INIT: Entering runlevel: 2 [info] Using makefile-style concurrent boot in runlevel 2. [....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.16' (ECDSA) to the list of known hosts. syzkaller login: [ 44.877926] IPVS: ftp: loaded support on port[0] = 21 executing program executing program [ 44.908435] IPVS: ftp: loaded support on port[0] = 21 [ 44.928182] FAULT_INJECTION: forcing a failure. [ 44.928182] name failslab, interval 1, probability 0, space 0, times 1 [ 44.939469] CPU: 1 PID: 4436 Comm: syzkaller588725 Not tainted 4.16.0-rc6+ #40 [ 44.946803] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 44.949497] IPVS: ftp: loaded support on port[0] = 21 [ 44.956153] Call Trace: [ 44.956172] dump_stack+0x194/0x24d [ 44.956181] ? arch_local_irq_restore+0x53/0x53 [ 44.956199] should_fail+0x8c0/0xa40 [ 44.961663] FAULT_INJECTION: forcing a failure. [ 44.961663] name failslab, interval 1, probability 0, space 0, times 1 [ 44.963956] ? __free_insn_slot+0x5c0/0x5c0 [ 44.963967] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 44.963979] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 44.963986] ? __lock_acquire+0x664/0x3e00 [ 44.963992] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 44.964004] ? find_held_lock+0x35/0x1d0 [ 44.964015] ? __lock_is_held+0xb6/0x140 [ 44.964035] ? check_same_owner+0x320/0x320 [ 45.023367] ? __d_lookup+0x4f4/0x830 [ 45.027158] ? rcu_note_context_switch+0x710/0x710 [ 45.032070] should_failslab+0xec/0x120 [ 45.036020] kmem_cache_alloc+0x47/0x760 [ 45.040068] __d_alloc+0xc1/0xbd0 [ 45.043502] ? shrink_dcache_for_umount+0x290/0x290 [ 45.048601] ? d_alloc_parallel+0x1b40/0x1b40 [ 45.053081] ? lock_release+0xa40/0xa40 [ 45.057034] ? mark_held_locks+0xaf/0x100 [ 45.061158] ? d_lookup+0x133/0x2e0 [ 45.064778] ? d_lookup+0x1d5/0x2e0 [ 45.068383] d_alloc+0x8e/0x340 [ 45.071640] ? __d_alloc+0xbd0/0xbd0 [ 45.075328] ? full_name_hash+0x9b/0xe0 [ 45.079288] __rpc_lookup_create_exclusive+0x183/0x1d0 [ 45.084543] ? rpc_d_lookup_sb+0x1a0/0x1a0 [ 45.088761] rpc_populate.constprop.15+0xa3/0x340 [ 45.093591] rpc_fill_super+0x379/0xae0 [ 45.097545] ? cap_capable+0x1b5/0x230 [ 45.101417] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 45.106593] ? security_capable+0x8e/0xc0 [ 45.110718] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 45.115885] ? ns_capable_common+0xcf/0x160 [ 45.120186] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 45.125352] mount_ns+0xc4/0x190 [ 45.128700] rpc_mount+0x9e/0xd0 [ 45.132054] mount_fs+0x66/0x2d0 [ 45.135403] vfs_kern_mount.part.26+0xc6/0x4a0 [ 45.139964] ? may_umount+0xa0/0xa0 [ 45.143570] ? _raw_read_unlock+0x22/0x30 [ 45.147694] ? __get_fs_type+0x8a/0xc0 [ 45.151561] do_mount+0xea4/0x2bb0 [ 45.155086] ? copy_mount_string+0x40/0x40 [ 45.159308] ? rcu_pm_notify+0xc0/0xc0 [ 45.163182] ? copy_mount_options+0x5f/0x2e0 [ 45.167565] ? rcu_read_lock_sched_held+0x108/0x120 [ 45.172561] ? kmem_cache_alloc_trace+0x459/0x740 [ 45.177386] ? kasan_check_write+0x14/0x20 [ 45.181613] ? copy_mount_options+0x1f7/0x2e0 [ 45.186087] SyS_mount+0xab/0x120 [ 45.189515] ? copy_mnt_ns+0xb30/0xb30 [ 45.193381] do_syscall_64+0x281/0x940 [ 45.197246] ? __do_page_fault+0xc90/0xc90 [ 45.201464] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 45.206198] ? syscall_return_slowpath+0x550/0x550 [ 45.211109] ? syscall_return_slowpath+0x2ac/0x550 [ 45.216018] ? prepare_exit_to_usermode+0x350/0x350 [ 45.221018] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 45.226371] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 45.231197] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 45.236707] RIP: 0033:0x442ab9 [ 45.239891] RSP: 002b:00007fffbb2ce7d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 45.247576] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000442ab9 executing program [ 45.254823] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 45.262066] RBP: 00007fffbb2cf080 R08: 0000000020000300 R09: 0000000000000000 [ 45.269310] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff [ 45.276554] R13: 0000000000000004 R14: 0000000000000000 R15: 00007fffbb2ce918 [ 45.283827] CPU: 0 PID: 4437 Comm: syzkaller588725 Not tainted 4.16.0-rc6+ #40 [ 45.291190] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 45.300528] Call Trace: [ 45.303099] dump_stack+0x194/0x24d [ 45.306704] ? arch_local_irq_restore+0x53/0x53 [ 45.311362] should_fail+0x8c0/0xa40 [ 45.315062] ? __free_insn_slot+0x5c0/0x5c0 [ 45.316065] FAULT_INJECTION: forcing a failure. [ 45.316065] name failslab, interval 1, probability 0, space 0, times 0 [ 45.319372] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 45.319386] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 45.319395] ? __lock_acquire+0x664/0x3e00 [ 45.345257] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 45.350438] ? find_held_lock+0x35/0x1d0 [ 45.354483] ? __lock_is_held+0xb6/0x140 [ 45.358532] ? check_same_owner+0x320/0x320 [ 45.362827] ? __d_lookup+0x4f4/0x830 [ 45.366602] ? rcu_note_context_switch+0x710/0x710 [ 45.371512] should_failslab+0xec/0x120 [ 45.375464] kmem_cache_alloc+0x47/0x760 [ 45.379512] __d_alloc+0xc1/0xbd0 [ 45.382975] ? shrink_dcache_for_umount+0x290/0x290 [ 45.387985] ? d_alloc_parallel+0x1b40/0x1b40 [ 45.392461] ? lock_release+0xa40/0xa40 [ 45.396415] ? mark_held_locks+0xaf/0x100 [ 45.400543] ? d_lookup+0x133/0x2e0 [ 45.404148] ? d_lookup+0x1d5/0x2e0 [ 45.407752] d_alloc+0x8e/0x340 [ 45.411008] ? __d_alloc+0xbd0/0xbd0 [ 45.414697] ? full_name_hash+0x9b/0xe0 [ 45.418675] __rpc_lookup_create_exclusive+0x183/0x1d0 [ 45.423935] ? rpc_d_lookup_sb+0x1a0/0x1a0 [ 45.428155] rpc_populate.constprop.15+0xa3/0x340 [ 45.432994] rpc_fill_super+0x379/0xae0 [ 45.436952] ? cap_capable+0x1b5/0x230 [ 45.440814] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 45.445987] ? security_capable+0x8e/0xc0 [ 45.450123] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 45.455290] ? ns_capable_common+0xcf/0x160 [ 45.459598] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 45.464766] mount_ns+0xc4/0x190 [ 45.468114] rpc_mount+0x9e/0xd0 [ 45.471459] mount_fs+0x66/0x2d0 [ 45.474808] vfs_kern_mount.part.26+0xc6/0x4a0 [ 45.479366] ? may_umount+0xa0/0xa0 [ 45.482970] ? _raw_read_unlock+0x22/0x30 [ 45.487094] ? __get_fs_type+0x8a/0xc0 [ 45.490967] do_mount+0xea4/0x2bb0 [ 45.494489] ? copy_mount_string+0x40/0x40 [ 45.498700] ? rcu_pm_notify+0xc0/0xc0 [ 45.502573] ? copy_mount_options+0x5f/0x2e0 [ 45.506984] ? rcu_read_lock_sched_held+0x108/0x120 [ 45.511985] ? kmem_cache_alloc_trace+0x459/0x740 [ 45.516805] ? kasan_check_write+0x14/0x20 [ 45.521021] ? copy_mount_options+0x1f7/0x2e0 [ 45.525497] SyS_mount+0xab/0x120 [ 45.529019] ? copy_mnt_ns+0xb30/0xb30 [ 45.532901] do_syscall_64+0x281/0x940 [ 45.536791] ? __do_page_fault+0xc90/0xc90 [ 45.541017] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 45.545757] ? syscall_return_slowpath+0x550/0x550 [ 45.550842] ? syscall_return_slowpath+0x2ac/0x550 [ 45.555748] ? prepare_exit_to_usermode+0x350/0x350 [ 45.560739] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 45.566080] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 45.570906] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 45.576074] RIP: 0033:0x442ab9 [ 45.579251] RSP: 002b:00007fffbb2ce7d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 45.586935] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000442ab9 [ 45.594185] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 45.601437] RBP: 00007fffbb2cf080 R08: 0000000020000300 R09: 0000000000000000 executing program [ 45.608703] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff [ 45.615977] R13: 0000000000000004 R14: 0000000000000000 R15: 00007fffbb2ce918 [ 45.623260] CPU: 1 PID: 4438 Comm: syzkaller588725 Not tainted 4.16.0-rc6+ #40 [ 45.626241] IPVS: ftp: loaded support on port[0] = 21 [ 45.630620] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 45.630624] Call Trace: [ 45.630640] dump_stack+0x194/0x24d [ 45.630649] ? arch_local_irq_restore+0x53/0x53 [ 45.630668] should_fail+0x8c0/0xa40 [ 45.659647] ? __free_insn_slot+0x5c0/0x5c0 [ 45.663965] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 45.666280] FAULT_INJECTION: forcing a failure. [ 45.666280] name failslab, interval 1, probability 0, space 0, times 0 [ 45.669050] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 45.669058] ? __lock_acquire+0x664/0x3e00 [ 45.669064] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 45.669075] ? find_held_lock+0x35/0x1d0 [ 45.698849] ? __lock_is_held+0xb6/0x140 [ 45.702896] ? check_same_owner+0x320/0x320 [ 45.707193] ? __d_lookup+0x4f4/0x830 [ 45.710972] ? rcu_note_context_switch+0x710/0x710 [ 45.715883] should_failslab+0xec/0x120 [ 45.719830] kmem_cache_alloc+0x47/0x760 [ 45.723886] __d_alloc+0xc1/0xbd0 [ 45.727327] ? shrink_dcache_for_umount+0x290/0x290 [ 45.732325] ? d_alloc_parallel+0x1b40/0x1b40 [ 45.736800] ? lock_release+0xa40/0xa40 [ 45.740756] ? mark_held_locks+0xaf/0x100 [ 45.744879] ? d_lookup+0x133/0x2e0 [ 45.748488] ? d_lookup+0x1d5/0x2e0 [ 45.752093] d_alloc+0x8e/0x340 [ 45.755349] ? __d_alloc+0xbd0/0xbd0 [ 45.759037] ? full_name_hash+0x9b/0xe0 [ 45.762997] __rpc_lookup_create_exclusive+0x183/0x1d0 [ 45.768249] ? rpc_d_lookup_sb+0x1a0/0x1a0 [ 45.772468] rpc_populate.constprop.15+0xa3/0x340 [ 45.777292] rpc_fill_super+0x379/0xae0 [ 45.781245] ? cap_capable+0x1b5/0x230 [ 45.785103] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 45.790270] ? security_capable+0x8e/0xc0 [ 45.794392] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 45.799565] ? ns_capable_common+0xcf/0x160 [ 45.803864] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 45.809027] mount_ns+0xc4/0x190 [ 45.812372] rpc_mount+0x9e/0xd0 [ 45.815714] mount_fs+0x66/0x2d0 [ 45.819059] vfs_kern_mount.part.26+0xc6/0x4a0 [ 45.823619] ? may_umount+0xa0/0xa0 [ 45.827219] ? _raw_read_unlock+0x22/0x30 [ 45.831339] ? __get_fs_type+0x8a/0xc0 [ 45.835205] do_mount+0xea4/0x2bb0 [ 45.838726] ? copy_mount_string+0x40/0x40 [ 45.842946] ? rcu_pm_notify+0xc0/0xc0 [ 45.846816] ? copy_mount_options+0x5f/0x2e0 [ 45.851198] ? rcu_read_lock_sched_held+0x108/0x120 [ 45.856190] ? kmem_cache_alloc_trace+0x459/0x740 [ 45.861010] ? kasan_check_write+0x14/0x20 [ 45.865223] ? copy_mount_options+0x1f7/0x2e0 [ 45.869695] SyS_mount+0xab/0x120 [ 45.873121] ? copy_mnt_ns+0xb30/0xb30 [ 45.876984] do_syscall_64+0x281/0x940 [ 45.880845] ? __do_page_fault+0xc90/0xc90 [ 45.885053] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 45.889785] ? syscall_return_slowpath+0x550/0x550 [ 45.894691] ? syscall_return_slowpath+0x2ac/0x550 [ 45.899596] ? prepare_exit_to_usermode+0x350/0x350 [ 45.904599] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 45.909942] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 45.914769] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 45.919935] RIP: 0033:0x442ab9 [ 45.923098] RSP: 002b:00007fffbb2ce7d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 45.930780] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000442ab9 [ 45.938024] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 45.945266] RBP: 00007fffbb2cf080 R08: 0000000020000300 R09: 0000000000000000 [ 45.952515] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff [ 45.959761] R13: 0000000000000004 R14: 0000000000000000 R15: 00007fffbb2ce918 [ 45.967029] CPU: 0 PID: 4439 Comm: syzkaller588725 Not tainted 4.16.0-rc6+ #40 [ 45.969533] IPVS: ftp: loaded support on port[0] = 21 [ 45.974398] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 45.974402] Call Trace: [ 45.974418] dump_stack+0x194/0x24d [ 45.974429] ? arch_local_irq_restore+0x53/0x53 [ 45.999740] should_fail+0x8c0/0xa40 [ 45.999954] IPVS: ftp: loaded support on port[0] = 21 executing program [ 46.003436] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 46.003446] ? __lock_is_held+0xb6/0x140 [ 46.003455] ? mark_held_locks+0xaf/0x100 [ 46.021874] ? __raw_spin_lock_init+0x1c/0x100 [ 46.026442] ? find_held_lock+0x35/0x1d0 [ 46.030489] ? __lock_is_held+0xb6/0x140 [ 46.034546] ? check_same_owner+0x320/0x320 [ 46.038853] ? d_alloc+0x269/0x340 [ 46.042383] ? rcu_note_context_switch+0x710/0x710 [ 46.043502] FAULT_INJECTION: forcing a failure. [ 46.043502] name failslab, interval 1, probability 0, space 0, times 0 [ 46.047312] ? lock_release+0xa40/0xa40 [ 46.047329] should_failslab+0xec/0x120 [ 46.047336] kmem_cache_alloc+0x47/0x760 [ 46.047346] ? d_drop+0x51/0x60 [ 46.047355] ? rpc_i_callback+0x30/0x30 [ 46.047364] rpc_alloc_inode+0x1a/0x20 [ 46.047369] alloc_inode+0x65/0x180 [ 46.047378] new_inode_pseudo+0x69/0x190 [ 46.089208] ? prune_icache_sb+0x1a0/0x1a0 [ 46.093417] ? do_raw_spin_trylock+0x190/0x190 [ 46.097973] ? d_add+0xa70/0xa70 [ 46.101319] new_inode+0x1c/0x40 [ 46.104664] rpc_get_inode+0x20/0x1e0 [ 46.108456] __rpc_create_common+0x5d/0x1d0 [ 46.112763] rpc_populate.constprop.15+0x1ad/0x340 [ 46.117686] rpc_fill_super+0x379/0xae0 [ 46.121650] ? cap_capable+0x1b5/0x230 [ 46.125534] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 46.130715] ? security_capable+0x8e/0xc0 [ 46.134847] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 46.140024] ? ns_capable_common+0xcf/0x160 [ 46.144319] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 