50
[ 2130.480970]  page_fault+0x45/0x50
[ 2130.484414] RIP: d397e700:0x86b
07:40:48 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
accept4$rose(r6, &(0x7f0000000180)=@full={0xb, @remote, @remote, 0x0, [@netrom, @netrom, @default, @bcast, @rose, @netrom]}, &(0x7f0000000240)=0x40, 0x800)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:40:48 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:40:48 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
r1 = msgget$private(0x0, 0x0)
msgctl$MSG_INFO(r1, 0xc, 0x0)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f00000000c0)=""/66)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="200000001400fa", @ANYRES32=0x0, @ANYBLOB="08000200ac1414aa"], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/timers\x00', 0x0, 0x0)
sendfile(0xffffffffffffffff, r2, 0x0, 0x0)

07:40:48 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2130.487680] RSP: 20000:00007ffd00e1dc80 EFLAGS: 7ffd00e1dd80
[ 2130.821367] audit: type=1326 audit(1599896448.329:135008): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30523 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:40:48 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

[ 2131.319173] Mem-Info:
[ 2131.353093] active_anon:1212134 inactive_anon:28161 isolated_anon:0
[ 2131.353093]  active_file:1237 inactive_file:1912 isolated_file:50
[ 2131.353093]  unevictable:0 dirty:20 writeback:0 unstable:0
[ 2131.353093]  slab_reclaimable:24656 slab_unreclaimable:148291
[ 2131.353093]  mapped:66472 shmem:38846 pagetables:58472 bounce:0
[ 2131.353093]  free:25291 free_pcp:533 free_cma:0
[ 2131.658220] Node 0 active_anon:1692168kB inactive_anon:66480kB active_file:388kB inactive_file:540kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:241028kB dirty:20kB writeback:0kB shmem:82516kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 970752kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2131.712882] audit: type=1326 audit(1599896449.219:135009): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30543 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2132.160003] audit: type=1326 audit(1599896449.519:135010): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30546 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2132.321732] Node 1 active_anon:3163796kB inactive_anon:46164kB active_file:4860kB inactive_file:10876kB unevictable:0kB isolated(anon):0kB isolated(file):512kB mapped:24440kB dirty:6148kB writeback:100kB shmem:72864kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2132.682299] Node 0 DMA free:10348kB min:220kB low:272kB high:324kB active_anon:4692kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2132.918350] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2132.954653] Node 0 DMA32 free:27356kB min:36272kB low:45340kB high:54408kB active_anon:1696444kB inactive_anon:66484kB active_file:1196kB inactive_file:1200kB unevictable:0kB writepending:1232kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:16448kB pagetables:70548kB bounce:0kB free_pcp:4kB local_pcp:0kB free_cma:0kB
[ 2133.225157] lowmem_reserve[]: 0 0 0 0 0
[ 2133.274283] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2133.464553] lowmem_reserve[]: 0 0 0 0 0
[ 2133.506002] Node 1 Normal free:51120kB min:53612kB low:67012kB high:80412kB active_anon:3163876kB inactive_anon:46160kB active_file:4808kB inactive_file:4992kB unevictable:0kB writepending:7448kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:55008kB pagetables:163904kB bounce:0kB free_pcp:104kB local_pcp:0kB free_cma:0kB
[ 2133.703147] lowmem_reserve[]: 0 0 0 0 0
[ 2133.723623] Node 0 DMA: 3*4kB (UME) 14*8kB (UM) 1*16kB (U) 8*32kB (UME) 4*64kB (UE) 2*128kB (ME) 3*256kB (UME) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10380kB
[ 2133.804192] Node 0 DMA32: 248*4kB (UME) 1630*8kB (UME) 420*16kB (UME) 112*32kB (UME) 54*64kB (UM) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 27792kB
[ 2133.963151] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2134.050817] Node 1 Normal: 2654*4kB (UME) 968*8kB (UME) 198*16kB (UME) 510*32kB (UMEH) 134*64kB (UMEH) 42*128kB (UMEH) 1*256kB (E) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 52056kB
[ 2134.184560] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2134.233933] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2134.264138] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2134.296057] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2134.392533] 41354 total pagecache pages
[ 2134.398287] 0 pages in swap cache
[ 2134.401740] Swap cache stats: add 0, delete 0, find 0/0
[ 2134.443135] Free swap  = 0kB
[ 2134.446195] Total swap = 0kB
[ 2134.526285] 1965979 pages RAM
[ 2134.529435] 0 pages HighMem/MovableOnly
[ 2134.533398] 339077 pages reserved
[ 2134.616641] 0 pages cma reserved
[ 2134.620046] Out of memory: Kill process 17463 (syz-executor.1) score 1007 or sacrifice child
[ 2134.726938] Killed process 17463 (syz-executor.1) total-vm:93676kB, anon-rss:16580kB, file-rss:34816kB, shmem-rss:0kB
07:40:52 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="200000001400fa", @ANYRES32=0x0, @ANYBLOB="080002"], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@ipv4_newaddr={0x18}, 0x18}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

07:40:52 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:40:52 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r0, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:40:52 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
r1 = msgget$private(0x0, 0x0)
msgctl$MSG_INFO(r1, 0xc, 0x0)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f00000000c0)=""/66)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="200000001400fa", @ANYRES32=0x0, @ANYBLOB="08000200ac1414aa"], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/timers\x00', 0x0, 0x0)
sendfile(0xffffffffffffffff, r2, 0x0, 0x0)

[ 2135.105123] audit: type=1326 audit(1599896452.609:135011): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30565 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2135.193322] audit: type=1326 audit(1599896452.679:135012): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30567 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:40:52 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:40:52 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x0)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="080002"], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@ipv4_newaddr={0x18}, 0x18}}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

[ 2135.871884] audit: type=1326 audit(1599896452.769:135013): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30572 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:40:53 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2137.049919] audit: type=1326 audit(1599896454.560:135014): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30598 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:40:55 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:40:55 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r0, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:40:55 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0))
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:40:55 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="080002"], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@ipv4_newaddr={0x18}, 0x18}}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

[ 2138.276663] audit: type=1326 audit(1599896455.790:135015): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30618 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2138.581297] audit: type=1326 audit(1599896455.850:135016): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30613 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2139.102953] systemd-udevd invoked oom-killer: gfp_mask=0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null),  order=1, oom_score_adj=-1000
[ 2139.140132] audit: type=1326 audit(1599896456.650:135017): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30622 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2139.228483] systemd-udevd cpuset=/ mems_allowed=0-1
[ 2139.270759] CPU: 0 PID: 3657 Comm: systemd-udevd Not tainted 4.14.197-syzkaller #0
[ 2139.278518] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2139.287869] Call Trace:
[ 2139.290461]  dump_stack+0x1b2/0x283
[ 2139.294097]  dump_header+0x178/0x82f
[ 2139.297813]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2139.302918]  ? ___ratelimit+0x2cd/0x522
[ 2139.306902]  oom_kill_process.cold+0x10/0xa69
[ 2139.311394]  ? lock_downgrade+0x740/0x740
[ 2139.315566]  out_of_memory+0x2dc/0x1190
[ 2139.319545]  ? oom_killer_disable+0x1c0/0x1c0
[ 2139.324039]  ? mutex_trylock+0x152/0x1a0
[ 2139.328097]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2139.332947]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2139.337792]  ? check_preemption_disabled+0x35/0x240
[ 2139.342814]  ? cache_grow_begin+0x3f/0x420
[ 2139.347046]  cache_grow_begin+0x8f/0x420
[ 2139.351125]  ? mempolicy_slab_node+0x100/0x320
[ 2139.355711]  fallback_alloc+0x207/0x2c0
[ 2139.359687]  kmem_cache_alloc+0x1e5/0x3c0
[ 2139.371140]  getname_flags+0xc8/0x550
[ 2139.374941]  do_sys_open+0x1ce/0x410
[ 2139.378651]  ? filp_open+0x60/0x60
[ 2139.382194]  ? do_syscall_64+0x4c/0x640
[ 2139.386184]  ? do_sys_open+0x410/0x410
[ 2139.390073]  do_syscall_64+0x1d5/0x640
[ 2139.393965]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2139.399155] RIP: 0033:0x7f5e751396f0
[ 2139.402862] RSP: 002b:00007fff9061c298 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[ 2139.410574] RAX: ffffffffffffffda RBX: 000056284dccd630 RCX: 00007f5e751396f0
[ 2139.417947] RDX: 00000000000001b6 RSI: 0000000000080241 RDI: 00007fff9061c560
[ 2139.425217] RBP: 0000000000000004 R08: 0000000000000004 R09: 0000000000000001
[ 2139.432519] R10: 0000000000080240 R11: 0000000000000246 R12: 000056284c72f002
[ 2139.440056] R13: 0000000000000001 R14: 000056284dcc9a90 R15: 00007fff9061c430
[ 2139.466497] audit: type=1326 audit(1599896456.980:135018): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30640 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2140.632885] Mem-Info:
[ 2140.635374] active_anon:1218783 inactive_anon:28162 isolated_anon:0
[ 2140.635374]  active_file:920 inactive_file:961 isolated_file:100
[ 2140.635374]  unevictable:0 dirty:1461 writeback:11 unstable:0
[ 2140.635374]  slab_reclaimable:25050 slab_unreclaimable:147339
[ 2140.635374]  mapped:64672 shmem:38846 pagetables:58684 bounce:0
[ 2140.635374]  free:20766 free_pcp:227 free_cma:0
[ 2140.843213] Node 0 active_anon:1711940kB inactive_anon:66488kB active_file:144kB inactive_file:184kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:240164kB dirty:392kB writeback:0kB shmem:82524kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 970752kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2140.947600] Node 1 active_anon:3163188kB inactive_anon:46160kB active_file:3140kB inactive_file:3088kB unevictable:0kB isolated(anon):0kB isolated(file):380kB mapped:17824kB dirty:5488kB writeback:100kB shmem:72860kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2141.155862] Node 0 DMA free:10356kB min:220kB low:272kB high:324kB active_anon:4692kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2141.255843] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2141.260922] Node 0 DMA32 free:27284kB min:36272kB low:45340kB high:54408kB active_anon:1707248kB inactive_anon:66488kB active_file:196kB inactive_file:200kB unevictable:0kB writepending:388kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:16512kB pagetables:70564kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2141.349464] lowmem_reserve[]: 0 0 0 0 0
[ 2141.353507] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2141.415431] lowmem_reserve[]: 0 0 0 0 0
[ 2141.419559] Node 1 Normal free:47700kB min:53612kB low:67012kB high:80412kB active_anon:3163188kB inactive_anon:46160kB active_file:3008kB inactive_file:2996kB unevictable:0kB writepending:5492kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:54784kB pagetables:164024kB bounce:0kB free_pcp:320kB local_pcp:208kB free_cma:0kB
[ 2141.462476] lowmem_reserve[]: 0 0 0 0 0
[ 2141.490868] Node 0 DMA: 3*4kB (UME) 15*8kB (UM) 1*16kB (U) 7*32kB (UME) 4*64kB (UE) 2*128kB (ME) 3*256kB (UME) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10356kB
[ 2141.604262] Node 0 DMA32: 171*4kB (UME) 1672*8kB (UME) 507*16kB (UME) 136*32kB (UME) 10*64kB (UM) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 27164kB
[ 2141.720234] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2141.785793] Node 1 Normal: 2640*4kB (UME) 328*8kB (UME) 46*16kB (UMEH) 603*32kB (UMEH) 150*64kB (UME) 44*128kB (UMEH) 2*256kB (ME) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 48960kB
[ 2141.872454] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2141.925370] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2141.992277] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2142.030919] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2142.090919] 40327 total pagecache pages
[ 2142.095793] 0 pages in swap cache
[ 2142.105016] Swap cache stats: add 0, delete 0, find 0/0
[ 2142.145902] Free swap  = 0kB
[ 2142.148946] Total swap = 0kB
[ 2142.151954] 1965979 pages RAM
[ 2142.155076] 0 pages HighMem/MovableOnly
[ 2142.231701] 339077 pages reserved
[ 2142.235202] 0 pages cma reserved
[ 2142.265839] Out of memory: Kill process 21062 (syz-executor.1) score 1007 or sacrifice child
[ 2142.274471] Killed process 21062 (syz-executor.1) total-vm:93676kB, anon-rss:16580kB, file-rss:34816kB, shmem-rss:0kB
[ 2142.550422] oom_reaper: reaped process 21062 (syz-executor.1), now anon-rss:0kB, file-rss:0kB, shmem-rss:0kB
07:41:00 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:41:00 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:41:00 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="080002"], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@ipv4_newaddr={0x18}, 0x18}}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

07:41:00 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0))
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:41:00 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r0, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:41:00 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
r1 = msgget$private(0x0, 0x0)
msgctl$MSG_INFO(r1, 0xc, 0x0)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f00000000c0)=""/66)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="200000001400fa", @ANYRES32=0x0, @ANYBLOB="08000200ac1414aa"], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/timers\x00', 0x0, 0x0)
sendfile(0xffffffffffffffff, r2, 0x0, 0x0)

[ 2143.198795] audit: type=1326 audit(1599896460.710:135019): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30660 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2144.646588] kworker/u4:6 invoked oom-killer: gfp_mask=0x14040d0(GFP_KERNEL|__GFP_COMP|__GFP_RECLAIMABLE), nodemask=(null),  order=0, oom_score_adj=0
[ 2144.715663] kworker/u4:6 cpuset=/ mems_allowed=0-1
[ 2144.720797] CPU: 1 PID: 12234 Comm: kworker/u4:6 Not tainted 4.14.197-syzkaller #0
[ 2144.728514] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2144.737973] Workqueue: writeback wb_workfn (flush-8:0)
[ 2144.743298] Call Trace:
[ 2144.745971]  dump_stack+0x1b2/0x283
[ 2144.749763]  dump_header+0x178/0x82f
[ 2144.753625]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2144.758797]  ? ___ratelimit+0x2cd/0x522
[ 2144.762778]  oom_kill_process.cold+0x10/0xa69
[ 2144.767402]  ? lock_downgrade+0x740/0x740
[ 2144.771655]  out_of_memory+0x2dc/0x1190
[ 2144.775640]  ? oom_killer_disable+0x1c0/0x1c0
[ 2144.780508]  ? mutex_trylock+0x152/0x1a0
[ 2144.784952]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2144.789905]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2144.794911]  ? check_preemption_disabled+0x35/0x240
[ 2144.799958]  ? mark_held_locks+0xa6/0xf0
[ 2144.804026]  ? cache_grow_begin+0x3f/0x420
[ 2144.808449]  cache_grow_begin+0x8f/0x420
[ 2144.812526]  ? mempolicy_slab_node+0x100/0x320
[ 2144.817296]  fallback_alloc+0x207/0x2c0
[ 2144.821549]  kmem_cache_alloc+0x1e5/0x3c0
[ 2144.825980]  ext4_init_io_end+0x23/0x100
[ 2144.830145]  ext4_writepages+0xf5d/0x32a0
[ 2144.834324]  ? perf_trace_lock+0xf7/0x490
[ 2144.838608]  ? lock_downgrade+0x740/0x740
[ 2144.842767]  ? ext4_mark_inode_dirty+0x7a0/0x7a0
[ 2144.847893]  ? __lock_acquire+0x5fc/0x3f20
[ 2144.852325]  ? __lock_acquire+0x5fc/0x3f20
[ 2144.856588]  ? trace_hardirqs_on+0x10/0x10
[ 2144.860845]  ? check_preemption_disabled+0x35/0x240
[ 2144.865879]  ? check_preemption_disabled+0x35/0x240
[ 2144.871094]  ? perf_trace_lock+0xf7/0x490
[ 2144.875336]  ? check_preemption_disabled+0x35/0x240
[ 2144.880617]  ? ext4_mark_inode_dirty+0x7a0/0x7a0
[ 2144.885378]  do_writepages+0xc3/0x240
[ 2144.889269]  ? reacquire_held_locks+0xb5/0x3f0
[ 2144.894636]  ? page_writeback_cpu_online+0x10/0x10
[ 2144.899579]  ? wbc_attach_and_unlock_inode+0x5e8/0x8d0
[ 2144.905025]  ? rcu_lockdep_current_cpu_online+0xed/0x140
[ 2144.910813]  __writeback_single_inode+0xda/0x1150
[ 2144.915662]  ? _raw_spin_unlock+0x29/0x40
[ 2144.920322]  ? wbc_attach_and_unlock_inode+0x5e8/0x8d0
[ 2144.925606]  writeback_sb_inodes+0x48b/0xd30
[ 2144.930370]  ? wbc_detach_inode+0x780/0x780
[ 2144.934711]  ? down_read_trylock+0x4e/0x90
[ 2144.938955]  ? trylock_super+0x1b/0xe0
[ 2144.942988]  __writeback_inodes_wb+0xbf/0x230
[ 2144.948022]  wb_writeback+0x710/0xb80
[ 2144.952072]  ? writeback_inodes_wb.constprop.0+0x1a0/0x1a0
[ 2144.957710]  wb_workfn+0x8ed/0xef0
[ 2144.961258]  ? inode_wait_for_writeback+0x30/0x30
[ 2144.966224]  process_one_work+0x793/0x14a0
[ 2144.970474]  ? work_busy+0x320/0x320
[ 2144.974255]  ? worker_thread+0x158/0xff0
[ 2144.978329]  ? _raw_spin_unlock_irq+0x24/0x80
[ 2144.982835]  worker_thread+0x5cc/0xff0
[ 2144.987138]  ? rescuer_thread+0xc80/0xc80
[ 2144.991388]  kthread+0x30d/0x420
[ 2144.994761]  ? kthread_create_on_node+0xd0/0xd0
[ 2144.999443]  ret_from_fork+0x24/0x30
[ 2145.724091] Mem-Info:
[ 2145.726791] active_anon:1218145 inactive_anon:28162 isolated_anon:0
[ 2145.726791]  active_file:647 inactive_file:609 isolated_file:83
[ 2145.726791]  unevictable:0 dirty:1273 writeback:1 unstable:0
[ 2145.726791]  slab_reclaimable:24874 slab_unreclaimable:147453
[ 2145.726791]  mapped:64344 shmem:38846 pagetables:58751 bounce:0
[ 2145.726791]  free:22304 free_pcp:52 free_cma:0
[ 2145.777235] Node 0 active_anon:1713208kB inactive_anon:66480kB active_file:4kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:240160kB dirty:0kB writeback:0kB shmem:82516kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 970752kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2145.910137] Node 1 active_anon:3159372kB inactive_anon:46168kB active_file:2508kB inactive_file:2548kB unevictable:0kB isolated(anon):0kB isolated(file):128kB mapped:17016kB dirty:5092kB writeback:4kB shmem:72868kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2145.997149] Node 0 DMA free:10356kB min:220kB low:272kB high:324kB active_anon:4692kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2146.064759] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2146.135517] Node 0 DMA32 free:27636kB min:36272kB low:45340kB high:54408kB active_anon:1708516kB inactive_anon:66480kB active_file:4kB inactive_file:4kB unevictable:0kB writepending:0kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:16512kB pagetables:70564kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2146.213405] lowmem_reserve[]: 0 0 0 0 0
[ 2146.217527] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2146.249267] lowmem_reserve[]: 0 0 0 0 0
[ 2146.253576] Node 1 Normal free:51732kB min:53612kB low:67012kB high:80412kB active_anon:3159372kB inactive_anon:46168kB active_file:2940kB inactive_file:2496kB unevictable:0kB writepending:5040kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:54944kB pagetables:164404kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2146.284206] lowmem_reserve[]: 0 0 0 0 0
[ 2146.375521] Node 0 DMA: 3*4kB (UME) 15*8kB (UM) 1*16kB (U) 7*32kB (UME) 4*64kB (UE) 2*128kB (ME) 3*256kB (UME) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10356kB
[ 2146.541585] Node 0 DMA32: 192*4kB (UME) 1683*8kB (UME) 487*16kB (UME) 134*32kB (UME) 17*64kB (UM) 2*128kB (M) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 27656kB
[ 2146.649581] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2146.745479] Node 1 Normal: 3463*4kB (UM) 123*8kB (UME) 134*16kB (UMH) 597*32kB (UMH) 151*64kB (UME) 43*128kB (UMH) 2*256kB (ME) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 51764kB
[ 2146.895500] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2146.904966] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2147.035468] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2147.044629] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2147.195448] 40129 total pagecache pages
[ 2147.199563] 0 pages in swap cache
[ 2147.203136] Swap cache stats: add 0, delete 0, find 0/0
[ 2147.285491] Free swap  = 0kB
[ 2147.288750] Total swap = 0kB
[ 2147.291866] 1965979 pages RAM
[ 2147.295284] 0 pages HighMem/MovableOnly
[ 2147.395460] 339077 pages reserved
[ 2147.399048] 0 pages cma reserved
[ 2147.402515] Out of memory: Kill process 21267 (syz-executor.1) score 1007 or sacrifice child
[ 2147.525460] Killed process 21267 (syz-executor.1) total-vm:93676kB, anon-rss:16580kB, file-rss:34816kB, shmem-rss:0kB
[ 2147.658767] oom_reaper: reaped process 21267 (syz-executor.1), now anon-rss:0kB, file-rss:0kB, shmem-rss:0kB
[ 2147.744116] audit: type=1326 audit(1599896465.250:135020): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30670 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:41:05 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="080002"], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@ipv4_newaddr={0x18}, 0x18}}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

07:41:05 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:41:05 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2147.808923] audit: type=1326 audit(1599896465.320:135021): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30674 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:41:05 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="080002"], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@ipv4_newaddr={0x18}, 0x18}}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

[ 2148.795524] audit: type=1326 audit(1599896465.430:135022): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30680 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2149.152613] systemd-journal invoked oom-killer: gfp_mask=0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null),  order=1, oom_score_adj=0
[ 2149.327219] systemd-journal cpuset=/ mems_allowed=0-1
07:41:06 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:41:06 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0))
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

[ 2149.395548] audit: type=1326 audit(1599896466.900:135023): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30688 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2149.475357] CPU: 0 PID: 3649 Comm: systemd-journal Not tainted 4.14.197-syzkaller #0
[ 2149.483366] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2149.492734] Call Trace:
[ 2149.495324]  dump_stack+0x1b2/0x283
[ 2149.498955]  dump_header+0x178/0x82f
[ 2149.502669]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2149.507771]  ? ___ratelimit+0x2cd/0x522
[ 2149.511745]  oom_kill_process.cold+0x10/0xa69
[ 2149.516248]  ? lock_downgrade+0x740/0x740
[ 2149.520400]  out_of_memory+0x2dc/0x1190
[ 2149.524383]  ? oom_killer_disable+0x1c0/0x1c0
[ 2149.529392]  ? mutex_trylock+0x152/0x1a0
[ 2149.533451]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2149.538304]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2149.543152]  ? check_preemption_disabled+0x35/0x240
[ 2149.548180]  ? cache_grow_begin+0x3f/0x420
[ 2149.552411]  cache_grow_begin+0x8f/0x420
[ 2149.556467]  ? mempolicy_slab_node+0x100/0x320
[ 2149.561051]  fallback_alloc+0x207/0x2c0
[ 2149.565029]  kmem_cache_alloc+0x1e5/0x3c0
[ 2149.569185]  getname_flags+0xc8/0x550
[ 2149.572984]  SyS_mkdirat+0x83/0x270
[ 2149.576606]  ? SyS_mknod+0x30/0x30
[ 2149.580141]  ? do_syscall_64+0x4c/0x640
[ 2149.584127]  ? SyS_mkdirat+0x270/0x270
[ 2149.588008]  do_syscall_64+0x1d5/0x640
[ 2149.591917]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2149.597101] RIP: 0033:0x7f073dfc2687
[ 2149.600889] RSP: 002b:00007ffed3654598 EFLAGS: 00000293 ORIG_RAX: 0000000000000053
[ 2149.608618] RAX: ffffffffffffffda RBX: 00007ffed36574b0 RCX: 00007f073dfc2687
[ 2149.615885] RDX: 00007f073ea33a00 RSI: 00000000000001ed RDI: 0000563a084bf8c0
[ 2149.623156] RBP: 00007ffed36545d0 R08: 0000000000000000 R09: 0000000000000000
[ 2149.630428] R10: 0000000000000069 R11: 0000000000000293 R12: 0000000000000000
[ 2149.637710] R13: 0000000000000000 R14: 00007ffed36574b0 R15: 00007ffed3654ac0
07:41:07 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2150.207396] audit: type=1326 audit(1599896467.720:135024): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30711 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2151.432779] Mem-Info:
[ 2151.453225] active_anon:1217520 inactive_anon:28161 isolated_anon:0
[ 2151.453225]  active_file:1879 inactive_file:1510 isolated_file:110
[ 2151.453225]  unevictable:0 dirty:2086 writeback:1 unstable:0
[ 2151.453225]  slab_reclaimable:24959 slab_unreclaimable:146972
[ 2151.453225]  mapped:65476 shmem:38846 pagetables:58765 bounce:0
[ 2151.453225]  free:21091 free_pcp:0 free_cma:0
[ 2151.713549] Node 0 active_anon:1713208kB inactive_anon:66480kB active_file:260kB inactive_file:228kB unevictable:0kB isolated(anon):0kB isolated(file):128kB mapped:240160kB dirty:508kB writeback:0kB shmem:82516kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 970752kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2151.906216] Node 1 active_anon:3156872kB inactive_anon:46164kB active_file:4280kB inactive_file:4188kB unevictable:0kB isolated(anon):0kB isolated(file):848kB mapped:18244kB dirty:7836kB writeback:4kB shmem:72868kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2151.993613] Node 0 DMA free:10388kB min:220kB low:272kB high:324kB active_anon:4692kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2152.157707] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2152.183206] Node 0 DMA32 free:32364kB min:36272kB low:45340kB high:54408kB active_anon:1708520kB inactive_anon:66480kB active_file:184kB inactive_file:328kB unevictable:0kB writepending:496kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:16544kB pagetables:70564kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2152.329750] lowmem_reserve[]: 0 0 0 0 0
[ 2152.354352] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2152.485018] lowmem_reserve[]: 0 0 0 0 0
[ 2152.505241] Node 1 Normal free:46756kB min:53612kB low:67012kB high:80412kB active_anon:3156868kB inactive_anon:46164kB active_file:4296kB inactive_file:3796kB unevictable:0kB writepending:7768kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:54944kB pagetables:164348kB bounce:0kB free_pcp:160kB local_pcp:56kB free_cma:0kB
[ 2152.663150] lowmem_reserve[]: 0 0 0 0 0
[ 2152.703024] Node 0 DMA: 3*4kB (UME) 15*8kB (UM) 1*16kB (U) 8*32kB (UME) 4*64kB (UE) 2*128kB (ME) 3*256kB (UME) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10388kB
[ 2152.855094] Node 0 DMA32: 145*4kB (UME) 2280*8kB (UME) 504*16kB (UME) 121*32kB (UME) 19*64kB (ME) 3*128kB (M) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 32356kB
[ 2152.974834] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2153.095081] Node 1 Normal: 2620*4kB (UM) 70*8kB (UMEH) 182*16kB (UMEH) 588*32kB (UMEH) 153*64kB (UMEH) 42*128kB (UMEH) 1*256kB (E) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 48192kB
[ 2153.199988] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2153.208973] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2153.231976] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2153.240873] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2153.285083] 40927 total pagecache pages
[ 2153.289102] 0 pages in swap cache
[ 2153.292544] Swap cache stats: add 0, delete 0, find 0/0
[ 2153.408695] Free swap  = 0kB
[ 2153.411763] Total swap = 0kB
[ 2153.414831] 1965979 pages RAM
[ 2153.435065] 0 pages HighMem/MovableOnly
[ 2153.439068] 339077 pages reserved
[ 2153.442510] 0 pages cma reserved
[ 2153.545054] Out of memory: Kill process 21597 (syz-executor.1) score 1007 or sacrifice child
[ 2153.553691] Killed process 21597 (syz-executor.1) total-vm:93676kB, anon-rss:16580kB, file-rss:34816kB, shmem-rss:0kB
[ 2153.918147] oom_reaper: reaped process 21597 (syz-executor.1), now anon-rss:0kB, file-rss:0kB, shmem-rss:0kB
07:41:11 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="080002"], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@ipv4_newaddr={0x18}, 0x18}}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

07:41:11 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:41:11 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:41:12 executing program 4:
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2154.565735] audit: type=1326 audit(1599896472.081:135025): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30725 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2155.400677] audit: type=1326 audit(1599896472.151:135026): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30723 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2155.503247] syz-executor.4 invoked oom-killer: gfp_mask=0x14200ca(GFP_HIGHUSER_MOVABLE), nodemask=(null),  order=0, oom_score_adj=1000
[ 2155.594175] syz-executor.4 cpuset=/ mems_allowed=0-1
[ 2155.650933] CPU: 0 PID: 30728 Comm: syz-executor.4 Not tainted 4.14.197-syzkaller #0
[ 2155.658846] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2155.668217] Call Trace:
[ 2155.670811]  dump_stack+0x1b2/0x283
[ 2155.674448]  dump_header+0x178/0x82f
[ 2155.678158]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2155.683262]  ? ___ratelimit+0x2cd/0x522
[ 2155.687244]  oom_kill_process.cold+0x10/0xa69
[ 2155.691729]  ? lock_downgrade+0x740/0x740
[ 2155.695890]  out_of_memory+0x2dc/0x1190
[ 2155.699854]  ? oom_killer_disable+0x1c0/0x1c0
[ 2155.704334]  ? mutex_trylock+0x152/0x1a0
[ 2155.708386]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2155.713228]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2155.718085]  ? perf_trace_lock+0xf7/0x490
[ 2155.722224]  alloc_pages_vma+0xd2/0x6d0
[ 2155.726195]  wp_page_copy+0x1f5/0x1ba0
[ 2155.730083]  ? tlb_flush_mmu_free+0x1a0/0x1a0
[ 2155.734577]  do_wp_page+0x245/0x1db0
[ 2155.738288]  ? __handle_mm_fault+0x129c/0x4620
[ 2155.742881]  ? finish_mkwrite_fault+0x5e0/0x5e0
[ 2155.747550]  __handle_mm_fault+0x234f/0x4620
[ 2155.751953]  ? vm_insert_page+0x7c0/0x7c0
[ 2155.756087]  ? retint_kernel+0x2d/0x2d
[ 2155.759975]  handle_mm_fault+0x306/0x7a0
[ 2155.764033]  __do_page_fault+0x578/0xb50
[ 2155.768086]  ? spurious_fault+0x640/0x640
[ 2155.772222]  ? do_page_fault+0x60/0x4f2
[ 2155.776184]  ? page_fault+0x2f/0x50
[ 2155.779799]  page_fault+0x45/0x50
[ 2155.783235] RIP: 20e159:0x20e12c
[ 2155.786604] RSP: 118cf40:000000000118d940 EFLAGS: 000003e8
[ 2156.664195] Mem-Info:
[ 2156.675986] active_anon:1216319 inactive_anon:28162 isolated_anon:0
[ 2156.675986]  active_file:543 inactive_file:1153 isolated_file:96
[ 2156.675986]  unevictable:0 dirty:655 writeback:4 unstable:0
[ 2156.675986]  slab_reclaimable:24618 slab_unreclaimable:147596
[ 2156.675986]  mapped:65139 shmem:38846 pagetables:58766 bounce:0
[ 2156.675986]  free:23316 free_pcp:161 free_cma:0
[ 2156.711788] Node 0 active_anon:1719088kB inactive_anon:66480kB active_file:112kB inactive_file:296kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:240164kB dirty:432kB writeback:0kB shmem:82516kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 970752kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2156.742544] Node 1 active_anon:3146188kB inactive_anon:46168kB active_file:2160kB inactive_file:4264kB unevictable:0kB isolated(anon):0kB isolated(file):320kB mapped:20492kB dirty:2188kB writeback:16kB shmem:72868kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2156.939100] Node 0 DMA free:10356kB min:220kB low:272kB high:324kB active_anon:4692kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2157.074822] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2157.085180] Node 0 DMA32 free:29060kB min:36272kB low:45340kB high:54408kB active_anon:1714396kB inactive_anon:66480kB active_file:112kB inactive_file:324kB unevictable:0kB writepending:432kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:16544kB pagetables:70572kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2157.197222] lowmem_reserve[]: 0 0 0 0 0
[ 2157.201266] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2157.277145] lowmem_reserve[]: 0 0 0 0 0
[ 2157.291456] Node 1 Normal free:57092kB min:53612kB low:67012kB high:80412kB active_anon:3146312kB inactive_anon:46168kB active_file:1068kB inactive_file:3624kB unevictable:0kB writepending:2252kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:55008kB pagetables:164556kB bounce:0kB free_pcp:168kB local_pcp:8kB free_cma:0kB
[ 2157.428264] lowmem_reserve[]: 0 0 0 0 0
[ 2157.484811] Node 0 DMA: 3*4kB (UME) 15*8kB (UM) 1*16kB (U) 7*32kB (UME) 4*64kB (UE) 2*128kB (ME) 3*256kB (UME) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10356kB
[ 2157.520834] Node 0 DMA32: 65*4kB (UME) 2183*8kB (UME) 482*16kB (UME) 105*32kB (UME) 5*64kB (M) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 29116kB
[ 2157.545110] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2157.566109] Node 1 Normal: 2087*4kB (UME) 998*8kB (UM) 433*16kB (UMEH) 456*32kB (UMEH) 154*64kB (UMEH) 42*128kB (UMEH) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 53084kB
[ 2157.703042] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2157.727367] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2157.756542] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2157.824881] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2157.853782] 40888 total pagecache pages
[ 2157.884113] 0 pages in swap cache
[ 2157.887638] Swap cache stats: add 0, delete 0, find 0/0
[ 2157.892991] Free swap  = 0kB
[ 2157.916081] Total swap = 0kB
[ 2157.919194] 1965979 pages RAM
[ 2157.922295] 0 pages HighMem/MovableOnly
[ 2157.936900] 339077 pages reserved
[ 2157.944430] 0 pages cma reserved
[ 2158.001051] Out of memory: Kill process 23629 (syz-executor.1) score 1007 or sacrifice child
[ 2158.055272] Killed process 23629 (syz-executor.1) total-vm:93676kB, anon-rss:16580kB, file-rss:34816kB, shmem-rss:0kB
[ 2158.999949] audit: type=1326 audit(1599896476.511:135027): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30755 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2159.077177] audit: type=1326 audit(1599896476.511:135028): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30757 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2159.414853] audit: type=1326 audit(1599896476.541:135029): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30753 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2159.520505] audit: type=1326 audit(1599896476.551:135030): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30758 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2160.581865] systemd-journal invoked oom-killer: gfp_mask=0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null),  order=1, oom_score_adj=0
[ 2160.629577] systemd-journal cpuset=/ mems_allowed=0-1
[ 2160.651548] CPU: 1 PID: 3649 Comm: systemd-journal Not tainted 4.14.197-syzkaller #0
[ 2160.659450] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2160.668805] Call Trace:
[ 2160.671393]  dump_stack+0x1b2/0x283
[ 2160.675021]  dump_header+0x178/0x82f
[ 2160.678733]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2160.683829]  ? ___ratelimit+0x2cd/0x522
[ 2160.687808]  oom_kill_process.cold+0x10/0xa69
[ 2160.692300]  ? lock_downgrade+0x740/0x740
[ 2160.696450]  out_of_memory+0x2dc/0x1190
[ 2160.700422]  ? oom_killer_disable+0x1c0/0x1c0
[ 2160.704910]  ? mutex_trylock+0x152/0x1a0
[ 2160.708968]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2160.713824]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2160.718670]  ? check_preemption_disabled+0x35/0x240
[ 2160.723704]  ? cache_grow_begin+0x3f/0x420
[ 2160.727942]  cache_grow_begin+0x8f/0x420
[ 2160.732002]  ? mempolicy_slab_node+0x100/0x320
[ 2160.736584]  fallback_alloc+0x207/0x2c0
[ 2160.740563]  kmem_cache_alloc+0x1e5/0x3c0
[ 2160.744709]  getname_flags+0xc8/0x550
[ 2160.748537]  user_path_at_empty+0x2a/0x50
[ 2160.752684]  SyS_faccessat+0x21b/0x680
[ 2160.756568]  ? SyS_fallocate+0x80/0x80
[ 2160.760450]  ? do_syscall_64+0x4c/0x640
[ 2160.764414]  ? SyS_faccessat+0x680/0x680
[ 2160.768464]  do_syscall_64+0x1d5/0x640
[ 2160.772343]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2160.777520] RIP: 0033:0x7f073dfc29c7
[ 2160.781220] RSP: 002b:00007ffed3656898 EFLAGS: 00000246 ORIG_RAX: 0000000000000015
[ 2160.788932] RAX: ffffffffffffffda RBX: 00007ffed36574b0 RCX: 00007f073dfc29c7
[ 2160.796202] RDX: 00007f073ea33a00 RSI: 0000000000000000 RDI: 0000563a07e7c9a3
[ 2160.803467] RBP: 00007ffed36568d0 R08: 0000000000000000 R09: 0000000000000000
[ 2160.810728] R10: 0000000000000030 R11: 0000000000000246 R12: 0000000000000000
[ 2160.817984] R13: 0000000000000000 R14: 00007ffed36574b0 R15: 0000563a084c9a40
[ 2161.080875] Mem-Info:
[ 2161.083370] active_anon:1216357 inactive_anon:28162 isolated_anon:0
[ 2161.083370]  active_file:121 inactive_file:112 isolated_file:9
[ 2161.083370]  unevictable:0 dirty:2 writeback:0 unstable:0
[ 2161.083370]  slab_reclaimable:24691 slab_unreclaimable:147725
[ 2161.083370]  mapped:64486 shmem:38846 pagetables:58646 bounce:0
[ 2161.083370]  free:25145 free_pcp:0 free_cma:0
[ 2161.142479] Node 0 active_anon:1711228kB inactive_anon:66492kB active_file:452kB inactive_file:324kB unevictable:0kB isolated(anon):0kB isolated(file):128kB mapped:240944kB dirty:8kB writeback:0kB shmem:82528kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 956416kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2161.259372] Node 1 active_anon:3154200kB inactive_anon:46156kB active_file:96kB inactive_file:152kB unevictable:0kB isolated(anon):0kB isolated(file):128kB mapped:17300kB dirty:0kB writeback:0kB shmem:72856kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2161.395156] Node 0 DMA free:10356kB min:220kB low:272kB high:324kB active_anon:4692kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2161.617410] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2161.622486] Node 0 DMA32 free:36624kB min:36272kB low:45340kB high:54408kB active_anon:1706536kB inactive_anon:66492kB active_file:592kB inactive_file:252kB unevictable:0kB writepending:0kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:16512kB pagetables:70520kB bounce:0kB free_pcp:528kB local_pcp:20kB free_cma:0kB
[ 2161.773445] lowmem_reserve[]: 0 0 0 0 0
[ 2161.777593] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2161.919258] lowmem_reserve[]: 0 0 0 0 0
[ 2161.954585] Node 1 Normal free:53364kB min:53612kB low:67012kB high:80412kB active_anon:3154200kB inactive_anon:46156kB active_file:32kB inactive_file:0kB unevictable:0kB writepending:0kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:54816kB pagetables:164028kB bounce:0kB free_pcp:392kB local_pcp:152kB free_cma:0kB
[ 2162.151333] lowmem_reserve[]: 0 0 0 0 0
[ 2162.209513] Node 0 DMA: 3*4kB (UME) 15*8kB (UM) 1*16kB (U) 7*32kB (UME) 4*64kB (UE) 2*128kB (ME) 3*256kB (UME) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10356kB
[ 2162.374499] Node 0 DMA32: 91*4kB (UME) 1974*8kB (UME) 519*16kB (UME) 140*32kB (UME) 25*64kB (UM) 13*128kB (UM) 1*256kB (M) 2*512kB (UM) 1*1024kB (U) 1*2048kB (U) 0*4096kB = 36556kB
[ 2162.484500] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2162.584492] Node 1 Normal: 2264*4kB (UME) 1037*8kB (UMEH) 509*16kB (UMEH) 423*32kB (UMEH) 153*64kB (UMH) 42*128kB (UMEH) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 54200kB
[ 2162.734894] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2162.804110] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2162.855237] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2162.864093] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2162.967811] 38886 total pagecache pages
[ 2162.971827] 0 pages in swap cache
[ 2163.012677] Swap cache stats: add 0, delete 0, find 0/0
[ 2163.048755] Free swap  = 0kB
[ 2163.051795] Total swap = 0kB
[ 2163.134481] 1965979 pages RAM
[ 2163.137630] 0 pages HighMem/MovableOnly
[ 2163.141604] 339077 pages reserved
[ 2163.187819] 0 pages cma reserved
[ 2163.191208] Out of memory: Kill process 24154 (syz-executor.1) score 1007 or sacrifice child
[ 2163.314487] Killed process 24154 (syz-executor.1) total-vm:93676kB, anon-rss:16580kB, file-rss:34816kB, shmem-rss:0kB
[ 2163.538742] oom_reaper: reaped process 24154 (syz-executor.1), now anon-rss:0kB, file-rss:0kB, shmem-rss:0kB
[ 2164.012486] audit: type=1326 audit(1599896481.521:135031): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30792 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2164.089514] audit: type=1326 audit(1599896481.551:135032): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30790 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2164.412822] audit: type=1326 audit(1599896481.551:135033): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30791 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2164.580853] systemd-journal invoked oom-killer: gfp_mask=0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null),  order=1, oom_score_adj=0
[ 2164.649151] systemd-journal cpuset=/ mems_allowed=0-1
[ 2164.666384] CPU: 1 PID: 3649 Comm: systemd-journal Not tainted 4.14.197-syzkaller #0
[ 2164.674291] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2164.683644] Call Trace:
[ 2164.686235]  dump_stack+0x1b2/0x283
[ 2164.689868]  dump_header+0x178/0x82f
[ 2164.693582]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2164.698680]  ? ___ratelimit+0x2cd/0x522
[ 2164.702681]  oom_kill_process.cold+0x10/0xa69
[ 2164.707176]  ? lock_downgrade+0x740/0x740
[ 2164.711325]  out_of_memory+0x2dc/0x1190
[ 2164.715515]  ? oom_killer_disable+0x1c0/0x1c0
[ 2164.720009]  ? mutex_trylock+0x152/0x1a0
[ 2164.724068]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2164.728923]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2164.733769]  ? check_preemption_disabled+0x35/0x240
[ 2164.738794]  ? cache_grow_begin+0x3f/0x420
[ 2164.743030]  cache_grow_begin+0x8f/0x420
[ 2164.747092]  ? mempolicy_slab_node+0x100/0x320
[ 2164.751676]  fallback_alloc+0x207/0x2c0
[ 2164.755658]  kmem_cache_alloc+0x1e5/0x3c0
[ 2164.759844]  getname_flags+0xc8/0x550
[ 2164.763649]  user_path_at_empty+0x2a/0x50
[ 2164.767818]  SyS_faccessat+0x21b/0x680
[ 2164.771706]  ? SyS_fallocate+0x80/0x80
[ 2164.775677]  ? do_syscall_64+0x4c/0x640
[ 2164.779643]  ? SyS_faccessat+0x680/0x680
[ 2164.783706]  do_syscall_64+0x1d5/0x640
[ 2164.787596]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2164.792780] RIP: 0033:0x7f073dfc29c7
[ 2164.796484] RSP: 002b:00007ffed3656898 EFLAGS: 00000246 ORIG_RAX: 0000000000000015
[ 2164.804189] RAX: ffffffffffffffda RBX: 00007ffed36574b0 RCX: 00007f073dfc29c7
[ 2164.811455] RDX: 00007f073ea33a00 RSI: 0000000000000000 RDI: 0000563a07e7c9a3
[ 2164.818739] RBP: 00007ffed36568d0 R08: 0000000000000000 R09: 0000000000000000
[ 2164.826024] R10: 0000000000000030 R11: 0000000000000246 R12: 0000000000000000
[ 2164.833295] R13: 0000000000000000 R14: 00007ffed36574b0 R15: 0000563a084c9a40
[ 2165.264709] Mem-Info:
[ 2165.267159] active_anon:1220890 inactive_anon:28162 isolated_anon:0
[ 2165.267159]  active_file:114 inactive_file:99 isolated_file:57
[ 2165.267159]  unevictable:0 dirty:30 writeback:0 unstable:0
[ 2165.267159]  slab_reclaimable:24708 slab_unreclaimable:147330
[ 2165.267159]  mapped:64520 shmem:38846 pagetables:58743 bounce:0
[ 2165.267159]  free:20867 free_pcp:0 free_cma:0
[ 2165.443535] Node 0 active_anon:1719088kB inactive_anon:66492kB active_file:392kB inactive_file:184kB unevictable:0kB isolated(anon):0kB isolated(file):256kB mapped:240876kB dirty:64kB writeback:4kB shmem:82528kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 958464kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2165.546642] Node 1 active_anon:3164472kB inactive_anon:46156kB active_file:64kB inactive_file:88kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:17104kB dirty:56kB writeback:0kB shmem:72856kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2165.641223] Node 0 DMA free:10356kB min:220kB low:272kB high:324kB active_anon:4692kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2165.714207] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2165.730705] Node 0 DMA32 free:28788kB min:36272kB low:45340kB high:54408kB active_anon:1714396kB inactive_anon:66492kB active_file:556kB inactive_file:12kB unevictable:0kB writepending:68kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:16768kB pagetables:70536kB bounce:0kB free_pcp:376kB local_pcp:0kB free_cma:0kB
[ 2165.813630] lowmem_reserve[]: 0 0 0 0 0
[ 2165.822570] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2166.015536] lowmem_reserve[]: 0 0 0 0 0
[ 2166.027393] Node 1 Normal free:63688kB min:53612kB low:67012kB high:80412kB active_anon:3144312kB inactive_anon:46156kB active_file:44kB inactive_file:44kB unevictable:0kB writepending:12kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:54944kB pagetables:164400kB bounce:0kB free_pcp:1364kB local_pcp:636kB free_cma:0kB
[ 2166.078000] lowmem_reserve[]: 0 0 0 0 0
07:41:15 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
syz_open_procfs(0x0, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:41:15 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x42500)
write$cgroup_type(0xffffffffffffffff, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:41:16 executing program 4:
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:41:16 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:41:21 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(0xffffffffffffffff, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:41:21 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
syz_open_procfs(0x0, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:41:21 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x42500)
write$cgroup_type(0xffffffffffffffff, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:41:21 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000), 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="080002"], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@ipv4_newaddr={0x18}, 0x18}}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

[ 2166.098208] Node 0 DMA: 3*4kB (UME) 15*8kB (UM) 1*16kB (U) 7*32kB (UME) 4*64kB (UE) 2*128kB (ME) 3*256kB (UME) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10356kB
[ 2166.218133] Node 0 DMA32: 27*4kB (UM) 2053*8kB (UMEH) 565*16kB (UME) 144*32kB (UMEH) 29*64kB (UM) 4*128kB (UM) 0*256kB 1*512kB (U) 1*1024kB (U) 1*2048kB (H) 0*4096kB = 36132kB
[ 2166.242611] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2166.260556] Node 1 Normal: 2569*4kB (UMEH) 1627*8kB (UMEH) 549*16kB (UMEH) 475*32kB (UMEH) 153*64kB (UMH) 40*128kB (UME) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 62188kB
[ 2166.331847] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2166.358401] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2166.402836] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2166.414504] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2166.444012] 39920 total pagecache pages
[ 2166.454258] 0 pages in swap cache
[ 2166.457751] Swap cache stats: add 0, delete 0, find 0/0
[ 2166.463105] Free swap  = 0kB
[ 2166.484248] Total swap = 0kB
[ 2166.487297] 1965979 pages RAM
[ 2166.490393] 0 pages HighMem/MovableOnly
[ 2166.529070] 339077 pages reserved
[ 2166.565315] 0 pages cma reserved
[ 2166.568777] Out of memory: Kill process 28017 (syz-executor.1) score 1007 or sacrifice child
[ 2166.605050] Killed process 28017 (syz-executor.1) total-vm:93676kB, anon-rss:16580kB, file-rss:34816kB, shmem-rss:0kB
[ 2166.705517] oom_reaper: reaped process 28017 (syz-executor.1), now anon-rss:0kB, file-rss:0kB, shmem-rss:0kB
07:41:24 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x42500)
write$cgroup_type(0xffffffffffffffff, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:41:24 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(0xffffffffffffffff, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:41:24 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="080002"], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@ipv4_newaddr={0x18}, 0x18}}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

07:41:24 executing program 4:
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:41:24 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
syz_open_procfs(0x0, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

[ 2167.263917] audit: type=1326 audit(1599896484.772:135034): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30839 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2167.297580] audit: type=1326 audit(1599896484.812:135035): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30840 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2167.328867] audit: type=1326 audit(1599896484.842:135036): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30843 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2167.362652] audit: type=1326 audit(1599896484.842:135037): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30848 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:41:25 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(0xffffffffffffffff, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:41:25 executing program 4:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:41:25 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:41:25 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

[ 2167.779433] audit: type=1326 audit(1599896485.282:135038): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30878 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2167.838763] audit: type=1326 audit(1599896485.292:135039): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30877 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2168.398715] audit: type=1326 audit(1599896485.322:135040): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30875 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:41:26 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:41:26 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:41:26 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000), 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="080002"], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@ipv4_newaddr={0x18}, 0x18}}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

[ 2169.208263] kauditd_printk_skb: 2 callbacks suppressed
[ 2169.208272] audit: type=1326 audit(1599896486.722:135043): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30923 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:41:26 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:41:27 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:41:27 executing program 4:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2170.094951] audit: type=1326 audit(1599896487.612:135044): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30929 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2170.168009] audit: type=1326 audit(1599896487.682:135045): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30932 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:41:28 executing program 4:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:41:28 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:41:28 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:41:28 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2171.104048] audit: type=1326 audit(1599896488.612:135046): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30944 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2171.135805] audit: type=1326 audit(1599896488.622:135047): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30946 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2172.418518] audit: type=1326 audit(1599896488.692:135048): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30945 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:41:30 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:41:30 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

[ 2172.594494] audit: type=1326 audit(1599896488.702:135049): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30948 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2174.154522] audit: type=1326 audit(1599896491.672:135050): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30957 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:41:32 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:41:32 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2174.781516] audit: type=1326 audit(1599896492.292:135051): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30982 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2174.896221] audit: type=1326 audit(1599896492.352:135052): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30981 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:41:33 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:41:33 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2176.074673] audit: type=1326 audit(1599896493.592:135053): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30994 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2176.403026] audit: type=1326 audit(1599896493.592:135054): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=30993 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:41:35 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:41:35 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:41:35 executing program 4:
prlimit64(0x0, 0xe, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:41:35 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000), 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="080002"], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@ipv4_newaddr={0x18}, 0x18}}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

[ 2177.857973] audit: type=1326 audit(1599896495.372:135055): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31011 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2177.946516] audit: type=1326 audit(1599896495.432:135056): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31012 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:41:35 executing program 4:
prlimit64(0x0, 0xe, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:41:36 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2178.859457] audit: type=1326 audit(1599896496.372:135057): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31034 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2178.977968] audit: type=1326 audit(1599896496.492:135058): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31040 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2181.049427] audit: type=1326 audit(1599896498.562:135059): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31051 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2181.223129] audit: type=1326 audit(1599896498.732:135060): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31055 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:41:41 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

[ 2185.154061] audit: type=1326 audit(1599896502.673:135061): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31074 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:41:47 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@ipv4_newaddr={0x18}, 0x18}}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

07:41:47 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:41:47 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:41:47 executing program 4:
prlimit64(0x0, 0xe, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:41:47 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

[ 2191.193393] audit: type=1326 audit(1599896508.703:135062): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31084 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:41:49 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2194.376401] audit: type=1326 audit(1599896511.883:135063): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31095 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2198.351020] syz-executor.2 invoked oom-killer: gfp_mask=0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null),  order=1, oom_score_adj=0
[ 2198.402205] syz-executor.2 cpuset=/ mems_allowed=0-1
[ 2198.407361] CPU: 1 PID: 6371 Comm: syz-executor.2 Not tainted 4.14.197-syzkaller #0
[ 2198.415169] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2198.424517] Call Trace:
[ 2198.427112]  dump_stack+0x1b2/0x283
[ 2198.430742]  dump_header+0x178/0x82f
[ 2198.434456]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2198.439561]  ? ___ratelimit+0x2cd/0x522
[ 2198.443539]  oom_kill_process.cold+0x10/0xa69
[ 2198.448035]  ? lock_downgrade+0x740/0x740
[ 2198.452190]  out_of_memory+0x2dc/0x1190
[ 2198.456165]  ? oom_killer_disable+0x1c0/0x1c0
[ 2198.460661]  ? mutex_trylock+0x152/0x1a0
[ 2198.464722]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2198.469578]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2198.474420]  ? check_preemption_disabled+0x35/0x240
[ 2198.479446]  ? cache_grow_begin+0x3f/0x420
[ 2198.483680]  cache_grow_begin+0x8f/0x420
[ 2198.487737]  ? mempolicy_slab_node+0x100/0x320
[ 2198.492322]  fallback_alloc+0x207/0x2c0
[ 2198.496305]  kmem_cache_alloc+0x1e5/0x3c0
[ 2198.500451]  getname_flags+0xc8/0x550
[ 2198.504253]  do_sys_open+0x1ce/0x410
[ 2198.507968]  ? filp_open+0x60/0x60
[ 2198.511506]  ? __do_page_fault+0x19a/0xb50
[ 2198.515737]  ? do_syscall_64+0x4c/0x640
[ 2198.519704]  ? do_sys_open+0x410/0x410
[ 2198.523588]  do_syscall_64+0x1d5/0x640
[ 2198.527478]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2198.532659] RIP: 0033:0x45b530
[ 2198.535838] RSP: 002b:00007ffe5e351d70 EFLAGS: 00000202 ORIG_RAX: 0000000000000002
[ 2198.543540] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 000000000045b530
[ 2198.550826] RDX: 0000000000000000 RSI: 0000000000090800 RDI: 00000000004c1f33
[ 2198.558122] RBP: 0000000000001a92 R08: 0000000000000000 R09: 00000000026b8940
[ 2198.565397] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000001
[ 2198.572686] R13: 00007ffe5e351e50 R14: 00000000002176d8 R15: 00007ffe5e351e60
[ 2199.001545] Mem-Info:
[ 2199.007513] active_anon:1217771 inactive_anon:28161 isolated_anon:0
[ 2199.007513]  active_file:22 inactive_file:15 isolated_file:9
[ 2199.007513]  unevictable:0 dirty:0 writeback:0 unstable:0
[ 2199.007513]  slab_reclaimable:23835 slab_unreclaimable:148184
[ 2199.007513]  mapped:64344 shmem:38846 pagetables:58894 bounce:0
[ 2199.007513]  free:24092 free_pcp:0 free_cma:0
[ 2199.135528] Node 0 active_anon:1722892kB inactive_anon:66484kB active_file:4kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:240188kB dirty:0kB writeback:0kB shmem:82520kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 954368kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2199.252178] Node 1 active_anon:3148192kB inactive_anon:46160kB active_file:220kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):4kB mapped:17116kB dirty:0kB writeback:0kB shmem:72864kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2199.423051] Node 0 DMA free:10388kB min:220kB low:272kB high:324kB active_anon:4692kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2199.551583] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2199.566032] Node 0 DMA32 free:32604kB min:36272kB low:45340kB high:54408kB active_anon:1718200kB inactive_anon:66484kB active_file:4kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:16576kB pagetables:71088kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2199.610067] lowmem_reserve[]: 0 0 0 0 0
[ 2199.614283] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2199.718635] lowmem_reserve[]: 0 0 0 0 0
[ 2199.726141] Node 1 Normal free:53196kB min:53612kB low:67012kB high:80412kB active_anon:3148192kB inactive_anon:46160kB active_file:20kB inactive_file:148kB unevictable:0kB writepending:0kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:55040kB pagetables:164452kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2199.769975] lowmem_reserve[]: 0 0 0 0 0
[ 2199.787103] Node 0 DMA: 3*4kB (UME) 15*8kB (UM) 1*16kB (U) 7*32kB (UME) 4*64kB (UE) 2*128kB (ME) 3*256kB (UME) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10356kB
[ 2199.862148] Node 0 DMA32: 358*4kB (UME) 2137*8kB (UME) 556*16kB (UME) 112*32kB (UME) 25*64kB (M) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 32608kB
[ 2199.862216] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2199.927214] Node 1 Normal: 1187*4kB (UMH) 1284*8kB (UMH) 905*16kB (UMEH) 347*32kB (UMEH) 130*64kB (UMH) 37*128kB (UME) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 53660kB
[ 2199.951511] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2199.960475] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2199.974312] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2199.985858] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2199.997073] 38882 total pagecache pages
[ 2200.001058] 0 pages in swap cache
[ 2200.006956] Swap cache stats: add 0, delete 0, find 0/0
[ 2200.018241] Free swap  = 0kB
[ 2200.021333] Total swap = 0kB
[ 2200.027994] 1965979 pages RAM
[ 2200.034659] 0 pages HighMem/MovableOnly
[ 2200.052157] 339077 pages reserved
[ 2200.055665] 0 pages cma reserved
[ 2200.059033] Out of memory: Kill process 28219 (syz-executor.1) score 1007 or sacrifice child
[ 2200.112130] Killed process 28219 (syz-executor.1) total-vm:93676kB, anon-rss:16580kB, file-rss:34816kB, shmem-rss:0kB
07:41:58 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
fcntl$setpipe(r1, 0x407, 0x0)
write(r1, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r2 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r2, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:41:58 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:41:58 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:41:58 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@ipv4_newaddr={0x18}, 0x18}}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

