[....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[ 20.480665] random: sshd: uninitialized urandom read (32 bytes read) [?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 24.416396] random: sshd: uninitialized urandom read (32 bytes read) [ 24.867437] random: sshd: uninitialized urandom read (32 bytes read) [ 25.612904] random: sshd: uninitialized urandom read (32 bytes read) [ 25.773154] random: sshd: uninitialized urandom read (32 bytes read) Warning: Permanently added '10.128.10.46' (ECDSA) to the list of known hosts. [ 31.241693] random: sshd: uninitialized urandom read (32 bytes read) [ 31.355265] IPVS: ftp: loaded support on port[0] = 21 [ 31.376391] IPVS: ftp: loaded support on port[0] = 21 [ 31.377527] IPVS: ftp: loaded support on port[0] = 21 [ 31.382470] IPVS: ftp: loaded support on port[0] = 21 [ 31.392410] IPVS: ftp: loaded support on port[0] = 21 [ 31.392510] IPVS: ftp: loaded support on port[0] = 21 [ 31.398779] IPVS: ftp: loaded support on port[0] = 21 [ 31.408793] IPVS: ftp: loaded support on port[0] = 21 [ 31.608698] FAULT_INJECTION: forcing a failure. [ 31.608698] name failslab, interval 1, probability 0, space 0, times 1 [ 31.620221] CPU: 0 PID: 4536 Comm: syz-executor214 Not tainted 4.17.0-rc4+ #44 [ 31.625810] FAULT_INJECTION: forcing a failure. [ 31.625810] name failslab, interval 1, probability 0, space 0, times 1 [ 31.627586] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 31.627592] Call Trace: [ 31.627617] dump_stack+0x1b9/0x294 [ 31.627641] ? dump_stack_print_info.cold.2+0x52/0x52 [ 31.659934] ? __mutex_lock+0x7d9/0x17f0 [ 31.663996] should_fail.cold.4+0xa/0x1a [ 31.668142] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 31.673244] ? kasan_kmalloc+0xc4/0xe0 [ 31.677220] ? graph_lock+0x170/0x170 [ 31.681024] ? find_held_lock+0x36/0x1c0 [ 31.685089] ? __lock_is_held+0xb5/0x140 [ 31.689158] ? check_same_owner+0x320/0x320 [ 31.693474] ? kasan_check_write+0x14/0x20 [ 31.697706] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 31.702633] ? rcu_note_context_switch+0x710/0x710 [ 31.707562] __should_failslab+0x124/0x180 [ 31.711798] should_failslab+0x9/0x14 [ 31.715596] kmem_cache_alloc+0x2af/0x760 [ 31.719739] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 31.724672] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 31.729729] __kernfs_new_node+0xe7/0x580 [ 31.733876] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 31.738642] ? mutex_unlock+0xd/0x10 [ 31.742437] ? kernfs_activate+0x20e/0x2a0 [ 31.746668] ? kernfs_walk_and_get_ns+0x320/0x320 [ 31.751533] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 31.757065] ? kernfs_link_sibling+0x1d2/0x3b0 [ 31.761646] kernfs_new_node+0x80/0xf0 [ 31.765532] __kernfs_create_file+0x4d/0x330 [ 31.769940] sysfs_add_file_mode_ns+0x21a/0x560 [ 31.774610] sysfs_add_file+0x4e/0x60 [ 31.778411] sysfs_merge_group+0xfa/0x230 [ 31.784383] dpm_sysfs_add+0x161/0x210 [ 31.788266] device_add+0xa11/0x16d0 [ 31.791982] ? device_private_init+0x230/0x230 [ 31.796559] ? kfree+0x1e9/0x260 [ 31.799924] ? kfree_const+0x5e/0x70 [ 31.803637] device_create_groups_vargs+0x1ff/0x270 [ 31.808650] device_create_vargs+0x46/0x60 [ 31.812983] bdi_register_va.part.10+0xbb/0x9b0 [ 31.817650] ? cgwb_kill+0x630/0x630 [ 31.821360] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 31.826892] ? bdi_init+0x416/0x510 [ 31.830515] ? wb_init+0x9e0/0x9e0 [ 31.834054] ? bdi_alloc_node+0x67/0xe0 [ 31.838027] ? bdi_alloc_node+0x67/0xe0 [ 31.841995] ? rcu_read_lock_sched_held+0x108/0x120 [ 31.847011] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 31.852292] ? _raw_spin_unlock+0x22/0x30 [ 31.856439] bdi_register_va+0x68/0x80 [ 31.860327] super_setup_bdi_name+0x123/0x220 [ 31.864819] ? kill_block_super+0x100/0x100 [ 31.869137] ? kmem_cache_alloc_trace+0x616/0x780 [ 31.873976] ? match_wildcard+0x3c0/0x3c0 [ 31.878124] ? trace_hardirqs_on+0xd/0x10 [ 31.882271] fuse_fill_super+0xe6e/0x1e20 [ 31.886420] ? fuse_get_root_inode+0x190/0x190 [ 31.891001] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 31.896025] ? kasan_check_read+0x11/0x20 [ 31.900181] ? cap_capable+0x1f9/0x260 [ 31.904257] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 31.909791] ? security_capable+0x99/0xc0 [ 31.913939] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 31.919474] ? ns_capable_common+0x13f/0x170 [ 31.923883] ? get_anon_bdev+0x2f0/0x2f0 [ 31.927943] ? sget+0x113/0x150 [ 31.931222] ? fuse_get_root_inode+0x190/0x190 [ 31.935800] mount_nodev+0x6b/0x110 [ 31.939424] fuse_mount+0x2c/0x40 [ 31.942873] mount_fs+0xae/0x328 [ 31.946238] vfs_kern_mount.part.34+0xd4/0x4d0 [ 31.950816] ? may_umount+0xb0/0xb0 [ 31.954438] ? _raw_read_unlock+0x22/0x30 [ 31.958581] ? __get_fs_type+0x97/0xc0 [ 31.962491] do_mount+0x564/0x3070 [ 31.966125] ? do_raw_spin_unlock+0x9e/0x2e0 [ 31.970545] ? copy_mount_string+0x40/0x40 [ 31.974776] ? rcu_pm_notify+0xc0/0xc0 [ 31.978666] ? copy_mount_options+0x5f/0x380 [ 31.983068] ? rcu_read_lock_sched_held+0x108/0x120 [ 31.988096] ? kmem_cache_alloc_trace+0x616/0x780 [ 31.992937] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 31.998476] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 32.004007] ? copy_mount_options+0x285/0x380 [ 32.008508] ksys_mount+0x12d/0x140 [ 32.012133] __x64_sys_mount+0xbe/0x150 [ 32.016101] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 32.021115] do_syscall_64+0x1b1/0x800 [ 32.024999] ? finish_task_switch+0x1ca/0x810 [ 32.029497] ? syscall_return_slowpath+0x5c0/0x5c0 [ 32.034509] ? syscall_return_slowpath+0x30f/0x5c0 [ 32.039440] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 32.044972] ? retint_user+0x18/0x18 [ 32.048687] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 32.053544] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 32.058729] RIP: 0033:0x447cb9 [ 32.061913] RSP: 002b:00007f7a75bca918 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 32.069637] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000447cb9 [ 32.076909] RDX: 00000000004b08d6 RSI: 0000000020000340 RDI: 00000000004c7485 [ 32.084171] RBP: 000000000000a001 R08: 00007f7a75bca930 R09: 0000000000000000 [ 32.091445] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 32.098706] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 32.105988] CPU: 1 PID: 4538 Comm: syz-executor214 Not tainted 4.17.0-rc4+ #44 [ 32.113372] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 32.122805] Call Trace: [ 32.125428] dump_stack+0x1b9/0x294 [ 32.129131] ? dump_stack_print_info.cold.2+0x52/0x52 [ 32.132145] FAULT_INJECTION: forcing a failure. [ 32.132145] name failslab, interval 1, probability 0, space 0, times 0 [ 32.134389] ? __lock_acquire+0x28fb/0x5140 [ 32.134406] ? kasan_check_read+0x11/0x20 [ 32.134425] ? __lock_acquire+0x28fb/0x5140 [ 32.158363] should_fail.cold.4+0xa/0x1a [ 32.162423] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 32.167528] ? debug_check_no_locks_freed+0x310/0x310 [ 32.172717] ? kasan_check_write+0x14/0x20 [ 32.176946] ? __init_rwsem+0x1c4/0x290 [ 32.180915] ? graph_lock+0x170/0x170 [ 32.184715] ? find_held_lock+0x36/0x1c0 [ 32.188771] ? __lock_is_held+0xb5/0x140 [ 32.192839] ? check_same_owner+0x320/0x320 [ 32.197155] ? graph_lock+0x170/0x170 [ 32.200951] ? rcu_note_context_switch+0x710/0x710 [ 32.205887] __should_failslab+0x124/0x180 [ 32.210120] should_failslab+0x9/0x14 [ 32.213914] kmem_cache_alloc+0x2af/0x760 [ 32.218057] ? find_held_lock+0x36/0x1c0 [ 32.222122] fuse_alloc_inode+0x96/0x4f0 [ 32.226180] ? fuse_dev_alloc+0x4e0/0x4e0 [ 32.230320] ? lock_downgrade+0x8e0/0x8e0 [ 32.234469] ? kasan_check_read+0x11/0x20 [ 32.238615] ? do_raw_spin_unlock+0x9e/0x2e0 [ 32.243023] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 32.247644] ? kasan_check_write+0x14/0x20 [ 32.251874] ? find_inode.isra.19+0xc3/0x1d0 [ 32.256280] ? fuse_dev_alloc+0x4e0/0x4e0 [ 32.260421] alloc_inode+0x63/0x190 [ 32.264046] iget5_locked+0x20e/0x570 [ 32.267844] ? fuse_inode_eq+0x80/0x80 [ 32.271742] ? fuse_init_file_inode+0x70/0x70 [ 32.276239] ? inode_lru_isolate+0x580/0x580 [ 32.280641] ? cgwb_kill+0x630/0x630 [ 32.284356] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 32.289885] ? print_usage_bug+0xc0/0xc0 [ 32.293946] fuse_iget+0x1cc/0x820 [ 32.297494] ? fuse_change_attributes+0x810/0x810 [ 32.302337] ? _raw_spin_unlock+0x22/0x30 [ 32.306494] fuse_get_root_inode+0x121/0x190 [ 32.310902] ? fuse_iget+0x820/0x820 [ 32.314633] ? _raw_spin_unlock_bh+0x30/0x40 [ 32.319041] ? bdi_set_max_ratio+0x112/0x150 [ 32.323448] fuse_fill_super+0x11e0/0x1e20 [ 32.327686] ? fuse_get_root_inode+0x190/0x190 [ 32.332269] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 32.337284] ? kasan_check_read+0x11/0x20 [ 32.341431] ? cap_capable+0x1f9/0x260 [ 32.345336] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 32.350867] ? security_capable+0x99/0xc0 [ 32.355027] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 32.360683] ? ns_capable_common+0x13f/0x170 [ 32.365097] ? get_anon_bdev+0x2f0/0x2f0 [ 32.369154] ? sget+0x113/0x150 [ 32.372434] ? fuse_get_root_inode+0x190/0x190 [ 32.377027] mount_nodev+0x6b/0x110 [ 32.380654] fuse_mount+0x2c/0x40 [ 32.384985] mount_fs+0xae/0x328 [ 32.388358] vfs_kern_mount.part.34+0xd4/0x4d0 [ 32.392938] ? may_umount+0xb0/0xb0 [ 32.396561] ? _raw_read_unlock+0x22/0x30 [ 32.400704] ? __get_fs_type+0x97/0xc0 [ 32.404618] do_mount+0x564/0x3070 [ 32.408159] ? do_raw_spin_unlock+0x9e/0x2e0 [ 32.412568] ? copy_mount_string+0x40/0x40 [ 32.416798] ? rcu_pm_notify+0xc0/0xc0 [ 32.420693] ? copy_mount_options+0x5f/0x380 [ 32.425097] ? rcu_read_lock_sched_held+0x108/0x120 [ 32.430110] ? kmem_cache_alloc_trace+0x616/0x780 [ 32.434952] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 32.440499] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 32.446032] ? copy_mount_options+0x285/0x380 [ 32.450524] ksys_mount+0x12d/0x140 [ 32.454149] __x64_sys_mount+0xbe/0x150 [ 32.458116] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 32.463131] do_syscall_64+0x1b1/0x800 [ 32.467017] ? finish_task_switch+0x1ca/0x810 [ 32.471507] ? syscall_return_slowpath+0x5c0/0x5c0 [ 32.476435] ? syscall_return_slowpath+0x30f/0x5c0 [ 32.481369] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 32.486904] ? retint_user+0x18/0x18 [ 32.490617] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 32.495458] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 32.500643] RIP: 0033:0x447cb9 [ 32.503848] RSP: 002b:00007f7a75bca918 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 32.511559] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000447cb9 [ 32.518820] RDX: 00000000004b08d6 RSI: 0000000020000340 RDI: 00000000004c7485 [ 32.526084] RBP: 000000000000a001 R08: 00007f7a75bca930 R09: 0000000000000000 [ 32.533348] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 32.540611] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 32.547897] CPU: 0 PID: 4544 Comm: syz-executor214 Not tainted 4.17.0-rc4+ #44 [ 32.555267] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 32.564633] Call Trace: [ 32.567241] dump_stack+0x1b9/0x294 [ 32.570888] ? dump_stack_print_info.cold.2+0x52/0x52 [ 32.576097] ? __lock_acquire+0x7f5/0x5140 [ 32.580352] ? __lock_acquire+0x7f5/0x5140 [ 32.584610] should_fail.cold.4+0xa/0x1a [ 32.585434] FAULT_INJECTION: forcing a failure. [ 32.585434] name failslab, interval 1, probability 0, space 0, times 0 [ 32.588681] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 32.588702] ? debug_check_no_locks_freed+0x310/0x310 [ 32.588720] ? kasan_check_write+0x14/0x20 [ 32.588735] ? __init_rwsem+0x1c4/0x290 [ 32.588748] ? graph_lock+0x170/0x170 [ 32.588768] ? find_held_lock+0x36/0x1c0 [ 32.588784] ? find_held_lock+0x36/0x1c0 [ 32.630307] ? __lock_is_held+0xb5/0x140 [ 32.634375] ? check_same_owner+0x320/0x320 [ 32.638692] ? graph_lock+0x170/0x170 [ 32.642502] ? rcu_note_context_switch+0x710/0x710 [ 32.647520] __should_failslab+0x124/0x180 [ 32.651759] should_failslab+0x9/0x14 [ 32.655566] kmem_cache_alloc+0x2af/0x760 [ 32.659708] ? find_held_lock+0x36/0x1c0 [ 32.663769] fuse_alloc_inode+0x96/0x4f0 [ 32.667829] ? fuse_dev_alloc+0x4e0/0x4e0 [ 32.671978] ? lock_downgrade+0x8e0/0x8e0 [ 32.676131] ? kasan_check_read+0x11/0x20 [ 32.680540] ? do_raw_spin_unlock+0x9e/0x2e0 [ 32.684955] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 32.689540] ? kasan_check_write+0x14/0x20 [ 32.693774] ? find_inode.isra.19+0xc3/0x1d0 [ 32.698180] ? fuse_dev_alloc+0x4e0/0x4e0 [ 32.702325] alloc_inode+0x63/0x190 [ 32.705947] iget5_locked+0x20e/0x570 [ 32.709749] ? fuse_inode_eq+0x80/0x80 [ 32.713634] ? fuse_init_file_inode+0x70/0x70 [ 32.718130] ? inode_lru_isolate+0x580/0x580 [ 32.723053] ? cgwb_kill+0x630/0x630 [ 32.726767] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 32.732297] ? print_usage_bug+0xc0/0xc0 [ 32.736354] fuse_iget+0x1cc/0x820 [ 32.739898] ? fuse_change_attributes+0x810/0x810 [ 32.744749] ? _raw_spin_unlock+0x22/0x30 [ 32.748901] fuse_get_root_inode+0x121/0x190 [ 32.753304] ? fuse_iget+0x820/0x820 [ 32.757033] ? _raw_spin_unlock_bh+0x30/0x40 [ 32.761440] ? bdi_set_max_ratio+0x112/0x150 [ 32.765842] fuse_fill_super+0x11e0/0x1e20 [ 32.770078] ? fuse_get_root_inode+0x190/0x190 [ 32.774658] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 32.779677] ? kasan_check_read+0x11/0x20 [ 32.783824] ? cap_capable+0x1f9/0x260 [ 32.787714] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 32.793263] ? security_capable+0x99/0xc0 [ 32.797416] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 32.802955] ? ns_capable_common+0x13f/0x170 [ 32.807359] ? get_anon_bdev+0x2f0/0x2f0 [ 32.811413] ? sget+0x113/0x150 [ 32.814692] ? fuse_get_root_inode+0x190/0x190 [ 32.819267] mount_nodev+0x6b/0x110 [ 32.822891] fuse_mount+0x2c/0x40 [ 32.826342] mount_fs+0xae/0x328 [ 32.829707] vfs_kern_mount.part.34+0xd4/0x4d0 [ 32.834285] ? may_umount+0xb0/0xb0 [ 32.837906] ? _raw_read_unlock+0x22/0x30 [ 32.842048] ? __get_fs_type+0x97/0xc0 [ 32.845933] do_mount+0x564/0x3070 [ 32.849476] ? copy_mount_string+0x40/0x40 [ 32.853708] ? rcu_pm_notify+0xc0/0xc0 [ 32.857594] ? copy_mount_options+0x5f/0x380 [ 32.861994] ? rcu_read_lock_sched_held+0x108/0x120 [ 32.867005] ? kmem_cache_alloc_trace+0x616/0x780 [ 32.871854] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 32.877579] ? _copy_from_user+0xdf/0x150 [ 32.881728] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 32.887258] ? copy_mount_options+0x285/0x380 [ 32.891923] ksys_mount+0x12d/0x140 [ 32.895554] __x64_sys_mount+0xbe/0x150 [ 32.899522] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 32.904543] do_syscall_64+0x1b1/0x800 [ 32.908430] ? finish_task_switch+0x1ca/0x810 [ 32.912923] ? syscall_return_slowpath+0x5c0/0x5c0 [ 32.917857] ? syscall_return_slowpath+0x30f/0x5c0 [ 32.922789] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 32.928321] ? retint_user+0x18/0x18 [ 32.932037] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 32.936881] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 32.942061] RIP: 0033:0x447cb9 [ 32.945240] RSP: 002b:00007f7a75bca918 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 32.952950] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000447cb9 [ 32.960233] RDX: 00000000004b08d6 RSI: 0000000020000340 RDI: 00000000004c7485 [ 32.967498] RBP: 000000000000a001 R08: 00007f7a75bca930 R09: 0000000000000000 [ 32.974759] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 32.982106] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 32.989393] CPU: 1 PID: 4549 Comm: syz-executor214 Not tainted 4.17.0-rc4+ #44 [ 32.996773] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 33.005377] FAULT_INJECTION: forcing a failure. [ 33.005377] name failslab, interval 1, probability 0, space 0, times 0 [ 33.006151] Call Trace: [ 33.006176] dump_stack+0x1b9/0x294 [ 33.006200] ? dump_stack_print_info.cold.2+0x52/0x52 [ 33.028733] ? d_add+0x605/0xa10 [ 33.032096] ? lock_downgrade+0x8e0/0x8e0 [ 33.036235] ? __kernel_text_address+0xd/0x40 [ 33.040734] should_fail.cold.4+0xa/0x1a [ 33.044800] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 33.049902] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 33.054915] ? graph_lock+0x170/0x170 [ 33.058714] ? __lockdep_init_map+0x105/0x590 [ 33.063207] ? find_held_lock+0x36/0x1c0 [ 33.067282] ? __lock_is_held+0xb5/0x140 [ 33.071358] ? check_same_owner+0x320/0x320 [ 33.075703] ? rcu_note_context_switch+0x710/0x710 [ 33.080631] __should_failslab+0x124/0x180 [ 33.084866] should_failslab+0x9/0x14 [ 33.088666] kmem_cache_alloc+0x2af/0x760 [ 33.092816] alloc_inode+0xb2/0x190 [ 33.096441] new_inode_pseudo+0x69/0x1a0 [ 33.100500] ? prune_icache_sb+0x1a0/0x1a0 [ 33.104735] ? down_read+0x1b0/0x1b0 [ 33.108448] ? mntput+0x74/0xa0 [ 33.111726] new_inode+0x1c/0x40 [ 33.115093] debugfs_get_inode+0x19/0x120 [ 33.119242] __debugfs_create_file+0xb5/0x400 [ 33.123738] debugfs_create_file+0x57/0x70 [ 33.127971] bdi_register_va.part.10+0x365/0x9b0 [ 33.132723] ? cgwb_kill+0x630/0x630 [ 33.136441] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 33.141973] ? bdi_init+0x416/0x510 [ 33.145596] ? wb_init+0x9e0/0x9e0 [ 33.149132] ? bdi_alloc_node+0x67/0xe0 [ 33.153101] ? bdi_alloc_node+0x67/0xe0 [ 33.157069] ? rcu_read_lock_sched_held+0x108/0x120 [ 33.162080] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 33.167359] ? _raw_spin_unlock+0x22/0x30 [ 33.171509] bdi_register_va+0x68/0x80 [ 33.175398] super_setup_bdi_name+0x123/0x220 [ 33.179896] ? kill_block_super+0x100/0x100 [ 33.184212] ? kmem_cache_alloc_trace+0x616/0x780 [ 33.189051] ? match_wildcard+0x3c0/0x3c0 [ 33.193194] ? trace_hardirqs_on+0xd/0x10 [ 33.197343] fuse_fill_super+0xe6e/0x1e20 [ 33.201494] ? fuse_get_root_inode+0x190/0x190 [ 33.206074] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 33.211088] ? kasan_check_read+0x11/0x20 [ 33.215236] ? cap_capable+0x1f9/0x260 [ 33.219122] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 33.224651] ? security_capable+0x99/0xc0 [ 33.228800] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 33.234331] ? ns_capable_common+0x13f/0x170 [ 33.238736] ? get_anon_bdev+0x2f0/0x2f0 [ 33.242793] ? sget+0x113/0x150 [ 33.246072] ? fuse_get_root_inode+0x190/0x190 [ 33.250647] mount_nodev+0x6b/0x110 [ 33.254273] fuse_mount+0x2c/0x40 [ 33.257721] mount_fs+0xae/0x328 [ 33.261100] vfs_kern_mount.part.34+0xd4/0x4d0 [ 33.265689] ? may_umount+0xb0/0xb0 [ 33.269320] ? _raw_read_unlock+0x22/0x30 [ 33.273461] ? __get_fs_type+0x97/0xc0 [ 33.277352] do_mount+0x564/0x3070 [ 33.280891] ? do_raw_spin_unlock+0x9e/0x2e0 [ 33.285297] ? copy_mount_string+0x40/0x40 [ 33.289646] ? rcu_pm_notify+0xc0/0xc0 [ 33.293539] ? copy_mount_options+0x5f/0x380 [ 33.297941] ? rcu_read_lock_sched_held+0x108/0x120 [ 33.302956] ? kmem_cache_alloc_trace+0x616/0x780 [ 33.307799] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 33.313337] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 33.318886] ? copy_mount_options+0x285/0x380 [ 33.323433] ksys_mount+0x12d/0x140 [ 33.327074] __x64_sys_mount+0xbe/0x150 [ 33.331043] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 33.337535] do_syscall_64+0x1b1/0x800 [ 33.341425] ? finish_task_switch+0x1ca/0x810 [ 33.345926] ? syscall_return_slowpath+0x5c0/0x5c0 [ 33.350854] ? syscall_return_slowpath+0x30f/0x5c0 [ 33.355782] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 33.361312] ? retint_user+0x18/0x18 [ 33.365026] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 33.369867] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 33.375052] RIP: 0033:0x447cb9 [ 33.378249] RSP: 002b:00007f7a75bca918 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 33.385950] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000447cb9 [ 33.393473] RDX: 00000000004b08d6 RSI: 0000000020000340 RDI: 00000000004c7485 [ 33.400748] RBP: 000000000000a001 R08: 00007f7a75bca930 R09: 0000000000000000 [ 33.408707] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 33.415972] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 33.423268] CPU: 0 PID: 4543 Comm: syz-executor214 Not tainted 4.17.0-rc4+ #44 [ 33.430645] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 33.440011] Call Trace: [ 33.442623] dump_stack+0x1b9/0x294 [ 33.446272] ? dump_stack_print_info.cold.2+0x52/0x52 [ 33.451482] ? d_add+0x605/0xa10 [ 33.454868] ? lock_downgrade+0x8e0/0x8e0 [ 33.455210] FAULT_INJECTION: forcing a failure. [ 33.455210] name failslab, interval 1, probability 0, space 0, times 0 [ 33.459046] ? __kernel_text_address+0xd/0x40 [ 33.459068] should_fail.cold.4+0xa/0x1a [ 33.459085] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 33.459104] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 33.459120] ? graph_lock+0x170/0x170 [ 33.459132] ? __lockdep_init_map+0x105/0x590 [ 33.459147] ? find_held_lock+0x36/0x1c0 [ 33.459167] ? __lock_is_held+0xb5/0x140 [ 33.505671] ? check_same_owner+0x320/0x320 [ 33.509994] ? rcu_note_context_switch+0x710/0x710 [ 33.514939] __should_failslab+0x124/0x180 [ 33.519187] should_failslab+0x9/0x14 [ 33.522983] kmem_cache_alloc+0x2af/0x760 [ 33.527134] alloc_inode+0xb2/0x190 [ 33.530759] new_inode_pseudo+0x69/0x1a0 [ 33.534815] ? prune_icache_sb+0x1a0/0x1a0 [ 33.539148] ? down_read+0x1b0/0x1b0 [ 33.542865] ? mntput+0x74/0xa0 [ 33.546147] new_inode+0x1c/0x40 [ 33.550332] debugfs_get_inode+0x19/0x120 [ 33.554476] __debugfs_create_file+0xb5/0x400 [ 33.558972] debugfs_create_file+0x57/0x70 [ 33.563205] bdi_register_va.part.10+0x365/0x9b0 [ 33.567956] ? cgwb_kill+0x630/0x630 [ 33.571686] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 33.577218] ? bdi_init+0x416/0x510 [ 33.580840] ? wb_init+0x9e0/0x9e0 [ 33.584397] ? bdi_alloc_node+0x67/0xe0 [ 33.588366] ? bdi_alloc_node+0x67/0xe0 [ 33.592339] ? rcu_read_lock_sched_held+0x108/0x120 [ 33.597352] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 33.602627] ? _raw_spin_unlock+0x22/0x30 [ 33.606779] bdi_register_va+0x68/0x80 [ 33.610667] super_setup_bdi_name+0x123/0x220 [ 33.615158] ? kill_block_super+0x100/0x100 [ 33.619479] ? kmem_cache_alloc_trace+0x616/0x780 [ 33.624319] ? match_wildcard+0x3c0/0x3c0 [ 33.628463] ? trace_hardirqs_on+0xd/0x10 [ 33.632612] fuse_fill_super+0xe6e/0x1e20 [ 33.636764] ? fuse_get_root_inode+0x190/0x190 [ 33.641345] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 33.646367] ? kasan_check_read+0x11/0x20 [ 33.650521] ? cap_capable+0x1f9/0x260 [ 33.654421] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 33.659952] ? security_capable+0x99/0xc0 [ 33.664099] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 33.669628] ? ns_capable_common+0x13f/0x170 [ 33.674035] ? get_anon_bdev+0x2f0/0x2f0 [ 33.678094] ? sget+0x113/0x150 [ 33.681373] ? fuse_get_root_inode+0x190/0x190 [ 33.685952] mount_nodev+0x6b/0x110 [ 33.689577] fuse_mount+0x2c/0x40 [ 33.693030] mount_fs+0xae/0x328 [ 33.696395] vfs_kern_mount.part.34+0xd4/0x4d0 [ 33.700973] ? may_umount+0xb0/0xb0 [ 33.704596] ? _raw_read_unlock+0x22/0x30 [ 33.708741] ? __get_fs_type+0x97/0xc0 [ 33.712630] do_mount+0x564/0x3070 [ 33.716169] ? do_raw_spin_unlock+0x9e/0x2e0 [ 33.720578] ? copy_mount_string+0x40/0x40 [ 33.724813] ? rcu_pm_notify+0xc0/0xc0 [ 33.728702] ? copy_mount_options+0x5f/0x380 [ 33.733102] ? rcu_read_lock_sched_held+0x108/0x120 [ 33.738114] ? kmem_cache_alloc_trace+0x616/0x780 [ 33.742956] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 33.748499] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 33.754033] ? copy_mount_options+0x285/0x380 [ 33.758527] ksys_mount+0x12d/0x140 [ 33.762153] __x64_sys_mount+0xbe/0x150 [ 33.766122] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 33.771140] do_syscall_64+0x1b1/0x800 [ 33.775025] ? finish_task_switch+0x1ca/0x810 [ 33.779521] ? syscall_return_slowpath+0x5c0/0x5c0 [ 33.784451] ? syscall_return_slowpath+0x30f/0x5c0 [ 33.789379] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 33.794915] ? retint_user+0x18/0x18 [ 33.798632] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 33.803474] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 33.808660] RIP: 0033:0x447cb9 [ 33.811841] RSP: 002b:00007f7a75bca918 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 33.819559] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000447cb9 [ 33.826820] RDX: 00000000004b08d6 RSI: 0000000020000340 RDI: 00000000004c7485 [ 33.834085] RBP: 000000000000a001 R08: 00007f7a75bca930 R09: 0000000000000000 [ 33.841364] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 33.848653] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 33.855938] CPU: 1 PID: 4559 Comm: syz-executor214 Not tainted 4.17.0-rc4+ #44 [ 33.860196] FAULT_INJECTION: forcing a failure. [ 33.860196] name failslab, interval 1, probability 0, space 0, times 0 [ 33.863306] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 33.863312] Call Trace: [ 33.863346] dump_stack+0x1b9/0x294 [ 33.863373] ? dump_stack_print_info.cold.2+0x52/0x52 [ 33.896036] ? kernel_text_address+0x79/0xf0 [ 33.900442] ? __unwind_start+0x166/0x330 [ 33.904595] ? __kernel_text_address+0xd/0x40 [ 33.909094] should_fail.cold.4+0xa/0x1a [ 33.913158] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 33.918258] ? __lock_acquire+0x7f5/0x5140 [ 33.922488] ? __lock_acquire+0x7f5/0x5140 [ 33.926733] ? save_stack+0xa9/0xd0 [ 33.930379] ? graph_lock+0x170/0x170 [ 33.934177] ? kasan_kmalloc+0xc4/0xe0 [ 33.938063] ? kasan_slab_alloc+0x12/0x20 [ 33.942212] ? find_held_lock+0x36/0x1c0 [ 33.946274] ? __lock_is_held+0xb5/0x140 [ 33.950343] ? check_same_owner+0x320/0x320 [ 33.954661] ? __lock_acquire+0x7f5/0x5140 [ 33.958918] ? rcu_note_context_switch+0x710/0x710 [ 33.963848] __should_failslab+0x124/0x180 [ 33.968080] should_failslab+0x9/0x14 [ 33.971881] kmem_cache_alloc+0x2af/0x760 [ 33.976040] ? debug_check_no_locks_freed+0x310/0x310 [ 33.981236] __d_alloc+0xc0/0xd30 [ 33.984685] ? __lock_acquire+0x7f5/0x5140 [ 33.988918] ? shrink_dcache_for_umount+0x290/0x290 [ 33.993929] ? print_usage_bug+0xc0/0xc0 [ 33.997996] ? debug_check_no_locks_freed+0x310/0x310 [ 34.003186] ? print_usage_bug+0xc0/0xc0 [ 34.007245] ? __lock_acquire+0x7f5/0x5140 [ 34.011490] d_alloc+0x8e/0x370 [ 34.014766] ? __d_alloc+0xd30/0xd30 [ 34.018486] d_alloc_parallel+0x152/0x1e80 [ 34.022718] ? graph_lock+0x170/0x170 [ 34.026517] ? __lock_acquire+0x7f5/0x5140 [ 34.030745] ? debug_check_no_locks_freed+0x310/0x310 [ 34.035937] ? __d_lookup_rcu+0xa80/0xa80 [ 34.040081] ? print_usage_bug+0xc0/0xc0 [ 34.044138] ? find_held_lock+0x36/0x1c0 [ 34.048206] ? lock_downgrade+0x8e0/0x8e0 [ 34.052356] ? __kernel_text_address+0xd/0x40 [ 34.056854] ? mark_held_locks+0xc9/0x160 [ 34.061003] ? __raw_spin_lock_init+0x1c/0x100 [ 34.065588] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 34.070599] ? __lockdep_init_map+0x105/0x590 [ 34.075092] ? __lockdep_init_map+0x105/0x590 [ 34.079588] ? lockdep_init_map+0x9/0x10 [ 34.083650] ? __init_waitqueue_head+0x96/0x140 [ 34.088318] ? init_wait_entry+0x1b0/0x1b0 [ 34.092553] ? d_alloc_parallel+0x1e80/0x1e80 [ 34.097058] ? lock_release+0xa10/0xa10 [ 34.101040] __lookup_slow+0x1e6/0x540 [ 34.104927] ? vfs_unlink+0x510/0x510 [ 34.108743] ? d_lookup+0x219/0x330 [ 34.112393] lookup_one_len+0x1c7/0x210 [ 34.116369] ? lookup_one_len_unlocked+0xf0/0xf0 [ 34.121124] ? down_write+0x87/0x120 [ 34.124850] ? start_creating+0xb1/0x200 [ 34.128919] ? down_read+0x1b0/0x1b0 [ 34.132631] ? mntput+0x74/0xa0 [ 34.135906] ? simple_pin_fs+0xa4/0x190 [ 34.139877] start_creating+0xc6/0x200 [ 34.143763] __debugfs_create_file+0x63/0x400 [ 34.148261] debugfs_create_file+0x57/0x70 [ 34.152496] bdi_register_va.part.10+0x365/0x9b0 [ 34.157247] ? cgwb_kill+0x630/0x630 [ 34.160960] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 34.166494] ? bdi_init+0x416/0x510 [ 34.170114] ? wb_init+0x9e0/0x9e0 [ 34.173652] ? bdi_alloc_node+0x67/0xe0 [ 34.177622] ? bdi_alloc_node+0x67/0xe0 [ 34.181594] ? rcu_read_lock_sched_held+0x108/0x120 [ 34.186613] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 34.191897] ? _raw_spin_unlock+0x22/0x30 [ 