[   63.225755][    T7]  process_one_work+0x965/0x1690
[   63.230725][    T7]  ? lock_release+0x800/0x800
[   63.235414][    T7]  ? pwq_dec_nr_in_flight+0x310/0x310
[   63.240831][    T7]  ? rwlock_bug.part.0+0x90/0x90
[   63.245790][    T7]  worker_thread+0x96/0xe10
[   63.250313][    T7]  ? process_one_work+0x1690/0x1690
[   63.255525][    T7]  kthread+0x3b5/0x4a0
[   63.259605][    T7]  ? kthread_mod_delayed_work+0x1a0/0x1a0
[   63.265367][    T7]  ? kthread_mod_delayed_work+0x1a0/0x1a0
[   63.271104][    T7]  ret_from_fork+0x1f/0x30
[[0;32m  OK  [0m] Listening on Load/Save RF Kill Switch Status /dev/rfkill Watch.
[[0;32m  OK  [0m] Started Getty on tty6.
[[0;32m  OK  [0m] Started Getty on tty5.
[[0;32m  OK  [0m] Started Getty on tty4.
[[0;32m  OK  [0m] Started Getty on tty3.
[[0;32m  OK  [0m] Started Getty on tty2.
[[0;32m  OK  [0m] Started Serial Getty on ttyS0.
[[0;32m  OK  [0m] Started Getty on tty1.
[[0;32m  OK  [0m] Reached target Login Prompts.
[[0;32m  OK  [0m] Reached target Multi-User System.
[[0;32m  OK  [0m] Reached target Graphical Interface.
         Starting Update UTMP about System Runlevel Changes...
         Starting Load/Save RF Kill Switch Status...
[   71.651199][ T6738] BUG: using smp_processor_id() in preemptible [00000000] code: systemd-rfkill/6738
[   71.660818][ T6738] caller is ext4_mb_new_blocks+0xa4d/0x3b70
[   71.666834][ T6738] CPU: 1 PID: 6738 Comm: systemd-rfkill Not tainted 5.8.0-rc1-syzkaller #0
[   71.675428][ T6738] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   71.685493][ T6738] Call Trace:
[   71.688796][ T6738]  dump_stack+0x18f/0x20d
[   71.693229][ T6738]  check_preemption_disabled+0x20d/0x220
[   71.698872][ T6738]  ext4_mb_new_blocks+0xa4d/0x3b70
[   71.704011][ T6738]  ? ext4_ext_search_right+0x2ca/0xb20
[   71.709495][ T6738]  ? ext4_inode_to_goal_block+0x2df/0x3f0
[   71.709518][ T6738]  ext4_ext_map_blocks+0x201b/0x33e0
[   71.709544][ T6738]  ? ext4_ext_release+0x10/0x10
[   71.725403][ T6738]  ? down_write_killable+0x170/0x170
[   71.730699][ T6738]  ? ext4_es_lookup_extent+0x41d/0xd10
[   71.736181][ T6738]  ext4_map_blocks+0x4cb/0x1640
[   71.741060][ T6738]  ? ext4_issue_zeroout+0x1e0/0x1e0
[   71.746283][ T6738]  ? rcu_read_lock_sched_held+0x9c/0xd0
[   71.752651][ T6738]  ? rcu_read_lock_any_held.part.0+0x50/0x50
[   71.758649][ T6738]  ? prandom_u32_state+0xe/0x170
[   71.763602][ T6738]  ? __brelse+0x84/0xa0
[   71.767864][ T6738]  ? __ext4_new_inode+0x144/0x55e0
[   71.772981][ T6738]  ext4_getblk+0xad/0x520
[   71.777321][ T6738]  ? ext4_iomap_overwrite_begin+0xa0/0xa0
[   71.783062][ T6738]  ? ext4_free_inode+0x1700/0x1700
[   71.788190][ T6738]  ext4_bread+0x7c/0x380
[   71.792435][ T6738]  ? ext4_getblk+0x520/0x520
[   71.797309][ T6738]  ? dquot_get_next_dqblk+0x180/0x180
[   71.802869][ T6738]  ext4_append+0x153/0x360
[   71.807304][ T6738]  ext4_mkdir+0x5e0/0xdf0
[   71.811646][ T6738]  ? ext4_rmdir+0xde0/0xde0
[   71.816149][ T6738]  vfs_mkdir+0x419/0x690
[   71.820381][ T6738]  do_mkdirat+0x21e/0x280
[   71.824702][ T6738]  ? __ia32_sys_mknod+0xb0/0xb0
[   71.829535][ T6738]  ? do_syscall_64+0x1c/0xe0
[   71.834185][ T6738]  ? lockdep_hardirqs_on_prepare+0x3a2/0x590
[   71.840176][ T6738]  do_syscall_64+0x60/0xe0
[   71.844602][ T6738]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[   71.850484][ T6738] RIP: 0033:0x7fab2bbc4687
[   71.854882][ T6738] Code: Bad RIP value.
[   71.858942][ T6738] RSP: 002b:00007ffde22f6158 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[   71.867505][ T6738] RAX: ffffffffffffffda RBX: 000055825d6ac985 RCX: 00007fab2bbc4687
[   71.875472][ T6738] RDX: 00007ffde22f6020 RSI: 00000000000001ed RDI: 000055825d6ac985
[   71.883425][ T6738] RBP: 00007fab2bbc4680 R08: 0000000000000100 R09: 0000000000000000
[   71.891379][ T6738] R10: 000055825d6ac980 R11: 0000000000000246 R12: 00000000000001ed
[   71.899337][ T6738] R13: 00007ffde22f62e0 R14: 0000000000000000 R15: 0000000000000000
[[0;32m  OK  [0m] Started Update UTMP about System Runlevel Changes.
[[0;32m  OK  [0m] Started Load/Save RF Kill Switch Status.
Warning: Permanently added '10.128.1.34' (ECDSA) to the list of known hosts.

Debian GNU/Linux 9 syzkaller ttyS0

2020/06/14 22:30:52 fuzzer started
2020/06/14 22:30:52 connecting to host at 10.128.0.26:45009
2020/06/14 22:30:52 checking machine...