[ 2200.676033] audit: type=1326 audit(1599896518.184:135064): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31105 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2200.740141] audit: type=1326 audit(1599896518.234:135066): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31108 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2200.770222] audit: type=1326 audit(1599896518.234:135065): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31109 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2201.067459] audit: type=1326 audit(1599896518.234:135067): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31110 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:41:59 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x0, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:41:59 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
fcntl$setpipe(r1, 0x407, 0x0)
write(r1, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r2 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r2, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:41:59 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
fcntl$setpipe(r1, 0x407, 0x0)
write(r1, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r2 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42500)
write$cgroup_type(r2, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:41:59 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r4=>0x0)
syz_open_procfs(r4, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(0xffffffffffffffff, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:41:59 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(0xffffffffffffffff, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2202.291850] audit: type=1326 audit(1599896519.794:135068): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31149 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2202.356978] audit: type=1326 audit(1599896519.804:135069): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31147 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2202.501161] audit: type=1326 audit(1599896519.834:135070): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31148 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:42:00 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@ipv4_newaddr={0x18}, 0x18}}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

07:42:00 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
fcntl$setpipe(r1, 0x407, 0x0)
write(r1, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r2 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r2, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:42:00 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
fcntl$setpipe(r1, 0x407, 0x0)
write(r1, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r2 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42500)
write$cgroup_type(r2, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2205.078983] audit: type=1326 audit(1599896522.584:135071): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31175 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2207.406541] audit: type=1326 audit(1599896524.914:135072): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31182 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:42:04 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:42:04 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x0, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2208.089943] audit: type=1326 audit(1599896525.594:135073): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31184 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2208.217382] audit: type=1326 audit(1599896525.644:135074): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31191 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2212.063896] systemd-journal invoked oom-killer: gfp_mask=0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null),  order=1, oom_score_adj=0
[ 2212.193996] systemd-journal cpuset=/ mems_allowed=0-1
[ 2212.217593] CPU: 0 PID: 3649 Comm: systemd-journal Not tainted 4.14.197-syzkaller #0
[ 2212.225498] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2212.234866] Call Trace:
[ 2212.237485]  dump_stack+0x1b2/0x283
[ 2212.241137]  dump_header+0x178/0x82f
[ 2212.244848]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2212.249943]  ? ___ratelimit+0x2cd/0x522
[ 2212.253918]  oom_kill_process.cold+0x10/0xa69
[ 2212.258411]  ? lock_downgrade+0x740/0x740
[ 2212.262559]  out_of_memory+0x2dc/0x1190
[ 2212.266531]  ? oom_killer_disable+0x1c0/0x1c0
[ 2212.271026]  ? mutex_trylock+0x152/0x1a0
[ 2212.275096]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2212.279955]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2212.284797]  ? check_preemption_disabled+0x35/0x240
[ 2212.289823]  ? cache_grow_begin+0x3f/0x420
[ 2212.294056]  cache_grow_begin+0x8f/0x420
[ 2212.298118]  ? mempolicy_slab_node+0x100/0x320
[ 2212.302717]  fallback_alloc+0x207/0x2c0
[ 2212.306699]  kmem_cache_alloc+0x1e5/0x3c0
[ 2212.310852]  getname_flags+0xc8/0x550
[ 2212.314652]  do_sys_open+0x1ce/0x410
[ 2212.318361]  ? filp_open+0x60/0x60
[ 2212.321898]  ? do_syscall_64+0x4c/0x640
[ 2212.325867]  ? do_sys_open+0x410/0x410
[ 2212.329753]  do_syscall_64+0x1d5/0x640
[ 2212.334548]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2212.339730] RIP: 0033:0x7f073e29685d
[ 2212.343432] RSP: 002b:00007ffed36540f0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002
[ 2212.351133] RAX: ffffffffffffffda RBX: 00007ffed3654400 RCX: 00007f073e29685d
[ 2212.358393] RDX: 00000000000001a0 RSI: 0000000000080042 RDI: 0000563a084bffc0
[ 2212.365658] RBP: 000000000000000d R08: 000000000000ffc0 R09: 00000000ffffffff
[ 2212.372922] R10: 0000000000000069 R11: 0000000000000293 R12: 00000000ffffffff
[ 2212.380181] R13: 0000563a084bc060 R14: 00007ffed36543c0 R15: 0000563a084ca3d0
[ 2212.861388] Mem-Info:
[ 2212.863862] active_anon:1215563 inactive_anon:28161 isolated_anon:0
[ 2212.863862]  active_file:194 inactive_file:233 isolated_file:31
[ 2212.863862]  unevictable:0 dirty:3 writeback:0 unstable:0
[ 2212.863862]  slab_reclaimable:23860 slab_unreclaimable:147819
[ 2212.863862]  mapped:64736 shmem:38846 pagetables:59088 bounce:0
[ 2212.863862]  free:25704 free_pcp:249 free_cma:0
[ 2212.941288] Node 0 active_anon:1715844kB inactive_anon:66484kB active_file:468kB inactive_file:504kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:241276kB dirty:4kB writeback:0kB shmem:82520kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 954368kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2213.134417] Node 1 active_anon:3146408kB inactive_anon:46160kB active_file:36kB inactive_file:44kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:17092kB dirty:8kB writeback:0kB shmem:72864kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2213.221278] Node 0 DMA free:10388kB min:220kB low:272kB high:324kB active_anon:4692kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2213.271270] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2213.276399] Node 0 DMA32 free:36188kB min:36272kB low:45340kB high:54408kB active_anon:1711152kB inactive_anon:66484kB active_file:420kB inactive_file:1312kB unevictable:0kB writepending:12kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:16704kB pagetables:71312kB bounce:0kB free_pcp:1140kB local_pcp:420kB free_cma:0kB
[ 2213.345112] lowmem_reserve[]: 0 0 0 0 0
[ 2213.360214] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2213.534838] lowmem_reserve[]: 0 0 0 0 0
[ 2213.559195] Node 1 Normal free:54972kB min:53612kB low:67012kB high:80412kB active_anon:3144896kB inactive_anon:46160kB active_file:1044kB inactive_file:1496kB unevictable:0kB writepending:8kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:55072kB pagetables:165004kB bounce:0kB free_pcp:1128kB local_pcp:632kB free_cma:0kB
[ 2213.668538] lowmem_reserve[]: 0 0 0 0 0
[ 2213.672777] Node 0 DMA: 3*4kB (UME) 15*8kB (UM) 1*16kB (U) 7*32kB (UME) 4*64kB (UE) 2*128kB (ME) 3*256kB (UME) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10356kB
[ 2213.708724] Node 0 DMA32: 178*4kB (UME) 2131*8kB (UME) 702*16kB (UME) 143*32kB (UME) 30*64kB (UM) 3*128kB (M) 2*256kB (M) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 36384kB
[ 2213.741293] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2213.811249] Node 1 Normal: 940*4kB (UMH) 1286*8kB (UMH) 980*16kB (UMEH) 376*32kB (UMEH) 128*64kB (UMH) 34*128kB (UME) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 54304kB
[ 2213.857249] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2213.925277] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2213.948171] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2213.972279] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2214.001226] 40052 total pagecache pages
[ 2214.005352] 0 pages in swap cache
[ 2214.008799] Swap cache stats: add 0, delete 0, find 0/0
[ 2214.041226] Free swap  = 0kB
[ 2214.051304] Total swap = 0kB
[ 2214.054623] 1965979 pages RAM
[ 2214.057752] 0 pages HighMem/MovableOnly
[ 2214.101367] 339077 pages reserved
[ 2214.104828] 0 pages cma reserved
[ 2214.138651] Out of memory: Kill process 28484 (syz-executor.1) score 1007 or sacrifice child
[ 2214.179106] Killed process 28484 (syz-executor.1) total-vm:93676kB, anon-rss:16580kB, file-rss:34816kB, shmem-rss:0kB
[ 2214.336804] oom_reaper: reaped process 28484 (syz-executor.1), now anon-rss:0kB, file-rss:0kB, shmem-rss:0kB
[ 2214.570460] audit: type=1326 audit(1599896532.075:135075): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31208 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2214.690868] audit: type=1326 audit(1599896532.085:135076): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31209 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2214.926376] audit: type=1326 audit(1599896532.425:135077): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31223 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2215.343953] audit: type=1326 audit(1599896532.425:135078): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31221 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2215.790281] audit: type=1326 audit(1599896532.795:135079): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31229 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2215.998403] audit: type=1326 audit(1599896532.935:135080): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31240 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2216.701631] audit: type=1326 audit(1599896534.215:135081): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31242 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2216.927874] audit: type=1326 audit(1599896534.425:135082): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31266 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2216.980125] audit: type=1326 audit(1599896534.485:135083): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31265 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2217.746252] syz-executor.2 invoked oom-killer: gfp_mask=0x14200ca(GFP_HIGHUSER_MOVABLE), nodemask=(null),  order=0, oom_score_adj=0
[ 2217.851036] syz-executor.2 cpuset=/ mems_allowed=0-1
[ 2217.861269] CPU: 1 PID: 6371 Comm: syz-executor.2 Not tainted 4.14.197-syzkaller #0
[ 2217.869076] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2217.878423] Call Trace:
[ 2217.881010]  dump_stack+0x1b2/0x283
[ 2217.884640]  dump_header+0x178/0x82f
[ 2217.884754] audit: type=1326 audit(1599896535.395:135084): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31273 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2217.888372]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2217.888381]  ? ___ratelimit+0x2cd/0x522
[ 2217.888392]  oom_kill_process.cold+0x10/0xa69
[ 2217.923305]  ? lock_downgrade+0x740/0x740
[ 2217.927460]  out_of_memory+0x2dc/0x1190
[ 2217.931436]  ? oom_killer_disable+0x1c0/0x1c0
[ 2217.935929]  ? mutex_trylock+0x152/0x1a0
[ 2217.939996]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2217.944840]  ? _raw_spin_unlock_irq+0x24/0x80
[ 2217.949348]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2217.954214]  ? perf_trace_lock_acquire+0x510/0x510
[ 2217.959151]  ? perf_trace_lock+0xf7/0x490
[ 2217.963298]  alloc_pages_vma+0xd2/0x6d0
[ 2217.967269]  wp_page_copy+0x1f5/0x1ba0
[ 2217.971181]  ? tlb_flush_mmu_free+0x1a0/0x1a0
[ 2217.975677]  ? __lock_acquire+0x5fc/0x3f20
[ 2217.979915]  do_wp_page+0x245/0x1db0
[ 2217.983626]  ? __handle_mm_fault+0x129c/0x4620
[ 2217.988297]  ? finish_mkwrite_fault+0x5e0/0x5e0
[ 2217.992963]  __handle_mm_fault+0x234f/0x4620
[ 2217.997368]  ? vm_insert_page+0x7c0/0x7c0
[ 2218.001511]  ? __fsnotify_inode_delete+0x20/0x20
[ 2218.006263]  ? __fsnotify_update_child_dentry_flags.part.0+0x2e0/0x2e0
[ 2218.012961]  handle_mm_fault+0x306/0x7a0
[ 2218.017023]  __do_page_fault+0x578/0xb50
[ 2218.021085]  ? spurious_fault+0x640/0x640
[ 2218.025230]  ? do_page_fault+0x60/0x4f2
[ 2218.029199]  ? page_fault+0x2f/0x50
[ 2218.032821]  page_fault+0x45/0x50
[ 2218.036263] RIP: 5e351e50:          (null)
[ 2218.040493] RSP: 21d53f:0000000000001a9e EFLAGS: 7ffe5e351e60
[ 2218.075043] Mem-Info:
[ 2218.083422] active_anon:1212045 inactive_anon:28162 isolated_anon:0
[ 2218.083422]  active_file:736 inactive_file:1142 isolated_file:102
[ 2218.083422]  unevictable:0 dirty:19 writeback:0 unstable:0
[ 2218.083422]  slab_reclaimable:23681 slab_unreclaimable:148048
[ 2218.083422]  mapped:65770 shmem:38846 pagetables:59147 bounce:0
[ 2218.083422]  free:27401 free_pcp:440 free_cma:0
[ 2218.380552] Node 0 active_anon:1715344kB inactive_anon:66488kB active_file:2544kB inactive_file:9724kB unevictable:0kB isolated(anon):0kB isolated(file):288kB mapped:245772kB dirty:2744kB writeback:300kB shmem:82524kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 954368kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2218.586799] Node 1 active_anon:3139936kB inactive_anon:46160kB active_file:812kB inactive_file:4068kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:18308kB dirty:1932kB writeback:1200kB shmem:72860kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2218.850031] Node 0 DMA free:10384kB min:220kB low:272kB high:324kB active_anon:4720kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2219.090501] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2219.135215] Node 0 DMA32 free:37256kB min:36272kB low:45340kB high:54408kB active_anon:1707484kB inactive_anon:66488kB active_file:2980kB inactive_file:2800kB unevictable:0kB writepending:1196kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:16832kB pagetables:71580kB bounce:0kB free_pcp:812kB local_pcp:600kB free_cma:0kB
[ 2219.180306] lowmem_reserve[]: 0 0 0 0 0
[ 2219.212519] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2219.270707] lowmem_reserve[]: 0 0 0 0 0
[ 2219.321222] Node 1 Normal free:61736kB min:53612kB low:67012kB high:80412kB active_anon:3136104kB inactive_anon:46160kB active_file:1352kB inactive_file:988kB unevictable:0kB writepending:428kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:55104kB pagetables:165240kB bounce:0kB free_pcp:1436kB local_pcp:728kB free_cma:0kB
[ 2219.685632] lowmem_reserve[]: 0 0 0 0 0
[ 2219.709532] Node 0 DMA: 3*4kB (UME) 19*8kB (UM) 1*16kB (U) 6*32kB (UME) 4*64kB (UE) 2*128kB (ME) 3*256kB (UME) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10356kB
[ 2219.778680] Node 0 DMA32: 89*4kB (UME) 1740*8kB (UE) 541*16kB (UE) 108*32kB (UME) 10*64kB (M) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 27028kB
[ 2219.835037] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2219.889157] Node 1 Normal: 252*4kB (UMEH) 271*8kB (UMEH) 840*16kB (UMEH) 388*32kB (UME) 120*64kB (UMEH) 33*128kB (UME) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 40936kB
[ 2219.954216] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2220.016229] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2220.172668] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2220.248213] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2220.279663] 40383 total pagecache pages
[ 2220.319056] 0 pages in swap cache
[ 2220.449957] Swap cache stats: add 0, delete 0, find 0/0
[ 2220.473882] Free swap  = 0kB
[ 2220.483934] Total swap = 0kB
[ 2220.490494] 1965979 pages RAM
[ 2220.499516] 0 pages HighMem/MovableOnly
[ 2220.525962] 339077 pages reserved
[ 2220.539236] 0 pages cma reserved
[ 2220.578522] Out of memory: Kill process 28703 (syz-executor.1) score 1007 or sacrifice child
[ 2220.590568] Killed process 28703 (syz-executor.1) total-vm:93676kB, anon-rss:16580kB, file-rss:34816kB, shmem-rss:0kB
[ 2220.768753] oom_reaper: reaped process 28703 (syz-executor.1), now anon-rss:0kB, file-rss:0kB, shmem-rss:0kB
[ 2221.626894] kauditd_printk_skb: 6 callbacks suppressed
[ 2221.626903] audit: type=1326 audit(1599896539.135:135091): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31334 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2221.709644] audit: type=1326 audit(1599896539.175:135092): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31331 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2221.942043] audit: type=1326 audit(1599896539.455:135093): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31354 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2223.188638] kworker/u4:4 invoked oom-killer: gfp_mask=0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null),  order=1, oom_score_adj=0
[ 2223.334887] kworker/u4:4 cpuset=/ mems_allowed=0-1
[ 2223.389869] CPU: 1 PID: 31352 Comm: kworker/u4:4 Not tainted 4.14.197-syzkaller #0
[ 2223.397613] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2223.406972] Call Trace:
[ 2223.409561]  dump_stack+0x1b2/0x283
[ 2223.413193]  dump_header+0x178/0x82f
[ 2223.416900]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2223.421995]  ? ___ratelimit+0x2cd/0x522
[ 2223.425970]  oom_kill_process.cold+0x10/0xa69
[ 2223.430466]  ? lock_downgrade+0x740/0x740
[ 2223.434616]  out_of_memory+0x2dc/0x1190
[ 2223.438596]  ? oom_killer_disable+0x1c0/0x1c0
[ 2223.443086]  ? mutex_trylock+0x152/0x1a0
[ 2223.447169]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2223.452024]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2223.456883]  ? check_preemption_disabled+0x35/0x240
[ 2223.461933]  ? mark_held_locks+0xa6/0xf0
[ 2223.465996]  ? cache_grow_begin+0x3f/0x420
[ 2223.470225]  cache_grow_begin+0x8f/0x420
[ 2223.474281]  ? mempolicy_slab_node+0x100/0x320
[ 2223.478864]  fallback_alloc+0x207/0x2c0
[ 2223.482837]  kmem_cache_alloc+0x1e5/0x3c0
[ 2223.487004]  getname_kernel+0x4e/0x340
[ 2223.490888]  open_exec+0x13/0x60
[ 2223.494247]  load_elf_binary+0x723/0x4750
[ 2223.498402]  ? search_binary_handler.part.0+0x98/0x640
[ 2223.503696]  ? elf_core_dump+0x4460/0x4460
[ 2223.507930]  search_binary_handler.part.0+0xd5/0x640
[ 2223.513039]  do_execveat_common+0x1099/0x1f30
[ 2223.517545]  ? copy_strings_kernel+0x110/0x110
[ 2223.522130]  ? rcu_lockdep_current_cpu_online+0xed/0x140
[ 2223.527581]  ? rcu_read_lock_sched_held+0x16c/0x1d0
[ 2223.532609]  do_execve+0x33/0x50
[ 2223.535969]  call_usermodehelper_exec_async+0x28f/0x4a0
[ 2223.541318]  ? call_usermodehelper_exec_work+0x2a0/0x2a0
[ 2223.546774]  ret_from_fork+0x24/0x30
[ 2223.648713] Mem-Info:
[ 2223.651364] active_anon:1218048 inactive_anon:28162 isolated_anon:0
[ 2223.651364]  active_file:754 inactive_file:711 isolated_file:77
[ 2223.651364]  unevictable:0 dirty:554 writeback:1 unstable:0
[ 2223.651364]  slab_reclaimable:23426 slab_unreclaimable:148938
[ 2223.651364]  mapped:65352 shmem:38846 pagetables:59388 bounce:0
[ 2223.651364]  free:20990 free_pcp:143 free_cma:0
[ 2223.843466] Node 0 active_anon:1725972kB inactive_anon:66484kB active_file:1212kB inactive_file:1144kB unevictable:0kB isolated(anon):0kB isolated(file):108kB mapped:240740kB dirty:1896kB writeback:0kB shmem:82520kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 954368kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2223.951323] Node 1 active_anon:3146220kB inactive_anon:46164kB active_file:1208kB inactive_file:1216kB unevictable:0kB isolated(anon):0kB isolated(file):128kB mapped:19468kB dirty:320kB writeback:4kB shmem:72864kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2224.028290] Node 0 DMA free:10360kB min:220kB low:272kB high:324kB active_anon:4692kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2224.127523] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2224.145124] Node 0 DMA32 free:28628kB min:36272kB low:45340kB high:54408kB active_anon:1721280kB inactive_anon:66484kB active_file:1168kB inactive_file:1012kB unevictable:0kB writepending:1900kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:16864kB pagetables:71664kB bounce:0kB free_pcp:60kB local_pcp:0kB free_cma:0kB
[ 2224.321071] lowmem_reserve[]: 0 0 0 0 0
[ 2224.329821] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2224.403198] lowmem_reserve[]: 0 0 0 0 0
[ 2224.413007] Node 1 Normal free:47964kB min:53612kB low:67012kB high:80412kB active_anon:3146220kB inactive_anon:46164kB active_file:1160kB inactive_file:1180kB unevictable:0kB writepending:320kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:55360kB pagetables:165852kB bounce:0kB free_pcp:272kB local_pcp:160kB free_cma:0kB
[ 2224.454590] lowmem_reserve[]: 0 0 0 0 0
[ 2224.458733] Node 0 DMA: 4*4kB (UME) 19*8kB (UM) 1*16kB (U) 6*32kB (UME) 4*64kB (UE) 2*128kB (ME) 3*256kB (UME) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10360kB
[ 2224.482876] Node 0 DMA32: 177*4kB (UME) 1844*8kB (UME) 557*16kB (UME) 127*32kB (UME) 8*64kB (M) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 28948kB
[ 2224.533019] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2224.544026] Node 1 Normal: 2026*4kB (UMEH) 79*8kB (UMEH) 1258*16kB (UMH) 405*32kB (UMEH) 54*64kB (UMEH) 25*128kB (UME) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 48480kB
[ 2224.564254] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2224.575464] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2224.584343] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2224.593416] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2224.602374] 39816 total pagecache pages
[ 2224.606481] 0 pages in swap cache
[ 2224.610060] Swap cache stats: add 0, delete 0, find 0/0
[ 2224.615753] Free swap  = 0kB
[ 2224.618944] Total swap = 0kB
[ 2224.643108] 1965979 pages RAM
[ 2224.657413] 0 pages HighMem/MovableOnly
[ 2224.669365] 339077 pages reserved
[ 2224.674788] 0 pages cma reserved
[ 2224.678309] Out of memory: Kill process 31364 (syz-executor.5) score 1007 or sacrifice child
[ 2224.695676] Killed process 31364 (syz-executor.5) total-vm:93676kB, anon-rss:16572kB, file-rss:35200kB, shmem-rss:0kB
[ 2224.810808] audit: type=1326 audit(1599896539.545:135094): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31353 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2224.870024] oom_reaper: reaped process 31364 (syz-executor.5), now anon-rss:0kB, file-rss:24kB, shmem-rss:0kB
[ 2225.539452] audit: type=1326 audit(1599896543.045:135095): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31368 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2225.706222] audit: type=1326 audit(1599896543.085:135096): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31369 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:42:09 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
fcntl$setpipe(r1, 0x407, 0x0)
write(r1, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r2 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42500)
write$cgroup_type(r2, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:42:11 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:42:11 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(0xffffffffffffffff, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:42:11 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@ipv4_newaddr={0x18}, 0x18}}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

07:42:11 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r4=>0x0)
syz_open_procfs(r4, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(0xffffffffffffffff, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:42:11 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x0, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:42:12 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r4=>0x0)
syz_open_procfs(r4, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(0xffffffffffffffff, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:42:12 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:42:12 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:42:13 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:42:13 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(0xffffffffffffffff, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:42:13 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:42:15 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:42:15 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:42:15 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:42:15 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

07:42:16 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:42:16 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:42:16 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:42:16 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:42:19 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:42:19 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:42:19 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:42:19 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:42:22 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:42:22 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:42:22 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
fcntl$setpipe(r1, 0x407, 0x0)
write(r1, &(0x7f0000000340), 0x41395527)
r2 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r2, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2225.993098] audit: type=1326 audit(1599896543.245:135097): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31375 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:42:23 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:42:23 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

[ 2226.372315] audit: type=1326 audit(1599896543.525:135098): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31388 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:42:23 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2226.848752] systemd-udevd invoked oom-killer: gfp_mask=0x14000c0(GFP_KERNEL), nodemask=(null),  order=0, oom_score_adj=-1000
[ 2226.977210] systemd-udevd cpuset=/ mems_allowed=0-1
[ 2227.027266] CPU: 1 PID: 3657 Comm: systemd-udevd Not tainted 4.14.197-syzkaller #0
[ 2227.034998] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2227.044367] Call Trace:
[ 2227.046959]  dump_stack+0x1b2/0x283
[ 2227.050581]  dump_header+0x178/0x82f
[ 2227.054288]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2227.059394]  ? ___ratelimit+0x2cd/0x522
[ 2227.063370]  oom_kill_process.cold+0x10/0xa69
[ 2227.067865]  ? lock_downgrade+0x740/0x740
[ 2227.072016]  out_of_memory+0x2dc/0x1190
[ 2227.075996]  ? oom_killer_disable+0x1c0/0x1c0
[ 2227.080491]  ? mutex_trylock+0x152/0x1a0
[ 2227.084557]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2227.089400]  ? lookup_slow+0x20a/0x400
[ 2227.093293]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2227.098147]  ? lockref_get+0x11/0x50
[ 2227.101875]  alloc_pages_current+0x155/0x260
[ 2227.106283]  __get_free_pages+0xb/0x40
[ 2227.110167]  inode_doinit_with_dentry+0x83b/0xe50
[ 2227.115012]  ? selinux_msg_queue_msgsnd+0x3d0/0x3d0
[ 2227.120036]  selinux_d_instantiate+0x23/0x30
[ 2227.124444]  security_d_instantiate+0x54/0xd0
[ 2227.128939]  d_splice_alias+0x7d/0xb10
[ 2227.132833]  ? _raw_spin_unlock+0x29/0x40
[ 2227.136983]  kernfs_iop_lookup+0x189/0x1f0
[ 2227.141212]  lookup_slow+0x20a/0x400
[ 2227.144925]  ? follow_dotdot_rcu+0xf00/0xf00
[ 2227.149324]  ? lookup_fast+0x430/0xe30
[ 2227.153215]  walk_component+0x6a1/0xbc0
[ 2227.157187]  ? lookup_fast+0xe30/0xe30
[ 2227.161076]  ? security_inode_permission+0xb5/0xf0
[ 2227.166001]  ? kernfs_iop_getattr+0xd0/0xd0
[ 2227.170321]  link_path_walk+0x823/0x10a0
[ 2227.174384]  ? walk_component+0xbc0/0xbc0
[ 2227.178533]  path_openat+0x15e/0x2970
[ 2227.182334]  ? seccomp_run_filters+0x151/0x540
[ 2227.186912]  ? path_lookupat+0x780/0x780
[ 2227.190970]  ? perf_trace_lock+0xf7/0x490
[ 2227.195116]  ? perf_trace_lock+0xf7/0x490
[ 2227.199264]  do_filp_open+0x179/0x3c0
[ 2227.203062]  ? may_open_dev+0xe0/0xe0
[ 2227.206863]  ? lock_downgrade+0x740/0x740
[ 2227.211009]  ? do_raw_spin_unlock+0x164/0x220
[ 2227.215521]  ? _raw_spin_unlock+0x29/0x40
[ 2227.219694]  ? __alloc_fd+0x1be/0x490
[ 2227.223547]  do_sys_open+0x296/0x410
[ 2227.227254]  ? filp_open+0x60/0x60
[ 2227.230792]  ? do_syscall_64+0x4c/0x640
[ 2227.234772]  ? do_sys_open+0x410/0x410
[ 2227.238656]  do_syscall_64+0x1d5/0x640
[ 2227.242562]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2227.247773] RIP: 0033:0x7f5e751396f0
[ 2227.251477] RSP: 002b:00007fff9061c298 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[ 2227.259202] RAX: ffffffffffffffda RBX: 000056284dcc7dd0 RCX: 00007f5e751396f0
[ 2227.266467] RDX: 00000000000001b6 RSI: 0000000000080241 RDI: 00007fff9061c560
[ 2227.273733] RBP: 0000000000000004 R08: 0000000000000004 R09: 0000000000000001
[ 2227.280994] R10: 0000000000080240 R11: 0000000000000246 R12: 000056284c72f002
[ 2227.288259] R13: 0000000000000001 R14: 000056284dcbf790 R15: 00007fff9061c430
[ 2228.555074] Mem-Info:
[ 2228.581529] active_anon:1217135 inactive_anon:28162 isolated_anon:0
[ 2228.581529]  active_file:732 inactive_file:666 isolated_file:81
[ 2228.581529]  unevictable:0 dirty:1077 writeback:0 unstable:0
[ 2228.581529]  slab_reclaimable:23637 slab_unreclaimable:147860
[ 2228.581529]  mapped:64717 shmem:38846 pagetables:59297 bounce:0
[ 2228.581529]  free:24368 free_pcp:0 free_cma:0
[ 2228.723748] Node 0 active_anon:1724312kB inactive_anon:66484kB active_file:1428kB inactive_file:1320kB unevictable:0kB isolated(anon):0kB isolated(file):128kB mapped:240304kB dirty:2856kB writeback:0kB shmem:82520kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 954368kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2228.878624] Node 1 active_anon:3144228kB inactive_anon:46164kB active_file:1144kB inactive_file:1172kB unevictable:0kB isolated(anon):0kB isolated(file):196kB mapped:18264kB dirty:1452kB writeback:0kB shmem:72864kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2228.995368] Node 0 DMA free:10360kB min:220kB low:272kB high:324kB active_anon:4692kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2229.104380] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2229.109468] Node 0 DMA32 free:34484kB min:36272kB low:45340kB high:54408kB active_anon:1719620kB inactive_anon:66484kB active_file:1308kB inactive_file:1552kB unevictable:0kB writepending:2832kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:12256kB pagetables:71644kB bounce:0kB free_pcp:16kB local_pcp:0kB free_cma:0kB
[ 2229.143836] lowmem_reserve[]: 0 0 0 0 0
[ 2229.148698] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2229.327654] lowmem_reserve[]: 0 0 0 0 0
[ 2229.350233] Node 1 Normal free:53348kB min:53612kB low:67012kB high:80412kB active_anon:3144228kB inactive_anon:46164kB active_file:396kB inactive_file:1692kB unevictable:0kB writepending:1452kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:55104kB pagetables:165508kB bounce:0kB free_pcp:152kB local_pcp:120kB free_cma:0kB
[ 2229.545725] lowmem_reserve[]: 0 0 0 0 0
[ 2229.549815] Node 0 DMA: 4*4kB (UME) 19*8kB (UM) 1*16kB (U) 6*32kB (UME) 4*64kB (UE) 2*128kB (ME) 3*256kB (UME) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10360kB
[ 2229.626671] Node 0 DMA32: 542*4kB (UME) 2042*8kB (UME) 597*16kB (UME) 174*32kB (UME) 8*64kB (UM) 6*128kB (UM) 4*256kB (M) 1*512kB (M) 0*1024kB 0*2048kB 0*4096kB = 36440kB
[ 2229.768592] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2229.860200] Node 1 Normal: 2178*4kB (UMEH) 600*8kB (UMEH) 1100*16kB (UMH) 481*32kB (UMEH) 79*64kB (UMEH) 25*128kB (UME) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 54760kB
[ 2229.957022] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2230.014687] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2230.043628] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2230.074012] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2230.150214] 40342 total pagecache pages
[ 2230.154220] 0 pages in swap cache
[ 2230.200241] Swap cache stats: add 0, delete 0, find 0/0
[ 2230.205636] Free swap  = 0kB
[ 2230.239100] Total swap = 0kB
[ 2230.259518] 1965979 pages RAM
[ 2230.262846] 0 pages HighMem/MovableOnly
[ 2230.267082] 339077 pages reserved
[ 2230.295286] 0 pages cma reserved
[ 2230.298686] Out of memory: Kill process 31323 (syz-executor.0) score 1007 or sacrifice child
[ 2230.329799] Killed process 31323 (syz-executor.0) total-vm:93940kB, anon-rss:16584kB, file-rss:34804kB, shmem-rss:0kB
[ 2230.704903] audit: type=1326 audit(1599896548.216:135099): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31396 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:42:28 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:42:28 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
fcntl$setpipe(r1, 0x407, 0x0)
write(r1, &(0x7f0000000340), 0x41395527)
r2 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r2, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:42:28 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2232.435821] audit: type=1326 audit(1599896549.946:135100): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31407 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2232.966896] audit: type=1326 audit(1599896550.476:135101): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31410 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2233.466956] systemd-udevd invoked oom-killer: gfp_mask=0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null),  order=1, oom_score_adj=-1000
[ 2233.558821] systemd-udevd cpuset=/ mems_allowed=0-1
[ 2233.584258] CPU: 0 PID: 3657 Comm: systemd-udevd Not tainted 4.14.197-syzkaller #0
[ 2233.591987] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2233.601352] Call Trace:
[ 2233.603938]  dump_stack+0x1b2/0x283
[ 2233.607580]  dump_header+0x178/0x82f
[ 2233.611291]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2233.616387]  ? ___ratelimit+0x2cd/0x522
[ 2233.620361]  oom_kill_process.cold+0x10/0xa69
[ 2233.624851]  ? lock_downgrade+0x740/0x740
[ 2233.629001]  out_of_memory+0x2dc/0x1190
[ 2233.632973]  ? oom_killer_disable+0x1c0/0x1c0
[ 2233.637461]  ? mutex_trylock+0x152/0x1a0
[ 2233.641521]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2233.646372]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2233.651216]  ? check_preemption_disabled+0x35/0x240
[ 2233.656237]  ? cache_grow_begin+0x3f/0x420
[ 2233.660566]  cache_grow_begin+0x8f/0x420
[ 2233.664637]  ? mempolicy_slab_node+0x100/0x320
[ 2233.669215]  fallback_alloc+0x207/0x2c0
[ 2233.673192]  kmem_cache_alloc+0x1e5/0x3c0
[ 2233.677338]  getname_flags+0xc8/0x550
[ 2233.681133]  user_path_at_empty+0x2a/0x50
[ 2233.685296]  SyS_readlinkat+0xa8/0x270
[ 2233.689180]  ? SyS_newfstat+0xd0/0xd0
[ 2233.692977]  ? do_syscall_64+0x4c/0x640
[ 2233.696946]  ? SyS_readlinkat+0x270/0x270
[ 2233.701087]  do_syscall_64+0x1d5/0x640
[ 2233.704974]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2233.710157] RIP: 0033:0x7f5e7513b087
[ 2233.713860] RSP: 002b:00007fff9061c3b8 EFLAGS: 00000293 ORIG_RAX: 0000000000000059
[ 2233.721576] RAX: ffffffffffffffda RBX: 00007fff9061c450 RCX: 00007f5e7513b087
[ 2233.728855] RDX: 0000000000000200 RSI: 00007fff9061c560 RDI: 00007fff9061c430
[ 2233.736119] RBP: 00007fff9061c9b8 R08: 0000000000000001 R09: 0000000000000014
[ 2233.743384] R10: 0000000000000064 R11: 0000000000000293 R12: 00007fff9061c560
[ 2233.750653] R13: 000056284dc0ca60 R14: 000056284dcb2c40 R15: 00007fff9061c430
[ 2233.761592] Mem-Info:
[ 2233.764022] active_anon:1220567 inactive_anon:28162 isolated_anon:0
[ 2233.764022]  active_file:258 inactive_file:375 isolated_file:36
[ 2233.764022]  unevictable:0 dirty:333 writeback:0 unstable:0
[ 2233.764022]  slab_reclaimable:23753 slab_unreclaimable:147175
[ 2233.764022]  mapped:64574 shmem:38846 pagetables:59311 bounce:0
[ 2233.764022]  free:22172 free_pcp:124 free_cma:0
[ 2233.799838] Node 0 active_anon:1731332kB inactive_anon:66488kB active_file:276kB inactive_file:900kB unevictable:0kB isolated(anon):0kB isolated(file):128kB mapped:240484kB dirty:764kB writeback:0kB shmem:82524kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 954368kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2233.828408] Node 1 active_anon:3150936kB inactive_anon:46160kB active_file:756kB inactive_file:600kB unevictable:0kB isolated(anon):0kB isolated(file):16kB mapped:17812kB dirty:568kB writeback:0kB shmem:72860kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2233.856273] Node 0 DMA free:10364kB min:220kB low:272kB high:324kB active_anon:4720kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2233.883009] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2233.888072] Node 0 DMA32 free:28436kB min:36272kB low:45340kB high:54408kB active_anon:1726172kB inactive_anon:66488kB active_file:504kB inactive_file:1180kB unevictable:0kB writepending:816kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:12288kB pagetables:71864kB bounce:0kB free_pcp:72kB local_pcp:0kB free_cma:0kB
[ 2233.983610] lowmem_reserve[]: 0 0 0 0 0
[ 2234.004033] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2234.143860] lowmem_reserve[]: 0 0 0 0 0
[ 2234.147886] Node 1 Normal free:50524kB min:53612kB low:67012kB high:80412kB active_anon:3151052kB inactive_anon:46160kB active_file:608kB inactive_file:636kB unevictable:0kB writepending:648kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:54944kB pagetables:165360kB bounce:0kB free_pcp:424kB local_pcp:0kB free_cma:0kB
[ 2234.362834] lowmem_reserve[]: 0 0 0 0 0
[ 2234.385216] Node 0 DMA: 5*4kB (UME) 19*8kB (UM) 1*16kB (U) 6*32kB (UE) 4*64kB (UE) 2*128kB (ME) 3*256kB (UME) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10364kB
[ 2234.506666] Node 0 DMA32: 185*4kB (UME) 1837*8kB (UME) 539*16kB (UME) 147*32kB (UME) 1*64kB (M) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 28828kB
[ 2234.557602] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2234.592526] Node 1 Normal: 692*4kB (UMH) 735*8kB (UMH) 1082*16kB (UMEH) 518*32kB (UMH) 82*64kB (UMEH) 25*128kB (UME) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 50984kB
[ 2234.643613] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2234.673220] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2234.701654] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2234.728942] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2234.751033] 39421 total pagecache pages
[ 2234.759678] 0 pages in swap cache
[ 2234.766722] Swap cache stats: add 0, delete 0, find 0/0
[ 2234.779078] Free swap  = 0kB
[ 2234.786961] Total swap = 0kB
[ 2234.797310] 1965979 pages RAM
[ 2234.808665] 0 pages HighMem/MovableOnly
[ 2234.819750] 339077 pages reserved
[ 2234.836541] 0 pages cma reserved
[ 2234.848255] Out of memory: Kill process 31406 (syz-executor.5) score 1007 or sacrifice child
[ 2234.893626] Killed process 31406 (syz-executor.5) total-vm:93676kB, anon-rss:16572kB, file-rss:35136kB, shmem-rss:0kB
[ 2234.999401] audit: type=1326 audit(1599896552.506:135102): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31418 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2235.028637] oom_reaper: reaped process 31406 (syz-executor.5), now anon-rss:0kB, file-rss:0kB, shmem-rss:0kB
07:42:33 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

07:42:33 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r1 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r1, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:42:33 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:42:33 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2235.621360] audit: type=1326 audit(1599896553.136:135103): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31429 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2235.646774] audit: type=1326 audit(1599896553.156:135104): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31430 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:42:33 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:42:33 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r1 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r1, 0x4, 0x42500)
write$cgroup_type(r1, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:42:34 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:42:36 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

07:42:36 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

[ 2239.834357] audit: type=1326 audit(1599896557.346:135105): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31451 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2240.606281] audit: type=1326 audit(1599896558.116:135106): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31452 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:42:40 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
fcntl$setpipe(r1, 0x407, 0x0)
write(r1, &(0x7f0000000340), 0x41395527)
r2 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r2, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:42:42 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

[ 2245.695956] audit: type=1326 audit(1599896563.206:135107): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31470 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:42:44 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r1 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r1, 0x4, 0x42500)
write$cgroup_type(r1, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:42:44 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:42:44 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:42:45 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r1 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r1, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2250.046809] audit: type=1326 audit(1599896567.557:135108): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31486 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:42:52 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, 0x0, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:42:52 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r1 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r1, 0x4, 0x42500)
write$cgroup_type(r1, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:42:52 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r1 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r1, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2259.735126] audit: type=1326 audit(1599896577.247:135109): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31497 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2262.191997] audit: type=1326 audit(1599896579.708:135110): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31502 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:42:57 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

[ 2266.535076] audit: type=1326 audit(1599896584.048:135111): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31508 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:43:05 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2268.976607] systemd-journal invoked oom-killer: gfp_mask=0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null),  order=1, oom_score_adj=0
[ 2269.020471] systemd-journal cpuset=/ mems_allowed=0-1
[ 2269.042322] CPU: 0 PID: 3649 Comm: systemd-journal Not tainted 4.14.197-syzkaller #0
[ 2269.050224] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2269.059662] Call Trace:
[ 2269.062251]  dump_stack+0x1b2/0x283
[ 2269.065878]  dump_header+0x178/0x82f
[ 2269.069590]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2269.074689]  ? ___ratelimit+0x2cd/0x522
[ 2269.078681]  oom_kill_process.cold+0x10/0xa69
[ 2269.083175]  ? lock_downgrade+0x740/0x740
[ 2269.087350]  out_of_memory+0x2dc/0x1190
[ 2269.091334]  ? oom_killer_disable+0x1c0/0x1c0
[ 2269.095835]  ? mutex_trylock+0x152/0x1a0
[ 2269.099909]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2269.104770]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2269.109628]  ? check_preemption_disabled+0x35/0x240
[ 2269.114832]  ? cache_grow_begin+0x3f/0x420
[ 2269.119069]  cache_grow_begin+0x8f/0x420
[ 2269.123124]  ? mempolicy_slab_node+0x100/0x320
[ 2269.127700]  fallback_alloc+0x207/0x2c0
[ 2269.131674]  kmem_cache_alloc+0x1e5/0x3c0
[ 2269.135825]  getname_flags+0xc8/0x550
[ 2269.139620]  do_sys_open+0x1ce/0x410
[ 2269.143350]  ? filp_open+0x60/0x60
[ 2269.146888]  ? do_syscall_64+0x4c/0x640
[ 2269.150854]  ? do_sys_open+0x410/0x410
[ 2269.154747]  do_syscall_64+0x1d5/0x640
[ 2269.158651]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2269.163835] RIP: 0033:0x7f073e29685d
[ 2269.167535] RSP: 002b:00007ffed3654240 EFLAGS: 00000293 ORIG_RAX: 0000000000000002
[ 2269.175238] RAX: ffffffffffffffda RBX: 00007ffed3654550 RCX: 00007f073e29685d
[ 2269.182505] RDX: 00000000000001a0 RSI: 0000000000080042 RDI: 0000563a084cabe0
[ 2269.189773] RBP: 000000000000000d R08: 00000000000001e0 R09: 00000000ffffffff
[ 2269.197045] R10: 0000000000000069 R11: 0000000000000293 R12: 00000000ffffffff
[ 2269.204314] R13: 0000563a084bc060 R14: 00007ffed3654510 R15: 0000563a084ca3d0
[ 2269.308353] Mem-Info:
[ 2269.310814] active_anon:1218592 inactive_anon:28162 isolated_anon:0
[ 2269.310814]  active_file:25 inactive_file:96 isolated_file:28
[ 2269.310814]  unevictable:0 dirty:0 writeback:1 unstable:0
[ 2269.310814]  slab_reclaimable:24060 slab_unreclaimable:146890
[ 2269.310814]  mapped:64401 shmem:38846 pagetables:59571 bounce:0
[ 2269.310814]  free:24433 free_pcp:60 free_cma:0
[ 2269.347776] Node 0 active_anon:1725356kB inactive_anon:66480kB active_file:4kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:240208kB dirty:0kB writeback:0kB shmem:82516kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 954368kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2269.468540] Node 1 active_anon:3149012kB inactive_anon:46168kB active_file:200kB inactive_file:128kB unevictable:0kB isolated(anon):0kB isolated(file):96kB mapped:17296kB dirty:0kB writeback:4kB shmem:72868kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2269.576096] Node 0 DMA free:10392kB min:220kB low:272kB high:324kB active_anon:4692kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2269.608730] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2269.613785] Node 0 DMA32 free:34044kB min:36272kB low:45340kB high:54408kB active_anon:1720664kB inactive_anon:66480kB active_file:4kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:12416kB pagetables:71920kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2269.654799] lowmem_reserve[]: 0 0 0 0 0
[ 2269.673924] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2269.711147] lowmem_reserve[]: 0 0 0 0 0
[ 2269.715156] Node 1 Normal free:53272kB min:53612kB low:67012kB high:80412kB active_anon:3149012kB inactive_anon:46168kB active_file:108kB inactive_file:68kB unevictable:0kB writepending:4kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:55264kB pagetables:166328kB bounce:0kB free_pcp:236kB local_pcp:4kB free_cma:0kB
[ 2269.751922] lowmem_reserve[]: 0 0 0 0 0
[ 2269.755935] Node 0 DMA: 4*4kB (UME) 19*8kB (UM) 1*16kB (U) 7*32kB (UME) 4*64kB (UE) 2*128kB (ME) 3*256kB (UME) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10392kB
[ 2269.786691] Node 0 DMA32: 696*4kB (UM) 1959*8kB (UME) 550*16kB (UME) 170*32kB (UME) 7*64kB (UM) 1*128kB (U) 1*256kB (M) 1*512kB (M) 0*1024kB 0*2048kB 0*4096kB = 34040kB
[ 2269.814262] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2269.843048] Node 1 Normal: 326*4kB (UMH) 1618*8kB (UMEH) 1066*16kB (UME) 439*32kB (UMEH) 82*64kB (UMH) 25*128kB (UME) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 53800kB
[ 2269.863877] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2269.887980] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2269.896579] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2269.957671] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2269.967372] 38900 total pagecache pages
[ 2269.971379] 0 pages in swap cache
[ 2269.974862] Swap cache stats: add 0, delete 0, find 0/0
[ 2269.980336] Free swap  = 0kB
[ 2269.983349] Total swap = 0kB
[ 2269.986380] 1965979 pages RAM
[ 2269.989527] 0 pages HighMem/MovableOnly
[ 2269.993489] 339077 pages reserved
[ 2269.996960] 0 pages cma reserved
[ 2270.000368] Out of memory: Kill process 29636 (syz-executor.1) score 1007 or sacrifice child
[ 2270.009012] Killed process 29636 (syz-executor.1) total-vm:93676kB, anon-rss:16580kB, file-rss:34816kB, shmem-rss:0kB
[ 2270.143715] oom_reaper: reaped process 29636 (syz-executor.1), now anon-rss:0kB, file-rss:0kB, shmem-rss:0kB
07:43:07 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:43:07 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:43:08 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:43:08 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:43:08 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

07:43:08 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, 0x0, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2271.447117] audit: type=1326 audit(1599896588.958:135112): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31523 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2271.550236] audit: type=1326 audit(1599896589.028:135113): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31526 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:43:09 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2271.815561] audit: type=1326 audit(1599896589.048:135114): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31527 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:43:09 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:43:09 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

[ 2272.587920] audit: type=1326 audit(1599896590.108:135115): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31543 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:43:10 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
write(r3, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

[ 2272.764487] audit: type=1326 audit(1599896590.128:135116): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31548 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:43:11 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:43:11 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2277.535679] audit: type=1326 audit(1599896595.049:135117): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31569 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:43:16 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

07:43:16 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:43:16 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, 0x0, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:43:16 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:43:16 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
write(r3, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

[ 2282.062829] audit: type=1326 audit(1599896599.579:135118): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31576 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:43:20 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:43:21 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
socket(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
poll(0x0, 0x0, 0x204)
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x2000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

07:43:21 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x0, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2287.432131] audit: type=1326 audit(1599896604.949:135119): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31588 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:43:24 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:43:26 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:43:27 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x0, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:43:29 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
write(r3, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

[ 2294.022296] audit: type=1326 audit(1599896611.540:135120): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31600 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2294.396756] systemd-udevd invoked oom-killer: gfp_mask=0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null),  order=1, oom_score_adj=-1000
[ 2294.424214] systemd-udevd cpuset=/ mems_allowed=0-1
[ 2294.435403] CPU: 1 PID: 3657 Comm: systemd-udevd Not tainted 4.14.197-syzkaller #0
[ 2294.443220] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2294.452596] Call Trace:
[ 2294.455219]  dump_stack+0x1b2/0x283
[ 2294.458849]  dump_header+0x178/0x82f
[ 2294.462561]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2294.467657]  ? ___ratelimit+0x2cd/0x522
[ 2294.471630]  oom_kill_process.cold+0x10/0xa69
[ 2294.476122]  ? lock_downgrade+0x740/0x740
[ 2294.480274]  out_of_memory+0x2dc/0x1190
[ 2294.484250]  ? oom_killer_disable+0x1c0/0x1c0
[ 2294.488746]  ? mutex_trylock+0x152/0x1a0
[ 2294.492828]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2294.497696]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2294.502557]  ? check_preemption_disabled+0x35/0x240
[ 2294.507590]  ? cache_grow_begin+0x3f/0x420
[ 2294.511829]  cache_grow_begin+0x8f/0x420
[ 2294.515881]  ? mempolicy_slab_node+0x100/0x320
[ 2294.520457]  fallback_alloc+0x207/0x2c0
[ 2294.524429]  kmem_cache_alloc+0x1e5/0x3c0
[ 2294.528574]  getname_flags+0xc8/0x550
[ 2294.532369]  user_path_at_empty+0x2a/0x50
[ 2294.536512]  SyS_faccessat+0x21b/0x680
[ 2294.540395]  ? SyS_fallocate+0x80/0x80
[ 2294.544276]  ? do_syscall_64+0x4c/0x640
[ 2294.548243]  ? SyS_faccessat+0x680/0x680
[ 2294.552298]  do_syscall_64+0x1d5/0x640
[ 2294.556187]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2294.561367] RIP: 0033:0x7f5e751399c7
[ 2294.565065] RSP: 002b:00007fff9061c278 EFLAGS: 00000246 ORIG_RAX: 0000000000000015
[ 2294.573046] RAX: ffffffffffffffda RBX: 000056284dcc7ba0 RCX: 00007f5e751399c7
[ 2294.580313] RDX: 00746e657665752f RSI: 0000000000000000 RDI: 00007fff9061c280
[ 2294.587581] RBP: 00007fff9061c2f0 R08: 000000000000cc40 R09: 0000000000001010
[ 2294.594868] R10: 0000000000000030 R11: 0000000000000246 R12: 000056284c72e856
[ 2294.602163] R13: 000056284dcbe540 R14: 00007fff9061c280 R15: 000056284dcc9b80
[ 2294.718263] audit: type=1326 audit(1599896611.540:135121): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31601 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2294.746426] Mem-Info:
[ 2294.748869] active_anon:1220930 inactive_anon:28162 isolated_anon:0
[ 2294.748869]  active_file:259 inactive_file:256 isolated_file:34
[ 2294.748869]  unevictable:0 dirty:7 writeback:0 unstable:0
[ 2294.748869]  slab_reclaimable:24562 slab_unreclaimable:147166
[ 2294.748869]  mapped:64914 shmem:38846 pagetables:59763 bounce:0
[ 2294.748869]  free:19916 free_pcp:8 free_cma:0
[ 2294.782612] Node 0 active_anon:1729196kB inactive_anon:66480kB active_file:4kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:240216kB dirty:0kB writeback:0kB shmem:82516kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 954368kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2294.893539] Node 1 active_anon:3154524kB inactive_anon:46168kB active_file:928kB inactive_file:984kB unevictable:0kB isolated(anon):0kB isolated(file):128kB mapped:18840kB dirty:28kB writeback:0kB shmem:72868kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2294.921530] Node 0 DMA free:10352kB min:220kB low:272kB high:324kB active_anon:4696kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2294.948755] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2294.953813] Node 0 DMA32 free:27072kB min:36272kB low:45340kB high:54408kB active_anon:1724500kB inactive_anon:66480kB active_file:4kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:12544kB pagetables:71956kB bounce:0kB free_pcp:12kB local_pcp:12kB free_cma:0kB
[ 2294.982815] lowmem_reserve[]: 0 0 0 0 0
[ 2294.986936] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2295.031240] lowmem_reserve[]: 0 0 0 0 0
[ 2295.035268] Node 1 Normal free:50612kB min:53612kB low:67012kB high:80412kB active_anon:3146480kB inactive_anon:46168kB active_file:972kB inactive_file:1264kB unevictable:0kB writepending:24kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:55328kB pagetables:166972kB bounce:0kB free_pcp:804kB local_pcp:160kB free_cma:0kB
[ 2295.065155] lowmem_reserve[]: 0 0 0 0 0
[ 2295.069330] Node 0 DMA: 2*4kB (UE) 19*8kB (UME) 3*16kB (UE) 5*32kB (UM) 4*64kB (UE) 2*128kB (ME) 3*256kB (UME) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10352kB
[ 2295.088206] Node 0 DMA32: 166*4kB (UME) 1843*8kB (UME) 545*16kB (UME) 54*32kB (UME) 7*64kB (UM) 2*128kB (U) 2*256kB (ME) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 27072kB
[ 2295.103358] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2295.114171] Node 1 Normal: 984*4kB (UMEH) 829*8kB (UMEH) 796*16kB (UME) 683*32kB (UMEH) 73*64kB (MEH) 10*128kB (UM) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 51112kB
[ 2295.131281] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2295.158593] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2295.175385] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2295.184322] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2295.193646] 39236 total pagecache pages
[ 2295.199989] 0 pages in swap cache
[ 2295.203842] Swap cache stats: add 0, delete 0, find 0/0
[ 2295.226654] Free swap  = 0kB
[ 2295.236247] Total swap = 0kB
[ 2295.239267] 1965979 pages RAM
[ 2295.242384] 0 pages HighMem/MovableOnly
[ 2295.262460] 339077 pages reserved
[ 2295.265989] 0 pages cma reserved
[ 2295.308774] Out of memory: Kill process 25994 (syz-executor.5) score 1007 or sacrifice child
[ 2295.336113] Killed process 25994 (syz-executor.5) total-vm:93676kB, anon-rss:16572kB, file-rss:34816kB, shmem-rss:0kB
[ 2295.434407] oom_reaper: reaped process 25994 (syz-executor.5), now anon-rss:0kB, file-rss:0kB, shmem-rss:0kB
07:43:33 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:43:33 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:43:33 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:43:33 executing program 2:

[ 2295.638516] audit: type=1326 audit(1599896613.160:135122): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31619 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2295.692061] audit: type=1326 audit(1599896613.160:135123): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31620 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2295.717304] audit: type=1326 audit(1599896613.230:135124): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31624 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2296.345252] audit: type=1326 audit(1599896613.260:135125): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31629 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2296.954294] audit: type=1326 audit(1599896613.270:135126): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31628 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:43:35 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:43:35 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:43:35 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r2 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x6100)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000000c0)=<r3=>0x0)
syz_open_procfs(r3, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r2, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:43:35 executing program 2:

07:43:35 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r1 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r1, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2298.025160] audit: type=1326 audit(1599896615.540:135127): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31659 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:43:35 executing program 2:

[ 2298.058713] audit: type=1326 audit(1599896615.570:135128): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31658 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2298.094623] audit: type=1326 audit(1599896615.570:135129): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31661 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:43:35 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x0, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:43:35 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:43:35 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:43:35 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r2 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x6100)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000000c0)=<r3=>0x0)
syz_open_procfs(r3, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r2, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:43:35 executing program 2:

07:43:36 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r1 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r1, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:43:36 executing program 2:

07:43:36 executing program 2:

07:43:36 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r2 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x6100)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000000c0)=<r3=>0x0)
syz_open_procfs(r3, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r2, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:43:36 executing program 2:

07:43:37 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r1 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r1, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:43:37 executing program 2:

07:43:38 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2300.435773] kauditd_printk_skb: 6 callbacks suppressed
[ 2300.435782] audit: type=1326 audit(1599896617.950:135136): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31708 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:43:38 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:43:38 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:43:38 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2300.891315] audit: type=1326 audit(1599896618.410:135137): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31725 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:43:38 executing program 2:
perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
open(&(0x7f0000000140)='./bus\x00', 0x0, 0x0)
clone(0x2000000002000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
gettid()
getrandom(&(0x7f0000000180)=""/208, 0xfffffd57, 0x0)

[ 2300.989896] audit: type=1326 audit(1599896618.480:135138): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31728 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:43:38 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

[ 2301.087797] audit: type=1326 audit(1599896618.550:135139): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31736 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:43:39 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:43:39 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x83)
ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4188aea7, &(0x7f0000000080)={0x3, 0x0, [0xc0000101, 0x0, 0x3, 0x2, 0x48, 0x0, 0x3]})

[ 2304.370502] oom_reaper: reaped process 31754 (syz-executor.0), now anon-rss:0kB, file-rss:0kB, shmem-rss:0kB
[ 2304.883650] oom_reaper: reaped process 31753 (syz-executor.4), now anon-rss:0kB, file-rss:0kB, shmem-rss:0kB
[ 2306.154124] syz-executor.3 invoked oom-killer: gfp_mask=0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null),  order=1, oom_score_adj=0
[ 2306.197278] syz-executor.3 cpuset=/ mems_allowed=0-1
[ 2306.202458] CPU: 0 PID: 6372 Comm: syz-executor.3 Not tainted 4.14.197-syzkaller #0
[ 2306.210244] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2306.219587] Call Trace:
[ 2306.222173]  dump_stack+0x1b2/0x283
[ 2306.225804]  dump_header+0x178/0x82f
[ 2306.229511]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2306.234604]  ? ___ratelimit+0x2cd/0x522
[ 2306.238571]  oom_kill_process.cold+0x10/0xa69
[ 2306.243062]  ? lock_downgrade+0x740/0x740
[ 2306.250332]  out_of_memory+0x2dc/0x1190
[ 2306.254304]  ? oom_killer_disable+0x1c0/0x1c0
[ 2306.258802]  ? mutex_trylock+0x152/0x1a0
[ 2306.262859]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2306.267709]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2306.272551]  ? check_preemption_disabled+0x35/0x240
[ 2306.277576]  ? cache_grow_begin+0x3f/0x420
[ 2306.281823]  cache_grow_begin+0x8f/0x420
[ 2306.285877]  ? mempolicy_slab_node+0x100/0x320
[ 2306.290455]  fallback_alloc+0x207/0x2c0
[ 2306.294425]  kmem_cache_alloc+0x1e5/0x3c0
[ 2306.298570]  getname_flags+0xc8/0x550
[ 2306.302374]  user_path_mountpoint_at+0x23/0x40
[ 2306.306955]  SyS_umount+0x125/0xeb0
[ 2306.310581]  ? lock_downgrade+0x740/0x740
[ 2306.314720]  ? __detach_mounts+0x400/0x400
[ 2306.318951]  ? up_read+0x17/0x30
[ 2306.322310]  ? __do_page_fault+0x19a/0xb50
[ 2306.326540]  ? do_syscall_64+0x4c/0x640
[ 2306.330505]  ? __detach_mounts+0x400/0x400
[ 2306.334733]  do_syscall_64+0x1d5/0x640
[ 2306.338619]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2306.343804] RIP: 0033:0x45ffe7
[ 2306.346995] RSP: 002b:00007ffe0a0f4478 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 2306.354793] RAX: ffffffffffffffda RBX: 0000000000231fe1 RCX: 000000000045ffe7
[ 2306.362061] RDX: 000000000000000c RSI: 0000000000000002 RDI: 00007ffe0a0f55b0
[ 2306.369327] RBP: 00000000000017d3 R08: 0000000000000000 R09: 0000000003662940
[ 2306.376596] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe0a0f55b0
[ 2306.383860] R13: 00007ffe0a0f55a0 R14: 0000000000000000 R15: 00007ffe0a0f55b0
[ 2306.441404] Mem-Info:
[ 2306.443969] active_anon:1217836 inactive_anon:28162 isolated_anon:0
[ 2306.443969]  active_file:170 inactive_file:263 isolated_file:44
[ 2306.443969]  unevictable:0 dirty:0 writeback:0 unstable:0
[ 2306.443969]  slab_reclaimable:24735 slab_unreclaimable:146908
[ 2306.443969]  mapped:64814 shmem:38846 pagetables:59896 bounce:0
[ 2306.443969]  free:22932 free_pcp:110 free_cma:0
[ 2306.484319] Node 0 active_anon:1729064kB inactive_anon:66480kB active_file:0kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:240224kB dirty:0kB writeback:0kB shmem:82516kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 954368kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2306.516579] Node 1 active_anon:3142280kB inactive_anon:46168kB active_file:680kB inactive_file:1048kB unevictable:0kB isolated(anon):0kB isolated(file):124kB mapped:18932kB dirty:0kB writeback:0kB shmem:72868kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2306.561563] Node 0 DMA free:10384kB min:220kB low:272kB high:324kB active_anon:4696kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2306.592753] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2306.597864] Node 0 DMA32 free:27884kB min:36272kB low:45340kB high:54408kB active_anon:1724368kB inactive_anon:66480kB active_file:0kB inactive_file:4kB unevictable:0kB writepending:0kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:12544kB pagetables:71876kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2306.632739] lowmem_reserve[]: 0 0 0 0 0
[ 2306.636827] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2306.688772] lowmem_reserve[]: 0 0 0 0 0
[ 2306.692797] Node 1 Normal free:53964kB min:53612kB low:67012kB high:80412kB active_anon:3142080kB inactive_anon:46168kB active_file:572kB inactive_file:412kB unevictable:0kB writepending:0kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:55296kB pagetables:167672kB bounce:0kB free_pcp:128kB local_pcp:0kB free_cma:0kB
[ 2306.744357] lowmem_reserve[]: 0 0 0 0 0
[ 2306.752278] Node 0 DMA: 2*4kB (UE) 19*8kB (UME) 3*16kB (UE) 6*32kB (UM) 4*64kB (UE) 2*128kB (ME) 3*256kB (UME) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10384kB
[ 2306.793019] Node 0 DMA32: 195*4kB (UME) 1896*8kB (UME) 559*16kB (UME) 54*32kB (UM) 8*64kB (UME) 4*128kB (UE) 1*256kB (M) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 27900kB
[ 2306.822109] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2306.832974] Node 1 Normal: 186*4kB (UMEH) 509*8kB (UMH) 805*16kB (UMEH) 704*32kB (UMEH) 102*64kB (UMEH) 22*128kB (UMH) 8*256kB (M) 3*512kB (ME) 1*1024kB (H) 0*2048kB 0*4096kB = 54176kB
[ 2306.854606] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2306.864417] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2306.877788] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2306.888392] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2306.900073] 39121 total pagecache pages
[ 2306.904072] 0 pages in swap cache
[ 2306.913296] Swap cache stats: add 0, delete 0, find 0/0
[ 2306.921786] Free swap  = 0kB
[ 2306.924801] Total swap = 0kB
[ 2306.943656] 1965979 pages RAM
[ 2306.981475] 0 pages HighMem/MovableOnly
[ 2306.985597] 339077 pages reserved
[ 2306.989130] 0 pages cma reserved
[ 2306.992604] Out of memory: Kill process 29709 (syz-executor.5) score 1007 or sacrifice child
[ 2307.013983] Killed process 29709 (syz-executor.5) total-vm:93676kB, anon-rss:16572kB, file-rss:34816kB, shmem-rss:0kB
[ 2307.228684] oom_reaper: reaped process 29709 (syz-executor.5), now anon-rss:0kB, file-rss:0kB, shmem-rss:0kB
07:43:45 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:43:45 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:43:46 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:43:46 executing program 2:
r0 = creat(&(0x7f0000000140)='./file0\x00', 0xfbff4a46d2ef49d0)
close(r0)
clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
execve(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)

07:43:46 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:43:46 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2308.595785] audit: type=1326 audit(1599896626.120:135140): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31771 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2308.689200] audit: type=1326 audit(1599896626.200:135141): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31780 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:43:46 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
socket$inet_sctp(0x2, 0x5, 0x84)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x6100)
ioctl$TIOCGPGRP(r1, 0x540f, &(0x7f00000000c0)=<r4=>0x0)
syz_open_procfs(r4, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

[ 2308.975337] audit: type=1326 audit(1599896626.200:135142): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31776 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:43:47 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:43:47 executing program 2:
r0 = creat(&(0x7f0000000140)='./file0\x00', 0xfbff4a46d2ef49d0)
close(r0)
clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
execve(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)

07:43:48 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
fcntl$setpipe(r1, 0x407, 0x0)
write(r1, &(0x7f0000000340), 0x41395527)
vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r2 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42500)
write$cgroup_type(r2, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:43:48 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
fcntl$setpipe(r1, 0x407, 0x0)
write(r1, &(0x7f0000000340), 0x41395527)
vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r2 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r2, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:43:48 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2310.582754] audit: type=1326 audit(1599896628.101:135143): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31806 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:43:48 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
socket$inet_sctp(0x2, 0x5, 0x84)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x6100)
ioctl$TIOCGPGRP(r1, 0x540f, &(0x7f00000000c0)=<r4=>0x0)
syz_open_procfs(r4, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

[ 2311.025871] audit: type=1326 audit(1599896628.551:135144): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31810 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2312.627649] audit: type=1326 audit(1599896630.151:135145): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31812 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2312.776740] audit: type=1326 audit(1599896630.301:135146): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31827 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2313.945763] audit: type=1326 audit(1599896631.471:135147): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31833 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:43:54 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
socket$inet_sctp(0x2, 0x5, 0x84)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x6100)
ioctl$TIOCGPGRP(r1, 0x540f, &(0x7f00000000c0)=<r4=>0x0)
syz_open_procfs(r4, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:43:54 executing program 2:
r0 = creat(&(0x7f0000000140)='./file0\x00', 0xfbff4a46d2ef49d0)
close(r0)
clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
execve(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)

07:43:56 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:43:56 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
fcntl$setpipe(r1, 0x407, 0x0)
write(r1, &(0x7f0000000340), 0x41395527)
vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r2 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r2, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:43:56 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x0, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2320.338237] audit: type=1326 audit(1599896637.861:135148): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31843 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:43:58 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
fcntl$setpipe(r1, 0x407, 0x0)
write(r1, &(0x7f0000000340), 0x41395527)
vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r2 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42500)
write$cgroup_type(r2, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:43:59 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x6100)
ioctl$TIOCGPGRP(r1, 0x540f, &(0x7f00000000c0)=<r4=>0x0)
syz_open_procfs(r4, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

[ 2321.829568] audit: type=1326 audit(1599896639.351:135149): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31849 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2322.023462] audit: type=1326 audit(1599896639.381:135150): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31848 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2322.517642] systemd-udevd invoked oom-killer: gfp_mask=0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null),  order=1, oom_score_adj=-1000
[ 2322.667320] systemd-udevd cpuset=/ mems_allowed=0-1
[ 2322.705244] CPU: 1 PID: 3657 Comm: systemd-udevd Not tainted 4.14.197-syzkaller #0
[ 2322.712975] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2322.722319] Call Trace:
[ 2322.724921]  dump_stack+0x1b2/0x283
[ 2322.728547]  dump_header+0x178/0x82f
[ 2322.732256]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2322.737358]  ? ___ratelimit+0x2cd/0x522
[ 2322.741346]  oom_kill_process.cold+0x10/0xa69
[ 2322.745838]  ? lock_downgrade+0x740/0x740
[ 2322.749984]  out_of_memory+0x2dc/0x1190
[ 2322.753957]  ? oom_killer_disable+0x1c0/0x1c0
[ 2322.758450]  ? mutex_trylock+0x152/0x1a0
[ 2322.762520]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2322.767382]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2322.772222]  ? check_preemption_disabled+0x35/0x240
[ 2322.777241]  ? cache_grow_begin+0x3f/0x420
[ 2322.781469]  cache_grow_begin+0x8f/0x420
[ 2322.785519]  ? mempolicy_slab_node+0x100/0x320
[ 2322.790096]  fallback_alloc+0x207/0x2c0
[ 2322.794067]  kmem_cache_alloc+0x1e5/0x3c0
[ 2322.798207]  getname_flags+0xc8/0x550
[ 2322.802001]  do_sys_open+0x1ce/0x410
[ 2322.805704]  ? filp_open+0x60/0x60
[ 2322.809235]  ? do_syscall_64+0x4c/0x640
[ 2322.813196]  ? do_sys_open+0x410/0x410
[ 2322.817074]  do_syscall_64+0x1d5/0x640
[ 2322.820970]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2322.826158] RIP: 0033:0x7f5e751119b1
[ 2322.829855] RSP: 002b:00007fff9061c318 EFLAGS: 00000202 ORIG_RAX: 0000000000000002
[ 2322.837566] RAX: ffffffffffffffda RBX: 000056284dcd9910 RCX: 00007f5e751119b1
[ 2322.844847] RDX: 00000000000000ff RSI: 0000000000090800 RDI: 000056284dcbf550
[ 2322.852126] RBP: 00007f5e762c6710 R08: 000056284dcd8ff0 R09: 0000000000001010
[ 2322.859392] R10: 00007f5e753f7b58 R11: 0000000000000202 R12: 0000000000000000
[ 2322.866656] R13: 000056284dcbf550 R14: 00000000000000ff R15: 000056284dcbf550
[ 2323.659182] Mem-Info:
[ 2323.703391] active_anon:1216409 inactive_anon:28162 isolated_anon:0
[ 2323.703391]  active_file:162 inactive_file:1005 isolated_file:33
[ 2323.703391]  unevictable:0 dirty:9 writeback:1 unstable:0
[ 2323.703391]  slab_reclaimable:24925 slab_unreclaimable:146335
[ 2323.703391]  mapped:64869 shmem:38846 pagetables:60256 bounce:0
[ 2323.703391]  free:23466 free_pcp:97 free_cma:0
[ 2324.061540] Node 0 active_anon:1729068kB inactive_anon:66476kB active_file:4kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:240232kB dirty:0kB writeback:0kB shmem:82512kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 954368kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2324.196525] Node 1 active_anon:3136724kB inactive_anon:46172kB active_file:1556kB inactive_file:3456kB unevictable:0kB isolated(anon):0kB isolated(file):444kB mapped:21224kB dirty:60kB writeback:0kB shmem:72872kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2324.389248] Node 0 DMA free:10384kB min:220kB low:272kB high:324kB active_anon:4696kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2324.586548] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2324.605955] Node 0 DMA32 free:27632kB min:36272kB low:45340kB high:54408kB active_anon:1724372kB inactive_anon:66476kB active_file:4kB inactive_file:4kB unevictable:0kB writepending:0kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:12672kB pagetables:71896kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2324.731137] lowmem_reserve[]: 0 0 0 0 0
[ 2324.743988] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2324.898458] lowmem_reserve[]: 0 0 0 0 0
[ 2324.913191] Node 1 Normal free:54072kB min:53612kB low:67012kB high:80412kB active_anon:3136724kB inactive_anon:46172kB active_file:2692kB inactive_file:2548kB unevictable:0kB writepending:60kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:55680kB pagetables:169328kB bounce:0kB free_pcp:1300kB local_pcp:640kB free_cma:0kB
[ 2325.113204] lowmem_reserve[]: 0 0 0 0 0
[ 2325.126680] Node 0 DMA: 2*4kB (UE) 19*8kB (UME) 3*16kB (UE) 6*32kB (UM) 4*64kB (UE) 2*128kB (ME) 3*256kB (UME) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10384kB
[ 2325.177190] Node 0 DMA32: 169*4kB (UM) 1924*8kB (UME) 555*16kB (UME) 51*32kB (UME) 8*64kB (UME) 2*128kB (UE) 2*256kB (ME) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 27860kB
[ 2325.285630] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2325.363057] Node 1 Normal: 95*4kB (UMEH) 504*8kB (UMH) 532*16kB (UMH) 874*32kB (UMH) 126*64kB (UMEH) 21*128kB (MEH) 8*256kB (ME) 3*512kB (MEH) 0*1024kB 0*2048kB 0*4096kB = 55228kB
[ 2325.409955] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2325.429677] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2325.448973] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2325.525066] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2325.555033] 40430 total pagecache pages
[ 2325.567235] 0 pages in swap cache
[ 2325.578936] Swap cache stats: add 0, delete 0, find 0/0
[ 2325.624036] Free swap  = 0kB
[ 2325.633191] Total swap = 0kB
[ 2325.646555] 1965979 pages RAM
[ 2325.660495] 0 pages HighMem/MovableOnly
[ 2325.665447] audit: type=1326 audit(1599896643.192:135151): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31864 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2325.697080] 339077 pages reserved
[ 2325.709022] 0 pages cma reserved
[ 2325.737851] Out of memory: Kill process 29880 (syz-executor.5) score 1007 or sacrifice child
[ 2325.749128] Killed process 29880 (syz-executor.5) total-vm:93676kB, anon-rss:16572kB, file-rss:34816kB, shmem-rss:0kB
07:44:03 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x6100)
ioctl$TIOCGPGRP(r1, 0x540f, &(0x7f00000000c0)=<r4=>0x0)
syz_open_procfs(r4, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:44:03 executing program 2:
perf_event_open(&(0x7f0000000380)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, @perf_config_ext={0x0, 0x80}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x10)
fcntl$setstatus(r0, 0x4, 0x6900)
ftruncate(r0, 0x800)
getsockopt$packet_buf(0xffffffffffffffff, 0x107, 0x0, 0x0, 0x0)
bpf$MAP_LOOKUP_ELEM(0x1, 0x0, 0x0)
lseek(r0, 0x0, 0x2)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7, &(0x7f00000000c0)='@{^%^@\x00'}, 0x30)
syz_open_dev$ttys(0xc, 0x2, 0x0)
r1 = open(&(0x7f0000000140)='./bus\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x8001)
seccomp$SECCOMP_GET_NOTIF_SIZES(0x3, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, &(0x7f00000002c0))
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000100)={0x0, 0x0, 0xdf52})

07:44:03 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x0, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:44:03 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:44:03 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
fcntl$setpipe(r1, 0x407, 0x0)
write(r1, &(0x7f0000000340), 0x41395527)
vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r2 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r2, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2325.947629] audit: type=1326 audit(1599896643.472:135152): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31874 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2326.016692] oom_reaper: reaped process 29880 (syz-executor.5), now anon-rss:0kB, file-rss:0kB, shmem-rss:0kB
07:44:03 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x6100)
ioctl$TIOCGPGRP(r1, 0x540f, &(0x7f00000000c0)=<r4=>0x0)
syz_open_procfs(r4, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

[ 2326.081033] audit: type=1804 audit(1599896643.522:135153): pid=31880 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op="invalid_pcr" cause="open_writers" comm="syz-executor.2" name="/root/syzkaller-testdir574596422/syzkaller.MGjqqt/1857/bus" dev="sda1" ino=17008 res=1
07:44:03 executing program 2:
mkdir(&(0x7f0000000280)='./file0\x00', 0x0)
mount(0x0, &(0x7f000000aff8)='./file0\x00', &(0x7f0000000000)='ramfs\x00', 0x0, 0x0)
mount$9p_unix(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x3e38ff, 0x0)

07:44:03 executing program 5:
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:44:03 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
fcntl$setpipe(r1, 0x407, 0x0)
write(r1, &(0x7f0000000340), 0x41395527)
vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r2 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42500)
write$cgroup_type(r2, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2326.238532] audit: type=1326 audit(1599896643.532:135154): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31863 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2326.331471] audit: type=1326 audit(1599896643.532:135155): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31875 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:44:03 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

[ 2326.469583] audit: type=1804 audit(1599896643.652:135156): pid=31876 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op="invalid_pcr" cause="open_writers" comm="syz-executor.2" name="/root/syzkaller-testdir574596422/syzkaller.MGjqqt/1857/bus" dev="sda1" ino=17008 res=1
07:44:04 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2327.294206] audit: type=1326 audit(1599896643.792:135157): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31893 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2327.384948] audit: type=1326 audit(1599896643.812:135158): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31898 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2327.490364] audit: type=1326 audit(1599896643.822:135159): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31900 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:44:05 executing program 3:
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:44:05 executing program 2:
mkdir(&(0x7f0000000280)='./file0\x00', 0x0)
mount(0x0, &(0x7f000000aff8)='./file0\x00', &(0x7f0000000000)='ramfs\x00', 0x0, 0x0)
mount$9p_unix(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x3e38ff, 0x0)

07:44:05 executing program 5:
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2327.760940] audit: type=1326 audit(1599896643.902:135160): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31905 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2329.360722] syz-executor.2 invoked oom-killer: gfp_mask=0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null),  order=1, oom_score_adj=1000
[ 2329.485569] syz-executor.2 cpuset=/ mems_allowed=0-1
[ 2329.490730] CPU: 0 PID: 31945 Comm: syz-executor.2 Not tainted 4.14.197-syzkaller #0
[ 2329.498631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2329.507981] Call Trace:
[ 2329.510597]  dump_stack+0x1b2/0x283
[ 2329.514229]  dump_header+0x178/0x82f
[ 2329.517945]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2329.523047]  ? ___ratelimit+0x2cd/0x522
[ 2329.527028]  oom_kill_process.cold+0x10/0xa69
[ 2329.531551]  ? lock_downgrade+0x740/0x740
[ 2329.535702]  out_of_memory+0x2dc/0x1190
[ 2329.539687]  ? oom_killer_disable+0x1c0/0x1c0
[ 2329.544183]  ? mutex_trylock+0x152/0x1a0
[ 2329.548249]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2329.553114]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2329.557963]  ? check_preemption_disabled+0x35/0x240
[ 2329.562983]  ? cache_grow_begin+0x3f/0x420
[ 2329.567230]  cache_grow_begin+0x8f/0x420
[ 2329.571298]  ? mempolicy_slab_node+0x100/0x320
[ 2329.575891]  fallback_alloc+0x207/0x2c0
[ 2329.579863]  kmem_cache_alloc+0x1e5/0x3c0
[ 2329.584007]  getname_flags+0xc8/0x550
[ 2329.587804]  ? __might_fault+0x104/0x1b0
[ 2329.591857]  user_path_at_empty+0x2a/0x50
[ 2329.596016]  do_mount+0x118/0x2a00
[ 2329.599552]  ? __might_fault+0x177/0x1b0
[ 2329.603606]  ? copy_mount_string+0x40/0x40
[ 2329.608789]  ? put_timespec64+0xaa/0xf0
[ 2329.612763]  ? jiffies64_to_nsecs+0x20/0x20
[ 2329.617086]  ? copy_mount_options+0x1fa/0x2f0
[ 2329.621589]  ? SyS_clock_gettime+0xf5/0x180
[ 2329.625911]  ? copy_mnt_ns+0xa30/0xa30
[ 2329.629809]  SyS_mount+0xa8/0x120
[ 2329.633270]  ? copy_mnt_ns+0xa30/0xa30
[ 2329.637152]  do_syscall_64+0x1d5/0x640
[ 2329.641207]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2329.646400] RIP: 0033:0x45d5b9
[ 2329.649575] RSP: 002b:00007f84c90e5c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2329.657276] RAX: ffffffffffffffda RBX: 00000000000213c0 RCX: 000000000045d5b9
[ 2329.664550] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000000
[ 2329.671814] RBP: 000000000118d0d0 R08: 0000000000000000 R09: 0000000000000000
[ 2329.679083] R10: 00000000003e38ff R11: 0000000000000246 R12: 000000000118d08c
[ 2329.686356] R13: 00007ffe5e351bdf R14: 00007f84c90e69c0 R15: 000000000118d08c
[ 2330.690409] Mem-Info:
[ 2330.692868] active_anon:1217298 inactive_anon:28161 isolated_anon:0
[ 2330.692868]  active_file:102 inactive_file:422 isolated_file:20
[ 2330.692868]  unevictable:0 dirty:38 writeback:1 unstable:0
[ 2330.692868]  slab_reclaimable:25227 slab_unreclaimable:145919
[ 2330.692868]  mapped:64818 shmem:38846 pagetables:60432 bounce:0
[ 2330.692868]  free:23202 free_pcp:131 free_cma:0
[ 2331.000106] Node 0 active_anon:1729764kB inactive_anon:66476kB active_file:4kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:240244kB dirty:4kB writeback:0kB shmem:82512kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 954368kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2331.073742] Node 1 active_anon:3139476kB inactive_anon:46168kB active_file:1428kB inactive_file:1384kB unevictable:0kB isolated(anon):0kB isolated(file):256kB mapped:19952kB dirty:20kB writeback:0kB shmem:72872kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2331.210938] Node 0 DMA free:10384kB min:220kB low:272kB high:324kB active_anon:4696kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2331.298349] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2331.303428] Node 0 DMA32 free:27552kB min:36272kB low:45340kB high:54408kB active_anon:1725068kB inactive_anon:66476kB active_file:4kB inactive_file:4kB unevictable:0kB writepending:0kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:12768kB pagetables:71896kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2331.392211] lowmem_reserve[]: 0 0 0 0 0
[ 2331.400248] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2331.430934] lowmem_reserve[]: 0 0 0 0 0
[ 2331.435685] Node 1 Normal free:55856kB min:53612kB low:67012kB high:80412kB active_anon:3139476kB inactive_anon:46168kB active_file:1328kB inactive_file:1000kB unevictable:0kB writepending:20kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:55680kB pagetables:169796kB bounce:0kB free_pcp:344kB local_pcp:232kB free_cma:0kB
[ 2331.577825] lowmem_reserve[]: 0 0 0 0 0
[ 2331.586594] Node 0 DMA: 2*4kB (UE) 19*8kB (UME) 3*16kB (UE) 5*32kB (UM) 4*64kB (UE) 2*128kB (ME) 3*256kB (UME) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10352kB
[ 2331.620331] Node 0 DMA32: 168*4kB (UME) 1890*8kB (UME) 561*16kB (UME) 48*32kB (UME) 9*64kB (UME) 2*128kB (UE) 2*256kB (ME) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 27648kB
[ 2331.673742] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2331.701051] Node 1 Normal: 967*4kB (UMEH) 662*8kB (UM) 385*16kB (UME) 818*32kB (UMEH) 131*64kB (UMEH) 18*128kB (M) 5*256kB (M) 3*512kB (MEH) 0*1024kB 0*2048kB 0*4096kB = 55004kB
[ 2331.739184] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2331.757585] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2331.793757] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2331.802654] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2331.817319] 39594 total pagecache pages
[ 2331.821318] 0 pages in swap cache
[ 2331.825075] Swap cache stats: add 0, delete 0, find 0/0
[ 2331.830439] Free swap  = 0kB
[ 2331.837928] Total swap = 0kB
[ 2331.840964] 1965979 pages RAM
[ 2331.844675] 0 pages HighMem/MovableOnly
[ 2331.848650] 339077 pages reserved
[ 2331.852094] 0 pages cma reserved
[ 2331.855857] Out of memory: Kill process 31944 (syz-executor.4) score 1007 or sacrifice child
[ 2331.864761] Killed process 31944 (syz-executor.4) total-vm:93808kB, anon-rss:15992kB, file-rss:34852kB, shmem-rss:0kB
[ 2331.919537] oom_reaper: reaped process 31944 (syz-executor.4), now anon-rss:0kB, file-rss:0kB, shmem-rss:0kB
07:44:09 executing program 2:
syz_open_procfs(0x0, &(0x7f0000000240)='net/rt_acct\x00')
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000300)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = syz_open_procfs(0x0, &(0x7f0000000080)='fd\x00')
fchdir(r1)
r2 = memfd_create(&(0x7f0000000780)='\x00', 0x0)
write(r2, &(0x7f00000000c0)="6963e64243ea486da3a74e3deec6fc5bb9650b5de56946c568f95d22467190ba406d59a5958d6f156c9c8a2ac4677b00000000000000000000200000f8bf54da33", 0x41)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1, 0x11, r2, 0x0)
r3 = inotify_init1(0x0)
inotify_add_watch(r3, &(0x7f0000000040)='./control\x00', 0xa4000960)
open(&(0x7f0000000040)='./file1\x00', 0x0, 0x0)

07:44:09 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x0, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:44:09 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:44:09 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:44:09 executing program 5:
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2332.338497] kauditd_printk_skb: 2 callbacks suppressed
[ 2332.338506] audit: type=1326 audit(1599896649.862:135163): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31951 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:44:09 executing program 2:
syz_open_procfs(0x0, &(0x7f0000000240)='net/rt_acct\x00')
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000300)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = syz_open_procfs(0x0, &(0x7f0000000080)='fd\x00')
fchdir(r1)
r2 = memfd_create(&(0x7f0000000780)='\x00', 0x0)
write(r2, &(0x7f00000000c0)="6963e64243ea486da3a74e3deec6fc5bb9650b5de56946c568f95d22467190ba406d59a5958d6f156c9c8a2ac4677b00000000000000000000200000f8bf54da33", 0x41)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1, 0x11, r2, 0x0)
r3 = inotify_init1(0x0)
inotify_add_watch(r3, &(0x7f0000000040)='./control\x00', 0xa4000960)
open(&(0x7f0000000040)='./file1\x00', 0x0, 0x0)

[ 2332.472084] audit: type=1326 audit(1599896649.872:135164): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31947 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:44:10 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

[ 2333.011135] audit: type=1326 audit(1599896649.892:135165): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31948 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:44:10 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2333.306402] audit: type=1326 audit(1599896649.982:135166): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31952 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:44:10 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2333.564371] audit: type=1326 audit(1599896650.012:135167): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31962 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2333.656145] audit: type=1326 audit(1599896651.152:135168): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31981 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2333.957321] audit: type=1326 audit(1599896651.272:135169): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31986 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:44:13 executing program 3:
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:44:13 executing program 5:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:44:13 executing program 2:
syz_open_procfs(0x0, &(0x7f0000000240)='net/rt_acct\x00')
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000300)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = syz_open_procfs(0x0, &(0x7f0000000080)='fd\x00')
fchdir(r1)
r2 = memfd_create(&(0x7f0000000780)='\x00', 0x0)
write(r2, &(0x7f00000000c0)="6963e64243ea486da3a74e3deec6fc5bb9650b5de56946c568f95d22467190ba406d59a5958d6f156c9c8a2ac4677b00000000000000000000200000f8bf54da33", 0x41)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1, 0x11, r2, 0x0)
r3 = inotify_init1(0x0)
inotify_add_watch(r3, &(0x7f0000000040)='./control\x00', 0xa4000960)
open(&(0x7f0000000040)='./file1\x00', 0x0, 0x0)

07:44:13 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r0, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x6100)
ioctl$TIOCGPGRP(r1, 0x540f, &(0x7f00000000c0)=<r4=>0x0)
syz_open_procfs(r4, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:44:13 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:44:13 executing program 2:
syz_open_procfs(0x0, &(0x7f0000000240)='net/rt_acct\x00')
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000300)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = syz_open_procfs(0x0, &(0x7f0000000080)='fd\x00')
fchdir(r1)
r2 = memfd_create(&(0x7f0000000780)='\x00', 0x0)
write(r2, &(0x7f00000000c0)="6963e64243ea486da3a74e3deec6fc5bb9650b5de56946c568f95d22467190ba406d59a5958d6f156c9c8a2ac4677b00000000000000000000200000f8bf54da33", 0x41)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1, 0x11, r2, 0x0)
r3 = inotify_init1(0x0)
inotify_add_watch(r3, &(0x7f0000000040)='./control\x00', 0xa4000960)
open(&(0x7f0000000040)='./file1\x00', 0x0, 0x0)

[ 2336.227298] audit: type=1326 audit(1599896653.752:135170): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31999 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2336.346535] audit: type=1326 audit(1599896653.802:135171): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32005 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:44:13 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff})
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = fcntl$dupfd(r0, 0x0, r0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000000)={0x6, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 'lblcr\x00', 0x12, 0x8, 0x20200000}, 0x2c)

[ 2336.422739] audit: type=1326 audit(1599896653.832:135172): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32007 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:44:14 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r0, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x6100)
ioctl$TIOCGPGRP(r1, 0x540f, &(0x7f00000000c0)=<r4=>0x0)
syz_open_procfs(r4, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

[ 2337.356137] systemd-udevd invoked oom-killer: gfp_mask=0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null),  order=1, oom_score_adj=-1000
[ 2338.052263] systemd-udevd cpuset=/ mems_allowed=0-1
[ 2338.129544] CPU: 1 PID: 3657 Comm: systemd-udevd Not tainted 4.14.197-syzkaller #0
[ 2338.137286] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2338.146633] Call Trace:
[ 2338.149228]  dump_stack+0x1b2/0x283
[ 2338.152858]  dump_header+0x178/0x82f
[ 2338.156568]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2338.161663]  ? ___ratelimit+0x2cd/0x522
[ 2338.165633]  oom_kill_process.cold+0x10/0xa69
[ 2338.170125]  ? lock_downgrade+0x740/0x740
[ 2338.174269]  out_of_memory+0x2dc/0x1190
[ 2338.178242]  ? oom_killer_disable+0x1c0/0x1c0
[ 2338.182731]  ? mutex_trylock+0x152/0x1a0
[ 2338.186790]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2338.191641]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2338.196476]  ? check_preemption_disabled+0x35/0x240
[ 2338.201505]  ? cache_grow_begin+0x3f/0x420
[ 2338.205734]  cache_grow_begin+0x8f/0x420
[ 2338.209783]  ? mempolicy_slab_node+0x100/0x320
[ 2338.214355]  fallback_alloc+0x207/0x2c0
[ 2338.218320]  kmem_cache_alloc+0x1e5/0x3c0
[ 2338.222457]  getname_flags+0xc8/0x550
[ 2338.226271]  user_path_at_empty+0x2a/0x50
[ 2338.230414]  SyS_faccessat+0x21b/0x680
[ 2338.234298]  ? SyS_fallocate+0x80/0x80
[ 2338.238185]  ? do_syscall_64+0x4c/0x640
[ 2338.242146]  ? SyS_faccessat+0x680/0x680
[ 2338.246194]  do_syscall_64+0x1d5/0x640
[ 2338.250090]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2338.255288] RIP: 0033:0x7f5e751399c7
[ 2338.258989] RSP: 002b:00007fff9061c278 EFLAGS: 00000246 ORIG_RAX: 0000000000000015
[ 2338.266725] RAX: ffffffffffffffda RBX: 000056284dcc6980 RCX: 00007f5e751399c7
[ 2338.273982] RDX: 00746e657665752f RSI: 0000000000000000 RDI: 00007fff9061c280
[ 2338.281243] RBP: 00007fff9061c2f0 R08: 000000000000cc40 R09: 0000000000001010
[ 2338.288627] R10: 00007f5e753f7b58 R11: 0000000000000246 R12: 000056284c72e856
[ 2338.295894] R13: 000056284dccac20 R14: 00007fff9061c280 R15: 000056284dccdb60
[ 2339.349146] Mem-Info:
[ 2339.351624] active_anon:1218193 inactive_anon:28162 isolated_anon:0
[ 2339.351624]  active_file:650 inactive_file:648 isolated_file:64
[ 2339.351624]  unevictable:0 dirty:1286 writeback:0 unstable:0
[ 2339.351624]  slab_reclaimable:25232 slab_unreclaimable:147051
[ 2339.351624]  mapped:64506 shmem:38846 pagetables:60539 bounce:0
[ 2339.351624]  free:20307 free_pcp:0 free_cma:0
[ 2339.542921] Node 0 active_anon:1730280kB inactive_anon:66476kB active_file:4kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:240256kB dirty:8kB writeback:0kB shmem:82512kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 954368kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2339.943231] Node 1 active_anon:3142492kB inactive_anon:46172kB active_file:2556kB inactive_file:2444kB unevictable:0kB isolated(anon):0kB isolated(file):164kB mapped:17568kB dirty:5136kB writeback:0kB shmem:72872kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2340.278815] Node 0 DMA free:10352kB min:220kB low:272kB high:324kB active_anon:4696kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2340.623242] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2340.628340] Node 0 DMA32 free:27384kB min:36272kB low:45340kB high:54408kB active_anon:1725584kB inactive_anon:66476kB active_file:4kB inactive_file:8kB unevictable:0kB writepending:8kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:12864kB pagetables:71980kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2341.063154] lowmem_reserve[]: 0 0 0 0 0
[ 2341.067203] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2341.463119] lowmem_reserve[]: 0 0 0 0 0
[ 2341.467171] Node 1 Normal free:43816kB min:53612kB low:67012kB high:80412kB active_anon:3142492kB inactive_anon:46172kB active_file:2496kB inactive_file:2444kB unevictable:0kB writepending:5036kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:55776kB pagetables:170140kB bounce:0kB free_pcp:16kB local_pcp:0kB free_cma:0kB
[ 2341.843116] lowmem_reserve[]: 0 0 0 0 0
[ 2341.847148] Node 0 DMA: 2*4kB (UE) 19*8kB (UME) 3*16kB (UE) 7*32kB (UM) 4*64kB (UE) 2*128kB (ME) 3*256kB (UME) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10416kB
[ 2342.115189] Node 0 DMA32: 189*4kB (UME) 1903*8kB (UME) 537*16kB (UME) 46*32kB (UME) 9*64kB (UME) 2*128kB (UE) 2*256kB (ME) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 27388kB
[ 2342.373173] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2342.473074] Node 1 Normal: 779*4kB (UMEH) 129*8kB (UME) 29*16kB (UME) 826*32kB (UMH) 124*64kB (UM) 18*128kB (ME) 6*256kB (UME) 2*512kB (UH) 0*1024kB 0*2048kB 0*4096kB = 43844kB
[ 2342.673053] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2342.681923] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2342.892234] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2343.003021] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2343.011639] 40130 total pagecache pages
[ 2343.150730] 0 pages in swap cache
[ 2343.197609] Swap cache stats: add 0, delete 0, find 0/0
[ 2343.263065] Free swap  = 0kB
[ 2343.266108] Total swap = 0kB
[ 2343.269119] 1965979 pages RAM
[ 2343.272238] 0 pages HighMem/MovableOnly
[ 2343.432659] 339077 pages reserved
[ 2343.458297] 0 pages cma reserved
[ 2343.461680] Out of memory: Kill process 30395 (syz-executor.5) score 1007 or sacrifice child
[ 2343.613026] Killed process 30395 (syz-executor.5) total-vm:93676kB, anon-rss:16572kB, file-rss:34816kB, shmem-rss:0kB
[ 2343.940401] oom_reaper: reaped process 30395 (syz-executor.5), now anon-rss:0kB, file-rss:0kB, shmem-rss:0kB
07:44:24 executing program 3:
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:44:24 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @multicast2}, 0x10)
perf_event_open(&(0x7f0000000000)={0x1000000002, 0x70, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg(r0, &(0x7f0000007fc0), 0x60, 0x0)

07:44:24 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:44:25 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r0, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x6100)
ioctl$TIOCGPGRP(r1, 0x540f, &(0x7f00000000c0)=<r4=>0x0)
syz_open_procfs(r4, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:44:24 executing program 5:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:44:26 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
fcntl$setpipe(r1, 0x407, 0x0)
write(r1, &(0x7f0000000340), 0x41395527)
vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r2 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r2, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2349.353902] kauditd_printk_skb: 1 callbacks suppressed
[ 2349.353911] audit: type=1326 audit(1599896666.873:135174): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32033 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2349.658904] audit: type=1326 audit(1599896667.173:135175): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32035 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2349.721161] audit: type=1326 audit(1599896667.203:135176): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32037 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2350.192149] systemd-udevd invoked oom-killer: gfp_mask=0x15080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null),  order=3, oom_score_adj=-1000
[ 2350.301345] systemd-udevd cpuset=/ mems_allowed=0-1
[ 2350.346165] CPU: 1 PID: 3657 Comm: systemd-udevd Not tainted 4.14.197-syzkaller #0
[ 2350.353975] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2350.363318] Call Trace:
[ 2350.366081]  dump_stack+0x1b2/0x283
[ 2350.369709]  dump_header+0x178/0x82f
[ 2350.373418]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2350.378513]  ? ___ratelimit+0x2cd/0x522
[ 2350.382482]  oom_kill_process.cold+0x10/0xa69
[ 2350.386976]  ? lock_downgrade+0x740/0x740
[ 2350.391122]  out_of_memory+0x2dc/0x1190
[ 2350.395099]  ? oom_killer_disable+0x1c0/0x1c0
[ 2350.399607]  ? mutex_trylock+0x152/0x1a0
[ 2350.403695]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2350.408680]  ? lock_downgrade+0x740/0x740
[ 2350.412827]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2350.417664]  ? fs_reclaim_release+0xd0/0x110
[ 2350.422099]  ? kmem_cache_alloc_node+0x38b/0x410
[ 2350.426858]  copy_process.part.0+0x26d/0x6f00
[ 2350.431351]  ? __put_seccomp_filter+0x90/0x90
[ 2350.435845]  ? lock_downgrade+0x740/0x740
[ 2350.439989]  ? do_raw_spin_unlock+0x164/0x220
[ 2350.444479]  ? __seccomp_filter+0xbd/0xd60
[ 2350.448708]  ? seccomp_send_sigsys+0x180/0x180
[ 2350.453286]  ? check_preemption_disabled+0x35/0x240
[ 2350.458314]  ? __cleanup_sighand+0x40/0x40
[ 2350.462557]  ? perf_trace_lock_acquire+0x510/0x510
[ 2350.467478]  ? sock_setsockopt+0x117/0x1a50
[ 2350.471808]  _do_fork+0x184/0xc80
[ 2350.475784]  ? syscall_trace_enter+0x486/0xc20
[ 2350.480367]  ? fork_idle+0x270/0x270
[ 2350.484080]  ? syscall_slow_exit_work+0x560/0x560
[ 2350.488936]  ? do_syscall_64+0x4c/0x640
[ 2350.492937]  ? sys_vfork+0x20/0x20
[ 2350.496471]  do_syscall_64+0x1d5/0x640
[ 2350.500359]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2350.505542] RIP: 0033:0x7f5e7511638b
[ 2350.509240] RSP: 002b:00007fff9061bca0 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 2350.516941] RAX: ffffffffffffffda RBX: 00007fff9061bca0 RCX: 00007f5e7511638b
[ 2350.524205] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[ 2350.531465] RBP: 00007fff9061bcf0 R08: 00007f5e762c68c0 R09: 0000000000000210
[ 2350.538724] R10: 00007f5e762c6b90 R11: 0000000000000246 R12: 0000000000000000
[ 2350.545986] R13: 0000000000000020 R14: 0000000000000000 R15: 0000000000000000
[ 2350.829487] Mem-Info:
[ 2350.832071] active_anon:1217644 inactive_anon:28162 isolated_anon:0
[ 2350.832071]  active_file:558 inactive_file:717 isolated_file:32
[ 2350.832071]  unevictable:0 dirty:516 writeback:6 unstable:0
[ 2350.832071]  slab_reclaimable:25162 slab_unreclaimable:146533
[ 2350.832071]  mapped:65277 shmem:38846 pagetables:60512 bounce:0
[ 2350.832071]  free:21156 free_pcp:0 free_cma:0
[ 2350.906455] Node 0 active_anon:1730348kB inactive_anon:66476kB active_file:24kB inactive_file:624kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:240296kB dirty:784kB writeback:4kB shmem:82512kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 954368kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2351.039540] Node 1 active_anon:3140320kB inactive_anon:46172kB active_file:2056kB inactive_file:2028kB unevictable:0kB isolated(anon):0kB isolated(file):128kB mapped:20304kB dirty:1412kB writeback:0kB shmem:72872kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2351.095010] Node 0 DMA free:10352kB min:220kB low:272kB high:324kB active_anon:4696kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2351.128605] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2351.141497] Node 0 DMA32 free:27244kB min:36272kB low:45340kB high:54408kB active_anon:1725652kB inactive_anon:66476kB active_file:56kB inactive_file:748kB unevictable:0kB writepending:780kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:12896kB pagetables:71984kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2351.182990] lowmem_reserve[]: 0 0 0 0 0
[ 2351.187325] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2351.265952] lowmem_reserve[]: 0 0 0 0 0
[ 2351.270088] Node 1 Normal free:48528kB min:53612kB low:67012kB high:80412kB active_anon:3140320kB inactive_anon:46172kB active_file:2056kB inactive_file:2028kB unevictable:0kB writepending:1412kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:55616kB pagetables:170036kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2351.308349] lowmem_reserve[]: 0 0 0 0 0
[ 2351.320626] Node 0 DMA: 2*4kB (UE) 19*8kB (UME) 3*16kB (UE) 5*32kB (UM) 4*64kB (UE) 2*128kB (ME) 3*256kB (UME) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10352kB
[ 2351.384982] Node 0 DMA32: 227*4kB (UME) 1778*8kB (UME) 415*16kB (UME) 112*32kB (UME) 16*64kB (UME) 3*128kB (UE) 2*256kB (ME) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 27276kB
[ 2351.418126] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2351.441867] Node 1 Normal: 695*4kB (UMEH) 23*8kB (UME) 262*16kB (UME) 906*32kB (UMH) 127*64kB (UM) 18*128kB (ME) 6*256kB (UME) 2*512kB (UH) 0*1024kB 0*2048kB 0*4096kB = 49140kB
[ 2351.515298] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2351.544948] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2351.569734] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2351.592889] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2351.612019] 39839 total pagecache pages
[ 2351.619629] 0 pages in swap cache
[ 2351.632600] Swap cache stats: add 0, delete 0, find 0/0
[ 2351.649859] Free swap  = 0kB
[ 2351.660002] Total swap = 0kB
[ 2351.670148] 1965979 pages RAM
[ 2351.680380] 0 pages HighMem/MovableOnly
[ 2351.708357] 339077 pages reserved
[ 2351.723520] 0 pages cma reserved
[ 2351.740174] Out of memory: Kill process 32035 (syz-executor.4) score 1007 or sacrifice child
[ 2351.780009] Killed process 32049 (syz-executor.4) total-vm:93676kB, anon-rss:16560kB, file-rss:35244kB, shmem-rss:0kB
[ 2351.891661] oom_reaper: reaped process 32049 (syz-executor.4), now anon-rss:0kB, file-rss:12kB, shmem-rss:0kB
[ 2352.123138] audit: type=1326 audit(1599896669.643:135177): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32038 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:44:30 executing program 2:
prctl$PR_SET_NAME(0xf, &(0x7f0000000000)='//selinux\x00\x00\x01\x10')
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd/3\x00')
flistxattr(r0, &(0x7f0000000040)=""/125, 0x7d)

07:44:30 executing program 0:
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:44:30 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
fcntl$setpipe(r1, 0x407, 0x0)
write(r1, &(0x7f0000000340), 0x41395527)
vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r2 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r2, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:44:30 executing program 3:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:44:30 executing program 5:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:44:30 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2353.696625] audit: type=1326 audit(1599896671.213:135178): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32057 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2353.792485] audit: type=1326 audit(1599896671.243:135179): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32060 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2354.209564] audit: type=1326 audit(1599896671.423:135180): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32058 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2354.639875] syz-executor.2 invoked oom-killer: gfp_mask=0x14082c2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_ZERO), nodemask=(null),  order=0, oom_score_adj=0
[ 2354.851463] syz-executor.2 cpuset=/ mems_allowed=0-1
[ 2354.907313] CPU: 1 PID: 6371 Comm: syz-executor.2 Not tainted 4.14.197-syzkaller #0
[ 2354.915168] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2354.924526] Call Trace:
[ 2354.927120]  dump_stack+0x1b2/0x283
[ 2354.930779]  dump_header+0x178/0x82f
[ 2354.934521]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2354.939647]  ? ___ratelimit+0x2cd/0x522
[ 2354.943635]  oom_kill_process.cold+0x10/0xa69
[ 2354.948262]  ? lock_downgrade+0x740/0x740
[ 2354.952559]  out_of_memory+0x2dc/0x1190
[ 2354.956550]  ? oom_killer_disable+0x1c0/0x1c0
[ 2354.961078]  ? mutex_trylock+0x152/0x1a0
[ 2354.965155]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2354.970090]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2354.974942]  ? fs_reclaim_release+0xd0/0x110
[ 2354.979365]  ? rcu_read_lock_sched_held+0x16c/0x1d0
[ 2354.984412]  ? __kmalloc_node+0x38/0x70
[ 2354.988415]  ? kmem_cache_alloc_node_trace+0x383/0x400
[ 2354.993706]  alloc_pages_current+0x155/0x260
[ 2354.998148]  __vmalloc_area_node+0x40a/0x680
[ 2355.002592]  ? __vmalloc_node_range+0x150/0x150
[ 2355.007288]  ? __get_vm_area_node+0x27d/0x340
[ 2355.011804]  ? do_ipt_get_ctl+0x435/0x7a0
[ 2355.015981]  vzalloc+0xc3/0x150
[ 2355.019270]  do_ipt_get_ctl+0x435/0x7a0
[ 2355.023279]  ? __ww_mutex_wakeup_for_backoff+0x210/0x210
[ 2355.028760]  ? ipt_error+0x20/0x20
[ 2355.032304]  ? __mutex_unlock_slowpath+0x75/0x770
[ 2355.037156]  ? wait_for_completion_io+0x10/0x10
[ 2355.041845]  ? nf_sockopt_find.constprop.0+0x1ad/0x220
[ 2355.047154]  nf_getsockopt+0x62/0xc0
[ 2355.050877]  ip_getsockopt+0x105/0x150
[ 2355.054770]  ? compat_ip_getsockopt+0x190/0x190
[ 2355.059446]  ? get_unused_fd_flags+0xc0/0xc0
[ 2355.063867]  ? sock_alloc_file+0x1ae/0x2e0
[ 2355.068107]  tcp_getsockopt+0x7b/0xc0
[ 2355.071916]  SyS_getsockopt+0x102/0x1c0
[ 2355.075896]  ? SyS_setsockopt+0x1e0/0x1e0
[ 2355.080048]  ? do_syscall_64+0x4c/0x640
[ 2355.084025]  ? SyS_setsockopt+0x1e0/0x1e0
[ 2355.088262]  do_syscall_64+0x1d5/0x640
[ 2355.092594]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2355.097808] RIP: 0033:0x4600ca
[ 2355.101001] RSP: 002b:00007ffe5e351728 EFLAGS: 00000216 ORIG_RAX: 0000000000000037
[ 2355.108714] RAX: ffffffffffffffda RBX: 00007ffe5e351750 RCX: 00000000004600ca
[ 2355.115990] RDX: 0000000000000041 RSI: 0000000000000000 RDI: 0000000000000003
[ 2355.123290] RBP: 0000000000749e60 R08: 00007ffe5e35174c R09: 0000000000004000
[ 2355.130566] R10: 00007ffe5e3517b0 R11: 0000000000000216 R12: 00007ffe5e3517b0
[ 2355.137839] R13: 0000000000000003 R14: 0000000000747ca0 R15: 0000000000000000
[ 2356.092221] Mem-Info:
[ 2356.099433] active_anon:1217700 inactive_anon:28161 isolated_anon:0
[ 2356.099433]  active_file:568 inactive_file:568 isolated_file:68
[ 2356.099433]  unevictable:0 dirty:751 writeback:1 unstable:0
[ 2356.099433]  slab_reclaimable:25138 slab_unreclaimable:146026
[ 2356.099433]  mapped:64877 shmem:38846 pagetables:60510 bounce:0
[ 2356.099433]  free:22086 free_pcp:0 free_cma:0
[ 2356.245880] Node 0 active_anon:1730360kB inactive_anon:66476kB active_file:4kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:240252kB dirty:0kB writeback:0kB shmem:82512kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 954368kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2356.365232] Node 1 active_anon:3140440kB inactive_anon:46168kB active_file:2004kB inactive_file:2112kB unevictable:0kB isolated(anon):0kB isolated(file):384kB mapped:18856kB dirty:3004kB writeback:4kB shmem:72872kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2356.448657] Node 0 DMA free:10384kB min:220kB low:272kB high:324kB active_anon:4696kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2356.581521] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2356.599345] Node 0 DMA32 free:28168kB min:36272kB low:45340kB high:54408kB active_anon:1725664kB inactive_anon:66476kB active_file:4kB inactive_file:4kB unevictable:0kB writepending:0kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:12864kB pagetables:71984kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2356.699259] lowmem_reserve[]: 0 0 0 0 0
[ 2356.712247] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2356.796852] lowmem_reserve[]: 0 0 0 0 0
[ 2356.812756] Node 1 Normal free:50800kB min:53612kB low:67012kB high:80412kB active_anon:3140440kB inactive_anon:46168kB active_file:1856kB inactive_file:1848kB unevictable:0kB writepending:3008kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:55616kB pagetables:170020kB bounce:0kB free_pcp:24kB local_pcp:24kB free_cma:0kB
[ 2356.935612] lowmem_reserve[]: 0 0 0 0 0
[ 2356.939698] Node 0 DMA: 2*4kB (UE) 19*8kB (UME) 3*16kB (UE) 6*32kB (UM) 4*64kB (UE) 2*128kB (ME) 3*256kB (UME) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10384kB
[ 2356.955729] Node 0 DMA32: 256*4kB (UME) 1825*8kB (UME) 438*16kB (UME) 113*32kB (UME) 16*64kB (UME) 3*128kB (UE) 2*256kB (ME) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 28168kB
[ 2356.971218] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2356.982182] Node 1 Normal: 1655*4kB (UMEH) 120*8kB (UME) 311*16kB (UME) 818*32kB (UMH) 129*64kB (UM) 18*128kB (ME) 6*256kB (UME) 2*512kB (UH) 0*1024kB 0*2048kB 0*4096kB = 51852kB
[ 2356.998491] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2357.020868] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2357.120530] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2357.208759] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2357.308521] 39311 total pagecache pages
[ 2357.359087] 0 pages in swap cache
[ 2357.392156] Swap cache stats: add 0, delete 0, find 0/0
[ 2357.397549] Free swap  = 0kB
[ 2357.478001] Total swap = 0kB
[ 2357.481067] 1965979 pages RAM
[ 2357.532108] 0 pages HighMem/MovableOnly
[ 2357.572147] 339077 pages reserved
[ 2357.575653] 0 pages cma reserved
[ 2357.681632] Out of memory: Kill process 32072 (syz-executor.4) score 1007 or sacrifice child
[ 2357.783080] Killed process 32072 (syz-executor.4) total-vm:93676kB, anon-rss:16560kB, file-rss:34816kB, shmem-rss:0kB
07:44:36 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x0, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:44:36 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
fcntl$setpipe(r1, 0x407, 0x0)
write(r1, &(0x7f0000000340), 0x41395527)
vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r2 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r2, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:44:36 executing program 0:
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:44:36 executing program 2:
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
vmsplice(0xffffffffffffffff, &(0x7f0000000380)=[{&(0x7f00003fb000)="f7", 0x1}], 0x1, 0x0)
mprotect(&(0x7f00003ce000/0x200000)=nil, 0x200000, 0x0)
madvise(&(0x7f000005b000/0x400000)=nil, 0x400000, 0x1000000000008)