46.149485] mount_ns+0xc4/0x190 [ 46.152836] rpc_mount+0x9e/0xd0 [ 46.156181] mount_fs+0x66/0x2d0 [ 46.159525] vfs_kern_mount.part.26+0xc6/0x4a0 [ 46.164090] ? may_umount+0xa0/0xa0 [ 46.167692] ? _raw_read_unlock+0x22/0x30 [ 46.171812] ? __get_fs_type+0x8a/0xc0 [ 46.175677] do_mount+0xea4/0x2bb0 [ 46.179203] ? copy_mount_string+0x40/0x40 [ 46.183425] ? rcu_pm_notify+0xc0/0xc0 [ 46.187313] ? copy_mount_options+0x5f/0x2e0 [ 46.191706] ? rcu_read_lock_sched_held+0x108/0x120 [ 46.196711] ? kmem_cache_alloc_trace+0x459/0x740 [ 46.201542] ? kasan_check_write+0x14/0x20 [ 46.205756] ? _copy_from_user+0x99/0x110 [ 46.209888] ? copy_mount_options+0x1f7/0x2e0 [ 46.214368] SyS_mount+0xab/0x120 [ 46.217808] ? copy_mnt_ns+0xb30/0xb30 [ 46.221685] do_syscall_64+0x281/0x940 [ 46.225559] ? __do_page_fault+0xc90/0xc90 [ 46.229774] ? trace_event_raw_event_sys_exit+0x260/0x260 [ 46.235292] ? syscall_return_slowpath+0x550/0x550 [ 46.240201] ? syscall_return_slowpath+0x2ac/0x550 [ 46.245127] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 46.250485] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 46.255319] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 46.260486] RIP: 0033:0x442ab9 [ 46.263650] RSP: 002b:00007fffbb2ce7d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 46.271333] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000442ab9 [ 46.278578] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 46.285819] RBP: 00007fffbb2cf080 R08: 0000000020000300 R09: 0000000000000000 [ 46.293063] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff [ 46.300345] R13: 0000000000000004 R14: 0000000000000000 R15: 00007fffbb2ce918 [ 46.307612] CPU: 1 PID: 4440 Comm: syzkaller588725 Not tainted 4.16.0-rc6+ #40 [ 46.307658] net/sunrpc/rpc_pipe.c: __rpc_create_common failed to allocate inode for dentry statd [ 46.314976] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 46.314980] Call Trace: [ 46.314997] dump_stack+0x194/0x24d [ 46.315006] ? arch_local_irq_restore+0x53/0x53 [ 46.315013] ? __save_stack_trace+0x7e/0xd0 [ 46.315030] should_fail+0x8c0/0xa40 [ 46.315040] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 46.325859] net/sunrpc/rpc_pipe.c: rpc_populate failed to populate directory / executing program [ 46.333304] ? kasan_kmalloc+0xad/0xe0 [ 46.333310] ? kmem_cache_alloc_trace+0x136/0x740 [ 46.333317] ? __memcg_init_list_lru_node+0x169/0x270 [ 46.333322] ? __list_lru_init+0x544/0x750 [ 46.333329] ? sget_userns+0x6b1/0xe40 [ 46.333338] ? vfs_kern_mount.part.26+0xc6/0x4a0 [ 46.333343] ? do_mount+0xea4/0x2bb0 [ 46.333349] ? SyS_mount+0xab/0x120 [ 46.333359] ? do_syscall_64+0x281/0x940 [ 46.338332] net/sunrpc/rpc_pipe.c: rpc_populate failed to populate directory / [ 46.339602] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 46.339618] ? find_held_lock+0x35/0x1d0 [ 46.339629] ? __lock_is_held+0xb6/0x140 [ 46.339647] ? check_same_owner+0x320/0x320 [ 46.346220] net/sunrpc/rpc_pipe.c: rpc_populate failed to populate directory / [ 46.348693] ? rcu_note_context_switch+0x710/0x710 [ 46.348709] should_failslab+0xec/0x120 [ 46.348716] kmem_cache_alloc_trace+0x4b/0x740 [ 46.348722] ? __kmalloc_node+0x33/0x70 [ 46.348726] ? __kmalloc_node+0x33/0x70 [ 46.348733] ? rcu_read_lock_sched_held+0x108/0x120 [ 46.356996] net/sunrpc/rpc_pipe.c: rpc_populate failed to populate directory / [ 46.357525] __memcg_init_list_lru_node+0x169/0x270 [ 46.357536] ? list_lru_add+0x7c0/0x7c0 [ 46.357543] ? __kmalloc_node+0x47/0x70 [ 46.389704] IPVS: ftp: loaded support on port[0] = 21 [ 46.391552] __list_lru_init+0x544/0x750 [ 46.391567] ? memcg_destroy_list_lru_node.isra.7+0x110/0x110 [ 46.401363] FAULT_INJECTION: forcing a failure. [ 46.401363] name failslab, interval 1, probability 0, space 0, times 0 [ 46.402915] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 46.402929] ? lockdep_init_map+0x9/0x10 [ 46.402938] sget_userns+0x6b1/0xe40 [ 46.402946] ? set_anon_super+0x20/0x20 [ 46.524676] ? put_filp+0x90/0x90 [ 46.528107] ? destroy_unused_super.part.6+0xd0/0xd0 [ 46.533187] ? __alloc_pages_slowpath+0x2d10/0x2d10 [ 46.538184] ? trace_hardirqs_off+0x10/0x10 [ 46.542484] ? putname+0xee/0x130 [ 46.545918] ? cap_capable+0x1b5/0x230 [ 46.549790] ? security_capable+0x8e/0xc0 [ 46.553915] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 46.559339] ? ns_capable_common+0xcf/0x160 [ 46.563643] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 46.568808] mount_ns+0x6d/0x190 [ 46.572154] rpc_mount+0x9e/0xd0 [ 46.575495] mount_fs+0x66/0x2d0 [ 46.578843] vfs_kern_mount.part.26+0xc6/0x4a0 [ 46.583402] ? may_umount+0xa0/0xa0 [ 46.587003] ? _raw_read_unlock+0x22/0x30 [ 46.591123] ? __get_fs_type+0x8a/0xc0 [ 46.594993] do_mount+0xea4/0x2bb0 [ 46.598515] ? copy_mount_string+0x40/0x40 [ 46.602722] ? rcu_pm_notify+0xc0/0xc0 [ 46.606589] ? copy_mount_options+0x5f/0x2e0 [ 46.610967] ? rcu_read_lock_sched_held+0x108/0x120 [ 46.615957] ? kmem_cache_alloc_trace+0x459/0x740 [ 46.620775] ? kasan_check_write+0x14/0x20 [ 46.624990] ? copy_mount_options+0x1f7/0x2e0 [ 46.629466] SyS_mount+0xab/0x120 [ 46.632893] ? copy_mnt_ns+0xb30/0xb30 [ 46.636762] do_syscall_64+0x281/0x940 [ 46.640624] ? __do_page_fault+0xc90/0xc90 [ 46.644836] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 46.649571] ? syscall_return_slowpath+0x550/0x550 [ 46.654480] ? syscall_return_slowpath+0x2ac/0x550 [ 46.659385] ? prepare_exit_to_usermode+0x350/0x350 [ 46.664379] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 46.669722] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 46.674547] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 46.679712] RIP: 0033:0x442ab9 [ 46.682873] RSP: 002b:00007fffbb2ce7d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 46.690555] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000442ab9 [ 46.697885] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 46.705128] RBP: 00007fffbb2cf080 R08: 0000000020000300 R09: 0000000000000000 [ 46.712371] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff [ 46.719612] R13: 0000000000000004 R14: 0000000000000000 R15: 00007fffbb2ce918 [ 46.726879] CPU: 0 PID: 4443 Comm: syzkaller588725 Not tainted 4.16.0-rc6+ #40 [ 46.734259] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 46.743594] Call Trace: [ 46.746166] dump_stack+0x194/0x24d [ 46.747861] IPVS: ftp: loaded support on port[0] = 21 [ 46.749796] ? arch_local_irq_restore+0x53/0x53 [ 46.749808] ? __save_stack_trace+0x7e/0xd0 [ 46.763980] should_fail+0x8c0/0xa40 [ 46.767679] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 46.772760] ? kasan_kmalloc+0xad/0xe0 [ 