2020/06/14 22:30:52 checking revisions...
2020/06/14 22:30:52 testing simple program...
syzkaller login: [   74.478157][ T6807] BUG: using smp_processor_id() in preemptible [00000000] code: syz-fuzzer/6807
[   74.487282][ T6807] caller is ext4_mb_new_blocks+0xa4d/0x3b70
[   74.493263][ T6807] CPU: 1 PID: 6807 Comm: syz-fuzzer Not tainted 5.8.0-rc1-syzkaller #0
[   74.501507][ T6807] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   74.511546][ T6807] Call Trace:
[   74.514836][ T6807]  dump_stack+0x18f/0x20d
[   74.519169][ T6807]  check_preemption_disabled+0x20d/0x220
[   74.524782][ T6807]  ext4_mb_new_blocks+0xa4d/0x3b70
[   74.529879][ T6807]  ? ext4_ext_search_right+0x2ca/0xb20
[   74.535457][ T6807]  ? ext4_inode_to_goal_block+0x2df/0x3f0
[   74.541176][ T6807]  ext4_ext_map_blocks+0x201b/0x33e0
[   74.546457][ T6807]  ? ext4_ext_release+0x10/0x10
[   74.551311][ T6807]  ? down_write_killable+0x170/0x170
[   74.556592][ T6807]  ? ext4_es_lookup_extent+0x41d/0xd10
[   74.562054][ T6807]  ext4_map_blocks+0x4cb/0x1640
[   74.566912][ T6807]  ? ext4_issue_zeroout+0x1e0/0x1e0
[   74.572134][ T6807]  ? rcu_read_lock_sched_held+0x9c/0xd0
[   74.577675][ T6807]  ? rcu_read_lock_any_held.part.0+0x50/0x50
[   74.583643][ T6807]  ? prandom_u32_state+0xe/0x170
[   74.588577][ T6807]  ? __brelse+0x84/0xa0
[   74.592745][ T6807]  ? __ext4_new_inode+0x144/0x55e0
[   74.597931][ T6807]  ext4_getblk+0xad/0x520
[   74.602245][ T6807]  ? ext4_iomap_overwrite_begin+0xa0/0xa0
[   74.607946][ T6807]  ? ext4_free_inode+0x1700/0x1700
[   74.613062][ T6807]  ext4_bread+0x7c/0x380
[   74.617303][ T6807]  ? ext4_getblk+0x520/0x520
[   74.621896][ T6807]  ? dquot_get_next_dqblk+0x180/0x180
[   74.628236][ T6807]  ext4_append+0x153/0x360
[   74.632660][ T6807]  ext4_mkdir+0x5e0/0xdf0
[   74.636976][ T6807]  ? ext4_rmdir+0xde0/0xde0
[   74.641468][ T6807]  vfs_mkdir+0x419/0x690
[   74.645711][ T6807]  do_mkdirat+0x21e/0x280
[   74.650024][ T6807]  ? __ia32_sys_mknod+0xb0/0xb0
[   74.654897][ T6807]  ? do_syscall_64+0x1c/0xe0
[   74.659491][ T6807]  ? lockdep_hardirqs_on_prepare+0x3a2/0x590
[   74.665474][ T6807]  do_syscall_64+0x60/0xe0
[   74.669888][ T6807]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[   74.675762][ T6807] RIP: 0033:0x4b02a0
[   74.679636][ T6807] Code: Bad RIP value.
[   74.683678][ T6807] RSP: 002b:000000c00004f4b8 EFLAGS: 00000212 ORIG_RAX: 0000000000000102
[   74.692067][ T6807] RAX: ffffffffffffffda RBX: 000000c00002e500 RCX: 00000000004b02a0
[   74.700138][ T6807] RDX: 00000000000001c0 RSI: 000000c00033c2c0 RDI: ffffffffffffff9c
[   74.708102][ T6807] RBP: 000000c00004f510 R08: 0000000000000000 R09: 0000000000000000
[   74.716162][ T6807] R10: 0000000000000000 R11: 0000000000000212 R12: ffffffffffffffff
[   74.724146][ T6807] R13: 0000000000000017 R14: 0000000000000016 R15: 0000000000000100
[   74.745925][   T28] audit: type=1400 audit(1592173853.370:8): avc:  denied  { execmem } for  pid=6822 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
[   74.746818][ T6822] BUG: using smp_processor_id() in preemptible [00000000] code: syz-executor.0/6822
[   74.776061][ T6822] caller is ext4_mb_new_blocks+0xa4d/0x3b70
[   74.782064][ T6822] CPU: 1 PID: 6822 Comm: syz-executor.0 Not tainted 5.8.0-rc1-syzkaller #0
[   74.790675][ T6822] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   74.800736][ T6822] Call Trace:
[   74.804020][ T6822]  dump_stack+0x18f/0x20d
[   74.808369][ T6822]  check_preemption_disabled+0x20d/0x220
[   74.814061][ T6822]  ext4_mb_new_blocks+0xa4d/0x3b70
[   74.819200][ T6822]  ? ext4_ext_search_right+0x2ca/0xb20
[   74.824655][ T6822]  ? ext4_inode_to_goal_block+0x2df/0x3f0
[   74.830390][ T6822]  ext4_ext_map_blocks+0x201b/0x33e0
[   74.835687][ T6822]  ? ext4_ext_release+0x10/0x10
[   74.840539][ T6822]  ? down_write_killable+0x170/0x170
[   74.845812][ T6822]  ? ext4_es_lookup_extent+0x41d/0xd10
[   74.851260][ T6822]  ext4_map_blocks+0x4cb/0x1640
[   74.856108][ T6822]  ? ext4_issue_zeroout+0x1e0/0x1e0
[   74.861319][ T6822]  ? rcu_read_lock_sched_held+0x9c/0xd0
[   74.866973][ T6822]  ? rcu_read_lock_any_held.part.0+0x50/0x50
[   74.872986][ T6822]  ? prandom_u32_state+0xe/0x170
[   74.877918][ T6822]  ? __brelse+0x84/0xa0
[   74.882073][ T6822]  ? __ext4_new_inode+0x144/0x55e0
[   74.887190][ T6822]  ext4_getblk+0xad/0x520
[   74.891776][ T6822]  ? ext4_iomap_overwrite_begin+0xa0/0xa0
[   74.897490][ T6822]  ? ext4_free_inode+0x1700/0x1700
[   74.902595][ T6822]  ext4_bread+0x7c/0x380
[   74.906833][ T6822]  ? ext4_getblk+0x520/0x520
[   74.911413][ T6822]  ? dquot_get_next_dqblk+0x180/0x180
[   74.916799][ T6822]  ? security_transition_sid+0x123/0x190
[   74.922439][ T6822]  ? security_transition_sid+0xed/0x190
[   74.927985][ T6822]  ext4_append+0x153/0x360
[   74.932398][ T6822]  ext4_mkdir+0x5e0/0xdf0
[   74.936743][ T6822]  ? ext4_rmdir+0xde0/0xde0
[   74.941335][ T6822]  vfs_mkdir+0x419/0x690
[   74.945571][ T6822]  do_mkdirat+0x21e/0x280
[   74.949910][ T6822]  ? __ia32_sys_mknod+0xb0/0xb0
[   74.954763][ T6822]  ? do_syscall_64+0x1c/0xe0
[   74.959350][ T6822]  ? lockdep_hardirqs_on_prepare+0x3a2/0x590
[   74.965338][ T6822]  do_syscall_64+0x60/0xe0
[   74.969762][ T6822]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[   74.975653][ T6822] RIP: 0033:0x45bee7
[   74.979523][ T6822] Code: Bad RIP value.