34.196045] bdi_register_va+0x68/0x80 [ 34.199935] super_setup_bdi_name+0x123/0x220 [ 34.204425] ? kill_block_super+0x100/0x100 [ 34.208746] ? kmem_cache_alloc_trace+0x616/0x780 [ 34.213589] ? match_wildcard+0x3c0/0x3c0 [ 34.217741] fuse_fill_super+0xe6e/0x1e20 [ 34.221893] ? fuse_get_root_inode+0x190/0x190 [ 34.226478] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 34.231493] ? kasan_check_read+0x11/0x20 [ 34.235641] ? cap_capable+0x1f9/0x260 [ 34.239533] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 34.245070] ? security_capable+0x99/0xc0 [ 34.249221] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 34.254754] ? ns_capable_common+0x13f/0x170 [ 34.259164] ? get_anon_bdev+0x2f0/0x2f0 [ 34.263238] ? sget+0x113/0x150 [ 34.266519] ? fuse_get_root_inode+0x190/0x190 [ 34.271101] mount_nodev+0x6b/0x110 [ 34.274737] fuse_mount+0x2c/0x40 [ 34.278192] mount_fs+0xae/0x328 [ 34.281564] vfs_kern_mount.part.34+0xd4/0x4d0 [ 34.286150] ? may_umount+0xb0/0xb0 [ 34.289776] ? _raw_read_unlock+0x22/0x30 [ 34.293928] ? __get_fs_type+0x97/0xc0 [ 34.297833] do_mount+0x564/0x3070 [ 34.301375] ? do_raw_spin_unlock+0x9e/0x2e0 [ 34.305778] ? interrupt_entry+0xb1/0xf0 [ 34.309840] ? copy_mount_string+0x40/0x40 [ 34.314088] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 34.318849] ? retint_kernel+0x10/0x10 [ 34.322744] ? copy_mount_options+0x1e3/0x380 [ 34.327256] ? write_comp_data+0x1/0x70 [ 34.331233] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 34.336768] ? copy_mount_options+0x285/0x380 [ 34.341264] ksys_mount+0x12d/0x140 [ 34.344894] __x64_sys_mount+0xbe/0x150 [ 34.348867] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 34.353890] do_syscall_64+0x1b1/0x800 [ 34.357777] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 34.362635] ? syscall_return_slowpath+0x5c0/0x5c0 [ 34.367570] ? syscall_return_slowpath+0x30f/0x5c0 [ 34.372502] ? retint_user+0x18/0x18 [ 34.376222] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 34.381074] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 34.387117] RIP: 0033:0x447cb9 [ 34.390308] RSP: 002b:00007f7a75bca918 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 34.398023] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000447cb9 [ 34.405290] RDX: 00000000004b08d6 RSI: 0000000020000340 RDI: 00000000004c7485 [ 34.412554] RBP: 000000000000a001 R08: 00007f7a75bca930 R09: 0000000000000000 [ 34.419820] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 34.427100] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 34.434400] CPU: 0 PID: 4551 Comm: syz-executor214 Not tainted 4.17.0-rc4+ #44 [ 34.441782] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 34.448807] FAULT_INJECTION: forcing a failure. [ 34.448807] name failslab, interval 1, probability 0, space 0, times 0 [ 34.451144] Call Trace: [ 34.451169] dump_stack+0x1b9/0x294 [ 34.451188] ? dump_stack_print_info.cold.2+0x52/0x52 [ 34.451207] ? finish_task_switch+0x1ca/0x810 [ 34.451219] ? finish_task_switch+0x182/0x810 [ 34.451239] should_fail.cold.4+0xa/0x1a [ 34.451260] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 34.492137] ? __schedule+0x809/0x1e30 [ 34.496028] ? __sched_text_start+0x8/0x8 [ 34.500169] ? find_held_lock+0x36/0x1c0 [ 34.504229] ? __lock_is_held+0xb5/0x140 [ 34.508301] ? check_same_owner+0x320/0x320 [ 34.512622] ? graph_lock+0x170/0x170 [ 34.516418] ? graph_lock+0x170/0x170 [ 34.520217] __should_failslab+0x124/0x180 [ 34.524453] should_failslab+0x9/0x14 [ 34.528248] kmem_cache_alloc+0x2af/0x760 [ 34.532394] ? find_held_lock+0x36/0x1c0 [ 34.536458] fuse_alloc_inode+0x96/0x4f0 [ 34.540514] ? fuse_dev_alloc+0x4e0/0x4e0 [ 34.544653] ? lock_downgrade+0x8e0/0x8e0 [ 34.548804] ? kasan_check_read+0x11/0x20 [ 34.552970] ? do_raw_spin_unlock+0x9e/0x2e0 [ 34.557374] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 34.561954] ? kasan_check_write+0x14/0x20 [ 34.566203] ? find_inode.isra.19+0xc3/0x1d0 [ 34.570605] ? fuse_dev_alloc+0x4e0/0x4e0 [ 34.574750] alloc_inode+0x63/0x190 [ 34.578385] iget5_locked+0x20e/0x570 [ 34.582178] ? fuse_inode_eq+0x80/0x80 [ 34.586060] ? fuse_init_file_inode+0x70/0x70 [ 34.590551] ? inode_lru_isolate+0x580/0x580 [ 34.595214] ? cgwb_kill+0x630/0x630 [ 34.598931] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 34.604462] ? print_usage_bug+0xc0/0xc0 [ 34.608524] fuse_iget+0x1cc/0x820 [ 34.612065] ? fuse_change_attributes+0x810/0x810 [ 34.616907] ? _raw_spin_unlock+0x22/0x30 [ 34.621061] fuse_get_root_inode+0x121/0x190 [ 34.625467] ? fuse_iget+0x820/0x820 [ 34.629184] ? _raw_spin_unlock_bh+0x30/0x40 [ 34.633587] ? bdi_set_max_ratio+0x112/0x150 [ 34.637993] fuse_fill_super+0x11e0/0x1e20 [ 34.642242] ? fuse_get_root_inode+0x190/0x190 [ 34.646826] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 34.651843] ? kasan_check_read+0x11/0x20 [ 34.655986] ? cap_capable+0x1f9/0x260 [ 34.659876] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 34.665409] ? security_capable+0x99/0xc0 [ 34.669557] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 34.675094] ? ns_capable_common+0x13f/0x170 [ 34.679504] ? get_anon_bdev+0x2f0/0x2f0 [ 34.683560] ? sget+0x113/0x150 [ 34.686836] ? fuse_get_root_inode+0x190/0x190 [ 34.691416] mount_nodev+0x6b/0x110 [ 34.695039] fuse_mount+0x2c/0x40 [ 34.698492] mount_fs+0xae/0x328 [ 34.701856] vfs_kern_mount.part.34+0xd4/0x4d0 [ 34.706440] ? may_umount+0xb0/0xb0 [ 34.710063] ? _raw_read_unlock+0x22/0x30 [ 34.714208] ? __get_fs_type+0x97/0xc0 [ 34.718095] do_mount+0x564/0x3070 [ 34.721636] ? do_raw_spin_unlock+0x9e/0x2e0 [ 34.726044] ? copy_mount_string+0x40/0x40 [ 34.730273] ? rcu_pm_notify+0xc0/0xc0 [ 34.734171] ? copy_mount_options+0x5f/0x380 [ 34.738573] ? rcu_read_lock_sched_held+0x108/0x120 [ 34.743598] ? kmem_cache_alloc_trace+0x616/0x780 [ 34.748442] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 34.753977] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 34.759508] ? copy_mount_options+0x285/0x380 [ 34.764003] ksys_mount+0x12d/0x140 [ 34.767639] __x64_sys_mount+0xbe/0x150 [ 34.771609] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 34.776622] do_syscall_64+0x1b1/0x800 [ 34.780505] ? finish_task_switch+0x1ca/0x810 [ 34.784996] ? syscall_return_slowpath+0x5c0/0x5c0 [ 34.789922] ? syscall_return_slowpath+0x30f/0x5c0 [ 34.794854] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 34.800385] ? retint_user+0x18/0x18 [ 34.804097] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 34.808938] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 34.814124] RIP: 0033:0x447cb9 [ 34.817308] RSP: 002b:00007f7a75bca918 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 34.825011] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000447cb9 [ 34.832276] RDX: 00000000004b08d6 RSI: 0000000020000340 RDI: 00000000004c7485 [ 34.839541] RBP: 000000000000a001 R08: 00007f7a75bca930 R09: 0000000000000000 [ 34.846805] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 34.854065] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 34.861347] CPU: 1 PID: 4552 Comm: syz-executor214 Not tainted 4.17.0-rc4+ #44 [ 34.868715] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 34.876843] FAULT_INJECTION: forcing a failure. [ 34.876843] name failslab, interval 1, probability 0, space 0, times 0 [ 34.878068] Call Trace: [ 34.878093] dump_stack+0x1b9/0x294 [ 34.878119] ? dump_stack_print_info.cold.2+0x52/0x52 [ 34.900652] ? d_add+0x605/0xa10 [ 34.904621] ? lock_downgrade+0x8e0/0x8e0 [ 34.908764] ? __kernel_text_address+0xd/0x40 [ 34.913261] should_fail.cold.4+0xa/0x1a [ 34.917324] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 34.922430] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 34.927454] ? graph_lock+0x170/0x170 [ 34.931247] ? __lockdep_init_map+0x105/0x590 [ 34.935741] ? find_held_lock+0x36/0x1c0 [ 34.939803] ? __lock_is_held+0xb5/0x140 [ 34.943875] ? check_same_owner+0x320/0x320 [ 34.948205] ? rcu_note_context_switch+0x710/0x710 [ 34.953137] __should_failslab+0x124/0x180 [ 34.957376] should_failslab+0x9/0x14 [ 34.961174] kmem_cache_alloc+0x2af/0x760 [ 34.965347] alloc_inode+0xb2/0x190 [ 34.969669] new_inode_pseudo+0x69/0x1a0 [ 34.973724] ? prune_icache_sb+0x1a0/0x1a0 [ 34.977956] ? down_read+0x1b0/0x1b0 [ 34.981663] ? mntput+0x74/0xa0 [ 34.984946] new_inode+0x1c/0x40 [ 34.988312] debugfs_get_inode+0x19/0x120 [ 34.992460] __debugfs_create_file+0xb5/0x400 [ 34.996954] debugfs_create_file+0x57/0x70 [ 35.001188] bdi_register_va.part.10+0x365/0x9b0 [ 35.005948] ? cgwb_kill+0x630/0x630 [ 35.009662] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 35.015194] ? bdi_init+0x416/0x510 [ 35.018817] ? wb_init+0x9e0/0x9e0 [ 35.022357] ? bdi_alloc_node+0x67/0xe0 [ 35.026329] ? bdi_alloc_node+0x67/0xe0 [ 35.030301] ? rcu_read_lock_sched_held+0x108/0x120 [ 35.035317] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 35.040606] ? _raw_spin_unlock+0x22/0x30 [ 35.044757] bdi_register_va+0x68/0x80 [ 35.048643] super_setup_bdi_name+0x123/0x220 [ 35.053132] ? kill_block_super+0x100/0x100 [ 35.057451] ? kmem_cache_alloc_trace+0x616/0x780 [ 35.062296] ? match_wildcard+0x3c0/0x3c0 [ 35.066443] ? trace_hardirqs_on+0xd/0x10 [ 35.070594] fuse_fill_super+0xe6e/0x1e20 [ 35.074747] ? fuse_get_root_inode+0x190/0x190 [ 35.079329] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 35.084349] ? kasan_check_read+0x11/0x20 [ 35.088497] ? cap_capable+0x1f9/0x260 [ 35.092386] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 35.097921] ? security_capable+0x99/0xc0 [ 35.102157] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 35.107691] ? ns_capable_common+0x13f/0x170 [ 35.112097] ? get_anon_bdev+0x2f0/0x2f0 [ 35.116155] ? sget+0x113/0x150 [ 35.119437] ? fuse_get_root_inode+0x190/0x190 [ 35.124019] mount_nodev+0x6b/0x110 [ 35.127658] fuse_mount+0x2c/0x40 [ 35.131108] mount_fs+0xae/0x328 [ 35.134478] vfs_kern_mount.part.34+0xd4/0x4d0 [ 35.139058] ? may_umount+0xb0/0xb0 [ 35.142684] ? _raw_read_unlock+0x22/0x30 [ 35.146824] ? __get_fs_type+0x97/0xc0 [ 35.150712] do_mount+0x564/0x3070 [ 35.154248] ? do_raw_spin_unlock+0x9e/0x2e0 [ 35.158658] ? copy_mount_string+0x40/0x40 [ 35.162886] ? rcu_pm_notify+0xc0/0xc0 [ 35.166774] ? copy_mount_options+0x5f/0x380 [ 35.171174] ? rcu_read_lock_sched_held+0x108/0x120 [ 35.176184] ? kmem_cache_alloc_trace+0x616/0x780 [ 35.181030] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 35.186570] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 35.192100] ? copy_mount_options+0x285/0x380 [ 35.196591] ksys_mount+0x12d/0x140 [ 35.200214] __x64_sys_mount+0xbe/0x150 [ 35.204188] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 35.209202] do_syscall_64+0x1b1/0x800 [ 35.213090] ? finish_task_switch+0x1ca/0x810 [ 35.217584] ? syscall_return_slowpath+0x5c0/0x5c0 [ 35.222523] ? syscall_return_slowpath+0x30f/0x5c0 [ 35.227463] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 35.232993] ? retint_user+0x18/0x18 [ 35.236708] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 35.241549] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 35.246732] RIP: 0033:0x447cb9 [ 35.249911] RSP: 002b:00007f7a75bca918 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 35.257618] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000447cb9 [ 35.264878] RDX: 00000000004b08d6 RSI: 0000000020000340 RDI: 00000000004c7485 [ 35.272154] RBP: 000000000000a001 R08: 00007f7a75bca930 R09: 0000000000000000 [ 35.279516] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 35.286779] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 35.294065] CPU: 0 PID: 4550 Comm: syz-executor214 Not tainted 4.17.0-rc4+ #44 [ 35.301437] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 35.310802] Call Trace: [ 35.313418] dump_stack+0x1b9/0x294 [ 35.317074] ? dump_stack_print_info.cold.2+0x52/0x52 [ 35.322296] ? kernel_text_address+0x79/0xf0 [ 35.326734] ? __unwind_start+0x166/0x330 [ 35.327301] FAULT_INJECTION: forcing a failure. [ 35.327301] name failslab, interval 1, probability 0, space 0, times 0 [ 35.330896] ? __kernel_text_address+0xd/0x40 [ 35.330919] should_fail.cold.4+0xa/0x1a [ 35.330934] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 35.330948] ? __lock_acquire+0x7f5/0x5140 [ 35.330966] ? __lock_acquire+0x7f5/0x5140 [ 35.364185] ? save_stack+0xa9/0xd0 [ 35.367806] ? graph_lock+0x170/0x170 [ 35.371602] ? kasan_kmalloc+0xc4/0xe0 [ 35.375487] ? kasan_slab_alloc+0x12/0x20 [ 35.379635] ? find_held_lock+0x36/0x1c0 [ 35.383698] ? __lock_is_held+0xb5/0x140 [ 35.387769] ? check_same_owner+0x320/0x320 [ 35.392098] ? __lock_acquire+0x7f5/0x5140 [ 35.396333] ? rcu_note_context_switch+0x710/0x710 [ 35.401262] __should_failslab+0x124/0x180 [ 35.405498] should_failslab+0x9/0x14 [ 35.409292] kmem_cache_alloc+0x2af/0x760 [ 35.413438] ? debug_check_no_locks_freed+0x310/0x310 [ 35.418631] __d_alloc+0xc0/0xd30 [ 35.422080] ? __lock_acquire+0x7f5/0x5140 [ 35.426309] ? shrink_dcache_for_umount+0x290/0x290 [ 35.431320] ? print_usage_bug+0xc0/0xc0 [ 35.435384] ? debug_check_no_locks_freed+0x310/0x310 [ 35.440577] ? print_usage_bug+0xc0/0xc0 [ 35.444633] ? __lock_acquire+0x7f5/0x5140 [ 35.448876] d_alloc+0x8e/0x370 [ 35.452156] ? __d_alloc+0xd30/0xd30 [ 35.455887] d_alloc_parallel+0x152/0x1e80 [ 35.460121] ? graph_lock+0x170/0x170 [ 35.463922] ? __lock_acquire+0x7f5/0x5140 [ 35.468155] ? debug_check_no_locks_freed+0x310/0x310 [ 35.473347] ? __d_lookup_rcu+0xa80/0xa80 [ 35.477491] ? print_usage_bug+0xc0/0xc0 [ 35.481548] ? find_held_lock+0x36/0x1c0 [ 35.485623] ? lock_downgrade+0x8e0/0x8e0 [ 35.489770] ? __kernel_text_address+0xd/0x40 [ 35.494267] ? mark_held_locks+0xc9/0x160 [ 35.498415] ? __raw_spin_lock_init+0x1c/0x100 [ 35.502992] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 35.508024] ? __lockdep_init_map+0x105/0x590 [ 35.512519] ? __lockdep_init_map+0x105/0x590 [ 35.517013] ? lockdep_init_map+0x9/0x10 [ 35.521073] ? __init_waitqueue_head+0x96/0x140 [ 35.525743] ? init_wait_entry+0x1b0/0x1b0 [ 35.529977] ? d_alloc_parallel+0x1e80/0x1e80 [ 35.534468] ? lock_release+0xa10/0xa10 [ 35.538441] __lookup_slow+0x1e6/0x540 [ 35.542328] ? vfs_unlink+0x510/0x510 [ 35.546127] ? d_lookup+0x219/0x330 [ 35.550629] lookup_one_len+0x1c7/0x210 [ 35.554607] ? lookup_one_len_unlocked+0xf0/0xf0 [ 35.559361] ? down_write+0x87/0x120 [ 35.563075] ? start_creating+0xb1/0x200 [ 35.567135] ? down_read+0x1b0/0x1b0 [ 35.570841] ? mntput+0x74/0xa0 [ 35.574116] ? simple_pin_fs+0xa4/0x190 [ 35.578086] start_creating+0xc6/0x200 [ 35.581973] __debugfs_create_file+0x63/0x400 [ 35.586467] debugfs_create_file+0x57/0x70 [ 35.590701] bdi_register_va.part.10+0x365/0x9b0 [ 35.595452] ? cgwb_kill+0x630/0x630 [ 35.599168] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 35.604699] ? bdi_init+0x416/0x510 [ 35.608320] ? wb_init+0x9e0/0x9e0 [ 35.611860] ? bdi_alloc_node+0x67/0xe0 [ 35.615833] ? bdi_alloc_node+0x67/0xe0 [ 35.619803] ? rcu_read_lock_sched_held+0x108/0x120 [ 35.624816] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 35.630096] ? _raw_spin_unlock+0x22/0x30 [ 35.634245] bdi_register_va+0x68/0x80 [ 35.638136] super_setup_bdi_name+0x123/0x220 [ 35.642632] ? kill_block_super+0x100/0x100 [ 35.646957] ? kmem_cache_alloc_trace+0x616/0x780 [ 35.651807] ? match_wildcard+0x3c0/0x3c0 [ 35.655955] ? trace_hardirqs_on+0xd/0x10 [ 35.660106] fuse_fill_super+0xe6e/0x1e20 [ 35.664257] ? fuse_get_root_inode+0x190/0x190 [ 35.668837] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 35.673852] ? kasan_check_read+0x11/0x20 [ 35.677999] ? cap_capable+0x1f9/0x260 [ 35.681892] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 35.687425] ? security_capable+0x99/0xc0 [ 35.691571] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 35.697106] ? ns_capable_common+0x13f/0x170 [ 35.701513] ? get_anon_bdev+0x2f0/0x2f0 [ 35.705571] ? sget+0x113/0x150 [ 35.708847] ? fuse_get_root_inode+0x190/0x190 [ 35.713427] mount_nodev+0x6b/0x110 [ 35.717049] fuse_mount+0x2c/0x40 [ 35.720500] mount_fs+0xae/0x328 [ 35.723867] vfs_kern_mount.part.34+0xd4/0x4d0 [ 35.728444] ? may_umount+0xb0/0xb0 [ 35.732065] ? _raw_read_unlock+0x22/0x30 [ 35.736207] ? __get_fs_type+0x97/0xc0 [ 35.740204] do_mount+0x564/0x3070 [ 35.743754] ? do_raw_spin_unlock+0x9e/0x2e0 [ 35.748164] ? copy_mount_string+0x40/0x40 [ 35.752411] ? rcu_pm_notify+0xc0/0xc0 [ 35.756327] ? copy_mount_options+0x5f/0x380 [ 35.760739] ? rcu_read_lock_sched_held+0x108/0x120 [ 35.765755] ? kmem_cache_alloc_trace+0x616/0x780 [ 35.770599] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 35.776137] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 35.781669] ? copy_mount_options+0x285/0x380 [ 35.786163] ksys_mount+0x12d/0x140 [ 35.789790] __x64_sys_mount+0xbe/0x150 [ 35.793758] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 35.798776] do_syscall_64+0x1b1/0x800 [ 35.802658] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 35.807499] ? syscall_return_slowpath+0x5c0/0x5c0 [ 35.812431] ? syscall_return_slowpath+0x30f/0x5c0 [ 35.817360] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 35.822892] ? retint_user+0x18/0x18 [ 35.826604] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 35.831445] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 35.836626] RIP: 0033:0x447cb9 [ 35.839809] RSP: 002b:00007f7a75bca918 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 35.847510] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000447cb9 [ 35.854774] RDX: 00000000004b08d6 RSI: 0000000020000340 RDI: 00000000004c7485 [ 35.862038] RBP: 000000000000a001 R08: 00007f7a75bca930 R09: 0000000000000000 [ 35.869299] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 35.876559] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 35.883842] CPU: 1 PID: 4572 Comm: syz-executor214 Not tainted 4.17.0-rc4+ #44 [ 35.891224] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 35.899250] FAULT_INJECTION: forcing a failure. [ 35.899250] name failslab, interval 1, probability 0, space 0, times 0 [ 35.900574] Call Trace: [ 35.900598] dump_stack+0x1b9/0x294 [ 35.900614] ? dump_stack_print_info.cold.2+0x52/0x52 [ 35.900637] ? __save_stack_trace+0x7e/0xd0 [ 35.928008] should_fail.cold.4+0xa/0x1a [ 35.932072] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 35.937174] ? save_stack+0x43/0xd0 [ 35.940795] ? kasan_kmalloc+0xc4/0xe0 [ 35.944679] ? kasan_slab_alloc+0x12/0x20 [ 35.948820] ? kmem_cache_alloc+0x12e/0x760 [ 35.953137] ? fuse_alloc_inode+0x96/0x4f0 [ 35.957363] ? alloc_inode+0x63/0x190 [ 35.961158] ? iget5_locked+0x20e/0x570 [ 35.965825] ? graph_lock+0x170/0x170 [ 35.969620] ? print_usage_bug+0xc0/0xc0 [ 35.973673] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 35.978422] ? do_mount+0x564/0x3070 [ 35.982143] ? ksys_mount+0x12d/0x140 [ 