46.776619] ? kmem_cache_alloc_trace+0x136/0x740 [ 46.781447] ? __memcg_init_list_lru_node+0x169/0x270 [ 46.786611] ? __list_lru_init+0x544/0x750 [ 46.790845] ? sget_userns+0x6b1/0xe40 [ 46.792235] FAULT_INJECTION: forcing a failure. [ 46.792235] name failslab, interval 1, probability 0, space 0, times 0 [ 46.794716] ? vfs_kern_mount.part.26+0xc6/0x4a0 [ 46.794726] ? do_mount+0xea4/0x2bb0 [ 46.814330] ? SyS_mount+0xab/0x120 [ 46.817931] ? do_syscall_64+0x281/0x940 [ 46.821965] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 46.827311] ? find_held_lock+0x35/0x1d0 [ 46.831363] ? __lock_is_held+0xb6/0x140 [ 46.835412] ? check_same_owner+0x320/0x320 [ 46.839715] ? rcu_note_context_switch+0x710/0x710 [ 46.844627] should_failslab+0xec/0x120 [ 46.848581] kmem_cache_alloc_trace+0x4b/0x740 [ 46.853153] __memcg_init_list_lru_node+0x169/0x270 [ 46.858164] ? list_lru_add+0x7c0/0x7c0 [ 46.862125] ? __kmalloc_node+0x47/0x70 [ 46.866087] __list_lru_init+0x544/0x750 [ 46.870215] ? memcg_destroy_list_lru_node.isra.7+0x110/0x110 [ 46.876086] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 46.881085] ? lockdep_init_map+0x9/0x10 [ 46.885123] sget_userns+0x6b1/0xe40 [ 46.888812] ? set_anon_super+0x20/0x20 [ 46.892766] ? put_filp+0x90/0x90 [ 46.896199] ? destroy_unused_super.part.6+0xd0/0xd0 [ 46.901281] ? __alloc_pages_slowpath+0x2d10/0x2d10 [ 46.906274] ? trace_hardirqs_off+0x10/0x10 [ 46.910586] ? putname+0xee/0x130 [ 46.914017] ? cap_capable+0x1b5/0x230 [ 46.917883] ? security_capable+0x8e/0xc0 [ 46.922007] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 46.927183] ? ns_capable_common+0xcf/0x160 [ 46.931484] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 46.936650] mount_ns+0x6d/0x190 [ 46.940007] rpc_mount+0x9e/0xd0 [ 46.943354] mount_fs+0x66/0x2d0 [ 46.946699] vfs_kern_mount.part.26+0xc6/0x4a0 [ 46.952337] ? may_umount+0xa0/0xa0 [ 46.955952] ? _raw_read_unlock+0x22/0x30 [ 46.960075] ? __get_fs_type+0x8a/0xc0 [ 46.963941] do_mount+0xea4/0x2bb0 [ 46.967502] ? copy_mount_string+0x40/0x40 [ 46.971711] ? rcu_pm_notify+0xc0/0xc0 [ 46.975580] ? copy_mount_options+0x5f/0x2e0 [ 46.979960] ? rcu_read_lock_sched_held+0x108/0x120 [ 46.984948] ? kmem_cache_alloc_trace+0x459/0x740 [ 46.989766] ? kasan_check_write+0x14/0x20 [ 46.993981] ? copy_mount_options+0x1f7/0x2e0 [ 46.998452] SyS_mount+0xab/0x120 [ 47.001883] ? copy_mnt_ns+0xb30/0xb30 [ 47.005743] do_syscall_64+0x281/0x940 [ 47.009602] ? __do_page_fault+0xc90/0xc90 [ 47.013813] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 47.018544] ? syscall_return_slowpath+0x550/0x550 [ 47.023465] ? syscall_return_slowpath+0x2ac/0x550 [ 47.028410] ? prepare_exit_to_usermode+0x350/0x350 [ 47.033421] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 47.038777] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 47.043616] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 47.048786] RIP: 0033:0x442ab9 [ 47.051958] RSP: 002b:00007fffbb2ce7d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 47.059650] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000442ab9 executing program executing program executing program [ 47.066902] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 47.074154] RBP: 00007fffbb2cf080 R08: 0000000020000300 R09: 0000000000000000 [ 47.081405] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff [ 47.088658] R13: 0000000000000004 R14: 0000000000000000 R15: 00007fffbb2ce918 [ 47.097117] CPU: 1 PID: 4446 Comm: syzkaller588725 Not tainted 4.16.0-rc6+ #40 [ 47.104479] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 47.113827] Call Trace: executing program [ 47.116419] dump_stack+0x194/0x24d [ 47.120050] ? arch_local_irq_restore+0x53/0x53 [ 47.124739] ? find_held_lock+0x35/0x1d0 [ 47.128815] should_fail+0x8c0/0xa40 [ 47.132528] ? __list_lru_init+0x352/0x750 [ 47.132945] FAULT_INJECTION: forcing a failure. [ 47.132945] name failslab, interval 1, probability 0, space 0, times 0 [ 47.136757] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 47.136770] ? trace_hardirqs_off+0x10/0x10 [ 47.136781] ? find_next_zero_bit+0xe3/0x110 [ 47.136797] ? trace_hardirqs_off+0x10/0x10 [ 47.136814] ? find_held_lock+0x35/0x1d0 [ 47.170067] ? __lock_is_held+0xb6/0x140 [ 47.174140] ? check_same_owner+0x320/0x320 [ 47.178442] ? lock_downgrade+0x980/0x980 [ 47.182577] ? rcu_note_context_switch+0x710/0x710 [ 47.187488] ? find_held_lock+0x35/0x1d0 [ 47.191541] should_failslab+0xec/0x120 [ 47.195503] __kmalloc+0x63/0x760 [ 47.198942] ? lock_downgrade+0x980/0x980 [ 47.203078] ? register_shrinker+0x10e/0x2d0 [ 47.207470] ? trace_event_raw_event_module_request+0x320/0x320 [ 47.213522] register_shrinker+0x10e/0x2d0 [ 47.217742] ? __bpf_trace_mm_vmscan_wakeup_kswapd+0x40/0x40 [ 47.223532] ? memcpy+0x45/0x50 [ 47.226808] sget_userns+0xbbf/0xe40 [ 47.230504] ? set_anon_super+0x20/0x20 [ 47.234469] ? put_filp+0x90/0x90 [ 47.237910] ? destroy_unused_super.part.6+0xd0/0xd0 [ 47.243002] ? __alloc_pages_slowpath+0x2d10/0x2d10 [ 47.248011] ? trace_hardirqs_off+0x10/0x10 [ 47.252322] ? putname+0xee/0x130 [ 47.255765] ? cap_capable+0x1b5/0x230 [ 47.259648] ? security_capable+0x8e/0xc0 [ 47.263783] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 47.268954] ? ns_capable_common+0xcf/0x160 [ 47.273263] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 47.278436] mount_ns+0x6d/0x190 [ 47.281819] rpc_mount+0x9e/0xd0 [ 47.285193] mount_fs+0x66/0x2d0 [ 47.288549] vfs_kern_mount.part.26+0xc6/0x4a0 [ 47.293295] ? may_umount+0xa0/0xa0 [ 47.296911] ? _raw_read_unlock+0x22/0x30 [ 47.301042] ? __get_fs_type+0x8a/0xc0 [ 47.304924] do_mount+0xea4/0x2bb0 [ 47.308466] ? copy_mount_string+0x40/0x40 [ 47.312685] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 47.317686] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 47.322435] ? retint_kernel+0x10/0x10 [ 47.326322] ? __sanitizer_cov_trace_pc+0xd/0x50 [ 47.331333] ? copy_mount_options+0x1f7/0x2e0 [ 47.335820] SyS_mount+0xab/0x120 [ 47.339261] ? copy_mnt_ns+0xb30/0xb30 [ 47.343132] do_syscall_64+0x281/0x940 [ 47.346999] ? __do_page_fault+0xc90/0xc90 [ 47.351217] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 47.355957] ? syscall_return_slowpath+0x550/0x550 [ 47.360869] ? syscall_return_slowpath+0x2ac/0x550 [ 47.365785] ? prepare_exit_to_usermode+0x350/0x350 [ 47.370788] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 47.376142] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 47.380981] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 47.386152] RIP: 0033:0x442ab9 [ 47.389325] RSP: 002b:00007fffbb2ce7d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 