[   74.983577][ T6822] RSP: 002b:00007ffde67f0e38 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[   74.991973][ T6822] RAX: ffffffffffffffda RBX: 000000000003a2f8 RCX: 000000000045bee7
[   74.999931][ T6822] RDX: 0000000000000003 RSI: 00000000000001c0 RDI: 00007ffde67f1010
[   75.007902][ T6822] RBP: 0000000000000001 R08: 000000000000f8c0 R09: 0000000000003740
[   75.015862][ T6822] R10: 0000000000000011 R11: 0000000000000246 R12: 00000000000000c2
[   75.023835][ T6822] R13: 00007ffde67f1010 R14: 8421084210842109 R15: 00007ffde67f101c
[   75.118175][ T6823] IPVS: ftp: loaded support on port[0] = 21
[   75.158826][ T6823] BUG: using smp_processor_id() in preemptible [00000000] code: syz-executor.0/6823
[   75.168357][ T6823] caller is ext4_mb_new_blocks+0xa4d/0x3b70
[   75.174585][ T6823] CPU: 0 PID: 6823 Comm: syz-executor.0 Not tainted 5.8.0-rc1-syzkaller #0
[   75.183262][ T6823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   75.193322][ T6823] Call Trace:
[   75.196613][ T6823]  dump_stack+0x18f/0x20d
[   75.200945][ T6823]  check_preemption_disabled+0x20d/0x220
[   75.206674][ T6823]  ext4_mb_new_blocks+0xa4d/0x3b70
[   75.211777][ T6823]  ? ext4_ext_search_right+0x2ca/0xb20
[   75.217995][ T6823]  ? ext4_inode_to_goal_block+0x2df/0x3f0
[   75.223700][ T6823]  ext4_ext_map_blocks+0x201b/0x33e0
[   75.228980][ T6823]  ? ext4_ext_release+0x10/0x10
[   75.233834][ T6823]  ? down_write_killable+0x170/0x170
[   75.239098][ T6823]  ? ext4_es_lookup_extent+0x41d/0xd10
[   75.244557][ T6823]  ext4_map_blocks+0x4cb/0x1640
[   75.249396][ T6823]  ? ext4_issue_zeroout+0x1e0/0x1e0
[   75.254576][ T6823]  ? rcu_read_lock_sched_held+0x9c/0xd0
[   75.260103][ T6823]  ? rcu_read_lock_any_held.part.0+0x50/0x50
[   75.266078][ T6823]  ? prandom_u32_state+0xe/0x170
[   75.271041][ T6823]  ? __brelse+0x84/0xa0
[   75.275186][ T6823]  ? __ext4_new_inode+0x144/0x55e0
[   75.280306][ T6823]  ext4_getblk+0xad/0x520
[   75.284624][ T6823]  ? ext4_iomap_overwrite_begin+0xa0/0xa0
[   75.290448][ T6823]  ? ext4_free_inode+0x1700/0x1700
[   75.295562][ T6823]  ext4_bread+0x7c/0x380
[   75.299792][ T6823]  ? ext4_getblk+0x520/0x520
[   75.304460][ T6823]  ? dquot_get_next_dqblk+0x180/0x180
[   75.309933][ T6823]  ? security_transition_sid+0x123/0x190
[   75.315573][ T6823]  ? security_transition_sid+0xed/0x190
[   75.321136][ T6823]  ext4_append+0x153/0x360
[   75.325544][ T6823]  ext4_mkdir+0x5e0/0xdf0
[   75.329865][ T6823]  ? ext4_rmdir+0xde0/0xde0
[   75.334358][ T6823]  vfs_mkdir+0x419/0x690
[   75.338581][ T6823]  do_mkdirat+0x21e/0x280
[   75.342921][ T6823]  ? __ia32_sys_mknod+0xb0/0xb0
[   75.347775][ T6823]  ? do_syscall_64+0x1c/0xe0
[   75.352355][ T6823]  ? lockdep_hardirqs_on_prepare+0x3a2/0x590
[   75.358365][ T6823]  do_syscall_64+0x60/0xe0
[   75.362792][ T6823]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[   75.368682][ T6823] RIP: 0033:0x45bee7
[   75.372565][ T6823] Code: Bad RIP value.
