INIT: Entering runlevel: 2 [info] Using makefile-style concurrent boot in runlevel 2. [....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.35' (ECDSA) to the list of known hosts. 2018/04/01 17:23:05 parsed 1 programs 2018/04/01 17:23:05 executed programs: 0 syzkaller login: [ 37.167817] IPVS: ftp: loaded support on port[0] = 21 [ 37.195738] IPVS: ftp: loaded support on port[0] = 21 [ 37.236906] IPVS: ftp: loaded support on port[0] = 21 [ 37.257153] FAULT_INJECTION: forcing a failure. [ 37.257153] name failslab, interval 1, probability 0, space 0, times 1 [ 37.268578] CPU: 0 PID: 4500 Comm: syz-executor3 Not tainted 4.16.0-rc6+ #43 [ 37.275744] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 37.285080] Call Trace: [ 37.286307] FAULT_INJECTION: forcing a failure. [ 37.286307] name failslab, interval 1, probability 0, space 0, times 1 [ 37.287653] dump_stack+0x194/0x24d [ 37.287661] ? arch_local_irq_restore+0x53/0x53 [ 37.287673] should_fail+0x8c0/0xa40 [ 37.287682] ? unwind_next_frame.part.6+0x1a6/0xb40 [ 37.287690] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 37.320928] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 37.326107] ? __lock_acquire+0x664/0x3e00 [ 37.330317] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 37.335488] ? find_held_lock+0x35/0x1d0 [ 37.339536] ? __lock_is_held+0xb6/0x140 [ 37.343584] ? check_same_owner+0x320/0x320 [ 37.347884] ? __d_lookup+0x4f4/0x830 [ 37.351666] ? rcu_note_context_switch+0x710/0x710 [ 37.356576] should_failslab+0xec/0x120 [ 37.360528] kmem_cache_alloc+0x47/0x760 [ 37.364570] __d_alloc+0xc1/0xbd0 [ 37.368002] ? shrink_dcache_for_umount+0x290/0x290 [ 37.373001] ? d_alloc_parallel+0x1b40/0x1b40 [ 37.377478] ? lock_release+0xa40/0xa40 [ 37.381432] ? mark_held_locks+0xaf/0x100 [ 37.385564] ? d_lookup+0x133/0x2e0 [ 37.389169] ? d_lookup+0x1d5/0x2e0 [ 37.392770] d_alloc+0x8e/0x340 [ 37.396025] ? __d_alloc+0xbd0/0xbd0 [ 37.399714] ? full_name_hash+0x9b/0xe0 [ 37.403668] __rpc_lookup_create_exclusive+0x183/0x1d0 [ 37.408919] ? rpc_d_lookup_sb+0x1a0/0x1a0 [ 37.413130] rpc_populate.constprop.15+0xa3/0x340 [ 37.417950] rpc_fill_super+0x379/0xae0 [ 37.421910] ? cap_capable+0x1b5/0x230 [ 37.425772] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 37.430939] ? security_capable+0x8e/0xc0 [ 37.435062] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 37.440227] ? ns_capable_common+0xcf/0x160 [ 37.444525] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 37.449688] mount_ns+0xc4/0x190 [ 37.453028] rpc_mount+0x9e/0xd0 [ 37.456367] mount_fs+0x66/0x2d0 [ 37.459731] vfs_kern_mount.part.26+0xc6/0x4a0 [ 37.464288] ? may_umount+0xa0/0xa0 [ 37.468066] ? _raw_read_unlock+0x22/0x30 [ 37.472189] ? __get_fs_type+0x8a/0xc0 [ 37.476053] do_mount+0xea4/0x2bb0 [ 37.479587] ? copy_mount_string+0x40/0x40 [ 37.483797] ? rcu_pm_notify+0xc0/0xc0 [ 37.487661] ? copy_mount_options+0x5f/0x2e0 [ 37.492041] ? rcu_read_lock_sched_held+0x108/0x120 [ 37.497032] ? kmem_cache_alloc_trace+0x459/0x740 [ 37.501849] ? kasan_check_write+0x14/0x20 [ 37.506073] ? copy_mount_options+0x1f7/0x2e0 [ 37.510543] SyS_mount+0xab/0x120 [ 37.513988] ? copy_mnt_ns+0xb30/0xb30 [ 37.517862] do_syscall_64+0x281/0x940 [ 37.521722] ? vmalloc_sync_all+0x30/0x30 [ 37.525844] ? syscall_return_slowpath+0x550/0x550 [ 37.530751] ? do_debug+0x1f3/0x6e0 [ 37.534357] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 37.539703] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 37.544526] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 37.549694] RIP: 0033:0x455269 [ 37.552858] RSP: 002b:00007fff26285088 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 37.560541] RAX: ffffffffffffffda RBX: 00000000016c5914 RCX: 0000000000455269 [ 37.567789] RDX: 0000000020000080 RSI: 0000000020000040 RDI: 0000000020000000 [ 37.575048] RBP: 000000000072bea0 R08: 0000000020000080 R09: 0000000000000000 [ 37.582295] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 37.589548] R13: 00000000000003fa R14: 00000000006f8010 R15: 0000000000000022 [ 37.596808] CPU: 1 PID: 4505 Comm: syz-executor5 Not tainted 4.16.0-rc6+ #43 [ 37.604036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 37.605918] net/sunrpc/rpc_pipe.c: rpc_populate failed to populate directory / [ 37.613389] Call Trace: [ 37.613418] dump_stack+0x194/0x24d [ 37.613428] ? arch_local_irq_restore+0x53/0x53 [ 37.613448] should_fail+0x8c0/0xa40 [ 37.635378] ? unwind_next_frame.part.6+0x1a6/0xb40 [ 37.640423] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 37.641754] IPVS: ftp: loaded support on port[0] = 21 [ 37.647271] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 37.647282] ? __lock_acquire+0x664/0x3e00 [ 37.661953] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 37.667149] ? find_held_lock+0x35/0x1d0 [ 37.671223] ? __lock_is_held+0xb6/0x140 [ 37.675293] ? check_same_owner+0x320/0x320 [ 37.679608] ? __d_lookup+0x4f4/0x830 [ 37.681603] IPVS: ftp: loaded support on port[0] = 21 [ 37.683398] ? rcu_note_context_switch+0x710/0x710 [ 37.683408] should_failslab+0xec/0x120 [ 37.697563] kmem_cache_alloc+0x47/0x760 [ 37.701653] __d_alloc+0xc1/0xbd0 [ 37.705115] ? shrink_dcache_for_umount+0x290/0x290 [ 37.710130] ? d_alloc_parallel+0x1b40/0x1b40 [ 37.714642] ? lock_release+0xa40/0xa40 [ 37.718619] ? mark_held_locks+0xaf/0x100 [ 37.720940] IPVS: ftp: loaded support on port[0] = 21 [ 37.722759] ? d_lookup+0x133/0x2e0 [ 37.722770] ? d_lookup+0x1d5/0x2e0 [ 37.735215] d_alloc+0x8e/0x340 [ 37.738751] ? __d_alloc+0xbd0/0xbd0 [ 37.742602] ? full_name_hash+0x9b/0xe0 [ 37.746565] __rpc_lookup_create_exclusive+0x183/0x1d0 [ 37.751839] ? rpc_d_lookup_sb+0x1a0/0x1a0 [ 37.756077] rpc_populate.constprop.15+0xa3/0x340 [ 37.760919] rpc_fill_super+0x379/0xae0 [ 37.764886] ? cap_capable+0x1b5/0x230 [ 37.766834] IPVS: ftp: loaded support on port[0] = 21 [ 37.768766] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 37.768776] ? security_capable+0x8e/0xc0 [ 37.768783] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 37.788454] ? ns_capable_common+0xcf/0x160 [ 37.792750] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 37.797934] mount_ns+0xc4/0x190 [ 37.801287] rpc_mount+0x9e/0xd0 [ 37.804631] mount_fs+0x66/0x2d0 RESULT: signal 0, coverage 0 errno 0 [ 37.804718] IPVS: ftp: loaded support on port[0] = 21 [ 37.807980] vfs_kern_mount.part.26+0xc6/0x4a0 [ 37.807986] ? may_umount+0xa0/0xa0 [ 37.808001] ? _raw_read_unlock+0x22/0x30 [ 37.825501] ? __get_fs_type+0x8a/0xc0 [ 37.829368] do_mount+0xea4/0x2bb0 [ 37.832884] ? copy_mount_string+0x40/0x40 [ 37.837096] ? rcu_pm_notify+0xc0/0xc0 [ 37.840975] ? copy_mount_options+0x5f/0x2e0 [ 37.845360] ? rcu_read_lock_sched_held+0x108/0x120 [ 37.850358] ? kmem_cache_alloc_trace+0x459/0x740 [ 37.855194] ? kasan_check_write+0x14/0x20 [ 37.859415] ? copy_mount_options+0x1f7/0x2e0 [ 37.863899] SyS_mount+0xab/0x120 [ 37.867334] ? copy_mnt_ns+0xb30/0xb30 [ 37.871202] do_syscall_64+0x281/0x940 [ 37.875068] ? vmalloc_sync_all+0x30/0x30 [ 37.879193] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 37.883928] ? syscall_return_slowpath+0x550/0x550 [ 37.888834] ? syscall_return_slowpath+0x2ac/0x550 [ 37.893744] ? prepare_exit_to_usermode+0x350/0x350 [ 37.898747] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 37.904097] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 37.908939] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 37.914106] RIP: 0033:0x455269 [ 37.917272] RSP: 002b:00007ffe72bdb448 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 37.924972] RAX: ffffffffffffffda RBX: 0000000001e2a914 RCX: 0000000000455269 [ 37.929048] FAULT_INJECTION: forcing a failure. [ 37.929048] name failslab, interval 1, probability 0, space 0, times 0 [ 37.932231] RDX: 0000000020000080 RSI: 