Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.108' (ECDSA) to the list of known hosts. 2020/06/15 17:44:13 fuzzer started 2020/06/15 17:44:13 connecting to host at 10.128.0.26:46081 2020/06/15 17:44:13 checking machine... 2020/06/15 17:44:13 checking revisions... 2020/06/15 17:44:13 testing simple program... syzkaller login: [ 60.539262][ T6862] BUG: using smp_processor_id() in preemptible [00000000] code: syz-fuzzer/6862 [ 60.548578][ T6862] caller is ext4_mb_new_blocks+0xa4d/0x3b70 [ 60.554808][ T6862] CPU: 1 PID: 6862 Comm: syz-fuzzer Not tainted 5.7.0-syzkaller #0 [ 60.562947][ T6862] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 60.573072][ T6862] Call Trace: [ 60.576401][ T6862] dump_stack+0x18f/0x20d [ 60.580716][ T6862] check_preemption_disabled+0x20d/0x220 [ 60.586328][ T6862] ext4_mb_new_blocks+0xa4d/0x3b70 [ 60.591424][ T6862] ? ext4_ext_search_right+0x2ca/0xb20 [ 60.596877][ T6862] ? ext4_inode_to_goal_block+0x2df/0x3f0 [ 60.602664][ T6862] ext4_ext_map_blocks+0x201b/0x33e0 [ 60.607943][ T6862] ? ext4_ext_release+0x10/0x10 [ 60.612791][ T6862] ? down_write_killable+0x170/0x170 [ 60.618077][ T6862] ? ext4_es_lookup_extent+0x41d/0xd10 [ 60.623514][ T6862] ext4_map_blocks+0x4cb/0x1640 [ 60.628349][ T6862] ? ext4_issue_zeroout+0x1e0/0x1e0 [ 60.633548][ T6862] ? rcu_read_lock_sched_held+0x9c/0xd0 [ 60.639087][ T6862] ? rcu_read_lock_any_held.part.0+0x50/0x50 [ 60.645043][ T6862] ? prandom_u32_state+0xe/0x170 [ 60.649979][ T6862] ? __brelse+0x84/0xa0 [ 60.654126][ T6862] ? __ext4_new_inode+0x144/0x55e0 [ 60.659231][ T6862] ext4_getblk+0xad/0x520 [ 60.663572][ T6862] ? ext4_iomap_overwrite_begin+0xa0/0xa0 [ 60.669273][ T6862] ? ext4_free_inode+0x1700/0x1700 [ 60.674371][ T6862] ext4_bread+0x7c/0x380 [ 60.678593][ T6862] ? ext4_getblk+0x520/0x520 [ 60.683159][ T6862] ? dquot_get_next_dqblk+0x180/0x180 [ 60.688509][ T6862] ext4_append+0x153/0x360 [ 60.692916][ T6862] ext4_mkdir+0x5e0/0xdf0 [ 60.697224][ T6862] ? ext4_rmdir+0xde0/0xde0 [ 60.701705][ T6862] ? security_inode_permission+0xc4/0xf0 [ 60.707340][ T6862] vfs_mkdir+0x419/0x690 [ 60.711560][ T6862] do_mkdirat+0x21e/0x280 [ 60.715865][ T6862] ? __ia32_sys_mknod+0xb0/0xb0 [ 60.720690][ T6862] ? do_syscall_64+0x1c/0xe0 [ 60.725257][ T6862] ? lockdep_hardirqs_on_prepare+0x3a2/0x590 [ 60.731214][ T6862] do_syscall_64+0x60/0xe0 [ 60.735622][ T6862] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 60.741487][ T6862] RIP: 0033:0x4b02a0 [ 60.745358][ T6862] Code: Bad RIP value. [ 60.749410][ T6862] RSP: 002b:000000c0000df4b8 EFLAGS: 00000212 ORIG_RAX: 0000000000000102 [ 60.757819][ T6862] RAX: ffffffffffffffda RBX: 000000c00002e500 RCX: 00000000004b02a0 [ 60.765771][ T6862] RDX: 00000000000001c0 RSI: 000000c000026da0 RDI: ffffffffffffff9c [ 60.773731][ T6862] RBP: 000000c0000df510 R08: 