[   75.376680][ T6823] RSP: 002b:00007ffde67f0d28 EFLAGS: 00000206 ORIG_RAX: 0000000000000053
[   75.385197][ T6823] RAX: ffffffffffffffda RBX: 000000000078c988 RCX: 000000000045bee7
[   75.393152][ T6823] RDX: 00007ffde67f0d73 RSI: 00000000000001ff RDI: 00007ffde67f0d70
[   75.401104][ T6823] RBP: 00000000000000f8 R08: 0000000000000000 R09: 0000000000000003
[   75.409093][ T6823] R10: 0000000000000064 R11: 0000000000000206 R12: 00000000004185d0
[   75.417043][ T6823] R13: 00007ffde67f0d60 R14: 0000000000000000 R15: 00007ffde67f0d70
[   75.453569][ T1154] BUG: using smp_processor_id() in preemptible [00000000] code: khugepaged/1154
[   75.463272][ T1154] caller is ext4_mb_new_blocks+0xa4d/0x3b70
[   75.469183][ T1154] CPU: 0 PID: 1154 Comm: khugepaged Not tainted 5.8.0-rc1-syzkaller #0
[   75.477433][ T1154] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   75.487497][ T1154] Call Trace:
[   75.490803][ T1154]  dump_stack+0x18f/0x20d
[   75.495157][ T1154]  check_preemption_disabled+0x20d/0x220
[   75.500808][ T1154]  ext4_mb_new_blocks+0xa4d/0x3b70
[   75.505982][ T1154]  ? ext4_find_extent+0x81a/0xad0
[   75.511035][ T1154]  ? ext4_ext_search_right+0x2ca/0xb20
[   75.516509][ T1154]  ? ext4_inode_to_goal_block+0x2df/0x3f0
[   75.522256][ T1154]  ext4_ext_map_blocks+0x201b/0x33e0
[   75.527575][ T1154]  ? ext4_ext_release+0x10/0x10
[   75.532486][ T1154]  ? down_write_killable+0x170/0x170
[   75.537796][ T1154]  ? ext4_es_lookup_extent+0x41d/0xd10
[   75.543298][ T1154]  ext4_map_blocks+0x4cb/0x1640
[   75.548184][ T1154]  ? ext4_issue_zeroout+0x1e0/0x1e0
[   75.553405][ T1154]  ? rcu_read_lock_sched_held+0x9c/0xd0
[   75.558970][ T1154]  ? rcu_read_lock_any_held.part.0+0x50/0x50
[   75.565060][ T1154]  ? ext4_alloc_io_end_vec+0x145/0x1c0
[   75.570512][ T1154]  ext4_writepages+0x1a7b/0x33c0
[   75.575462][ T1154]  ? __ext4_mark_inode_dirty+0x940/0x940
[   75.581091][ T1154]  ? __ext4_mark_inode_dirty+0x940/0x940
[   75.586704][ T1154]  ? do_writepages+0xfa/0x2a0
[   75.591380][ T1154]  do_writepages+0xfa/0x2a0
[   75.595886][ T1154]  ? page_writeback_cpu_online+0x10/0x10
[   75.601501][ T1154]  ? do_raw_spin_lock+0x120/0x2d0
[   75.606513][ T1154]  ? do_raw_spin_unlock+0x171/0x260
[   75.611692][ T1154]  ? _raw_spin_unlock+0x24/0x40
[   75.616540][ T1154]  __filemap_fdatawrite_range+0x2aa/0x390
[   75.622241][ T1154]  ? collapse_file+0x35a2/0x4330
[   75.627157][ T1154]  ? delete_from_page_cache_batch+0xeb0/0xeb0
[   75.633405][ T1154]  ? _raw_spin_unlock_irq+0x1f/0x80
[   75.638601][ T1154]  ? lockdep_hardirqs_on_prepare+0x3a2/0x590
[   75.644575][ T1154]  collapse_file+0x35ac/0x4330
[   75.649328][ T1154]  ? collapse_huge_page+0x4350/0x4350
[   75.654679][ T1154]  ? khugepaged+0x2506/0x3fc0
[   75.659342][ T1154]  ? xas_find+0x31a/0x880
[   75.663665][ T1154]  ? check_preemption_disabled+0x38/0x220
[   75.669386][ T1154]  khugepaged+0x3041/0x3fc0
[   75.673912][ T1154]  ? collapse_pte_mapped_thp+0xbf0/0xbf0
[   75.679559][ T1154]  ? lock_downgrade+0x840/0x840
[   75.684535][ T1154]  ? finish_wait+0x260/0x260
[   75.689131][ T1154]  ? _raw_spin_unlock_irqrestore+0x62/0xe0
[   75.696138][ T1154]  ? lockdep_hardirqs_on_prepare+0x3a2/0x590
[   75.702247][ T1154]  ? __kthread_parkme+0x13f/0x1e0
[   75.707394][ T1154]  ? collapse_pte_mapped_thp+0xbf0/0xbf0
[   75.713015][ T1154]  kthread+0x3b5/0x4a0
[   75.717069][ T1154]  ? kthread_mod_delayed_work+0x1a0/0x1a0
[   75.722783][ T1154]  ? kthread_mod_delayed_work+0x1a0/0x1a0
[   75.728482][ T1154]  ret_from_fork+0x1f/0x30
[   75.735737][ T6823] BUG: using smp_processor_id() in preemptible [00000000] code: syz-executor.0/6823
[   75.745212][ T6823] caller is ext4_mb_new_blocks+0xa4d/0x3b70
[   75.751126][ T6823] CPU: 0 PID: 6823 Comm: syz-executor.0 Not tainted 5.8.0-rc1-syzkaller #0
[   75.759725][ T6823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   75.769805][ T6823] Call Trace:
[   75.773103][ T6823]  dump_stack+0x18f/0x20d
[   75.777456][ T6823]  check_preemption_disabled+0x20d/0x220
[   75.783109][ T6823]  ext4_mb_new_blocks+0xa4d/0x3b70
[   75.788263][ T6823]  ? ext4_ext_search_right+0x2ca/0xb20