07:44:36 executing program 3:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2360.107536] audit: type=1326 audit(1599896677.624:135181): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32079 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2360.530903] audit: type=1326 audit(1599896678.044:135182): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32081 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2361.984139] audit: type=1326 audit(1599896679.504:135183): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32089 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2362.743672] syz-executor.3 invoked oom-killer: gfp_mask=0x15080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null),  order=3, oom_score_adj=0
[ 2362.811800] syz-executor.3 cpuset=/ mems_allowed=0-1
[ 2362.816978] CPU: 0 PID: 32081 Comm: syz-executor.3 Not tainted 4.14.197-syzkaller #0
[ 2362.824856] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2362.834408] Call Trace:
[ 2362.836995]  dump_stack+0x1b2/0x283
[ 2362.840624]  dump_header+0x178/0x82f
[ 2362.844356]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2362.849452]  ? ___ratelimit+0x2cd/0x522
[ 2362.853435]  oom_kill_process.cold+0x10/0xa69
[ 2362.857929]  ? lock_downgrade+0x740/0x740
[ 2362.862335]  out_of_memory+0x2dc/0x1190
[ 2362.866309]  ? oom_killer_disable+0x1c0/0x1c0
[ 2362.870799]  ? mutex_trylock+0x152/0x1a0
[ 2362.874887]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2362.879762]  ? ____cache_alloc_node+0xf4/0x1d0
[ 2362.884349]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2362.889188]  ? do_raw_spin_unlock+0x164/0x220
[ 2362.893682]  ? _raw_spin_unlock+0x29/0x40
[ 2362.897822]  ? ____cache_alloc_node+0xf4/0x1d0
[ 2362.902414]  ? kmem_cache_alloc_node+0x38b/0x410
[ 2362.907168]  copy_process.part.0+0x26d/0x6f00
[ 2362.911661]  ? __handle_mm_fault+0x2095/0x4620
[ 2362.916242]  ? lock_downgrade+0x740/0x740
[ 2362.920381]  ? __lru_cache_add+0x178/0x250
[ 2362.924610]  ? do_raw_spin_unlock+0x164/0x220
[ 2362.929093]  ? check_preemption_disabled+0x35/0x240
[ 2362.934103]  ? __cleanup_sighand+0x40/0x40
[ 2362.938326]  ? perf_trace_lock_acquire+0x510/0x510
[ 2362.943253]  ? selinux_file_mprotect+0xf3/0x5c0
[ 2362.947910]  _do_fork+0x184/0xc80
[ 2362.951349]  ? fork_idle+0x270/0x270
[ 2362.955053]  ? up_read+0x17/0x30
[ 2362.958404]  ? __do_page_fault+0x19a/0xb50
[ 2362.962624]  ? do_syscall_64+0x4c/0x640
[ 2362.966584]  ? sys_vfork+0x20/0x20
[ 2362.970123]  do_syscall_64+0x1d5/0x640
[ 2362.974003]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2362.979180] RIP: 0033:0x45ff89
[ 2362.982354] RSP: 002b:00007ffe0a0f5278 EFLAGS: 00000202 ORIG_RAX: 0000000000000038
[ 2362.990067] RAX: ffffffffffffffda RBX: 00007f885b2fe700 RCX: 000000000045ff89
[ 2362.997332] RDX: 00007f885b2fe9d0 RSI: 00007f885b2fddb0 RDI: 00000000003d0f00
[ 2363.004770] RBP: 00007ffe0a0f54a0 R08: 00007f885b2fe700 R09: 00007f885b2fe700
[ 2363.012116] R10: 00007f885b2fe9d0 R11: 0000000000000202 R12: 0000000000000000
[ 2363.019384] R13: 00007ffe0a0f532f R14: 00007f885b2fe9c0 R15: 000000000118d08c
[ 2363.581769] Mem-Info:
[ 2363.584274] active_anon:1217706 inactive_anon:28162 isolated_anon:0
[ 2363.584274]  active_file:411 inactive_file:545 isolated_file:127
[ 2363.584274]  unevictable:0 dirty:453 writeback:3 unstable:0
[ 2363.584274]  slab_reclaimable:25099 slab_unreclaimable:146308
[ 2363.584274]  mapped:64994 shmem:38846 pagetables:60512 bounce:0
[ 2363.584274]  free:21947 free_pcp:88 free_cma:0
[ 2363.661755] Node 0 active_anon:1730608kB inactive_anon:66476kB active_file:160kB inactive_file:820kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:240384kB dirty:888kB writeback:0kB shmem:82512kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 954368kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2363.725456] Node 1 active_anon:3140216kB inactive_anon:46172kB active_file:972kB inactive_file:1092kB unevictable:0kB isolated(anon):0kB isolated(file):256kB mapped:18692kB dirty:924kB writeback:12kB shmem:72872kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2363.761755] Node 0 DMA free:10352kB min:220kB low:272kB high:324kB active_anon:4696kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2363.851695] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2363.856789] Node 0 DMA32 free:27120kB min:36272kB low:45340kB high:54408kB active_anon:1725912kB inactive_anon:66476kB active_file:160kB inactive_file:876kB unevictable:0kB writepending:888kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:12896kB pagetables:71988kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2363.921704] lowmem_reserve[]: 0 0 0 0 0
[ 2363.925745] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2364.013473] lowmem_reserve[]: 0 0 0 0 0
[ 2364.017590] Node 1 Normal free:52532kB min:53612kB low:67012kB high:80412kB active_anon:3140216kB inactive_anon:46172kB active_file:772kB inactive_file:748kB unevictable:0kB writepending:920kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:55584kB pagetables:170024kB bounce:0kB free_pcp:104kB local_pcp:104kB free_cma:0kB
[ 2364.049276] lowmem_reserve[]: 0 0 0 0 0
[ 2364.053356] Node 0 DMA: 2*4kB (UE) 19*8kB (UME) 3*16kB (UE) 5*32kB (UM) 4*64kB (UE) 2*128kB (ME) 3*256kB (UME) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10352kB
[ 2364.107333] Node 0 DMA32: 256*4kB (UME) 1772*8kB (UME) 397*16kB (UME) 112*32kB (UME) 17*64kB (UME) 3*128kB (UE) 2*256kB (ME) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 27120kB
[ 2364.206459] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2364.250576] Node 1 Normal: 1988*4kB (UMH) 76*8kB (UME) 105*16kB (UME) 906*32kB (UMH) 134*64kB (UM) 18*128kB (ME) 6*256kB (UME) 2*512kB (UH) 0*1024kB 0*2048kB 0*4096kB = 52672kB
[ 2364.297036] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2364.306161] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2364.331686] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2364.340561] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2364.457504] 39521 total pagecache pages
[ 2364.461511] 0 pages in swap cache
[ 2364.531678] Swap cache stats: add 0, delete 0, find 0/0
[ 2364.537102] Free swap  = 0kB
[ 2364.540137] Total swap = 0kB
[ 2364.616479] 1965979 pages RAM
[ 2364.619613] 0 pages HighMem/MovableOnly
[ 2364.681664] 339077 pages reserved
[ 2364.685165] 0 pages cma reserved
[ 2364.688525] Out of memory: Kill process 32089 (syz-executor.4) score 1007 or sacrifice child
[ 2364.781693] Killed process 32096 (syz-executor.4) total-vm:93676kB, anon-rss:16560kB, file-rss:35100kB, shmem-rss:0kB
[ 2365.042144] oom_reaper: reaped process 32096 (syz-executor.4), now anon-rss:0kB, file-rss:12kB, shmem-rss:0kB
07:44:43 executing program 3:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:44:43 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_group_source_req(r2, 0x0, 0x2e, &(0x7f0000000140)={0x2, {{0x2, 0x0, @multicast1}}, {{0x2, 0x0, @remote}}}, 0x108)
setsockopt$inet_group_source_req(r2, 0x0, 0x2e, &(0x7f0000000400)={0x100000002, {{0x2, 0x0, @multicast1}}, {{0x2, 0x0, @dev}}}, 0x108)

07:44:43 executing program 5:
prlimit64(0x0, 0xe, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:44:43 executing program 0:
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:44:43 executing program 1:
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2367.768817] audit: type=1326 audit(1599896685.284:135184): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32101 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2368.381349] audit: type=1326 audit(1599896685.894:135185): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32104 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:44:46 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x0, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:44:50 executing program 5:
prlimit64(0x0, 0xe, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:44:50 executing program 1:
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:44:50 executing program 0:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:44:50 executing program 3:
prlimit64(0x0, 0xe, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:44:51 executing program 2:

[ 2374.442686] audit: type=1326 audit(1599896691.965:135186): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32118 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2375.194307] audit: type=1326 audit(1599896692.715:135187): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32117 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2375.253659] audit: type=1326 audit(1599896692.745:135188): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32121 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:44:57 executing program 1:
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:44:57 executing program 2:

07:44:57 executing program 5:
prlimit64(0x0, 0xe, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:44:57 executing program 3:
prlimit64(0x0, 0xe, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:44:57 executing program 0:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

[ 2382.976729] audit: type=1326 audit(1599896700.495:135189): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32138 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2383.777687] audit: type=1326 audit(1599896701.295:135190): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32141 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:45:01 executing program 2:

[ 2384.956769] audit: type=1326 audit(1599896702.475:135191): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32149 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2385.958614] audit: type=1326 audit(1599896703.475:135192): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32151 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:45:05 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x0, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:45:07 executing program 0:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

[ 2392.142347] audit: type=1326 audit(1599896709.666:135193): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32159 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:45:08 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:45:08 executing program 2:

07:45:08 executing program 3:
prlimit64(0x0, 0xe, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:45:08 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x0, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2393.335988] audit: type=1326 audit(1599896710.856:135194): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32158 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2393.801560] audit: type=1326 audit(1599896711.326:135195): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32161 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2394.916165] syz-executor.2 invoked oom-killer: gfp_mask=0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null),  order=1, oom_score_adj=0
[ 2395.010976] syz-executor.2 cpuset=/ mems_allowed=0-1
[ 2395.044222] CPU: 1 PID: 32162 Comm: syz-executor.2 Not tainted 4.14.197-syzkaller #0
[ 2395.052403] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2395.062043] Call Trace:
[ 2395.064658]  dump_stack+0x1b2/0x283
[ 2395.068293]  dump_header+0x178/0x82f
[ 2395.072010]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2395.077132]  ? ___ratelimit+0x2cd/0x522
[ 2395.081107]  oom_kill_process.cold+0x10/0xa69
[ 2395.085602]  ? lock_downgrade+0x740/0x740
[ 2395.089771]  out_of_memory+0x2dc/0x1190
[ 2395.093749]  ? oom_killer_disable+0x1c0/0x1c0
[ 2395.098259]  ? mutex_trylock+0x152/0x1a0
[ 2395.102325]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2395.107178]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2395.112026]  ? check_preemption_disabled+0x35/0x240
[ 2395.117054]  ? cache_grow_begin+0x3f/0x420
[ 2395.121292]  cache_grow_begin+0x8f/0x420
[ 2395.125348]  ? mempolicy_slab_node+0x100/0x320
[ 2395.129918]  fallback_alloc+0x207/0x2c0
[ 2395.133885]  kmem_cache_alloc+0x1e5/0x3c0
[ 2395.138024]  getname_flags+0xc8/0x550
[ 2395.141813]  SyS_symlinkat+0xa1/0x240
[ 2395.145611]  ? SyS_unlink+0x20/0x20
[ 2395.149234]  ? __do_page_fault+0x19a/0xb50
[ 2395.153467]  ? do_syscall_64+0x4c/0x640
[ 2395.157430]  ? SyS_symlinkat+0x240/0x240
[ 2395.161571]  do_syscall_64+0x1d5/0x640
[ 2395.165460]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2395.170655] RIP: 0033:0x45d2e7
[ 2395.173845] RSP: 002b:00007ffe5e351e18 EFLAGS: 00000206 ORIG_RAX: 0000000000000058
[ 2395.181545] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 000000000045d2e7
[ 2395.188808] RDX: 00007ffe5e351eb3 RSI: 00000000004c30cd RDI: 00007ffe5e351ea0
[ 2395.196068] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000013
[ 2395.203341] R10: 0000000000000075 R11: 0000000000000206 R12: 0000000000000001
[ 2395.210610] R13: 00007ffe5e351e50 R14: 0000000000000000 R15: 00007ffe5e351e60
[ 2395.852011] Mem-Info:
[ 2395.854488] active_anon:1217850 inactive_anon:28162 isolated_anon:0
[ 2395.854488]  active_file:77 inactive_file:60 isolated_file:11
[ 2395.854488]  unevictable:0 dirty:13 writeback:26 unstable:0
[ 2395.854488]  slab_reclaimable:24888 slab_unreclaimable:146297
[ 2395.854488]  mapped:64571 shmem:38846 pagetables:60606 bounce:0
[ 2395.854488]  free:22895 free_pcp:18 free_cma:0
[ 2396.029009] Node 0 active_anon:1731160kB inactive_anon:66476kB active_file:56kB inactive_file:28kB unevictable:0kB isolated(anon):0kB isolated(file):24kB mapped:240344kB dirty:16kB writeback:0kB shmem:82512kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 954368kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2396.147881] Node 1 active_anon:3140240kB inactive_anon:46172kB active_file:92kB inactive_file:132kB unevictable:0kB isolated(anon):0kB isolated(file):24kB mapped:17788kB dirty:36kB writeback:4kB shmem:72872kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2396.199597] Node 0 DMA free:10388kB min:220kB low:272kB high:324kB active_anon:4724kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2396.242146] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2396.247234] Node 0 DMA32 free:28596kB min:36272kB low:45340kB high:54408kB active_anon:1726436kB inactive_anon:66476kB active_file:56kB inactive_file:28kB unevictable:0kB writepending:16kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:12864kB pagetables:72080kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2396.386778] lowmem_reserve[]: 0 0 0 0 0
[ 2396.436181] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2396.504515] lowmem_reserve[]: 0 0 0 0 0
[ 2396.508544] Node 1 Normal free:53008kB min:53612kB low:67012kB high:80412kB active_anon:3140240kB inactive_anon:46172kB active_file:92kB inactive_file:132kB unevictable:0kB writepending:40kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:55712kB pagetables:170308kB bounce:0kB free_pcp:12kB local_pcp:12kB free_cma:0kB
[ 2396.549035] lowmem_reserve[]: 0 0 0 0 0
[ 2396.553129] Node 0 DMA: 3*4kB (UME) 19*8kB (UME) 3*16kB (UE) 6*32kB (U) 4*64kB (UE) 2*128kB (ME) 3*256kB (UME) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10388kB
[ 2396.644700] Node 0 DMA32: 341*4kB (UME) 1842*8kB (UME) 424*16kB (UME) 111*32kB (UME) 18*64kB (UME) 3*128kB (UE) 3*256kB (ME) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 28740kB
[ 2396.699653] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2396.724567] Node 1 Normal: 1280*4kB (UMH) 38*8kB (UM) 400*16kB (UM) 902*32kB (UMEH) 127*64kB (UM) 19*128kB (UME) 4*256kB (UM) 2*512kB (UH) 0*1024kB 0*2048kB 0*4096kB = 53296kB
[ 2396.748244] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2396.757151] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2396.765907] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2396.833197] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2396.883274] 38906 total pagecache pages
[ 2396.887289] 0 pages in swap cache
[ 2396.951445] Swap cache stats: add 0, delete 0, find 0/0
[ 2396.956837] Free swap  = 0kB
[ 2397.109598] Total swap = 0kB
[ 2397.112678] 1965979 pages RAM
[ 2397.115772] 0 pages HighMem/MovableOnly
[ 2397.239632] 339077 pages reserved
[ 2397.243129] 0 pages cma reserved
[ 2397.246489] Out of memory: Kill process 32161 (syz-executor.4) score 1007 or sacrifice child
[ 2397.525457] syz-executor.0 invoked oom-killer: gfp_mask=0x14200ca(GFP_HIGHUSER_MOVABLE), nodemask=(null),  order=0, oom_score_adj=0
[ 2397.729584] syz-executor.0 cpuset=/ mems_allowed=0-1
[ 2397.734761] CPU: 0 PID: 6373 Comm: syz-executor.0 Not tainted 4.14.197-syzkaller #0
[ 2397.742573] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2397.751915] Call Trace:
[ 2397.754524]  dump_stack+0x1b2/0x283
[ 2397.758153]  dump_header+0x178/0x82f
[ 2397.761866]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2397.767055]  ? ___ratelimit+0x2cd/0x522
[ 2397.771041]  oom_kill_process.cold+0x10/0xa69
[ 2397.775537]  ? lock_downgrade+0x740/0x740
[ 2397.779681]  out_of_memory+0x2dc/0x1190
[ 2397.783653]  ? oom_killer_disable+0x1c0/0x1c0
[ 2397.788142]  ? mutex_trylock+0x152/0x1a0
[ 2397.792205]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2397.797084]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2397.801922]  ? perf_trace_lock+0xf7/0x490
[ 2397.806065]  ? reacquire_held_locks+0xb5/0x3f0
[ 2397.810639]  ? alloc_set_pte+0xd57/0x1610
[ 2397.814791]  ? perf_trace_lock+0xf7/0x490
[ 2397.818936]  alloc_pages_vma+0xd2/0x6d0
[ 2397.822911]  wp_page_copy+0x1f5/0x1ba0
[ 2397.826812]  ? tlb_flush_mmu_free+0x1a0/0x1a0
[ 2397.831302]  ? __lock_acquire+0x5fc/0x3f20
[ 2397.835536]  do_wp_page+0x245/0x1db0
[ 2397.839246]  ? __handle_mm_fault+0x129c/0x4620
[ 2397.843823]  ? finish_mkwrite_fault+0x5e0/0x5e0
[ 2397.848488]  __handle_mm_fault+0x234f/0x4620
[ 2397.852892]  ? vm_insert_page+0x7c0/0x7c0
[ 2397.857034]  ? perf_trace_lock_acquire+0x510/0x510
[ 2397.861957]  ? vfs_statx_fd+0x6d/0xd0
[ 2397.865764]  handle_mm_fault+0x306/0x7a0
[ 2397.869825]  __do_page_fault+0x578/0xb50
[ 2397.873883]  ? spurious_fault+0x640/0x640
[ 2397.878024]  ? do_page_fault+0x60/0x4f2
[ 2397.882017]  ? page_fault+0x2f/0x50
[ 2397.885636]  page_fault+0x45/0x50
[ 2397.889081] RIP: 74a678:0x74a678
[ 2397.892434] RSP: 74a620:0000000000008041 EFLAGS: 00000008
[ 2399.553041] Mem-Info:
[ 2399.649170] active_anon:1217850 inactive_anon:28162 isolated_anon:0
[ 2399.649170]  active_file:41 inactive_file:0 isolated_file:0
[ 2399.649170]  unevictable:0 dirty:0 writeback:0 unstable:0
[ 2399.649170]  slab_reclaimable:24882 slab_unreclaimable:146284
[ 2399.649170]  mapped:64491 shmem:38846 pagetables:60606 bounce:0
[ 2399.649170]  free:23136 free_pcp:6 free_cma:0
[ 2399.992975] Node 0 active_anon:1731160kB inactive_anon:66476kB active_file:8kB inactive_file:12kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:240276kB dirty:0kB writeback:0kB shmem:82512kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 954368kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2400.289400] Node 1 active_anon:3140240kB inactive_anon:46172kB active_file:56kB inactive_file:56kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:17688kB dirty:0kB writeback:0kB shmem:72872kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2400.609526] Node 0 DMA free:10356kB min:220kB low:272kB high:324kB active_anon:4724kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2400.862874] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2400.867952] Node 0 DMA32 free:28804kB min:36272kB low:45340kB high:54408kB active_anon:1726436kB inactive_anon:66476kB active_file:8kB inactive_file:12kB unevictable:0kB writepending:0kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:12864kB pagetables:72080kB bounce:0kB free_pcp:28kB local_pcp:8kB free_cma:0kB
[ 2401.199340] lowmem_reserve[]: 0 0 0 0 0
[ 2401.203412] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2401.529320] lowmem_reserve[]: 0 0 0 0 0
[ 2401.533395] Node 1 Normal free:53384kB min:53612kB low:67012kB high:80412kB active_anon:3140240kB inactive_anon:46172kB active_file:56kB inactive_file:56kB unevictable:0kB writepending:0kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:55712kB pagetables:170308kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2401.842822] lowmem_reserve[]: 0 0 0 0 0
[ 2401.846852] Node 0 DMA: 3*4kB (UME) 19*8kB (UME) 3*16kB (UE) 6*32kB (U) 4*64kB (UE) 2*128kB (ME) 3*256kB (UME) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10388kB
[ 2402.049278] Node 0 DMA32: 347*4kB (UME) 1847*8kB (UME) 424*16kB (UME) 111*32kB (UME) 18*64kB (UME) 3*128kB (UE) 3*256kB (ME) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 28804kB
[ 2402.199292] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2402.199343] Node 1 Normal: 1302*4kB (UMH) 38*8kB (UM) 400*16kB (UM) 902*32kB (UMEH) 127*64kB (UM) 19*128kB (UME) 4*256kB (UM) 2*512kB (UH) 0*1024kB 0*2048kB 0*4096kB = 53384kB
[ 2402.486917] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2402.558018] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2402.662959] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2402.749244] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2402.757875] 38879 total pagecache pages
[ 2402.899236] 0 pages in swap cache
[ 2402.902738] Swap cache stats: add 0, delete 0, find 0/0
[ 2402.908099] Free swap  = 0kB
[ 2403.003260] Total swap = 0kB
[ 2403.006309] 1965979 pages RAM
[ 2403.082721] 0 pages HighMem/MovableOnly
[ 2403.086716] 339077 pages reserved
[ 2403.169234] 0 pages cma reserved
[ 2403.172666] Out of memory: Kill process 30656 (syz-executor.5) score 1007 or sacrifice child
[ 2403.286332] Killed process 30656 (syz-executor.5) total-vm:93676kB, anon-rss:16572kB, file-rss:34816kB, shmem-rss:0kB
07:45:21 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2404.340031] audit: type=1326 audit(1599896721.867:135196): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32166 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:45:21 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x0, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:45:21 executing program 2:

07:45:22 executing program 0:
prlimit64(0x0, 0xe, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:45:22 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:45:22 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x0, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:45:23 executing program 2:

[ 2405.817959] audit: type=1326 audit(1599896723.337:135197): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32183 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2405.854506] audit: type=1326 audit(1599896723.347:135198): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32184 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2408.005529] audit: type=1326 audit(1599896725.527:135199): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32186 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:45:27 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:45:28 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x0, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:45:28 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x0, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:45:28 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:45:28 executing program 0:
prlimit64(0x0, 0xe, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

[ 2414.175858] audit: type=1326 audit(1599896731.697:135200): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32206 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2415.848721] audit: type=1326 audit(1599896733.377:135201): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32209 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2416.622223] audit: type=1326 audit(1599896734.147:135202): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32210 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:45:34 executing program 2:
syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0xffffffffffffffff, 0x50942)

[ 2418.271265] audit: type=1326 audit(1599896735.797:135203): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32213 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2418.679382] syz-executor.5 invoked oom-killer: gfp_mask=0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null),  order=1, oom_score_adj=0
[ 2418.738227] syz-executor.5 cpuset=/ mems_allowed=0-1
[ 2418.743390] CPU: 0 PID: 6374 Comm: syz-executor.5 Not tainted 4.14.197-syzkaller #0
[ 2418.751176] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2418.760519] Call Trace:
[ 2418.763107]  dump_stack+0x1b2/0x283
[ 2418.766731]  dump_header+0x178/0x82f
[ 2418.770442]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2418.775541]  ? ___ratelimit+0x2cd/0x522
[ 2418.779512]  oom_kill_process.cold+0x10/0xa69
[ 2418.784006]  ? lock_downgrade+0x740/0x740
[ 2418.788153]  out_of_memory+0x2dc/0x1190
[ 2418.792128]  ? oom_killer_disable+0x1c0/0x1c0
[ 2418.796620]  ? mutex_trylock+0x152/0x1a0
[ 2418.800681]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2418.805554]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2418.810500]  ? check_preemption_disabled+0x35/0x240
[ 2418.815520]  ? cache_grow_begin+0x3f/0x420
[ 2418.819749]  cache_grow_begin+0x8f/0x420
[ 2418.823801]  ? mempolicy_slab_node+0x100/0x320
[ 2418.828376]  fallback_alloc+0x207/0x2c0
[ 2418.832345]  kmem_cache_alloc+0x1e5/0x3c0
[ 2418.836490]  getname_flags+0xc8/0x550
[ 2418.840284]  ? SyS_unlinkat+0x70/0x70
[ 2418.844082]  do_unlinkat+0x9e/0x5c0
[ 2418.847703]  ? do_rmdir+0x3c0/0x3c0
[ 2418.851328]  ? __do_page_fault+0x19a/0xb50
[ 2418.855557]  ? do_syscall_64+0x4c/0x640
[ 2418.859525]  ? SyS_unlinkat+0x70/0x70
[ 2418.863321]  do_syscall_64+0x1d5/0x640
[ 2418.867207]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2418.872387] RIP: 0033:0x45d307
[ 2418.875566] RSP: 002b:00007ffd00e1cd58 EFLAGS: 00000246 ORIG_RAX: 0000000000000057
[ 2418.883266] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 000000000045d307
[ 2418.890527] RDX: 00007ffd00e1cd70 RSI: 00007ffd00e1cd70 RDI: 00007ffd00e1ce00
[ 2418.897787] RBP: 000000000000192f R08: 0000000000000000 R09: 000000000000000d
[ 2418.905047] R10: 0000000000000006 R11: 0000000000000246 R12: 00007ffd00e1de90
[ 2418.912306] R13: 00000000033ffa60 R14: 0000000000000000 R15: 00007ffd00e1de90
[ 2418.926074] Mem-Info:
[ 2418.963151] active_anon:1218686 inactive_anon:28161 isolated_anon:0
[ 2418.963151]  active_file:945 inactive_file:712 isolated_file:0
[ 2418.963151]  unevictable:0 dirty:547 writeback:0 unstable:0
[ 2418.963151]  slab_reclaimable:24788 slab_unreclaimable:145877
[ 2418.963151]  mapped:65493 shmem:38846 pagetables:60505 bounce:0
[ 2418.963151]  free:21158 free_pcp:9 free_cma:0
[ 2419.082772] Node 0 active_anon:1733180kB inactive_anon:66476kB active_file:36kB inactive_file:128kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:240368kB dirty:28kB writeback:40kB shmem:82512kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 954368kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2419.165307] Node 1 active_anon:3141664kB inactive_anon:46168kB active_file:3200kB inactive_file:2648kB unevictable:0kB isolated(anon):0kB isolated(file):256kB mapped:21504kB dirty:2220kB writeback:8kB shmem:72872kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2419.234012] Node 0 DMA free:10388kB min:220kB low:272kB high:324kB active_anon:4724kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2419.400519] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2419.421700] Node 0 DMA32 free:27776kB min:36272kB low:45340kB high:54408kB active_anon:1728456kB inactive_anon:66476kB active_file:36kB inactive_file:128kB unevictable:0kB writepending:68kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:12864kB pagetables:71988kB bounce:0kB free_pcp:24kB local_pcp:24kB free_cma:0kB
[ 2419.532357] lowmem_reserve[]: 0 0 0 0 0
[ 2419.543336] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2419.636595] lowmem_reserve[]: 0 0 0 0 0
[ 2419.654527] Node 1 Normal free:50960kB min:53612kB low:67012kB high:80412kB active_anon:3141664kB inactive_anon:46168kB active_file:2220kB inactive_file:1976kB unevictable:0kB writepending:2228kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:55584kB pagetables:170000kB bounce:0kB free_pcp:124kB local_pcp:108kB free_cma:0kB
[ 2419.782382] lowmem_reserve[]: 0 0 0 0 0
[ 2419.786401] Node 0 DMA: 3*4kB (UME) 19*8kB (UME) 3*16kB (UE) 6*32kB (U) 4*64kB (UE) 2*128kB (ME) 3*256kB (UME) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10388kB
[ 2419.841199] Node 0 DMA32: 321*4kB (UME) 1811*8kB (UME) 350*16kB (UE) 107*32kB (UME) 27*64kB (ME) 3*128kB (UE) 2*256kB (ME) 1*512kB (E) 0*1024kB 0*2048kB 0*4096kB = 27932kB
[ 2419.918157] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2419.948131] Node 1 Normal: 1207*4kB (UMEH) 29*8kB (UME) 52*16kB (UEH) 986*32kB (UMEH) 154*64kB (UMEH) 18*128kB (MH) 5*256kB (MEH) 1*512kB (E) 0*1024kB 0*2048kB 0*4096kB = 51396kB
[ 2420.024153] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2420.047683] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2420.065813] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2420.092415] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2420.120699] 39555 total pagecache pages
[ 2420.141851] 0 pages in swap cache
[ 2420.155602] Swap cache stats: add 0, delete 0, find 0/0
[ 2420.175809] Free swap  = 0kB
[ 2420.190576] Total swap = 0kB
[ 2420.205737] 1965979 pages RAM
[ 2420.248107] 0 pages HighMem/MovableOnly
[ 2420.255665] 339077 pages reserved
[ 2420.274096] 0 pages cma reserved
[ 2420.307882] Out of memory: Kill process 16449 (syz-executor.3) score 1007 or sacrifice child
[ 2420.357188] Killed process 16449 (syz-executor.3) total-vm:93808kB, anon-rss:16572kB, file-rss:34816kB, shmem-rss:0kB
[ 2420.516542] oom_reaper: reaped process 16449 (syz-executor.3), now anon-rss:0kB, file-rss:0kB, shmem-rss:0kB
[ 2420.768578] systemd-udevd invoked oom-killer: gfp_mask=0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null),  order=1, oom_score_adj=0
[ 2420.791821] systemd-udevd cpuset=/ mems_allowed=0-1
[ 2420.796947] CPU: 1 PID: 32187 Comm: systemd-udevd Not tainted 4.14.197-syzkaller #0
[ 2420.804738] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2420.814111] Call Trace:
[ 2420.816719]  dump_stack+0x1b2/0x283
[ 2420.820349]  dump_header+0x178/0x82f
[ 2420.824061]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2420.829162]  ? ___ratelimit+0x2cd/0x522
[ 2420.833158]  oom_kill_process.cold+0x10/0xa69
[ 2420.837670]  ? lock_downgrade+0x740/0x740
[ 2420.841819]  out_of_memory+0x2dc/0x1190
[ 2420.845801]  ? oom_killer_disable+0x1c0/0x1c0
[ 2420.850295]  ? mutex_trylock+0x152/0x1a0
[ 2420.854373]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2420.859223]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2420.864066]  ? check_preemption_disabled+0x35/0x240
[ 2420.869111]  ? cache_grow_begin+0x3f/0x420
[ 2420.873358]  cache_grow_begin+0x8f/0x420
[ 2420.877433]  ? mempolicy_slab_node+0x100/0x320
[ 2420.882018]  fallback_alloc+0x207/0x2c0
[ 2420.885996]  kmem_cache_alloc+0x1e5/0x3c0
[ 2420.890144]  getname_flags+0xc8/0x550
[ 2420.893972]  do_sys_open+0x1ce/0x410
[ 2420.897680]  ? filp_open+0x60/0x60
[ 2420.901218]  ? do_syscall_64+0x4c/0x640
[ 2420.905190]  ? do_sys_open+0x410/0x410
[ 2420.909070]  do_syscall_64+0x1d5/0x640
[ 2420.912964]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2420.918144] RIP: 0033:0x7f5e751396f0
[ 2420.921847] RSP: 002b:00007fff9061bae8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[ 2420.929548] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f5e751396f0
[ 2420.936811] RDX: 0000000000000180 RSI: 00000000000800c2 RDI: 000056284dccf250
[ 2420.944071] RBP: 000000000003a2f8 R08: 000000000000feff R09: 0000000000000030
[ 2420.951353] R10: 0000000000000000 R11: 0000000000000246 R12: 000056284dccf265
[ 2420.958615] R13: 8421084210842109 R14: 00000000000800c2 R15: 00007f5e751c7540
[ 2420.994980] Mem-Info:
[ 2420.997434] active_anon:1214586 inactive_anon:28161 isolated_anon:0
[ 2420.997434]  active_file:47 inactive_file:28 isolated_file:27
[ 2420.997434]  unevictable:0 dirty:3 writeback:25 unstable:0
[ 2420.997434]  slab_reclaimable:24802 slab_unreclaimable:145532
[ 2420.997434]  mapped:64531 shmem:38846 pagetables:60506 bounce:0
[ 2420.997434]  free:27314 free_pcp:74 free_cma:0
[ 2421.143013] Node 0 active_anon:1716636kB inactive_anon:66476kB active_file:40kB inactive_file:108kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:240384kB dirty:12kB writeback:0kB shmem:82512kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 937984kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2421.291291] Node 1 active_anon:3141664kB inactive_anon:46168kB active_file:112kB inactive_file:12kB unevictable:0kB isolated(anon):0kB isolated(file):64kB mapped:17760kB dirty:12kB writeback:4kB shmem:72872kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2421.390627] Node 0 DMA free:10356kB min:220kB low:272kB high:324kB active_anon:4724kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2421.426320] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2421.431441] Node 0 DMA32 free:43472kB min:36272kB low:45340kB high:54408kB active_anon:1711912kB inactive_anon:66476kB active_file:464kB inactive_file:272kB unevictable:0kB writepending:12kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:12832kB pagetables:71852kB bounce:0kB free_pcp:176kB local_pcp:44kB free_cma:0kB
[ 2421.474407] lowmem_reserve[]: 0 0 0 0 0
[ 2421.488087] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2421.558029] lowmem_reserve[]: 0 0 0 0 0
[ 2421.562065] Node 1 Normal free:54868kB min:53612kB low:67012kB high:80412kB active_anon:3141664kB inactive_anon:46168kB active_file:20kB inactive_file:24kB unevictable:0kB writepending:16kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:55584kB pagetables:170000kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2421.658090] lowmem_reserve[]: 0 0 0 0 0
[ 2421.662122] Node 0 DMA: 3*4kB (UME) 19*8kB (UME) 3*16kB (UE) 5*32kB (U) 4*64kB (UE) 2*128kB (ME) 3*256kB (UME) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10356kB
[ 2421.728200] Node 0 DMA32: 344*4kB (UME) 1859*8kB (UME) 374*16kB (UME) 33*32kB (UME) 26*64kB (ME) 3*128kB (UE) 2*256kB (ME) 1*512kB (E) 0*1024kB 6*2048kB (M) 1*4096kB (M) = 42744kB
[ 2421.779666] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2421.819670] Node 1 Normal: 1729*4kB (UMEH) 124*8kB (UME) 96*16kB (UMEH) 989*32kB (UMEH) 154*64kB (UMEH) 18*128kB (MH) 5*256kB (MEH) 1*512kB (E) 0*1024kB 0*2048kB 0*4096kB = 55044kB
[ 2421.900853] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2421.958022] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2421.966628] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2422.028007] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2422.036646] 39146 total pagecache pages
[ 2422.058016] 0 pages in swap cache
[ 2422.061502] Swap cache stats: add 0, delete 0, find 0/0
[ 2422.066854] Free swap  = 0kB
[ 2422.127149] Total swap = 0kB
[ 2422.138062] 1965979 pages RAM
[ 2422.141179] 0 pages HighMem/MovableOnly
[ 2422.145138] 339077 pages reserved
[ 2422.198117] 0 pages cma reserved
[ 2422.201512] Out of memory: Kill process 16604 (syz-executor.0) score 1007 or sacrifice child
[ 2422.268028] Killed process 16604 (syz-executor.0) total-vm:93808kB, anon-rss:16572kB, file-rss:34816kB, shmem-rss:0kB
07:45:39 executing program 1:
prlimit64(0x0, 0xe, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2424.733848] audit: type=1326 audit(1599896742.258:135204): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32227 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:45:41 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x0, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:45:41 executing program 0:
prlimit64(0x0, 0xe, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:45:41 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:45:41 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:45:41 executing program 2:
r0 = syz_open_dev$usbfs(&(0x7f0000000840)='/dev/bus/usb/00#/00#\x00', 0x907, 0x101001)
ioctl$USBDEVFS_SUBMITURB(r0, 0x80045503, 0x0)

07:45:43 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x0, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

[ 2429.808731] kworker/dying (51) used greatest stack depth: 23144 bytes left
07:45:51 executing program 1:
prlimit64(0x0, 0xe, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2436.454338] systemd-journal invoked oom-killer: gfp_mask=0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null),  order=1, oom_score_adj=0
[ 2436.521915] systemd-journal cpuset=/ mems_allowed=0-1
[ 2436.531540] CPU: 0 PID: 3649 Comm: systemd-journal Not tainted 4.14.197-syzkaller #0
[ 2436.539440] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2436.548789] Call Trace:
[ 2436.551380]  dump_stack+0x1b2/0x283
[ 2436.555007]  dump_header+0x178/0x82f
[ 2436.558724]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2436.563828]  ? ___ratelimit+0x2cd/0x522
[ 2436.567810]  oom_kill_process.cold+0x10/0xa69
[ 2436.572353]  ? lock_downgrade+0x740/0x740
[ 2436.576510]  out_of_memory+0x2dc/0x1190
[ 2436.580494]  ? oom_killer_disable+0x1c0/0x1c0
[ 2436.584989]  ? mutex_trylock+0x152/0x1a0
[ 2436.589057]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2436.593921]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2436.598765]  ? check_preemption_disabled+0x35/0x240
[ 2436.603785]  ? cache_grow_begin+0x3f/0x420
[ 2436.608039]  cache_grow_begin+0x8f/0x420
[ 2436.612097]  ? mempolicy_slab_node+0x100/0x320
[ 2436.616784]  fallback_alloc+0x207/0x2c0
[ 2436.620856]  kmem_cache_alloc+0x1e5/0x3c0
[ 2436.625012]  getname_flags+0xc8/0x550
[ 2436.628904]  do_sys_open+0x1ce/0x410
[ 2436.632889]  ? filp_open+0x60/0x60
[ 2436.636471]  ? do_syscall_64+0x4c/0x640
[ 2436.640539]  ? do_sys_open+0x410/0x410
[ 2436.644442]  do_syscall_64+0x1d5/0x640
[ 2436.648330]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2436.653512] RIP: 0033:0x7f073e29685d
[ 2436.657219] RSP: 002b:00007ffed36540f0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002
[ 2436.664925] RAX: ffffffffffffffda RBX: 00007ffed3654400 RCX: 00007f073e29685d
[ 2436.672202] RDX: 00000000000001a0 RSI: 0000000000080042 RDI: 0000563a084bffc0
[ 2436.679641] RBP: 000000000000000d R08: 000000000000ffc0 R09: 00000000ffffffff
[ 2436.686909] R10: 0000000000000069 R11: 0000000000000293 R12: 00000000ffffffff
[ 2436.694177] R13: 0000563a084bc060 R14: 00007ffed36543c0 R15: 0000563a084ca3d0
[ 2436.950511] Mem-Info:
[ 2436.952962] active_anon:1210481 inactive_anon:28162 isolated_anon:0
[ 2436.952962]  active_file:230 inactive_file:505 isolated_file:64
[ 2436.952962]  unevictable:0 dirty:0 writeback:0 unstable:0
[ 2436.952962]  slab_reclaimable:24882 slab_unreclaimable:145689
[ 2436.952962]  mapped:65206 shmem:38846 pagetables:60465 bounce:0
[ 2436.952962]  free:30282 free_pcp:330 free_cma:0
[ 2437.027059] Node 0 active_anon:1700412kB inactive_anon:66488kB active_file:744kB inactive_file:1888kB unevictable:0kB isolated(anon):0kB isolated(file):236kB mapped:242368kB dirty:20kB writeback:0kB shmem:82524kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 921600kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2437.103802] Node 1 active_anon:3141512kB inactive_anon:46164kB active_file:4kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:17728kB dirty:0kB writeback:0kB shmem:72864kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2437.139092] Node 0 DMA free:10420kB min:220kB low:272kB high:324kB active_anon:4724kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2437.166349] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2437.173350] Node 0 DMA32 free:57992kB min:36272kB low:45340kB high:54408kB active_anon:1695688kB inactive_anon:66488kB active_file:512kB inactive_file:952kB unevictable:0kB writepending:8kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:12800kB pagetables:71920kB bounce:0kB free_pcp:252kB local_pcp:220kB free_cma:0kB
[ 2437.311876] lowmem_reserve[]: 0 0 0 0 0
[ 2437.315903] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2437.491408] lowmem_reserve[]: 0 0 0 0 0
[ 2437.495441] Node 1 Normal free:55616kB min:53612kB low:67012kB high:80412kB active_anon:3141512kB inactive_anon:46164kB active_file:4kB inactive_file:0kB unevictable:0kB writepending:0kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:55584kB pagetables:169904kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2437.617034] lowmem_reserve[]: 0 0 0 0 0
[ 2437.621092] Node 0 DMA: 3*4kB (UME) 19*8kB (UME) 3*16kB (UE) 7*32kB (U) 4*64kB (UE) 2*128kB (ME) 3*256kB (UME) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10420kB
[ 2437.679454] Node 0 DMA32: 184*4kB (UME) 1758*8kB (UME) 339*16kB (UME) 82*32kB (UME) 31*64kB (ME) 11*128kB (UME) 6*256kB (ME) 3*512kB (ME) 2*1024kB (M) 9*2048kB (M) 2*4096kB (M) = 57984kB
[ 2437.739440] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2437.762825] Node 1 Normal: 1848*4kB (UMEH) 108*8kB (UME) 62*16kB (UMEH) 989*32kB (UMEH) 164*64kB (UMEH) 19*128kB (UMH) 5*256kB (MEH) 1*512kB (E) 0*1024kB 0*2048kB 0*4096kB = 55616kB
[ 2437.779385] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2437.789167] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2437.801507] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2437.824414] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2437.834470] 39002 total pagecache pages
[ 2437.841771] 0 pages in swap cache
[ 2437.845344] Swap cache stats: add 0, delete 0, find 0/0
[ 2437.856814] Free swap  = 0kB
[ 2437.864372] Total swap = 0kB
[ 2437.870254] 1965979 pages RAM
[ 2437.873925] 0 pages HighMem/MovableOnly
[ 2437.892776] 339077 pages reserved
[ 2437.896406] 0 pages cma reserved
[ 2437.903534] Out of memory: Kill process 16677 (syz-executor.0) score 1007 or sacrifice child
[ 2437.914247] Killed process 16677 (syz-executor.0) total-vm:93808kB, anon-rss:16572kB, file-rss:34816kB, shmem-rss:0kB
[ 2438.185880] audit: type=1326 audit(1599896755.709:135205): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32236 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2438.312713] audit: type=1326 audit(1599896755.749:135206): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32240 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2438.532912] audit: type=1326 audit(1599896755.779:135207): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32237 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:45:56 executing program 1:
prlimit64(0x0, 0xe, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:45:56 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x0, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:45:56 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x0, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:45:56 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2439.441383] audit: type=1326 audit(1599896756.969:135208): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32259 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2439.467183] audit: type=1326 audit(1599896756.999:135209): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32258 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2439.492185] audit: type=1326 audit(1599896757.019:135210): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32260 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2439.524180] audit: type=1326 audit(1599896757.019:135211): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32261 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2440.032894] systemd-udevd invoked oom-killer: gfp_mask=0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null),  order=1, oom_score_adj=0
[ 2440.171491] systemd-udevd cpuset=/ mems_allowed=0-1
[ 2440.176611] CPU: 1 PID: 32247 Comm: systemd-udevd Not tainted 4.14.197-syzkaller #0
[ 2440.184489] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2440.193835] Call Trace:
[ 2440.196416]  dump_stack+0x1b2/0x283
[ 2440.200121]  dump_header+0x178/0x82f
[ 2440.203826]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2440.208916]  ? ___ratelimit+0x2cd/0x522
[ 2440.212881]  oom_kill_process.cold+0x10/0xa69
[ 2440.217726]  ? lock_downgrade+0x740/0x740
[ 2440.221867]  out_of_memory+0x2dc/0x1190
[ 2440.225841]  ? oom_killer_disable+0x1c0/0x1c0
[ 2440.230335]  ? mutex_trylock+0x152/0x1a0
[ 2440.234402]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2440.239259]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2440.244104]  ? check_preemption_disabled+0x35/0x240
[ 2440.249143]  ? cache_grow_begin+0x3f/0x420
[ 2440.253380]  cache_grow_begin+0x8f/0x420
[ 2440.257425]  ? mempolicy_slab_node+0x100/0x320
[ 2440.262014]  fallback_alloc+0x207/0x2c0
[ 2440.265981]  kmem_cache_alloc+0x1e5/0x3c0
[ 2440.270120]  getname_flags+0xc8/0x550
[ 2440.273930]  user_path_at_empty+0x2a/0x50
[ 2440.278102]  do_utimes+0x149/0x250
[ 2440.281648]  ? utimes_common+0x500/0x500
[ 2440.285699]  ? syscall_trace_enter+0x486/0xc20
[ 2440.290287]  SyS_utimensat+0xbf/0x120
[ 2440.294080]  ? SyS_utime+0x120/0x120
[ 2440.297792]  ? do_syscall_64+0x4c/0x640
[ 2440.301771]  ? SyS_utime+0x120/0x120
[ 2440.305484]  do_syscall_64+0x1d5/0x640
[ 2440.309379]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2440.314573] RIP: 0033:0x7f5e7513dc42
[ 2440.318282] RSP: 002b:00007fff9061b3d8 EFLAGS: 00000202 ORIG_RAX: 0000000000000118
[ 2440.325979] RAX: ffffffffffffffda RBX: 00007fff9061be70 RCX: 00007f5e7513dc42
[ 2440.333234] RDX: 0000000000000000 RSI: 00007fff9061be70 RDI: ffffffffffffff9c
[ 2440.340515] RBP: 0000000000000000 R08: 000056284dcbdd90 R09: 0000000000000000
[ 2440.347773] R10: 0000000000000100 R11: 0000000000000202 R12: 00007fff9061b490
[ 2440.355029] R13: 000056284dccaf00 R14: 00007fff9061b890 R15: 00007fff9061be7f
[ 2441.106850] Mem-Info:
[ 2441.109312] active_anon:1213830 inactive_anon:28161 isolated_anon:0
[ 2441.109312]  active_file:845 inactive_file:858 isolated_file:124
[ 2441.109312]  unevictable:0 dirty:264 writeback:513 unstable:0
[ 2441.109312]  slab_reclaimable:24674 slab_unreclaimable:146485
[ 2441.109312]  mapped:65449 shmem:38846 pagetables:60630 bounce:0
[ 2441.109312]  free:24991 free_pcp:284 free_cma:0
[ 2441.275655] Node 0 active_anon:1712248kB inactive_anon:66484kB active_file:3112kB inactive_file:3016kB unevictable:0kB isolated(anon):0kB isolated(file):496kB mapped:243580kB dirty:1052kB writeback:2052kB shmem:82520kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 923648kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2441.394250] Node 1 active_anon:3143072kB inactive_anon:46160kB active_file:12kB inactive_file:12kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:17816kB dirty:4kB writeback:0kB shmem:72864kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2441.493432] Node 0 DMA free:10388kB min:220kB low:272kB high:324kB active_anon:4724kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2441.582528] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2441.599367] Node 0 DMA32 free:36892kB min:36272kB low:45340kB high:54408kB active_anon:1707524kB inactive_anon:66484kB active_file:2412kB inactive_file:3172kB unevictable:0kB writepending:3104kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:12800kB pagetables:72580kB bounce:0kB free_pcp:1340kB local_pcp:720kB free_cma:0kB
[ 2441.723916] lowmem_reserve[]: 0 0 0 0 0
[ 2441.745932] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2441.852197] lowmem_reserve[]: 0 0 0 0 0
[ 2441.870120] Node 1 Normal free:53692kB min:53612kB low:67012kB high:80412kB active_anon:3143072kB inactive_anon:46160kB active_file:12kB inactive_file:12kB unevictable:0kB writepending:4kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:56096kB pagetables:169904kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2441.986757] lowmem_reserve[]: 0 0 0 0 0
[ 2441.998915] Node 0 DMA: 3*4kB (UME) 19*8kB (UME) 3*16kB (UE) 6*32kB (U) 4*64kB (UE) 2*128kB (ME) 3*256kB (UME) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10388kB
[ 2442.031852] Node 0 DMA32: 168*4kB (UME) 1215*8kB (UME) 374*16kB (UME) 13*32kB (UME) 5*64kB (UME) 2*128kB (E) 2*256kB (ME) 2*512kB (ME) 0*1024kB 3*2048kB (M) 3*4096kB (M) = 37336kB
[ 2442.072783] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2442.121220] Node 1 Normal: 1473*4kB (UMEH) 106*8kB (UME) 51*16kB (UMEH) 971*32kB (UMEH) 167*64kB (UMEH) 19*128kB (UMH) 5*256kB (MEH) 1*512kB (E) 0*1024kB 0*2048kB 0*4096kB = 53540kB
[ 2442.258442] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2442.331995] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2442.380457] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2442.415238] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2442.463071] 39233 total pagecache pages
[ 2442.490254] 0 pages in swap cache
[ 2442.504344] Swap cache stats: add 0, delete 0, find 0/0
[ 2442.526110] Free swap  = 0kB
[ 2442.535906] Total swap = 0kB
[ 2442.550007] 1965979 pages RAM
[ 2442.555805] 0 pages HighMem/MovableOnly
[ 2442.563539] 339077 pages reserved
[ 2442.568952] 0 pages cma reserved
[ 2442.572321] Out of memory: Kill process 32261 (syz-executor.4) score 1007 or sacrifice child
[ 2442.700730] oom_reaper: reaped process 32258 (syz-executor.3), now anon-rss:0kB, file-rss:4kB, shmem-rss:0kB
[ 2442.796407] systemd-journal invoked oom-killer: gfp_mask=0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null),  order=1, oom_score_adj=0
[ 2442.871313] systemd-journal cpuset=/ mems_allowed=0-1
[ 2442.876547] CPU: 0 PID: 3649 Comm: systemd-journal Not tainted 4.14.197-syzkaller #0
[ 2442.884418] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2442.893782] Call Trace:
[ 2442.896370]  dump_stack+0x1b2/0x283
[ 2442.899996]  dump_header+0x178/0x82f
[ 2442.903709]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2442.908809]  ? ___ratelimit+0x2cd/0x522
[ 2442.912807]  oom_kill_process.cold+0x10/0xa69
[ 2442.917310]  ? lock_downgrade+0x740/0x740
[ 2442.921457]  out_of_memory+0x2dc/0x1190
[ 2442.925430]  ? oom_killer_disable+0x1c0/0x1c0
[ 2442.929924]  ? mutex_trylock+0x152/0x1a0
[ 2442.933985]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2442.938841]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2442.943681]  ? check_preemption_disabled+0x35/0x240
[ 2442.948792]  ? cache_grow_begin+0x3f/0x420
[ 2442.953050]  cache_grow_begin+0x8f/0x420
[ 2442.957105]  ? mempolicy_slab_node+0x100/0x320
[ 2442.961681]  fallback_alloc+0x207/0x2c0
[ 2442.965653]  kmem_cache_alloc+0x1e5/0x3c0
[ 2442.969818]  getname_flags+0xc8/0x550
[ 2442.973623]  user_path_at_empty+0x2a/0x50
[ 2442.977792]  SyS_faccessat+0x21b/0x680
[ 2442.981676]  ? SyS_fallocate+0x80/0x80
[ 2442.985561]  ? do_syscall_64+0x4c/0x640
[ 2442.989526]  ? SyS_faccessat+0x680/0x680
[ 2442.993579]  do_syscall_64+0x1d5/0x640
[ 2442.997488]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2443.002670] RIP: 0033:0x7f073dfc29c7
[ 2443.006372] RSP: 002b:00007ffed3654488 EFLAGS: 00000246 ORIG_RAX: 0000000000000015
[ 2443.014077] RAX: ffffffffffffffda RBX: 00007ffed36574b0 RCX: 00007f073dfc29c7
[ 2443.021360] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000563a07e7c9a3
[ 2443.028625] RBP: 00007ffed36545d0 R08: 0000563a07e723e5 R09: 0000000000000018
[ 2443.035888] R10: 0000000000000069 R11: 0000000000000246 R12: 0000000000000000
[ 2443.043148] R13: 0000000000000000 R14: 0000563a084bf8c0 R15: 00007ffed3654ac0
[ 2443.355761] Mem-Info:
[ 2443.358257] active_anon:1213747 inactive_anon:28161 isolated_anon:0
[ 2443.358257]  active_file:35 inactive_file:52 isolated_file:24
[ 2443.358257]  unevictable:0 dirty:4 writeback:0 unstable:0
[ 2443.358257]  slab_reclaimable:24673 slab_unreclaimable:146465
[ 2443.358257]  mapped:64588 shmem:38846 pagetables:60603 bounce:0
[ 2443.358257]  free:27105 free_pcp:57 free_cma:0
[ 2443.433076] Node 0 active_anon:1712604kB inactive_anon:66484kB active_file:112kB inactive_file:76kB unevictable:0kB isolated(anon):0kB isolated(file):96kB mapped:240556kB dirty:8kB writeback:0kB shmem:82520kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 923648kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2443.471522] Node 1 active_anon:3142384kB inactive_anon:46160kB active_file:28kB inactive_file:32kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:17796kB dirty:8kB writeback:0kB shmem:72864kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2443.509463] Node 0 DMA free:10388kB min:220kB low:272kB high:324kB active_anon:4724kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2443.541295] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2443.546364] Node 0 DMA32 free:42400kB min:36272kB low:45340kB high:54408kB active_anon:1707880kB inactive_anon:66484kB active_file:420kB inactive_file:816kB unevictable:0kB writepending:8kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:12800kB pagetables:72472kB bounce:0kB free_pcp:468kB local_pcp:4kB free_cma:0kB
[ 2443.583027] lowmem_reserve[]: 0 0 0 0 0
[ 2443.587395] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2443.618187] lowmem_reserve[]: 0 0 0 0 0
[ 2443.622198] Node 1 Normal free:55592kB min:53612kB low:67012kB high:80412kB active_anon:3142384kB inactive_anon:46160kB active_file:28kB inactive_file:32kB unevictable:0kB writepending:4kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:55840kB pagetables:169904kB bounce:0kB free_pcp:20kB local_pcp:0kB free_cma:0kB
[ 2443.664744] lowmem_reserve[]: 0 0 0 0 0
[ 2443.672262] Node 0 DMA: 3*4kB (UME) 19*8kB (UME) 3*16kB (UE) 6*32kB (U) 4*64kB (UE) 2*128kB (ME) 3*256kB (UME) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10388kB
[ 2443.755543] Node 0 DMA32: 272*4kB (UME) 1281*8kB (UME) 424*16kB (UME) 33*32kB (UME) 20*64kB (UME) 3*128kB (ME) 2*256kB (ME) 2*512kB (ME) 0*1024kB 3*2048kB (M) 3*4096kB (M) = 40808kB
[ 2443.808663] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2443.823615] Node 1 Normal: 1771*4kB (UMEH) 189*8kB (UME) 52*16kB (UMEH) 979*32kB (UMEH) 167*64kB (UMEH) 19*128kB (UMH) 5*256kB (MEH) 1*512kB (E) 0*1024kB 0*2048kB 0*4096kB = 55668kB
[ 2443.845039] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2443.854000] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2443.946828] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2443.955698] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2444.046673] 39157 total pagecache pages
[ 2444.050735] 0 pages in swap cache
[ 2444.054181] Swap cache stats: add 0, delete 0, find 0/0
[ 2444.111835] Free swap  = 0kB
[ 2444.114881] Total swap = 0kB
[ 2444.136653] 1965979 pages RAM
[ 2444.146694] 0 pages HighMem/MovableOnly
[ 2444.150690] 339077 pages reserved
[ 2444.154160] 0 pages cma reserved
[ 2444.192926] Out of memory: Kill process 32279 (syz-executor.4) score 1007 or sacrifice child
[ 2444.201722] Killed process 32279 (syz-executor.4) total-vm:93676kB, anon-rss:16560kB, file-rss:34816kB, shmem-rss:0kB
[ 2444.283262] oom_reaper: reaped process 32279 (syz-executor.4), now anon-rss:0kB, file-rss:0kB, shmem-rss:0kB
07:46:03 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x0, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:46:03 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x0, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:46:04 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x0, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:46:04 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2446.540151] audit: type=1326 audit(1599896764.069:135212): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32289 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:46:04 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2446.615184] audit: type=1326 audit(1599896764.139:135213): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32292 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:46:04 executing program 2:
setresuid(0x0, 0xee00, 0x0)
r0 = socket(0x28, 0x1, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000080)={'ip6_vti0\x00', 0x0})

