Warning: Permanently added '10.128.15.194' (ECDSA) to the list of known hosts. 2020/06/16 05:42:13 fuzzer started 2020/06/16 05:42:13 connecting to host at 10.128.0.26:43193 2020/06/16 05:42:13 checking machine... 2020/06/16 05:42:13 checking revisions... 2020/06/16 05:42:13 testing simple program... syzkaller login: [ 65.623135][ T6812] BUG: using smp_processor_id() in preemptible [00000000] code: syz-fuzzer/6812 [ 65.632439][ T6812] caller is ext4_mb_new_blocks+0xa4d/0x3b70 [ 65.638542][ T6812] CPU: 1 PID: 6812 Comm: syz-fuzzer Not tainted 5.8.0-rc1-syzkaller #0 [ 65.646927][ T6812] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 65.657248][ T6812] Call Trace: [ 65.661204][ T6812] dump_stack+0x18f/0x20d [ 65.665706][ T6812] check_preemption_disabled+0x20d/0x220 [ 65.672684][ T6812] ext4_mb_new_blocks+0xa4d/0x3b70 [ 65.677844][ T6812] ? ext4_ext_search_right+0x2ca/0xb20 [ 65.683590][ T6812] ? ext4_inode_to_goal_block+0x2df/0x3f0 [ 65.689630][ T6812] ext4_ext_map_blocks+0x201b/0x33e0 [ 65.695519][ T6812] ? ext4_ext_release+0x10/0x10 [ 65.701095][ T6812] ? down_write_killable+0x170/0x170 [ 65.706754][ T6812] ? ext4_es_lookup_extent+0x41d/0xd10 [ 65.712234][ T6812] ext4_map_blocks+0x4cb/0x1640 [ 65.718566][ T6812] ? ext4_issue_zeroout+0x1e0/0x1e0 [ 65.724428][ T6812] ? rcu_read_lock_sched_held+0x9c/0xd0 [ 65.729988][ T6812] ? rcu_read_lock_any_held.part.0+0x50/0x50 [ 65.736156][ T6812] ? prandom_u32_state+0xe/0x170 [ 65.741094][ T6812] ? __brelse+0x84/0xa0 [ 65.745330][ T6812] ? __ext4_new_inode+0x144/0x55e0 [ 65.750812][ T6812] ext4_getblk+0xad/0x520 [ 65.755547][ T6812] ? ext4_iomap_overwrite_begin+0xa0/0xa0 [ 65.761362][ T6812] ? ext4_free_inode+0x1700/0x1700 [ 65.766593][ T6812] ext4_bread+0x7c/0x380 [ 65.771245][ T6812] ? ext4_getblk+0x520/0x520 [ 65.776134][ T6812] ? dquot_get_next_dqblk+0x180/0x180 [ 65.781692][ T6812] ext4_append+0x153/0x360 [ 65.787040][ T6812] ext4_mkdir+0x5e0/0xdf0 [ 65.791489][ T6812] ? ext4_rmdir+0xde0/0xde0 [ 65.796209][ T6812] ? security_inode_permission+0xc4/0xf0 [ 65.802619][ T6812] vfs_mkdir+0x419/0x690 [ 65.806868][ T6812] do_mkdirat+0x21e/0x280 [ 65.811463][ T6812] ? __ia32_sys_mknod+0xb0/0xb0 [ 65.816758][ T6812] ? do_syscall_64+0x1c/0xe0 [ 65.821803][ T6812] ? lockdep_hardirqs_on_prepare+0x3a2/0x590 [ 65.827895][ T6812] do_syscall_64+0x60/0xe0 [ 65.832537][ T6812] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 65.839549][ T6812] RIP: 0033:0x4b02a0 [ 65.843429][ T6812] Code: Bad RIP value. [ 65.847656][ T6812] RSP: 002b:000000c0000d94b8 EFLAGS: 00000212 ORIG_RAX: 0000000000000102 [ 65.857130][ T6812] RAX: ffffffffffffffda RBX: 000000c00002e500 RCX: 00000000004b02a0 [ 65.865584][ T6812] RDX: 00000000000001c0 RSI: 000000c00009cca0 RDI: ffffffffffffff9c [ 65.874495][ T6812] RBP: 000000c0000d9510 R08: 0000000000000000 R09: 0000000000000000 [ 65.882675][ T6812] R10: 0000000000000000 R11: 0000000000000212 R12: ffffffffffffffff [ 65.890967][ T6812] R13: 0000000000000066 R14: 0000000000000065 