0000000000000000 R09: 0000000000000000 [ 60.781676][ T6862] R10: 0000000000000000 R11: 0000000000000212 R12: ffffffffffffffff [ 60.789620][ T6862] R13: 000000000000006e R14: 000000000000006d R15: 0000000000000100 [ 60.816017][ T6875] BUG: using smp_processor_id() in preemptible [00000000] code: syz-executor.0/6875 [ 60.825449][ T6875] caller is ext4_mb_new_blocks+0xa4d/0x3b70 [ 60.831339][ T6875] CPU: 0 PID: 6875 Comm: syz-executor.0 Not tainted 5.7.0-syzkaller #0 [ 60.839552][ T6875] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 60.849596][ T6875] Call Trace: [ 60.852896][ T6875] dump_stack+0x18f/0x20d [ 60.857222][ T6875] check_preemption_disabled+0x20d/0x220 [ 60.862836][ T6875] ext4_mb_new_blocks+0xa4d/0x3b70 [ 60.867929][ T6875] ? ext4_ext_search_right+0x2ca/0xb20 [ 60.873381][ T6875] ? ext4_inode_to_goal_block+0x2df/0x3f0 [ 60.879098][ T6875] ext4_ext_map_blocks+0x201b/0x33e0 [ 60.884385][ T6875] ? ext4_ext_release+0x10/0x10 [ 60.889238][ T6875] ? down_write_killable+0x170/0x170 [ 60.894527][ T6875] ? ext4_es_lookup_extent+0x41d/0xd10 [ 60.899967][ T6875] ext4_map_blocks+0x4cb/0x1640 [ 60.904799][ T6875] ? ext4_issue_zeroout+0x1e0/0x1e0 [ 60.909974][ T6875] ? rcu_read_lock_sched_held+0x9c/0xd0 [ 60.915520][ T6875] ? rcu_read_lock_any_held.part.0+0x50/0x50 [ 60.921508][ T6875] ? prandom_u32_state+0xe/0x170 [ 60.926425][ T6875] ? __brelse+0x84/0xa0 [ 60.930570][ T6875] ? __ext4_new_inode+0x144/0x55e0 [ 60.935677][ T6875] ext4_getblk+0xad/0x520 [ 60.939993][ T6875] ? ext4_iomap_overwrite_begin+0xa0/0xa0 [ 60.945717][ T6875] ? ext4_free_inode+0x1700/0x1700 [ 60.950805][ T6875] ext4_bread+0x7c/0x380 [ 60.955092][ T6875] ? ext4_getblk+0x520/0x520 [ 60.959698][ T6875] ? dquot_get_next_dqblk+0x180/0x180 [ 60.965059][ T6875] ext4_append+0x153/0x360 [ 60.969456][ T6875] ext4_mkdir+0x5e0/0xdf0 [ 60.973768][ T6875] ? ext4_rmdir+0xde0/0xde0 [ 60.978268][ T6875] ? security_inode_permission+0xc4/0xf0 [ 60.983896][ T6875] vfs_mkdir+0x419/0x690 [ 60.988118][ T6875] do_mkdirat+0x21e/0x280 [ 60.992424][ T6875] ? __ia32_sys_mknod+0xb0/0xb0 [ 60.997262][ T6875] ? do_syscall_64+0x1c/0xe0 [ 61.001828][ T6875] ? lockdep_hardirqs_on_prepare+0x3a2/0x590 [ 61.007796][ T6875] do_syscall_64+0x60/0xe0 [ 61.012212][ T6875] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 61.018091][ T6875] RIP: 0033:0x45bed7 [ 61.022041][ T6875] Code: Bad RIP value. [ 61.026081][ T6875] RSP: 002b:00007fff755b58f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 61.034467][ T6875] RAX: ffffffffffffffda RBX: 000000000003a2f8 RCX: 000000000045bed7 [ 61.042414][ T6875] RDX: 0000000000000002 RSI: 00000000000001c0 RDI: 00007fff755b5ad0 [ 61.050378][ T6875] RBP: 0000000000000001 R08: 000000000000f8c0 R09: 0000000000002840 [ 61.058588][ T6875] R10: 0000000000000011 R11: 0000000000000246 