47.397014] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000442ab9 [ 47.404265] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 47.411520] RBP: 00007fffbb2cf080 R08: 0000000020000300 R09: 0000000000000000 executing program [ 47.418771] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff [ 47.426020] R13: 0000000000000004 R14: 0000000000000000 R15: 00007fffbb2ce918 [ 47.433304] CPU: 0 PID: 4447 Comm: syzkaller588725 Not tainted 4.16.0-rc6+ #40 [ 47.440669] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 47.445259] FAULT_INJECTION: forcing a failure. [ 47.445259] name failslab, interval 1, probability 0, space 0, times 0 [ 47.450013] Call Trace: [ 47.450031] dump_stack+0x194/0x24d [ 47.450045] ? arch_local_irq_restore+0x53/0x53 [ 47.472074] ? find_held_lock+0x35/0x1d0 [ 47.476127] should_fail+0x8c0/0xa40 [ 47.479827] ? __list_lru_init+0x352/0x750 [ 47.484051] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 47.489140] ? trace_hardirqs_off+0x10/0x10 [ 47.493462] ? find_next_zero_bit+0xe3/0x110 [ 47.497859] ? trace_hardirqs_off+0x10/0x10 [ 47.502176] ? find_held_lock+0x35/0x1d0 [ 47.506228] ? __lock_is_held+0xb6/0x140 [ 47.510294] ? check_same_owner+0x320/0x320 [ 47.514600] ? lock_downgrade+0x980/0x980 [ 47.518736] ? rcu_note_context_switch+0x710/0x710 [ 47.523651] ? find_held_lock+0x35/0x1d0 [ 47.527706] should_failslab+0xec/0x120 [ 47.531667] __kmalloc+0x63/0x760 [ 47.535104] ? lock_downgrade+0x980/0x980 [ 47.539241] ? register_shrinker+0x10e/0x2d0 [ 47.543631] ? trace_event_raw_event_module_request+0x320/0x320 [ 47.549679] register_shrinker+0x10e/0x2d0 [ 47.553896] ? __bpf_trace_mm_vmscan_wakeup_kswapd+0x40/0x40 [ 47.559677] ? memcpy+0x45/0x50 [ 47.562950] sget_userns+0xbbf/0xe40 [ 47.566644] ? set_anon_super+0x20/0x20 [ 47.570609] ? put_filp+0x90/0x90 [ 47.574046] ? destroy_unused_super.part.6+0xd0/0xd0 [ 47.579139] ? __alloc_pages_slowpath+0x2d10/0x2d10 [ 47.584145] ? trace_hardirqs_off+0x10/0x10 [ 47.588456] ? putname+0xee/0x130 [ 47.591899] ? cap_capable+0x1b5/0x230 [ 47.595781] ? security_capable+0x8e/0xc0 [ 47.599917] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 47.605103] ? ns_capable_common+0xcf/0x160 [ 47.609414] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 47.614585] mount_ns+0x6d/0x190 [ 47.617941] rpc_mount+0x9e/0xd0 [ 47.621298] mount_fs+0x66/0x2d0 [ 47.624658] vfs_kern_mount.part.26+0xc6/0x4a0 [ 47.629225] ? may_umount+0xa0/0xa0 [ 47.632834] ? _raw_read_unlock+0x22/0x30 [ 47.636964] ? __get_fs_type+0x8a/0xc0 [ 47.640844] do_mount+0xea4/0x2bb0 [ 47.644381] ? copy_mount_string+0x40/0x40 [ 47.648599] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 47.653601] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 47.658353] ? retint_kernel+0x10/0x10 [ 47.662236] ? copy_mount_options+0x18b/0x2e0 [ 47.666717] ? copy_mount_options+0x196/0x2e0 [ 47.671201] ? copy_mount_options+0x1f7/0x2e0 [ 47.675689] SyS_mount+0xab/0x120 [ 47.679125] ? copy_mnt_ns+0xb30/0xb30 [ 47.682998] do_syscall_64+0x281/0x940 [ 47.686867] ? __do_page_fault+0xc90/0xc90 [ 47.691083] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 47.695826] ? syscall_return_slowpath+0x550/0x550 [ 47.700740] ? syscall_return_slowpath+0x2ac/0x550 [ 47.705654] ? prepare_exit_to_usermode+0x350/0x350 [ 47.710655] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 47.716012] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 47.720849] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 47.726019] RIP: 0033:0x442ab9 [ 47.729191] RSP: 002b:00007fffbb2ce7d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 47.736882] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000442ab9 [ 47.744136] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 47.751388] RBP: 00007fffbb2cf080 R08: 0000000020000300 R09: 0000000300000000 [ 47.758640] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff executing program [ 47.765891] R13: 0000000000000004 R14: 0000000000001380 R15: 00007fffbb2ce918 [ 47.773176] CPU: 1 PID: 4449 Comm: syzkaller588725 Not tainted 4.16.0-rc6+ #40 [ 47.780530] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 47.784518] FAULT_INJECTION: forcing a failure. [ 47.784518] name failslab, interval 1, probability 0, space 0, times 0 [ 47.789872] Call Trace: [ 47.789889] dump_stack+0x194/0x24d [ 47.789905] ? arch_local_irq_restore+0x53/0x53 [ 47.789915] ? __save_stack_trace+0x7e/0xd0 [ 47.789939] should_fail+0x8c0/0xa40 [ 47.819874] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 47.824964] ? kasan_kmalloc+0xad/0xe0 [ 47.828831] ? kmem_cache_alloc_trace+0x136/0x740 [ 47.833655] ? __memcg_init_list_lru_node+0x169/0x270 [ 47.838830] ? __list_lru_init+0x544/0x750 [ 47.843044] ? sget_userns+0x6b1/0xe40 [ 47.846919] ? vfs_kern_mount.part.26+0xc6/0x4a0 [ 47.851657] ? do_mount+0xea4/0x2bb0 [ 47.855352] ? SyS_mount+0xab/0x120 [ 47.858958] ? do_syscall_64+0x281/0x940 [ 47.863003] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 47.868363] ? find_held_lock+0x35/0x1d0 [ 47.872416] ? __lock_is_held+0xb6/0x140 [ 47.876480] ? check_same_owner+0x320/0x320 [ 47.880794] ? rcu_note_context_switch+0x710/0x710 [ 47.885719] should_failslab+0xec/0x120 [ 47.889680] kmem_cache_alloc_trace+0x4b/0x740 [ 47.894244] ? __kmalloc_node+0x33/0x70 [ 47.898198] ? __kmalloc_node+0x33/0x70 [ 47.902158] ? rcu_read_lock_sched_held+0x108/0x120 [ 47.907164] __memcg_init_list_lru_node+0x169/0x270 [ 47.912170] ? list_lru_add+0x7c0/0x7c0 [ 47.916125] ? __kmalloc_node+0x47/0x70 [ 47.920094] __list_lru_init+0x544/0x750 [ 47.924150] ? memcg_destroy_list_lru_node.isra.7+0x110/0x110 [ 47.930026] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 47.935041] ? lockdep_init_map+0x9/0x10 [ 47.939090] sget_userns+0x6b1/0xe40 [ 47.942820] ? set_anon_super+0x20/0x20 [ 47.946831] ? put_filp+0x90/0x90 [ 47.950269] ? destroy_unused_super.part.6+0xd0/0xd0 [ 47.955361] ? __alloc_pages_slowpath+0x2d10/0x2d10 [ 47.960366] ? trace_hardirqs_off+0x10/0x10 [ 47.964674] ? putname+0xee/0x130 [ 47.968117] ? cap_capable+0x1b5/0x230 [ 47.971998] ? security_capable+0x8e/0xc0 [ 47.976135] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 47.981318] ? ns_capable_common+0xcf/0x160 [ 47.985627] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 47.990801] mount_ns+0x6d/0x190 [ 47.994158] rpc_mount+0x9e/0xd0 [ 47.997511] mount_fs+0x66/0x2d0 [ 48.000868] vfs_kern_mount.part.26+0xc6/0x4a0 [ 48.005439] ? may_umount+0xa0/0xa0 [ 48.009119] ? _raw_read_unlock+0x22/0x30 [ 48.013250] ? __get_fs_type+0x8a/0xc0 [ 48.017133] do_mount+0xea4/0x2bb0 [ 48.020670] ? copy_mount_string+0x40/0x40 [ 48.024890] ? rcu_pm_notify+0xc0/0xc0 [ 48.028778] ? copy_mount_options+0x5f/0x2e0 [ 48.033172] ? rcu_read_lock_sched_held+0x108/0x120 [ 48.038174] ? kmem_cache_alloc_trace+0x459/0x740 [ 48.043018] ? copy_mount_options+0x1f7/0x2e0 [ 48.047506] SyS_mount+0xab/0x120 [ 48.050945] ? copy_mnt_ns+0xb30/0xb30 [ 48.054818] do_syscall_64+0x281/0x940 [ 48.058691] ? __do_page_fault+0xc90/0xc90 [ 48.062910] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 48.067652] ? syscall_return_slowpath+0x550/0x550 [ 48.072565] ? syscall_return_slowpath+0x2ac/0x550 [ 48.077478] ? prepare_exit_to_usermode+0x350/0x350 [ 48.082480] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 48.087835] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 48.092673] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 48.097844] RIP: 0033:0x442ab9 [ 48.101019] RSP: 002b:00007fffbb2ce7d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 48.108714] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000442ab9 [ 48.116324] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 48.123581] RBP: 00007fffbb2cf080 R08: 0000000020000300 R09: 0000000300000000 [ 48.130837] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff [ 48.138089] R13: 0000000000000004 R14: 0000000000001380 R15: 00007fffbb2ce918 [ 48.145375] CPU: 0 PID: 4445 Comm: syzkaller588725 Not tainted 4.16.0-rc6+ #40 [ 48.150547] FAULT_INJECTION: forcing a failure. [ 48.150547] name failslab, interval 1, probability 0, space 0, times 0 [ 48.152727] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 48.152731] Call Trace: [ 48.152748] dump_stack+0x194/0x24d [ 48.152769] ? arch_local_irq_restore+0x53/0x53 [ 48.184068] ? find_held_lock+0x35/0x1d0 [ 48.188125] should_fail+0x8c0/0xa40 [ 48.191821] ? __list_lru_init+0x352/0x750 [ 48.196045] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 48.201133] ? trace_hardirqs_off+0x10/0x10 [ 48.205443] ? find_next_zero_bit+0xe3/0x110 [ 48.209842] ? trace_hardirqs_off+0x10/0x10 [ 48.214153] ? find_held_lock+0x35/0x1d0 [ 48.218205] ? __lock_is_held+0xb6/0x140 [ 48.222274] ? check_same_owner+0x320/0x320 [ 48.226578] ? lock_downgrade+0x980/0x980 [ 48.230712] ? rcu_note_context_switch+0x710/0x710 [ 48.235626] ? find_held_lock+0x35/0x1d0 [ 48.239681] should_failslab+0xec/0x120 [ 48.243641] __kmalloc+0x63/0x760 [ 48.247076] ? lock_downgrade+0x980/0x980 [ 48.251211] ? register_shrinker+0x10e/0x2d0 [ 48.255600] ? trace_event_raw_event_module_request+0x320/0x320 [ 48.261645] register_shrinker+0x10e/0x2d0 [ 48.265866] ? __bpf_trace_mm_vmscan_wakeup_kswapd+0x40/0x40 [ 48.271651] ? memcpy+0x45/0x50 [ 48.274923] sget_userns+0xbbf/0xe40 [ 48.279574] ? set_anon_super+0x20/0x20 [ 48.283544] ? put_filp+0x90/0x90 [ 48.286983] ? destroy_unused_super.part.6+0xd0/0xd0 [ 48.292075] ? __alloc_pages_slowpath+0x2d10/0x2d10 [ 48.297086] ? trace_hardirqs_off+0x10/0x10 [ 48.301399] ? putname+0xee/0x130 [ 48.304841] ? cap_capable+0x1b5/0x230 [ 48.308730] ? security_capable+0x8e/0xc0 [ 48.312866] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 48.318041] ? ns_capable_common+0xcf/0x160 [ 48.322351] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 48.327527] mount_ns+0x6d/0x190 [ 48.330888] rpc_mount+0x9e/0xd0 [ 48.334315] mount_fs+0x66/0x2d0 [ 48.337675] vfs_kern_mount.part.26+0xc6/0x4a0 [ 48.342247] ? may_umount+0xa0/0xa0 [ 48.345862] ? _raw_read_unlock+0x22/0x30 [ 48.349999] ? __get_fs_type+0x8a/0xc0 [ 48.353888] do_mount+0xea4/0x2bb0 [ 48.357426] ? copy_mount_string+0x40/0x40 [ 48.361652] ? rcu_pm_notify+0xc0/0xc0 [ 48.365542] ? copy_mount_options+0x5f/0x2e0 [ 48.369940] ? rcu_read_lock_sched_held+0x108/0x120 [ 48.374946] ? kmem_cache_alloc_trace+0x459/0x740 [ 48.379792] ? copy_mount_options+0x1f7/0x2e0 [ 48.384283] SyS_mount+0xab/0x120 [ 48.387724] ? copy_mnt_ns+0xb30/0xb30 [ 48.391602] do_syscall_64+0x281/0x940 [ 48.395474] ? __do_page_fault+0xc90/0xc90 [ 48.399695] ? trace_event_raw_event_sys_exit+0x260/0x260 [ 48.405222] ? syscall_return_slowpath+0x550/0x550 [ 48.410139] ? syscall_return_slowpath+0x2ac/0x550 [ 48.415062] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 48.420422] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 48.425261] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 48.430432] RIP: 0033:0x442ab9 [ 48.433604] RSP: 002b:00007fffbb2ce7d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 48.441298] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000442ab9 [ 48.448557] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 48.455815] RBP: 00007fffbb2cf080 R08: 0000000020000300 R09: 0000000000000000 [ 48.463074] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff [ 48.470765] R13: 0000000000000004 R14: 0000000000000000 R15: 00007fffbb2ce918 [ 48.478061] CPU: 1 PID: 4448 Comm: syzkaller588725 Not tainted 4.16.0-rc6+ #40 [ 48.485426] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 48.487127] FAULT_INJECTION: forcing a failure. [ 48.487127] name failslab, interval 1, probability 0, space 0, times 0 [ 48.494969] Call Trace: [ 48.494990] dump_stack+0x194/0x24d [ 48.495005] ? arch_local_irq_restore+0x53/0x53 [ 48.495015] ? __save_stack_trace+0x7e/0xd0 [ 48.495041] should_fail+0x8c0/0xa40 [ 48.495055] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 48.530099] ? kasan_kmalloc+0xad/0xe0 [ 48.533968] ? kmem_cache_alloc_trace+0x136/0x740 [ 48.538794] ? __memcg_init_list_lru_node+0x169/0x270 [ 48.543970] ? __list_lru_init+0x544/0x750 [ 48.548193] ? sget_userns+0x6b1/0xe40 [ 48.552069] ? vfs_kern_mount.part.26+0xc6/0x4a0 [ 48.556812] ? do_mount+0xea4/0x2bb0 [ 48.560507] ? SyS_mount+0xab/0x120 [ 48.564119] ? do_syscall_64+0x281/0x940 [ 48.568173] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 48.573538] ? find_held_lock+0x35/0x1d0 [ 48.577592] ? __lock_is_held+0xb6/0x140 [ 48.581659] ? check_same_owner+0x320/0x320 [ 48.585971] ? rcu_note_context_switch+0x710/0x710 [ 48.590898] should_failslab+0xec/0x120 [ 48.594857] kmem_cache_alloc_trace+0x4b/0x740 [ 48.599423] ? __kmalloc_node+0x33/0x70 [ 48.603379] ? __kmalloc_node+0x33/0x70 [ 48.607338] ? rcu_read_lock_sched_held+0x108/0x120 [ 48.612351] __memcg_init_list_lru_node+0x169/0x270 [ 48.617360] ? list_lru_add+0x7c0/0x7c0 [ 48.621322] ? __kmalloc_node+0x47/0x70 [ 48.625295] __list_lru_init+0x544/0x750 [ 48.629351] ? memcg_destroy_list_lru_node.isra.7+0x110/0x110 [ 48.635225] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 48.640239] ? lockdep_init_map+0x9/0x10 [ 48.644292] sget_userns+0x6b1/0xe40 [ 48.647988] ? set_anon_super+0x20/0x20 [ 48.651952] ? put_filp+0x90/0x90 [ 48.655390] ? destroy_unused_super.part.6+0xd0/0xd0 [ 48.660481] ? __alloc_pages_slowpath+0x2d10/0x2d10 [ 