0000000020000040 RDI: 0000000020000000 [ 37.932236] RBP: 000000000072bea0 R08: 0000000020000080 R09: 0000000000000000 RESULT: signal 0, coverage 0 errno 0 [ 37.932238] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 37.932241] R13: 00000000000003fa R14: 00000000006f8010 R15: 0000000000000022 [ 37.960634] net/sunrpc/rpc_pipe.c: rpc_populate failed to populate directory / [ 37.965914] CPU: 0 PID: 4515 Comm: syz-executor6 Not tainted 4.16.0-rc6+ #43 [ 37.987810] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 37.997150] Call Trace: [ 37.999733] dump_stack+0x194/0x24d [ 38.003340] ? arch_local_irq_restore+0x53/0x53 [ 38.007994] should_fail+0x8c0/0xa40 [ 38.011686] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 38.016785] ? __raw_spin_lock_init+0x1c/0x100 [ 38.017580] FAULT_INJECTION: forcing a failure. [ 38.017580] name failslab, interval 1, probability 0, space 0, times 0 [ 38.021364] ? find_held_lock+0x35/0x1d0 [ 38.021373] ? __lock_is_held+0xb6/0x140 [ 38.021384] ? check_same_owner+0x320/0x320 [ 38.021388] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 38.021400] ? rcu_note_context_switch+0x710/0x710 [ 38.021410] should_failslab+0xec/0x120 [ 38.021418] kmem_cache_alloc+0x47/0x760 [ 38.021434] ? current_time+0x18/0xc0 [ 38.021439] ? lock_downgrade+0x980/0x980 [ 38.021445] __d_alloc+0xc1/0xbd0 [ 38.021455] ? lock_release+0xa40/0xa40 [ 38.078248] ? shrink_dcache_for_umount+0x290/0x290 [ 38.083242] ? mark_held_locks+0xaf/0x100 [ 38.087388] ? current_kernel_time64+0x122/0x2f0 [ 38.092118] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 38.097113] ? trace_hardirqs_on+0xd/0x10 [ 38.101235] ? current_kernel_time64+0x1d4/0x2f0 [ 38.105974] ? ktime_get_raw+0x380/0x380 [ 38.110011] ? evict_inodes+0x580/0x580 [ 38.113965] ? timespec_trunc+0x79/0xe0 [ 38.117915] ? inc_nlink+0x45/0x140 [ 38.121518] d_make_root+0x3f/0x80 [ 38.125036] rpc_fill_super+0x32f/0xae0 [ 38.128986] ? cap_capable+0x1b5/0x230 [ 38.132854] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 38.138020] ? security_capable+0x8e/0xc0 [ 38.142152] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 38.147331] ? ns_capable_common+0xcf/0x160 [ 38.151638] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 38.156817] mount_ns+0xc4/0x190 [ 38.160168] rpc_mount+0x9e/0xd0 [ 38.163512] mount_fs+0x66/0x2d0 [ 38.166857] vfs_kern_mount.part.26+0xc6/0x4a0 [ 38.171413] ? may_umount+0xa0/0xa0 [ 38.175460] ? _raw_read_unlock+0x22/0x30 [ 38.179589] ? __get_fs_type+0x8a/0xc0 [ 38.183455] do_mount+0xea4/0x2bb0 [ 38.187743] ? copy_mount_string+0x40/0x40 [ 38.191960] ? rcu_pm_notify+0xc0/0xc0 [ 38.195826] ? copy_mount_options+0x5f/0x2e0 [ 38.200220] ? rcu_read_lock_sched_held+0x108/0x120 [ 38.205210] ? kmem_cache_alloc_trace+0x459/0x740 [ 38.210031] ? kasan_check_write+0x14/0x20 [ 38.214243] ? _copy_from_user+0x99/0x110 [ 38.218371] ? copy_mount_options+0x1f7/0x2e0 [ 38.222854] SyS_mount+0xab/0x120 [ 38.226282] ? copy_mnt_ns+0xb30/0xb30 [ 38.230173] do_syscall_64+0x281/0x940 [ 38.234039] ? vmalloc_sync_all+0x30/0x30 [ 38.238163] ? syscall_return_slowpath+0x550/0x550 [ 38.243069] ? do_debug+0x1f3/0x6e0 [ 38.246676] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 38.252014] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 38.256835] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 38.262003] RIP: 0033:0x455269 [ 38.265958] RSP: 002b:00007fff905b3c98 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 38.273642] RAX: ffffffffffffffda RBX: 0000000002442914 RCX: 0000000000455269 [ 38.280889] RDX: 0000000020000080 RSI: 0000000020000040 RDI: 0000000020000000 [ 38.288149] RBP: 000000000072bea0 R08: 0000000020000080 R09: 0000000000000000 [ 38.295397] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 38.302649] R13: 00000000000003fa R14: 00000000006f8010 R15: 0000000000000022 [ 38.309910] CPU: 1 PID: 4512 Comm: syz-executor0 Not tainted 4.16.0-rc6+ #43 [ 38.317117] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 38.326456] Call Trace: [ 38.329028] dump_stack+0x194/0x24d [ 38.332717] ? arch_local_irq_restore+0x53/0x53 [ 38.337364] ? __lock_acquire+0x664/0x3e00 [ 38.341576] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 38.346748] should_fail+0x8c0/0xa40 [ 38.348462] FAULT_INJECTION: forcing a failure. [ 38.348462] name failslab, interval 1, probability 0, space 0, times 0 [ 38.350440] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 38.350453] ? get_mem_cgroup_from_mm+0x47c/0x710 [ 38.350459] ? lock_downgrade+0x980/0x980 [ 38.350465] ? trace_hardirqs_off+0x10/0x10 [ 38.350473] ? __lock_is_held+0xb6/0x140 [ 38.384063] ? find_held_lock+0x35/0x1d0 [ 38.388103] ? rcu_read_unlock+0x16/0x70 [ 38.392141] ? lock_downgrade+0x980/0x980 [ 38.396265] should_failslab+0xec/0x120 [ 38.400217] kmem_cache_alloc_trace+0x4b/0x740 [ 38.404778] memcg_kmem_get_cache+0x4d3/0x890 [ 38.409261] ? mem_cgroup_handle_over_high+0x130/0x130 [ 38.414519] ? check_same_owner+0x320/0x320 [ 38.418826] ? rcu_note_context_switch+0x710/0x710 [ 38.423736] ? register_shrinker+0x10e/0x2d0 [ 38.428121] kmem_cache_alloc+0x186/0x760 [ 38.432242] ? find_held_lock+0x35/0x1d0 [ 38.436309] ? rpc_i_callback+0x30/0x30 [ 38.440261] rpc_alloc_inode+0x1a/0x20 [ 38.444125] alloc_inode+0x65/0x180 [ 38.447733] new_inode_pseudo+0x69/0x190 [ 38.451776] ? prune_icache_sb+0x1a0/0x1a0 [ 38.455995] ? __lock_is_held+0xb6/0x140 [ 38.460036] new_inode+0x1c/0x40 [ 38.463388] rpc_get_inode+0x20/0x1e0 [ 38.467171] rpc_fill_super+0x327/0xae0 [ 38.471129] ? cap_capable+0x1b5/0x230 [ 38.475000] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 38.480168] ? security_capable+0x8e/0xc0 [ 38.484292] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 38.489462] ? ns_capable_common+0xcf/0x160 [ 38.493773] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 38.498955] mount_ns+0xc4/0x190 [ 38.502300] rpc_mount+0x9e/0xd0 [ 38.505643] mount_fs+0x66/0x2d0 [ 38.508992] vfs_kern_mount.part.26+0xc6/0x4a0 [ 38.513555] ? may_umount+0xa0/0xa0 [ 38.517160] ? _raw_read_unlock+0x22/0x30 [ 38.521287] ? __get_fs_type+0x8a/0xc0 [ 38.525158] do_mount+0xea4/0x2bb0 [ 38.528679] ? copy_mount_string+0x40/0x40 [ 38.532894] ? rcu_pm_notify+0xc0/0xc0 [ 38.536759] ? copy_mount_options+0x5f/0x2e0 [ 38.541145] ? rcu_read_lock_sched_held+0x108/0x120 [ 38.546141] ? kmem_cache_alloc_trace+0x459/0x740 [ 38.550963] ? copy_mount_options+0x1f7/0x2e0 [ 38.555434] SyS_mount+0xab/0x120 [ 38.558863] ? copy_mnt_ns+0xb30/0xb30 [ 38.562872] do_syscall_64+0x281/0x940 [ 38.566755] ? vmalloc_sync_all+0x30/0x30 [ 38.570975] ? trace_event_raw_event_sys_exit+0x260/0x260 [ 38.576493] ? syscall_return_slowpath+0x550/0x550 [ 38.581406] ? syscall_return_slowpath+0x2ac/0x550 [ 38.586328] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 38.591681] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 38.596514] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 38.601686] RIP: 0033:0x455269 [ 38.604859] RSP: 002b:00007ffc091682c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 RESULT: signal 0, coverage 0 errno 0 [ 38.612552] RAX: ffffffffffffffda RBX: 0000000001971914 RCX: 0000000000455269 [ 38.619992] RDX: 0000000020000080 RSI: 0000000020000040 RDI: 0000000020000000 [ 38.627262] RBP: 000000000072bea0 R08: 0000000020000080 R09: 0000000000000000 [ 38.634535] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 38.641788] R13: 00000000000003fa R14: 00000000006f8010 R15: 0000000000000022 [ 38.649063] CPU: 0 PID: 4510 Comm: syz-executor1 Not tainted 4.16.0-rc6+ #43 RESULT: signal 0, coverage 0 errno 0 RESULT: signal 0, coverage 0 errno 0 [ 38.656245] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 38.665596] Call Trace: [ 38.668190] dump_stack+0x194/0x24d [ 38.671823] ? arch_local_irq_restore+0x53/0x53 [ 