[   75.793751][ T6823]  ? ext4_inode_to_goal_block+0x2df/0x3f0
[   75.799497][ T6823]  ext4_ext_map_blocks+0x201b/0x33e0
[   75.804799][ T6823]  ? ext4_ext_release+0x10/0x10
[   75.809666][ T6823]  ? down_write_killable+0x170/0x170
[   75.814944][ T6823]  ? ext4_es_lookup_extent+0x41d/0xd10
[   75.820395][ T6823]  ext4_map_blocks+0x4cb/0x1640
[   75.825284][ T6823]  ? ext4_issue_zeroout+0x1e0/0x1e0
[   75.830511][ T6823]  ? rcu_read_lock_sched_held+0x9c/0xd0
[   75.836070][ T6823]  ? rcu_read_lock_any_held.part.0+0x50/0x50
[   75.842057][ T6823]  ? prandom_u32_state+0xe/0x170
[   75.844189][ T1154] BUG: using smp_processor_id() in preemptible [00000000] code: khugepaged/1154
[   75.846996][ T6823]  ? __brelse+0x84/0xa0
[   75.847014][ T6823]  ? __ext4_new_inode+0x144/0x55e0
[   75.847036][ T6823]  ext4_getblk+0xad/0x520
[   75.847056][ T6823]  ? ext4_iomap_overwrite_begin+0xa0/0xa0
[   75.847079][ T6823]  ? ext4_free_inode+0x1700/0x1700
[   75.847100][ T6823]  ext4_bread+0x7c/0x380
[   75.847117][ T6823]  ? ext4_getblk+0x520/0x520
[   75.847134][ T6823]  ? dquot_get_next_dqblk+0x180/0x180
[   75.847152][ T6823]  ? security_transition_sid+0x123/0x190
[   75.847173][ T6823]  ? security_transition_sid+0xed/0x190
[   75.856220][ T1154] caller is ext4_mb_new_blocks+0xa4d/0x3b70
[   75.860317][ T6823]  ext4_append+0x153/0x360
[   75.915994][ T6823]  ext4_mkdir+0x5e0/0xdf0
[   75.920317][ T6823]  ? ext4_rmdir+0xde0/0xde0
[   75.924843][ T6823]  vfs_mkdir+0x419/0x690
[   75.929075][ T6823]  do_mkdirat+0x21e/0x280
[   75.933434][ T6823]  ? __ia32_sys_mknod+0xb0/0xb0
[   75.938290][ T6823]  ? do_syscall_64+0x1c/0xe0
[   75.942870][ T6823]  ? lockdep_hardirqs_on_prepare+0x3a2/0x590
[   75.948856][ T6823]  do_syscall_64+0x60/0xe0
[   75.953281][ T6823]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[   75.959159][ T6823] RIP: 0033:0x45bee7
[   75.963033][ T6823] Code: Bad RIP value.
[   75.967084][ T6823] RSP: 002b:00007ffde67f0d28 EFLAGS: 00000206 ORIG_RAX: 0000000000000053
[   75.975478][ T6823] RAX: ffffffffffffffda RBX: 00000000000127d9 RCX: 000000000045bee7
[   75.983452][ T6823] RDX: 00007ffde67f0d73 RSI: 00000000000001ff RDI: 00007ffde67f0d70
[   75.991437][ T6823] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000003
[   75.999573][ T6823] R10: 0000000000000064 R11: 0000000000000206 R12: 0000000000000003
[   76.007557][ T6823] R13: 00007ffde67f0d60 R14: 00000000000126ac R15: 00007ffde67f0d70
[   76.015546][ T1154] CPU: 1 PID: 1154 Comm: khugepaged Not tainted 5.8.0-rc1-syzkaller #0
[   76.023797][ T1154] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   76.034011][ T1154] Call Trace:
[   76.037299][ T1154]  dump_stack+0x18f/0x20d
[   76.041659][ T1154]  check_preemption_disabled+0x20d/0x220
[   76.047309][ T1154]  ext4_mb_new_blocks+0xa4d/0x3b70
2020/06/14 22:30:54 building call list...
[   76.052459][ T1154]  ? ext4_ext_search_right+0x2ca/0xb20
[   76.057941][ T1154]  ? ext4_ext_next_allocated_block+0x221/0x2d0
[   76.064109][ T1154]  ext4_ext_map_blocks+0x201b/0x33e0
[   76.069401][ T1154]  ? ext4_ext_release+0x10/0x10
[   76.074320][ T1154]  ? down_write_killable+0x170/0x170
[   76.079616][ T1154]  ? ext4_es_lookup_extent+0x41d/0xd10
[   76.085090][ T1154]  ext4_map_blocks+0x4cb/0x1640
[   76.089950][ T1154]  ? ext4_issue_zeroout+0x1e0/0x1e0
[   76.095166][ T1154]  ? rcu_read_lock_sched_held+0x9c/0xd0
[   76.100715][ T1154]  ? rcu_read_lock_any_held.part.0+0x50/0x50
[   76.106698][ T1154]  ? ext4_alloc_io_end_vec+0x145/0x1c0
[   76.112186][ T1154]  ext4_writepages+0x1a7b/0x33c0
[   76.117162][ T1154]  ? __ext4_mark_inode_dirty+0x940/0x940
[   76.122831][ T1154]  ? __ext4_mark_inode_dirty+0x940/0x940
[   76.128481][ T1154]  ? do_writepages+0xfa/0x2a0
[   76.133160][ T1154]  do_writepages+0xfa/0x2a0
[   76.137682][ T1154]  ? page_writeback_cpu_online+0x10/0x10
[   76.143319][ T1154]  ? do_raw_spin_lock+0x120/0x2d0
[   76.148361][ T1154]  ? do_raw_spin_unlock+0x171/0x260
[   76.153563][ T1154]  ? _raw_spin_unlock+0x24/0x40
[   76.158416][ T1154]  __filemap_fdatawrite_range+0x2aa/0x390
[   76.164133][ T1154]  ? collapse_file+0x35a2/0x4330