R12: 00000000000000c2 [ 61.066552][ T6875] R13: 00007fff755b5ad0 R14: 8421084210842109 R15: 00007fff755b5adc [ 61.151876][ T6876] IPVS: ftp: loaded support on port[0] = 21 [ 61.188777][ T6876] BUG: using smp_processor_id() in preemptible [00000000] code: syz-executor.0/6876 [ 61.198358][ T6876] caller is ext4_mb_new_blocks+0xa4d/0x3b70 [ 61.204416][ T6876] CPU: 0 PID: 6876 Comm: syz-executor.0 Not tainted 5.7.0-syzkaller #0 [ 61.212651][ T6876] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 61.222696][ T6876] Call Trace: [ 61.225980][ T6876] dump_stack+0x18f/0x20d [ 61.230304][ T6876] check_preemption_disabled+0x20d/0x220 [ 61.235912][ T6876] ext4_mb_new_blocks+0xa4d/0x3b70 [ 61.241010][ T6876] ? ext4_ext_search_right+0x2ca/0xb20 [ 61.246801][ T6876] ? ext4_inode_to_goal_block+0x2df/0x3f0 [ 61.252508][ T6876] ext4_ext_map_blocks+0x201b/0x33e0 [ 61.257774][ T6876] ? ext4_ext_release+0x10/0x10 [ 61.262610][ T6876] ? down_write_killable+0x170/0x170 [ 61.267879][ T6876] ? ext4_es_lookup_extent+0x41d/0xd10 [ 61.273330][ T6876] ext4_map_blocks+0x4cb/0x1640 [ 61.278161][ T6876] ? ext4_issue_zeroout+0x1e0/0x1e0 [ 61.283336][ T6876] ? rcu_read_lock_sched_held+0x9c/0xd0 [ 61.288854][ T6876] ? rcu_read_lock_any_held.part.0+0x50/0x50 [ 61.294808][ T6876] ? prandom_u32_state+0xe/0x170 [ 61.299735][ T6876] ? __brelse+0x84/0xa0 [ 61.304215][ T6876] ? __ext4_new_inode+0x144/0x55e0 [ 61.309305][ T6876] ext4_getblk+0xad/0x520 [ 61.313612][ T6876] ? ext4_iomap_overwrite_begin+0xa0/0xa0 [ 61.319310][ T6876] ? ext4_free_inode+0x1700/0x1700 [ 61.324400][ T6876] ext4_bread+0x7c/0x380 [ 61.328617][ T6876] ? ext4_getblk+0x520/0x520 [ 61.333188][ T6876] ? dquot_get_next_dqblk+0x180/0x180 [ 61.338538][ T6876] ext4_append+0x153/0x360 [ 61.342943][ T6876] ext4_mkdir+0x5e0/0xdf0 [ 61.347252][ T6876] ? ext4_rmdir+0xde0/0xde0 [ 61.351732][ T6876] ? security_inode_permission+0xc4/0xf0 [ 61.357346][ T6876] vfs_mkdir+0x419/0x690 [ 61.361567][ T6876] do_mkdirat+0x21e/0x280 [ 61.365885][ T6876] ? __ia32_sys_mknod+0xb0/0xb0 [ 61.370725][ T6876] ? do_syscall_64+0x1c/0xe0 [ 61.375304][ T6876] ? lockdep_hardirqs_on_prepare+0x3a2/0x590 [ 61.381271][ T6876] do_syscall_64+0x60/0xe0 [ 61.385668][ T6876] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 61.391534][ T6876] RIP: 0033:0x45bed7 [ 61.395413][ T6876] Code: Bad RIP value. [ 61.399454][ T6876] RSP: 002b:00007fff755b57e8 EFLAGS: 00000206 ORIG_RAX: 0000000000000053 [ 61.407858][ T6876] RAX: ffffffffffffffda RBX: 000000000078c988 RCX: 000000000045bed7 [ 61.415819][ T6876] RDX: 00007fff755b5833 RSI: 00000000000001ff RDI: 00007fff755b5830 [ 61.423792][ T6876] RBP: 00000000000000f8 R08: 0000000000000000 R09: 0000000000000003 [ 61.431835][ T6876] R10: 0000000000000064 R11: 0000000000000206 R12: 00000000004185c0 [ 61.439800][ T6876] R13: 