Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.10.53' (ECDSA) to the list of known hosts. syzkaller login: [ 33.929542] FAULT_INJECTION: forcing a failure. [ 33.929542] name failslab, interval 1, probability 0, space 0, times 1 [ 33.940978] CPU: 0 PID: 8119 Comm: syz-executor662 Not tainted 4.19.163-syzkaller #0 [ 33.948859] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 33.958213] Call Trace: [ 33.960786] dump_stack+0x1fc/0x2fe [ 33.964407] should_fail.cold+0xa/0x14 [ 33.968284] ? setup_fault_attr+0x200/0x200 [ 33.972590] __should_failslab+0x115/0x180 [ 33.976806] should_failslab+0x5/0xf [ 33.980539] kmem_cache_alloc+0x3f/0x370 [ 33.984594] anon_vma_clone+0xe0/0x5e0 [ 33.988472] anon_vma_fork+0x82/0x630 [ 33.992259] ? dup_userfaultfd+0x157/0x6b0 [ 33.996477] ? kmem_cache_alloc+0x315/0x370 [ 34.000793] copy_process.part.0+0x360f/0x8200 [ 34.005387] ? __cleanup_sighand+0x60/0x60 [ 34.009639] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 34.014208] ? debug_object_init_on_stack+0x20/0x20 [ 34.019207] ? kfree+0x110/0x210 [ 34.022559] _do_fork+0x22f/0xf30 [ 34.025999] ? fork_idle+0x220/0x220 executing program [ 34.029742] ? blkcg_schedule_throttle+0x1f0/0x1f0 [ 34.034655] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 34.039217] ? _raw_spin_unlock_irq+0x5a/0x80 [ 34.043694] ? task_work_run+0x126/0x1c0 [ 34.047851] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 34.053212] ? trace_hardirqs_off_caller+0x6e/0x210 [ 34.058229] ? do_syscall_64+0x21/0x620 [ 34.062199] do_syscall_64+0xf9/0x620 [ 34.065986] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 34.071154] RIP: 0033:0x44461a [ 34.074329] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00 [ 34.093209] RSP: 002b:00007fff12992980 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 34.100897] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 000000000044461a [ 34.108147] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011 [ 34.115411] RBP: 00007fff129929a0 R08: 0000000000000000 R09: 0000000001c29940 [ 34.122661] R10: 0000000001c29c10 R11: 0000000000000246 R12: 0000000000000000 [ 34.129911] R13: 0000000000402dc0 R14: 0000000000000000 R15: 0000000000000000 [ 34.154656] erofs: read_super, device -> /dev/loop0 [ 34.159899] erofs: options -> [ 34.163223] erofs: root inode @ nid 36 [ 34.168731] FAULT_INJECTION: forcing a failure. [ 34.168731] name failslab, interval 1, probability 0, space 0, times 0 [ 34.180382] CPU: 0 PID: 8122 Comm: syz-executor662 Not tainted 4.19.163-syzkaller #0 [ 34.188280] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 34.197613] Call Trace: [ 34.200189] dump_stack+0x1fc/0x2fe [ 34.203803] should_fail.cold+0xa/0x14 [ 34.207680] ? setup_fault_attr+0x200/0x200 [ 34.211988] ? lock_acquire+0x170/0x3c0 [ 34.215949] __should_failslab+0x115/0x180 [ 34.220176] should_failslab+0x5/0xf [ 34.223881] kmem_cache_alloc+0x277/0x370 [ 34.228014] __d_alloc+0x2b/0xa10 [ 34.231452] d_make_root+0x3e/0x90 [ 34.234976] erofs_fill_super+0x102f/0x12cc [ 34.239280] ? init_once+0x13/0x13 [ 34.242802] ? vsprintf+0x30/0x30 [ 34.246238] ? wait_for_completion_io+0x10/0x10 [ 34.250889] ? set_blocksize+0x163/0x3f0 [ 34.254933] mount_bdev+0x2fc/0x3b0 [ 34.258543] ? init_once+0x13/0x13 [ 34.262067] erofs_mount+0x8c/0xc0 [ 34.265592] ? erofs_kill_sb+0x20/0x20 [ 34.269462] ? alloc_pages_current+0x19b/0x2a0 [ 34.274043] ? __lockdep_init_map+0x100/0x5a0 [ 34.278523] mount_fs+0xa3/0x30c [ 34.281876] vfs_kern_mount.part.0+0x68/0x470 [ 34.286359] do_mount+0x113c/0x2f10 [ 34.289971] ? do_raw_spin_unlock+0x171/0x230 [ 34.294462] ? check_preemption_disabled+0x41/0x280 [ 34.299471] ? copy_mount_string+0x40/0x40 [ 34.303692] ? copy_mount_options+0x59/0x380 [ 34.308101] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 34.313100] ? kmem_cache_alloc_trace+0x323/0x380 [ 34.317926] ? copy_mount_options+0x26f/0x380 [ 34.322415] ksys_mount+0xcf/0x130 [ 34.325946] __x64_sys_mount+0xba/0x150 [ 34.329902] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 34.334487] do_syscall_64+0xf9/0x620 [ 34.338272] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 34.343443] RIP: 0033:0x44863a [ 34.346620] Code: b8 08 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 8d a2 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 6a a2 fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 34.365502] RSP: 002b:00007fff129927f8 EFLAGS: 00000297 ORIG_RAX: 00000000000000a5 [ 34.373210] RAX: ffffffffffffffda RBX: 00007fff12992850 RCX: 000000000044863a [ 34.380464] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007fff12992810 [ 34.387715] RBP: 00007fff12992810 R08: 00007fff12992850 R09: ffffffffffffffff [ 34.394969] R10: 0000000000000000 R11: 0000000000000297 R12: 0000000000000003 [ 34.402221] R13: 0000000000000006 R14: 0000000000000005 R15: 0000000000000005 [ 34.410438] ------------[ cut here ]------------ [ 34.415201] kernel BUG at fs/inode.c:1571! [ 34.419492] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 34.424858] CPU: 0 PID: 8122 Comm: syz-executor662 Not tainted 4.19.163-syzkaller #0 [ 34.432729] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 34.442072] RIP: 0010:iput+0x727/0x860 [ 34.445942] Code: b8 00 00 00 00 00 fc ff df 48 c1 ea 03 80 3c 02 00 0f 84 18 fd ff ff 48 8b 3c 24 e8 93 be ee ff e9 0a fd ff ff e8 c9 95 b8 ff <0f> 0b e8 c2 95 b8 ff 48 89 ef e8 1a f7 ff ff 4c 89 f7 e8 42 9d 69 [ 34.464865] RSP: 0018:ffff8880b027fa80 EFLAGS: 00010293 [ 34.470215] RAX: ffff8880afde01c0 RBX: 0000000000000040 RCX: ffffffff81ac337e [ 34.477471] RDX: 0000000000000000 RSI: ffffffff81ac3a47 RDI: 0000000000000007 [ 34.484740] RBP: ffff88808df7a4c0 R08: 0000000000000000 R09: 0000000000000000 [ 34.491990] R10: 0000000000000007 R11: 0000000000000000 R12: ffff8880ab68c2c0 [ 34.499245] R13: ffff88808df7a4c0 R14: 0000000000000000 R15: 00000000fffffff4 [ 34.506497] FS: 0000000001c29940(0000) GS:ffff8880ba000000(0000) knlGS:0000000000000000 [ 34.514702] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 34.520562] CR2: 000000000043fb10 CR3: 000000009b41d000 CR4: 00000000001406f0 [ 34.527826] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 34.535075] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 34.542322] Call Trace: [ 