[   76.169074][ T1154]  ? delete_from_page_cache_batch+0xeb0/0xeb0
[   76.175168][ T1154]  ? _raw_spin_unlock_irq+0x1f/0x80
[   76.180399][ T1154]  ? lockdep_hardirqs_on_prepare+0x3a2/0x590
[   76.186405][ T1154]  collapse_file+0x35ac/0x4330
[   76.191190][ T1154]  ? collapse_huge_page+0x4350/0x4350
[   76.196567][ T1154]  ? khugepaged+0x2506/0x3fc0
[   76.201255][ T1154]  ? xas_find+0x31a/0x880
[   76.205584][ T1154]  ? check_preemption_disabled+0x38/0x220
[   76.211664][ T1154]  khugepaged+0x3041/0x3fc0
[   76.216213][ T1154]  ? collapse_pte_mapped_thp+0xbf0/0xbf0
[   76.221865][ T1154]  ? lock_downgrade+0x840/0x840
[   76.226721][ T1154]  ? finish_wait+0x260/0x260
[   76.233237][ T1154]  ? _raw_spin_unlock_irqrestore+0x62/0xe0
[   76.239054][ T1154]  ? lockdep_hardirqs_on_prepare+0x3a2/0x590
[   76.245048][ T1154]  ? __kthread_parkme+0x13f/0x1e0
[   76.250077][ T1154]  ? collapse_pte_mapped_thp+0xbf0/0xbf0
[   76.255722][ T1154]  kthread+0x3b5/0x4a0
[   76.259838][ T1154]  ? kthread_mod_delayed_work+0x1a0/0x1a0
[   76.265651][ T1154]  ? kthread_mod_delayed_work+0x1a0/0x1a0
[   76.271383][ T1154]  ret_from_fork+0x1f/0x30
[   76.403838][ T1154] BUG: using smp_processor_id() in preemptible [00000000] code: khugepaged/1154
[   76.412976][ T1154] caller is ext4_mb_new_blocks+0xa4d/0x3b70
[   76.418885][ T1154] CPU: 0 PID: 1154 Comm: khugepaged Not tainted 5.8.0-rc1-syzkaller #0
[   76.427112][ T1154] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   76.437168][ T1154] Call Trace:
[   76.440480][ T1154]  dump_stack+0x18f/0x20d
[   76.444826][ T1154]  check_preemption_disabled+0x20d/0x220
[   76.450463][ T1154]  ext4_mb_new_blocks+0xa4d/0x3b70
[   76.455596][ T1154]  ? ext4_ext_search_right+0x2ca/0xb20
[   76.461062][ T1154]  ? ext4_ext_next_allocated_block+0x221/0x2d0
[   76.467220][ T1154]  ext4_ext_map_blocks+0x201b/0x33e0
[   76.472519][ T1154]  ? ext4_ext_release+0x10/0x10
[   76.477391][ T1154]  ? down_write_killable+0x170/0x170
[   76.482679][ T1154]  ? ext4_es_lookup_extent+0x41d/0xd10
[   76.488170][ T1154]  ext4_map_blocks+0x4cb/0x1640
[   76.493068][ T1154]  ? ext4_issue_zeroout+0x1e0/0x1e0
[   76.498296][ T1154]  ? rcu_read_lock_sched_held+0x9c/0xd0
[   76.503865][ T1154]  ? rcu_read_lock_any_held.part.0+0x50/0x50
[   76.509858][ T1154]  ? ext4_alloc_io_end_vec+0x145/0x1c0
[   76.515411][ T1154]  ext4_writepages+0x1a7b/0x33c0
[   76.520378][ T1154]  ? __ext4_mark_inode_dirty+0x940/0x940
[   76.526045][ T1154]  ? __ext4_mark_inode_dirty+0x940/0x940
[   76.531847][ T1154]  ? do_writepages+0xfa/0x2a0
[   76.536540][ T1154]  do_writepages+0xfa/0x2a0
[   76.541138][ T1154]  ? page_writeback_cpu_online+0x10/0x10
[   76.546791][ T1154]  ? do_raw_spin_lock+0x120/0x2d0
[   76.551819][ T1154]  ? do_raw_spin_unlock+0x171/0x260
[   76.557020][ T1154]  ? _raw_spin_unlock+0x24/0x40
[   76.561875][ T1154]  __filemap_fdatawrite_range+0x2aa/0x390
[   76.567620][ T1154]  ? collapse_file+0x35a2/0x4330
[   76.572566][ T1154]  ? delete_from_page_cache_batch+0xeb0/0xeb0
[   76.578647][ T1154]  ? _raw_spin_unlock_irq+0x1f/0x80
[   76.583869][ T1154]  ? lockdep_hardirqs_on_prepare+0x3a2/0x590
[   76.589869][ T1154]  collapse_file+0x35ac/0x4330
[   76.594667][ T1154]  ? collapse_huge_page+0x4350/0x4350
[   76.600047][ T1154]  ? khugepaged+0x2506/0x3fc0
[   76.604735][ T1154]  ? xas_find+0x31a/0x880
[   76.609068][ T1154]  ? check_preemption_disabled+0x38/0x220
[   76.614791][ T1154]  khugepaged+0x3041/0x3fc0
[   76.619321][ T1154]  ? collapse_pte_mapped_thp+0xbf0/0xbf0
[   76.624953][ T1154]  ? lock_downgrade+0x840/0x840
[   76.629801][ T1154]  ? finish_wait+0x260/0x260
[   76.634413][ T1154]  ? _raw_spin_unlock_irqrestore+0x62/0xe0
[   76.640216][ T1154]  ? lockdep_hardirqs_on_prepare+0x3a2/0x590
[   76.646200][ T1154]  ? __kthread_parkme+0x13f/0x1e0
[   76.651223][ T1154]  ? collapse_pte_mapped_thp+0xbf0/0xbf0
[   76.656859][ T1154]  kthread+0x3b5/0x4a0
[   76.660929][ T1154]  ? kthread_mod_delayed_work+0x1a0/0x1a0
[   76.666644][ T1154]  ? kthread_mod_delayed_work+0x1a0/0x1a0
[   76.672368][ T1154]  ret_from_fork+0x1f/0x30
[   76.861245][  T397] tipc: TX() has been purged, node left!