00007fff755b5820 R14: 0000000000000000 R15: 00007fff755b5830 [ 61.488621][ T6876] BUG: using smp_processor_id() in preemptible [00000000] code: syz-executor.0/6876 [ 61.498628][ T6876] caller is ext4_mb_new_blocks+0xa4d/0x3b70 [ 61.505502][ T6876] CPU: 1 PID: 6876 Comm: syz-executor.0 Not tainted 5.7.0-syzkaller #0 [ 61.513738][ T6876] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 61.523795][ T6876] Call Trace: [ 61.527275][ T6876] dump_stack+0x18f/0x20d [ 61.531620][ T6876] check_preemption_disabled+0x20d/0x220 [ 61.537263][ T6876] ext4_mb_new_blocks+0xa4d/0x3b70 [ 61.542398][ T6876] ? ext4_ext_search_right+0x2ca/0xb20 [ 61.547868][ T6876] ? ext4_inode_to_goal_block+0x2df/0x3f0 [ 61.553616][ T6876] ext4_ext_map_blocks+0x201b/0x33e0 [ 61.558920][ T6876] ? ext4_ext_release+0x10/0x10 [ 61.563881][ T6876] ? down_write_killable+0x170/0x170 [ 61.569259][ T6876] ? ext4_es_lookup_extent+0x41d/0xd10 [ 61.574734][ T6876] ext4_map_blocks+0x4cb/0x1640 [ 61.579603][ T6876] ? ext4_issue_zeroout+0x1e0/0x1e0 [ 61.584813][ T6876] ? rcu_read_lock_sched_held+0x9c/0xd0 [ 61.590457][ T6876] ? rcu_read_lock_any_held.part.0+0x50/0x50 [ 61.596433][ T6876] ? prandom_u32_state+0xe/0x170 [ 61.601463][ T6876] ? __brelse+0x84/0xa0 [ 61.605711][ T6876] ? __ext4_new_inode+0x144/0x55e0 [ 61.611154][ T6876] ext4_getblk+0xad/0x520 [ 61.615487][ T6876] ? ext4_iomap_overwrite_begin+0xa0/0xa0 [ 61.621192][ T6876] ? ext4_free_inode+0x1700/0x1700 [ 61.626300][ T6876] ext4_bread+0x7c/0x380 [ 61.630538][ T6876] ? ext4_getblk+0x520/0x520 [ 61.635112][ T6876] ? dquot_get_next_dqblk+0x180/0x180 [ 61.640470][ T6876] ext4_append+0x153/0x360 [ 61.644875][ T6876] ext4_mkdir+0x5e0/0xdf0 [ 61.649206][ T6876] ? ext4_rmdir+0xde0/0xde0 [ 61.653696][ T6876] ? security_inode_permission+0xc4/0xf0 [ 61.660544][ T6876] vfs_mkdir+0x419/0x690 [ 61.664879][ T6876] do_mkdirat+0x21e/0x280 [ 61.669191][ T6876] ? __ia32_sys_mknod+0xb0/0xb0 [ 61.675100][ T6876] ? do_syscall_64+0x1c/0xe0 [ 61.679681][ T6876] ? lockdep_hardirqs_on_prepare+0x3a2/0x590 [ 61.685661][ T6876] do_syscall_64+0x60/0xe0 [ 61.690145][ T6876] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 61.696017][ T6876] RIP: 0033:0x45bed7 [ 61.699884][ T6876] Code: Bad RIP value. [ 61.703925][ T6876] RSP: 002b:00007fff755b57e8 EFLAGS: 00000206 ORIG_RAX: 0000000000000053 [ 61.712323][ T6876] RAX: ffffffffffffffda RBX: 000000000000f027 RCX: 000000000045bed7 [ 61.720279][ T6876] RDX: 00007fff755b5833 RSI: 00000000000001ff RDI: 00007fff755b5830 [ 61.728232][ T6876] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000003 2020/06/15 17:44:14 building call list... [ 61.736183][ T6876] R10: 0000000000000064 R11: 0000000000000206 R12: 0000000000000003 [ 61.744150][ T6876] R13: 00007fff755b5820 R14: 000000000000f024 R15: 00007fff755b5830 [ 62.022642][ T21] tipc: TX() has been purged, node left! [ 62.535843][ T21] ================================================================== [ 62.544073][ T21] BUG: KASAN: use-after-free in afs_wake_up_async_call+0x6aa/0x770 [ 62.551954][ T21] Write of size 1 at addr ffff88808191d1e4 by task kworker/u4:1/21 [ 62.559826][ T21] [ 62.562152][ T21] CPU: 1 PID: 21 Comm: kworker/u4:1 Not tainted 5.7.0-syzkaller #0 [ 62.570026][ T21] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 62.580081][ T21] Workqueue: netns cleanup_net [ 62.584832][ T21] Call Trace: [ 62.588128][ T21] dump_stack+0x18f/0x20d [ 62.592460][ T21] ? afs_wake_up_async_call+0x6aa/0x770 [ 62.597996][ T21] ? afs_wake_up_async_call+0x6aa/0x770 [ 62.603533][ T21] ? afs_put_call+0xa40/0xa40 [ 62.608205][ T21] print_address_description.constprop.0.cold+0xd3/0x413 [ 62.615228][ T21] ? vprintk_func+0x97/0x1a6 [ 62.619813][ T21] ? afs_wake_up_async_call+0x6aa/0x770 [ 62.625366][ T21] kasan_report.cold+0x1f/0x37 [ 62.630135][ T21] ? rcu_read_lock_held+0x81/0xb0 [ 62.635149][ T21] ? afs_wake_up_async_call+0x6aa/0x770 [ 62.640691][ T21] afs_wake_up_async_call+0x6aa/0x770 [ 62.646071][ T21] ? afs_close_socket+0x320/0x320 [ 62.651096][ T21] ? afs_put_call+0xa40/0xa40 [ 62.655771][ T21] rxrpc_notify_socket+0x1db/0x5d0 [ 62.660885][ T21] ? afs_put_call+0xa40/0xa40 [ 62.665557][ T21] __rxrpc_set_call_completion.part.0+0x172/0x410 [ 62.672055][ T21] rxrpc_call_completed+0xca/0xf0 [ 62.677090][ T21] rxrpc_discard_prealloc+0x781/0xab0 [ 62.682480][ T21] ? lock_sock_nested+0x94/0x110 [ 62.687430][ T21] rxrpc_listen+0x147/0x360 [ 62.691953][ T21] afs_close_socket+0x95/0x320 [ 62.696718][ T21] ? afs_purge_servers+0x16d/0x300 [ 62.701828][ T21] ? afs_rx_discard_new_call+0x50/0x50 [ 62.707319][ T21] ? init_wait_var_entry+0x200/0x200 [ 62.712606][ T21] ? rcu_read_lock_held_common+0xa0/0xa0 [ 62.718239][ T21] ? check_preemption_disabled+0x38/0x220 [ 62.723962][ T21] afs_net_exit+0x1bc/0x310 [ 62.728460][ T21] ? afs_net_init+0xe30/0xe30 [ 62.733131][ T21] ops_exit_list.isra.0+0xa8/0x150 [ 62.738237][ T21] cleanup_net+0x511/0xa50 [ 62.742651][ T21] ? unregister_pernet_device+0x70/0x70 [ 62.748194][ T21] ? rcu_read_lock_any_held.part.0+0x50/0x50 [ 62.754175][ T21] process_one_work+0x965/0x1690 [ 62.759119][ T21] ? lock_release+0x800/0x800 [ 62.763792][ T21] ? pwq_dec_nr_in_flight+0x310/0x310 [ 62.769171][ T21] ? rwlock_bug.part.0+0x90/0x90 [ 62.774123][ T21] worker_thread+0x96/0xe10 [ 62.778638][ T21] ? process_one_work+0x1690/0x1690 [ 62.783953][ T21] kthread+0x3b5/0x4a0 [ 62.788019][ T21] ? kthread_mod_delayed_work+0x1a0/0x1a0 [ 62.793733][ T21] ? kthread_mod_delayed_work+0x1a0/0x1a0 [ 62.799457][ T21] ret_from_fork+0x1f/0x30 [ 62.804137][ T21] [ 62.806455][ T21] Allocated by task 6876: [ 62.810776][ T21] save_stack+0x1b/0x40 [ 