[ 2447.036533] audit: type=1326 audit(1599896764.559:135214): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32295 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:46:04 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x0, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:46:06 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x0, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:46:06 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2449.249647] audit: type=1326 audit(1599896766.779:135215): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32300 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2449.390282] audit: type=1326 audit(1599896766.799:135216): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32305 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2449.681376] audit: type=1326 audit(1599896767.209:135217): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32314 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2449.806567] audit: type=1326 audit(1599896767.329:135218): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32317 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2450.972157] audit: type=1326 audit(1599896768.500:135219): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32332 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2451.603343] syz-executor.1 invoked oom-killer: gfp_mask=0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null),  order=1, oom_score_adj=0
[ 2451.675758] syz-executor.1 cpuset=/ mems_allowed=0-1
[ 2451.705964] CPU: 1 PID: 6375 Comm: syz-executor.1 Not tainted 4.14.197-syzkaller #0
[ 2451.714187] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2451.723648] Call Trace:
[ 2451.726255]  dump_stack+0x1b2/0x283
[ 2451.730009]  dump_header+0x178/0x82f
[ 2451.733743]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2451.738954]  ? ___ratelimit+0x2cd/0x522
[ 2451.742946]  oom_kill_process.cold+0x10/0xa69
[ 2451.747676]  ? lock_downgrade+0x740/0x740
[ 2451.752175]  out_of_memory+0x2dc/0x1190
[ 2451.756196]  ? oom_killer_disable+0x1c0/0x1c0
[ 2451.760979]  ? mutex_trylock+0x152/0x1a0
[ 2451.765285]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2451.770175]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2451.775028]  ? check_preemption_disabled+0x35/0x240
[ 2451.780149]  ? cache_grow_begin+0x3f/0x420
[ 2451.784636]  cache_grow_begin+0x8f/0x420
[ 2451.788790]  ? mempolicy_slab_node+0x100/0x320
[ 2451.793758]  fallback_alloc+0x207/0x2c0
[ 2451.797971]  kmem_cache_alloc+0x1e5/0x3c0
[ 2451.802218]  getname_flags+0xc8/0x550
[ 2451.806027]  user_path_mountpoint_at+0x23/0x40
[ 2451.810617]  SyS_umount+0x125/0xeb0
[ 2451.814253]  ? lock_downgrade+0x740/0x740
[ 2451.818505]  ? __detach_mounts+0x400/0x400
[ 2451.822903]  ? up_read+0x17/0x30
[ 2451.826673]  ? __do_page_fault+0x19a/0xb50
[ 2451.830945]  ? do_syscall_64+0x4c/0x640
[ 2451.835010]  ? __detach_mounts+0x400/0x400
[ 2451.839328]  do_syscall_64+0x1d5/0x640
[ 2451.843250]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2451.848444] RIP: 0033:0x45ffe7
[ 2451.851906] RSP: 002b:00007ffe02e56848 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 2451.860272] RAX: ffffffffffffffda RBX: 00000000002564a3 RCX: 000000000045ffe7
[ 2451.868106] RDX: 000000000000000c RSI: 0000000000000002 RDI: 00007ffe02e57980
[ 2451.876335] RBP: 0000000000001a72 R08: 0000000000000000 R09: 000000000226a940
[ 2451.883618] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe02e57980
[ 2451.891577] R13: 00007ffe02e57970 R14: 0000000000000000 R15: 00007ffe02e57980
[ 2452.526250] Mem-Info:
[ 2452.529759] active_anon:1217204 inactive_anon:28162 isolated_anon:0
[ 2452.529759]  active_file:445 inactive_file:468 isolated_file:25
[ 2452.529759]  unevictable:0 dirty:693 writeback:1 unstable:0
[ 2452.529759]  slab_reclaimable:24585 slab_unreclaimable:146255
[ 2452.529759]  mapped:64750 shmem:38846 pagetables:60637 bounce:0
[ 2452.529759]  free:23018 free_pcp:28 free_cma:0
[ 2452.655892] Node 0 active_anon:1722328kB inactive_anon:66488kB active_file:1196kB inactive_file:1104kB unevictable:0kB isolated(anon):0kB isolated(file):40kB mapped:240872kB dirty:1868kB writeback:4kB shmem:82524kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 931840kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2452.728700] Node 1 active_anon:3146488kB inactive_anon:46160kB active_file:448kB inactive_file:464kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:17928kB dirty:904kB writeback:0kB shmem:72860kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2452.801446] Node 0 DMA free:10356kB min:220kB low:272kB high:324kB active_anon:4724kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2452.944680] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2452.950551] Node 0 DMA32 free:30636kB min:36272kB low:45340kB high:54408kB active_anon:1717604kB inactive_anon:66488kB active_file:1096kB inactive_file:940kB unevictable:0kB writepending:1872kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:12800kB pagetables:72584kB bounce:0kB free_pcp:60kB local_pcp:0kB free_cma:0kB
[ 2453.256012] lowmem_reserve[]: 0 0 0 0 0
[ 2453.260301] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2453.506001] lowmem_reserve[]: 0 0 0 0 0
[ 2453.510253] Node 1 Normal free:52384kB min:53612kB low:67012kB high:80412kB active_anon:3146488kB inactive_anon:46160kB active_file:424kB inactive_file:412kB unevictable:0kB writepending:904kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:55776kB pagetables:169928kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2453.799732] lowmem_reserve[]: 0 0 0 0 0
[ 2453.803976] Node 0 DMA: 3*4kB (UME) 19*8kB (UME) 3*16kB (UE) 5*32kB (U) 4*64kB (UE) 2*128kB (ME) 3*256kB (UME) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10356kB
[ 2453.923932] Node 0 DMA32: 612*4kB (UME) 1141*8kB (UME) 348*16kB (UME) 131*32kB (UME) 34*64kB (ME) 8*128kB (ME) 6*256kB (ME) 2*512kB (ME) 0*1024kB 2*2048kB (UM) 0*4096kB = 31192kB
[ 2454.015523] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2454.060231] Node 1 Normal: 894*4kB (UMEH) 103*8kB (UME) 53*16kB (UMEH) 1006*32kB (UMEH) 167*64kB (UMEH) 19*128kB (UMH) 5*256kB (MEH) 1*512kB (E) 0*1024kB 0*2048kB 0*4096kB = 52352kB
[ 2454.081799] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2454.091130] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2454.135968] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2454.145168] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2454.255972] 39545 total pagecache pages
[ 2454.260437] 0 pages in swap cache
[ 2454.264261] Swap cache stats: add 0, delete 0, find 0/0
[ 2454.345578] Free swap  = 0kB
[ 2454.389394] Total swap = 0kB
[ 2454.392720] 1965979 pages RAM
[ 2454.435956] 0 pages HighMem/MovableOnly
[ 2454.440422] 339077 pages reserved
[ 2454.443978] 0 pages cma reserved
[ 2454.500161] Out of memory: Kill process 32332 (syz-executor.4) score 1007 or sacrifice child
[ 2454.615397] oom_reaper: reaped process 32313 (syz-executor.2), now anon-rss:0kB, file-rss:0kB, shmem-rss:0kB
[ 2454.827144] syz-fuzzer invoked oom-killer: gfp_mask=0x14201ca(GFP_HIGHUSER_MOVABLE|__GFP_COLD), nodemask=(null),  order=0, oom_score_adj=0
[ 2454.937715] syz-fuzzer cpuset=/ mems_allowed=0-1
[ 2454.944424] CPU: 1 PID: 6350 Comm: syz-fuzzer Not tainted 4.14.197-syzkaller #0
[ 2454.951892] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2454.961245] Call Trace:
[ 2454.963837]  dump_stack+0x1b2/0x283
[ 2454.967467]  dump_header+0x178/0x82f
[ 2454.971186]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2454.976291]  ? ___ratelimit+0x2cd/0x522
[ 2454.980295]  oom_kill_process.cold+0x10/0xa69
[ 2454.984799]  ? lock_downgrade+0x740/0x740
[ 2454.988953]  out_of_memory+0x2dc/0x1190
[ 2454.992931]  ? oom_killer_disable+0x1c0/0x1c0
[ 2454.997515]  ? mutex_trylock+0x152/0x1a0
[ 2455.001582]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2455.006442]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2455.011304]  alloc_pages_current+0x155/0x260
[ 2455.015711]  filemap_fault+0xe12/0x18d0
[ 2455.019700]  ext4_filemap_fault+0x84/0xb0
[ 2455.023869]  __do_fault+0xfa/0x380
[ 2455.027432]  __handle_mm_fault+0x2497/0x4620
[ 2455.031844]  ? vm_insert_page+0x7c0/0x7c0
[ 2455.035997]  ? perf_trace_lock_acquire+0x510/0x510
[ 2455.040928]  ? setup_sigcontext+0x820/0x820
[ 2455.045250]  ? __fsnotify_update_child_dentry_flags.part.0+0x2e0/0x2e0
[ 2455.051927]  handle_mm_fault+0x306/0x7a0
[ 2455.056094]  __do_page_fault+0x578/0xb50
[ 2455.060159]  ? spurious_fault+0x640/0x640
[ 2455.064304]  ? do_page_fault+0x60/0x4f2
[ 2455.068281]  ? page_fault+0x2f/0x50
[ 2455.071902]  page_fault+0x45/0x50
[ 2455.075347] RIP: 0000:0xade45a
[ 2455.078531] RSP: 782a7c:000000c000057928 EFLAGS: 000000f1
[ 2455.478447] Mem-Info:
[ 2455.515884] active_anon:1217195 inactive_anon:28162 isolated_anon:0
[ 2455.515884]  active_file:392 inactive_file:311 isolated_file:0
[ 2455.515884]  unevictable:0 dirty:667 writeback:0 unstable:0
[ 2455.515884]  slab_reclaimable:24585 slab_unreclaimable:146257
[ 2455.515884]  mapped:64521 shmem:38846 pagetables:60613 bounce:0
[ 2455.515884]  free:23519 free_pcp:0 free_cma:0
[ 2455.655896] Node 0 active_anon:1722292kB inactive_anon:66488kB active_file:904kB inactive_file:920kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:240288kB dirty:1764kB writeback:0kB shmem:82524kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 931840kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2455.839827] Node 1 active_anon:3146488kB inactive_anon:46160kB active_file:628kB inactive_file:408kB unevictable:0kB isolated(anon):0kB isolated(file):12kB mapped:17796kB dirty:904kB writeback:0kB shmem:72860kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2455.914047] Node 0 DMA free:10356kB min:220kB low:272kB high:324kB active_anon:4724kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2455.960471] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2455.965566] Node 0 DMA32 free:31336kB min:36272kB low:45340kB high:54408kB active_anon:1717568kB inactive_anon:66488kB active_file:880kB inactive_file:912kB unevictable:0kB writepending:1764kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:12800kB pagetables:72488kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2456.255833] lowmem_reserve[]: 0 0 0 0 0
[ 2456.259868] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2456.445826] lowmem_reserve[]: 0 0 0 0 0
[ 2456.449884] Node 1 Normal free:52384kB min:53612kB low:67012kB high:80412kB active_anon:3146488kB inactive_anon:46160kB active_file:648kB inactive_file:372kB unevictable:0kB writepending:904kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:55744kB pagetables:169928kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2456.566803] lowmem_reserve[]: 0 0 0 0 0
[ 2456.570837] Node 0 DMA: 3*4kB (UME) 19*8kB (UME) 3*16kB (UE) 6*32kB (U) 4*64kB (UE) 2*128kB (ME) 3*256kB (UME) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10388kB
[ 2456.680964] Node 0 DMA32: 628*4kB (UME) 1152*8kB (UME) 351*16kB (UME) 131*32kB (UME) 34*64kB (ME) 8*128kB (ME) 6*256kB (ME) 2*512kB (ME) 0*1024kB 2*2048kB (UM) 0*4096kB = 31392kB
[ 2456.739384] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2456.855790] Node 1 Normal: 894*4kB (UMEH) 103*8kB (UME) 53*16kB (UMEH) 1007*32kB (UMEH) 167*64kB (UMEH) 19*128kB (UMH) 5*256kB (MEH) 1*512kB (E) 0*1024kB 0*2048kB 0*4096kB = 52384kB
[ 2456.926252] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2456.935136] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2457.020108] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2457.075783] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2457.084468] 39545 total pagecache pages
[ 2457.159993] 0 pages in swap cache
[ 2457.163470] Swap cache stats: add 0, delete 0, find 0/0
[ 2457.195956] Free swap  = 0kB
[ 2457.198977] Total swap = 0kB
[ 2457.201990] 1965979 pages RAM
[ 2457.205119] 0 pages HighMem/MovableOnly
[ 2457.221373] 339077 pages reserved
[ 2457.224855] 0 pages cma reserved
[ 2457.242546] Out of memory: Kill process 17484 (syz-executor.0) score 1007 or sacrifice child
[ 2457.330176] Killed process 17484 (syz-executor.0) total-vm:93808kB, anon-rss:16572kB, file-rss:34816kB, shmem-rss:0kB
[ 2457.443471] oom_reaper: reaped process 17484 (syz-executor.0), now anon-rss:0kB, file-rss:0kB, shmem-rss:0kB
07:46:08 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:46:08 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x0, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2457.892942] syz-executor.1 invoked oom-killer: gfp_mask=0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null),  order=1, oom_score_adj=0
[ 2457.994937] syz-executor.1 cpuset=/ mems_allowed=0-1
[ 2458.000154] CPU: 0 PID: 6375 Comm: syz-executor.1 Not tainted 4.14.197-syzkaller #0
[ 2458.007949] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2458.017322] Call Trace:
[ 2458.019915]  dump_stack+0x1b2/0x283
[ 2458.023541]  dump_header+0x178/0x82f
[ 2458.028033]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2458.033156]  ? ___ratelimit+0x2cd/0x522
[ 2458.037128]  oom_kill_process.cold+0x10/0xa69
[ 2458.041639]  ? lock_downgrade+0x740/0x740
[ 2458.045785]  out_of_memory+0x2dc/0x1190
[ 2458.049769]  ? oom_killer_disable+0x1c0/0x1c0
[ 2458.054265]  ? mutex_trylock+0x152/0x1a0
[ 2458.058349]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2458.063210]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2458.068084]  ? check_preemption_disabled+0x35/0x240
[ 2458.073120]  ? cache_grow_begin+0x3f/0x420
[ 2458.077359]  cache_grow_begin+0x8f/0x420
[ 2458.081419]  ? mempolicy_slab_node+0x100/0x320
[ 2458.086017]  fallback_alloc+0x207/0x2c0
[ 2458.090005]  kmem_cache_alloc+0x1e5/0x3c0
[ 2458.094152]  getname_flags+0xc8/0x550
[ 2458.097952]  user_path_mountpoint_at+0x23/0x40
[ 2458.102529]  SyS_umount+0x125/0xeb0
[ 2458.106157]  ? lock_downgrade+0x740/0x740
[ 2458.110298]  ? __detach_mounts+0x400/0x400
[ 2458.114530]  ? up_read+0x17/0x30
[ 2458.117899]  ? __do_page_fault+0x19a/0xb50
[ 2458.122143]  ? do_syscall_64+0x4c/0x640
[ 2458.126113]  ? __detach_mounts+0x400/0x400
[ 2458.130342]  do_syscall_64+0x1d5/0x640
[ 2458.134230]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2458.139412] RIP: 0033:0x45ffe7
07:46:08 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2458.142591] RSP: 002b:00007ffe02e56848 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 2458.150303] RAX: ffffffffffffffda RBX: 00000000002564a3 RCX: 000000000045ffe7
[ 2458.157576] RDX: 000000000000000c RSI: 0000000000000002 RDI: 00007ffe02e57980
[ 2458.164847] RBP: 0000000000001a72 R08: 0000000000000000 R09: 000000000226a940
[ 2458.172145] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe02e57980
[ 2458.179418] R13: 00007ffe02e57970 R14: 0000000000000000 R15: 00007ffe02e57980
07:46:15 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2458.706445] Mem-Info:
[ 2458.708899] active_anon:1213063 inactive_anon:28162 isolated_anon:0
[ 2458.708899]  active_file:32 inactive_file:17 isolated_file:0
[ 2458.708899]  unevictable:0 dirty:0 writeback:0 unstable:0
[ 2458.708899]  slab_reclaimable:24573 slab_unreclaimable:145913
[ 2458.708899]  mapped:64545 shmem:38846 pagetables:60578 bounce:0
[ 2458.708899]  free:28543 free_pcp:0 free_cma:0
[ 2458.925695] Node 0 active_anon:1705764kB inactive_anon:66488kB active_file:28kB inactive_file:64kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:240384kB dirty:0kB writeback:0kB shmem:82524kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 915456kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2459.096418] Node 1 active_anon:3146488kB inactive_anon:46160kB active_file:0kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:17796kB dirty:0kB writeback:0kB shmem:72860kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2459.244506] Node 0 DMA free:10356kB min:220kB low:272kB high:324kB active_anon:4724kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:36kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2459.345673] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2459.384657] Node 0 DMA32 free:45404kB min:36272kB low:45340kB high:54408kB active_anon:1701040kB inactive_anon:66488kB active_file:1556kB inactive_file:1916kB unevictable:0kB writepending:12kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:12768kB pagetables:72348kB bounce:0kB free_pcp:812kB local_pcp:116kB free_cma:0kB
07:46:16 executing program 2:
r0 = socket(0xa, 0x5, 0x0)
connect$pptp(r0, 0x0, 0x0)

[ 2459.530948] lowmem_reserve[]: 0 0 0 0 0
[ 2459.534979] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2459.664603] lowmem_reserve[]: 0 0 0 0 0
[ 2459.689243] Node 1 Normal free:54980kB min:53612kB low:67012kB high:80412kB active_anon:3146488kB inactive_anon:46160kB active_file:0kB inactive_file:4kB unevictable:0kB writepending:0kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:55744kB pagetables:169928kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2459.840750] lowmem_reserve[]: 0 0 0 0 0
[ 2459.844778] Node 0 DMA: 3*4kB (UME) 19*8kB (UME) 3*16kB (UE) 5*32kB (U) 4*64kB (UE) 2*128kB (ME) 3*256kB (UME) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10356kB
[ 2459.955342] Node 0 DMA32: 682*4kB (UME) 1189*8kB (UME) 396*16kB (UME) 128*32kB (UME) 32*64kB (ME) 9*128kB (ME) 7*256kB (ME) 2*512kB (ME) 0*1024kB 6*2048kB (UM) 2*4096kB (M) = 49168kB
[ 2460.043195] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2460.105592] Node 1 Normal: 1055*4kB (UMEH) 299*8kB (UME) 67*16kB (UMEH) 1012*32kB (UMEH) 167*64kB (UMEH) 19*128kB (UMH) 5*256kB (MEH) 1*512kB (E) 0*1024kB 0*2048kB 0*4096kB = 54980kB
[ 2460.175261] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2460.196615] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2460.230500] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2460.239483] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2460.254528] 39187 total pagecache pages
[ 2460.258593] 0 pages in swap cache
[ 2460.262044] Swap cache stats: add 0, delete 0, find 0/0
[ 2460.273372] Free swap  = 0kB
[ 2460.276437] Total swap = 0kB
[ 2460.279456] 1965979 pages RAM
[ 2460.282639] 0 pages HighMem/MovableOnly
[ 2460.300524] 339077 pages reserved
[ 2460.303984] 0 pages cma reserved
[ 2460.312605] Out of memory: Kill process 19332 (syz-executor.1) score 1007 or sacrifice child
[ 2460.321856] Killed process 19332 (syz-executor.1) total-vm:93808kB, anon-rss:16572kB, file-rss:34816kB, shmem-rss:0kB
[ 2460.396667] oom_reaper: reaped process 19332 (syz-executor.1), now anon-rss:0kB, file-rss:0kB, shmem-rss:0kB
[ 2460.471636] audit: type=1326 audit(1599896778.000:135220): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32338 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:46:19 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x0, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:46:19 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2462.181450] audit: type=1326 audit(1599896779.710:135221): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32349 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2462.212010] audit: type=1326 audit(1599896779.740:135222): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32351 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2462.240379] audit: type=1326 audit(1599896779.740:135223): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32350 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:46:19 executing program 2:
r0 = socket(0x10, 0x80002, 0x0)
connect$l2tp6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, 0x20)

[ 2462.276975] audit: type=1326 audit(1599896779.740:135224): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32352 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2462.299106] audit: type=1326 audit(1599896779.810:135225): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32359 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2463.327067] syz-executor.3 invoked oom-killer: gfp_mask=0x14280ca(GFP_HIGHUSER_MOVABLE|__GFP_ZERO), nodemask=(null),  order=0, oom_score_adj=0
[ 2463.397118] syz-executor.3 cpuset=/ mems_allowed=0-1
[ 2463.419482] CPU: 1 PID: 32377 Comm: syz-executor.3 Not tainted 4.14.197-syzkaller #0
[ 2463.427379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2463.436734] Call Trace:
[ 2463.439328]  dump_stack+0x1b2/0x283
[ 2463.442960]  dump_header+0x178/0x82f
[ 2463.446673]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2463.451798]  ? ___ratelimit+0x2cd/0x522
[ 2463.455777]  oom_kill_process.cold+0x10/0xa69
[ 2463.460289]  ? lock_downgrade+0x740/0x740
[ 2463.464454]  out_of_memory+0x2dc/0x1190
[ 2463.468695]  ? oom_killer_disable+0x1c0/0x1c0
[ 2463.473190]  ? mutex_trylock+0x152/0x1a0
[ 2463.477253]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2463.482116]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2463.486975]  ? perf_trace_lock+0xf7/0x490
[ 2463.491123]  alloc_pages_vma+0xd2/0x6d0
[ 2463.495103]  wp_page_copy+0xfcf/0x1ba0
[ 2463.498994]  ? _vm_normal_page+0x162/0x3b0
[ 2463.503226]  ? tlb_flush_mmu_free+0x1a0/0x1a0
[ 2463.507721]  ? __lock_acquire+0x5fc/0x3f20
[ 2463.511958]  do_wp_page+0x245/0x1db0
[ 2463.515672]  ? __handle_mm_fault+0x129c/0x4620
[ 2463.520251]  ? finish_mkwrite_fault+0x5e0/0x5e0
[ 2463.524928]  __handle_mm_fault+0x234f/0x4620
[ 2463.529362]  ? vm_insert_page+0x7c0/0x7c0
[ 2463.533529]  handle_mm_fault+0x306/0x7a0
[ 2463.537595]  __do_page_fault+0x578/0xb50
[ 2463.541666]  ? spurious_fault+0x640/0x640
[ 2463.545836]  ? do_page_fault+0x60/0x4f2
[ 2463.549814]  page_fault+0x25/0x50
[ 2463.553280] RIP: 0010:copy_user_enhanced_fast_string+0xe/0x20
[ 2463.559154] RSP: 0018:ffff88818e5afb68 EFLAGS: 00010206
[ 2463.564525] RAX: ffffed100c4db800 RBX: 0000000000001000 RCX: 0000000000000500
[ 2463.571793] RDX: 0000000000001000 RSI: ffff8880626dbb00 RDI: 0000000020001000
[ 2463.579064] RBP: 0000000020000500 R08: 0000000000000000 R09: ffffed100c4db7ff
[ 2463.586342] R10: ffff8880626dbfff R11: 0000000000000000 R12: ffff8880626db000
[ 2463.593615] R13: 00007ffffffff000 R14: 0000000020001500 R15: ffff88818e5afdf0
[ 2463.600909]  copyout+0x99/0xc0
[ 2463.604097]  copy_page_to_iter+0x324/0xca0
[ 2463.608332]  pipe_to_user+0xa8/0x160
[ 2463.612069]  __splice_from_pipe+0x326/0x7a0
[ 2463.616390]  ? iter_to_pipe+0x500/0x500
[ 2463.620365]  vmsplice_to_user+0x190/0x1b0
[ 2463.624530]  ? __splice_from_pipe+0x7a0/0x7a0
[ 2463.629021]  ? perf_trace_lock_acquire+0x510/0x510
[ 2463.633938]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 2463.638693]  ? lock_acquire+0x170/0x3f0
[ 2463.642672]  ? lock_downgrade+0x740/0x740
[ 2463.646818]  ? __fget+0x225/0x360
[ 2463.650271]  SyS_vmsplice+0x12a/0x150
[ 2463.654105]  ? splice_from_pipe+0x120/0x120
[ 2463.658422]  do_syscall_64+0x1d5/0x640
[ 2463.662311]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2463.667491] RIP: 0033:0x45d5b9
[ 2463.670668] RSP: 002b:00007f885b2fdc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000116
[ 2463.678381] RAX: ffffffffffffffda RBX: 00000000000366c0 RCX: 000000000045d5b9
[ 2463.685657] RDX: 0000000000000001 RSI: 0000000020000000 RDI: 0000000000000003
[ 2463.692915] RBP: 000000000118d0c8 R08: 0000000000000000 R09: 0000000000000000
[ 2463.700191] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118d08c
[ 2463.707464] R13: 00007ffe0a0f532f R14: 00007f885b2fe9c0 R15: 000000000118d08c
07:46:22 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x0, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:46:22 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:46:22 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2465.106140] Mem-Info:
[ 2465.112163] active_anon:1213483 inactive_anon:28162 isolated_anon:0
[ 2465.112163]  active_file:555 inactive_file:544 isolated_file:32
[ 2465.112163]  unevictable:0 dirty:168 writeback:1 unstable:0
[ 2465.112163]  slab_reclaimable:24469 slab_unreclaimable:146464
[ 2465.112163]  mapped:65445 shmem:38846 pagetables:60623 bounce:0
[ 2465.112163]  free:26351 free_pcp:299 free_cma:0
[ 2465.304401] Node 0 active_anon:1709704kB inactive_anon:66488kB active_file:1860kB inactive_file:1952kB unevictable:0kB isolated(anon):0kB isolated(file):256kB mapped:243392kB dirty:548kB writeback:0kB shmem:82524kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 915456kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2465.378528] Node 1 active_anon:3144228kB inactive_anon:46160kB active_file:100kB inactive_file:124kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:17888kB dirty:124kB writeback:4kB shmem:72860kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2465.471907] Node 0 DMA free:10400kB min:220kB low:272kB high:324kB active_anon:4660kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:20kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2465.551447] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2465.570772] Node 0 DMA32 free:40936kB min:36272kB low:45340kB high:54408kB active_anon:1705044kB inactive_anon:66488kB active_file:2012kB inactive_file:1548kB unevictable:0kB writepending:548kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:12832kB pagetables:72656kB bounce:0kB free_pcp:668kB local_pcp:668kB free_cma:0kB
[ 2465.641202] lowmem_reserve[]: 0 0 0 0 0
[ 2465.649656] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2465.675345] lowmem_reserve[]: 0 0 0 0 0
[ 2465.679374] Node 1 Normal free:55548kB min:53612kB low:67012kB high:80412kB active_anon:3144228kB inactive_anon:46160kB active_file:100kB inactive_file:124kB unevictable:0kB writepending:128kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:55840kB pagetables:169816kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2465.708962] lowmem_reserve[]: 0 0 0 0 0
[ 2465.713008] Node 0 DMA: 6*4kB (UME) 17*8kB (UME) 4*16kB (UME) 6*32kB (UM) 4*64kB (UE) 2*128kB (ME) 3*256kB (UME) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10400kB
[ 2465.736948] Node 0 DMA32: 513*4kB (UME) 1091*8kB (UME) 502*16kB (UME) 149*32kB (UME) 28*64kB (ME) 11*128kB (ME) 3*256kB (ME) 2*512kB (ME) 2*1024kB (M) 1*2048kB (U) 2*4096kB (M) = 40860kB
[ 2465.761479] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2465.824026] Node 1 Normal: 907*4kB (UMEH) 296*8kB (UME) 23*16kB (UMEH) 893*32kB (UMEH) 171*64kB (UMEH) 24*128kB (UMH) 10*256kB (MEH) 4*512kB (ME) 2*1024kB (M) 0*2048kB 0*4096kB = 55612kB
[ 2465.854302] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2465.868159] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2465.876870] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2465.885817] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2465.894463] 39624 total pagecache pages
[ 2465.913838] 0 pages in swap cache
[ 2465.917473] Swap cache stats: add 0, delete 0, find 0/0
[ 2465.922964] Free swap  = 0kB
[ 2465.934746] Total swap = 0kB
[ 2465.939722] 1965979 pages RAM
[ 2465.942949] 0 pages HighMem/MovableOnly
[ 2465.951691] 339077 pages reserved
[ 2465.955322] 0 pages cma reserved
[ 2465.958800] Out of memory: Kill process 32352 (syz-executor.4) score 1007 or sacrifice child
[ 2467.944517] oom_reaper: reaped process 32359 (syz-executor.3), now anon-rss:0kB, file-rss:0kB, shmem-rss:0kB
[ 2468.537572] oom_reaper: reaped process 32382 (syz-executor.2), now anon-rss:0kB, file-rss:0kB, shmem-rss:0kB
[ 2469.093153] audit: type=1326 audit(1599896786.621:135226): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32383 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2469.959169] syz-executor.4 invoked oom-killer: gfp_mask=0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null),  order=1, oom_score_adj=0
[ 2469.993039] syz-executor.4 cpuset=/ mems_allowed=0-1
[ 2470.019886] CPU: 1 PID: 32388 Comm: syz-executor.4 Not tainted 4.14.197-syzkaller #0
[ 2470.027803] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2470.037148] Call Trace:
[ 2470.039737]  dump_stack+0x1b2/0x283
[ 2470.043366]  dump_header+0x178/0x82f
[ 2470.047080]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2470.052181]  ? ___ratelimit+0x2cd/0x522
[ 2470.056153]  oom_kill_process.cold+0x10/0xa69
[ 2470.060667]  ? lock_downgrade+0x740/0x740
[ 2470.064820]  out_of_memory+0x2dc/0x1190
[ 2470.068821]  ? oom_killer_disable+0x1c0/0x1c0
[ 2470.073314]  ? mutex_trylock+0x152/0x1a0
[ 2470.077373]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2470.082221]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2470.087054]  ? check_preemption_disabled+0x35/0x240
[ 2470.092072]  ? cache_grow_begin+0x3f/0x420
[ 2470.096296]  cache_grow_begin+0x8f/0x420
[ 2470.100363]  ? mempolicy_slab_node+0x100/0x320
[ 2470.104936]  fallback_alloc+0x207/0x2c0
[ 2470.108902]  kmem_cache_alloc+0x1e5/0x3c0
[ 2470.113040]  getname_flags+0xc8/0x550
[ 2470.116832]  ? SyS_access+0x20/0x20
[ 2470.120468]  user_path_at_empty+0x2a/0x50
[ 2470.124608]  SyS_chdir+0x7e/0x1a0
[ 2470.128067]  ? SyS_access+0x20/0x20
[ 2470.131683]  ? __do_page_fault+0x19a/0xb50
[ 2470.135906]  ? do_syscall_64+0x4c/0x640
[ 2470.139870]  ? SyS_access+0x20/0x20
[ 2470.143498]  do_syscall_64+0x1d5/0x640
[ 2470.147384]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2470.152563] RIP: 0033:0x45cba7
[ 2470.155736] RSP: 002b:00007ffdb9d041f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000050
[ 2470.163450] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 000000000045cba7
[ 2470.170709] RDX: 0000000000000001 RSI: 0000000000749e70 RDI: 00007ffdb9d04240
[ 2470.177965] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000001d9a940
[ 2470.185224] R10: 0000000001d9ac10 R11: 0000000000000246 R12: 0000000000000000
[ 2470.192740] R13: 00007ffdb9d04230 R14: 0000000000000000 R15: 00007ffdb9d04240
[ 2470.260791] Mem-Info:
[ 2470.263350] active_anon:1213498 inactive_anon:28161 isolated_anon:0
[ 2470.263350]  active_file:36 inactive_file:295 isolated_file:24
[ 2470.263350]  unevictable:0 dirty:37 writeback:0 unstable:0
[ 2470.263350]  slab_reclaimable:24458 slab_unreclaimable:146648
[ 2470.263350]  mapped:64779 shmem:38846 pagetables:60617 bounce:0
[ 2470.263350]  free:27046 free_pcp:0 free_cma:0
[ 2470.305348] Node 0 active_anon:1709792kB inactive_anon:66484kB active_file:240kB inactive_file:892kB unevictable:0kB isolated(anon):0kB isolated(file):96kB mapped:241320kB dirty:144kB writeback:0kB shmem:82524kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 915456kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2470.360424] Node 1 active_anon:3144200kB inactive_anon:46160kB active_file:4kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:17796kB dirty:4kB writeback:0kB shmem:72860kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2470.394018] Node 0 DMA free:10376kB min:220kB low:272kB high:324kB active_anon:4660kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:20kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2470.426890] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2470.432109] Node 0 DMA32 free:42300kB min:36272kB low:45340kB high:54408kB active_anon:1705132kB inactive_anon:66484kB active_file:544kB inactive_file:348kB unevictable:0kB writepending:144kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:12832kB pagetables:72712kB bounce:0kB free_pcp:680kB local_pcp:160kB free_cma:0kB
[ 2470.473059] lowmem_reserve[]: 0 0 0 0 0
[ 2470.500566] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2470.542051] lowmem_reserve[]: 0 0 0 0 0
[ 2470.548089] Node 1 Normal free:55508kB min:53612kB low:67012kB high:80412kB active_anon:3144200kB inactive_anon:46160kB active_file:4kB inactive_file:0kB unevictable:0kB writepending:4kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:55712kB pagetables:169736kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2470.597221] lowmem_reserve[]: 0 0 0 0 0
[ 2470.604214] Node 0 DMA: 6*4kB (UME) 16*8kB (UME) 5*16kB (UME) 5*32kB (UM) 4*64kB (UE) 2*128kB (ME) 3*256kB (UME) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10376kB
[ 2470.650400] Node 0 DMA32: 494*4kB (UME) 1180*8kB (UME) 463*16kB (UME) 154*32kB (UME) 44*64kB (ME) 7*128kB (ME) 3*256kB (ME) 4*512kB (ME) 3*1024kB (M) 1*2048kB (U) 2*4096kB (M) = 43592kB
[ 2470.672384] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2470.683465] Node 1 Normal: 934*4kB (UMEH) 282*8kB (UME) 10*16kB (UMEH) 898*32kB (UMEH) 171*64kB (UMEH) 24*128kB (UMH) 10*256kB (MEH) 4*512kB (ME) 2*1024kB (M) 0*2048kB 0*4096kB = 55560kB
[ 2470.707935] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2470.717679] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2470.730126] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2470.739866] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2470.752346] 39450 total pagecache pages
[ 2470.757172] 0 pages in swap cache
[ 2470.760627] Swap cache stats: add 0, delete 0, find 0/0
[ 2470.788949] Free swap  = 0kB
[ 2470.791984] Total swap = 0kB
[ 2470.795855] 1965979 pages RAM
[ 2470.798957] 0 pages HighMem/MovableOnly
[ 2470.802919] 339077 pages reserved
[ 2470.849003] 0 pages cma reserved
[ 2470.852400] Out of memory: Kill process 20356 (syz-executor.0) score 1007 or sacrifice child
07:46:28 executing program 2:
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0x8004500b, &(0x7f0000000000))

[ 2470.888806] Killed process 20356 (syz-executor.0) total-vm:93808kB, anon-rss:16572kB, file-rss:34816kB, shmem-rss:0kB
07:46:28 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:46:28 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

[ 2471.037262] audit: type=1326 audit(1599896788.571:135227): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32388 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2471.479368] audit: type=1326 audit(1599896789.011:135228): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32396 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2471.582878] audit: type=1326 audit(1599896789.031:135229): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32392 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:46:29 executing program 2:

[ 2472.163165] syz-executor.2 invoked oom-killer: gfp_mask=0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null),  order=1, oom_score_adj=0
[ 2472.296807] syz-executor.2 cpuset=/ mems_allowed=0-1
[ 2472.301973] CPU: 0 PID: 6371 Comm: syz-executor.2 Not tainted 4.14.197-syzkaller #0
[ 2472.309763] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2472.319119] Call Trace:
[ 2472.321706]  dump_stack+0x1b2/0x283
[ 2472.325332]  dump_header+0x178/0x82f
[ 2472.329070]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2472.334173]  ? ___ratelimit+0x2cd/0x522
[ 2472.338146]  oom_kill_process.cold+0x10/0xa69
[ 2472.342660]  ? lock_downgrade+0x740/0x740
[ 2472.346808]  out_of_memory+0x2dc/0x1190
[ 2472.350781]  ? oom_killer_disable+0x1c0/0x1c0
[ 2472.355305]  ? mutex_trylock+0x152/0x1a0
[ 2472.359373]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2472.364229]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2472.369078]  ? check_preemption_disabled+0x35/0x240
[ 2472.374106]  ? cache_grow_begin+0x3f/0x420
[ 2472.378363]  cache_grow_begin+0x8f/0x420
[ 2472.382422]  ? mempolicy_slab_node+0x100/0x320
[ 2472.387004]  fallback_alloc+0x207/0x2c0
[ 2472.390984]  kmem_cache_alloc+0x1e5/0x3c0
[ 2472.395130]  getname_flags+0xc8/0x550
[ 2472.398950]  user_path_mountpoint_at+0x23/0x40
[ 2472.403529]  SyS_umount+0x125/0xeb0
[ 2472.407270]  ? do_unlinkat+0x152/0x5c0
[ 2472.411178]  ? do_rmdir+0x3c0/0x3c0
[ 2472.414804]  ? __detach_mounts+0x400/0x400
[ 2472.419039]  ? __do_page_fault+0x19a/0xb50
[ 2472.423269]  ? do_syscall_64+0x4c/0x640
[ 2472.427238]  ? __detach_mounts+0x400/0x400
[ 2472.431471]  do_syscall_64+0x1d5/0x640
[ 2472.435364]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2472.440549] RIP: 0033:0x45ffe7
07:46:30 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x0, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2472.443735] RSP: 002b:00007ffe5e350d28 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 2472.451448] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 000000000045ffe7
[ 2472.458721] RDX: 0000000000403148 RSI: 0000000000000002 RDI: 00007ffe5e350dd0
[ 2472.465989] RBP: 0000000000001b10 R08: 0000000000000000 R09: 0000000000000011
[ 2472.473264] R10: 000000000000000a R11: 0000000000000246 R12: 00007ffe5e351e60
[ 2472.480530] R13: 00000000026b9a60 R14: 0000000000000000 R15: 00007ffe5e351e60
[ 2473.080538] Mem-Info:
[ 2473.083630] active_anon:1215330 inactive_anon:28161 isolated_anon:0
[ 2473.083630]  active_file:431 inactive_file:326 isolated_file:32
[ 2473.083630]  unevictable:0 dirty:11 writeback:3 unstable:0
[ 2473.083630]  slab_reclaimable:24436 slab_unreclaimable:146139
[ 2473.083630]  mapped:65255 shmem:38846 pagetables:60652 bounce:0
[ 2473.083630]  free:25444 free_pcp:6 free_cma:0
[ 2473.234786] Node 0 active_anon:1713924kB inactive_anon:66484kB active_file:1384kB inactive_file:1552kB unevictable:0kB isolated(anon):0kB isolated(file):256kB mapped:242996kB dirty:24kB writeback:0kB shmem:82524kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 925696kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2473.318253] Node 1 active_anon:3147396kB inactive_anon:46160kB active_file:132kB inactive_file:96kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:17924kB dirty:20kB writeback:12kB shmem:72860kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2473.409249] Node 0 DMA free:10408kB min:220kB low:272kB high:324kB active_anon:4660kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:20kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2473.480122] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2473.487396] Node 0 DMA32 free:36832kB min:36272kB low:45340kB high:54408kB active_anon:1709264kB inactive_anon:66484kB active_file:1612kB inactive_file:1816kB unevictable:0kB writepending:124kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:12832kB pagetables:72816kB bounce:0kB free_pcp:404kB local_pcp:360kB free_cma:0kB
[ 2473.530551] lowmem_reserve[]: 0 0 0 0 0
[ 2473.534587] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2473.674533] lowmem_reserve[]: 0 0 0 0 0
[ 2473.699740] Node 1 Normal free:54016kB min:53612kB low:67012kB high:80412kB active_anon:3147396kB inactive_anon:46160kB active_file:236kB inactive_file:240kB unevictable:0kB writepending:32kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:55840kB pagetables:169772kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB
[ 2473.811706] lowmem_reserve[]: 0 0 0 0 0
[ 2473.868384] Node 0 DMA: 6*4kB (UME) 16*8kB (UME) 5*16kB (UME) 6*32kB (UM) 4*64kB (UE) 2*128kB (ME) 3*256kB (UME) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10408kB
[ 2473.941164] Node 0 DMA32: 1086*4kB (UME) 1851*8kB (UME) 476*16kB (UME) 55*32kB (UME) 46*64kB (UME) 15*128kB (UME) 1*256kB (E) 2*512kB (ME) 3*1024kB (M) 0*2048kB 0*4096kB = 37744kB
[ 2473.989724] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2474.022675] Node 1 Normal: 764*4kB (UMEH) 569*8kB (UME) 16*16kB (UMEH) 813*32kB (UMEH) 171*64kB (UMEH) 24*128kB (UMH) 10*256kB (MEH) 4*512kB (ME) 2*1024kB (M) 0*2048kB 0*4096kB = 54552kB
[ 2474.097261] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2474.141796] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2474.165568] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2474.185578] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2474.204832] 39272 total pagecache pages
[ 2474.216951] 0 pages in swap cache
[ 2474.229693] Swap cache stats: add 0, delete 0, find 0/0
[ 2474.246711] Free swap  = 0kB
[ 2474.275601] Total swap = 0kB
[ 2474.285644] 1965979 pages RAM
[ 2474.294587] 0 pages HighMem/MovableOnly
[ 2474.307999] 339077 pages reserved
[ 2474.319576] 0 pages cma reserved
[ 2474.328769] Out of memory: Kill process 32395 (syz-executor.4) score 1007 or sacrifice child
[ 2474.367897] Killed process 32395 (syz-executor.4) total-vm:93676kB, anon-rss:16560kB, file-rss:34884kB, shmem-rss:0kB
[ 2474.663205] oom_reaper: reaped process 32383 (syz-executor.5), now anon-rss:0kB, file-rss:0kB, shmem-rss:0kB
[ 2474.774566] systemd-udevd invoked oom-killer: gfp_mask=0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null),  order=1, oom_score_adj=0
[ 2474.825632] systemd-udevd cpuset=/ mems_allowed=0-1
[ 2474.830757] CPU: 0 PID: 32385 Comm: systemd-udevd Not tainted 4.14.197-syzkaller #0
[ 2474.838550] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2474.847900] Call Trace:
[ 2474.850496]  dump_stack+0x1b2/0x283
[ 2474.854127]  dump_header+0x178/0x82f
[ 2474.857840]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2474.862937]  ? ___ratelimit+0x2cd/0x522
[ 2474.866908]  oom_kill_process.cold+0x10/0xa69
[ 2474.871401]  ? lock_downgrade+0x740/0x740
[ 2474.875547]  out_of_memory+0x2dc/0x1190
[ 2474.879519]  ? oom_killer_disable+0x1c0/0x1c0
[ 2474.884008]  ? mutex_trylock+0x152/0x1a0
[ 2474.888071]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2474.892942]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2474.897785]  ? check_preemption_disabled+0x35/0x240
[ 2474.902830]  ? cache_grow_begin+0x3f/0x420
[ 2474.907063]  cache_grow_begin+0x8f/0x420
[ 2474.911117]  ? mempolicy_slab_node+0x100/0x320
[ 2474.915694]  fallback_alloc+0x207/0x2c0
[ 2474.919670]  kmem_cache_alloc+0x1e5/0x3c0
[ 2474.923817]  getname_flags+0xc8/0x550
[ 2474.927615]  user_path_at_empty+0x2a/0x50
[ 2474.931782]  SyS_faccessat+0x21b/0x680
[ 2474.935668]  ? SyS_fallocate+0x80/0x80
[ 2474.939558]  ? do_syscall_64+0x4c/0x640
[ 2474.943529]  ? SyS_faccessat+0x680/0x680
[ 2474.947587]  do_syscall_64+0x1d5/0x640
[ 2474.951475]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2474.956678] RIP: 0033:0x7f5e751399c7
[ 2474.960396] RSP: 002b:00007fff9061b2f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000015
[ 2474.968099] RAX: ffffffffffffffda RBX: 00007fff9061be70 RCX: 00007f5e751399c7
[ 2474.975348] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000056284c72ffea
[ 2474.982596] RBP: 0000000000000000 R08: 000056284dccd230 R09: 0000000000000000
[ 2474.989842] R10: 000000000000001e R11: 0000000000000246 R12: 0000000000000001
[ 2474.997091] R13: 0000000000000000 R14: 00007fff9061b890 R15: 00007fff9061be7f
[ 2475.011942] Mem-Info:
[ 2475.014370] active_anon:1211173 inactive_anon:28161 isolated_anon:0
[ 2475.014370]  active_file:14 inactive_file:21 isolated_file:0
[ 2475.014370]  unevictable:0 dirty:0 writeback:1 unstable:0
[ 2475.014370]  slab_reclaimable:24432 slab_unreclaimable:146137
[ 2475.014370]  mapped:64526 shmem:38846 pagetables:60588 bounce:0
[ 2475.014370]  free:30454 free_pcp:0 free_cma:0
[ 2475.047923] Node 0 active_anon:1697300kB inactive_anon:66484kB active_file:48kB inactive_file:72kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:240308kB dirty:0kB writeback:4kB shmem:82524kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 915456kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2475.085165] Node 1 active_anon:3147392kB inactive_anon:46160kB active_file:8kB inactive_file:12kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:17796kB dirty:0kB writeback:0kB shmem:72860kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2475.234112] Node 0 DMA free:10408kB min:220kB low:272kB high:324kB active_anon:4660kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:20kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2475.328739] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2475.364669] Node 0 DMA32 free:54208kB min:36272kB low:45340kB high:54408kB active_anon:1692640kB inactive_anon:66484kB active_file:60kB inactive_file:2104kB unevictable:0kB writepending:4kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:12800kB pagetables:72560kB bounce:0kB free_pcp:564kB local_pcp:372kB free_cma:0kB
[ 2475.442939] lowmem_reserve[]: 0 0 0 0 0
[ 2475.456940] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2475.614082] lowmem_reserve[]: 0 0 0 0 0
[ 2475.649577] Node 1 Normal free:54728kB min:53612kB low:67012kB high:80412kB active_anon:3147392kB inactive_anon:46160kB active_file:12kB inactive_file:8kB unevictable:0kB writepending:0kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:55712kB pagetables:169772kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2475.719206] lowmem_reserve[]: 0 0 0 0 0
[ 2475.723219] Node 0 DMA: 6*4kB (UME) 16*8kB (UME) 5*16kB (UME) 6*32kB (UM) 4*64kB (UE) 2*128kB (ME) 3*256kB (UME) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10408kB
[ 2475.810022] Node 0 DMA32: 918*4kB (UME) 1990*8kB (UME) 596*16kB (UME) 173*32kB (UME) 47*64kB (UME) 15*128kB (UME) 1*256kB (E) 2*512kB (ME) 3*1024kB (M) 1*2048kB (M) 2*4096kB (M) = 54184kB
[ 2475.854593] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2475.870256] Node 1 Normal: 766*4kB (UMEH) 570*8kB (UME) 16*16kB (UMEH) 818*32kB (UMEH) 171*64kB (UMEH) 24*128kB (UMH) 10*256kB (MEH) 4*512kB (ME) 2*1024kB (M) 0*2048kB 0*4096kB = 54728kB
[ 2475.906295] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2475.924623] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2475.943460] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2475.959106] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2475.968682] 39139 total pagecache pages
[ 2475.979765] 0 pages in swap cache
[ 2475.983245] Swap cache stats: add 0, delete 0, find 0/0
[ 2476.024598] Free swap  = 0kB
[ 2476.027641] Total swap = 0kB
[ 2476.030654] 1965979 pages RAM
[ 2476.033770] 0 pages HighMem/MovableOnly
[ 2476.069046] 339077 pages reserved
[ 2476.072518] 0 pages cma reserved
[ 2476.089285] Out of memory: Kill process 20391 (syz-executor.0) score 1007 or sacrifice child
[ 2476.139890] Killed process 20391 (syz-executor.0) total-vm:93808kB, anon-rss:16572kB, file-rss:34816kB, shmem-rss:0kB
07:46:33 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:46:34 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2476.413267] audit: type=1326 audit(1599896793.941:135230): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32407 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2476.427503] oom_reaper: reaped process 20391 (syz-executor.0), now anon-rss:0kB, file-rss:0kB, shmem-rss:0kB
07:46:34 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

[ 2476.511302] audit: type=1326 audit(1599896794.041:135231): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32411 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2476.600196] audit: type=1326 audit(1599896794.131:135232): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32414 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:46:34 executing program 2:

[ 2477.002213] audit: type=1326 audit(1599896794.131:135233): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32416 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:46:34 executing program 2:

[ 2477.161742] audit: type=1326 audit(1599896794.321:135234): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32415 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:46:34 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, 0x0, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:46:35 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:46:35 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:46:35 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x0, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:46:35 executing program 2:

07:46:35 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2477.414227] audit: type=1326 audit(1599896794.941:135235): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32440 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:46:35 executing program 2:

[ 2477.533555] audit: type=1326 audit(1599896795.031:135236): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32443 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:46:35 executing program 2:

07:46:35 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

[ 2478.040099] audit: type=1326 audit(1599896795.051:135237): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32444 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2478.214953] audit: type=1326 audit(1599896795.091:135238): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32448 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:46:35 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x0, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:46:35 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, 0x0, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2478.414484] syz-executor.5 invoked oom-killer: gfp_mask=0x14280ca(GFP_HIGHUSER_MOVABLE|__GFP_ZERO), nodemask=(null),  order=0, oom_score_adj=1000
[ 2478.498724] audit: type=1326 audit(1599896795.111:135239): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32449 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2478.564427] syz-executor.5 cpuset=/ mems_allowed=0-1
[ 2478.569581] CPU: 1 PID: 32450 Comm: syz-executor.5 Not tainted 4.14.197-syzkaller #0
[ 2478.577456] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2478.586809] Call Trace:
[ 2478.589408]  dump_stack+0x1b2/0x283
[ 2478.593038]  dump_header+0x178/0x82f
[ 2478.596759]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2478.601864]  ? ___ratelimit+0x2cd/0x522
[ 2478.605840]  oom_kill_process.cold+0x10/0xa69
[ 2478.610337]  ? lock_downgrade+0x740/0x740
[ 2478.614488]  out_of_memory+0x2dc/0x1190
[ 2478.618466]  ? oom_killer_disable+0x1c0/0x1c0
[ 2478.622964]  ? mutex_trylock+0x152/0x1a0
[ 2478.627028]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2478.631916]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2478.636780]  ? perf_trace_lock+0xf7/0x490
[ 2478.640933]  alloc_pages_vma+0xd2/0x6d0
[ 2478.644920]  wp_page_copy+0xfcf/0x1ba0
[ 2478.648811]  ? _vm_normal_page+0x162/0x3b0
[ 2478.653069]  ? tlb_flush_mmu_free+0x1a0/0x1a0
[ 2478.657563]  ? __lock_acquire+0x5fc/0x3f20
[ 2478.661801]  do_wp_page+0x245/0x1db0
[ 2478.665518]  ? __handle_mm_fault+0x129c/0x4620
[ 2478.670099]  ? finish_mkwrite_fault+0x5e0/0x5e0
[ 2478.674769]  ? perf_trace_lock+0xf7/0x490
[ 2478.678927]  __handle_mm_fault+0x234f/0x4620
[ 2478.683363]  ? vm_insert_page+0x7c0/0x7c0
[ 2478.687514]  ? perf_trace_lock_acquire+0x510/0x510
[ 2478.692458]  handle_mm_fault+0x306/0x7a0
[ 2478.696524]  __do_page_fault+0x578/0xb50
[ 2478.700589]  ? spurious_fault+0x640/0x640
[ 2478.704737]  ? do_page_fault+0x60/0x4f2
[ 2478.708713]  page_fault+0x25/0x50
[ 2478.712166] RIP: 0010:copy_user_enhanced_fast_string+0xe/0x20
[ 2478.718044] RSP: 0018:ffff888207e87b68 EFLAGS: 00010206
[ 2478.723433] RAX: ffffed100a4d8a00 RBX: 0000000000001000 RCX: 0000000000000500
[ 2478.730706] RDX: 0000000000001000 RSI: ffff8880526c4b00 RDI: 00000000200d4000
[ 2478.737976] RBP: 00000000200d3500 R08: 0000000000000000 R09: ffffed100a4d89ff
[ 2478.745245] R10: ffff8880526c4fff R11: 0000000000000000 R12: ffff8880526c4000
[ 2478.752514] R13: 00007ffffffff000 R14: 00000000200d4500 R15: ffff888207e87df0
[ 2478.759804]  copyout+0x99/0xc0
[ 2478.762999]  copy_page_to_iter+0x324/0xca0
[ 2478.767245]  pipe_to_user+0xa8/0x160
[ 2478.770961]  __splice_from_pipe+0x326/0x7a0
[ 2478.775285]  ? iter_to_pipe+0x500/0x500
[ 2478.779270]  vmsplice_to_user+0x190/0x1b0
[ 2478.783417]  ? __splice_from_pipe+0x7a0/0x7a0
[ 2478.787926]  ? perf_trace_lock_acquire+0x510/0x510
[ 2478.792866]  ? lock_downgrade+0x740/0x740
[ 2478.797017]  ? lock_acquire+0x170/0x3f0
[ 2478.800991]  ? lock_downgrade+0x740/0x740
[ 2478.805144]  ? __fget+0x225/0x360
[ 2478.808605]  SyS_vmsplice+0x12a/0x150
[ 2478.812403]  ? splice_from_pipe+0x120/0x120
[ 2478.816728]  do_syscall_64+0x1d5/0x640
[ 2478.820623]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2478.825809] RIP: 0033:0x45d5b9
[ 2478.828994] RSP: 002b:00007f2fd397dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000116
[ 2478.836708] RAX: ffffffffffffffda RBX: 00000000000366c0 RCX: 000000000045d5b9
[ 2478.843974] RDX: 0000000000000001 RSI: 0000000020000000 RDI: 0000000000000003
[ 2478.851241] RBP: 000000000118d0c8 R08: 0000000000000000 R09: 0000000000000000
[ 2478.858506] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118d08c
[ 2478.865774] R13: 00007ffd00e1dc0f R14: 00007f2fd397e9c0 R15: 000000000118d08c
[ 2480.250847] Mem-Info:
[ 2480.253412] active_anon:1215364 inactive_anon:28162 isolated_anon:0
[ 2480.253412]  active_file:568 inactive_file:630 isolated_file:14
[ 2480.253412]  unevictable:0 dirty:1138 writeback:2 unstable:0
[ 2480.253412]  slab_reclaimable:24382 slab_unreclaimable:146058
[ 2480.253412]  mapped:64685 shmem:38846 pagetables:60714 bounce:0
[ 2480.253412]  free:24578 free_pcp:380 free_cma:0
[ 2480.382186] Node 0 active_anon:1712196kB inactive_anon:66488kB active_file:1660kB inactive_file:1668kB unevictable:0kB isolated(anon):0kB isolated(file):464kB mapped:240752kB dirty:3292kB writeback:8kB shmem:82524kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 925696kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2480.544478] Node 1 active_anon:3149260kB inactive_anon:46160kB active_file:540kB inactive_file:692kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:17988kB dirty:1260kB writeback:0kB shmem:72860kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2480.590939] Node 0 DMA free:10380kB min:220kB low:272kB high:324kB active_anon:4688kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:20kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2480.702520] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2480.720434] Node 0 DMA32 free:35840kB min:36272kB low:45340kB high:54408kB active_anon:1707508kB inactive_anon:66488kB active_file:1676kB inactive_file:1288kB unevictable:0kB writepending:3300kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:12992kB pagetables:73088kB bounce:0kB free_pcp:48kB local_pcp:20kB free_cma:0kB
[ 2480.844912] lowmem_reserve[]: 0 0 0 0 0
[ 2480.853646] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2480.956186] lowmem_reserve[]: 0 0 0 0 0
[ 2480.969551] Node 1 Normal free:53348kB min:53612kB low:67012kB high:80412kB active_anon:3149312kB inactive_anon:46160kB active_file:700kB inactive_file:800kB unevictable:0kB writepending:1260kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:55840kB pagetables:169752kB bounce:0kB free_pcp:36kB local_pcp:4kB free_cma:0kB
[ 2481.044968] lowmem_reserve[]: 0 0 0 0 0
[ 2481.053715] Node 0 DMA: 3*4kB (UE) 14*8kB (UE) 5*16kB (UME) 6*32kB (UM) 4*64kB (UE) 2*128kB (ME) 3*256kB (UME) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10380kB
[ 2481.136599] Node 0 DMA32: 1098*4kB (UME) 2886*8kB (UM) 456*16kB (UME) 31*32kB (UM) 2*64kB (M) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 35896kB
[ 2481.185574] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2481.274350] Node 1 Normal: 793*4kB (UMEH) 658*8kB (UME) 33*16kB (UMEH) 780*32kB (UMEH) 185*64kB (UMEH) 24*128kB (UMH) 10*256kB (MEH) 4*512kB (ME) 2*1024kB (M) 0*2048kB 0*4096kB = 55492kB
[ 2481.383982] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2481.414261] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2481.422854] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2481.438569] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2481.447387] 40185 total pagecache pages
[ 2481.451371] 0 pages in swap cache
[ 2481.454892] Swap cache stats: add 0, delete 0, find 0/0
[ 2481.460313] Free swap  = 0kB
[ 2481.463345] Total swap = 0kB
[ 2481.466400] 1965979 pages RAM
[ 2481.469496] 0 pages HighMem/MovableOnly
[ 2481.473536] 339077 pages reserved
[ 2481.483645] 0 pages cma reserved
[ 2481.493758] Out of memory: Kill process 32464 (syz-executor.4) score 1007 or sacrifice child
[ 2481.535168] Killed process 32464 (syz-executor.4) total-vm:93676kB, anon-rss:16560kB, file-rss:34844kB, shmem-rss:0kB
[ 2481.613517] oom_reaper: reaped process 32464 (syz-executor.4), now anon-rss:0kB, file-rss:0kB, shmem-rss:0kB
[ 2482.076557] audit: type=1326 audit(1599896799.612:135240): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32474 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2482.129834] audit: type=1326 audit(1599896799.662:135241): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32476 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:46:40 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, 0x0, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:46:40 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:46:40 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2486.594701] audit: type=1326 audit(1599896804.132:135242): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32486 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2486.693170] audit: type=1326 audit(1599896804.222:135243): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32489 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2487.072811] systemd-journal invoked oom-killer: gfp_mask=0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null),  order=1, oom_score_adj=0
[ 2487.148306] systemd-journal cpuset=/ mems_allowed=0-1
[ 2487.153545] CPU: 0 PID: 3649 Comm: systemd-journal Not tainted 4.14.197-syzkaller #0
[ 2487.161442] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2487.170794] Call Trace:
[ 2487.173388]  dump_stack+0x1b2/0x283
[ 2487.177020]  dump_header+0x178/0x82f
[ 2487.180756]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2487.185877]  ? ___ratelimit+0x2cd/0x522
[ 2487.189853]  oom_kill_process.cold+0x10/0xa69
[ 2487.194345]  ? lock_downgrade+0x740/0x740
[ 2487.198488]  out_of_memory+0x2dc/0x1190
[ 2487.202462]  ? oom_killer_disable+0x1c0/0x1c0
[ 2487.206953]  ? mutex_trylock+0x152/0x1a0
[ 2487.211011]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2487.215869]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2487.220713]  ? check_preemption_disabled+0x35/0x240
[ 2487.225738]  ? cache_grow_begin+0x3f/0x420
[ 2487.229978]  cache_grow_begin+0x8f/0x420
[ 2487.234664]  ? mempolicy_slab_node+0x100/0x320
[ 2487.239246]  fallback_alloc+0x207/0x2c0
[ 2487.243226]  kmem_cache_alloc+0x1e5/0x3c0
[ 2487.247372]  getname_flags+0xc8/0x550
[ 2487.251175]  do_sys_open+0x1ce/0x410
[ 2487.254886]  ? filp_open+0x60/0x60
[ 2487.258427]  ? do_syscall_64+0x4c/0x640
[ 2487.262394]  ? do_sys_open+0x410/0x410
[ 2487.266278]  do_syscall_64+0x1d5/0x640
[ 2487.270167]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2487.275349] RIP: 0033:0x7f073e29685d
[ 2487.279052] RSP: 002b:00007ffed3654240 EFLAGS: 00000293 ORIG_RAX: 0000000000000002
[ 2487.286763] RAX: ffffffffffffffda RBX: 00007ffed3654550 RCX: 00007f073e29685d
[ 2487.294030] RDX: 00000000000001a0 RSI: 0000000000080042 RDI: 0000563a084bffc0
[ 2487.301296] RBP: 000000000000000d R08: 00000000000001e0 R09: 00000000ffffffff
[ 2487.308563] R10: 0000000000000069 R11: 0000000000000293 R12: 00000000ffffffff
[ 2487.315830] R13: 0000563a084bc060 R14: 00007ffed3654510 R15: 0000563a084ca3d0
[ 2487.513886] Mem-Info:
[ 2487.516375] active_anon:1215373 inactive_anon:28162 isolated_anon:0
[ 2487.516375]  active_file:232 inactive_file:481 isolated_file:101
[ 2487.516375]  unevictable:0 dirty:26 writeback:0 unstable:0
[ 2487.516375]  slab_reclaimable:24003 slab_unreclaimable:146767
[ 2487.516375]  mapped:65136 shmem:38846 pagetables:60763 bounce:0
[ 2487.516375]  free:24741 free_pcp:174 free_cma:0
[ 2487.609666] Node 0 active_anon:1714252kB inactive_anon:66488kB active_file:484kB inactive_file:516kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:241548kB dirty:36kB writeback:0kB shmem:82524kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 925696kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2487.709790] Node 1 active_anon:3147240kB inactive_anon:46160kB active_file:276kB inactive_file:128kB unevictable:0kB isolated(anon):0kB isolated(file):208kB mapped:18296kB dirty:68kB writeback:0kB shmem:72860kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2487.802189] Node 0 DMA free:10340kB min:220kB low:272kB high:324kB active_anon:4660kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:20kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2487.886840] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2487.891904] Node 0 DMA32 free:35492kB min:36272kB low:45340kB high:54408kB active_anon:1709592kB inactive_anon:66488kB active_file:788kB inactive_file:764kB unevictable:0kB writepending:36kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:12960kB pagetables:72964kB bounce:0kB free_pcp:720kB local_pcp:612kB free_cma:0kB
[ 2487.992347] lowmem_reserve[]: 0 0 0 0 0
[ 2488.002732] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2488.075611] lowmem_reserve[]: 0 0 0 0 0
[ 2488.093389] Node 1 Normal free:53832kB min:53612kB low:67012kB high:80412kB active_anon:3147256kB inactive_anon:46160kB active_file:184kB inactive_file:300kB unevictable:0kB writepending:16kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:55776kB pagetables:170068kB bounce:0kB free_pcp:908kB local_pcp:236kB free_cma:0kB
[ 2488.183299] lowmem_reserve[]: 0 0 0 0 0
[ 2488.199796] Node 0 DMA: 5*4kB (UM) 16*8kB (UME) 5*16kB (UME) 6*32kB (UM) 4*64kB (UE) 2*128kB (ME) 3*256kB (UME) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10404kB
[ 2488.248603] Node 0 DMA32: 907*4kB (UME) 3003*8kB (UME) 480*16kB (UME) 28*32kB (UM) 3*64kB (M) 1*128kB (M) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 36548kB
[ 2488.268990] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2488.280060] Node 1 Normal: 646*4kB (UEH) 290*8kB (UME) 60*16kB (UMEH) 811*32kB (UMEH) 191*64kB (UMEH) 25*128kB (UMH) 10*256kB (MEH) 4*512kB (ME) 2*1024kB (M) 0*2048kB 0*4096kB = 53896kB
[ 2488.301732] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2488.310828] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2488.325101] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2488.351201] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2488.380347] 39054 total pagecache pages
[ 2488.384433] 0 pages in swap cache
[ 2488.387877] Swap cache stats: add 0, delete 0, find 0/0
[ 2488.403435] Free swap  = 0kB
[ 2488.406581] Total swap = 0kB
[ 2488.409596] 1965979 pages RAM
[ 2488.412686] 0 pages HighMem/MovableOnly
[ 2488.453833] 339077 pages reserved
[ 2488.457304] 0 pages cma reserved
[ 2488.460662] Out of memory: Kill process 20651 (syz-executor.0) score 1007 or sacrifice child
[ 2488.524456] Killed process 20651 (syz-executor.0) total-vm:93808kB, anon-rss:16572kB, file-rss:34816kB, shmem-rss:0kB
07:46:40 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x0, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:46:46 executing program 2:
socket$inet_udp(0x2, 0x2, 0x0)
clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0xa, [@struct={0x8, 0x1, 0x0, 0xf, 0x0, 0xa, [{0x1, 0x0, 0x3}]}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e]}}, &(0x7f0000000040)=""/249, 0x3a, 0xf9, 0x8}, 0x20)
ioctl$BTRFS_IOC_DEFRAG(0xffffffffffffffff, 0x50009402, 0x0)

07:46:46 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2488.681876] oom_reaper: reaped process 20651 (syz-executor.0), now anon-rss:0kB, file-rss:0kB, shmem-rss:0kB
07:46:46 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, 0x0, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2488.816240] audit: type=1326 audit(1599896806.352:135244): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32497 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2488.935560] audit: type=1326 audit(1599896806.402:135245): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32500 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2489.210679] audit: type=1326 audit(1599896806.412:135246): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32498 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:46:47 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x0, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:46:47 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:46:47 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, 0x0, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:46:47 executing program 2:

[ 2490.399119] audit: type=1326 audit(1599896807.932:135247): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32516 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:46:48 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, 0x0, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2490.592918] audit: type=1326 audit(1599896808.122:135248): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32524 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2491.275067] systemd-udevd invoked oom-killer: gfp_mask=0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null),  order=1, oom_score_adj=-1000
[ 2491.343889] systemd-udevd cpuset=/ mems_allowed=0-1
[ 2491.403688] CPU: 1 PID: 3657 Comm: systemd-udevd Not tainted 4.14.197-syzkaller #0
[ 2491.412628] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2491.421976] Call Trace:
[ 2491.424563]  dump_stack+0x1b2/0x283
[ 2491.428221]  dump_header+0x178/0x82f
[ 2491.431943]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2491.437091]  ? ___ratelimit+0x2cd/0x522
[ 2491.441063]  oom_kill_process.cold+0x10/0xa69
[ 2491.445555]  ? lock_downgrade+0x740/0x740
[ 2491.449696]  out_of_memory+0x2dc/0x1190
[ 2491.453668]  ? oom_killer_disable+0x1c0/0x1c0
[ 2491.458151]  ? mutex_trylock+0x152/0x1a0
[ 2491.462201]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2491.467046]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2491.471880]  ? check_preemption_disabled+0x35/0x240
[ 2491.476896]  ? cache_grow_begin+0x3f/0x420
[ 2491.481119]  cache_grow_begin+0x8f/0x420
[ 2491.485179]  ? mempolicy_slab_node+0x100/0x320
[ 2491.489752]  fallback_alloc+0x207/0x2c0
[ 2491.493725]  kmem_cache_alloc+0x1e5/0x3c0
[ 2491.497880]  getname_flags+0xc8/0x550
[ 2491.501676]  user_path_at_empty+0x2a/0x50
[ 2491.505823]  vfs_statx+0xd1/0x180
[ 2491.509266]  ? cp_compat_stat+0x890/0x890
[ 2491.513424]  SyS_newstat+0x83/0xe0
[ 2491.516970]  ? SyS_fstat+0xd0/0xd0
[ 2491.520528]  ? __secure_computing+0xe5/0x3e0
[ 2491.524928]  ? syscall_trace_enter+0x486/0xc20
[ 2491.529499]  ? syscall_slow_exit_work+0x560/0x560
[ 2491.534345]  ? do_syscall_64+0x4c/0x640
[ 2491.538308]  ? SyS_fstat+0xd0/0xd0
[ 2491.541838]  do_syscall_64+0x1d5/0x640
[ 2491.545725]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2491.550907] RIP: 0033:0x7f5e75139295
[ 2491.554689] RSP: 002b:00007fff9061c1c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000004
[ 2491.562388] RAX: ffffffffffffffda RBX: 000056284c753520 RCX: 00007f5e75139295
[ 2491.569651] RDX: 00007fff9061c1e0 RSI: 00007fff9061c1e0 RDI: 000056284c732f02
[ 2491.576922] RBP: 000056284dcbc918 R08: c0fffe8100000000 R09: 0000000000000009
[ 2491.584183] R10: 6a2942aa9b539643 R11: 0000000000000246 R12: 00007fff9061c1e0
[ 2491.591454] R13: 0000000000000001 R14: 00007fff9061c238 R15: 0000000000000000
[ 2492.277044] Mem-Info:
[ 2492.279497] active_anon:1218776 inactive_anon:28162 isolated_anon:0
[ 2492.279497]  active_file:480 inactive_file:537 isolated_file:79
[ 2492.279497]  unevictable:0 dirty:770 writeback:1 unstable:0
[ 2492.279497]  slab_reclaimable:24097 slab_unreclaimable:146786
[ 2492.279497]  mapped:64879 shmem:38846 pagetables:60742 bounce:0
[ 2492.279497]  free:21149 free_pcp:1 free_cma:0
[ 2492.468141] Node 0 active_anon:1724308kB inactive_anon:66488kB active_file:36kB inactive_file:92kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:240408kB dirty:32kB writeback:0kB shmem:82524kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 925696kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2492.551767] Node 1 active_anon:3150796kB inactive_anon:46160kB active_file:1792kB inactive_file:1832kB unevictable:0kB isolated(anon):0kB isolated(file):184kB mapped:18708kB dirty:3048kB writeback:4kB shmem:72860kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2492.663518] Node 0 DMA free:10340kB min:220kB low:272kB high:324kB active_anon:4692kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:20kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2492.690627] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2492.696099] Node 0 DMA32 free:27548kB min:36272kB low:45340kB high:54408kB active_anon:1719616kB inactive_anon:66488kB active_file:36kB inactive_file:92kB unevictable:0kB writepending:32kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:12992kB pagetables:72872kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2492.730158] lowmem_reserve[]: 0 0 0 0 0
[ 2492.740084] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2492.771172] lowmem_reserve[]: 0 0 0 0 0
[ 2492.775445] Node 1 Normal free:48220kB min:53612kB low:67012kB high:80412kB active_anon:3150796kB inactive_anon:46160kB active_file:1840kB inactive_file:1336kB unevictable:0kB writepending:3052kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:55680kB pagetables:170076kB bounce:0kB free_pcp:56kB local_pcp:8kB free_cma:0kB
[ 2492.805655] lowmem_reserve[]: 0 0 0 0 0
[ 2492.823498] Node 0 DMA: 5*4kB (UM) 14*8kB (UE) 4*16kB (UE) 5*32kB (UM) 4*64kB (UE) 2*128kB (ME) 3*256kB (UME) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10340kB
[ 2492.863506] Node 0 DMA32: 121*4kB (UME) 2395*8kB (UME) 473*16kB (UE) 14*32kB (UE) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 27660kB
[ 2492.916090] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2492.967432] Node 1 Normal: 1207*4kB (UMEH) 492*8kB (UME) 129*16kB (UME) 319*32kB (UMEH) 240*64kB (UMEH) 34*128kB (UMH) 11*256kB (MEH) 4*512kB (ME) 3*1024kB (M) 0*2048kB 0*4096kB = 48684kB
[ 2493.077518] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2493.113495] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2493.162576] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2493.194182] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2493.220175] 39636 total pagecache pages
[ 2493.226670] 0 pages in swap cache
[ 2493.231078] Swap cache stats: add 0, delete 0, find 0/0
[ 2493.263365] Free swap  = 0kB
[ 2493.283481] Total swap = 0kB
[ 2493.291426] 1965979 pages RAM
[ 2493.308333] 0 pages HighMem/MovableOnly
[ 2493.358019] 339077 pages reserved
[ 2493.361494] 0 pages cma reserved
[ 2493.423492] Out of memory: Kill process 32524 (syz-executor.4) score 1007 or sacrifice child
[ 2493.650271] syz-fuzzer invoked oom-killer: gfp_mask=0x14201ca(GFP_HIGHUSER_MOVABLE|__GFP_COLD), nodemask=(null),  order=0, oom_score_adj=0
[ 2493.813446] syz-fuzzer cpuset=/ mems_allowed=0-1
[ 2493.818273] CPU: 1 PID: 6361 Comm: syz-fuzzer Not tainted 4.14.197-syzkaller #0
[ 2493.825721] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2493.835097] Call Trace:
[ 2493.837688]  dump_stack+0x1b2/0x283
[ 2493.841317]  dump_header+0x178/0x82f
[ 2493.845032]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2493.850142]  ? ___ratelimit+0x2cd/0x522
[ 2493.854130]  oom_kill_process.cold+0x10/0xa69
[ 2493.858628]  ? lock_downgrade+0x740/0x740
[ 2493.862782]  out_of_memory+0x2dc/0x1190
[ 2493.866760]  ? oom_killer_disable+0x1c0/0x1c0
[ 2493.871251]  ? mutex_trylock+0x152/0x1a0
[ 2493.875310]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2493.880169]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2493.885033]  alloc_pages_current+0x155/0x260
[ 2493.889448]  filemap_fault+0xe12/0x18d0
[ 2493.893432]  ext4_filemap_fault+0x84/0xb0
[ 2493.897578]  __do_fault+0xfa/0x380
[ 2493.901112]  __handle_mm_fault+0x2497/0x4620
[ 2493.905519]  ? vm_insert_page+0x7c0/0x7c0
[ 2493.909660]  ? __fsnotify_inode_delete+0x20/0x20
[ 2493.914414]  ? __fsnotify_update_child_dentry_flags.part.0+0x2e0/0x2e0
[ 2493.921100]  handle_mm_fault+0x306/0x7a0
[ 2493.925159]  __do_page_fault+0x578/0xb50
[ 2493.929219]  ? spurious_fault+0x640/0x640
[ 2493.933359]  ? do_page_fault+0x60/0x4f2
[ 2493.937329]  ? page_fault+0x2f/0x50
[ 2493.940970]  page_fault+0x45/0x50
[ 2493.944413] RIP: 0000:          (null)
[ 2493.948317] RSP: b4a270:000000c0001c5f50 EFLAGS: c010219a40
[ 2495.147843] Mem-Info:
[ 2495.237399] active_anon:1218776 inactive_anon:28162 isolated_anon:0
[ 2495.237399]  active_file:338 inactive_file:394 isolated_file:0
[ 2495.237399]  unevictable:0 dirty:720 writeback:0 unstable:0
[ 2495.237399]  slab_reclaimable:24097 slab_unreclaimable:146778
[ 2495.237399]  mapped:64556 shmem:38846 pagetables:60742 bounce:0
[ 2495.237399]  free:21717 free_pcp:1 free_cma:0
[ 2495.577165] Node 0 active_anon:1724308kB inactive_anon:66488kB active_file:0kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:240308kB dirty:0kB writeback:0kB shmem:82524kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 925696kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2495.843505] Node 1 active_anon:3150796kB inactive_anon:46160kB active_file:1352kB inactive_file:1572kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:17916kB dirty:2880kB writeback:0kB shmem:72860kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2496.117135] Node 0 DMA free:10340kB min:220kB low:272kB high:324kB active_anon:4692kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:20kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2496.323280] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2496.328375] Node 0 DMA32 free:27712kB min:36272kB low:45340kB high:54408kB active_anon:1719616kB inactive_anon:66488kB active_file:4kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:12992kB pagetables:72872kB bounce:0kB free_pcp:36kB local_pcp:4kB free_cma:0kB
[ 2496.656801] lowmem_reserve[]: 0 0 0 0 0
[ 2496.660838] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2496.938953] lowmem_reserve[]: 0 0 0 0 0
[ 2496.943007] Node 1 Normal free:48824kB min:53612kB low:67012kB high:80412kB active_anon:3150796kB inactive_anon:46160kB active_file:1352kB inactive_file:1628kB unevictable:0kB writepending:2880kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:55680kB pagetables:170076kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2497.273225] lowmem_reserve[]: 0 0 0 0 0
[ 2497.277274] Node 0 DMA: 5*4kB (UM) 14*8kB (UE) 4*16kB (UE) 5*32kB (UM) 4*64kB (UE) 2*128kB (ME) 3*256kB (UME) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10340kB
[ 2497.473223] Node 0 DMA32: 137*4kB (UME) 2401*8kB (UME) 474*16kB (UME) 14*32kB (UE) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 27788kB
[ 2497.603204] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2497.693259] Node 1 Normal: 1208*4kB (UMEH) 487*8kB (UME) 128*16kB (UME) 323*32kB (UMEH) 239*64kB (UMEH) 35*128kB (UMH) 11*256kB (MEH) 4*512kB (ME) 3*1024kB (M) 0*2048kB 0*4096kB = 48824kB
[ 2497.893708] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2497.902609] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2498.028391] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2498.113199] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2498.121808] 39592 total pagecache pages
[ 2498.243172] 0 pages in swap cache
[ 2498.246649] Swap cache stats: add 0, delete 0, find 0/0
[ 2498.252007] Free swap  = 0kB
[ 2498.348093] Total swap = 0kB
[ 2498.351148] 1965979 pages RAM
[ 2498.418332] 0 pages HighMem/MovableOnly
[ 2498.422393] 339077 pages reserved
[ 2498.475372] 0 pages cma reserved
[ 2498.478793] Out of memory: Kill process 21922 (syz-executor.0) score 1007 or sacrifice child
[ 2498.593173] Killed process 21922 (syz-executor.0) total-vm:93808kB, anon-rss:16572kB, file-rss:34816kB, shmem-rss:0kB
07:46:56 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:46:56 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x0, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:46:56 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, 0x0, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

[ 2499.850174] audit: type=1326 audit(1599896817.383:135249): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32536 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2500.207392] audit: type=1326 audit(1599896817.423:135250): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32539 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:46:57 executing program 2:

[ 2500.308658] syz-executor.1 invoked oom-killer: gfp_mask=0x15080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null),  order=3, oom_score_adj=1000
07:46:57 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:46:57 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, 0x0, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

[ 2500.459054] audit: type=1326 audit(1599896817.433:135251): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32538 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2500.481764] syz-executor.1 cpuset=/ mems_allowed=0-1
[ 2500.523867] CPU: 0 PID: 32533 Comm: syz-executor.1 Not tainted 4.14.197-syzkaller #0
[ 2500.531796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2500.541161] Call Trace:
[ 2500.543790]  dump_stack+0x1b2/0x283
[ 2500.547426]  dump_header+0x178/0x82f
[ 2500.551665]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2500.556762]  ? ___ratelimit+0x2cd/0x522
[ 2500.560737]  oom_kill_process.cold+0x10/0xa69
[ 2500.565231]  ? lock_downgrade+0x740/0x740
[ 2500.569384]  out_of_memory+0x2dc/0x1190
[ 2500.573360]  ? oom_killer_disable+0x1c0/0x1c0
[ 2500.577850]  ? mutex_trylock+0x152/0x1a0
[ 2500.581910]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2500.586770]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2500.591617]  ? fs_reclaim_release+0xd0/0x110
[ 2500.596036]  ? kmem_cache_alloc_node+0x38b/0x410
[ 2500.600796]  copy_process.part.0+0x26d/0x6f00
[ 2500.605297]  ? __handle_mm_fault+0x2095/0x4620
[ 2500.609903]  ? lock_downgrade+0x740/0x740
[ 2500.614066]  ? __lru_cache_add+0x178/0x250
[ 2500.618300]  ? do_raw_spin_unlock+0x164/0x220
[ 2500.622793]  ? check_preemption_disabled+0x35/0x240
[ 2500.627819]  ? __cleanup_sighand+0x40/0x40
[ 2500.632063]  ? perf_trace_lock_acquire+0x510/0x510
[ 2500.636995]  ? selinux_file_mprotect+0xf3/0x5c0
[ 2500.641664]  _do_fork+0x184/0xc80
[ 2500.645116]  ? fork_idle+0x270/0x270
[ 2500.648825]  ? up_read+0x17/0x30
[ 2500.652185]  ? __do_page_fault+0x19a/0xb50
[ 2500.656415]  ? do_syscall_64+0x4c/0x640
[ 2500.660381]  ? sys_vfork+0x20/0x20
[ 2500.663921]  do_syscall_64+0x1d5/0x640
[ 2500.667812]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2500.673001] RIP: 0033:0x45ff89
[ 2500.676183] RSP: 002b:00007ffe02e57648 EFLAGS: 00000202 ORIG_RAX: 0000000000000038
[ 2500.683884] RAX: ffffffffffffffda RBX: 00007f11c392f700 RCX: 000000000045ff89
[ 2500.691142] RDX: 00007f11c392f9d0 RSI: 00007f11c392edb0 RDI: 00000000003d0f00
[ 2500.698400] RBP: 00007ffe02e57870 R08: 00007f11c392f700 R09: 00007f11c392f700
[ 2500.705655] R10: 00007f11c392f9d0 R11: 0000000000000202 R12: 0000000000000000
[ 2500.712906] R13: 00007ffe02e576ff R14: 00007f11c392f9c0 R15: 000000000118cfec
[ 2500.780175] Mem-Info:
[ 2500.782836] active_anon:1214806 inactive_anon:28161 isolated_anon:0
[ 2500.782836]  active_file:1115 inactive_file:1119 isolated_file:178
[ 2500.782836]  unevictable:0 dirty:15 writeback:0 unstable:0
[ 2500.782836]  slab_reclaimable:24039 slab_unreclaimable:147059
[ 2500.782836]  mapped:66482 shmem:38846 pagetables:60842 bounce:0
[ 2500.782836]  free:23397 free_pcp:120 free_cma:0
[ 2500.807045] audit: type=1326 audit(1599896817.463:135252): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32533 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2500.822889] Node 0 active_anon:1724356kB inactive_anon:66480kB active_file:0kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:240316kB dirty:0kB writeback:0kB shmem:82520kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 925696kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2500.878578] Node 1 active_anon:3134868kB inactive_anon:46164kB active_file:4432kB inactive_file:4472kB unevictable:0kB isolated(anon):0kB isolated(file):712kB mapped:25612kB dirty:60kB writeback:0kB shmem:72864kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2501.097044] Node 0 DMA free:10340kB min:220kB low:272kB high:324kB active_anon:4692kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:20kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2501.342119] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2501.432960] Node 0 DMA32 free:27180kB min:36272kB low:45340kB high:54408kB active_anon:1719564kB inactive_anon:66480kB active_file:12kB inactive_file:204kB unevictable:0kB writepending:300kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:13056kB pagetables:72900kB bounce:0kB free_pcp:236kB local_pcp:236kB free_cma:0kB
[ 2501.532636] lowmem_reserve[]: 0 0 0 0 0
[ 2501.542161] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2501.639196] audit: type=1326 audit(1599896819.173:135254): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32534 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2501.741752] lowmem_reserve[]: 0 0 0 0 0
[ 2501.759789] Node 1 Normal free:53340kB min:53612kB low:67012kB high:80412kB active_anon:3135012kB inactive_anon:46168kB active_file:2888kB inactive_file:6980kB unevictable:0kB writepending:212kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:55840kB pagetables:170444kB bounce:0kB free_pcp:736kB local_pcp:524kB free_cma:0kB
[ 2502.011195] lowmem_reserve[]: 0 0 0 0 0
[ 2502.038523] Node 0 DMA: 5*4kB (UM) 14*8kB (UE) 4*16kB (UE) 5*32kB (UM) 4*64kB (UE) 2*128kB (ME) 3*256kB (UME) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10340kB
[ 2502.178971] Node 0 DMA32: 134*4kB (UME) 2408*8kB (UME) 468*16kB (UME) 12*32kB (UE) 1*64kB (M) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 27736kB
07:46:59 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x0, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2502.304145] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2502.367743] Node 1 Normal: 505*4kB (UMEH) 276*8kB (UMEH) 133*16kB (UMEH) 318*32kB (UMEH) 293*64kB (UME) 58*128kB (UMH) 17*256kB (MEH) 6*512kB (ME) 4*1024kB (M) 0*2048kB 0*4096kB = 54228kB
[ 2502.475652] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2502.531640] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2502.587583] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2502.644759] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2502.704886] 40693 total pagecache pages
[ 2502.709859] audit: type=1326 audit(1599896820.243:135255): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32563 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2502.753882] 0 pages in swap cache
[ 2502.775820] Swap cache stats: add 0, delete 0, find 0/0
[ 2502.835066] Free swap  = 0kB
[ 2502.932404] Total swap = 0kB
[ 2503.071567] 1965979 pages RAM
[ 2503.133140] 0 pages HighMem/MovableOnly
[ 2503.176231] 339077 pages reserved
[ 2503.487121] 0 pages cma reserved
[ 2503.490503] Out of memory: Kill process 23228 (syz-executor.0) score 1007 or sacrifice child
[ 2503.547831] Killed process 23228 (syz-executor.0) total-vm:93808kB, anon-rss:16572kB, file-rss:34816kB, shmem-rss:0kB
[ 2503.772606] oom_reaper: reaped process 23228 (syz-executor.0), now anon-rss:0kB, file-rss:0kB, shmem-rss:0kB
[ 2503.961853] audit: type=1326 audit(1599896818.773:135253): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32556 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:47:01 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, 0x0, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:47:01 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, 0x0, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:47:01 executing program 2:

[ 2504.162665] audit: type=1326 audit(1599896821.693:135256): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32567 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:47:01 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r2 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42500)
write$cgroup_type(r2, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:47:01 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, 0x0, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2504.653810] audit: type=1326 audit(1599896822.193:135257): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32578 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2505.528246] audit: type=1326 audit(1599896823.063:135258): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32576 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:47:03 executing program 2:

07:47:05 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, 0x0, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:47:05 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x0, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

[ 2507.453636] audit: type=1326 audit(1599896824.983:135259): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32584 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:47:05 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r2 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42500)
write$cgroup_type(r2, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:47:05 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2508.875232] audit: type=1326 audit(1599896826.403:135260): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32595 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2509.032601] audit: type=1326 audit(1599896826.423:135261): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32594 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2509.687231] audit: type=1326 audit(1599896827.213:135262): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32598 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:47:06 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x0, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:47:07 executing program 2:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:47:08 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r2 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42500)
write$cgroup_type(r2, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:47:08 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:47:08 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x0, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:47:09 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x0, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

[ 2512.271084] audit: type=1326 audit(1599896829.793:135263): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32612 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2512.788200] audit: type=1326 audit(1599896830.313:135264): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32617 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:47:10 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x0, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:47:10 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x0, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2513.639602] audit: type=1326 audit(1599896831.164:135265): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32616 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2513.750575] audit: type=1326 audit(1599896831.194:135266): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32619 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2514.357523] syz-executor.3 invoked oom-killer: gfp_mask=0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null),  order=1, oom_score_adj=0
[ 2514.468665] syz-executor.3 cpuset=/ mems_allowed=0-1
[ 2514.494905] CPU: 0 PID: 6372 Comm: syz-executor.3 Not tainted 4.14.197-syzkaller #0
[ 2514.502704] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2514.512054] Call Trace:
[ 2514.514638]  dump_stack+0x1b2/0x283
[ 2514.518262]  dump_header+0x178/0x82f
[ 2514.521970]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2514.527105]  ? ___ratelimit+0x2cd/0x522
[ 2514.531180]  oom_kill_process.cold+0x10/0xa69
[ 2514.535688]  ? lock_downgrade+0x740/0x740
[ 2514.539835]  out_of_memory+0x2dc/0x1190
[ 2514.543805]  ? oom_killer_disable+0x1c0/0x1c0
[ 2514.548294]  ? mutex_trylock+0x152/0x1a0
[ 2514.552367]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2514.557224]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2514.562075]  ? check_preemption_disabled+0x35/0x240
[ 2514.567098]  ? cache_grow_begin+0x3f/0x420
[ 2514.571344]  cache_grow_begin+0x8f/0x420
[ 2514.575403]  ? mempolicy_slab_node+0x100/0x320
[ 2514.579997]  fallback_alloc+0x207/0x2c0
[ 2514.583973]  kmem_cache_alloc+0x1e5/0x3c0
[ 2514.588121]  getname_flags+0xc8/0x550
[ 2514.591921]  user_path_mountpoint_at+0x23/0x40
[ 2514.596501]  SyS_umount+0x125/0xeb0
[ 2514.600124]  ? lock_downgrade+0x740/0x740
[ 2514.604274]  ? __detach_mounts+0x400/0x400
[ 2514.608503]  ? up_read+0x17/0x30
[ 2514.611861]  ? __do_page_fault+0x19a/0xb50
[ 2514.616094]  ? do_syscall_64+0x4c/0x640
[ 2514.620067]  ? __detach_mounts+0x400/0x400
[ 2514.624294]  do_syscall_64+0x1d5/0x640
[ 2514.628178]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2514.633358] RIP: 0033:0x45ffe7
[ 2514.644457] RSP: 002b:00007ffe0a0f4478 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 2514.652154] RAX: ffffffffffffffda RBX: 0000000000265877 RCX: 000000000045ffe7
[ 2514.659410] RDX: 0000000000403148 RSI: 0000000000000002 RDI: 00007ffe0a0f4520
[ 2514.666671] RBP: 000000000000184d R08: 0000000000000000 R09: 000000000000000d
[ 2514.673925] R10: 0000000000000006 R11: 0000000000000246 R12: 00007ffe0a0f55b0
[ 2514.681180] R13: 0000000003663a60 R14: 0000000000000000 R15: 00007ffe0a0f55b0
[ 2515.398408] Mem-Info:
[ 2515.400864] active_anon:1218867 inactive_anon:28162 isolated_anon:0
[ 2515.400864]  active_file:424 inactive_file:433 isolated_file:32
[ 2515.400864]  unevictable:0 dirty:724 writeback:3 unstable:0
[ 2515.400864]  slab_reclaimable:23893 slab_unreclaimable:147561
[ 2515.400864]  mapped:64794 shmem:38846 pagetables:60997 bounce:0
[ 2515.400864]  free:20467 free_pcp:55 free_cma:0
[ 2515.562263] Node 0 active_anon:1725364kB inactive_anon:66476kB active_file:4kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:240320kB dirty:4kB writeback:0kB shmem:82512kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 925696kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2515.650245] Node 1 active_anon:3150104kB inactive_anon:46172kB active_file:1528kB inactive_file:1364kB unevictable:0kB isolated(anon):0kB isolated(file):256kB mapped:18356kB dirty:2892kB writeback:12kB shmem:72872kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2515.757682] Node 0 DMA free:10360kB min:220kB low:272kB high:324kB active_anon:4712kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:20kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2516.027417] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2516.057252] Node 0 DMA32 free:26896kB min:36272kB low:45340kB high:54408kB active_anon:1720652kB inactive_anon:66476kB active_file:4kB inactive_file:4kB unevictable:0kB writepending:0kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:13152kB pagetables:72928kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2516.335972] lowmem_reserve[]: 0 0 0 0 0
[ 2516.340009] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2516.549731] lowmem_reserve[]: 0 0 0 0 0
[ 2516.572035] Node 1 Normal free:45720kB min:53612kB low:67012kB high:80412kB active_anon:3150104kB inactive_anon:46172kB active_file:1420kB inactive_file:1428kB unevictable:0kB writepending:2748kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:55776kB pagetables:171040kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2516.692003] lowmem_reserve[]: 0 0 0 0 0
[ 2516.696037] Node 0 DMA: 2*4kB (U) 16*8kB (UME) 5*16kB (UME) 5*32kB (U) 4*64kB (UE) 2*128kB (ME) 3*256kB (UME) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10360kB
[ 2516.886946] Node 0 DMA32: 48*4kB (UME) 2359*8kB (UME) 458*16kB (UME) 9*32kB (UME) 2*64kB (M) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 26808kB
[ 2517.017097] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2517.105867] Node 1 Normal: 1337*4kB (UMEH) 307*8kB (UMEH) 60*16kB (UMEH) 15*32kB (UMEH) 257*64kB (UMEH) 61*128kB (UMH) 18*256kB (ME) 7*512kB (ME) 4*1024kB (M) 0*2048kB 0*4096kB = 45788kB
[ 2517.265363] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2517.353899] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2517.439595] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2517.498994] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2517.584806] 39543 total pagecache pages
[ 2517.589172] 0 pages in swap cache
[ 2517.627784] Swap cache stats: add 0, delete 0, find 0/0
[ 2517.669992] Free swap  = 0kB
[ 2517.683877] Total swap = 0kB
[ 2517.687910] 1965979 pages RAM
[ 2517.725581] 0 pages HighMem/MovableOnly
[ 2517.729577] 339077 pages reserved
[ 2517.787539] 0 pages cma reserved
[ 2517.790939] Out of memory: Kill process 32572 (syz-executor.4) score 1007 or sacrifice child
[ 2517.897865] Killed process 32572 (syz-executor.4) total-vm:93676kB, anon-rss:16560kB, file-rss:34816kB, shmem-rss:0kB
[ 2518.114817] oom_reaper: reaped process 32572 (syz-executor.4), now anon-rss:0kB, file-rss:0kB, shmem-rss:0kB
[ 2518.700768] audit: type=1326 audit(1599896836.224:135267): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32641 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2518.759413] audit: type=1326 audit(1599896836.254:135268): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32640 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:47:16 executing program 2:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:47:17 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x0, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:47:17 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:47:18 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:47:18 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x0, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:47:18 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2521.514369] audit: type=1326 audit(1599896839.044:135269): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32655 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2521.559839] audit: type=1326 audit(1599896839.084:135270): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32657 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2522.812572] systemd-journal invoked oom-killer: gfp_mask=0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null),  order=1, oom_score_adj=0
[ 2522.929214] systemd-journal cpuset=/ mems_allowed=0-1
[ 2522.978225] CPU: 0 PID: 3649 Comm: systemd-journal Not tainted 4.14.197-syzkaller #0
[ 2522.986156] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2522.995533] Call Trace:
[ 2522.998125]  dump_stack+0x1b2/0x283
[ 2523.001755]  dump_header+0x178/0x82f
[ 2523.005479]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2523.010581]  ? ___ratelimit+0x2cd/0x522
[ 2523.014578]  oom_kill_process.cold+0x10/0xa69
[ 2523.019078]  ? lock_downgrade+0x740/0x740
[ 2523.023322]  out_of_memory+0x2dc/0x1190
[ 2523.027314]  ? oom_killer_disable+0x1c0/0x1c0
[ 2523.031842]  ? mutex_trylock+0x152/0x1a0
[ 2523.036004]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2523.040869]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2523.045725]  ? check_preemption_disabled+0x35/0x240
[ 2523.050763]  ? cache_grow_begin+0x3f/0x420
[ 2523.055012]  cache_grow_begin+0x8f/0x420
[ 2523.059192]  ? mempolicy_slab_node+0x100/0x320
[ 2523.063780]  fallback_alloc+0x207/0x2c0
[ 2523.067764]  kmem_cache_alloc+0x1e5/0x3c0
[ 2523.071909]  getname_flags+0xc8/0x550
[ 2523.075708]  do_sys_open+0x1ce/0x410
[ 2523.079412]  ? filp_open+0x60/0x60
[ 2523.083037]  ? do_syscall_64+0x4c/0x640
[ 2523.087006]  ? do_sys_open+0x410/0x410
[ 2523.090891]  do_syscall_64+0x1d5/0x640
[ 2523.094797]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2523.100005] RIP: 0033:0x7f073e29685d
[ 2523.103713] RSP: 002b:00007ffed36540f0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002
[ 2523.111422] RAX: ffffffffffffffda RBX: 00007ffed3654400 RCX: 00007f073e29685d
[ 2523.118696] RDX: 00000000000001a0 RSI: 0000000000080042 RDI: 0000563a084bffc0
[ 2523.125985] RBP: 000000000000000d R08: 000000000000ffc0 R09: 00000000ffffffff
[ 2523.133339] R10: 0000000000000069 R11: 0000000000000293 R12: 00000000ffffffff
[ 2523.140609] R13: 0000563a084bc060 R14: 00007ffed36543c0 R15: 0000563a084ca3d0
[ 2523.779797] Mem-Info:
[ 2523.792468] active_anon:1219679 inactive_anon:28162 isolated_anon:0
[ 2523.792468]  active_file:460 inactive_file:460 isolated_file:59
[ 2523.792468]  unevictable:0 dirty:876 writeback:0 unstable:0
[ 2523.792468]  slab_reclaimable:23841 slab_unreclaimable:147006
[ 2523.792468]  mapped:64672 shmem:38846 pagetables:61145 bounce:0
[ 2523.792468]  free:19825 free_pcp:4 free_cma:0
[ 2523.887126] Node 0 active_anon:1724944kB inactive_anon:66476kB active_file:128kB inactive_file:112kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:240328kB dirty:136kB writeback:0kB shmem:82512kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 925696kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2523.950951] Node 1 active_anon:3153772kB inactive_anon:46172kB active_file:1712kB inactive_file:1652kB unevictable:0kB isolated(anon):0kB isolated(file):292kB mapped:18360kB dirty:3368kB writeback:4kB shmem:72872kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2524.077696] Node 0 DMA free:10396kB min:220kB low:272kB high:324kB active_anon:4692kB inactive_anon:0kB active_file:16kB inactive_file:8kB unevictable:0kB writepending:24kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:20kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2524.165077] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2524.176174] Node 0 DMA32 free:27324kB min:36272kB low:45340kB high:54408kB active_anon:1720252kB inactive_anon:66476kB active_file:48kB inactive_file:60kB unevictable:0kB writepending:104kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:13152kB pagetables:72932kB bounce:0kB free_pcp:16kB local_pcp:16kB free_cma:0kB
[ 2524.245125] lowmem_reserve[]: 0 0 0 0 0
[ 2524.258572] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2524.454927] lowmem_reserve[]: 0 0 0 0 0
[ 2524.458973] Node 1 Normal free:42156kB min:53612kB low:67012kB high:80412kB active_anon:3153772kB inactive_anon:46172kB active_file:2232kB inactive_file:1728kB unevictable:0kB writepending:3364kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:56096kB pagetables:171628kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2524.609456] lowmem_reserve[]: 0 0 0 0 0
[ 2524.671209] Node 0 DMA: 3*4kB (UMH) 12*8kB (UEH) 5*16kB (UME) 7*32kB (UH) 4*64kB (UEH) 2*128kB (ME) 3*256kB (MEH) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10396kB
[ 2524.703288] Node 0 DMA32: 125*4kB (UME) 2381*8kB (UME) 458*16kB (UME) 9*32kB (UME) 1*64kB (M) 1*128kB (M) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 27356kB
[ 2524.882234] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2525.035407] Node 1 Normal: 546*4kB (UMEH) 507*8kB (UMEH) 35*16kB (UME) 5*32kB (UE) 240*64kB (UME) 62*128kB (UMH) 18*256kB (ME) 7*512kB (ME) 4*1024kB (M) 0*2048kB 0*4096kB = 42544kB
[ 2525.191499] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2525.200407] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2525.441456] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2525.450359] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2525.611429] 39742 total pagecache pages
[ 2525.615482] 0 pages in swap cache
[ 2525.618931] Swap cache stats: add 0, delete 0, find 0/0
[ 2525.781427] Free swap  = 0kB
[ 2525.784507] Total swap = 0kB
[ 2525.787524] 1965979 pages RAM
[ 2525.790620] 0 pages HighMem/MovableOnly
[ 2525.919396] 339077 pages reserved
[ 2525.971426] 0 pages cma reserved
[ 2525.974853] Out of memory: Kill process 32659 (syz-executor.4) score 1007 or sacrifice child
[ 2526.122117] Killed process 32659 (syz-executor.4) total-vm:93676kB, anon-rss:16544kB, file-rss:34816kB, shmem-rss:0kB
[ 2526.438339] oom_reaper: reaped process 32659 (syz-executor.4), now anon-rss:0kB, file-rss:0kB, shmem-rss:0kB
[ 2526.709727] audit: type=1326 audit(1599896839.144:135271): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32659 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:47:24 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x0, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:47:24 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:47:24 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:47:25 executing program 2:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:47:25 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