38.676498] ? __lock_acquire+0x664/0x3e00 [ 38.680737] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 38.686042] should_fail+0x8c0/0xa40 [ 38.689773] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 38.694886] ? get_mem_cgroup_from_mm+0x47c/0x710 [ 38.699733] ? lock_downgrade+0x980/0x980 [ 38.703889] ? trace_hardirqs_off+0x10/0x10 [ 38.708216] ? __lock_is_held+0xb6/0x140 [ 38.712285] ? find_held_lock+0x35/0x1d0 [ 38.716352] ? rcu_read_unlock+0x16/0x70 [ 38.720417] ? lock_downgrade+0x980/0x980 [ 38.724567] should_failslab+0xec/0x120 [ 38.724877] FAULT_INJECTION: forcing a failure. [ 38.724877] name failslab, interval 1, probability 0, space 0, times 0 [ 38.728536] kmem_cache_alloc_trace+0x4b/0x740 [ 38.728552] memcg_kmem_get_cache+0x4d3/0x890 [ 38.728562] ? mem_cgroup_handle_over_high+0x130/0x130 [ 38.728579] ? check_same_owner+0x320/0x320 [ 38.728595] ? rcu_note_context_switch+0x710/0x710 [ 38.728607] ? register_shrinker+0x10e/0x2d0 [ 38.728622] kmem_cache_alloc+0x186/0x760 [ 38.728633] ? find_held_lock+0x35/0x1d0 [ 38.775825] ? rpc_i_callback+0x30/0x30 [ 38.779781] rpc_alloc_inode+0x1a/0x20 [ 38.783658] alloc_inode+0x65/0x180 [ 38.787275] new_inode_pseudo+0x69/0x190 [ 38.791319] ? prune_icache_sb+0x1a0/0x1a0 [ 38.795543] ? __lock_is_held+0xb6/0x140 [ 38.799593] new_inode+0x1c/0x40 [ 38.802946] rpc_get_inode+0x20/0x1e0 [ 38.806734] rpc_fill_super+0x327/0xae0 [ 38.810697] ? cap_capable+0x1b5/0x230 [ 38.814576] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 38.819753] ? security_capable+0x8e/0xc0 [ 38.823892] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 38.829071] ? ns_capable_common+0xcf/0x160 [ 38.833381] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 38.838557] mount_ns+0xc4/0x190 [ 38.841913] rpc_mount+0x9e/0xd0 [ 38.845268] mount_fs+0x66/0x2d0 [ 38.848620] vfs_kern_mount.part.26+0xc6/0x4a0 [ 38.853182] ? may_umount+0xa0/0xa0 [ 38.856793] ? _raw_read_unlock+0x22/0x30 [ 38.860930] ? __get_fs_type+0x8a/0xc0 [ 38.864809] do_mount+0xea4/0x2bb0 [ 38.868339] ? copy_mount_string+0x40/0x40 [ 38.872563] ? rcu_pm_notify+0xc0/0xc0 [ 38.876444] ? copy_mount_options+0x5f/0x2e0 [ 38.880835] ? rcu_read_lock_sched_held+0x108/0x120 [ 38.885836] ? kmem_cache_alloc_trace+0x459/0x740 [ 38.890662] ? kasan_check_write+0x14/0x20 [ 38.894884] ? _copy_from_user+0x99/0x110 [ 38.899022] ? copy_mount_options+0x1f7/0x2e0 [ 38.903505] SyS_mount+0xab/0x120 [ 38.906947] ? copy_mnt_ns+0xb30/0xb30 [ 38.910822] do_syscall_64+0x281/0x940 [ 38.914695] ? vmalloc_sync_all+0x30/0x30 [ 38.918828] ? syscall_return_slowpath+0x550/0x550 [ 38.923746] ? do_debug+0x1f3/0x6e0 [ 38.927360] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 38.932715] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 38.937553] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 38.942731] RIP: 0033:0x455269 [ 38.945904] RSP: 002b:00007ffc5fd39708 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 38.953594] RAX: ffffffffffffffda RBX: 00000000020df914 RCX: 0000000000455269 [ 38.960860] RDX: 0000000020000080 RSI: 0000000020000040 RDI: 0000000020000000 [ 38.968117] RBP: 000000000072bea0 R08: 0000000020000080 R09: 0000000000000000 [ 38.975375] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 38.982629] R13: 00000000000003fa R14: 00000000006f8010 R15: 0000000000000022 [ 38.989899] CPU: 1 PID: 4545 Comm: syz-executor5 Not tainted 4.16.0-rc6+ #43 [ 38.997080] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 38.998323] FAULT_INJECTION: forcing a failure. [ 38.998323] name failslab, interval 1, probability 0, space 0, times 0 [ 39.006427] Call Trace: [ 39.006443] dump_stack+0x194/0x24d [ 39.006453] ? arch_local_irq_restore+0x53/0x53 [ 39.006468] should_fail+0x8c0/0xa40 [ 39.006476] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 39.006490] ? __raw_spin_lock_init+0x1c/0x100 [ 39.006502] ? find_held_lock+0x35/0x1d0 [ 39.046256] ? __lock_is_held+0xb6/0x140 [ 39.050330] ? check_same_owner+0x320/0x320 [ 39.054639] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 39.059642] ? rcu_note_context_switch+0x710/0x710 [ 39.064562] should_failslab+0xec/0x120 [ 39.068527] kmem_cache_alloc+0x47/0x760 [ 39.072575] ? current_time+0x18/0xc0 [ 39.076365] ? lock_downgrade+0x980/0x980 [ 39.080520] __d_alloc+0xc1/0xbd0 [ 39.083960] ? lock_release+0xa40/0xa40 [ 39.087919] ? shrink_dcache_for_umount+0x290/0x290 [ 39.092919] ? mark_held_locks+0xaf/0x100 [ 39.097053] ? current_kernel_time64+0x122/0x2f0 [ 39.101799] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 39.106800] ? trace_hardirqs_on+0xd/0x10 [ 39.110935] ? current_kernel_time64+0x1d4/0x2f0 [ 39.115677] ? ktime_get_raw+0x380/0x380 [ 39.119731] ? evict_inodes+0x580/0x580 [ 39.123695] ? timespec_trunc+0x79/0xe0 [ 39.127656] ? inc_nlink+0x45/0x140 [ 39.131270] d_make_root+0x3f/0x80 [ 39.134797] rpc_fill_super+0x32f/0xae0 [ 39.138761] ? cap_capable+0x1b5/0x230 [ 39.142639] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 39.147829] ? security_capable+0x8e/0xc0 [ 39.151968] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 39.157148] ? ns_capable_common+0xcf/0x160 [ 39.161459] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 39.166637] mount_ns+0xc4/0x190 [ 39.169991] rpc_mount+0x9e/0xd0 [ 39.173346] mount_fs+0x66/0x2d0 [ 39.176699] vfs_kern_mount.part.26+0xc6/0x4a0 [ 39.181265] ? may_umount+0xa0/0xa0 [ 39.184890] ? _raw_read_unlock+0x22/0x30 [ 39.189028] ? __get_fs_type+0x8a/0xc0 [ 39.192906] do_mount+0xea4/0x2bb0 [ 39.196434] ? copy_mount_string+0x40/0x40 [ 39.200655] ? rcu_pm_notify+0xc0/0xc0 [ 39.204531] ? copy_mount_options+0x5f/0x2e0 [ 39.208926] ? rcu_read_lock_sched_held+0x108/0x120 [ 39.213928] ? kmem_cache_alloc_trace+0x459/0x740 [ 39.218757] ? kasan_check_write+0x14/0x20 [ 39.222981] ? _copy_from_user+0x99/0x110 [ 39.227117] ? copy_mount_options+0x1f7/0x2e0 [ 39.231601] SyS_mount+0xab/0x120 [ 39.235037] ? copy_mnt_ns+0xb30/0xb30 [ 39.238912] do_syscall_64+0x281/0x940 [ 39.242783] ? vmalloc_sync_all+0x30/0x30 [ 39.246944] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 39.251685] ? syscall_return_slowpath+0x550/0x550 [ 39.256602] ? syscall_return_slowpath+0x2ac/0x550 [ 39.261522] ? prepare_exit_to_usermode+0x350/0x350 [ 39.266528] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 39.271884] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 39.276716] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 39.281893] RIP: 0033:0x455269 [ 39.285066] RSP: 002b:00007ffe72bdb448 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 39.292780] RAX: ffffffffffffffda RBX: 0000000001e2a914 RCX: 0000000000455269 [ 39.300037] RDX: 0000000020000080 RSI: 0000000020000040 RDI: 0000000020000000 [ 39.307294] RBP: 000000000072bea0 R08: 0000000020000080 R09: 0000000000000000 RESULT: signal 0, coverage 0 errno 0 RESULT: signal 0, coverage 0 errno 0 [ 39.314546] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 39.321801] R13: 00000000000003fa R14: 00000000006f8010 R15: 0000000000000022 [ 39.329071] CPU: 0 PID: 4511 Comm: syz-executor7 Not tainted 4.16.0-rc6+ #43 [ 39.336258] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 39.345608] Call Trace: [ 39.348195] dump_stack+0x194/0x24d [ 39.351824] ? arch_local_irq_restore+0x53/0x53 [ 39.356497] ? __lock_acquire+0x664/0x3e00 [ 39.360738] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 39.365929] should_fail+0x8c0/0xa40 [ 39.369644] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 39.374750] ? get_mem_cgroup_from_mm+0x47c/0x710 [ 39.379592] ? lock_downgrade+0x980/0x980 [ 39.383740] ? trace_hardirqs_off+0x10/0x10 [ 39.386244] FAULT_INJECTION: forcing a failure. [ 39.386244] name failslab, interval 1, probability 0, space 0, times 0 [ 39.388058] ? __lock_is_held+0xb6/0x140 [ 39.388073] ? find_held_lock+0x35/0x1d0 [ 39.388087] ? rcu_read_unlock+0x16/0x70 [ 39.388098] ? lock_downgrade+0x980/0x980 [ 39.415505] should_failslab+0xec/0x120 [ 39.419464] kmem_cache_alloc_trace+0x4b/0x740 [ 39.424036] memcg_kmem_get_cache+0x4d3/0x890 [ 39.428520] ? mem_cgroup_handle_over_high+0x130/0x130 [ 39.433789] ? check_same_owner+0x320/0x320 [ 39.438096] ? rcu_note_context_switch+0x710/0x710 [ 39.443009] ? register_shrinker+0x10e/0x2d0 [ 39.447407] kmem_cache_alloc+0x186/0x760 [ 39.451538] ? find_held_lock+0x35/0x1d0 [ 39.455585] ? rpc_i_callback+0x30/0x30 [ 39.459545] rpc_alloc_inode+0x1a/0x20 [ 39.463417] alloc_inode+0x65/0x180 [ 39.467029] new_inode_pseudo+0x69/0x190 [ 39.471085] ? prune_icache_sb+0x1a0/0x1a0 [ 39.475308] ? __lock_is_held+0xb6/0x140 [ 39.479386] new_inode+0x1c/0x40 [ 39.482823] rpc_get_inode+0x20/0x1e0 [ 39.486611] rpc_fill_super+0x327/0xae0 [ 39.490573] ? cap_capable+0x1b5/0x230 [ 39.494445] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 39.499624] ? security_capable+0x8e/0xc0 [ 39.503758] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 39.508932] ? ns_capable_common+0xcf/0x160 [ 39.513238] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 39.518412] mount_ns+0xc4/0x190 [ 39.521765] rpc_mount+0x9e/0xd0 [ 39.525119] mount_fs+0x66/0x2d0 [ 39.528475] vfs_kern_mount.part.26+0xc6/0x4a0 [ 39.533049] ? may_umount+0xa0/0xa0 [ 39.536660] ? _raw_read_unlock+0x22/0x30 [ 39.540793] ? __get_fs_type+0x8a/0xc0 [ 39.544669] do_mount+0xea4/0x2bb0 [ 39.548206] ? copy_mount_string+0x40/0x40 [ 39.552427] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 39.557428] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 39.562172] ? retint_kernel+0x10/0x10 [ 39.566047] ? copy_mount_options+0x18b/0x2e0 [ 39.570526] ? __sanitizer_cov_trace_pc+0x1a/0x50 [ 39.575356] ? copy_mount_options+0x1f7/0x2e0 [ 39.579835] SyS_mount+0xab/0x120 [ 39.583272] ? copy_mnt_ns+0xb30/0xb30 [ 39.587144] do_syscall_64+0x281/0x940 [ 39.591018] ? vmalloc_sync_all+0x30/0x30 [ 39.595150] ? trace_event_raw_event_sys_exit+0x260/0x260 [ 39.600672] ? syscall_return_slowpath+0x550/0x550 [ 39.605596] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 39.610953] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 39.615782] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 39.620953] RIP: 0033:0x455269 [ 39.624127] RSP: 002b:00007ffc65754918 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 39.631821] RAX: ffffffffffffffda RBX: 00000000027b7914 RCX: 0000000000455269 [ 39.639077] RDX: 0000000020000080 RSI: 0000000020000040 RDI: 0000000020000000 [ 39.646330] RBP: 000000000072bea0 R08: 0000000020000080 R09: 0000000000000000 [ 39.653586] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 39.660838] R13: 00000000000003fa R14: 00000000006f8010 R15: 0000000000000022 [ 39.668109] CPU: 1 PID: 4565 Comm: syz-executor5 Not tainted 4.16.0-rc6+ #43 [ 39.675304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 39.684662] Call Trace: [ 39.687256] dump_stack+0x194/0x24d [ 39.690891] ? arch_local_irq_restore+0x53/0x53 [ 39.695568] should_fail+0x8c0/0xa40 [ 39.695581] FAULT_INJECTION: forcing a failure. [ 39.695581] name failslab, interval 1, probability 0, space 0, times 0 [ 39.699269] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 39.699285] ? __raw_spin_lock_init+0x1c/0x100 [ 39.699295] ? find_held_lock+0x35/0x1d0 [ 39.699307] ? __lock_is_held+0xb6/0x140 [ 39.728188] ? check_same_owner+0x320/0x320 [ 39.732494] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 39.737496] ? rcu_note_context_switch+0x710/0x710 [ 39.742414] should_failslab+0xec/0x120 [ 39.746374] kmem_cache_alloc+0x47/0x760 [ 39.750421] ? current_time+0x18/0xc0 [ 39.754209] ? lock_downgrade+0x980/0x980 [ 39.758344] __d_alloc+0xc1/0xbd0 [ 39.761779] ? lock_release+0xa40/0xa40 [ 39.765738] ? shrink_dcache_for_umount+0x290/0x290 [ 39.770737] ? mark_held_locks+0xaf/0x100 [ 39.774873] ? current_kernel_time64+0x122/0x2f0 [ 39.779618] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 39.784625] ? trace_hardirqs_on+0xd/0x10 [ 39.788762] ? current_kernel_time64+0x1d4/0x2f0 [ 39.793508] ? ktime_get_raw+0x380/0x380 [ 39.797557] ? evict_inodes+0x580/0x580 [ 39.801517] ? timespec_trunc+0x79/0xe0 [ 39.805474] ? inc_nlink+0x45/0x140 [ 39.809084] d_make_root+0x3f/0x80 [ 39.812608] rpc_fill_super+0x32f/0xae0 [ 39.816565] ? cap_capable+0x1b5/0x230 [ 39.820438] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 39.825620] ? security_capable+0x8e/0xc0 [ 39.829751] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 39.834923] ? ns_capable_common+0xcf/0x160 [ 39.839233] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 39.844405] mount_ns+0xc4/0x190 [ 39.847759] rpc_mount+0x9e/0xd0 [ 39.851111] mount_fs+0x66/0x2d0 [ 39.854463] vfs_kern_mount.part.26+0xc6/0x4a0 [ 39.859031] ? may_umount+0xa0/0xa0 [ 39.862645] ? _raw_read_unlock+0x22/0x30 [ 39.866778] ? __get_fs_type+0x8a/0xc0 [ 39.870650] do_mount+0xea4/0x2bb0 [ 39.874175] ? copy_mount_string+0x40/0x40 [ 39.878391] ? rcu_pm_notify+0xc0/0xc0 [ 39.882267] ? copy_mount_options+0x5f/0x2e0 [ 39.886656] ? rcu_read_lock_sched_held+0x108/0x120 [ 39.891658] ? kmem_cache_alloc_trace+0x459/0x740 [ 39.896485] ? kasan_check_write+0x14/0x20 [ 39.900792] ? _copy_from_user+0x99/0x110 [ 39.904926] ? copy_mount_options+0x1f7/0x2e0 [ 39.909410] SyS_mount+0xab/0x120 [ 39.912845] ? copy_mnt_ns+0xb30/0xb30 [ 39.916721] do_syscall_64+0x281/0x940 [ 39.920592] ? vmalloc_sync_all+0x30/0x30 [ 39.924724] ? trace_event_raw_event_sys_exit+0x260/0x260 [ 39.930248] ? syscall_return_slowpath+0x550/0x550 [ 39.935175] ? syscall_return_slowpath+0x2ac/0x550 [ 39.940092] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 39.945444] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 39.950275] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 39.955446] RIP: 0033:0x455269 [ 39.958618] RSP: 002b:00007ffe72bdb448 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 39.966319] RAX: ffffffffffffffda RBX: 0000000001e2a914 RCX: 0000000000455269 [ 39.973576] RDX: 0000000020000080 RSI: 0000000020000040 RDI: 0000000020000000 [ 39.980829] RBP: 000000000072bea0 R08: 0000000020000080 R09: 0000000000000000 [ 39.988082] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 39.995337] R13: 00000000000003fa R14: 00000000006f8010 R15: 0000000000000022 [ 40.002606] CPU: 0 PID: 4513 Comm: syz-executor4 Not tainted 4.16.0-rc6+ #43 [ 40.009799] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 40.019156] Call Trace: [ 40.021749] dump_stack+0x194/0x24d [ 40.025381] ? arch_local_irq_restore+0x53/0x53 [ 40.030056] ? __lock_acquire+0x664/0x3e00 [ 40.034299] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 40.039520] should_fail+0x8c0/0xa40 [ 40.041480] FAULT_INJECTION: forcing a failure. [ 40.041480] name failslab, interval 1, probability 0, space 0, times 0 [ 40.043246] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 40.043261] ? get_mem_cgroup_from_mm+0x47c/0x710 [ 40.043272] ? lock_downgrade+0x980/0x980 [ 40.043281] ? trace_hardirqs_off+0x10/0x10 [ 40.043291] ? __lock_is_held+0xb6/0x140 [ 40.076849] ? find_held_lock+0x35/0x1d0 [ 40.080899] ? rcu_read_unlock+0x16/0x70 [ 40.084945] ? lock_downgrade+0x980/0x980 [ 40.089090] should_failslab+0xec/0x120 [ 40.093052] kmem_cache_alloc_trace+0x4b/0x740 [ 40.097621] memcg_kmem_get_cache+0x4d3/0x890 [ 40.102102] ? mem_cgroup_handle_over_high+0x130/0x130 [ 40.107371] ? check_same_owner+0x320/0x320 [ 40.111679] ? rcu_note_context_switch+0x710/0x710 [ 40.116594] ? register_shrinker+0x10e/0x2d0 [ 40.120990] kmem_cache_alloc+0x186/0x760 [ 40.125122] ? find_held_lock+0x35/0x1d0 [ 40.129173] ? rpc_i_callback+0x30/0x30 [ 40.133132] rpc_alloc_inode+0x1a/0x20 [ 40.137003] alloc_inode+0x65/0x180 [ 40.140618] new_inode_pseudo+0x69/0x190 [ 40.144674] ? prune_icache_sb+0x1a0/0x1a0 [ 40.148895] ? __lock_is_held+0xb6/0x140 [ 40.152945] new_inode+0x1c/0x40 [ 40.156297] rpc_get_inode+0x20/0x1e0 [ 40.160082] rpc_fill_super+0x327/0xae0 [ 40.164046] ? cap_capable+0x1b5/0x230 [ 40.167921] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 40.173096] ? security_capable+0x8e/0xc0 [ 40.177230] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 40.182404] ? ns_capable_common+0xcf/0x160 [ 40.186714] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 40.191887] mount_ns+0xc4/0x190 [ 40.195237] rpc_mount+0x9e/0xd0 [ 40.198593] mount_fs+0x66/0x2d0 [ 40.201946] vfs_kern_mount.part.26+0xc6/0x4a0 [ 40.206511] ? may_umount+0xa0/0xa0 [ 40.210120] ? _raw_read_unlock+0x22/0x30 [ 40.214251] ? __get_fs_type+0x8a/0xc0 [ 40.218123] do_mount+0xea4/0x2bb0 [ 40.221650] ? copy_mount_string+0x40/0x40 [ 40.225869] ? rcu_pm_notify+0xc0/0xc0 [ 40.229854] ? copy_mount_options+0x5f/0x2e0 [ 40.234244] ? rcu_read_lock_sched_held+0x108/0x120 [ 40.239246] ? kmem_cache_alloc_trace+0x459/0x740 [ 40.244076] ? kasan_check_write+0x14/0x20 [ 40.248293] ? _copy_from_user+0x99/0x110 [ 40.252427] ? copy_mount_options+0x1f7/0x2e0 [ 40.256910] SyS_mount+0xab/0x120 [ 40.260345] ? copy_mnt_ns+0xb30/0xb30 [ 40.264218] do_syscall_64+0x281/0x940 [ 40.268089] ? vmalloc_sync_all+0x30/0x30 [ 40.272227] ? syscall_return_slowpath+0x550/0x550 [ 40.277145] ? do_debug+0x1f3/0x6e0 [ 40.280758] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 40.286110] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 40.290940] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 40.296114] RIP: 0033:0x455269 [ 40.299288] RSP: 002b:00007ffcfd99df68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 40.306982] RAX: ffffffffffffffda RBX: 0000000000a64914 RCX: 0000000000455269 RESULT: signal 0, coverage 0 errno 0 RESULT: signal 0, coverage 0 errno 0 [ 40.314237] RDX: 0000000020000080 RSI: 0000000020000040 RDI: 0000000020000000 [ 40.321496] RBP: 000000000072bea0 R08: 0000000020000080 R09: 0000000000000000 [ 40.328751] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 40.336004] R13: 00000000000003fa R14: 00000000006f8010 R15: 0000000000000022 [ 40.343278] CPU: 1 PID: 4556 Comm: syz-executor6 Not tainted 4.16.0-rc6+ #43 [ 40.350463] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 40.359814] Call Trace: [ 40.362399] dump_stack+0x194/0x24d [ 40.366031] ? arch_local_irq_restore+0x53/0x53 [ 40.370719] should_fail+0x8c0/0xa40 [ 40.374434] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 40.379544] ? __raw_spin_lock_init+0x1c/0x100 [ 40.384137] ? find_held_lock+0x35/0x1d0 [ 40.388207] ? __lock_is_held+0xb6/0x140 [ 40.392275] ? check_same_owner+0x320/0x320 [ 40.396613] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 40.401400] FAULT_INJECTION: forcing a failure. [ 40.401400] name failslab, interval 1, probability 0, space 0, times 0 [ 40.401632] ? rcu_note_context_switch+0x710/0x710 [ 40.417707] should_failslab+0xec/0x120 [ 40.421665] kmem_cache_alloc+0x47/0x760 [ 40.425707] ? current_time+0x18/0xc0 [ 40.429491] ? lock_downgrade+0x980/0x980 [ 40.433627] __d_alloc+0xc1/0xbd0 [ 40.437062] ? lock_release+0xa40/0xa40 [ 40.441021] ? shrink_dcache_for_umount+0x290/0x290 [ 40.446022] ? mark_held_locks+0xaf/0x100 [ 40.450152] ? current_kernel_time64+0x122/0x2f0 [ 40.454893] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 40.459897] ? trace_hardirqs_on+0xd/0x10 [ 40.464033] ? current_kernel_time64+0x1d4/0x2f0 [ 40.468776] ? ktime_get_raw+0x380/0x380 [ 40.472818] ? evict_inodes+0x580/0x580 [ 40.476782] ? timespec_trunc+0x79/0xe0 [ 40.480743] ? inc_nlink+0x45/0x140 [ 40.484353] d_make_root+0x3f/0x80 [ 40.487877] rpc_fill_super+0x32f/0xae0 [ 40.491837] ? cap_capable+0x1b5/0x230 [ 40.495705] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 40.500879] ? security_capable+0x8e/0xc0 [ 40.505014] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 40.510195] ? ns_capable_common+0xcf/0x160 [ 40.514508] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 40.519685] mount_ns+0xc4/0x190 [ 40.523039] rpc_mount+0x9e/0xd0 [ 40.526391] mount_fs+0x66/0x2d0 [ 40.529740] vfs_kern_mount.part.26+0xc6/0x4a0 [ 40.534309] ? may_umount+0xa0/0xa0 [ 40.537921] ? _raw_read_unlock+0x22/0x30 [ 40.542054] ? __get_fs_type+0x8a/0xc0 [ 40.545927] do_mount+0xea4/0x2bb0 [ 40.549454] ? copy_mount_string+0x40/0x40 [ 40.553672] ? rcu_pm_notify+0xc0/0xc0 [ 40.557545] ? copy_mount_options+0x5f/0x2e0 [ 40.561935] ? rcu_read_lock_sched_held+0x108/0x120 [ 40.566939] ? kmem_cache_alloc_trace+0x459/0x740 [ 40.571778] ? kasan_check_write+0x14/0x20 [ 40.575995] ? _copy_from_user+0x99/0x110 [ 40.580139] ? copy_mount_options+0x1f7/0x2e0 [ 40.584624] SyS_mount+0xab/0x120 [ 40.588059] ? copy_mnt_ns+0xb30/0xb30 [ 40.591931] do_syscall_64+0x281/0x940 [ 40.595803] ? vmalloc_sync_all+0x30/0x30 [ 40.599935] ? trace_event_raw_event_sys_exit+0x260/0x260 [ 40.605455] ? syscall_return_slowpath+0x550/0x550 [ 40.610367] ? syscall_return_slowpath+0x2ac/0x550 [ 40.615282] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 40.620634] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 40.625467] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 40.630639] RIP: 0033:0x455269 [ 40.633814] RSP: 002b:00007fff905b3c98 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 40.641509] RAX: ffffffffffffffda RBX: 0000000002442914 RCX: 0000000000455269 [ 40.648764] RDX: 0000000020000080 RSI: 0000000020000040 RDI: 0000000020000000 [ 40.656017] RBP: 000000000072bea0 R08: 0000000020000080 R09: 0000000000000000 [ 40.663277] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 40.670533] R13: 00000000000003fa R14: 00000000006f8010 R15: 0000000000000022 [ 40.677801] CPU: 0 PID: 4573 Comm: syz-executor0 Not tainted 4.16.0-rc6+ #43 [ 40.684991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 40.694372] Call Trace: [ 40.696966] dump_stack+0x194/0x24d [ 40.700597] ? arch_local_irq_restore+0x53/0x53 [ 40.705269] should_fail+0x8c0/0xa40 [ 40.708982] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 40.714086] ? __raw_spin_lock_init+0x1c/0x100 [ 40.718672] ? find_held_lock+0x35/0x1d0 [ 40.722732] ? __lock_is_held+0xb6/0x140 [ 40.726796] ? check_same_owner+0x320/0x320 [ 40.731116] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 40.736134] ? rcu_note_context_switch+0x710/0x710 [ 40.741069] should_failslab+0xec/0x120 [ 40.745050] kmem_cache_alloc+0x47/0x760 [ 40.749115] ? current_time+0x18/0xc0 [ 40.752921] ? lock_downgrade+0x980/0x980 [ 40.757072] __d_alloc+0xc1/0xbd0 [ 40.760529] ? lock_release+0xa40/0xa40 [ 40.764508] ? shrink_dcache_for_umount+0x290/0x290 [ 40.769528] ? mark_held_locks+0xaf/0x100 [ 40.773682] ? current_kernel_time64+0x122/0x2f0 [ 40.778443] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 40.783487] ? trace_hardirqs_on+0xd/0x10 [ 40.785361] FAULT_INJECTION: forcing a failure. [ 40.785361] name failslab, interval 1, probability 0, space 0, times 0 [ 40.787650] ? current_kernel_time64+0x1d4/0x2f0 [ 40.787660] ? ktime_get_raw+0x380/0x380 [ 40.787671] ? evict_inodes+0x580/0x580 [ 40.787683] ? timespec_trunc+0x79/0xe0 [ 40.787694] ? inc_nlink+0x45/0x140 [ 40.787704] d_make_root+0x3f/0x80 [ 40.787715] rpc_fill_super+0x32f/0xae0 [ 40.787728] ? cap_capable+0x1b5/0x230 [ 40.830485] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 40.835659] ? security_capable+0x8e/0xc0 [ 40.839794] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 40.844968] ? ns_capable_common+0xcf/0x160 [ 40.849278] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 40.854450] mount_ns+0xc4/0x190 [ 40.857809] rpc_mount+0x9e/0xd0 [ 40.861161] mount_fs+0x66/0x2d0 [ 40.864513] vfs_kern_mount.part.26+0xc6/0x4a0 [ 40.869083] ? may_umount+0xa0/0xa0 [ 40.872695] ? _raw_read_unlock+0x22/0x30 [ 40.876828] ? __get_fs_type+0x8a/0xc0 [ 40.880702] do_mount+0xea4/0x2bb0 [ 40.884233] ? copy_mount_string+0x40/0x40 [ 40.888456] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 40.893467] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 40.898210] ? retint_kernel+0x10/0x10 [ 40.902083] ? copy_mount_options+0x18b/0x2e0 [ 40.906569] ? audit_kill_trees+0x430/0x430 [ 40.910878] ? copy_mount_options+0x1f7/0x2e0 [ 40.915367] SyS_mount+0xab/0x120 [ 40.918803] ? copy_mnt_ns+0xb30/0xb30 [ 40.922677] do_syscall_64+0x281/0x940 [ 40.926546] ? vmalloc_sync_all+0x30/0x30 [ 40.930681] ? syscall_return_slowpath+0x550/0x550 [ 40.935600] ? do_debug+0x1f3/0x6e0 [ 40.939213] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 40.944564] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 40.949400] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 40.954575] RIP: 0033:0x455269 [ 40.957747] RSP: 002b:00007ffc091682c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 40.965442] RAX: ffffffffffffffda RBX: 0000000001971914 RCX: 0000000000455269 RESULT: signal 0, coverage 0 errno 0 RESULT: signal 0, coverage 0 errno 0 RESULT: signal 0, coverage 0 errno 0 RESULT: signal 0, coverage 0 errno 0 [ 40.972700] RDX: 0000000020000080 RSI: 0000000020000040 RDI: 0000000020000000 [ 40.979969] RBP: 000000000072bea0 R08: 0000000020000080 R09: 0000000000000000 [ 40.987226] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 40.994478] R13: 00000000000003fa R14: 00000000006f8010 R15: 0000000000000022 [ 41.001746] CPU: 1 PID: 4576 Comm: syz-executor3 Not tainted 4.16.0-rc6+ #43 [ 41.008958] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 41.018321] Call Trace: [ 41.020910] dump_stack+0x194/0x24d [ 41.024536] ? arch_local_irq_restore+0x53/0x53 [ 41.029210] should_fail+0x8c0/0xa40 [ 41.032924] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 41.038044] ? __raw_spin_lock_init+0x1c/0x100 [ 41.042634] ? find_held_lock+0x35/0x1d0 [ 41.045553] FAULT_INJECTION: forcing a failure. [ 41.045553] name failslab, interval 1, probability 0, space 0, times 0 [ 41.046693] ? __lock_is_held+0xb6/0x140 [ 41.046709] ? check_same_owner+0x320/0x320 [ 41.066228] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 41.071228] ? rcu_note_context_switch+0x710/0x710 [ 41.076144] should_failslab+0xec/0x120 [ 41.080104] kmem_cache_alloc+0x47/0x760 [ 41.084152] ? current_time+0x18/0xc0 [ 41.087938] ? lock_downgrade+0x980/0x980 [ 41.092082] __d_alloc+0xc1/0xbd0 [ 41.095521] ? lock_release+0xa40/0xa40 [ 41.099481] ? shrink_dcache_for_umount+0x290/0x290 [ 41.104483] ? mark_held_locks+0xaf/0x100 [ 41.108617] ? current_kernel_time64+0x122/0x2f0 [ 41.113356] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 41.118354] ? trace_hardirqs_on+0xd/0x10 [ 41.122490] ? current_kernel_time64+0x1d4/0x2f0 [ 41.127231] ? ktime_get_raw+0x380/0x380 [ 41.131275] ? evict_inodes+0x580/0x580 [ 41.135231] ? timespec_trunc+0x79/0xe0 [ 41.139191] ? inc_nlink+0x45/0x140 [ 41.142813] d_make_root+0x3f/0x80 [ 41.146351] rpc_fill_super+0x32f/0xae0 [ 41.150316] ? cap_capable+0x1b5/0x230 [ 41.154188] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 41.159371] ? security_capable+0x8e/0xc0 [ 41.163505] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 41.168681] ? ns_capable_common+0xcf/0x160 [ 41.173009] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 41.178183] mount_ns+0xc4/0x190 [ 41.181537] rpc_mount+0x9e/0xd0 [ 41.184891] mount_fs+0x66/0x2d0 [ 41.188243] vfs_kern_mount.part.26+0xc6/0x4a0 [ 41.192808] ? may_umount+0xa0/0xa0 [ 41.196423] ? _raw_read_unlock+0x22/0x30 [ 41.200555] ? __get_fs_type+0x8a/0xc0 [ 41.204439] do_mount+0xea4/0x2bb0 [ 41.207973] ? copy_mount_string+0x40/0x40 [ 41.212192] ? rcu_pm_notify+0xc0/0xc0 [ 41.216067] ? copy_mount_options+0x5f/0x2e0 [ 41.220460] ? rcu_read_lock_sched_held+0x108/0x120 [ 41.225463] ? kmem_cache_alloc_trace+0x459/0x740 [ 41.230296] ? kasan_check_write+0x14/0x20 [ 41.234513] ? _copy_from_user+0x99/0x110 [ 41.238645] ? copy_mount_options+0x1f7/0x2e0 [ 41.243126] SyS_mount+0xab/0x120 [ 41.246561] ? copy_mnt_ns+0xb30/0xb30 [ 41.250435] do_syscall_64+0x281/0x940 [ 41.254304] ? vmalloc_sync_all+0x30/0x30 [ 41.258438] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 41.263178] ? syscall_return_slowpath+0x550/0x550 [ 41.268091] ? syscall_return_slowpath+0x2ac/0x550 [ 41.273005] ? prepare_exit_to_usermode+0x350/0x350 [ 41.278012] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 41.283364] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 41.288194] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 41.293367] RIP: 0033:0x455269 [ 41.296540] RSP: 002b:00007fff26285088 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 41.304236] RAX: ffffffffffffffda RBX: 00000000016c5914 RCX: 0000000000455269 [ 41.311489] RDX: 0000000020000080 RSI: 0000000020000040 RDI: 0000000020000000 [ 41.318745] RBP: 000000000072bea0 R08: 0000000020000080 R09: 0000000000000000 [ 41.325998] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 41.333254] R13: 00000000000003fa R14: 00000000006f8010 R15: 0000000000000022 [ 41.340525] CPU: 0 PID: 4587 Comm: syz-executor6 Not tainted 4.16.0-rc6+ #43 [ 41.347717] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 41.357071] Call Trace: [ 41.359661] dump_stack+0x194/0x24d [ 41.363306] ? arch_local_irq_restore+0x53/0x53 [ 41.367987] should_fail+0x8c0/0xa40 [ 41.371706] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 41.376819] ? __raw_spin_lock_init+0x1c/0x100 [ 41.381410] ? find_held_lock+0x35/0x1d0 [ 41.383834] FAULT_INJECTION: forcing a failure. [ 41.383834] name failslab, interval 1, probability 0, space 0, times 0 [ 41.385474] ? __lock_is_held+0xb6/0x140 [ 41.385491] ? check_same_owner+0x320/0x320 [ 41.385500] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 41.385512] ? rcu_note_context_switch+0x710/0x710 [ 41.385526] should_failslab+0xec/0x120 [ 41.385534] kmem_cache_alloc+0x47/0x760 [ 41.385546] ? current_time+0x18/0xc0 [ 41.426714] ? lock_downgrade+0x980/0x980 [ 41.430855] __d_alloc+0xc1/0xbd0 [ 41.434294] ? lock_release+0xa40/0xa40 [ 41.438264] ? shrink_dcache_for_umount+0x290/0x290 [ 41.443268] ? mark_held_locks+0xaf/0x100 [ 41.447405] ? current_kernel_time64+0x122/0x2f0 [ 41.452148] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 41.457151] ? trace_hardirqs_on+0xd/0x10 [ 41.461282] ? current_kernel_time64+0x1d4/0x2f0 [ 41.466029] ? ktime_get_raw+0x380/0x380 [ 41.470077] ? evict_inodes+0x580/0x580 [ 41.474037] ? timespec_trunc+0x79/0xe0 [ 41.477997] ? inc_nlink+0x45/0x140 [ 41.481613] d_make_root+0x3f/0x80 [ 41.485137] rpc_fill_super+0x32f/0xae0 [ 41.489098] ? cap_capable+0x1b5/0x230 [ 41.492968] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 41.498140] ? security_capable+0x8e/0xc0 [ 41.502272] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 41.507450] ? ns_capable_common+0xcf/0x160 [ 41.511760] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 41.516936] mount_ns+0xc4/0x190 [ 41.520289] rpc_mount+0x9e/0xd0 [ 41.523654] mount_fs+0x66/0x2d0 [ 41.527007] vfs_kern_mount.part.26+0xc6/0x4a0 [ 41.531576] ? may_umount+0xa0/0xa0 [ 41.535190] ? _raw_read_unlock+0x22/0x30 [ 41.539323] ? __get_fs_type+0x8a/0xc0 [ 41.543197] do_mount+0xea4/0x2bb0 [ 41.546723] ? copy_mount_string+0x40/0x40 [ 41.550942] ? rcu_pm_notify+0xc0/0xc0 [ 41.554818] ? copy_mount_options+0x5f/0x2e0 [ 41.559209] ? rcu_read_lock_sched_held+0x108/0x120 [ 41.564207] ? kmem_cache_alloc_trace+0x459/0x740 [ 41.569035] ? kasan_check_write+0x14/0x20 [ 41.573257] ? _copy_from_user+0x99/0x110 [ 41.577390] ? copy_mount_options+0x1f7/0x2e0 [ 41.581872] SyS_mount+0xab/0x120 [ 41.585309] ? copy_mnt_ns+0xb30/0xb30 [ 41.589183] do_syscall_64+0x281/0x940 [ 41.593053] ? vmalloc_sync_all+0x30/0x30 [ 41.597188] ? syscall_return_slowpath+0x550/0x550 [ 41.602104] ? do_debug+0x1f3/0x6e0 [ 41.605716] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 41.611066] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 41.615896] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 41.621065] RIP: 0033:0x455269 RESULT: signal 0, coverage 0 errno 0 RESULT: signal 0, coverage 0 errno 0 [ 41.624239] RSP: 002b:00007fff905b3c98 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 41.631929] RAX: ffffffffffffffda RBX: 0000000002442914 RCX: 0000000000455269 [ 41.639182] RDX: 0000000020000080 RSI: 0000000020000040 RDI: 0000000020000000 [ 41.646438] RBP: 000000000072bea0 R08: 0000000020000080 R09: 0000000000000000 [ 41.653690] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 41.660942] R13: 00000000000003fa R14: 00000000006f8010 R15: 0000000000000022 [ 41.668211] CPU: 1 PID: 4585 Comm: syz-executor2 Not tainted 4.16.0-rc6+ #43 [ 41.675406] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 41.684770] Call Trace: [ 41.687364] dump_stack+0x194/0x24d [ 41.690365] FAULT_INJECTION: forcing a failure. [ 41.690365] name failslab, interval 1, probability 0, space 0, times 0 [ 41.690992] ? arch_local_irq_restore+0x53/0x53 [ 41.706896] ? __lock_acquire+0x664/0x3e00 [ 41.711114] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 41.716291] should_fail+0x8c0/0xa40 [ 41.720005] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 41.725100] ? get_mem_cgroup_from_mm+0x47c/0x710 [ 41.729929] ? lock_downgrade+0x980/0x980 [ 41.734065] ? trace_hardirqs_off+0x10/0x10 [ 41.738372] ? __lock_is_held+0xb6/0x140 [ 41.742421] ? find_held_lock+0x35/0x1d0 [ 41.746470] ? rcu_read_unlock+0x16/0x70 [ 41.750517] ? lock_downgrade+0x980/0x980 [ 41.754653] should_failslab+0xec/0x120 [ 41.758614] kmem_cache_alloc_trace+0x4b/0x740 [ 41.763185] memcg_kmem_get_cache+0x4d3/0x890 [ 41.767664] ? mem_cgroup_handle_over_high+0x130/0x130 [ 41.772935] ? check_same_owner+0x320/0x320 [ 41.777240] ? rcu_note_context_switch+0x710/0x710 [ 41.782151] ? register_shrinker+0x10e/0x2d0 [ 41.786547] kmem_cache_alloc+0x186/0x760 [ 41.790675] ? find_held_lock+0x35/0x1d0 [ 41.794725] ? rpc_i_callback+0x30/0x30 [ 41.798683] rpc_alloc_inode+0x1a/0x20 [ 41.802554] alloc_inode+0x65/0x180 [ 41.806162] new_inode_pseudo+0x69/0x190 [ 41.810223] ? prune_icache_sb+0x1a0/0x1a0 [ 41.814441] ? __lock_is_held+0xb6/0x140 [ 41.818490] new_inode+0x1c/0x40 [ 41.821838] rpc_get_inode+0x20/0x1e0 [ 41.825620] rpc_fill_super+0x327/0xae0 [ 41.829583] ? cap_capable+0x1b5/0x230 [ 41.833452] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 41.838625] ? security_capable+0x8e/0xc0 [ 41.842755] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 41.847955] ? ns_capable_common+0xcf/0x160 [ 41.852262] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 41.857433] mount_ns+0xc4/0x190 [ 41.860783] rpc_mount+0x9e/0xd0 [ 41.864135] mount_fs+0x66/0x2d0 [ 41.867486] vfs_kern_mount.part.26+0xc6/0x4a0 [ 41.872053] ? may_umount+0xa0/0xa0 [ 41.875667] ? _raw_read_unlock+0x22/0x30 [ 41.879796] ? __get_fs_type+0x8a/0xc0 [ 41.883670] do_mount+0xea4/0x2bb0 [ 41.887198] ? copy_mount_string+0x40/0x40 [ 41.891415] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 41.896413] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 41.901156] ? retint_kernel+0x10/0x10 [ 41.905030] ? copy_mount_options+0x18b/0x2e0 [ 41.909509] ? copy_mount_options+0x196/0x2e0 [ 41.914002] ? copy_mount_options+0x1f7/0x2e0 [ 41.918485] SyS_mount+0xab/0x120 [ 41.921924] ? copy_mnt_ns+0xb30/0xb30 [ 41.925799] do_syscall_64+0x281/0x940 [ 41.929678] ? trace_event_raw_event_sys_exit+0x260/0x260 [ 41.935202] ? syscall_return_slowpath+0x550/0x550 [ 41.940118] ? syscall_return_slowpath+0x2ac/0x550 [ 41.945045] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 41.950400] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 41.955236] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 41.960409] RIP: 0033:0x455269 [ 41.963583] RSP: 002b:00007ffcc52e9da8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 41.971282] RAX: ffffffffffffffda RBX: 0000000000fc6914 RCX: 0000000000455269 [ 41.978535] RDX: 0000000020000080 RSI: 0000000020000040 RDI: 0000000020000000 [ 41.985788] RBP: 000000000072bea0 R08: 0000000020000080 R09: 0000000000000000 [ 41.993042] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 42.000294] R13: 00000000000003fa R14: 00000000006f8010 R15: 0000000000000022 [ 42.007567] CPU: 0 PID: 4584 Comm: syz-executor5 Not tainted 4.16.0-rc6+ #43 [ 42.014755] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 42.024119] Call Trace: RESULT: signal 0, coverage 0 errno 0 RESULT: signal 0, coverage 0 errno 0 RESULT: signal 0, coverage 0 errno 0 [ 42.026708] dump_stack+0x194/0x24d [ 42.030334] ? arch_local_irq_restore+0x53/0x53 [ 42.035004] ? find_held_lock+0x35/0x1d0 [ 42.039068] should_fail+0x8c0/0xa40 [ 42.042784] ? __list_lru_init+0x352/0x750 [ 42.047024] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 42.052132] ? trace_hardirqs_off+0x10/0x10 [ 42.056458] ? find_next_zero_bit+0xe3/0x110 [ 42.060850] ? trace_hardirqs_off+0x10/0x10 [ 42.065157] ? find_held_lock+0x35/0x1d0 [ 42.069196] ? __lock_is_held+0xb6/0x140 [ 42.073252] ? check_same_owner+0x320/0x320 [ 42.077550] ? lock_downgrade+0x980/0x980 [ 42.081684] ? rcu_note_context_switch+0x710/0x710 [ 42.086603] ? find_held_lock+0x35/0x1d0 [ 42.090642] should_failslab+0xec/0x120 [ 42.094592] __kmalloc+0x63/0x760 [ 42.098029] ? lock_downgrade+0x980/0x980 [ 42.102169] ? register_shrinker+0x10e/0x2d0 [ 42.106557] ? trace_event_raw_event_module_request+0x320/0x320 [ 42.112596] register_shrinker+0x10e/0x2d0 [ 42.116812] ? __bpf_trace_mm_vmscan_wakeup_kswapd+0x40/0x40 [ 42.122595] ? memcpy+0x45/0x50 [ 42.125865] sget_userns+0xbbf/0xe40 [ 42.129560] ? set_anon_super+0x20/0x20 [ 42.133521] ? put_filp+0x90/0x90 [ 42.136959] ? destroy_unused_super.part.6+0xd0/0xd0 [ 42.142047] ? __alloc_pages_slowpath+0x2d10/0x2d10 [ 42.147048] ? trace_hardirqs_off+0x10/0x10 [ 42.151363] ? putname+0xee/0x130 [ 42.154800] ? cap_capable+0x1b5/0x230 [ 42.158666] ? security_capable+0x8e/0xc0 [ 42.162796] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 42.167966] ? ns_capable_common+0xcf/0x160 [ 42.172898] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 42.178069] mount_ns+0x6d/0x190 [ 42.181417] rpc_mount+0x9e/0xd0 [ 42.184760] mount_fs+0x66/0x2d0 [ 42.188105] vfs_kern_mount.part.26+0xc6/0x4a0 [ 42.192664] ? may_umount+0xa0/0xa0 [ 42.196269] ? _raw_read_unlock+0x22/0x30 [ 42.200393] ? __get_fs_type+0x8a/0xc0 [ 42.204264] do_mount+0xea4/0x2bb0 [ 42.207782] ? copy_mount_string+0x40/0x40 [ 42.211994] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 42.216995] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 42.221740] ? retint_kernel+0x10/0x10 [ 42.225615] ? copy_mount_options+0x18b/0x2e0 [ 42.230099] ? __sanitizer_cov_trace_pc+0xa/0x50 [ 42.234832] ? copy_mount_options+0x1f7/0x2e0 [ 42.239305] SyS_mount+0xab/0x120 [ 42.242736] ? copy_mnt_ns+0xb30/0xb30 [ 42.246603] do_syscall_64+0x281/0x940 [ 42.250471] ? vmalloc_sync_all+0x30/0x30 [ 42.254615] ? syscall_return_slowpath+0x550/0x550 [ 42.259523] ? do_debug+0x1f3/0x6e0 [ 42.263133] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 42.268473] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 42.273298] entry_SYSCALL_64_after_hwframe+0x42/0xb7 RESULT: signal 0, coverage 0 errno 0 2018/04/01 17:23:10 executed programs: 26 [ 42.278461] RIP: 0033:0x455269 [ 42.281626] RSP: 002b:00007ffe72bdb448 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 42.289313] RAX: ffffffffffffffda RBX: 0000000001e2a914 RCX: 0000000000455269 [ 42.296563] RDX: 0000000020000080 RSI: 0000000020000040 