62.814926][ T21] __kasan_kmalloc.constprop.0+0xbf/0xd0 [ 62.820550][ T21] kmem_cache_alloc_trace+0x153/0x7d0 [ 62.825910][ T21] afs_alloc_call+0x55/0x630 [ 62.830510][ T21] afs_charge_preallocation+0xe9/0x2d0 [ 62.835959][ T21] afs_open_socket+0x292/0x360 [ 62.840716][ T21] afs_net_init+0xa6c/0xe30 [ 62.845210][ T21] ops_init+0xaf/0x420 [ 62.849268][ T21] setup_net+0x2de/0x860 [ 62.853500][ T21] copy_net_ns+0x293/0x590 [ 62.857909][ T21] create_new_namespaces+0x3fb/0xb30 [ 62.863272][ T21] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 62.868892][ T21] ksys_unshare+0x43d/0x8e0 [ 62.873385][ T21] __x64_sys_unshare+0x2d/0x40 [ 62.878139][ T21] do_syscall_64+0x60/0xe0 [ 62.882550][ T21] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 62.888424][ T21] [ 62.890741][ T21] Freed by task 21: [ 62.894587][ T21] save_stack+0x1b/0x40 [ 62.898735][ T21] __kasan_slab_free+0xf7/0x140 [ 62.903577][ T21] kfree+0x109/0x2b0 [ 62.907465][ T21] afs_put_call+0x585/0xa40 [ 62.911964][ T21] rxrpc_discard_prealloc+0x764/0xab0 [ 62.917326][ T21] rxrpc_listen+0x147/0x360 [ 62.921821][ T21] afs_close_socket+0x95/0x320 [ 62.926583][ T21] afs_net_exit+0x1bc/0x310 [ 62.931077][ T21] ops_exit_list.isra.0+0xa8/0x150 [ 62.936178][ T21] cleanup_net+0x511/0xa50 [ 62.940584][ T21] process_one_work+0x965/0x1690 [ 62.945620][ T21] worker_thread+0x96/0xe10 [ 62.950133][ T21] kthread+0x3b5/0x4a0 [ 62.954301][ T21] ret_from_fork+0x1f/0x30 [ 62.958706][ T21] [ 62.961029][ T21] The buggy address belongs to the object at ffff88808191d000 [ 62.961029][ T21] which belongs to the cache kmalloc-1k of size 1024 [ 62.975175][ T21] The buggy address is located 484 bytes inside of [ 62.975175][ T21] 1024-byte region [ffff88808191d000, ffff88808191d400) [ 62.988603][ T21] The buggy address belongs to the page: [ 62.994230][ T21] page:ffffea0002064740 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 [ 63.003345][ T21] flags: 0xfffe0000000200(slab) [ 63.008197][ T21] raw: 00fffe0000000200 ffffea0002064688 ffffea0002064788 ffff8880aa000c40 [ 63.016782][ T21] raw: 0000000000000000 ffff88808191d000 0000000100000002 0000000000000000 [ 63.025361][ T21] page dumped because: kasan: bad access detected [ 63.031770][ T21] [ 63.034103][ T21] Memory state around the buggy address: [ 63.039724][ T21] ffff88808191d080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 63.047775][ T21] ffff88808191d100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 63.055824][ T21] >ffff88808191d180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 63.063868][ T21] ^ [ 63.071053][ T21] ffff88808191d200: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 63.079107][ T21] ffff88808191d280: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 63.087153][ T21] ================================================================== [ 