35.985938] ? __x64_sys_mount+0xbe/0x150 [ 35.990083] ? find_held_lock+0x36/0x1c0 [ 35.994141] ? __lock_is_held+0xb5/0x140 [ 35.998212] ? check_same_owner+0x320/0x320 [ 36.002537] ? __mutex_init+0x1ef/0x280 [ 36.006508] ? rcu_note_context_switch+0x710/0x710 [ 36.011432] ? __ia32_sys_membarrier+0x150/0x150 [ 36.016183] __should_failslab+0x124/0x180 [ 36.020418] should_failslab+0x9/0x14 [ 36.024220] kmem_cache_alloc_trace+0x2cb/0x780 [ 36.028902] ? init_wait_entry+0x1b0/0x1b0 [ 36.033131] ? find_held_lock+0x36/0x1c0 [ 36.037204] fuse_alloc_inode+0x3ae/0x4f0 [ 36.041348] ? fuse_dev_alloc+0x4e0/0x4e0 [ 36.045487] ? lock_downgrade+0x8e0/0x8e0 [ 36.049637] ? kasan_check_read+0x11/0x20 [ 36.053780] ? do_raw_spin_unlock+0x9e/0x2e0 [ 36.058193] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 36.062777] ? kasan_check_write+0x14/0x20 [ 36.067004] ? find_inode.isra.19+0xc3/0x1d0 [ 36.071407] ? fuse_dev_alloc+0x4e0/0x4e0 [ 36.075555] alloc_inode+0x63/0x190 [ 36.079182] iget5_locked+0x20e/0x570 [ 36.082981] ? fuse_inode_eq+0x80/0x80 [ 36.086865] ? fuse_init_file_inode+0x70/0x70 [ 36.091356] ? inode_lru_isolate+0x580/0x580 [ 36.095757] ? cgwb_kill+0x630/0x630 [ 36.099469] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 36.105001] ? print_usage_bug+0xc0/0xc0 [ 36.109060] fuse_iget+0x1cc/0x820 [ 36.112616] ? fuse_change_attributes+0x810/0x810 [ 36.117470] ? _raw_spin_unlock+0x22/0x30 [ 36.121618] fuse_get_root_inode+0x121/0x190 [ 36.126034] ? fuse_iget+0x820/0x820 [ 36.129749] ? _raw_spin_unlock_bh+0x30/0x40 [ 36.134154] ? bdi_set_max_ratio+0x112/0x150 [ 36.138562] fuse_fill_super+0x11e0/0x1e20 [ 36.142799] ? fuse_get_root_inode+0x190/0x190 [ 36.147379] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 36.152395] ? kasan_check_read+0x11/0x20 [ 36.156540] ? cap_capable+0x1f9/0x260 [ 36.160427] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 36.165961] ? security_capable+0x99/0xc0 [ 36.170114] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 36.175645] ? ns_capable_common+0x13f/0x170 [ 36.180050] ? get_anon_bdev+0x2f0/0x2f0 [ 36.184108] ? sget+0x113/0x150 [ 36.187469] ? fuse_get_root_inode+0x190/0x190 [ 36.192048] mount_nodev+0x6b/0x110 [ 36.195685] fuse_mount+0x2c/0x40 [ 36.199139] mount_fs+0xae/0x328 [ 36.202505] vfs_kern_mount.part.34+0xd4/0x4d0 [ 36.207083] ? may_umount+0xb0/0xb0 [ 36.210701] ? _raw_read_unlock+0x22/0x30 [ 36.214844] ? __get_fs_type+0x97/0xc0 [ 36.218729] do_mount+0x564/0x3070 [ 36.222267] ? copy_mount_string+0x40/0x40 [ 36.226497] ? rcu_pm_notify+0xc0/0xc0 [ 36.230384] ? copy_mount_options+0x5f/0x380 [ 36.234789] ? rcu_read_lock_sched_held+0x108/0x120 [ 36.239798] ? kmem_cache_alloc_trace+0x616/0x780 [ 36.244640] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 36.250178] ? _copy_from_user+0xdf/0x150 [ 36.254349] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 36.259891] ? copy_mount_options+0x285/0x380 [ 36.264393] ksys_mount+0x12d/0x140 [ 36.268022] __x64_sys_mount+0xbe/0x150 [ 36.271993] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 36.277009] do_syscall_64+0x1b1/0x800 [ 36.280893] ? finish_task_switch+0x1ca/0x810 [ 36.285393] ? syscall_return_slowpath+0x5c0/0x5c0 [ 36.290322] ? syscall_return_slowpath+0x30f/0x5c0 [ 36.295250] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 36.300785] ? retint_user+0x18/0x18 [ 36.304503] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 36.309345] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 36.314541] RIP: 0033:0x447cb9 [ 36.317723] RSP: 002b:00007f7a75bca918 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 36.325427] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000447cb9 [ 36.332689] RDX: 00000000004b08d6 RSI: 0000000020000340 RDI: 00000000004c7485 [ 36.339952] RBP: 000000000000a001 R08: 00007f7a75bca930 R09: 0000000000000000 [ 36.347213] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 36.354481] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 36.361765] CPU: 0 PID: 4564 Comm: syz-executor214 Not tainted 4.17.0-rc4+ #44 [ 36.369140] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 36.374501] ================================================================== [ 36.378499] Call Trace: [ 36.386627] BUG: KASAN: use-after-free in __lock_acquire+0x3888/0x5140 [ 36.386646] Read of size 8 at addr ffff8801d8d69088 by task syz-executor214/4551 [ 36.389234] dump_stack+0x1b9/0x294 [ 36.395864] [ 36.408628] ? dump_stack_print_info.cold.2+0x52/0x52 [ 36.413821] ? lockdep_init_map+0x9/0x10 [ 36.417882] should_fail.cold.4+0xa/0x1a [ 36.421939] ? do_raw_write_unlock.cold.8+0x3d/0x3d [ 36.427125] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 36.432226] ? graph_lock+0x170/0x170 [ 36.436016] ? find_held_lock+0x36/0x1c0 [ 36.440245] ? find_held_lock+0x36/0x1c0 [ 36.444305] ? __lock_is_held+0xb5/0x140 [ 36.448385] ? check_same_owner+0x320/0x320 [ 36.452784] ? make_kgid+0x23/0x30 [ 36.456329] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 36.461857] ? rcu_note_context_switch+0x710/0x710 [ 36.466783] __should_failslab+0x124/0x180 [ 36.471014] should_failslab+0x9/0x14 [ 36.474807] kmem_cache_alloc+0x2af/0x760 [ 36.478950] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 36.483527] ? kasan_check_write+0x14/0x20 [ 36.487754] ? do_raw_spin_lock+0xc1/0x200 [ 36.491982] __d_alloc+0xc0/0xd30 [ 36.495426] ? fuse_iget+0x1dd/0x820 [ 36.499138] ? shrink_dcache_for_umount+0x290/0x290 [ 36.504148] ? fuse_change_attributes+0x810/0x810 [ 36.508984] ? _raw_spin_unlock+0x22/0x30 [ 36.513127] ? fuse_get_root_inode+0x121/0x190 [ 36.517710] ? fuse_iget+0x820/0x820 [ 36.521423] d_make_root+0x42/0x90 [ 36.524953] fuse_fill_super+0x120e/0x1e20 [ 36.529186] ? fuse_get_root_inode+0x190/0x190 [ 36.533761] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 36.538775] ? kasan_check_read+0x11/0x20 [ 36.543013] ? cap_capable+0x1f9/0x260 [ 36.546915] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 36.552443] ? security_capable+0x99/0xc0 [ 36.556584] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 36.562113] ? ns_capable_common+0x13f/0x170 [ 36.566512] ? get_anon_bdev+0x2f0/0x2f0 [ 36.570563] ? sget+0x113/0x150 [ 36.573836] ? fuse_get_root_inode+0x190/0x190 [ 36.578407] mount_nodev+0x6b/0x110 [ 36.582027] fuse_mount+0x2c/0x40 [ 36.585473] mount_fs+0xae/0x328 [ 36.588848] vfs_kern_mount.part.34+0xd4/0x4d0 [ 36.593424] ? may_umount+0xb0/0xb0 [ 36.597043] ? _raw_read_unlock+0x22/0x30 [ 36.601181] ? __get_fs_type+0x97/0xc0 [ 36.605064] do_mount+0x564/0x3070 [ 36.608599] ? copy_mount_string+0x40/0x40 [ 36.612823] ? rcu_pm_notify+0xc0/0xc0 [ 36.616709] ? copy_mount_options+0x5f/0x380 [ 36.621109] ? rcu_read_lock_sched_held+0x108/0x120 [ 36.626115] ? kmem_cache_alloc_trace+0x616/0x780 [ 36.630956] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 36.636484] ? copy_mount_options+0x285/0x380 [ 36.640974] ksys_mount+0x12d/0x140 [ 36.644594] __x64_sys_mount+0xbe/0x150 [ 36.648576] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 36.653609] do_syscall_64+0x1b1/0x800 [ 36.657522] ? finish_task_switch+0x1ca/0x810 [ 36.662019] ? syscall_return_slowpath+0x5c0/0x5c0 [ 36.666948] ? syscall_return_slowpath+0x30f/0x5c0 [ 36.671878] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 36.677410] ? retint_user+0x18/0x18 [ 36.681121] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 36.685959] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 36.691137] RIP: 0033:0x447cb9 [ 36.694315] RSP: 002b:00007f7a75bca918 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 36.702015] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000447cb9 [ 36.709286] RDX: 00000000004b08d6 RSI: 0000000020000340 RDI: 00000000004c7485 [ 36.716544] RBP: 000000000000a001 R08: 00007f7a75bca930 R09: 0000000000000000 [ 36.723803] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 36.731061] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 36.738353] CPU: 1 PID: 4551 Comm: syz-executor214 Not tainted 4.17.0-rc4+ #44 [ 36.745744] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 36.755104] Call Trace: [ 36.757716] dump_stack+0x1b9/0x294 [ 36.761360] ? dump_stack_print_info.cold.2+0x52/0x52 [ 36.763730] FAULT_INJECTION: forcing a failure. [ 36.763730] name failslab, interval 1, probability 0, space 0, times 0 [ 36.766555] ? printk+0x9e/0xba [ 36.766571] ? kmsg_dump_rewind_nolock+0xe4/0xe4 [ 36.766587] ? kasan_check_write+0x14/0x20 [ 36.766606] print_address_description+0x6c/0x20b [ 36.794812] ? __lock_acquire+0x3888/0x5140 [ 36.799124] kasan_report.cold.7+0x242/0x2fe [ 36.803527] __asan_report_load8_noabort+0x14/0x20 [ 36.808446] __lock_acquire+0x3888/0x5140 [ 36.812592] ? lock_downgrade+0x8e0/0x8e0 [ 36.816741] ? kasan_check_read+0x11/0x20 [ 36.820881] ? rcu_is_watching+0x85/0x140 [ 36.825022] ? debug_check_no_locks_freed+0x310/0x310 [ 36.830204] ? is_bpf_text_address+0xd7/0x170 [ 36.834694] ? kernel_text_address+0x79/0xf0 [ 36.839179] ? __unwind_start+0x166/0x330 [ 36.843319] ? __kernel_text_address+0xd/0x40 [ 36.847809] ? unwind_get_return_address+0x61/0xa0 [ 36.852730] ? __save_stack_trace+0x7e/0xd0 [ 36.857049] ? save_stack+0xa9/0xd0 [ 36.860666] ? save_stack+0x43/0xd0 [ 36.864285] ? __kasan_slab_free+0x11a/0x170 [ 36.868685] ? kasan_slab_free+0xe/0x10 [ 36.872651] ? kfree+0xd9/0x260 [ 36.875923] ? unregister_shrinker+0x216/0x3a0 [ 