[ 2528.384191] audit: type=1326 audit(1599896845.914:135272): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32672 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2529.340870] audit: type=1326 audit(1599896846.865:135273): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32671 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2529.777583] syz-executor.1 invoked oom-killer: gfp_mask=0x15080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null),  order=0, oom_score_adj=0
[ 2529.891987] syz-executor.1 cpuset=/ mems_allowed=0-1
[ 2529.932515] CPU: 0 PID: 32677 Comm: syz-executor.1 Not tainted 4.14.197-syzkaller #0
[ 2529.940423] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2529.949780] Call Trace:
[ 2529.952368]  dump_stack+0x1b2/0x283
[ 2529.955991]  dump_header+0x178/0x82f
[ 2529.959696]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2529.964819]  ? ___ratelimit+0x2cd/0x522
[ 2529.968815]  oom_kill_process.cold+0x10/0xa69
[ 2529.973311]  ? lock_downgrade+0x740/0x740
[ 2529.977478]  out_of_memory+0x2dc/0x1190
[ 2529.981468]  ? oom_killer_disable+0x1c0/0x1c0
[ 2529.985970]  ? mutex_trylock+0x152/0x1a0
[ 2529.990022]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2529.994889]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2529.999738]  ? do_wp_page+0x24d/0x1db0
[ 2530.003617]  ? finish_mkwrite_fault+0x5e0/0x5e0
[ 2530.008308]  ? __lock_acquire+0x5fc/0x3f20
[ 2530.012537]  alloc_pages_current+0x155/0x260
[ 2530.016938]  pte_alloc_one+0x15/0x100
[ 2530.020731]  do_fault_around+0x3f1/0x620
[ 2530.024785]  __handle_mm_fault+0x2b1f/0x4620
[ 2530.029185]  ? vm_insert_page+0x7c0/0x7c0
[ 2530.033328]  ? up_read+0x17/0x30
[ 2530.036694]  handle_mm_fault+0x306/0x7a0
[ 2530.040749]  __do_page_fault+0x578/0xb50
[ 2530.044830]  ? spurious_fault+0x640/0x640
[ 2530.048975]  ? do_page_fault+0x60/0x4f2
[ 2530.052941]  ? page_fault+0x2f/0x50
[ 2530.056560]  page_fault+0x45/0x50
[ 2530.060018] RIP: 0000:0x1
[ 2530.062759] RSP: 2e578f0:00007ffe02e57930 EFLAGS: 00000001
[ 2530.470049] Mem-Info:
[ 2530.507539] active_anon:1219118 inactive_anon:28162 isolated_anon:0
[ 2530.507539]  active_file:340 inactive_file:428 isolated_file:64
[ 2530.507539]  unevictable:0 dirty:525 writeback:2 unstable:0
[ 2530.507539]  slab_reclaimable:23805 slab_unreclaimable:146951
[ 2530.507539]  mapped:64840 shmem:38846 pagetables:61088 bounce:0
[ 2530.507539]  free:20806 free_pcp:2 free_cma:0
[ 2530.646437] Node 0 active_anon:1725076kB inactive_anon:66476kB active_file:4kB inactive_file:128kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:240384kB dirty:68kB writeback:0kB shmem:82512kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 925696kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2530.755656] Node 1 active_anon:3151396kB inactive_anon:46172kB active_file:1588kB inactive_file:1000kB unevictable:0kB isolated(anon):0kB isolated(file):164kB mapped:18776kB dirty:2032kB writeback:8kB shmem:72872kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2530.822895] Node 0 DMA free:10392kB min:220kB low:272kB high:324kB active_anon:4700kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:20kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2530.874107] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2530.879214] Node 0 DMA32 free:27284kB min:36272kB low:45340kB high:54408kB active_anon:1720376kB inactive_anon:66476kB active_file:4kB inactive_file:128kB unevictable:0kB writepending:68kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:13152kB pagetables:72932kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2530.952498] lowmem_reserve[]: 0 0 0 0 0
[ 2530.967274] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2531.080146] lowmem_reserve[]: 0 0 0 0 0
[ 2531.123213] Node 1 Normal free:46760kB min:53612kB low:67012kB high:80412kB active_anon:3151396kB inactive_anon:46172kB active_file:1152kB inactive_file:1104kB unevictable:0kB writepending:1988kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:55872kB pagetables:171400kB bounce:0kB free_pcp:224kB local_pcp:48kB free_cma:0kB
[ 2531.233671] lowmem_reserve[]: 0 0 0 0 0
[ 2531.247795] Node 0 DMA: 2*4kB (MH) 10*8kB (UEH) 4*16kB (UE) 8*32kB (UMH) 4*64kB (UEH) 2*128kB (ME) 3*256kB (MEH) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10392kB
[ 2531.265088] Node 0 DMA32: 113*4kB (UME) 2385*8kB (UME) 459*16kB (UME) 10*32kB (UME) 1*64kB (M) 1*128kB (M) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 27388kB
[ 2531.301162] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2531.323691] Node 1 Normal: 1088*4kB (UMEH) 816*8kB (UMEH) 70*16kB (UME) 15*32kB (UMEH) 223*64kB (UME) 62*128kB (UMH) 18*256kB (ME) 7*512kB (ME) 4*1024kB (M) 0*2048kB 0*4096kB = 46976kB
[ 2531.384547] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2531.408954] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2531.447754] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2531.470716] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2531.496751] 39410 total pagecache pages
[ 2531.520323] 0 pages in swap cache
[ 2531.536536] Swap cache stats: add 0, delete 0, find 0/0
[ 2531.574999] Free swap  = 0kB
[ 2531.593126] Total swap = 0kB
[ 2531.606608] 1965979 pages RAM
[ 2531.623564] 0 pages HighMem/MovableOnly
[ 2531.640256] 339077 pages reserved
[ 2531.652611] 0 pages cma reserved
[ 2531.660385] Out of memory: Kill process 23290 (syz-executor.0) score 1007 or sacrifice child
[ 2531.702190] Killed process 23290 (syz-executor.0) total-vm:93808kB, anon-rss:16572kB, file-rss:34816kB, shmem-rss:0kB
[ 2531.963613] oom_reaper: reaped process 23290 (syz-executor.0), now anon-rss:0kB, file-rss:0kB, shmem-rss:0kB
07:47:29 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x0, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:47:29 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:47:29 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:47:30 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2532.460557] audit: type=1326 audit(1599896849.985:135274): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32675 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2533.115025] rs:main Q:Reg invoked oom-killer: gfp_mask=0x1c200ca(GFP_HIGHUSER_MOVABLE|__GFP_WRITE), nodemask=(null),  order=0, oom_score_adj=0
[ 2533.531129] rs:main Q:Reg cpuset=/ mems_allowed=0-1
[ 2533.536212] CPU: 0 PID: 5979 Comm: rs:main Q:Reg Not tainted 4.14.197-syzkaller #0
[ 2533.543913] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2533.553277] Call Trace:
[ 2533.555868]  dump_stack+0x1b2/0x283
[ 2533.559525]  dump_header+0x178/0x82f
[ 2533.563240]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2533.568343]  ? ___ratelimit+0x2cd/0x522
[ 2533.572318]  oom_kill_process.cold+0x10/0xa69
[ 2533.576830]  ? lock_downgrade+0x740/0x740
[ 2533.580993]  out_of_memory+0x2dc/0x1190
[ 2533.584978]  ? oom_killer_disable+0x1c0/0x1c0
[ 2533.589474]  ? mutex_trylock+0x152/0x1a0
[ 2533.593565]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2533.598447]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2533.603294]  ? __radix_tree_lookup+0x1b5/0x2e0
[ 2533.607893]  alloc_pages_current+0x155/0x260
[ 2533.612299]  pagecache_get_page+0x3f5/0xab0
[ 2533.616643]  grab_cache_page_write_begin+0x63/0x90
[ 2533.621598]  ext4_da_write_begin+0x249/0xe70
[ 2533.626006]  ? __ext4_journal_stop+0xe7/0x1b0
[ 2533.630505]  ? ext4_write_begin+0x1260/0x1260
[ 2533.635084]  ? balance_dirty_pages_ratelimited+0x93f/0x1800
[ 2533.640803]  generic_perform_write+0x1c9/0x420
[ 2533.645410]  ? __mnt_drop_write_file+0x5f/0x90
[ 2533.649994]  ? filemap_page_mkwrite+0x2d0/0x2d0
[ 2533.654676]  ? current_time+0xb0/0xb0
[ 2533.658477]  ? ext4_file_write_iter+0x1cc/0xd20
[ 2533.663147]  __generic_file_write_iter+0x227/0x590
[ 2533.668075]  ext4_file_write_iter+0x276/0xd20
[ 2533.672570]  ? do_futex+0x12b/0x1930
[ 2533.676296]  ? ext4_file_read_iter+0x330/0x330
[ 2533.681571]  ? trace_hardirqs_on+0x10/0x10
[ 2533.685801]  ? __fdget_pos+0x1fb/0x2b0
[ 2533.689696]  ? iov_iter_init+0xa6/0x1c0
[ 2533.693673]  __vfs_write+0x44c/0x630
[ 2533.697385]  ? kernel_read+0x110/0x110
[ 2533.701283]  ? rcu_read_lock_sched_held+0x16c/0x1d0
[ 2533.706291]  ? rcu_sync_lockdep_assert+0x69/0xa0
[ 2533.711038]  vfs_write+0x17f/0x4d0
[ 2533.714572]  SyS_write+0xf2/0x210
[ 2533.718015]  ? SyS_read+0x210/0x210
[ 2533.721635]  ? __do_page_fault+0x19a/0xb50
[ 2533.725860]  ? do_syscall_64+0x4c/0x640
[ 2533.729841]  ? SyS_read+0x210/0x210
[ 2533.733490]  do_syscall_64+0x1d5/0x640
[ 2533.737375]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2533.742575] RIP: 0033:0x7fe0532361cd
[ 2533.746287] RSP: 002b:00007fe04bffe590 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 2533.753990] RAX: ffffffffffffffda RBX: 00007fe03c024700 RCX: 00007fe0532361cd
[ 2533.761269] RDX: 000000000000024a RSI: 00007fe03c024700 RDI: 0000000000000006
[ 2533.768546] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2533.775807] R10: 0000000000000000 R11: 0000000000000293 R12: 00007fe03c024480
[ 2533.783066] R13: 00007fe04bffe5b0 R14: 000055c9368e0360 R15: 000000000000024a
[ 2533.829064] audit: type=1326 audit(1599896851.355:135275): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32684 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2533.930578] audit: type=1326 audit(1599896851.395:135276): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32694 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2534.217084] audit: type=1326 audit(1599896851.395:135277): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32693 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2534.465683] audit: type=1326 audit(1599896851.735:135278): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32686 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2534.476154] Mem-Info:
[ 2534.628895] active_anon:1218032 inactive_anon:28159 isolated_anon:0
[ 2534.628895]  active_file:872 inactive_file:2159 isolated_file:63
[ 2534.628895]  unevictable:0 dirty:625 writeback:0 unstable:0
[ 2534.628895]  slab_reclaimable:23807 slab_unreclaimable:146962
[ 2534.628895]  mapped:66194 shmem:38846 pagetables:61114 bounce:0
[ 2534.628895]  free:19422 free_pcp:162 free_cma:0
[ 2534.660266] audit: type=1326 audit(1599896851.745:135279): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32688 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2534.663558] Node 0 active_anon:1725076kB inactive_anon:66476kB active_file:4kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:240320kB dirty:0kB writeback:0kB shmem:82512kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 925696kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2535.016755] Node 1 active_anon:3147156kB inactive_anon:46160kB active_file:4476kB inactive_file:4508kB unevictable:0kB isolated(anon):0kB isolated(file):556kB mapped:24320kB dirty:48kB writeback:0kB shmem:72872kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2535.220851] Node 0 DMA free:10392kB min:220kB low:272kB high:324kB active_anon:4700kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:20kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2535.383735] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2535.388817] Node 0 DMA32 free:27444kB min:36272kB low:45340kB high:54408kB active_anon:1720380kB inactive_anon:66476kB active_file:4kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:13152kB pagetables:72932kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2535.602408] lowmem_reserve[]: 0 0 0 0 0
[ 2535.630362] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2535.677855] lowmem_reserve[]: 0 0 0 0 0
[ 2535.696661] Node 1 Normal free:50508kB min:53612kB low:67012kB high:80412kB active_anon:3147156kB inactive_anon:46160kB active_file:1684kB inactive_file:1984kB unevictable:0kB writepending:48kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:55936kB pagetables:171320kB bounce:0kB free_pcp:4kB local_pcp:0kB free_cma:0kB
[ 2535.736499] lowmem_reserve[]: 0 0 0 0 0
[ 2535.740545] Node 0 DMA: 2*4kB (MH) 10*8kB (UEH) 4*16kB (UE) 8*32kB (UMH) 4*64kB (UEH) 2*128kB (ME) 3*256kB (MEH) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10392kB
[ 2535.784430] Node 0 DMA32: 116*4kB (UME) 2391*8kB (UME) 459*16kB (UME) 10*32kB (UME) 1*64kB (M) 1*128kB (M) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 27448kB
[ 2535.880067] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2535.925740] Node 1 Normal: 1674*4kB (UMEH) 510*8kB (UMEH) 167*16kB (UMEH) 91*32kB (UMEH) 226*64kB (UMEH) 62*128kB (UM) 18*256kB (ME) 7*512kB (ME) 4*1024kB (M) 0*2048kB 0*4096kB = 51048kB
[ 2535.978584] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2535.999718] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2536.025892] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2536.054086] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2536.082655] 39511 total pagecache pages
[ 2536.094070] 0 pages in swap cache
[ 2536.099606] Swap cache stats: add 0, delete 0, find 0/0
[ 2536.106701] Free swap  = 0kB
[ 2536.109820] Total swap = 0kB
[ 2536.124947] 1965979 pages RAM
[ 2536.128070] 0 pages HighMem/MovableOnly
[ 2536.149298] 339077 pages reserved
[ 2536.159398] 0 pages cma reserved
[ 2536.167735] Out of memory: Kill process 32675 (syz-executor.2) score 1007 or sacrifice child
[ 2536.354895] oom_reaper: reaped process 32688 (syz-executor.3), now anon-rss:0kB, file-rss:4kB, shmem-rss:0kB
[ 2536.899886] oom_reaper: reaped process 32712 (syz-executor.1), now anon-rss:0kB, file-rss:4kB, shmem-rss:0kB
[ 2537.013137] syz-executor.4 invoked oom-killer: gfp_mask=0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null),  order=1, oom_score_adj=0
[ 2537.033375] syz-executor.4 cpuset=/ mems_allowed=0-1
[ 2537.038524] CPU: 1 PID: 26665 Comm: syz-executor.4 Not tainted 4.14.197-syzkaller #0
[ 2537.046416] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2537.055787] Call Trace:
[ 2537.058378]  dump_stack+0x1b2/0x283
[ 2537.062029]  dump_header+0x178/0x82f
[ 2537.065751]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2537.070851]  ? ___ratelimit+0x2cd/0x522
[ 2537.075786]  oom_kill_process.cold+0x10/0xa69
[ 2537.080284]  ? lock_downgrade+0x740/0x740
[ 2537.084437]  out_of_memory+0x2dc/0x1190
[ 2537.088412]  ? oom_killer_disable+0x1c0/0x1c0
[ 2537.092904]  ? mutex_trylock+0x152/0x1a0
[ 2537.096962]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2537.101822]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2537.106665]  ? check_preemption_disabled+0x35/0x240
[ 2537.111688]  ? cache_grow_begin+0x3f/0x420
[ 2537.115922]  cache_grow_begin+0x8f/0x420
[ 2537.119978]  ? mempolicy_slab_node+0x100/0x320
[ 2537.124559]  fallback_alloc+0x207/0x2c0
[ 2537.128539]  kmem_cache_alloc+0x1e5/0x3c0
[ 2537.132698]  getname_flags+0xc8/0x550
[ 2537.137199]  user_path_at_empty+0x2a/0x50
[ 2537.141353]  vfs_statx+0xd1/0x180
[ 2537.144817]  ? cp_compat_stat+0x890/0x890
[ 2537.148964]  ? mntput_no_expire+0xee/0x910
[ 2537.153195]  ? dput.part.0+0x300/0x710
[ 2537.157085]  SyS_newlstat+0x83/0xe0
[ 2537.160738]  ? SyS_newstat+0xe0/0xe0
[ 2537.164456]  ? do_rmdir+0x3c0/0x3c0
[ 2537.168082]  ? __detach_mounts+0x400/0x400
[ 2537.172339]  ? __do_page_fault+0x19a/0xb50
[ 2537.176589]  ? do_syscall_64+0x4c/0x640
[ 2537.180580]  ? SyS_newstat+0xe0/0xe0
[ 2537.184305]  do_syscall_64+0x1d5/0x640
[ 2537.188195]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2537.193381] RIP: 0033:0x45c975
[ 2537.196563] RSP: 002b:00007ffdb9d03108 EFLAGS: 00000246 ORIG_RAX: 0000000000000006
[ 2537.204271] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 000000000045c975
[ 2537.211549] RDX: 00007ffdb9d03120 RSI: 00007ffdb9d03120 RDI: 00007ffdb9d031b0
[ 2537.218814] RBP: 00000000000002cc R08: 0000000000000000 R09: 0000000000000010
[ 2537.226083] R10: 000000000000000a R11: 0000000000000246 R12: 00007ffdb9d04240
[ 2537.233369] R13: 0000000001d9ba60 R14: 0000000000000000 R15: 00007ffdb9d04240
[ 2537.290752] Mem-Info:
[ 2537.293210] active_anon:1217999 inactive_anon:28159 isolated_anon:0
[ 2537.293210]  active_file:11 inactive_file:50 isolated_file:96
[ 2537.293210]  unevictable:0 dirty:3 writeback:0 unstable:0
[ 2537.293210]  slab_reclaimable:23815 slab_unreclaimable:146810
[ 2537.293210]  mapped:64698 shmem:38846 pagetables:61012 bounce:0
[ 2537.293210]  free:22755 free_pcp:19 free_cma:0
[ 2537.456141] Node 0 active_anon:1725080kB inactive_anon:66476kB active_file:4kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:240320kB dirty:0kB writeback:0kB shmem:82512kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 925696kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2537.562064] Node 1 active_anon:3146916kB inactive_anon:46160kB active_file:240kB inactive_file:396kB unevictable:0kB isolated(anon):0kB isolated(file):272kB mapped:18472kB dirty:12kB writeback:0kB shmem:72872kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2537.710707] Node 0 DMA free:10392kB min:220kB low:272kB high:324kB active_anon:4700kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:20kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2537.820733] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2537.825837] Node 0 DMA32 free:27440kB min:36272kB low:45340kB high:54408kB active_anon:1720380kB inactive_anon:66476kB active_file:4kB inactive_file:4kB unevictable:0kB writepending:0kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:13152kB pagetables:72932kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2537.904079] lowmem_reserve[]: 0 0 0 0 0
[ 2537.908105] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2537.933726] lowmem_reserve[]: 0 0 0 0 0
[ 2537.937751] Node 1 Normal free:53088kB min:53612kB low:67012kB high:80412kB active_anon:3146916kB inactive_anon:46160kB active_file:4kB inactive_file:340kB unevictable:0kB writepending:12kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:55776kB pagetables:171096kB bounce:0kB free_pcp:300kB local_pcp:0kB free_cma:0kB
[ 2537.968519] lowmem_reserve[]: 0 0 0 0 0
[ 2537.976444] Node 0 DMA: 2*4kB (MH) 10*8kB (UEH) 4*16kB (UE) 8*32kB (UMH) 4*64kB (UEH) 2*128kB (ME) 3*256kB (MEH) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10392kB
[ 2538.006394] Node 0 DMA32: 116*4kB (UME) 2390*8kB (UME) 459*16kB (UME) 10*32kB (UME) 1*64kB (M) 1*128kB (M) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 27440kB
[ 2538.040691] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2538.056109] Node 1 Normal: 2026*4kB (UMEH) 599*8kB (UMEH) 186*16kB (UMEH) 101*32kB (UMEH) 227*64kB (UMEH) 62*128kB (UM) 18*256kB (ME) 7*512kB (ME) 4*1024kB (M) 0*2048kB 0*4096kB = 53856kB
[ 2538.076273] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2538.085183] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2538.114492] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2538.130498] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2538.150639] 38907 total pagecache pages
[ 2538.154640] 0 pages in swap cache
[ 2538.158090] Swap cache stats: add 0, delete 0, find 0/0
[ 2538.197477] Free swap  = 0kB
[ 2538.200549] Total swap = 0kB
[ 2538.215657] 1965979 pages RAM
[ 2538.218772] 0 pages HighMem/MovableOnly
[ 2538.240117] 339077 pages reserved
[ 2538.270684] 0 pages cma reserved
[ 2538.274083] Out of memory: Kill process 23418 (syz-executor.0) score 1007 or sacrifice child
[ 2538.321208] Killed process 23418 (syz-executor.0) total-vm:93808kB, anon-rss:16572kB, file-rss:34816kB, shmem-rss:0kB
[ 2538.564464] oom_reaper: reaped process 23418 (syz-executor.0), now anon-rss:0kB, file-rss:0kB, shmem-rss:0kB
07:47:36 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:47:36 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:47:36 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:47:36 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:47:36 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x0, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:47:36 executing program 2:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x0, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2539.349152] audit: type=1326 audit(1599896856.875:135280): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32719 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2539.431639] audit: type=1326 audit(1599896856.885:135281): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32722 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2540.005214] audit: type=1326 audit(1599896856.905:135282): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32720 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2540.029232] audit: type=1326 audit(1599896856.905:135283): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32721 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:47:37 executing program 2:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x0, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:47:37 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x0, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2540.125039] audit: type=1326 audit(1599896856.905:135284): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32718 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2540.290670] audit: type=1326 audit(1599896857.615:135285): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=32748 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
07:47:38 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2542.296929] syz-executor.3 invoked oom-killer: gfp_mask=0x15080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null),  order=3, oom_score_adj=0
[ 2542.392387] syz-executor.3 cpuset=/ mems_allowed=0-1
[ 2542.430007] CPU: 1 PID: 32719 Comm: syz-executor.3 Not tainted 4.14.197-syzkaller #0
[ 2542.437917] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2542.448306] Call Trace:
[ 2542.450898]  dump_stack+0x1b2/0x283
[ 2542.454527]  dump_header+0x178/0x82f
[ 2542.458240]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2542.463597]  ? ___ratelimit+0x2cd/0x522
[ 2542.467570]  oom_kill_process.cold+0x10/0xa69
[ 2542.472072]  ? lock_downgrade+0x740/0x740
[ 2542.476219]  out_of_memory+0x2dc/0x1190
[ 2542.480199]  ? oom_killer_disable+0x1c0/0x1c0
[ 2542.484687]  ? mutex_trylock+0x152/0x1a0
[ 2542.488750]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2542.493607]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2542.498449]  ? fs_reclaim_release+0xd0/0x110
[ 2542.502863]  ? kmem_cache_alloc_node+0x38b/0x410
[ 2542.507617]  copy_process.part.0+0x26d/0x6f00
[ 2542.512107]  ? __handle_mm_fault+0x2095/0x4620
[ 2542.516683]  ? lock_downgrade+0x740/0x740
[ 2542.520821]  ? __lru_cache_add+0x178/0x250
[ 2542.525054]  ? do_raw_spin_unlock+0x164/0x220
[ 2542.529536]  ? check_preemption_disabled+0x35/0x240
[ 2542.534548]  ? __cleanup_sighand+0x40/0x40
[ 2542.538769]  ? perf_trace_lock_acquire+0x510/0x510
[ 2542.543693]  ? selinux_file_mprotect+0xf3/0x5c0
[ 2542.548357]  _do_fork+0x184/0xc80
[ 2542.551812]  ? fork_idle+0x270/0x270
[ 2542.555627]  ? up_read+0x17/0x30
[ 2542.558994]  ? __do_page_fault+0x19a/0xb50
[ 2542.563233]  ? do_syscall_64+0x4c/0x640
[ 2542.567205]  ? sys_vfork+0x20/0x20
[ 2542.570757]  do_syscall_64+0x1d5/0x640
[ 2542.574654]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2542.579829] RIP: 0033:0x45ff89
[ 2542.583001] RSP: 002b:00007ffe0a0f5278 EFLAGS: 00000202 ORIG_RAX: 0000000000000038
[ 2542.590696] RAX: ffffffffffffffda RBX: 00007f885b2fe700 RCX: 000000000045ff89
[ 2542.597959] RDX: 00007f885b2fe9d0 RSI: 00007f885b2fddb0 RDI: 00000000003d0f00
[ 2542.605221] RBP: 00007ffe0a0f54a0 R08: 00007f885b2fe700 R09: 00007f885b2fe700
[ 2542.612499] R10: 00007f885b2fe9d0 R11: 0000000000000202 R12: 0000000000000000
[ 2542.619759] R13: 00007ffe0a0f532f R14: 00007f885b2fe9c0 R15: 000000000118d08c
[ 2542.682479] Mem-Info:
[ 2542.684931] active_anon:1216636 inactive_anon:28161 isolated_anon:0
[ 2542.684931]  active_file:170 inactive_file:232 isolated_file:57
[ 2542.684931]  unevictable:0 dirty:2 writeback:11 unstable:0
[ 2542.684931]  slab_reclaimable:23528 slab_unreclaimable:147991
[ 2542.684931]  mapped:64952 shmem:38846 pagetables:61104 bounce:0
[ 2542.684931]  free:22838 free_pcp:136 free_cma:0
[ 2542.719081] Node 0 active_anon:1724724kB inactive_anon:66476kB active_file:104kB inactive_file:36kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:240344kB dirty:4kB writeback:4kB shmem:82512kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 925696kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2542.747261] Node 1 active_anon:3141820kB inactive_anon:46168kB active_file:576kB inactive_file:892kB unevictable:0kB isolated(anon):0kB isolated(file):228kB mapped:19464kB dirty:4kB writeback:40kB shmem:72872kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2542.790272] Node 0 DMA free:10392kB min:220kB low:272kB high:324kB active_anon:4700kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:20kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2542.833499] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2542.838640] Node 0 DMA32 free:27860kB min:36272kB low:45340kB high:54408kB active_anon:1720024kB inactive_anon:66476kB active_file:104kB inactive_file:36kB unevictable:0kB writepending:8kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:13184kB pagetables:72872kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2542.957581] lowmem_reserve[]: 0 0 0 0 0
[ 2542.966642] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2542.999323] lowmem_reserve[]: 0 0 0 0 0
[ 2543.040531] Node 1 Normal free:53912kB min:53612kB low:67012kB high:80412kB active_anon:3141876kB inactive_anon:46168kB active_file:612kB inactive_file:568kB unevictable:0kB writepending:0kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:55904kB pagetables:171524kB bounce:0kB free_pcp:80kB local_pcp:0kB free_cma:0kB
[ 2543.170403] lowmem_reserve[]: 0 0 0 0 0
[ 2543.174458] Node 0 DMA: 2*4kB (MH) 10*8kB (UEH) 4*16kB (UE) 8*32kB (UMH) 4*64kB (UEH) 2*128kB (ME) 3*256kB (MEH) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10392kB
[ 2543.226253] Node 0 DMA32: 151*4kB (UME) 2429*8kB (UME) 461*16kB (UME) 7*32kB (ME) 2*64kB (U) 1*128kB (U) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 27892kB
[ 2543.381204] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2543.406351] Node 1 Normal: 377*4kB (UMEH) 1380*8kB (UMEH) 352*16kB (UMEH) 122*32kB (UMEH) 189*64kB (UMEH) 60*128kB (M) 18*256kB (UME) 7*512kB (UME) 4*1024kB (UM) 0*2048kB 0*4096kB = 54148kB
[ 2543.445954] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2543.472447] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2543.493791] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2543.517818] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2543.551251] 39259 total pagecache pages
[ 2543.561368] 0 pages in swap cache
[ 2543.568573] Swap cache stats: add 0, delete 0, find 0/0
[ 2543.582478] Free swap  = 0kB
[ 2543.589253] Total swap = 0kB
[ 2543.596159] 1965979 pages RAM
[ 2543.602968] 0 pages HighMem/MovableOnly
[ 2543.613051] 339077 pages reserved
[ 2543.620373] 0 pages cma reserved
[ 2543.628654] Out of memory: Kill process 23522 (syz-executor.0) score 1007 or sacrifice child
[ 2543.652212] Killed process 23522 (syz-executor.0) total-vm:93808kB, anon-rss:16572kB, file-rss:34816kB, shmem-rss:0kB
[ 2543.803500] oom_reaper: reaped process 23522 (syz-executor.0), now anon-rss:0kB, file-rss:0kB, shmem-rss:0kB
07:47:42 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:47:42 executing program 2:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x0, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:47:42 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x0, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:47:42 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x0, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x0, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x51000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x6100)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
syz_open_procfs(r5, &(0x7f0000000140)='net/protocols\x00')
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)

07:47:42 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$lock(r1, 0x5, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r4, 0x4, 0x42500)
write$cgroup_type(r4, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:47:42 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2545.280274] audit: type=1326 audit(1599896862.806:135286): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=302 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2545.347457] audit: type=1326 audit(1599896862.836:135287): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=301 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2546.864137] audit: type=1326 audit(1599896862.846:135288): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=303 comm="syz-executor.0" exe="/root/syz-executor.0" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2547.130946] audit: type=1326 audit(1599896862.856:135289): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=310 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2549.669967] audit: type=1326 audit(1599896862.866:135290): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=308 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2551.995827] syz-fuzzer invoked oom-killer: gfp_mask=0x14201ca(GFP_HIGHUSER_MOVABLE|__GFP_COLD), nodemask=(null),  order=0, oom_score_adj=0
[ 2555.669619] audit: type=1326 audit(1599896862.876:135291): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=309 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x4603fa code=0x0
[ 2558.688935] syz-fuzzer cpuset=/ mems_allowed=0-1
[ 2559.692345] CPU: 1 PID: 6349 Comm: syz-fuzzer Not tainted 4.14.197-syzkaller #0
[ 2559.699819] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2559.709163] Call Trace:
[ 2559.711753]  dump_stack+0x1b2/0x283
[ 2559.715385]  dump_header+0x178/0x82f
[ 2559.719097]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2559.724194]  ? ___ratelimit+0x2cd/0x522
[ 2559.728168]  oom_kill_process.cold+0x10/0xa69
[ 2559.732681]  ? lock_downgrade+0x740/0x740
[ 2559.736834]  out_of_memory+0x2dc/0x1190
[ 2559.740848]  ? oom_killer_disable+0x1c0/0x1c0
[ 2559.745359]  ? mutex_trylock+0x152/0x1a0
[ 2559.749419]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2559.754283]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2559.759149]  alloc_pages_current+0x155/0x260
[ 2559.763557]  filemap_fault+0xe12/0x18d0
[ 2559.768409]  ext4_filemap_fault+0x84/0xb0
[ 2559.772554]  __do_fault+0xfa/0x380
[ 2559.776092]  __handle_mm_fault+0x2497/0x4620
[ 2559.780501]  ? vm_insert_page+0x7c0/0x7c0
[ 2559.784646]  ? lock_downgrade+0x740/0x740
[ 2559.788807]  handle_mm_fault+0x306/0x7a0
[ 2559.792868]  __do_page_fault+0x578/0xb50
[ 2559.796927]  ? spurious_fault+0x640/0x640
[ 2559.801072]  ? do_page_fault+0x60/0x4f2
[ 2559.805041]  ? page_fault+0x2f/0x50
[ 2559.808661]  page_fault+0x45/0x50
[ 2559.812105] RIP: 0000:0xade7ec
[ 2559.815304] RSP: 3b971f82:000000c00004dec8 EFLAGS: 00439470
[ 2588.681899] Mem-Info:
[ 2590.667312] active_anon:1218804 inactive_anon:28162 isolated_anon:0
[ 2590.667312]  active_file:642 inactive_file:594 isolated_file:32
[ 2590.667312]  unevictable:0 dirty:1190 writeback:0 unstable:0
[ 2590.667312]  slab_reclaimable:23215 slab_unreclaimable:148741
[ 2590.667312]  mapped:64661 shmem:38846 pagetables:61105 bounce:0
[ 2590.667312]  free:19368 free_pcp:60 free_cma:0
[ 2600.693018] Node 0 active_anon:1726680kB inactive_anon:66476kB active_file:4kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:240364kB dirty:4kB writeback:0kB shmem:82512kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 925696kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2608.676226] Node 1 active_anon:3148536kB inactive_anon:46172kB active_file:2568kB inactive_file:2272kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:18280kB dirty:4752kB writeback:0kB shmem:72872kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2617.678359] Node 0 DMA free:10360kB min:220kB low:272kB high:324kB active_anon:4700kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:20kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2625.685082] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2625.690189] Node 0 DMA32 free:26976kB min:36272kB low:45340kB high:54408kB active_anon:1721980kB inactive_anon:66476kB active_file:8kB inactive_file:4kB unevictable:0kB writepending:4kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:13312kB pagetables:72872kB bounce:0kB free_pcp:184kB local_pcp:112kB free_cma:0kB
[ 2635.663877] lowmem_reserve[]: 0 0 0 0 0
[ 2636.654988] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2643.663945] lowmem_reserve[]: 0 0 0 0 0
[ 2643.668001] Node 1 Normal free:40136kB min:53612kB low:67012kB high:80412kB active_anon:3148536kB inactive_anon:46172kB active_file:2428kB inactive_file:2440kB unevictable:0kB writepending:4752kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:56512kB pagetables:171528kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2651.691590] lowmem_reserve[]: 0 0 0 0 0
[ 2652.684259] Node 0 DMA: 2*4kB (M) 10*8kB (UME) 4*16kB (UE) 9*32kB (UM) 5*64kB (UME) 3*128kB (UME) 4*256kB (UME) 2*512kB (UE) 3*1024kB (UME) 2*2048kB (UE) 0*4096kB = 10360kB
[ 2657.673054] Node 0 DMA32: 97*4kB (UME) 2358*8kB (UME) 449*16kB (UME) 10*32kB (ME) 0*64kB 1*128kB (M) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 26884kB
[ 2661.682346] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2665.664886] Node 1 Normal: 296*4kB (UME) 277*8kB (UME) 172*16kB (UME) 85*32kB (UME) 243*64kB (ME) 65*128kB (ME) 17*256kB (ME) 6*512kB (ME) 0*1024kB 0*2048kB 0*4096kB = 40168kB
[ 2668.682395] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2672.668958] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2674.691961] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2679.668194] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2682.661481] 40065 total pagecache pages
[ 2682.665558] 0 pages in swap cache
[ 2682.669029] Swap cache stats: add 0, delete 0, find 0/0
[ 2685.663435] Free swap  = 0kB
[ 2685.666483] Total swap = 0kB
[ 2686.667042] 1965979 pages RAM
[ 2686.670216] 0 pages HighMem/MovableOnly
[ 2687.667596] 339077 pages reserved
[ 2688.665989] 0 pages cma reserved
[ 2688.669418] Out of memory: Kill process 24023 (syz-executor.0) score 1007 or sacrifice child
[ 2691.677254] Killed process 24023 (syz-executor.0) total-vm:93808kB, anon-rss:16572kB, file-rss:34816kB, shmem-rss:0kB
[ 2700.021712] kworker/u4:3 invoked oom-killer: gfp_mask=0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null),  order=0, oom_score_adj=0
[ 2700.080390] kworker/u4:3 cpuset=/ mems_allowed=0-1
[ 2700.085397] CPU: 0 PID: 203 Comm: kworker/u4:3 Not tainted 4.14.197-syzkaller #0
[ 2700.093098] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2700.102463] Call Trace:
[ 2700.105084]  dump_stack+0x1b2/0x283
[ 2700.108708]  dump_header+0x178/0x82f
[ 2700.112415]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[ 2700.117508]  ? ___ratelimit+0x2cd/0x522
[ 2700.121478]  oom_kill_process.cold+0x10/0xa69
[ 2700.125968]  ? lock_downgrade+0x740/0x740
[ 2700.130131]  out_of_memory+0x2dc/0x1190
[ 2700.134104]  ? oom_killer_disable+0x1c0/0x1c0
[ 2700.138681]  ? mutex_trylock+0x152/0x1a0
[ 2700.142765]  __alloc_pages_nodemask+0x23e1/0x2720
[ 2700.147634]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2700.152478]  ? check_preemption_disabled+0x35/0x240
[ 2700.157505]  ? cache_grow_begin+0x3f/0x420
[ 2700.161748]  cache_grow_begin+0x8f/0x420
[ 2700.165997]  ? mempolicy_slab_node+0x100/0x320
[ 2700.170603]  fallback_alloc+0x207/0x2c0
[ 2700.174575]  kmem_cache_alloc_trace+0x1f1/0x3d0
[ 2700.179238]  ? rescuer_thread+0xc80/0xc80
[ 2700.183380]  __kthread_create_on_node+0xbe/0x3a0
[ 2700.188129]  ? kthread_park+0x130/0x130
[ 2700.192101]  ? vsnprintf+0x260/0x1340
[ 2700.195914]  ? rescuer_thread+0xc80/0xc80
[ 2700.200054]  kthread_create_on_node+0xa8/0xd0
[ 2700.204542]  ? __kthread_create_on_node+0x3a0/0x3a0
[ 2700.209549]  ? vsprintf+0x30/0x30
[ 2700.212998]  ? rcu_lockdep_current_cpu_online+0xed/0x140
[ 2700.218449]  ? rcu_read_lock_sched_held+0x16c/0x1d0
[ 2700.223466]  ? create_worker+0xdf/0x6c0
[ 2700.227484]  ? kmem_cache_alloc_node_trace+0x383/0x400
[ 2700.233024]  create_worker+0x364/0x6c0
[ 2700.236911]  ? wq_unbind_fn+0x350/0x350
[ 2700.240883]  worker_thread+0xa08/0xff0
[ 2700.244772]  ? rescuer_thread+0xc80/0xc80
[ 2700.248918]  kthread+0x30d/0x420
[ 2700.252283]  ? kthread_create_on_node+0xd0/0xd0
[ 2700.256945]  ret_from_fork+0x24/0x30
[ 2701.774590] Mem-Info:
[ 2701.777060] active_anon:1217985 inactive_anon:28162 isolated_anon:0
[ 2701.777060]  active_file:646 inactive_file:581 isolated_file:32
[ 2701.777060]  unevictable:0 dirty:1242 writeback:0 unstable:0
[ 2701.777060]  slab_reclaimable:23183 slab_unreclaimable:148380
[ 2701.777060]  mapped:64661 shmem:38846 pagetables:61074 bounce:0
[ 2701.777060]  free:20624 free_pcp:30 free_cma:0
[ 2702.238778] Node 0 active_anon:1726680kB inactive_anon:66476kB active_file:8kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:240364kB dirty:0kB writeback:0kB shmem:82512kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 925696kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2702.514824] Node 1 active_anon:3145260kB inactive_anon:46172kB active_file:2620kB inactive_file:2244kB unevictable:0kB isolated(anon):0kB isolated(file):128kB mapped:18280kB dirty:4964kB writeback:0kB shmem:72872kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2702.800947] Node 0 DMA free:10344kB min:220kB low:272kB high:324kB active_anon:4700kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:20kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2703.118070] lowmem_reserve[]: 0 2557 2557 2557 2557
[ 2703.154623] Node 0 DMA32 free:27072kB min:36272kB low:45340kB high:54408kB active_anon:1721980kB inactive_anon:66476kB active_file:8kB inactive_file:8kB unevictable:0kB writepending:0kB present:3129332kB managed:2621180kB mlocked:0kB kernel_stack:13312kB pagetables:72872kB bounce:0kB free_pcp:120kB local_pcp:120kB free_cma:0kB
[ 2703.496271] lowmem_reserve[]: 0 0 0 0 0
[ 2703.530231] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:328kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2703.870173] lowmem_reserve[]: 0 0 0 0 0
[ 2703.874235] Node 1 Normal free:45352kB min:53612kB low:67012kB high:80412kB active_anon:3145260kB inactive_anon:46172kB active_file:2412kB inactive_file:2308kB unevictable:0kB writepending:4948kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:56480kB pagetables:171404kB bounce:0kB free_pcp:12kB local_pcp:12kB free_cma:0kB
[ 2704.276736] lowmem_reserve[]: 0 0 0 0 0
[ 2704.327139] Node 0 DMA: 2*4kB (M) 6*8kB (ME) 4*16kB (UE) 8*32kB (M) 4*64kB (ME) 2*128kB (ME) 3*256kB (ME) 1*512kB (E) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (U) = 10360kB
[ 2704.500078] Node 0 DMA32: 106*4kB (ME) 2342*8kB (UME) 456*16kB (UME) 10*32kB (ME) 0*64kB 1*128kB (M) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 26904kB
[ 2704.669485] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2704.779694] Node 1 Normal: 394*4kB (UME) 470*8kB (UMEH) 277*16kB (UME) 38*32kB (UME) 235*64kB (ME) 79*128kB (ME) 22*256kB (ME) 7*512kB (ME) 0*1024kB 0*2048kB 0*4096kB = 45352kB
[ 2704.968848] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2705.079627] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2705.175843] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2705.297350] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2705.388126] 40114 total pagecache pages
[ 2705.438470] 0 pages in swap cache
[ 2705.477663] Swap cache stats: add 0, delete 0, find 0/0
[ 2705.525421] Free swap  = 0kB
[ 2705.528482] Total swap = 0kB
[ 2705.560024] 1965979 pages RAM
[ 2705.563195] 0 pages HighMem/MovableOnly
[ 2705.567210] 339077 pages reserved
[ 2705.660759] 0 pages cma reserved
[ 2705.664152] Out of memory: Kill process 24341 (syz-executor.3) score 1007 or sacrifice child
[ 2705.770025] Killed process 24341 (syz-executor.3) total-vm:93808kB, anon-rss:16572kB, file-rss:34816kB, shmem-rss:0kB
[ 2706.142792] oom_reaper: reaped process 24341 (syz-executor.3), now anon-rss:0kB, file-rss:0kB, shmem-rss:0kB
07:50:32 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:50:32 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x0, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