RDI: 0000000020000000 [ 42.303812] RBP: 000000000072bea0 R08: 0000000020000080 R09: 0000000000000000 [ 42.311073] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 42.318326] R13: 00000000000003fa R14: 00000000006f8010 R15: 0000000000000022 [ 42.354390] ------------[ cut here ]------------ [ 42.359377] refcount_t: increment on 0; use-after-free. [ 42.364902] WARNING: CPU: 0 PID: 4487 at lib/refcount.c:153 refcount_inc+0x47/0x50 [ 42.372612] Kernel panic - not syncing: panic_on_warn set ... [ 42.372612] [ 42.379978] CPU: 0 PID: 4487 Comm: syz-executor5 Not tainted 4.16.0-rc6+ #43 [ 42.387163] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 42.396518] Call Trace: [ 42.399113] dump_stack+0x194/0x24d [ 42.402751] ? arch_local_irq_restore+0x53/0x53 [ 42.407431] ? vsnprintf+0x1ed/0x1900 [ 42.411241] panic+0x1e4/0x41c [ 42.414445] ? refcount_error_report+0x214/0x214 [ 42.419206] ? show_regs_print_info+0x18/0x18 [ 42.423718] ? __warn+0x1c1/0x200 [ 42.427177] ? refcount_inc+0x47/0x50 [ 42.427824] FAULT_INJECTION: forcing a failure. [ 42.427824] name failslab, interval 1, probability 0, space 0, times 0 [ 42.430971] __warn+0x1dc/0x200 [ 42.430981] ? refcount_inc+0x47/0x50 [ 42.430991] report_bug+0x1f4/0x2b0 [ 42.431003] fixup_bug.part.10+0x37/0x80 [ 42.431012] do_error_trap+0x2d7/0x3e0 [ 42.431021] ? vprintk_default+0x28/0x30 [ 42.431033] ? math_error+0x400/0x400 [ 42.468540] ? printk+0xaa/0xca [ 42.471802] ? show_regs_print_info+0x18/0x18 [ 42.476286] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 42.481118] do_invalid_op+0x1b/0x20 [ 42.484819] invalid_op+0x1b/0x40 [ 42.488254] RIP: 0010:refcount_inc+0x47/0x50 [ 42.492642] RSP: 0018:ffff8801ceb77860 EFLAGS: 00010286 [ 42.497988] RAX: dffffc0000000008 RBX: ffff8801ad868084 RCX: ffffffff815b423e [ 42.505244] RDX: 0000000000000000 RSI: 1ffff10039d6eebc RDI: 1ffff10039d6ee91 [ 42.512497] RBP: ffff8801ceb77868 R08: 0000000000000000 R09: 0000000000000000 [ 42.519761] R10: 0000000000000000 R11: 0000000000000000 R12: ffff8801ceb77af8 [ 42.527016] R13: ffff8801d8c04a93 R14: ffff8801ad868080 R15: ffff8801d8c04b01 [ 42.534284] ? vprintk_func+0x5e/0xc0 [ 42.538076] sk_alloc+0x3f9/0x1440 [ 42.541603] ? sock_def_error_report+0x5e0/0x5e0 [ 42.546358] ? __raw_spin_lock_init+0x2d/0x100 [ 42.550928] ? trace_hardirqs_off+0x10/0x10 [ 42.555235] ? do_raw_write_unlock+0x290/0x290 [ 42.559803] ? trace_hardirqs_off+0x10/0x10 [ 42.564107] ? __raw_spin_lock_init+0x1c/0x100 [ 42.568676] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 42.573691] ? find_held_lock+0x35/0x1d0 [ 42.577737] ? inet_create+0x3fc/0xf50 [ 42.581611] ? lock_downgrade+0x980/0x980 [ 42.585742] ? lock_release+0xa40/0xa40 [ 42.589698] ? lock_downgrade+0x980/0x980 [ 42.593837] inet_create+0x47c/0xf50 [ 42.597537] ? ipip_gro_receive+0xf0/0xf0 [ 42.601674] ? __lock_is_held+0xb6/0x140 [ 42.605726] __sock_create+0x4d4/0x850 [ 42.609600] ? kernel_sock_ip_overhead+0x4c0/0x4c0 [ 42.614520] ? user_path_create+0x40/0x40 [ 42.618661] SyS_socket+0xeb/0x1d0 [ 42.622183] ? fillonedir+0x250/0x250 [ 42.625972] ? move_addr_to_kernel+0x60/0x60 [ 42.630365] ? getname_flags+0x256/0x580 [ 42.634415] ? do_syscall_64+0xb7/0x940 [ 42.638373] ? move_addr_to_kernel+0x60/0x60 [ 42.642771] do_syscall_64+0x281/0x940 [ 42.646645] ? vmalloc_sync_all+0x30/0x30 [ 42.650777] ? trace_event_raw_event_sys_exit+0x260/0x260 [ 42.656297] ? syscall_return_slowpath+0x550/0x550 [ 42.661209] ? syscall_return_slowpath+0x2ac/0x550 [ 42.666127] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 42.671480] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 42.676313] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 42.681488] RIP: 0033:0x457d97 [ 42.684664] RSP: 002b:00007ffe72bdb618 EFLAGS: 00000202 ORIG_RAX: 0000000000000029 [ 42.692357] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457d97 [ 42.699612] RDX: 0000000000000006 RSI: 0000000000000001 RDI: 0000000000000002 [ 42.706866] RBP: 000000000000a56f R08: 0000000000000000 R09: 0000000000000001 [ 42.714118] R10: 000000000000000a R11: 0000000000000202 R12: 0000000000000005 [ 42.721373] R13: 0000000000000012 R14: 0000000000000005 R15: 0000000000009f24 [ 42.728644] CPU: 1 PID: 4616 Comm: syz-executor1 Not tainted 4.16.0-rc6+ #43 [ 42.735822] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 42.745169] Call Trace: [ 42.747739] dump_stack+0x194/0x24d [ 42.751350] ? arch_local_irq_restore+0x53/0x53 [ 42.756004] ? find_held_lock+0x35/0x1d0 [ 42.760053] should_fail+0x8c0/0xa40 [ 42.763751] ? __list_lru_init+0x352/0x750 [ 42.767977] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 42.773067] ? trace_hardirqs_off+0x10/0x10 [ 42.777373] ? find_next_zero_bit+0xe3/0x110 [ 42.781766] ? trace_hardirqs_off+0x10/0x10 [ 42.786070] ? find_held_lock+0x35/0x1d0 [ 42.790115] ? __lock_is_held+0xb6/0x140 [ 42.794163] ? check_same_owner+0x320/0x320 [ 42.798464] ? lock_downgrade+0x980/0x980 [ 42.802593] ? rcu_note_context_switch+0x710/0x710 [ 42.807502] ? find_held_lock+0x35/0x1d0 [ 42.811546] should_failslab+0xec/0x120 [ 42.815504] __kmalloc+0x63/0x760 [ 42.818936] ? lock_downgrade+0x980/0x980 [ 42.823066] ? register_shrinker+0x10e/0x2d0 [ 42.827458] ? trace_event_raw_event_module_request+0x320/0x320 [ 42.833501] register_shrinker+0x10e/0x2d0 [ 42.837717] ? __bpf_trace_mm_vmscan_wakeup_kswapd+0x40/0x40 [ 42.843495] ? memcpy+0x45/0x50 [ 42.846758] sget_userns+0xbbf/0xe40 [ 42.850450] ? set_anon_super+0x20/0x20 [ 42.854406] ? put_filp+0x90/0x90 [ 42.857845] ? destroy_unused_super.part.6+0xd0/0xd0 [ 42.862935] ? __alloc_pages_slowpath+0x2d10/0x2d10 [ 42.867947] ? trace_hardirqs_off+0x10/0x10 [ 42.872252] ? putname+0xee/0x130 [ 42.875689] ? cap_capable+0x1b5/0x230 [ 42.879559] ? security_capable+0x8e/0xc0 [ 42.883692] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 42.888864] ? ns_capable_common+0xcf/0x160 [ 42.893170] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 42.898340] mount_ns+0x6d/0x190 [ 42.901689] rpc_mount+0x9e/0xd0 [ 42.905040] mount_fs+0x66/0x2d0 [ 42.908390] vfs_kern_mount.part.26+0xc6/0x4a0 [ 42.912952] ? may_umount+0xa0/0xa0 [ 42.916572] ? _raw_read_unlock+0x22/0x30 [ 42.920698] ? __get_fs_type+0x8a/0xc0 [ 42.924567] do_mount+0xea4/0x2bb0 [ 42.928087] ? copy_mount_string+0x40/0x40 [ 42.932299] ? rcu_pm_notify+0xc0/0xc0 [ 42.936171] ? copy_mount_options+0x5f/0x2e0 [ 42.940559] ? rcu_read_lock_sched_held+0x108/0x120 [ 42.945556] ? kmem_cache_alloc_trace+0x459/0x740 [ 42.950379] ? kasan_check_write+0x14/0x20 [ 42.954598] ? copy_mount_options+0x1f7/0x2e0 [ 42.959074] SyS_mount+0xab/0x120 [ 42.962505] ? copy_mnt_ns+0xb30/0xb30 [ 42.966373] do_syscall_64+0x281/0x940 [ 42.970242] ? vmalloc_sync_all+0x30/0x30 [ 42.974367] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 42.980123] ? syscall_return_slowpath+0x550/0x550 [ 42.985039] ? syscall_return_slowpath+0x2ac/0x550 [ 42.989948] ? prepare_exit_to_usermode+0x350/0x350 [ 42.994943] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 43.000289] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 43.005114] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 43.010282] RIP: 0033:0x455269 [ 43.013448] RSP: 002b:00007ffc5fd39708 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 43.021148] RAX: ffffffffffffffda RBX: 00000000020df914 RCX: 0000000000455269 [ 43.028399] RDX: 0000000020000080 RSI: 0000000020000040 RDI: 0000000020000000 [ 43.035648] RBP: 000000000072bea0 R08: 0000000020000080 R09: 0000000000000000 [ 43.042904] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 43.050154] R13: 00000000000003fa R14: 00000000006f8010 R15: 0000000000000022 [ 43.057869] Dumping ftrace buffer: [ 43.061568] (ftrace buffer empty) [ 43.065255] Kernel Offset: disabled [ 43.068861] Rebooting in 86400 seconds..