34.544894] erofs_fill_super+0x1205/0x12cc [ 34.549196] ? init_once+0x13/0x13 [ 34.552738] ? vsprintf+0x30/0x30 [ 34.556174] ? wait_for_completion_io+0x10/0x10 [ 34.560825] ? set_blocksize+0x163/0x3f0 [ 34.564870] mount_bdev+0x2fc/0x3b0 [ 34.568478] ? init_once+0x13/0x13 [ 34.572000] erofs_mount+0x8c/0xc0 [ 34.575522] ? erofs_kill_sb+0x20/0x20 [ 34.579389] ? alloc_pages_current+0x19b/0x2a0 [ 34.583968] ? __lockdep_init_map+0x100/0x5a0 [ 34.588449] mount_fs+0xa3/0x30c [ 34.591798] vfs_kern_mount.part.0+0x68/0x470 [ 34.596293] do_mount+0x113c/0x2f10 [ 34.599904] ? do_raw_spin_unlock+0x171/0x230 [ 34.604397] ? check_preemption_disabled+0x41/0x280 [ 34.609400] ? copy_mount_string+0x40/0x40 [ 34.613668] ? copy_mount_options+0x59/0x380 [ 34.618058] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 34.623056] ? kmem_cache_alloc_trace+0x323/0x380 [ 34.627881] ? copy_mount_options+0x26f/0x380 [ 34.632468] ksys_mount+0xcf/0x130 [ 34.636008] __x64_sys_mount+0xba/0x150 [ 34.639964] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 34.644526] do_syscall_64+0xf9/0x620 [ 34.648314] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 34.653500] RIP: 0033:0x44863a [ 34.656681] Code: b8 08 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 8d a2 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 6a a2 fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 34.675561] RSP: 002b:00007fff129927f8 EFLAGS: 00000297 ORIG_RAX: 00000000000000a5 [ 34.683254] RAX: ffffffffffffffda RBX: 00007fff12992850 RCX: 000000000044863a [ 34.690506] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007fff12992810 [ 34.697755] RBP: 00007fff12992810 R08: 00007fff12992850 R09: ffffffffffffffff [ 34.705002] R10: 0000000000000000 R11: 0000000000000297 R12: 0000000000000003 [ 34.712254] R13: 0000000000000006 R14: 0000000000000005 R15: 0000000000000005 [ 34.719534] Modules linked in: [ 34.722925] ---[ end trace cf9f2509f17ec52e ]--- [ 34.727709] RIP: 0010:iput+0x727/0x860 [ 34.731594] Code: b8 00 00 00 00 00 fc ff df 48 c1 ea 03 80 3c 02 00 0f 84 18 fd ff ff 48 8b 3c 24 e8 93 be ee ff e9 0a fd ff ff e8 c9 95 b8 ff <0f> 0b e8 c2 95 b8 ff 48 89 ef e8 1a f7 ff ff 4c 89 f7 e8 42 9d 69 [ 34.750547] RSP: 0018:ffff8880b027fa80 EFLAGS: 00010293 [ 34.755960] RAX: ffff8880afde01c0 RBX: 0000000000000040 RCX: ffffffff81ac337e [ 34.763212] RDX: 0000000000000000 RSI: ffffffff81ac3a47 RDI: 0000000000000007 [ 34.770510] RBP: ffff88808df7a4c0 R08: 0000000000000000 R09: 0000000000000000 [ 34.777803] R10: 0000000000000007 R11: 0000000000000000 R12: ffff8880ab68c2c0 [ 34.785105] R13: ffff88808df7a4c0 R14: 0000000000000000 R15: 00000000fffffff4 [ 34.792379] FS: 0000000001c29940(0000) GS:ffff8880ba000000(0000) knlGS:0000000000000000 [ 34.800618] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 34.806532] CR2: 000000000043fb10 CR3: 000000009b41d000 CR4: 00000000001406f0 [ 34.813819] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 34.821083] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 34.828370] Kernel panic - not syncing: Fatal exception [ 34.834308] Kernel Offset: disabled [ 34.837921] Rebooting in 86400 seconds..