07:50:32 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x0, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x9, r0})
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x200, 0x6, 0x0, 0x80000000000}, 0x0)
clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r3, 0x4, 0x42500)
write$cgroup_type(r3, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[ 2717.975098] systemd[1]: systemd-journald.service: Main process exited, code=killed, status=6/ABRT
[ 2718.032010] systemd[1]: systemd-journald.service: Unit entered failed state.
[ 2718.110968] systemd[1]: systemd-journald.service: Failed with result 'watchdog'.
[ 2718.119071] systemd[1]: systemd-journald.service: Service has no hold-off time, scheduling restart.
[ 2718.157704] systemd[1]: Stopped Flush Journal to Persistent Storage.
[ 2718.200755] systemd[1]: Stopping Flush Journal to Persistent Storage...
[ 2718.207685] systemd[1]: Stopped Journal Service.
[ 2718.269593] systemd[1]: Starting Journal Service...
[ 2718.866914] systemd-journald[417]: File /run/log/journal/64dd78f1a75445a997c532444ad0f085/system.journal corrupted or uncleanly shut down, renaming and replacing.
[ 2719.077634] systemd[1]: Started Journal Service.
[ 2864.980153] INFO: task syz-executor.1:20558 blocked for more than 140 seconds.
[ 2864.987558]       Not tainted 4.14.197-syzkaller #0
[ 2864.992632] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2865.000658] syz-executor.1  D27872 20558   6375 0x80000002
[ 2865.006284] Call Trace:
[ 2865.008862]  __schedule+0x88b/0x1de0
[ 2865.012658]  ? io_schedule_timeout+0x140/0x140
[ 2865.017238]  ? lock_downgrade+0x740/0x740
[ 2865.022106]  schedule+0x8d/0x1b0
[ 2865.025466]  schedule_preempt_disabled+0xf/0x20
[ 2865.030204]  __mutex_lock+0x669/0x1310
[ 2865.034106]  ? perf_trace_destroy+0x23/0xf0
[ 2865.038414]  ? perf_event_release_kernel+0x18e/0x8a0
[ 2865.043579]  ? __ww_mutex_wakeup_for_backoff+0x210/0x210
[ 2865.049045]  ? perf_event_release_kernel+0x396/0x8a0
[ 2865.054218]  ? lock_downgrade+0x740/0x740
[ 2865.058462]  ? rcu_lockdep_current_cpu_online+0xed/0x140
[ 2865.063984]  ? perf_tp_event_init+0xf0/0xf0
[ 2865.068329]  perf_trace_destroy+0x23/0xf0
[ 2865.072540]  ? perf_tp_event_init+0xf0/0xf0
[ 2865.076867]  _free_event+0x321/0xe20
[ 2865.080633]  perf_event_release_kernel+0x3b2/0x8a0
[ 2865.085577]  ? perf_event_release_kernel+0x8a0/0x8a0
[ 2865.090748]  perf_release+0x33/0x40
[ 2865.094370]  __fput+0x25f/0x7a0
[ 2865.097648]  task_work_run+0x11f/0x190
[ 2865.101611]  do_exit+0xa08/0x27f0
[ 2865.105064]  ? perf_trace_lock_acquire+0x510/0x510
[ 2865.110113]  ? mm_update_next_owner+0x5b0/0x5b0
[ 2865.114784]  ? get_signal+0x323/0x1ca0
[ 2865.118658]  ? lock_acquire+0x170/0x3f0
[ 2865.122674]  ? lock_downgrade+0x740/0x740
[ 2865.126844]  do_group_exit+0x100/0x2e0
[ 2865.130788]  get_signal+0x38d/0x1ca0
[ 2865.134503]  do_signal+0x7c/0x1550
[ 2865.138039]  ? perf_trace_lock_acquire+0x510/0x510
[ 2865.143033]  ? __might_fault+0x104/0x1b0
[ 2865.147088]  ? setup_sigcontext+0x820/0x820
[ 2865.152036]  ? lock_downgrade+0x740/0x740
[ 2865.156199]  ? __might_fault+0x177/0x1b0
[ 2865.163080]  ? _copy_to_user+0x82/0xd0
[ 2865.166955]  ? SyS_futex+0x1da/0x290
[ 2865.170694]  ? SyS_futex+0x1e3/0x290
[ 2865.174421]  ? exit_to_usermode_loop+0x41/0x200
[ 2865.179085]  exit_to_usermode_loop+0x160/0x200
[ 2865.184668]  do_syscall_64+0x4a3/0x640
[ 2865.188557]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2865.193873] RIP: 0033:0x45d5b9
[ 2865.197047] RSP: 002b:00007f11c38eccf8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 2865.204833] RAX: fffffffffffffe00 RBX: 000000000118d128 RCX: 000000000045d5b9
[ 2865.212180] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 000000000118d128
[ 2865.219461] RBP: 000000000118d120 R08: 0000000000000000 R09: 0000000000000000
[ 2865.226829] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118d12c
[ 2865.234177] R13: 00007ffe02e576ff R14: 00007f11c38ed9c0 R15: 000000000118d12c
[ 2865.241587] INFO: task syz-executor.3:20904 blocked for more than 140 seconds.
[ 2865.248940]       Not tainted 4.14.197-syzkaller #0
[ 2865.254035] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2865.262146] syz-executor.3  D27872 20904   6372 0x80000002
[ 2865.267762] Call Trace:
[ 2865.270421]  __schedule+0x88b/0x1de0
[ 2865.274145]  ? io_schedule_timeout+0x140/0x140
[ 2865.278716]  ? lock_downgrade+0x740/0x740
[ 2865.283600]  schedule+0x8d/0x1b0
[ 2865.286989]  schedule_preempt_disabled+0xf/0x20
[ 2865.291705]  __mutex_lock+0x669/0x1310
[ 2865.295591]  ? perf_trace_destroy+0x23/0xf0
[ 2865.300020]  ? perf_event_release_kernel+0x18e/0x8a0
[ 2865.305145]  ? __ww_mutex_wakeup_for_backoff+0x210/0x210
[ 2865.310655]  ? perf_event_release_kernel+0x396/0x8a0
[ 2865.315762]  ? lock_downgrade+0x740/0x740
[ 2865.319971]  ? rcu_lockdep_current_cpu_online+0xed/0x140
[ 2865.325415]  ? perf_tp_event_init+0xf0/0xf0
[ 2865.329735]  perf_trace_destroy+0x23/0xf0
[ 2865.333975]  ? perf_tp_event_init+0xf0/0xf0
[ 2865.338289]  _free_event+0x321/0xe20
[ 2865.342056]  perf_event_release_kernel+0x3b2/0x8a0
[ 2865.346994]  ? perf_event_release_kernel+0x8a0/0x8a0
[ 2865.352182]  perf_release+0x33/0x40
[ 2865.355834]  __fput+0x25f/0x7a0
[ 2865.359095]  task_work_run+0x11f/0x190
[ 2865.363026]  do_exit+0xa08/0x27f0
[ 2865.366477]  ? perf_trace_lock_acquire+0x510/0x510
[ 2865.371484]  ? mm_update_next_owner+0x5b0/0x5b0
[ 2865.376149]  ? get_signal+0x323/0x1ca0
[ 2865.380120]  ? lock_acquire+0x170/0x3f0
[ 2865.384108]  ? lock_downgrade+0x740/0x740
[ 2865.388276]  do_group_exit+0x100/0x2e0
[ 2865.392252]  get_signal+0x38d/0x1ca0
[ 2865.395989]  do_signal+0x7c/0x1550
[ 2865.399530]  ? perf_trace_lock_acquire+0x510/0x510
[ 2865.404535]  ? __might_fault+0x104/0x1b0
[ 2865.408596]  ? setup_sigcontext+0x820/0x820
[ 2865.413729]  ? lock_downgrade+0x740/0x740
[ 2865.417881]  ? __might_fault+0x177/0x1b0
[ 2865.422011]  ? _copy_to_user+0x82/0xd0
[ 2865.425897]  ? SyS_futex+0x1da/0x290
[ 2865.429586]  ? SyS_futex+0x1e3/0x290
[ 2865.433369]  ? exit_to_usermode_loop+0x41/0x200
[ 2865.438192]  exit_to_usermode_loop+0x160/0x200
[ 2865.442893]  do_syscall_64+0x4a3/0x640
[ 2865.446780]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2865.452048] RIP: 0033:0x45d5b9
[ 2865.455249] RSP: 002b:00007f885b2fdcf8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 2865.463039] RAX: fffffffffffffe00 RBX: 000000000118d088 RCX: 000000000045d5b9
[ 2865.470382] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 000000000118d088
[ 2865.477658] RBP: 000000000118d080 R08: 0000000000000000 R09: 0000000000000000
[ 2865.484987] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118d08c
[ 2865.492321] R13: 00007ffe0a0f532f R14: 00007f885b2fe9c0 R15: 000000000118d08c
[ 2865.499614] INFO: task syz-executor.5:21347 blocked for more than 140 seconds.
[ 2865.507076]       Not tainted 4.14.197-syzkaller #0
[ 2865.512162] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2865.520191] syz-executor.5  D27872 21347   6374 0x80000002
[ 2865.525841] Call Trace:
[ 2865.528435]  __schedule+0x88b/0x1de0
[ 2865.532332]  ? io_schedule_timeout+0x140/0x140
[ 2865.536936]  ? lock_downgrade+0x740/0x740
[ 2865.541701]  schedule+0x8d/0x1b0
[ 2865.545071]  schedule_preempt_disabled+0xf/0x20
[ 2865.550719]  __mutex_lock+0x669/0x1310
[ 2865.554621]  ? perf_trace_destroy+0x23/0xf0
[ 2865.558928]  ? perf_event_release_kernel+0x18e/0x8a0
[ 2865.564927]  ? __ww_mutex_wakeup_for_backoff+0x210/0x210
[ 2865.570760]  ? perf_event_release_kernel+0x396/0x8a0
[ 2865.575858]  ? lock_downgrade+0x740/0x740
[ 2865.580998]  ? rcu_lockdep_current_cpu_online+0xed/0x140
[ 2865.586462]  ? perf_tp_event_init+0xf0/0xf0
[ 2865.591386]  perf_trace_destroy+0x23/0xf0
[ 2865.595542]  ? perf_tp_event_init+0xf0/0xf0
[ 2865.600475]  _free_event+0x321/0xe20
[ 2865.604180]  perf_event_release_kernel+0x3b2/0x8a0
[ 2865.609087]  ? perf_event_release_kernel+0x8a0/0x8a0
[ 2865.615094]  perf_release+0x33/0x40
[ 2865.618713]  __fput+0x25f/0x7a0
[ 2865.622625]  task_work_run+0x11f/0x190
[ 2865.626509]  do_exit+0xa08/0x27f0
[ 2865.630854]  ? perf_trace_lock_acquire+0x510/0x510
[ 2865.635971]  ? mm_update_next_owner+0x5b0/0x5b0
[ 2865.641524]  ? get_signal+0x323/0x1ca0
[ 2865.645447]  ? lock_acquire+0x170/0x3f0
[ 2865.649401]  ? lock_downgrade+0x740/0x740
[ 2865.654431]  do_group_exit+0x100/0x2e0
[ 2865.666158]  get_signal+0x38d/0x1ca0
[ 2865.670333]  do_signal+0x7c/0x1550
[ 2865.673877]  ? perf_trace_lock_acquire+0x510/0x510
[ 2865.678812]  ? __might_fault+0x104/0x1b0
[ 2865.683118]  ? setup_sigcontext+0x820/0x820
[ 2865.687442]  ? lock_downgrade+0x740/0x740
[ 2865.694501]  ? __might_fault+0x177/0x1b0
[ 2865.698552]  ? _copy_to_user+0x82/0xd0
[ 2865.703465]  ? SyS_futex+0x1da/0x290
[ 2865.707183]  ? SyS_futex+0x1e3/0x290
[ 2865.710972]  ? exit_to_usermode_loop+0x41/0x200
[ 2865.715660]  exit_to_usermode_loop+0x160/0x200
[ 2865.720322]  do_syscall_64+0x4a3/0x640
[ 2865.724220]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2865.729412] RIP: 0033:0x45d5b9
[ 2865.732659] RSP: 002b:00007f2fd395ccf8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 2865.740433] RAX: fffffffffffffe00 RBX: 000000000118d128 RCX: 000000000045d5b9
[ 2865.747692] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 000000000118d128
[ 2865.755009] RBP: 000000000118d120 R08: 0000000000000000 R09: 0000000000000000
[ 2865.763015] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118d12c
[ 2865.770358] R13: 00007ffd00e1dc0f R14: 00007f2fd395d9c0 R15: 000000000118d12c
[ 2865.777653] INFO: task syz-executor.5:21381 blocked for more than 140 seconds.
[ 2865.785793]       Not tainted 4.14.197-syzkaller #0
[ 2865.791027] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2865.798987] syz-executor.5  D27872 21381   6374 0x80000002
[ 2865.804695] Call Trace:
[ 2865.807282]  __schedule+0x88b/0x1de0
[ 2865.811075]  ? io_schedule_timeout+0x140/0x140
[ 2865.815652]  ? lock_downgrade+0x740/0x740
[ 2865.819880]  schedule+0x8d/0x1b0
[ 2865.823248]  schedule_preempt_disabled+0xf/0x20
[ 2865.827906]  __mutex_lock+0x669/0x1310
[ 2865.831836]  ? perf_trace_destroy+0x23/0xf0
[ 2865.836200]  ? perf_event_release_kernel+0x18e/0x8a0
[ 2865.841337]  ? __ww_mutex_wakeup_for_backoff+0x210/0x210
[ 2865.846782]  ? perf_event_release_kernel+0x396/0x8a0
[ 2865.851945]  ? lock_downgrade+0x740/0x740
[ 2865.856088]  ? rcu_lockdep_current_cpu_online+0xed/0x140
[ 2865.861577]  ? perf_tp_event_init+0xf0/0xf0
[ 2865.865895]  perf_trace_destroy+0x23/0xf0
[ 2865.870104]  ? perf_tp_event_init+0xf0/0xf0
[ 2865.874416]  _free_event+0x321/0xe20
[ 2865.878108]  perf_event_release_kernel+0x3b2/0x8a0
[ 2865.883085]  ? perf_event_release_kernel+0x8a0/0x8a0
[ 2865.888183]  perf_release+0x33/0x40
[ 2865.891863]  __fput+0x25f/0x7a0
[ 2865.895142]  task_work_run+0x11f/0x190
[ 2865.899029]  do_exit+0xa08/0x27f0
[ 2865.902561]  ? perf_trace_lock_acquire+0x510/0x510
[ 2865.907501]  ? mm_update_next_owner+0x5b0/0x5b0
[ 2865.912223]  ? get_signal+0x323/0x1ca0
[ 2865.916107]  ? lock_acquire+0x170/0x3f0
[ 2865.920310]  ? lock_downgrade+0x740/0x740
[ 2865.924452]  do_group_exit+0x100/0x2e0
[ 2865.928321]  get_signal+0x38d/0x1ca0
[ 2865.932103]  do_signal+0x7c/0x1550
[ 2865.935636]  ? perf_trace_lock_acquire+0x510/0x510
[ 2865.940638]  ? __might_fault+0x104/0x1b0
[ 2865.944713]  ? setup_sigcontext+0x820/0x820
[ 2865.949026]  ? lock_downgrade+0x740/0x740
[ 2865.953241]  ? __might_fault+0x177/0x1b0
[ 2865.957305]  ? _copy_to_user+0x82/0xd0
[ 2865.961229]  ? SyS_futex+0x1da/0x290
[ 2865.964956]  ? SyS_futex+0x1e3/0x290
[ 2865.968652]  ? exit_to_usermode_loop+0x41/0x200
[ 2865.973362]  exit_to_usermode_loop+0x160/0x200
[ 2865.977973]  do_syscall_64+0x4a3/0x640
[ 2865.981910]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2865.987096] RIP: 0033:0x45d5b9
[ 2865.990361] RSP: 002b:00007f2fd397dcf8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 2865.998063] RAX: fffffffffffffe00 RBX: 000000000118d088 RCX: 000000000045d5b9
[ 2866.005570] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 000000000118d088
[ 2866.012899] RBP: 000000000118d080 R08: 0000000000000000 R09: 0000000000000000
[ 2866.020253] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118d08c
[ 2866.027514] R13: 00007ffd00e1dc0f R14: 00007f2fd397e9c0 R15: 000000000118d08c
[ 2866.034877] INFO: task syz-executor.5:21452 blocked for more than 140 seconds.
[ 2866.042323]       Not tainted 4.14.197-syzkaller #0
[ 2866.047335] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2866.055332] syz-executor.5  D27872 21452   6374 0x80000002
[ 2866.061025] Call Trace:
[ 2866.063604]  __schedule+0x88b/0x1de0
[ 2866.067300]  ? io_schedule_timeout+0x140/0x140
[ 2866.071934]  ? lock_downgrade+0x740/0x740
[ 2866.076094]  schedule+0x8d/0x1b0
[ 2866.079469]  schedule_preempt_disabled+0xf/0x20
[ 2866.084174]  __mutex_lock+0x669/0x1310
[ 2866.088084]  ? perf_trace_destroy+0x23/0xf0
[ 2866.092442]  ? perf_event_release_kernel+0x18e/0x8a0
[ 2866.097548]  ? __ww_mutex_wakeup_for_backoff+0x210/0x210
[ 2866.103149]  ? perf_event_release_kernel+0x396/0x8a0
[ 2866.108263]  ? lock_downgrade+0x740/0x740
[ 2866.112484]  ? rcu_lockdep_current_cpu_online+0xed/0x140
[ 2866.117942]  ? perf_tp_event_init+0xf0/0xf0
[ 2866.124624]  perf_trace_destroy+0x23/0xf0
[ 2866.128789]  ? perf_tp_event_init+0xf0/0xf0
[ 2866.133195]  _free_event+0x321/0xe20
[ 2866.136929]  perf_event_release_kernel+0x3b2/0x8a0
[ 2866.142031]  ? perf_event_release_kernel+0x8a0/0x8a0
[ 2866.147126]  perf_release+0x33/0x40
[ 2866.150792]  __fput+0x25f/0x7a0
[ 2866.154071]  task_work_run+0x11f/0x190
[ 2866.157962]  do_exit+0xa08/0x27f0
[ 2866.161474]  ? perf_trace_lock_acquire+0x510/0x510
[ 2866.166398]  ? mm_update_next_owner+0x5b0/0x5b0
[ 2866.171117]  ? get_signal+0x323/0x1ca0
[ 2866.175000]  ? lock_acquire+0x170/0x3f0
[ 2866.178951]  ? lock_downgrade+0x740/0x740
[ 2866.183132]  do_group_exit+0x100/0x2e0
[ 2866.187015]  get_signal+0x38d/0x1ca0
[ 2866.190815]  do_signal+0x7c/0x1550
[ 2866.194359]  ? perf_trace_lock_acquire+0x510/0x510
[ 2866.199284]  ? __might_fault+0x104/0x1b0
[ 2866.203437]  ? setup_sigcontext+0x820/0x820
[ 2866.207759]  ? lock_downgrade+0x740/0x740
[ 2866.212109]  ? __might_fault+0x177/0x1b0
[ 2866.216165]  ? _copy_to_user+0x82/0xd0
[ 2866.220133]  ? SyS_futex+0x1da/0x290
[ 2866.223845]  ? SyS_futex+0x1e3/0x290
[ 2866.227549]  ? exit_to_usermode_loop+0x41/0x200
[ 2866.232287]  exit_to_usermode_loop+0x160/0x200
[ 2866.236863]  do_syscall_64+0x4a3/0x640
[ 2866.240819]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2866.246001] RIP: 0033:0x45d5b9
[ 2866.249164] RSP: 002b:00007f2fd395ccf8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 2866.256906] RAX: fffffffffffffe00 RBX: 000000000118d128 RCX: 000000000045d5b9
[ 2866.264218] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 000000000118d128
[ 2866.271653] RBP: 000000000118d120 R08: 0000000000000000 R09: 0000000000000000
[ 2866.278930] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118d12c
[ 2866.286238] R13: 00007ffd00e1dc0f R14: 00007f2fd395d9c0 R15: 000000000118d12c
[ 2866.293615] INFO: task syz-executor.3:21489 blocked for more than 140 seconds.
[ 2866.301679]       Not tainted 4.14.197-syzkaller #0
[ 2866.306692] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2866.314719] syz-executor.3  D28384 21489   6372 0x80000002
[ 2866.320414] Call Trace:
[ 2866.323025]  __schedule+0x88b/0x1de0
[ 2866.326732]  ? io_schedule_timeout+0x140/0x140
[ 2866.331390]  ? lock_downgrade+0x740/0x740
[ 2866.335542]  schedule+0x8d/0x1b0
[ 2866.338900]  schedule_preempt_disabled+0xf/0x20
[ 2866.343700]  __mutex_lock+0x669/0x1310
[ 2866.347598]  ? perf_trace_destroy+0x23/0xf0
[ 2866.352052]  ? perf_event_release_kernel+0x18e/0x8a0
[ 2866.357156]  ? __ww_mutex_wakeup_for_backoff+0x210/0x210
[ 2866.362662]  ? perf_event_release_kernel+0x396/0x8a0
[ 2866.367865]  ? lock_downgrade+0x740/0x740
[ 2866.372059]  ? rcu_lockdep_current_cpu_online+0xed/0x140
[ 2866.377501]  ? perf_tp_event_init+0xf0/0xf0
[ 2866.381878]  perf_trace_destroy+0x23/0xf0
[ 2866.386043]  ? perf_tp_event_init+0xf0/0xf0
[ 2866.390465]  _free_event+0x321/0xe20
[ 2866.394174]  perf_event_release_kernel+0x3b2/0x8a0
[ 2866.399107]  ? perf_event_release_kernel+0x8a0/0x8a0
[ 2866.404295]  perf_release+0x33/0x40
[ 2866.407914]  __fput+0x25f/0x7a0
[ 2866.411261]  task_work_run+0x11f/0x190
[ 2866.415150]  do_exit+0xa08/0x27f0
[ 2866.418583]  ? perf_trace_lock_acquire+0x510/0x510
[ 2866.423733]  ? mm_update_next_owner+0x5b0/0x5b0
[ 2866.428409]  ? get_signal+0x323/0x1ca0
[ 2866.432347]  ? lock_acquire+0x170/0x3f0
[ 2866.436317]  ? lock_downgrade+0x740/0x740
[ 2866.440529]  do_group_exit+0x100/0x2e0
[ 2866.444413]  get_signal+0x38d/0x1ca0
[ 2866.448109]  do_signal+0x7c/0x1550
[ 2866.451684]  ? perf_trace_lock_acquire+0x510/0x510
[ 2866.456641]  ? __might_fault+0x104/0x1b0
[ 2866.460761]  ? setup_sigcontext+0x820/0x820
[ 2866.465100]  ? lock_downgrade+0x740/0x740
[ 2866.469235]  ? __might_fault+0x177/0x1b0
[ 2866.473379]  ? _copy_to_user+0x82/0xd0
[ 2866.477280]  ? SyS_futex+0x1da/0x290
[ 2866.481025]  ? SyS_futex+0x1e3/0x290
[ 2866.484735]  ? exit_to_usermode_loop+0x41/0x200
[ 2866.489386]  exit_to_usermode_loop+0x160/0x200
[ 2866.494008]  do_syscall_64+0x4a3/0x640
[ 2866.497912]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2866.503685] RIP: 0033:0x45d5b9
[ 2866.506882] RSP: 002b:00007f885b2dccf8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 2866.514633] RAX: fffffffffffffe00 RBX: 000000000118d128 RCX: 000000000045d5b9
[ 2866.521977] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 000000000118d128
[ 2866.529235] RBP: 000000000118d120 R08: 0000000000000000 R09: 0000000000000000
[ 2866.536547] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118d12c
[ 2866.543858] R13: 00007ffe0a0f532f R14: 00007f885b2dd9c0 R15: 000000000118d12c
[ 2866.551230] INFO: task syz-executor.2:21864 blocked for more than 140 seconds.
[ 2866.558579]       Not tainted 4.14.197-syzkaller #0
[ 2866.563634] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2866.571638] syz-executor.2  D27872 21864   6371 0x80000002
[ 2866.577272] Call Trace:
[ 2866.579931]  __schedule+0x88b/0x1de0
[ 2866.583655]  ? io_schedule_timeout+0x140/0x140
[ 2866.588224]  ? lock_downgrade+0x740/0x740
[ 2866.592459]  schedule+0x8d/0x1b0
[ 2866.595821]  schedule_preempt_disabled+0xf/0x20
[ 2866.600522]  __mutex_lock+0x669/0x1310
[ 2866.604407]  ? perf_trace_destroy+0x23/0xf0
[ 2866.608708]  ? perf_event_release_kernel+0x18e/0x8a0
[ 2866.613875]  ? __ww_mutex_wakeup_for_backoff+0x210/0x210
[ 2866.619318]  ? perf_event_release_kernel+0x396/0x8a0
[ 2866.624482]  ? lock_downgrade+0x740/0x740
[ 2866.628624]  ? rcu_lockdep_current_cpu_online+0xed/0x140
[ 2866.634264]  ? perf_tp_event_init+0xf0/0xf0
[ 2866.638582]  perf_trace_destroy+0x23/0xf0
[ 2866.642791]  ? perf_tp_event_init+0xf0/0xf0
[ 2866.647105]  _free_event+0x321/0xe20
[ 2866.650906]  perf_event_release_kernel+0x3b2/0x8a0
[ 2866.655832]  ? perf_event_release_kernel+0x8a0/0x8a0
[ 2866.660965]  perf_release+0x33/0x40
[ 2866.664604]  __fput+0x25f/0x7a0
[ 2866.667909]  task_work_run+0x11f/0x190
[ 2866.671863]  do_exit+0xa08/0x27f0
[ 2866.675323]  ? perf_trace_lock_acquire+0x510/0x510
[ 2866.680354]  ? mm_update_next_owner+0x5b0/0x5b0
[ 2866.685031]  ? get_signal+0x323/0x1ca0
[ 2866.688919]  ? lock_acquire+0x170/0x3f0
[ 2866.692937]  ? lock_downgrade+0x740/0x740
[ 2866.697093]  do_group_exit+0x100/0x2e0
[ 2866.701009]  get_signal+0x38d/0x1ca0
[ 2866.704743]  do_signal+0x7c/0x1550
[ 2866.708262]  ? perf_trace_lock_acquire+0x510/0x510
[ 2866.713267]  ? __might_fault+0x104/0x1b0
[ 2866.717325]  ? setup_sigcontext+0x820/0x820
[ 2866.721686]  ? lock_downgrade+0x740/0x740
[ 2866.725832]  ? __might_fault+0x177/0x1b0
[ 2866.729952]  ? _copy_to_user+0x82/0xd0
[ 2866.733860]  ? SyS_futex+0x1da/0x290
[ 2866.737569]  ? SyS_futex+0x1e3/0x290
[ 2866.741351]  ? exit_to_usermode_loop+0x41/0x200
[ 2866.746023]  exit_to_usermode_loop+0x160/0x200
[ 2866.750658]  do_syscall_64+0x4a3/0x640
[ 2866.754542]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2866.759713] RIP: 0033:0x45d5b9
[ 2866.762954] RSP: 002b:00007f84c90c4cf8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 2866.770703] RAX: fffffffffffffe00 RBX: 000000000118d128 RCX: 000000000045d5b9
[ 2866.777985] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 000000000118d128
[ 2866.785316] RBP: 000000000118d120 R08: 0000000000000000 R09: 0000000000000000
[ 2866.792651] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118d12c
[ 2866.799981] R13: 00007ffe5e351bdf R14: 00007f84c90c59c0 R15: 000000000118d12c
[ 2866.807274] INFO: task syz-executor.2:21984 blocked for more than 140 seconds.
[ 2866.814713]       Not tainted 4.14.197-syzkaller #0
[ 2866.819803] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2866.827770] syz-executor.2  D27872 21984   6371 0x80000002
[ 2866.833466] Call Trace:
[ 2866.836049]  __schedule+0x88b/0x1de0
[ 2866.839978]  ? io_schedule_timeout+0x140/0x140
[ 2866.844556]  ? lock_downgrade+0x740/0x740
[ 2866.848698]  schedule+0x8d/0x1b0
[ 2866.852132]  schedule_preempt_disabled+0xf/0x20
[ 2866.856794]  __mutex_lock+0x669/0x1310
[ 2866.860741]  ? perf_trace_destroy+0x23/0xf0
[ 2866.865056]  ? perf_event_release_kernel+0x18e/0x8a0
[ 2866.870231]  ? __ww_mutex_wakeup_for_backoff+0x210/0x210
[ 2866.875670]  ? perf_event_release_kernel+0x396/0x8a0
[ 2866.880850]  ? lock_downgrade+0x740/0x740
[ 2866.885013]  ? rcu_lockdep_current_cpu_online+0xed/0x140
[ 2866.890523]  ? perf_tp_event_init+0xf0/0xf0
[ 2866.894845]  perf_trace_destroy+0x23/0xf0
[ 2866.898970]  ? perf_tp_event_init+0xf0/0xf0
[ 2866.903409]  _free_event+0x321/0xe20
[ 2866.907129]  perf_event_release_kernel+0x3b2/0x8a0
[ 2866.912112]  ? perf_event_release_kernel+0x8a0/0x8a0
[ 2866.917206]  perf_release+0x33/0x40
[ 2866.920897]  __fput+0x25f/0x7a0
[ 2866.924191]  task_work_run+0x11f/0x190
[ 2866.928072]  do_exit+0xa08/0x27f0
[ 2866.931565]  ? perf_trace_lock_acquire+0x510/0x510
[ 2866.936494]  ? mm_update_next_owner+0x5b0/0x5b0
[ 2866.941225]  ? get_signal+0x323/0x1ca0
[ 2866.945157]  ? lock_acquire+0x170/0x3f0
[ 2866.949115]  ? lock_downgrade+0x740/0x740
[ 2866.953317]  do_group_exit+0x100/0x2e0
[ 2866.957204]  get_signal+0x38d/0x1ca0
[ 2866.960965]  do_signal+0x7c/0x1550
[ 2866.964513]  ? perf_trace_lock_acquire+0x510/0x510
[ 2866.969435]  ? __might_fault+0x104/0x1b0
[ 2866.973559]  ? setup_sigcontext+0x820/0x820
[ 2866.977876]  ? lock_downgrade+0x740/0x740
[ 2866.982091]  ? __might_fault+0x177/0x1b0
[ 2866.986160]  ? _copy_to_user+0x82/0xd0
[ 2866.990111]  ? SyS_futex+0x1da/0x290
[ 2866.993822]  ? SyS_futex+0x1e3/0x290
[ 2866.997525]  ? exit_to_usermode_loop+0x41/0x200
[ 2867.002253]  exit_to_usermode_loop+0x160/0x200
[ 2867.006863]  do_syscall_64+0x4a3/0x640
[ 2867.010816]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2867.016014] RIP: 0033:0x45d5b9
[ 2867.019193] RSP: 002b:00007f84c90c4cf8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 2867.026959] RAX: fffffffffffffe00 RBX: 000000000118d128 RCX: 000000000045d5b9
[ 2867.034307] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 000000000118d128
[ 2867.041640] RBP: 000000000118d120 R08: 0000000000000000 R09: 0000000000000000
[ 2867.048909] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118d12c
[ 2867.056368] R13: 00007ffe5e351bdf R14: 00007f84c90c59c0 R15: 000000000118d12c
[ 2867.063748] INFO: task syz-executor.5:25049 blocked for more than 140 seconds.
[ 2867.071183]       Not tainted 4.14.197-syzkaller #0
[ 2867.076186] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2867.084228] syz-executor.5  D28560 25049   6374 0x80000002
[ 2867.089967] Call Trace:
[ 2867.092550]  __schedule+0x88b/0x1de0
[ 2867.096243]  ? trace_hardirqs_on_caller+0x3a8/0x580
[ 2867.101325]  ? io_schedule_timeout+0x140/0x140
[ 2867.105921]  schedule+0x8d/0x1b0
[ 2867.109280]  _synchronize_rcu_expedited+0x5f6/0x770
[ 2867.114344]  ? call_rcu_sched+0x10/0x10
[ 2867.118331]  ? sync_rcu_exp_select_cpus+0xd40/0xd40
[ 2867.123385]  ? entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2867.128747]  ? trace_hardirqs_on+0x10/0x10
[ 2867.133039]  ? wait_woken+0x230/0x230
[ 2867.136844]  ? perf_trace_lock+0xf7/0x490
[ 2867.141029]  ? perf_trace_lock_acquire+0x510/0x510
[ 2867.145969]  ? check_preemption_disabled+0x35/0x240
[ 2867.151061]  ? check_preemption_disabled+0x35/0x240
[ 2867.156088]  ? perf_trace_lock+0xf7/0x490
[ 2867.160297]  ? perf_trace_lock+0xf7/0x490
[ 2867.164462]  synchronize_rcu+0x98/0x130
[ 2867.168415]  ? synchronize_rcu_expedited+0xa0/0xa0
[ 2867.173404]  ? lock_downgrade+0x740/0x740
[ 2867.177551]  ? up_write+0x17/0x60
[ 2867.181060]  drop_collected_mounts+0x147/0x160
[ 2867.185650]  ? collect_mounts+0x270/0x270
[ 2867.189849]  ? exit_fs+0x113/0x160
[ 2867.193390]  put_mnt_ns+0x42/0x60
[ 2867.196847]  free_nsproxy+0x40/0x1f0
[ 2867.200628]  switch_task_namespaces+0x8f/0xb0
[ 2867.205137]  do_exit+0xa03/0x27f0
[ 2867.208584]  ? perf_trace_lock_acquire+0x510/0x510
[ 2867.213574]  ? mm_update_next_owner+0x5b0/0x5b0
[ 2867.218236]  ? get_signal+0x323/0x1ca0
[ 2867.222200]  ? lock_acquire+0x170/0x3f0
[ 2867.226173]  ? lock_downgrade+0x740/0x740
[ 2867.230380]  do_group_exit+0x100/0x2e0
[ 2867.234266]  get_signal+0x38d/0x1ca0
[ 2867.237961]  ? perf_trace_lock+0xf7/0x490
[ 2867.242169]  ? check_preemption_disabled+0x35/0x240
[ 2867.247198]  do_signal+0x7c/0x1550
[ 2867.250784]  ? perf_trace_lock_acquire+0x510/0x510
[ 2867.255726]  ? __might_fault+0x104/0x1b0
[ 2867.260002]  ? setup_sigcontext+0x820/0x820
[ 2867.264322]  ? lock_downgrade+0x740/0x740
[ 2867.268477]  ? __might_fault+0x177/0x1b0
[ 2867.272593]  ? _copy_to_user+0x82/0xd0
[ 2867.276494]  ? SyS_futex+0x1da/0x290
[ 2867.280278]  ? SyS_futex+0x1e3/0x290
[ 2867.283989]  ? exit_to_usermode_loop+0x41/0x200
[ 2867.288658]  exit_to_usermode_loop+0x160/0x200
[ 2867.293332]  do_syscall_64+0x4a3/0x640
[ 2867.297213]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2867.302433] RIP: 0033:0x45d5b9
[ 2867.305613] RSP: 002b:00007f2fd395ccf8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 2867.313363] RAX: fffffffffffffe00 RBX: 000000000118d128 RCX: 000000000045d5b9
[ 2867.320694] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 000000000118d128
[ 2867.327961] RBP: 000000000118d120 R08: 0000000000000000 R09: 0000000000000000
[ 2867.335288] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118d12c
[ 2867.342613] R13: 00007ffd00e1dc0f R14: 00007f2fd395d9c0 R15: 000000000118d12c
[ 2867.349974] INFO: task syz-executor.3:25623 blocked for more than 140 seconds.
[ 2867.357325]       Not tainted 4.14.197-syzkaller #0
[ 2867.362397] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2867.370413] syz-executor.3  D27872 25623   6372 0x80000002
[ 2867.376043] Call Trace:
[ 2867.378612]  __schedule+0x88b/0x1de0
[ 2867.382480]  ? io_schedule_timeout+0x140/0x140
[ 2867.387056]  ? lock_downgrade+0x740/0x740
[ 2867.391256]  schedule+0x8d/0x1b0
[ 2867.394622]  schedule_preempt_disabled+0xf/0x20
[ 2867.399293]  __mutex_lock+0x669/0x1310
[ 2867.403240]  ? perf_trace_destroy+0x23/0xf0
[ 2867.407567]  ? perf_event_release_kernel+0x18e/0x8a0
[ 2867.412779]  ? __ww_mutex_wakeup_for_backoff+0x210/0x210
[ 2867.418220]  ? perf_event_release_kernel+0x396/0x8a0
[ 2867.423404]  ? lock_downgrade+0x740/0x740
[ 2867.427554]  ? rcu_lockdep_current_cpu_online+0xed/0x140
[ 2867.433067]  ? perf_tp_event_init+0xf0/0xf0
[ 2867.437388]  perf_trace_destroy+0x23/0xf0
[ 2867.441601]  ? perf_tp_event_init+0xf0/0xf0
[ 2867.445950]  _free_event+0x321/0xe20
[ 2867.450674]  perf_event_release_kernel+0x3b2/0x8a0
[ 2867.455619]  ? perf_event_release_kernel+0x8a0/0x8a0
[ 2867.460783]  perf_release+0x33/0x40
[ 2867.464419]  __fput+0x25f/0x7a0
[ 2867.467680]  task_work_run+0x11f/0x190
[ 2867.471789]  do_exit+0xa08/0x27f0
[ 2867.475239]  ? perf_trace_lock_acquire+0x510/0x510
[ 2867.480226]  ? mm_update_next_owner+0x5b0/0x5b0
[ 2867.484897]  ? get_signal+0x323/0x1ca0
[ 2867.488763]  ? lock_acquire+0x170/0x3f0
[ 2867.492776]  ? lock_downgrade+0x740/0x740
[ 2867.496921]  do_group_exit+0x100/0x2e0
[ 2867.500846]  get_signal+0x38d/0x1ca0
[ 2867.504563]  do_signal+0x7c/0x1550
[ 2867.508083]  ? perf_trace_lock_acquire+0x510/0x510
[ 2867.513078]  ? __might_fault+0x104/0x1b0
[ 2867.517146]  ? setup_sigcontext+0x820/0x820
[ 2867.521507]  ? lock_downgrade+0x740/0x740
[ 2867.525657]  ? __might_fault+0x177/0x1b0
[ 2867.529770]  ? _copy_to_user+0x82/0xd0
[ 2867.533660]  ? SyS_futex+0x1da/0x290
[ 2867.537359]  ? SyS_futex+0x1e3/0x290
[ 2867.541124]  ? exit_to_usermode_loop+0x41/0x200
[ 2867.545820]  exit_to_usermode_loop+0x160/0x200
[ 2867.550487]  do_syscall_64+0x4a3/0x640
[ 2867.554388]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2867.559556] RIP: 0033:0x45d5b9
[ 2867.562815] RSP: 002b:00007f885b31ecf8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 2867.570572] RAX: fffffffffffffe00 RBX: 000000000118cfe8 RCX: 000000000045d5b9
[ 2867.577838] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 000000000118cfe8
[ 2867.585145] RBP: 000000000118cfe0 R08: 0000000000000000 R09: 0000000000000000
[ 2867.592462] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118cfec
[ 2867.599782] R13: 00007ffe0a0f532f R14: 00007f885b31f9c0 R15: 000000000118cfec
[ 2867.607990] 
[ 2867.607990] Showing all locks held in the system:
[ 2867.614384] 1 lock held by khungtaskd/1068:
[ 2867.618991]  #0:  (tasklist_lock){.+.+}, at: [<ffffffff814777f4>] debug_show_all_locks+0x7c/0x21a
[ 2867.628161] 1 lock held by syz-executor.1/20558:
[ 2867.633002]  #0:  (event_mutex){+.+.}, at: [<ffffffff816183b3>] perf_trace_destroy+0x23/0xf0
[ 2867.641670] 1 lock held by syz-executor.3/20904:
[ 2867.646415]  #0:  (event_mutex){+.+.}, at: [<ffffffff816183b3>] perf_trace_destroy+0x23/0xf0
[ 2867.655065] 1 lock held by syz-executor.5/21347:
[ 2867.659887]  #0:  (event_mutex){+.+.}, at: [<ffffffff816183b3>] perf_trace_destroy+0x23/0xf0
[ 2867.668491] 1 lock held by syz-executor.5/21381:
[ 2867.673302]  #0:  (event_mutex){+.+.}, at: [<ffffffff816183b3>] perf_trace_destroy+0x23/0xf0
[ 2867.681989] 1 lock held by syz-executor.5/21452:
[ 2867.686733]  #0:  (event_mutex){+.+.}, at: [<ffffffff816183b3>] perf_trace_destroy+0x23/0xf0
[ 2867.695389] 1 lock held by syz-executor.3/21489:
[ 2867.700211]  #0:  (event_mutex){+.+.}, at: [<ffffffff816183b3>] perf_trace_destroy+0x23/0xf0
[ 2867.708819] 1 lock held by syz-executor.2/21864:
[ 2867.713644]  #0:  (event_mutex){+.+.}, at: [<ffffffff816183b3>] perf_trace_destroy+0x23/0xf0
[ 2867.722384] 1 lock held by syz-executor.2/21984:
[ 2867.727127]  #0:  (event_mutex){+.+.}, at: [<ffffffff816183b3>] perf_trace_destroy+0x23/0xf0
[ 2867.735794] 1 lock held by syz-executor.3/25623:
[ 2867.740626]  #0:  (event_mutex){+.+.}, at: [<ffffffff816183b3>] perf_trace_destroy+0x23/0xf0
[ 2867.749223] 1 lock held by syz-executor.2/27029:
[ 2867.754023]  #0:  (event_mutex){+.+.}, at: [<ffffffff816183b3>] perf_trace_destroy+0x23/0xf0
[ 2867.762694] 1 lock held by syz-executor.2/28917:
[ 2867.767435]  #0:  (event_mutex){+.+.}, at: [<ffffffff816183b3>] perf_trace_destroy+0x23/0xf0
[ 2867.776075] 1 lock held by syz-executor.2/28964:
[ 2867.780908]  #0:  (event_mutex){+.+.}, at: [<ffffffff816183b3>] perf_trace_destroy+0x23/0xf0
[ 2867.789502] 1 lock held by syz-executor.2/29175:
[ 2867.794339]  #0:  (event_mutex){+.+.}, at: [<ffffffff816183b3>] perf_trace_destroy+0x23/0xf0
[ 2867.803016] 1 lock held by syz-executor.5/31234:
[ 2867.807759]  #0:  (event_mutex){+.+.}, at: [<ffffffff816183b3>] perf_trace_destroy+0x23/0xf0
[ 2867.816417] 1 lock held by syz-executor.2/32062:
[ 2867.821295]  #0:  (event_mutex){+.+.}, at: [<ffffffff816183b3>] perf_trace_destroy+0x23/0xf0
[ 2867.829979] 2 locks held by syz-executor.3/3850:
[ 2867.834722]  #0:  (event_mutex){+.+.}, at: [<ffffffff816183b3>] perf_trace_destroy+0x23/0xf0
[ 2867.843362]  #1:  (rcu_sched_state.exp_mutex){+.+.}, at: [<ffffffff814d2842>] _synchronize_rcu_expedited+0x2c2/0x770
[ 2867.854115] 1 lock held by syz-executor.1/16255:
[ 2867.858856]  #0:  (event_mutex){+.+.}, at: [<ffffffff816183b3>] perf_trace_destroy+0x23/0xf0
[ 2867.867523] 1 lock held by syz-executor.2/17013:
[ 2867.872365]  #0:  (event_mutex){+.+.}, at: [<ffffffff816183b3>] perf_trace_destroy+0x23/0xf0
[ 2867.881077] 1 lock held by syz-executor.2/17757:
[ 2867.885823]  #0:  (event_mutex){+.+.}, at: [<ffffffff816183b3>] perf_trace_destroy+0x23/0xf0
[ 2867.894482] 1 lock held by syz-executor.1/18202:
[ 2867.899239]  #0:  (event_mutex){+.+.}, at: [<ffffffff816183b3>] perf_trace_destroy+0x23/0xf0
[ 2867.907918] 1 lock held by syz-executor.2/18523:
[ 2867.912735]  #0:  (event_mutex){+.+.}, at: [<ffffffff816183b3>] perf_trace_destroy+0x23/0xf0
[ 2867.921407] 1 lock held by syz-executor.2/18857:
[ 2867.926153]  #0:  (event_mutex){+.+.}, at: [<ffffffff816183b3>] perf_trace_destroy+0x23/0xf0
[ 2867.934808] 1 lock held by syz-executor.1/20431:
[ 2867.940641]  #0:  (event_mutex){+.+.}, at: [<ffffffff816183b3>] perf_trace_destroy+0x23/0xf0
[ 2867.949253] 3 locks held by kworker/0:0/26450:
[ 2867.953902]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2867.962414]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2867.971604]  #2:  (rcu_preempt_state.exp_mutex){+.+.}, at: [<ffffffff814d28ad>] _synchronize_rcu_expedited+0x32d/0x770
[ 2867.982544] 2 locks held by kworker/1:3/26452:
[ 2867.987125]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2867.995578]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2868.004801] 2 locks held by kworker/1:5/26455:
[ 2868.009370]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2868.017848]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2868.027069] 2 locks held by kworker/1:6/26461:
[ 2868.031709]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2868.040220]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2868.050384] 3 locks held by kworker/0:82/26642:
[ 2868.055040]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2868.063522]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2868.072736]  #2:  (rcu_preempt_state.exp_mutex){+.+.}, at: [<ffffffff814d28ad>] _synchronize_rcu_expedited+0x32d/0x770
[ 2868.083680] 1 lock held by syz-executor.1/28691:
[ 2868.088425]  #0:  (event_mutex){+.+.}, at: [<ffffffff816183b3>] perf_trace_destroy+0x23/0xf0
[ 2868.097061] 1 lock held by syz-executor.1/29412:
[ 2868.101914]  #0:  (event_mutex){+.+.}, at: [<ffffffff816183b3>] perf_trace_destroy+0x23/0xf0
[ 2868.110581] 2 locks held by kworker/0:1/31626:
[ 2868.115149]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2868.123632]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2868.132821] 1 lock held by syz-executor.5/31823:
[ 2868.137564]  #0:  (event_mutex){+.+.}, at: [<ffffffff816183b3>] perf_trace_destroy+0x23/0xf0
[ 2868.146239] 1 lock held by syz-executor.5/31931:
[ 2868.151042]  #0:  (event_mutex){+.+.}, at: [<ffffffff816183b3>] perf_trace_destroy+0x23/0xf0
[ 2868.159749] 1 lock held by syz-executor.5/32310:
[ 2868.164497]  #0:  (event_mutex){+.+.}, at: [<ffffffff816183b3>] perf_trace_destroy+0x23/0xf0
[ 2868.173150] 2 locks held by kworker/1:0/345:
[ 2868.177548]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2868.186026]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2868.195205] 2 locks held by kworker/0:2/347:
[ 2868.199618]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2868.208100]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2868.217279] 2 locks held by kworker/1:1/348:
[ 2868.221756]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2868.230440]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2868.239562] 2 locks held by kworker/0:3/349:
[ 2868.244032]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2868.252517]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2868.261729] 2 locks held by kworker/1:2/350:
[ 2868.266127]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2868.274590]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2868.283794] 2 locks held by kworker/0:4/351:
[ 2868.288217]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2868.296898]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2868.306109] 2 locks held by kworker/1:4/352:
[ 2868.310587]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2868.319002]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2868.328184] 2 locks held by kworker/0:5/353:
[ 2868.332631]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2868.341116]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2868.350317] 2 locks held by kworker/1:7/354:
[ 2868.354727]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2868.363200]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2868.372406] 2 locks held by kworker/0:6/355:
[ 2868.376816]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2868.385274]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2868.394450] 2 locks held by kworker/1:8/356:
[ 2868.398854]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2868.407372]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2868.416576] 2 locks held by kworker/0:7/357:
[ 2868.421079]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2868.429518]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2868.438729] 2 locks held by kworker/1:9/358:
[ 2868.443228]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2868.451761]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2868.460949] 2 locks held by kworker/0:8/359:
[ 2868.465346]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2868.473825]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2868.483028] 2 locks held by kworker/1:10/360:
[ 2868.487509]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2868.495967]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2868.505172] 2 locks held by kworker/1:11/361:
[ 2868.509734]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2868.518167]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2868.527819] 2 locks held by kworker/0:9/362:
[ 2868.532284]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2868.540804]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2868.549989] 2 locks held by kworker/1:12/363:
[ 2868.554474]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2868.562933]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2868.572132] 2 locks held by kworker/0:10/364:
[ 2868.576637]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2868.585555]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2868.594739] 2 locks held by kworker/1:13/365:
[ 2868.599318]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2868.607791]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2868.617357] 2 locks held by kworker/0:11/366:
[ 2868.621909]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2868.630405]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2868.639535] 2 locks held by kworker/1:14/367:
[ 2868.644054]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2868.652515]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2868.661703] 2 locks held by kworker/0:12/368:
[ 2868.666204]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2868.674683]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2868.683873] 2 locks held by kworker/1:15/369:
[ 2868.688367]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2868.696809]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2868.706423] 2 locks held by kworker/0:13/370:
[ 2868.710978]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2868.719403]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2868.728589] 2 locks held by kworker/1:16/371:
[ 2868.733136]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2868.741612]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2868.750801] 2 locks held by kworker/0:14/372:
[ 2868.755289]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2868.764726]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2868.773922] 2 locks held by kworker/0:15/373:
[ 2868.778444]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2868.786905]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2868.796113] 2 locks held by kworker/1:17/374:
[ 2868.800663]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2868.809077]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2868.818231] 2 locks held by kworker/0:16/375:
[ 2868.822798]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2868.831279]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2868.840479] 2 locks held by kworker/0:17/376:
[ 2868.844980]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2868.853436]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2868.862611] 2 locks held by kworker/1:18/377:
[ 2868.867091]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2868.875556]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2868.884738] 2 locks held by kworker/1:19/378:
[ 2868.889243]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2868.897679]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2868.906845] 2 locks held by kworker/0:18/379:
[ 2868.911392]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2868.919866]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2868.928977] 2 locks held by kworker/1:20/380:
[ 2868.933493]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2868.941977]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2868.951172] 2 locks held by kworker/0:19/381:
[ 2868.955662]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2868.964136]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2868.973310] 2 locks held by kworker/1:21/382:
[ 2868.977792]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2868.986233]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2868.995400] 2 locks held by kworker/1:22/383:
[ 2868.999962]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2869.008373]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2869.017510] 2 locks held by kworker/0:20/384:
[ 2869.022037]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2869.030510]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2869.039696] 2 locks held by kworker/0:21/385:
[ 2869.044177]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2869.052613]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2869.061796] 2 locks held by kworker/0:22/386:
[ 2869.066276]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2869.074733]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2869.083899] 2 locks held by kworker/1:23/388:
[ 2869.088395]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2869.097527]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2869.106709] 2 locks held by kworker/0:23/389:
[ 2869.111253]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2869.119739]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2869.128888] 2 locks held by kworker/1:24/390:
[ 2869.133432]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2869.141919]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2869.151158] 2 locks held by kworker/0:24/391:
[ 2869.155645]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2869.164110]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2869.173293] 2 locks held by kworker/0:25/392:
[ 2869.177772]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2869.187174]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2869.196352] 2 locks held by kworker/0:26/393:
[ 2869.200898]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2869.209310]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2869.218462] 2 locks held by kworker/1:25/394:
[ 2869.222993]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2869.231475]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2869.240652] 2 locks held by kworker/0:27/395:
[ 2869.245135]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2869.253604]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2869.262786] 2 locks held by kworker/0:28/396:
[ 2869.267266]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2869.275719]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2869.284898] 2 locks held by kworker/1:26/397:
[ 2869.289380]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2869.297851]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2869.307058] 2 locks held by kworker/0:29/398:
[ 2869.311610]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2869.320105]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2869.329222] 2 locks held by kworker/1:27/399:
[ 2869.333758]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2869.342230]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2869.351417] 2 locks held by kworker/0:30/400:
[ 2869.355918]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2869.364379]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2869.373567] 2 locks held by kworker/1:28/401:
[ 2869.378064]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2869.386547]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2869.395721] 2 locks held by kworker/0:31/402:
[ 2869.400294]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2869.408745]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2869.417883] 2 locks held by kworker/1:29/403:
[ 2869.422424]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2869.430909]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2869.440111] 2 locks held by kworker/1:30/404:
[ 2869.444628]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2869.453124]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2869.462559] 2 locks held by kworker/0:32/405:
[ 2869.467041]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2869.475505]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2869.484684] 2 locks held by kworker/1:31/406:
[ 2869.489166]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2869.497627]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2869.506818] 2 locks held by kworker/0:33/407:
[ 2869.511352]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2869.519845]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2869.528973] 2 locks held by kworker/1:32/408:
[ 2869.533512]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2869.541985]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2869.551169] 2 locks held by kworker/0:34/409:
[ 2869.555672]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2869.564139]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2869.573322] 2 locks held by kworker/1:33/410:
[ 2869.577821]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2869.586285]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2869.595517] 2 locks held by kworker/0:35/411:
[ 2869.600058]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2869.608474]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2869.617655] 2 locks held by kworker/0:36/412:
[ 2869.622183]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2869.630694]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2869.639866] 2 locks held by kworker/1:34/413:
[ 2869.644369]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2869.652808]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2869.661987] 2 locks held by kworker/0:37/414:
[ 2869.666484]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2869.674922]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2869.684104] 2 locks held by kworker/0:38/415:
[ 2869.688589]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2869.697031]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2869.706198] 2 locks held by kworker/1:35/416:
[ 2869.710750]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2869.719177]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2869.728778] 2 locks held by kworker/0:39/418:
[ 2869.733313]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2869.741791]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2869.750968] 2 locks held by kworker/1:36/419:
[ 2869.755451]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2869.763899]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2869.773089] 2 locks held by kworker/1:37/420:
[ 2869.777581]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2869.786023]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2869.795207] 2 locks held by kworker/0:40/421:
[ 2869.799759]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2869.808179]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2869.817331] 2 locks held by kworker/1:38/422:
[ 2869.821881]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2869.830355]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2869.839472] 2 locks held by kworker/1:39/423:
[ 2869.844004]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2869.852482]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2869.861660] 2 locks held by kworker/0:41/424:
[ 2869.866144]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2869.874604]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2869.883773] 2 locks held by kworker/1:40/425:
[ 2869.888264]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2869.896710]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2869.905898] 2 locks held by kworker/0:42/426:
[ 2869.910453]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2869.918870]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2869.928014] 2 locks held by kworker/1:41/427:
[ 2869.932545]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2869.941041]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2869.950230] 2 locks held by kworker/0:43/428:
[ 2869.954741]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2869.963197]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2869.972403] 2 locks held by kworker/1:42/429:
[ 2869.976930]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2869.985374]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2869.994582] 2 locks held by kworker/0:44/430:
[ 2869.999065]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2870.007524]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2870.016722] 2 locks held by kworker/1:43/431:
[ 2870.021305]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2870.029792]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2870.038946] 2 locks held by kworker/0:45/432:
[ 2870.043478]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2870.051963]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2870.061155] 2 locks held by kworker/1:44/433:
[ 2870.065643]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2870.074126]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2870.083315] 2 locks held by kworker/0:46/434:
[ 2870.087802]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2870.096264]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2870.105461] 2 locks held by kworker/1:45/435:
[ 2870.110013]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2870.118426]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2870.127573] 2 locks held by kworker/0:47/436:
[ 2870.132104]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2870.140616]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2870.149787] 2 locks held by kworker/1:46/437:
[ 2870.154269]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2870.162718]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2870.171926] 2 locks held by kworker/0:48/438:
[ 2870.177102]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2870.185554]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2870.194717] 2 locks held by kworker/1:47/439:
[ 2870.199203]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2870.207671]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2870.216873] 2 locks held by kworker/0:49/440:
[ 2870.221427]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2870.230867]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2870.240042] 2 locks held by kworker/1:48/441:
[ 2870.244538]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2870.252982]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2870.262156] 2 locks held by kworker/0:50/442:
[ 2870.266655]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2870.275119]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2870.284345] 2 locks held by kworker/0:51/443:
[ 2870.288830]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2870.297338]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2870.306517] 2 locks held by kworker/1:49/444:
[ 2870.311087]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2870.319564]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2870.328778] 2 locks held by kworker/0:52/445:
[ 2870.333303]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2870.341803]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2870.351004] 2 locks held by kworker/1:50/446:
[ 2870.355493]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2870.363969]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2870.373147] 2 locks held by kworker/1:51/447:
[ 2870.377630]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2870.386432]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2870.395617] 2 locks held by kworker/0:53/448:
[ 2870.400167]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2870.408579]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2870.417735] 2 locks held by kworker/1:52/449:
[ 2870.422279]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2870.430804]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2870.439990] 2 locks held by kworker/0:54/450:
[ 2870.444486]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2870.453012]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2870.462198] 2 locks held by kworker/0:55/451:
[ 2870.466700]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2870.475140]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2870.484342] 2 locks held by kworker/1:53/452:
[ 2870.488821]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2870.497282]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2870.506454] 2 locks held by kworker/0:56/453:
[ 2870.510996]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2870.519415]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2870.528564] 2 locks held by kworker/1:54/454:
[ 2870.533109]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2870.541580]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2870.550824] 2 locks held by kworker/0:57/455:
[ 2870.555332]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2870.563785]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2870.572967] 2 locks held by kworker/1:55/456:
[ 2870.577448]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2870.585885]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2870.595048] 2 locks held by kworker/0:58/457:
[ 2870.599589]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2870.608012]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2870.617503] 2 locks held by kworker/1:56/458:
[ 2870.622560]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2870.631038]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2870.640197] 2 locks held by kworker/0:59/459:
[ 2870.644695]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2870.653170]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2870.662383] 2 locks held by kworker/1:57/460:
[ 2870.666876]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2870.675352]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2870.684519] 2 locks held by kworker/1:58/461:
[ 2870.689011]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2870.697462]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2870.706641] 2 locks held by kworker/0:60/462:
[ 2870.711194]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2870.719670]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2870.728785] 2 locks held by kworker/0:61/463:
[ 2870.733332]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2870.741805]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2870.750984] 2 locks held by kworker/1:59/464:
[ 2870.755465]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2870.763923]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2870.773185] 2 locks held by kworker/0:62/465:
[ 2870.777667]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2870.786145]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2870.795373] 2 locks held by kworker/0:63/466:
[ 2870.799930]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2870.808377]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2870.817527] 2 locks held by kworker/1:60/468:
[ 2870.822084]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2870.830555]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2870.839730] 2 locks held by kworker/0:64/469:
[ 2870.844214]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2870.852707]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2870.861907] 2 locks held by kworker/1:61/470:
[ 2870.866401]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2870.874863]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2870.884041] 2 locks held by kworker/0:65/471:
[ 2870.888543]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2870.896987]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2870.906259] 2 locks held by kworker/1:62/472:
[ 2870.910813]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2870.919230]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2870.928395] 2 locks held by kworker/0:66/473:
[ 2870.932980]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2870.941461]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2870.950625] 2 locks held by kworker/1:63/474:
[ 2870.955122]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2870.963560]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2870.972724] 2 locks held by kworker/0:67/475:
[ 2870.977205]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2870.985663]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2870.994854] 2 locks held by kworker/1:64/476:
[ 2870.999766]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2871.008185]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2871.017369] 2 locks held by kworker/0:68/477:
[ 2871.021912]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2871.030514]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2871.039684] 2 locks held by kworker/1:65/478:
[ 2871.044177]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2871.052637]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2871.061839] 2 locks held by kworker/0:69/479:
[ 2871.066343]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2871.074828]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2871.084007] 2 locks held by kworker/0:70/480:
[ 2871.088503]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2871.096964]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2871.106128] 2 locks held by kworker/0:71/481:
[ 2871.110693]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2871.119116]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2871.128279] 2 locks held by kworker/1:66/482:
[ 2871.132824]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2871.141306]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2871.150500] 2 locks held by kworker/1:67/483:
[ 2871.154982]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2871.163424]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2871.172601] 2 locks held by kworker/1:68/484:
[ 2871.177090]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2871.185540]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2871.194706] 2 locks held by kworker/1:69/485:
[ 2871.199188]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2871.207671]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2871.216866] 2 locks held by kworker/1:70/486:
[ 2871.221420]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2871.229904]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2871.239016] 2 locks held by kworker/1:71/487:
[ 2871.243536]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2871.252046]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2871.261219] 2 locks held by kworker/1:72/488:
[ 2871.265718]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2871.274172]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2871.283384] 2 locks held by kworker/1:73/489:
[ 2871.287867]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2871.296312]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2871.305495] 2 locks held by kworker/0:72/490:
[ 2871.310035]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2871.318495]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2871.327632] 2 locks held by kworker/1:74/491:
[ 2871.332176]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2871.340658]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2871.349832] 2 locks held by kworker/0:73/492:
[ 2871.354314]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2871.362768]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2871.371963] 2 locks held by kworker/1:75/493:
[ 2871.376457]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2871.384905]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2871.394095] 2 locks held by kworker/0:74/494:
[ 2871.398622]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2871.407105]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2871.416298] 2 locks held by kworker/1:76/495:
[ 2871.420846]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2871.429259]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2871.438444] 2 locks held by kworker/0:75/496:
[ 2871.443008]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2871.451511]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2871.460697] 2 locks held by kworker/1:77/497:
[ 2871.465211]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2871.473690]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2871.482875] 2 locks held by kworker/0:76/498:
[ 2871.487355]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2871.495796]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2871.504971] 2 locks held by kworker/1:78/499:
[ 2871.509498]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2871.517924]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2871.527103] 2 locks held by kworker/0:77/500:
[ 2871.531636]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2871.540144]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2871.549273] 2 locks held by kworker/1:79/501:
[ 2871.553817]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2871.562288]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2871.571471] 2 locks held by kworker/0:78/502:
[ 2871.575967]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2871.584409]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2871.593581] 2 locks held by kworker/1:80/503:
[ 2871.598062]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2871.606509]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2871.615681] 2 locks held by kworker/0:79/504:
[ 2871.620229]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2871.628683]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2871.639521] 2 locks held by kworker/1:81/505:
[ 2871.644011]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2871.652479]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2871.661730] 2 locks held by kworker/0:80/506:
[ 2871.666340]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2871.674782]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2871.683942] 2 locks held by kworker/1:82/507:
[ 2871.688452]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2871.696906]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2871.706072] 2 locks held by kworker/1:83/508:
[ 2871.710648]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2871.719077]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2871.728237] 2 locks held by kworker/1:84/509:
[ 2871.732770]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2871.741250]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2871.750454] 2 locks held by kworker/1:85/510:
[ 2871.754955]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2871.763399]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2871.772573] 2 locks held by kworker/0:81/511:
[ 2871.777071]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2871.785507]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2871.794675] 2 locks held by kworker/0:83/512:
[ 2871.799156]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2871.807613]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2871.816790] 2 locks held by kworker/1:86/513:
[ 2871.821356]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2871.829840]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2871.838970] 2 locks held by kworker/0:84/514:
[ 2871.843482]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2871.851950]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2871.862186] 2 locks held by kworker/1:87/515:
[ 2871.866691]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2871.875173]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2871.884357] 2 locks held by kworker/0:85/516:
[ 2871.888839]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2871.897300]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2871.906463] 2 locks held by kworker/1:88/517:
[ 2871.911017]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2871.919498]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2871.928629] 2 locks held by kworker/0:86/518:
[ 2871.933186]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2871.942632]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2871.951825] 2 locks held by kworker/1:89/519:
[ 2871.956314]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2871.964793]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2871.974005] 2 locks held by kworker/1:90/520:
[ 2871.978501]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2871.986943]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2871.996106] 2 locks held by kworker/1:91/521:
[ 2872.000656]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2872.009071]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2872.018216] 2 locks held by kworker/1:92/522:
[ 2872.022773]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2872.031244]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2872.040423] 2 locks held by kworker/1:93/523:
[ 2872.044904]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2872.053344]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2872.062536] 2 locks held by kworker/0:87/524:
[ 2872.067014]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2872.075461]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2872.084641] 2 locks held by kworker/1:94/526:
[ 2872.089121]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2872.097560]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2872.106724] 2 locks held by kworker/0:88/527:
[ 2872.111278]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2872.119752]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2872.128862] 2 locks held by kworker/1:95/528:
[ 2872.133374]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2872.141838]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2872.151022] 2 locks held by kworker/0:89/529:
[ 2872.155518]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2872.163967]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2872.173148] 2 locks held by kworker/1:96/530:
[ 2872.177630]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2872.186082]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2872.195268] 2 locks held by kworker/0:90/531:
[ 2872.199821]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2872.208241]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2872.217394] 2 locks held by kworker/1:97/532:
[ 2872.221939]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2872.230432]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2872.239610] 2 locks held by kworker/1:98/533:
[ 2872.244110]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2872.253777]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2872.262964] 2 locks held by kworker/1:99/534:
[ 2872.267444]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2872.275931]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2872.285241] 2 locks held by kworker/1:100/535:
[ 2872.289879]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2872.298322]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2872.307788] 2 locks held by kworker/1:101/536:
[ 2872.312417]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2872.320898]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2872.330078] 2 locks held by kworker/1:102/537:
[ 2872.334648]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2872.343088]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2872.352293] 2 locks held by kworker/1:103/538:
[ 2872.356870]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2872.365329]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2872.374512] 2 locks held by kworker/0:91/539:
[ 2872.378998]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2872.387478]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2872.396653] 2 locks held by kworker/0:92/540:
[ 2872.401200]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2872.409683]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2872.418827] 2 locks held by kworker/1:104/541:
[ 2872.423433]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2872.431922]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2872.441122] 2 locks held by kworker/1:105/542:
[ 2872.445703]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2872.454161]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2872.463333] 2 locks held by kworker/0:93/543:
[ 2872.467827]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2872.476271]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2872.485443] 2 locks held by kworker/0:94/544:
[ 2872.489986]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2872.498432]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2872.507590] 2 locks held by kworker/1:106/545:
[ 2872.512214]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2872.520700]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2872.529871] 2 locks held by kworker/0:95/546:
[ 2872.534364]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2872.542822]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2872.552022] 2 locks held by kworker/1:107/547:
[ 2872.556591]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2872.565043]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2872.574225] 2 locks held by kworker/0:96/548:
[ 2872.578806]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2872.587257]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2872.596450] 2 locks held by kworker/1:108/549:
[ 2872.601180]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2872.609679]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2872.618803] 2 locks held by kworker/0:97/550:
[ 2872.623520]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2872.632016]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2872.641200] 2 locks held by kworker/1:109/551:
[ 2872.645774]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2872.654225]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2872.663396] 2 locks held by kworker/0:98/552:
[ 2872.667896]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2872.676374]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2872.685549] 2 locks held by kworker/1:110/553:
[ 2872.690185]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2872.698609]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2872.707770] 2 locks held by kworker/0:99/554:
[ 2872.712310]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2872.720789]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2872.729945] 2 locks held by kworker/1:111/555:
[ 2872.734525]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2872.742978]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2872.752156] 2 locks held by kworker/0:100/556:
[ 2872.756724]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2872.765161]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2872.774346] 2 locks held by kworker/1:112/557:
[ 2872.778914]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2872.795944]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2872.805133] 2 locks held by kworker/1:113/558:
[ 2872.809758]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2872.818175]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2872.827321] 2 locks held by kworker/1:114/559:
[ 2872.831938]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2872.840505]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2872.849662] 2 locks held by kworker/1:115/560:
[ 2872.854229]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2872.862668]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2872.871852] 2 locks held by kworker/1:116/561:
[ 2872.876417]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2872.884852]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2872.894029] 2 locks held by kworker/1:117/562:
[ 2872.898596]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2872.907035]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2872.916319] 2 locks held by kworker/1:118/563:
[ 2872.920954]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2872.929445]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2872.938562] 2 locks held by kworker/0:101/564:
[ 2872.943168]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2872.951660]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2872.960842] 2 locks held by kworker/0:102/565:
[ 2872.965424]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2872.973863]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2872.983044] 2 locks held by kworker/1:119/566:
[ 2872.987787]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2872.996275]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2873.005567] 2 locks held by kworker/1:120/567:
[ 2873.010216]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2873.018637]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2873.027789] 2 locks held by kworker/0:103/568:
[ 2873.032416]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2873.040892]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2873.050049] 2 locks held by kworker/0:104/569:
[ 2873.054629]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2873.063089]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2873.072279] 2 locks held by kworker/1:121/570:
[ 2873.076851]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2873.085318]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2873.094496] 2 locks held by kworker/0:105/571:
[ 2873.099067]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2873.107531]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2873.116714] 2 locks held by kworker/0:106/572:
[ 2873.121355]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2873.129839]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2873.138962] 2 locks held by kworker/1:122/573:
[ 2873.143568]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2873.152030]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2873.161214] 2 locks held by kworker/1:123/574:
[ 2873.165785]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2873.174244]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2873.183421] 2 locks held by kworker/0:107/575:
[ 2873.188006]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2873.196447]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2873.205621] 2 locks held by kworker/1:124/577:
[ 2873.210267]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2873.218689]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2873.227869] 2 locks held by kworker/0:108/578:
[ 2873.232494]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2873.240978]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2873.250164] 2 locks held by kworker/0:109/579:
[ 2873.254734]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2873.263189]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2873.272373] 2 locks held by kworker/1:125/580:
[ 2873.276953]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2873.285395]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2873.294588] 2 locks held by kworker/0:110/581:
[ 2873.299167]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2873.307631]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2873.316918] 2 locks held by kworker/0:111/582:
[ 2873.321569]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2873.330051]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2873.339164] 2 locks held by kworker/1:126/583:
[ 2873.343787]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2873.352289]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2873.361460] 2 locks held by kworker/1:127/584:
[ 2873.366034]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2873.374504]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2873.383937] 2 locks held by kworker/1:128/585:
[ 2873.388537]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2873.397008]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2873.406195] 2 locks held by kworker/0:112/586:
[ 2873.410832]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2873.419257]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2873.428460] 2 locks held by kworker/1:129/587:
[ 2873.433118]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2873.441610]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2873.450776] 2 locks held by kworker/0:113/588:
[ 2873.455387]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2873.463924]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2873.473208] 2 locks held by kworker/0:114/589:
[ 2873.477840]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2873.486311]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2873.496136] 2 locks held by kworker/1:130/590:
[ 2873.500773]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2873.509201]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2873.518347] 2 locks held by kworker/0:115/591:
[ 2873.522974]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2873.531449]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2873.540639] 2 locks held by kworker/1:131/592:
[ 2873.545209]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2873.553729]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2873.562915] 2 locks held by kworker/0:116/593:
[ 2873.567484]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2873.575928]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2873.585094] 2 locks held by kworker/0:117/594:
[ 2873.589746]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2873.598170]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2873.607320] 2 locks held by kworker/1:132/595:
[ 2873.611957]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2873.620451]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2873.629623] 2 locks held by kworker/0:118/596:
[ 2873.634204]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2873.642643]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2873.651853] 2 locks held by kworker/1:133/597:
[ 2873.656431]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2873.664909]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2873.674118] 2 locks held by kworker/1:134/598:
[ 2873.678702]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2873.687172]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2873.696363] 2 locks held by kworker/0:119/599:
[ 2873.700992]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2873.709476]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2873.718587] 2 locks held by kworker/0:120/600:
[ 2873.723203]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2873.731714]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2873.740892] 2 locks held by kworker/1:135/601:
[ 2873.745461]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2873.753917]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2873.763087] 2 locks held by kworker/0:121/602:
[ 2873.767654]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2873.776102]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2873.785290] 2 locks held by kworker/0:122/603:
[ 2873.789917]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2873.798343]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2873.807481] 2 locks held by kworker/1:136/604:
[ 2873.812107]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2873.820582]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2873.829737] 2 locks held by kworker/0:123/605:
[ 2873.834303]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2873.842738]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2873.851920] 2 locks held by kworker/1:137/606:
[ 2873.856502]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2873.865027]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2873.874320] 2 locks held by kworker/1:138/607:
[ 2873.878895]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2873.887350]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2873.896522] 2 locks held by kworker/0:124/608:
[ 2873.901159]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2873.909644]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2873.918755] 2 locks held by kworker/1:139/609:
[ 2873.923364]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2873.931855]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2873.941049] 2 locks held by kworker/0:125/610:
[ 2873.945718]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2873.954189]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2873.963375] 2 locks held by kworker/1:140/611:
[ 2873.967946]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2873.976387]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2873.985565] 2 locks held by kworker/0:126/612:
[ 2873.990224]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2873.998644]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2874.007812] 2 locks held by kworker/1:141/613:
[ 2874.012426]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2874.020917]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2874.030101] 2 locks held by kworker/1:142/615:
[ 2874.034682]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2874.043142]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2874.052323] 2 locks held by kworker/0:127/616:
[ 2874.056904]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2874.065377]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2874.074826] 2 locks held by kworker/0:128/617:
[ 2874.079484]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2874.087916]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2874.097068] 2 locks held by kworker/1:143/618:
[ 2874.101682]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2874.110177]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2874.119340] 2 locks held by kworker/0:129/619:
[ 2874.123911]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2874.132357]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2874.141559] 2 locks held by kworker/0:130/620:
[ 2874.146128]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2874.154577]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2874.163758] 2 locks held by kworker/1:144/621:
[ 2874.168345]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2874.176798]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2874.185960] 2 locks held by kworker/1:145/622:
[ 2874.190593]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2874.199005]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2874.208165] 2 locks held by kworker/0:131/623:
[ 2874.212796]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2874.221281]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2874.230485] 2 locks held by kworker/0:132/624:
[ 2874.235065]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2874.243529]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2874.252693] 2 locks held by kworker/1:146/625:
[ 2874.257266]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2874.265750]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2874.274921] 2 locks held by kworker/0:133/626:
[ 2874.279559]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2874.288062]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2874.297309] 2 locks held by kworker/1:147/627:
[ 2874.301925]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2874.310403]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2874.319569] 2 locks held by kworker/1:148/628:
[ 2874.324165]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2874.332606]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2874.341872] 2 locks held by kworker/0:134/629:
[ 2874.346454]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2874.354892]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2874.364071] 2 locks held by kworker/1:149/630:
[ 2874.368639]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2874.377088]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2874.386358] 2 locks held by kworker/0:135/631:
[ 2874.390992]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2874.399471]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2874.408581] 2 locks held by kworker/1:150/632:
[ 2874.413195]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2874.421679]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2874.430860] 2 locks held by kworker/0:136/633:
[ 2874.435559]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2874.444039]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2874.453242] 2 locks held by kworker/1:151/634:
[ 2874.457814]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2874.466457]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2874.475635] 2 locks held by kworker/0:137/635:
[ 2874.480271]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2874.488691]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2874.497883] 2 locks held by kworker/1:152/636:
[ 2874.502510]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2874.510989]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2874.520148] 2 locks held by kworker/1:153/637:
[ 2874.524734]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2874.533186]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2874.542388] 2 locks held by kworker/0:138/638:
[ 2874.546957]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2874.555414]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2874.564588] 2 locks held by kworker/1:154/640:
[ 2874.569166]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2874.577619]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2874.586787] 2 locks held by kworker/0:139/641:
[ 2874.591422]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2874.599909]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2874.609044] 2 locks held by kworker/1:155/642:
[ 2874.613675]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2874.622146]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2874.631326] 2 locks held by kworker/0:140/643:
[ 2874.635908]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2874.644363]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2874.653551] 2 locks held by kworker/1:156/644:
[ 2874.658119]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2874.666606]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2874.675799] 2 locks held by kworker/0:141/645:
[ 2874.680439]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2874.688876]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2874.698079] 2 locks held by kworker/1:157/646:
[ 2874.702701]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2874.711195]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2874.720387] 2 locks held by kworker/1:158/647:
[ 2874.724974]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2874.733437]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2874.742637] 2 locks held by kworker/1:159/648:
[ 2874.747211]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2874.755722]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2874.764920] 2 locks held by kworker/1:160/649:
[ 2874.769554]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2874.777993]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2874.787161] 2 locks held by kworker/0:142/650:
[ 2874.791794]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2874.800275]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2874.809444] 2 locks held by kworker/1:161/651:
[ 2874.814014]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2874.822476]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2874.831687] 2 locks held by kworker/0:143/652:
[ 2874.836259]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2874.844729]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2874.853896] 2 locks held by kworker/1:162/653:
[ 2874.858483]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2874.866939]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2874.876123] 2 locks held by kworker/1:163/654:
[ 2874.880761]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2874.889174]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2874.898355] 2 locks held by kworker/0:144/655:
[ 2874.902986]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2874.911576]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2874.920775] 2 locks held by kworker/1:164/656:
[ 2874.925351]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2874.933793]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2874.942970] 2 locks held by kworker/0:145/657:
[ 2874.947542]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2874.956008]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2874.965181] 2 locks held by kworker/1:165/658:
[ 2874.969810]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2874.978229]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2874.987367] 2 locks held by kworker/0:146/659:
[ 2874.992000]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0
[ 2875.000484]  #1:  ((&ns->proc_work)){+.+.}, at: [<ffffffff813ba676>] process_one_work+0x6e6/0x14a0
[ 2875.009651] 2 locks held by kworker/1:166/660:
[ 2875.014243]  #0:  ("events"){+.+.}, at: [<ffffffff813ba640>] process_one_work+0x6b0/0x14a0