executing program
[   77.403869][  T397] ==================================================================
[   77.412163][  T397] BUG: KASAN: use-after-free in afs_wake_up_async_call+0x6aa/0x770
[   77.420681][  T397] Write of size 1 at addr ffff8880a01af1e4 by task kworker/u4:4/397
[   77.428820][  T397] 
[   77.431158][  T397] CPU: 1 PID: 397 Comm: kworker/u4:4 Not tainted 5.8.0-rc1-syzkaller #0
[   77.439488][  T397] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   77.449559][  T397] Workqueue: netns cleanup_net
[   77.454329][  T397] Call Trace:
[   77.457625][  T397]  dump_stack+0x18f/0x20d
[   77.461977][  T397]  ? afs_wake_up_async_call+0x6aa/0x770
[   77.467619][  T397]  ? afs_wake_up_async_call+0x6aa/0x770
[   77.473165][  T397]  ? afs_put_call+0xa40/0xa40
[   77.477872][  T397]  print_address_description.constprop.0.cold+0xd3/0x413
[   77.484899][  T397]  ? vprintk_func+0x97/0x1a6
[   77.489512][  T397]  ? afs_wake_up_async_call+0x6aa/0x770
[   77.495074][  T397]  kasan_report.cold+0x1f/0x37
[   77.499942][  T397]  ? rcu_read_lock_held_common+0x51/0xa0
[   77.505596][  T397]  ? afs_wake_up_async_call+0x6aa/0x770
[   77.511154][  T397]  afs_wake_up_async_call+0x6aa/0x770
[   77.516524][  T397]  ? afs_close_socket+0x320/0x320
[   77.521551][  T397]  ? afs_put_call+0xa40/0xa40
[   77.526226][  T397]  rxrpc_notify_socket+0x1db/0x5d0
[   77.531468][  T397]  ? afs_put_call+0xa40/0xa40
[   77.536155][  T397]  __rxrpc_set_call_completion.part.0+0x172/0x410
[   77.542574][  T397]  rxrpc_call_completed+0xca/0xf0
[   77.547604][  T397]  rxrpc_discard_prealloc+0x781/0xab0
[   77.553012][  T397]  ? lock_sock_nested+0x94/0x110
[   77.557955][  T397]  rxrpc_listen+0x147/0x360
[   77.562468][  T397]  afs_close_socket+0x95/0x320
[   77.567229][  T397]  ? afs_purge_servers+0x16d/0x300
[   77.572347][  T397]  ? afs_rx_discard_new_call+0x50/0x50
[   77.577814][  T397]  ? init_wait_var_entry+0x200/0x200
[   77.583105][  T397]  ? rcu_read_lock_held_common+0xa0/0xa0
[   77.588756][  T397]  ? check_preemption_disabled+0x38/0x220
[   77.594494][  T397]  afs_net_exit+0x1bc/0x310
[   77.598995][  T397]  ? afs_net_init+0xe30/0xe30
[   77.603670][  T397]  ops_exit_list.isra.0+0xa8/0x150
[   77.608786][  T397]  cleanup_net+0x511/0xa50
[   77.613338][  T397]  ? unregister_pernet_device+0x70/0x70
[   77.618902][  T397]  ? rcu_read_lock_any_held.part.0+0x50/0x50
[   77.624896][  T397]  process_one_work+0x965/0x1690
[   77.629865][  T397]  ? lock_release+0x800/0x800
[   77.634569][  T397]  ? pwq_dec_nr_in_flight+0x310/0x310
[   77.639955][  T397]  ? rwlock_bug.part.0+0x90/0x90
[   77.644933][  T397]  worker_thread+0x96/0xe10
[   77.649457][  T397]  ? process_one_work+0x1690/0x1690
[   77.654772][  T397]  kthread+0x3b5/0x4a0
[   77.658855][  T397]  ? kthread_mod_delayed_work+0x1a0/0x1a0
[   77.664678][  T397]  ? kthread_mod_delayed_work+0x1a0/0x1a0
[   77.670402][  T397]  ret_from_fork+0x1f/0x30
[   77.674832][  T397] 
[   77.677161][  T397] Allocated by task 6823:
[   77.681490][  T397]  save_stack+0x1b/0x40
[   77.685644][  T397]  __kasan_kmalloc.constprop.0+0xbf/0xd0
[   77.691301][  T397]  kmem_cache_alloc_trace+0x153/0x7d0
[   77.696670][  T397]  afs_alloc_call+0x55/0x630
[   77.701257][  T397]  afs_charge_preallocation+0xe9/0x2d0
[   77.706736][  T397]  afs_open_socket+0x292/0x360
[   77.711512][  T397]  afs_net_init+0xa6c/0xe30
[   77.716024][  T397]  ops_init+0xaf/0x420
[   77.720092][  T397]  setup_net+0x2de/0x860
[   77.724345][  T397]  copy_net_ns+0x293/0x590
[   77.728832][  T397]  create_new_namespaces+0x3fb/0xb30
[   77.734136][  T397]  unshare_nsproxy_namespaces+0xbd/0x1f0
[   77.739780][  T397]  ksys_unshare+0x43d/0x8e0
[   77.744286][  T397]  __x64_sys_unshare+0x2d/0x40
[   77.749056][  T397]  do_syscall_64+0x60/0xe0
[   77.753470][  T397]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[   77.759349][  T397] 
[   77.761671][  T397] Freed by task 397:
[   77.765564][  T397]  save_stack+0x1b/0x40
[   77.769714][  T397]  __kasan_slab_free+0xf7/0x140
[   77.774562][  T397]  kfree+0x109/0x2b0
[   77.778461][  T397]  afs_put_call+0x585/0xa40
[   77.782965][  T397]  rxrpc_discard_prealloc+0x764/0xab0
[   77.788331][  T397]  rxrpc_listen+0x147/0x360
[   77.792832][  T397]  afs_close_socket+0x95/0x320
[   77.797590][  T397]  afs_net_exit+0x1bc/0x310
[   77.802103][  T397]  ops_exit_list.isra.0+0xa8/0x150
[   77.807233][  T397]  cleanup_net+0x511/0xa50
[   77.811661][  T397]  process_one_work+0x965/0x1690
[   77.816598][  T397]  worker_thread+0x96/0xe10
[   77.821094][  T397]  kthread+0x3b5/0x4a0
[   77.825159][  T397]  ret_from_fork+0x1f/0x30