63.095196][ T21] Disabling lock debugging due to kernel taint [ 63.101414][ T21] Kernel panic - not syncing: panic_on_warn set ... [ 63.107999][ T21] CPU: 1 PID: 21 Comm: kworker/u4:1 Tainted: G B 5.7.0-syzkaller #0 [ 63.117266][ T21] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 63.127318][ T21] Workqueue: netns cleanup_net [ 63.132115][ T21] Call Trace: [ 63.135403][ T21] dump_stack+0x18f/0x20d [ 63.139726][ T21] ? afs_wake_up_async_call+0x5f0/0x770 [ 63.145263][ T21] ? afs_put_call+0xa40/0xa40 [ 63.149942][ T21] panic+0x2e3/0x75c [ 63.153832][ T21] ? __warn_printk+0xf3/0xf3 [ 63.158420][ T21] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 63.164573][ T21] ? trace_hardirqs_on+0x55/0x220 [ 63.169630][ T21] ? afs_wake_up_async_call+0x6aa/0x770 [ 63.175171][ T21] ? afs_wake_up_async_call+0x6aa/0x770 [ 63.180717][ T21] ? afs_put_call+0xa40/0xa40 [ 63.185391][ T21] end_report+0x4d/0x53 [ 63.189544][ T21] kasan_report.cold+0xd/0x37 [ 63.194221][ T21] ? rcu_read_lock_held+0x81/0xb0 [ 63.199231][ T21] ? afs_wake_up_async_call+0x6aa/0x770 [ 63.204751][ T21] afs_wake_up_async_call+0x6aa/0x770 [ 63.210112][ T21] ? afs_close_socket+0x320/0x320 [ 63.215107][ T21] ? afs_put_call+0xa40/0xa40 [ 63.219758][ T21] rxrpc_notify_socket+0x1db/0x5d0 [ 63.224845][ T21] ? afs_put_call+0xa40/0xa40 [ 63.229609][ T21] __rxrpc_set_call_completion.part.0+0x172/0x410 [ 63.235996][ T21] rxrpc_call_completed+0xca/0xf0 [ 63.241115][ T21] rxrpc_discard_prealloc+0x781/0xab0 [ 63.246472][ T21] ? lock_sock_nested+0x94/0x110 [ 63.251389][ T21] rxrpc_listen+0x147/0x360 [ 63.255871][ T21] afs_close_socket+0x95/0x320 [ 63.260608][ T21] ? afs_purge_servers+0x16d/0x300 [ 63.265706][ T21] ? afs_rx_discard_new_call+0x50/0x50 [ 63.271148][ T21] ? init_wait_var_entry+0x200/0x200 [ 63.276431][ T21] ? rcu_read_lock_held_common+0xa0/0xa0 [ 63.282035][ T21] ? check_preemption_disabled+0x38/0x220 [ 63.287743][ T21] afs_net_exit+0x1bc/0x310 [ 63.292222][ T21] ? afs_net_init+0xe30/0xe30 [ 63.296957][ T21] ops_exit_list.isra.0+0xa8/0x150 [ 63.302055][ T21] cleanup_net+0x511/0xa50 [ 63.306443][ T21] ? unregister_pernet_device+0x70/0x70 [ 63.311960][ T21] ? rcu_read_lock_any_held.part.0+0x50/0x50 [ 63.317940][ T21] process_one_work+0x965/0x1690 [ 63.322863][ T21] ? lock_release+0x800/0x800 [ 63.327524][ T21] ? pwq_dec_nr_in_flight+0x310/0x310 [ 63.332869][ T21] ? rwlock_bug.part.0+0x90/0x90 executing program [ 63.337779][ T21] worker_thread+0x96/0xe10 [ 63.342280][ T21] ? process_one_work+0x1690/0x1690 [ 63.347466][ T21] kthread+0x3b5/0x4a0 [ 63.351508][ T21] ? kthread_mod_delayed_work+0x1a0/0x1a0 [ 63.357209][ T21] ? kthread_mod_delayed_work+0x1a0/0x1a0 [ 63.362900][ T21] ret_from_fork+0x1f/0x30 [ 63.368804][ T21] Kernel Offset: disabled [ 63.373155][ T21] Rebooting in 86400 seconds..