48.665490] ? trace_hardirqs_off+0x10/0x10 [ 48.669801] ? putname+0xee/0x130 [ 48.673244] ? cap_capable+0x1b5/0x230 [ 48.677123] ? security_capable+0x8e/0xc0 [ 48.681263] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 48.686438] ? ns_capable_common+0xcf/0x160 [ 48.690751] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 48.695923] mount_ns+0x6d/0x190 [ 48.699283] rpc_mount+0x9e/0xd0 [ 48.702638] mount_fs+0x66/0x2d0 [ 48.705996] vfs_kern_mount.part.26+0xc6/0x4a0 [ 48.710569] ? may_umount+0xa0/0xa0 [ 48.714187] ? _raw_read_unlock+0x22/0x30 [ 48.718319] ? __get_fs_type+0x8a/0xc0 [ 48.722200] do_mount+0xea4/0x2bb0 [ 48.725741] ? copy_mount_string+0x40/0x40 [ 48.729962] ? rcu_pm_notify+0xc0/0xc0 [ 48.733851] ? copy_mount_options+0x5f/0x2e0 [ 48.738245] ? rcu_read_lock_sched_held+0x108/0x120 [ 48.743253] ? kmem_cache_alloc_trace+0x459/0x740 [ 48.748088] ? kasan_check_write+0x14/0x20 [ 48.752323] ? copy_mount_options+0x1f7/0x2e0 [ 48.756816] SyS_mount+0xab/0x120 [ 48.760266] ? copy_mnt_ns+0xb30/0xb30 [ 48.764147] do_syscall_64+0x281/0x940 [ 48.768024] ? __do_page_fault+0xc90/0xc90 [ 48.772251] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 48.776997] ? syscall_return_slowpath+0x550/0x550 [ 48.781920] ? syscall_return_slowpath+0x2ac/0x550 [ 48.786843] ? prepare_exit_to_usermode+0x350/0x350 [ 48.791851] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 48.797214] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 48.802057] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 48.807229] RIP: 0033:0x442ab9 [ 48.810403] RSP: 002b:00007fffbb2ce7d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 48.818096] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000442ab9 [ 48.825355] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 48.832614] RBP: 00007fffbb2cf080 R08: 0000000020000300 R09: 0000000300000000 [ 48.839867] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff [ 48.847120] R13: 0000000000000004 R14: 0000000000001380 R15: 00007fffbb2ce918 [ 48.854412] CPU: 0 PID: 4450 Comm: syzkaller588725 Not tainted 4.16.0-rc6+ #40 [ 48.861773] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 48.871122] Call Trace: [ 48.873718] dump_stack+0x194/0x24d [ 48.877355] ? arch_local_irq_restore+0x53/0x53 [ 48.882022] ? __save_stack_trace+0x7e/0xd0 [ 48.886362] should_fail+0x8c0/0xa40 [ 48.890079] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 48.895161] ? kasan_kmalloc+0xad/0xe0 [ 48.899029] ? kmem_cache_alloc_trace+0x136/0x740 [ 48.903857] ? __memcg_init_list_lru_node+0x169/0x270 [ 48.909109] ? __list_lru_init+0x544/0x750 [ 48.913319] ? sget_userns+0x6b1/0xe40 [ 48.917186] ? vfs_kern_mount.part.26+0xc6/0x4a0 [ 48.921919] ? do_mount+0xea4/0x2bb0 [ 48.925615] ? SyS_mount+0xab/0x120 [ 48.929219] ? do_syscall_64+0x281/0x940 [ 48.933257] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 48.938602] ? find_held_lock+0x35/0x1d0 [ 48.942653] ? __lock_is_held+0xb6/0x140 [ 48.946703] ? check_same_owner+0x320/0x320 [ 48.951005] ? rcu_note_context_switch+0x710/0x710 [ 48.955925] should_failslab+0xec/0x120 [ 48.959880] kmem_cache_alloc_trace+0x4b/0x740 [ 48.964447] ? __kmalloc_node+0x33/0x70 [ 48.968405] ? __kmalloc_node+0x33/0x70 [ 48.972359] ? rcu_read_lock_sched_held+0x108/0x120 [ 48.977358] __memcg_init_list_lru_node+0x169/0x270 [ 48.982354] ? list_lru_add+0x7c0/0x7c0 [ 48.986314] ? __kmalloc_node+0x47/0x70 [ 48.990286] __list_lru_init+0x544/0x750 [ 48.994335] ? memcg_destroy_list_lru_node.isra.7+0x110/0x110 [ 49.000197] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 49.005224] ? lockdep_init_map+0x9/0x10 [ 49.009269] sget_userns+0x6b1/0xe40 [ 49.012961] ? set_anon_super+0x20/0x20 [ 49.016923] ? put_filp+0x90/0x90 [ 49.020355] ? destroy_unused_super.part.6+0xd0/0xd0 [ 49.025436] ? __alloc_pages_slowpath+0x2d10/0x2d10 [ 49.030432] ? trace_hardirqs_off+0x10/0x10 [ 49.034731] ? putname+0xee/0x130 [ 49.038163] ? cap_capable+0x1b5/0x230 [ 49.042044] ? security_capable+0x8e/0xc0 [ 49.046176] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 49.051349] ? ns_capable_common+0xcf/0x160 [ 49.055653] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 49.060816] mount_ns+0x6d/0x190 [ 49.064165] rpc_mount+0x9e/0xd0 [ 49.067507] mount_fs+0x66/0x2d0 [ 49.070854] vfs_kern_mount.part.26+0xc6/0x4a0 [ 49.075416] ? may_umount+0xa0/0xa0 [ 49.079023] ? _raw_read_unlock+0x22/0x30 [ 49.083154] ? __get_fs_type+0x8a/0xc0 [ 49.087035] do_mount+0xea4/0x2bb0 [ 49.090559] ? copy_mount_string+0x40/0x40 [ 49.095879] ? rcu_pm_notify+0xc0/0xc0 [ 49.099755] ? copy_mount_options+0x5f/0x2e0 [ 49.104140] ? rcu_read_lock_sched_held+0x108/0x120 [ 49.109132] ? kmem_cache_alloc_trace+0x459/0x740 [ 49.113952] ? kasan_check_write+0x14/0x20 [ 49.118172] ? copy_mount_options+0x1f7/0x2e0 [ 49.122654] SyS_mount+0xab/0x120 [ 49.126097] ? copy_mnt_ns+0xb30/0xb30 [ 49.129968] do_syscall_64+0x281/0x940 [ 49.133844] ? __do_page_fault+0xc90/0xc90 [ 49.138063] ? trace_event_raw_event_sys_exit+0x260/0x260 [ 49.143584] ? syscall_return_slowpath+0x550/0x550 [ 49.148492] ? syscall_return_slowpath+0x2ac/0x550 [ 49.153403] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 49.158755] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 49.163579] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 49.168741] RIP: 0033:0x442ab9 executing program executing program [ 49.171904] RSP: 002b:00007fffbb2ce7d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 49.179587] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000442ab9 [ 49.186832] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 49.194078] RBP: 00007fffbb2cf080 R08: 0000000020000300 R09: 0000000300000000 [ 49.201331] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff [ 49.208584] R13: 0000000000000004 R14: 0000000000001380 R15: 00007fffbb2ce918 [ 49.221385] ------------[ cut here ]------------ [ 49.226199] refcount_t: increment on 0; use-after-free. [ 49.232007] WARNING: CPU: 1 PID: 4429 at lib/refcount.c:153 refcount_inc+0x47/0x50 [ 49.236400] FAULT_INJECTION: forcing a failure. [ 49.236400] name failslab, interval 1, probability 0, space 0, times 0 [ 49.239712] Kernel panic - not syncing: panic_on_warn set ... [ 49.239712] [ 49.239722] CPU: 1 PID: 4429 Comm: syzkaller588725 Not tainted 4.16.0-rc6+ #40 [ 49.239727] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 49.239730] Call Trace: [ 49.239747] dump_stack+0x194/0x24d [ 49.239761] ? arch_local_irq_restore+0x53/0x53 [ 49.239780] ? vsnprintf+0x1ed/0x1900 [ 49.289531] panic+0x1e4/0x41c [ 49.292715] ? refcount_error_report+0x214/0x214 [ 49.297451] ? show_regs_print_info+0x18/0x18 [ 49.301939] ? __warn+0x1c1/0x200 [ 49.305380] ? refcount_inc+0x47/0x50 [ 49.309166] __warn+0x1dc/0x200 [ 49.312432] ? refcount_inc+0x47/0x50 [ 49.316218] report_bug+0x1f4/0x2b0 [ 49.319835] fixup_bug.part.11+0x37/0x80 [ 49.323882] do_error_trap+0x2d7/0x3e0 [ 49.327755] ? vprintk_default+0x28/0x30 [ 49.331807] ? math_error+0x400/0x400 [ 49.335593] ? printk+0xaa/0xca [ 49.338859] ? show_regs_print_info+0x18/0x18 [ 49.343354] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 49.348189] do_invalid_op+0x1b/0x20 [ 49.351886] invalid_op+0x1b/0x40 [ 49.355322] RIP: 0010:refcount_inc+0x47/0x50 [ 49.359707] RSP: 0018:ffff8801b1d87860 EFLAGS: 00010286 [ 49.365054] RAX: dffffc0000000008 RBX: ffff8801b164a204 RCX: ffffffff815ba4be [ 49.372305] RDX: 0000000000000000 RSI: 1ffff100363b0ebc RDI: 1ffff100363b0e91 [ 49.384593] RBP: ffff8801b1d87868 R08: 0000000000000000 R09: 0000000000000000 [ 49.391850] R10: 0000000000000000 R11: 0000000000000000 R12: ffff8801b1d87af8 [ 49.399106] R13: ffff8801c5c50a93 R14: ffff8801b164a200 R15: ffff8801c5c50b01 [ 49.406379] ? vprintk_func+0x5e/0xc0 [ 49.410175] sk_alloc+0x3f9/0x1440 [ 49.413704] ? sock_def_error_report+0x5e0/0x5e0 [ 49.418440] ? __raw_spin_lock_init+0x2d/0x100 [ 49.423013] ? trace_hardirqs_off+0x10/0x10 [ 49.427319] ? do_raw_write_unlock+0x290/0x290 [ 49.431887] ? trace_hardirqs_off+0x10/0x10 [ 49.436188] ? __raw_spin_lock_init+0x1c/0x100 [ 49.440756] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 49.445760] ? find_held_lock+0x35/0x1d0 [ 49.449818] ? inet_create+0x3fc/0xf50 [ 49.453688] ? lock_downgrade+0x980/0x980 [ 49.457826] ? lock_release+0xa40/0xa40 [ 49.461783] ? lock_downgrade+0x980/0x980 [ 49.465939] inet_create+0x47c/0xf50 [ 49.469645] ? ipip_gro_receive+0xf0/0xf0 [ 49.473780] ? __lock_is_held+0xb6/0x140 [ 49.477846] __sock_create+0x4d4/0x850 [ 49.481726] ? kernel_sock_ip_overhead+0x4c0/0x4c0 [ 49.486648] ? user_path_create+0x40/0x40 [ 49.490795] SyS_socket+0xeb/0x1d0 [ 49.494322] ? move_addr_to_kernel+0x60/0x60 [ 49.498717] ? do_syscall_64+0xb7/0x940 [ 49.502684] ? move_addr_to_kernel+0x60/0x60 [ 49.507078] do_syscall_64+0x281/0x940 [ 49.510947] ? __do_page_fault+0xc90/0xc90 [ 49.515169] ? trace_event_raw_event_sys_exit+0x260/0x260 [ 49.520694] ? syscall_return_slowpath+0x550/0x550 [ 49.525607] ? syscall_return_slowpath+0x2ac/0x550 [ 49.530526] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 49.535888] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 49.540721] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 49.545892] RIP: 0033:0x445537 [ 49.549061] RSP: 002b:00007fffbb2ce7d8 EFLAGS: 00000206 ORIG_RAX: 0000000000000029 [ 49.556748] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000445537 [ 49.563998] RDX: 0000000000000006 RSI: 0000000000000001 RDI: 0000000000000002 [ 49.571252] RBP: 00007fffbb2ce8f0 R08: 0000000000000000 R09: 0000000000000001 [ 49.578505] R10: 0000000000000006 R11: 0000000000000206 R12: 0000000000000002 [ 49.585755] R13: 0000000000000002 R14: 000000000000b6c3 R15: 00007fffbb2ce918 [ 49.593040] CPU: 0 PID: 4457 Comm: syzkaller588725 Not tainted 4.16.0-rc6+ #40 [ 49.600391] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 49.609723] Call Trace: [ 49.612300] dump_stack+0x194/0x24d [ 49.615911] ? arch_local_irq_restore+0x53/0x53 [ 49.620560] ? find_held_lock+0x35/0x1d0 [ 49.624611] should_fail+0x8c0/0xa40 [ 49.628301] ? __list_lru_init+0x352/0x750 [ 49.632516] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 49.637599] ? trace_hardirqs_off+0x10/0x10 [ 49.641900] ? find_next_zero_bit+0xe3/0x110 [ 49.646293] ? trace_hardirqs_off+0x10/0x10 [ 49.650600] ? find_held_lock+0x35/0x1d0 [ 49.654648] ? __lock_is_held+0xb6/0x140 [ 49.658703] ? check_same_owner+0x320/0x320 [ 49.663003] ? lock_downgrade+0x980/0x980 [ 49.667134] ? rcu_note_context_switch+0x710/0x710 [ 49.672042] ? find_held_lock+0x35/0x1d0 [ 49.676088] should_failslab+0xec/0x120 [ 49.680040] __kmalloc+0x63/0x760 [ 49.683488] ? lock_downgrade+0x980/0x980 [ 49.687619] ? register_shrinker+0x10e/0x2d0 [ 49.692011] ? trace_event_raw_event_module_request+0x320/0x320 [ 49.698054] register_shrinker+0x10e/0x2d0 [ 49.702271] ? __bpf_trace_mm_vmscan_wakeup_kswapd+0x40/0x40 [ 49.708049] ? memcpy+0x45/0x50 [ 49.711313] sget_userns+0xbbf/0xe40 [ 49.715007] ? set_anon_super+0x20/0x20 [ 49.718965] ? put_filp+0x90/0x90 [ 49.722401] ? destroy_unused_super.part.6+0xd0/0xd0 [ 49.727490] ? __alloc_pages_slowpath+0x2d10/0x2d10 [ 49.732493] ? trace_hardirqs_off+0x10/0x10 [ 49.736795] ? putname+0xee/0x130 [ 49.740231] ? cap_capable+0x1b5/0x230 [ 49.744104] ? security_capable+0x8e/0xc0 [ 49.748236] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 49.753401] ? ns_capable_common+0xcf/0x160 [ 49.757705] ? rpc_remove_pipe_dir_object+0x6d0/0x6d0 [ 49.762872] mount_ns+0x6d/0x190 [ 49.766223] rpc_mount+0x9e/0xd0 [ 49.769571] mount_fs+0x66/0x2d0 [ 49.772921] vfs_kern_mount.part.26+0xc6/0x4a0 [ 49.777482] ? may_umount+0xa0/0xa0 [ 49.781092] ? _raw_read_unlock+0x22/0x30 [ 49.785217] ? __get_fs_type+0x8a/0xc0 [ 49.789090] do_mount+0xea4/0x2bb0 [ 49.792623] ? copy_mount_string+0x40/0x40 [ 49.796837] ? rcu_pm_notify+0xc0/0xc0 [ 49.800715] ? copy_mount_options+0x5f/0x2e0 [ 49.805103] ? rcu_read_lock_sched_held+0x108/0x120 [ 49.810098] ? kmem_cache_alloc_trace+0x459/0x740 [ 49.814921] ? kasan_check_write+0x14/0x20 [ 49.819139] ? _copy_from_user+0x99/0x110 [ 49.823273] ? copy_mount_options+0x1f7/0x2e0 [ 49.827753] SyS_mount+0xab/0x120 [ 49.831186] ? copy_mnt_ns+0xb30/0xb30 [ 49.835057] do_syscall_64+0x281/0x940 [ 49.838921] ? __do_page_fault+0xc90/0xc90 [ 49.843140] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 49.847876] ? syscall_return_slowpath+0x550/0x550 [ 49.852786] ? syscall_return_slowpath+0x2ac/0x550 [ 49.857697] ? prepare_exit_to_usermode+0x350/0x350 [ 49.862697] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 49.868044] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 49.872872] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 49.878040] RIP: 0033:0x442ab9 [ 49.881207] RSP: 002b:00007fffbb2ce7d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 49.888896] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000442ab9 [ 49.896146] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 49.903395] RBP: 00007fffbb2cf080 R08: 0000000020000300 R09: 0000000300000000 [ 49.910643] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff [ 49.917893] R13: 0000000000000004 R14: 0000000000001380 R15: 00007fffbb2ce918 [ 49.925617] Dumping ftrace buffer: [ 49.929302] (ftrace buffer empty) [ 49.932988] Kernel Offset: disabled [ 49.936593] Rebooting in 86400 seconds..