[   77.829560][  T397] 
[   77.831895][  T397] The buggy address belongs to the object at ffff8880a01af000
[   77.831895][  T397]  which belongs to the cache kmalloc-1k of size 1024
[   77.845960][  T397] The buggy address is located 484 bytes inside of
[   77.845960][  T397]  1024-byte region [ffff8880a01af000, ffff8880a01af400)
[   77.859322][  T397] The buggy address belongs to the page:
[   77.865941][  T397] page:ffffea0002806bc0 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0
[   77.875062][  T397] flags: 0xfffe0000000200(slab)
[   77.879947][  T397] raw: 00fffe0000000200 ffffea00029eaa08 ffffea00027b8e08 ffff8880aa000c40
[   77.888561][  T397] raw: 0000000000000000 ffff8880a01af000 0000000100000002 0000000000000000
[   77.897148][  T397] page dumped because: kasan: bad access detected
[   77.903611][  T397] 
[   77.905945][  T397] Memory state around the buggy address:
[   77.911578][  T397]  ffff8880a01af080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   77.919666][  T397]  ffff8880a01af100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   77.927736][  T397] >ffff8880a01af180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   77.935801][  T397]                                                        ^
[   77.943030][  T397]  ffff8880a01af200: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   77.951099][  T397]  ffff8880a01af280: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   77.959159][  T397] ==================================================================
[   77.967228][  T397] Disabling lock debugging due to kernel taint
[   77.973471][  T397] Kernel panic - not syncing: panic_on_warn set ...
[   77.980070][  T397] CPU: 1 PID: 397 Comm: kworker/u4:4 Tainted: G    B             5.8.0-rc1-syzkaller #0
[   77.989783][  T397] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   78.000030][  T397] Workqueue: netns cleanup_net
[   78.004798][  T397] Call Trace:
[   78.008101][  T397]  dump_stack+0x18f/0x20d
[   78.012442][  T397]  ? afs_wake_up_async_call+0x670/0x770
[   78.017992][  T397]  ? afs_put_call+0xa40/0xa40
[   78.022693][  T397]  panic+0x2e3/0x75c
[   78.026596][  T397]  ? __warn_printk+0xf3/0xf3
[   78.031201][  T397]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[   78.037372][  T397]  ? trace_hardirqs_on+0x55/0x220
[   78.042409][  T397]  ? afs_wake_up_async_call+0x6aa/0x770
[   78.047962][  T397]  ? afs_wake_up_async_call+0x6aa/0x770
[   78.053502][  T397]  ? afs_put_call+0xa40/0xa40
[   78.058166][  T397]  end_report+0x4d/0x53
[   78.062300][  T397]  kasan_report.cold+0xd/0x37
[   78.066970][  T397]  ? rcu_read_lock_held_common+0x51/0xa0
[   78.072580][  T397]  ? afs_wake_up_async_call+0x6aa/0x770
[   78.078337][  T397]  afs_wake_up_async_call+0x6aa/0x770
[   78.083852][  T397]  ? afs_close_socket+0x320/0x320
[   78.088878][  T397]  ? afs_put_call+0xa40/0xa40
[   78.093638][  T397]  rxrpc_notify_socket+0x1db/0x5d0
[   78.098738][  T397]  ? afs_put_call+0xa40/0xa40
[   78.103439][  T397]  __rxrpc_set_call_completion.part.0+0x172/0x410
[   78.109884][  T397]  rxrpc_call_completed+0xca/0xf0
[   78.114913][  T397]  rxrpc_discard_prealloc+0x781/0xab0
[   78.120267][  T397]  ? lock_sock_nested+0x94/0x110
[   78.125185][  T397]  rxrpc_listen+0x147/0x360
[   78.129707][  T397]  afs_close_socket+0x95/0x320
[   78.134461][  T397]  ? afs_purge_servers+0x16d/0x300
[   78.139570][  T397]  ? afs_rx_discard_new_call+0x50/0x50
[   78.145026][  T397]  ? init_wait_var_entry+0x200/0x200
[   78.150578][  T397]  ? rcu_read_lock_held_common+0xa0/0xa0
[   78.156368][  T397]  ? check_preemption_disabled+0x38/0x220
[   78.162082][  T397]  afs_net_exit+0x1bc/0x310
[   78.166593][  T397]  ? afs_net_init+0xe30/0xe30
[   78.172908][  T397]  ops_exit_list.isra.0+0xa8/0x150
[   78.178047][  T397]  cleanup_net+0x511/0xa50
[   78.182483][  T397]  ? unregister_pernet_device+0x70/0x70
[   78.188020][  T397]  ? rcu_read_lock_any_held.part.0+0x50/0x50
[   78.194106][  T397]  process_one_work+0x965/0x1690
[   78.199063][  T397]  ? lock_release+0x800/0x800
[   78.203768][  T397]  ? pwq_dec_nr_in_flight+0x310/0x310
[   78.209142][  T397]  ? rwlock_bug.part.0+0x90/0x90
[   78.214066][  T397]  worker_thread+0x96/0xe10
[   78.218552][  T397]  ? process_one_work+0x1690/0x1690
[   78.223730][  T397]  kthread+0x3b5/0x4a0
[   78.227774][  T397]  ? kthread_mod_delayed_work+0x1a0/0x1a0
[   78.233514][  T397]  ? kthread_mod_delayed_work+0x1a0/0x1a0
[   78.239211][  T397]  ret_from_fork+0x1f/0x30
[   78.244963][  T397] Kernel Offset: disabled
[   78.249305][  T397] Rebooting in 86400 seconds..