36.880494] ? deactivate_locked_super+0x70/0x100 [ 36.885330] ? mount_nodev+0xfa/0x110 [ 36.889134] ? fuse_mount+0x2c/0x40 [ 36.892754] ? mount_fs+0xae/0x328 [ 36.896297] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 36.901046] ? do_mount+0x564/0x3070 [ 36.904751] ? ksys_mount+0x12d/0x140 [ 36.908546] ? graph_lock+0x170/0x170 [ 36.912337] ? kasan_check_read+0x11/0x20 [ 36.916477] ? do_raw_spin_unlock+0x9e/0x2e0 [ 36.920876] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 36.925465] ? print_usage_bug+0xc0/0xc0 [ 36.929519] ? kasan_check_write+0x14/0x20 [ 36.933746] ? do_raw_spin_lock+0xc1/0x200 [ 36.937973] lock_acquire+0x1dc/0x520 [ 36.941768] ? fuse_kill_sb_anon+0x50/0xb0 [ 36.945994] ? lock_release+0xa10/0xa10 [ 36.949976] ? check_same_owner+0x320/0x320 [ 36.954285] ? quarantine_put+0xeb/0x190 [ 36.958348] ? rcu_note_context_switch+0x710/0x710 [ 36.963275] ? __might_sleep+0x95/0x190 [ 36.967251] down_write+0x87/0x120 [ 36.970794] ? fuse_kill_sb_anon+0x50/0xb0 [ 36.975025] ? down_read+0x1b0/0x1b0 [ 36.978733] ? perf_trace_mm_vmscan_writepage+0x750/0x750 [ 36.984269] fuse_kill_sb_anon+0x50/0xb0 [ 36.988323] deactivate_locked_super+0x97/0x100 [ 36.992994] ? fuse_get_root_inode+0x190/0x190 [ 36.997595] mount_nodev+0xfa/0x110 [ 37.001225] fuse_mount+0x2c/0x40 [ 37.004671] mount_fs+0xae/0x328 [ 37.008034] vfs_kern_mount.part.34+0xd4/0x4d0 [ 37.012607] ? may_umount+0xb0/0xb0 [ 37.016225] ? _raw_read_unlock+0x22/0x30 [ 37.020363] ? __get_fs_type+0x97/0xc0 [ 37.024244] do_mount+0x564/0x3070 [ 37.027778] ? do_raw_spin_unlock+0x9e/0x2e0 [ 37.032178] ? copy_mount_string+0x40/0x40 [ 37.036413] ? rcu_pm_notify+0xc0/0xc0 [ 37.040291] ? copy_mount_options+0x5f/0x380 [ 37.044689] ? rcu_read_lock_sched_held+0x108/0x120 [ 37.049697] ? kmem_cache_alloc_trace+0x616/0x780 [ 37.054545] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 37.060078] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 37.065617] ? copy_mount_options+0x285/0x380 [ 37.070104] ksys_mount+0x12d/0x140 [ 37.073727] __x64_sys_mount+0xbe/0x150 [ 37.077695] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 37.082707] do_syscall_64+0x1b1/0x800 [ 37.086585] ? finish_task_switch+0x1ca/0x810 [ 37.091073] ? syscall_return_slowpath+0x5c0/0x5c0 [ 37.095995] ? syscall_return_slowpath+0x30f/0x5c0 [ 37.100921] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 37.106448] ? retint_user+0x18/0x18 [ 37.110156] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 37.114992] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 37.120170] RIP: 0033:0x447cb9 [ 37.123359] RSP: 002b:00007f7a75bca918 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 37.131062] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000447cb9 [ 37.138318] RDX: 00000000004b08d6 RSI: 0000000020000340 RDI: 00000000004c7485 [ 37.145577] RBP: 000000000000a001 R08: 00007f7a75bca930 R09: 0000000000000000 [ 37.152836] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 37.160106] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 37.167389] [ 37.167402] CPU: 0 PID: 4580 Comm: syz-executor214 Not tainted 4.17.0-rc4+ #44 [ 37.167414] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 37.169018] Allocated by task 4551: [ 37.169043] save_stack+0x43/0xd0 [ 37.176392] Call Trace: [ 37.185843] kasan_kmalloc+0xc4/0xe0 [ 37.185861] kmem_cache_alloc_trace+0x152/0x780 [ 37.189488] dump_stack+0x1b9/0x294 [ 37.192919] fuse_fill_super+0xc92/0x1e20 [ 37.192936] mount_nodev+0x6b/0x110 [ 37.195536] ? dump_stack_print_info.cold.2+0x52/0x52 [ 37.199244] fuse_mount+0x2c/0x40 [ 37.199261] mount_fs+0xae/0x328 [ 37.203933] ? lockdep_init_map+0x9/0x10 [ 37.207544] vfs_kern_mount.part.34+0xd4/0x4d0 [ 37.207559] do_mount+0x564/0x3070 [ 37.211716] should_fail.cold.4+0xa/0x1a [ 37.215310] ksys_mount+0x12d/0x140 [ 37.215324] __x64_sys_mount+0xbe/0x150 [ 37.220499] ? do_raw_write_unlock.cold.8+0x3d/0x3d [ 37.223929] do_syscall_64+0x1b1/0x800 [ 37.223946] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 37.227294] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 37.231317] [ 37.231326] Freed by task 8: [ 37.235892] ? graph_lock+0x170/0x170 [ 37.239409] save_stack+0x43/0xd0 [ 37.243445] ? find_held_lock+0x36/0x1c0 [ 37.247054] __kasan_slab_free+0x11a/0x170 [ 37.247068] kasan_slab_free+0xe/0x10 [ 37.251019] ? find_held_lock+0x36/0x1c0 [ 37.256004] kfree+0xd9/0x260 [ 37.256021] rcu_process_callbacks+0xa69/0x15f0 [ 37.259886] ? __lock_is_held+0xb5/0x140 [ 37.265055] __do_softirq+0x2e0/0xaf5 [ 37.265061] [ 37.270161] ? check_same_owner+0x320/0x320 [ 37.271754] The buggy address belongs to the object at ffff8801d8d68dc0 [ 37.271754] which belongs to the cache kmalloc-1024 of size 1024 [ 37.271767] The buggy address is located 712 bytes inside of [ 37.271767] 1024-byte region [ffff8801d8d68dc0, ffff8801d8d691c0) [ 37.274770] ? make_kgid+0x23/0x30 [ 37.278535] The buggy address belongs to the page: [ 37.278550] page:ffffea0007635a00 count:1 mapcount:0 mapping:ffff8801d8d68040 index:0x0 [ 37.281989] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 37.286007] compound_mapcount: 0 [ 37.290240] ? rcu_note_context_switch+0x710/0x710 [ 37.294010] flags: 0x2fffc0000008100(slab|head) [ 37.298054] __should_failslab+0x124/0x180 [ 37.301136] raw: 02fffc0000008100 ffff8801d8d68040 0000000000000000 0000000100000007 [ 37.305788] should_failslab+0x9/0x14 [ 37.309836] raw: ffffea00076407a0 ffffea00076335a0 ffff8801da800ac0 0000000000000000 [ 37.313625] kmem_cache_alloc+0x2af/0x760 [ 37.315216] page dumped because: kasan: bad access detected [ 37.315221] [ 37.319533] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 37.332321] Memory state around the buggy address: [ 37.332336] ffff8801d8d68f80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 37.344298] ? kasan_check_write+0x14/0x20 [ 37.347804] ffff8801d8d69000: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 37.352717] ? do_raw_spin_lock+0xc1/0x200 [ 37.360830] >ffff8801d8d69080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 37.366349] __d_alloc+0xc0/0xd30 [ 37.369765] ^ [ 37.369775] ffff8801d8d69100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 37.374687] ? fuse_iget+0x1dd/0x820 [ 37.379324] ffff8801d8d69180: fb fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc [ 37.383541] ? shrink_dcache_for_umount+0x290/0x290 [ 37.391396] ================================================================== [ 37.391403] Disabling lock debugging due to kernel taint [ 37.395197] ? fuse_change_attributes+0x810/0x810 [ 37.403046] Kernel panic - not syncing: panic_on_warn set ... [ 37.403046] [ 37.407181] ? _raw_spin_unlock+0x22/0x30 [ 37.513840] ? fuse_get_root_inode+0x121/0x190 [ 37.518412] ? fuse_iget+0x820/0x820 [ 37.522118] d_make_root+0x42/0x90 [ 37.525644] fuse_fill_super+0x120e/0x1e20 [ 37.529871] ? fuse_get_root_inode+0x190/0x190 [ 37.534447] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 37.539452] ? kasan_check_read+0x11/0x20 [ 37.543591] ? cap_capable+0x1f9/0x260 [ 37.547472] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 37.553695] ? security_capable+0x99/0xc0 [ 37.557843] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 37.563372] ? ns_capable_common+0x13f/0x170 [ 37.567790] ? get_anon_bdev+0x2f0/0x2f0 [ 37.571840] ? sget+0x113/0x150 [ 37.575117] ? fuse_get_root_inode+0x190/0x190 [ 37.579688] mount_nodev+0x6b/0x110 [ 37.583305] fuse_mount+0x2c/0x40 [ 37.586750] mount_fs+0xae/0x328 [ 37.590107] vfs_kern_mount.part.34+0xd4/0x4d0 [ 37.594676] ? may_umount+0xb0/0xb0 [ 37.598293] ? _raw_read_unlock+0x22/0x30 [ 37.602429] ? __get_fs_type+0x97/0xc0 [ 37.606305] do_mount+0x564/0x3070 [ 37.609835] ? copy_mount_string+0x40/0x40 [ 37.614060] ? rcu_pm_notify+0xc0/0xc0 [ 37.617938] ? copy_mount_options+0x5f/0x380 [ 37.622334] ? rcu_read_lock_sched_held+0x108/0x120 [ 37.627338] ? kmem_cache_alloc_trace+0x616/0x780 [ 37.632171] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 37.637698] ? _copy_from_user+0xdf/0x150 [ 37.641843] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 37.647370] ? copy_mount_options+0x285/0x380 [ 37.651857] ksys_mount+0x12d/0x140 [ 37.655472] __x64_sys_mount+0xbe/0x150 [ 37.659436] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 37.664446] do_syscall_64+0x1b1/0x800 [ 37.668322] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 37.673156] ? syscall_return_slowpath+0x5c0/0x5c0 [ 37.678078] ? syscall_return_slowpath+0x30f/0x5c0 [ 37.683002] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 37.688530] ? retint_user+0x18/0x18 [ 37.692240] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 37.697086] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 37.702262] RIP: 0033:0x447cb9 [ 37.705438] RSP: 002b:00007f7a75bca918 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 37.713176] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000447cb9 [ 37.720433] RDX: 00000000004b08d6 RSI: 0000000020000340 RDI: 00000000004c7485 [ 37.727688] RBP: 000000000000a001 R08: 00007f7a75bca930 R09: 0000000000000000 [ 37.734945] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 37.742204] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 37.749476] CPU: 1 PID: 4551 Comm: syz-executor214 Tainted: G B 4.17.0-rc4+ #44 [ 37.758233] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 37.767592] Call Trace: [ 37.770194] dump_stack+0x1b9/0x294 [ 37.770366] FAULT_INJECTION: forcing a failure. [ 37.770366] name failslab, interval 1, probability 0, space 0, times 0 [ 37.773822] ? dump_stack_print_info.cold.2+0x52/0x52 [ 37.773838] ? lock_downgrade+0x8e0/0x8e0 [ 37.773858] ? vprintk_default+0x28/0x30 [ 37.799419] ? __lock_acquire+0x3790/0x5140 [ 37.803732] panic+0x22f/0x4de [ 37.806912] ? add_taint.cold.5+0x16/0x16 [ 37.811051] ? add_taint.cold.5+0x5/0x16 [ 37.815116] ? do_raw_spin_unlock+0x9e/0x2e0 [ 37.819512] ? __lock_acquire+0x3888/0x5140 [ 37.823821] kasan_end_report+0x47/0x4f [ 37.827786] kasan_report.cold.7+0x76/0x2fe [ 37.832105] __asan_report_load8_noabort+0x14/0x20 [ 37.837023] __lock_acquire+0x3888/0x5140 [ 37.841169] ? lock_downgrade+0x8e0/0x8e0 [ 37.845306] ? kasan_check_read+0x11/0x20 [ 37.849442] ? rcu_is_watching+0x85/0x140 [ 37.853576] ? debug_check_no_locks_freed+0x310/0x310 [ 37.858754] ? is_bpf_text_address+0xd7/0x170 [ 37.863247] ? kernel_text_address+0x79/0xf0 [ 37.867647] ? __unwind_start+0x166/0x330 [ 37.871780] ? __kernel_text_address+0xd/0x40 [ 37.876266] ? unwind_get_return_address+0x61/0xa0 [ 37.881188] ? __save_stack_trace+0x7e/0xd0 [ 37.885522] ? save_stack+0xa9/0xd0 [ 37.889137] ? save_stack+0x43/0xd0 [ 37.892755] ? __kasan_slab_free+0x11a/0x170 [ 37.897153] ? kasan_slab_free+0xe/0x10 [ 37.901113] ? kfree+0xd9/0x260 [ 37.904380] ? unregister_shrinker+0x216/0x3a0 [ 37.908951] ? deactivate_locked_super+0x70/0x100 [ 37.913777] ? mount_nodev+0xfa/0x110 [ 37.917565] ? fuse_mount+0x2c/0x40 [ 37.921182] ? mount_fs+0xae/0x328 [ 37.924713] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 37.929457] ? do_mount+0x564/0x3070 [ 37.933158] ? ksys_mount+0x12d/0x140 [ 37.936944] ? graph_lock+0x170/0x170 [ 37.940735] ? kasan_check_read+0x11/0x20 [ 37.944871] ? do_raw_spin_unlock+0x9e/0x2e0 [ 37.949268] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 37.953838] ? print_usage_bug+0xc0/0xc0 [ 37.957887] ? kasan_check_write+0x14/0x20 [ 37.962109] ? do_raw_spin_lock+0xc1/0x200 [ 37.966332] lock_acquire+0x1dc/0x520 [ 37.970127] ? fuse_kill_sb_anon+0x50/0xb0 [ 37.974349] ? lock_release+0xa10/0xa10 [ 37.978315] ? check_same_owner+0x320/0x320 [ 37.982624] ? quarantine_put+0xeb/0x190 [ 37.986672] ? rcu_note_context_switch+0x710/0x710 [ 37.991591] ? __might_sleep+0x95/0x190 [ 37.995563] down_write+0x87/0x120 [ 37.999091] ? fuse_kill_sb_anon+0x50/0xb0 [ 38.003311] ? down_read+0x1b0/0x1b0 [ 38.007017] ? perf_trace_mm_vmscan_writepage+0x750/0x750 [ 38.012549] fuse_kill_sb_anon+0x50/0xb0 [ 38.016605] deactivate_locked_super+0x97/0x100 [ 38.021261] ? fuse_get_root_inode+0x190/0x190 [ 38.025833] mount_nodev+0xfa/0x110 [ 38.029451] fuse_mount+0x2c/0x40 [ 38.032901] mount_fs+0xae/0x328 [ 38.036268] vfs_kern_mount.part.34+0xd4/0x4d0 [ 38.040924] ? may_umount+0xb0/0xb0 [ 38.044543] ? _raw_read_unlock+0x22/0x30 [ 38.048680] ? __get_fs_type+0x97/0xc0 [ 38.052559] do_mount+0x564/0x3070 [ 38.056090] ? do_raw_spin_unlock+0x9e/0x2e0 [ 38.060496] ? copy_mount_string+0x40/0x40 [ 38.064721] ? rcu_pm_notify+0xc0/0xc0 [ 38.068600] ? copy_mount_options+0x5f/0x380 [ 38.072995] ? rcu_read_lock_sched_held+0x108/0x120 [ 38.077999] ? kmem_cache_alloc_trace+0x616/0x780 [ 38.082835] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 38.088362] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 38.093888] ? copy_mount_options+0x285/0x380 [ 38.098377] ksys_mount+0x12d/0x140 [ 38.101993] __x64_sys_mount+0xbe/0x150 [ 38.105958] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 38.110964] do_syscall_64+0x1b1/0x800 [ 38.114840] ? finish_task_switch+0x1ca/0x810 [ 38.119325] ? syscall_return_slowpath+0x5c0/0x5c0 [ 38.124245] ? syscall_return_slowpath+0x30f/0x5c0 [ 38.129207] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 38.134731] ? retint_user+0x18/0x18 [ 38.138435] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 38.143267] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 38.148446] RIP: 0033:0x447cb9 [ 38.151623] RSP: 002b:00007f7a75bca918 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 38.159321] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000447cb9 [ 38.166591] RDX: 00000000004b08d6 RSI: 0000000020000340 RDI: 00000000004c7485 [ 38.174196] RBP: 000000000000a001 R08: 00007f7a75bca930 R09: 0000000000000000 [ 38.181452] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 38.188708] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 38.195984] CPU: 0 PID: 4583 Comm: syz-executor214 Tainted: G B 4.17.0-rc4+ #44 [ 38.204731] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 38.214068] Call Trace: [ 38.216649] dump_stack+0x1b9/0x294 [ 38.220273] ? dump_stack_print_info.cold.2+0x52/0x52 [ 38.225449] ? idr_alloc_u32+0x22d/0x3d0 [ 38.229500] ? mutex_trylock+0x2a0/0x2a0 [ 38.233556] should_fail.cold.4+0xa/0x1a [ 38.237605] ? kasan_check_write+0x14/0x20 [ 38.241823] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 38.246916] ? wait_for_completion+0x870/0x870 [ 38.251488] ? kasan_check_read+0x11/0x20 [ 38.255623] ? device_pm_add+0x221/0x340 [ 38.259670] ? lock_downgrade+0x8e0/0x8e0 [ 38.263802] ? kasan_check_write+0x14/0x20 [ 38.268031] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 38.272945] ? kasan_check_write+0x14/0x20 [ 38.277165] ? wait_for_completion+0x870/0x870 [ 38.281742] ? lock_acquire+0x1dc/0x520 [ 38.285698] ? fs_reclaim_acquire+0x20/0x20 [ 38.290003] ? lock_downgrade+0x8e0/0x8e0 [ 38.294139] ? lock_acquire+0x1dc/0x520 [ 38.298099] ? check_same_owner+0x320/0x320 [ 38.302413] ? rcu_note_context_switch+0x710/0x710 [ 38.307330] __should_failslab+0x124/0x180 [ 38.311557] should_failslab+0x9/0x14 [ 38.315344] kmem_cache_alloc_trace+0x2cb/0x780 [ 38.319998] ? do_raw_spin_lock+0xc1/0x200 [ 38.324223] ? device_create_file+0x1e0/0x1e0 [ 38.328704] kobject_uevent_env+0x20f/0xea0 [ 38.333017] ? device_pm_add+0x221/0x340 [ 38.337068] kobject_uevent+0x1f/0x30 [ 38.340851] device_add+0xb01/0x16d0 [ 38.344553] ? device_private_init+0x230/0x230 [ 38.349122] ? kfree+0x15e/0x260 [ 38.352479] ? kfree_const+0x5e/0x70 [ 38.356183] device_create_groups_vargs+0x1ff/0x270 [ 38.361185] device_create_vargs+0x46/0x60 [ 38.365413] bdi_register_va.part.10+0xbb/0x9b0 [ 38.370067] ? cgwb_kill+0x630/0x630 [ 38.373771] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 38.379291] ? bdi_init+0x416/0x510 [ 38.382925] ? wb_init+0x9e0/0x9e0 [ 38.386454] ? kasan_unpoison_shadow+0x35/0x50 [ 38.391019] ? kasan_kmalloc+0xc4/0xe0 [ 38.394892] ? kmem_cache_alloc_node_trace+0x302/0x770 [ 38.400156] ? _raw_spin_unlock+0x22/0x30 [ 38.404291] bdi_register_va+0x68/0x80 [ 38.408169] super_setup_bdi_name+0x123/0x220 [ 38.416213] ? kill_block_super+0x100/0x100 [ 38.420528] ? kmem_cache_alloc_trace+0x318/0x780 [ 38.425358] ? match_wildcard+0x3c0/0x3c0 [ 38.429492] ? trace_hardirqs_on+0xd/0x10 [ 38.433639] fuse_fill_super+0xe6e/0x1e20 [ 38.437777] ? fuse_get_root_inode+0x190/0x190 [ 38.442346] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 38.447352] ? cap_capable+0x1f9/0x260 [ 38.451231] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 38.456755] ? security_capable+0x99/0xc0 [ 38.460891] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 38.466411] ? ns_capable_common+0x13f/0x170 [ 38.470803] ? get_anon_bdev+0x2f0/0x2f0 [ 38.474858] ? sget+0x113/0x150 [ 38.478125] ? fuse_get_root_inode+0x190/0x190 [ 38.482692] mount_nodev+0x6b/0x110 [ 38.486304] fuse_mount+0x2c/0x40 [ 38.489743] mount_fs+0xae/0x328 [ 38.493096] vfs_kern_mount.part.34+0xd4/0x4d0 [ 38.497664] ? may_umount+0xb0/0xb0 [ 38.501274] ? _raw_read_unlock+0x22/0x30 [ 38.505406] ? __get_fs_type+0x97/0xc0 [ 38.509279] do_mount+0x564/0x3070 [ 38.512812] ? do_raw_spin_unlock+0x9e/0x2e0 [ 38.517206] ? copy_mount_string+0x40/0x40 [ 38.521429] ? do_raw_spin_lock+0xc1/0x200 [ 38.525650] ? kasan_unpoison_shadow+0x35/0x50 [ 38.530218] ? kasan_kmalloc+0xc4/0xe0 [ 38.534095] ? kmem_cache_alloc_trace+0x318/0x780 [ 38.538925] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 38.544450] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 38.549972] ? copy_mount_options+0x285/0x380 [ 38.554554] ksys_mount+0x12d/0x140 [ 38.558169] __x64_sys_mount+0xbe/0x150 [ 38.562132] do_syscall_64+0x1b1/0x800 [ 38.566005] ? finish_task_switch+0x1ca/0x810 [ 38.570489] ? syscall_return_slowpath+0x5c0/0x5c0 [ 38.575495] ? syscall_return_slowpath+0x30f/0x5c0 [ 38.580418] ? prepare_exit_to_usermode+0x390/0x390 [ 38.585422] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 38.590943] ? prepare_exit_to_usermode+0x285/0x390 [ 38.595946] ? perf_trace_sys_enter+0xaf0/0xaf0 [ 38.600604] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 38.605436] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 38.610607] RIP: 0033:0x447cb9 [ 38.613777] RSP: 002b:00007f7a75bca918 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 38.621472] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000447cb9 [ 38.628729] RDX: 00000000004b08d6 RSI: 0000000020000340 RDI: 00000000004c7485 [ 38.635982] RBP: 000000000000a001 R08: 00007f7a75bca930 R09: 0000000000000000 [ 38.643237] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 38.650495] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 38.659940] Dumping ftrace buffer: [ 38.663472] (ftrace buffer empty) [ 38.667159] Kernel Offset: disabled [ 38.670770] Rebooting in 86400 seconds..