R15: 0000000000000100 [ 65.918804][ T6815] BUG: using smp_processor_id() in preemptible [00000000] code: syz-executor.0/6815 [ 65.929709][ T6815] caller is ext4_mb_new_blocks+0xa4d/0x3b70 [ 65.936221][ T6815] CPU: 0 PID: 6815 Comm: syz-executor.0 Not tainted 5.8.0-rc1-syzkaller #0 [ 65.945443][ T6815] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 65.955968][ T6815] Call Trace: [ 65.959294][ T6815] dump_stack+0x18f/0x20d [ 65.963692][ T6815] check_preemption_disabled+0x20d/0x220 [ 65.969412][ T6815] ext4_mb_new_blocks+0xa4d/0x3b70 [ 65.974868][ T6815] ? ext4_ext_search_right+0x2ca/0xb20 [ 65.980668][ T6815] ? ext4_inode_to_goal_block+0x2df/0x3f0 [ 65.986598][ T6815] ext4_ext_map_blocks+0x201b/0x33e0 [ 65.992503][ T6815] ? ext4_ext_release+0x10/0x10 [ 65.998514][ T6815] ? down_write_killable+0x170/0x170 [ 66.004478][ T6815] ? ext4_es_lookup_extent+0x41d/0xd10 [ 66.010218][ T6815] ext4_map_blocks+0x4cb/0x1640 [ 66.015792][ T6815] ? ext4_issue_zeroout+0x1e0/0x1e0 [ 66.022052][ T6815] ? rcu_read_lock_sched_held+0x9c/0xd0 [ 66.027686][ T6815] ? rcu_read_lock_any_held.part.0+0x50/0x50 [ 66.034264][ T6815] ? prandom_u32_state+0xe/0x170 [ 66.039334][ T6815] ? __brelse+0x84/0xa0 [ 66.044057][ T6815] ? __ext4_new_inode+0x144/0x55e0 [ 66.049629][ T6815] ext4_getblk+0xad/0x520 [ 66.053961][ T6815] ? ext4_iomap_overwrite_begin+0xa0/0xa0 [ 66.060015][ T6815] ? ext4_free_inode+0x1700/0x1700 [ 66.065341][ T6815] ext4_bread+0x7c/0x380 [ 66.069580][ T6815] ? ext4_getblk+0x520/0x520 [ 66.074523][ T6815] ? dquot_get_next_dqblk+0x180/0x180 [ 66.080802][ T6815] ext4_append+0x153/0x360 [ 66.085229][ T6815] ext4_mkdir+0x5e0/0xdf0 [ 66.089660][ T6815] ? ext4_rmdir+0xde0/0xde0 [ 66.094613][ T6815] ? security_inode_permission+0xc4/0xf0 [ 66.102244][ T6815] vfs_mkdir+0x419/0x690 [ 66.106984][ T6815] do_mkdirat+0x21e/0x280 [ 66.111326][ T6815] ? __ia32_sys_mknod+0xb0/0xb0 [ 66.116248][ T6815] ? do_syscall_64+0x1c/0xe0 [ 66.121637][ T6815] ? lockdep_hardirqs_on_prepare+0x3a2/0x590 [ 66.128744][ T6815] do_syscall_64+0x60/0xe0 [ 66.133522][ T6815] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 66.139812][ T6815] RIP: 0033:0x45bed7 [ 66.143739][ T6815] Code: Bad RIP value. [ 66.148716][ T6815] RSP: 002b:00007ffe98d30398 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 66.157744][ T6815] RAX: ffffffffffffffda RBX: 000000000003a2f8 RCX: 000000000045bed7 [ 66.165835][ T6815] RDX: 0000000000000002 RSI: 00000000000001c0 RDI: 00007ffe98d30570 [ 66.174304][ T6815] RBP: 0000000000000001 R08: 000000000000f8c0 R09: 0000000000002c40 [ 66.182326][ T6815] R10: 0000000000000011 R11: 0000000000000246 R12: 00000000000000c2 [ 66.190312][ T6815] R13: 00007ffe98d30570 R14: 8421084210842109 R15: 00007ffe98d3057c [ 66.281760][ T6816] IPVS: ftp: loaded support on port[0] = 21 [ 66.318074][ T6816] BUG: using smp_processor_id() in preemptible [00000000] code: syz-executor.0/6816 [ 66.328656][ T6816] caller is ext4_mb_new_blocks+0xa4d/0x3b70 [ 66.335681][ T6816] CPU: 0 PID: 6816 Comm: syz-executor.0 Not tainted 5.8.0-rc1-syzkaller #0 [ 66.344638][ T6816] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 66.355888][ T6816] Call Trace: [ 66.359482][ T6816] dump_stack+0x18f/0x20d [ 66.364152][ T6816] check_preemption_disabled+0x20d/0x220 [ 66.370163][ T6816] ext4_mb_new_blocks+0xa4d/0x3b70 [ 66.375537][ T6816] ? ext4_ext_search_right+0x2ca/0xb20 [ 66.380995][ T6816] ? ext4_inode_to_goal_block+0x2df/0x3f0 [ 66.387280][ T6816] ext4_ext_map_blocks+0x201b/0x33e0 [ 66.393311][ T6816] ? ext4_ext_release+0x10/0x10 [ 66.398259][ T6816] ? down_write_killable+0x170/0x170 [ 66.404037][ T6816] ? ext4_es_lookup_extent+0x41d/0xd10 [ 66.409590][ T6816] ext4_map_blocks+0x4cb/0x1640 [ 66.414866][ T6816] ? ext4_issue_zeroout+0x1e0/0x1e0 [ 66.420077][ T6816] ? rcu_read_lock_sched_held+0x9c/0xd0 [ 66.425835][ T6816] ? rcu_read_lock_any_held.part.0+0x50/0x50 [ 66.432345][ T6816] ? prandom_u32_state+0xe/0x170 [ 66.437289][ T6816] ? __brelse+0x84/0xa0 [ 66.441905][ T6816] ? __ext4_new_inode+0x144/0x55e0 [ 66.447193][ T6816] ext4_getblk+0xad/0x520 [ 66.452341][ T6816] ? ext4_iomap_overwrite_begin+0xa0/0xa0 [ 66.458471][ T6816] ? ext4_free_inode+0x1700/0x1700 [ 66.463737][ T6816] ext4_bread+0x7c/0x380 [ 66.467980][ T6816] ? ext4_getblk+0x520/0x520 [ 66.473300][ T6816] ? dquot_get_next_dqblk+0x180/0x180 [ 66.479350][ T6816] ext4_append+0x153/0x360 [ 66.484040][ T6816] ext4_mkdir+0x5e0/0xdf0 [ 66.488609][ T6816] ? ext4_rmdir+0xde0/0xde0 [ 66.493411][ T6816] ? security_inode_permission+0xc4/0xf0 [ 66.499527][ T6816] vfs_mkdir+0x419/0x690 [ 66.504205][ T6816] do_mkdirat+0x21e/0x280 [ 66.508814][ T6816] ? __ia32_sys_mknod+0xb0/0xb0 [ 66.514568][ T6816] ? do_syscall_64+0x1c/0xe0 [ 66.519675][ T6816] ? lockdep_hardirqs_on_prepare+0x3a2/0x590 [ 66.525976][ T6816] do_syscall_64+0x60/0xe0 [ 66.530767][ T6816] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 66.537054][ T6816] RIP: 0033:0x45bed7 [ 66.543666][ T6816] Code: Bad RIP value. [ 66.547815][ T6816] RSP: 002b:00007ffe98d30288 EFLAGS: 00000206 ORIG_RAX: 0000000000000053 [ 66.556504][ T6816] RAX: ffffffffffffffda RBX: 000000000078c988 RCX: 000000000045bed7 [ 66.565182][ T6816] RDX: 00007ffe98d302d3 RSI: 00000000000001ff RDI: 00007ffe98d302d0 [ 66.573241][ T6816] RBP: 00000000000000f8 R08: 0000000000000000 R09: 0000000000000003 [ 66.581295][ T6816] R10: 0000000000000064 R11: 0000000000000206 R12: 00000000004185c0 [ 66.589467][ T6816] R13: 00007ffe98d302c0 R14: 0000000000000000 R15: 00007ffe98d302d0 [ 66.644981][ T6816] BUG: using smp_processor_id() in preemptible [00000000] code: syz-executor.0/6816 [ 66.654782][ T6816] caller is ext4_mb_new_blocks+0xa4d/0x3b70 [ 66.660861][ T6816] CPU: 0 PID: 6816 Comm: syz-executor.0 Not tainted 5.8.0-rc1-syzkaller #0 [ 66.670067][ T6816] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 66.680137][ T6816] Call Trace: [ 66.683462][ T6816] dump_stack+0x18f/0x20d [ 66.688015][ T6816] check_preemption_disabled+0x20d/0x220 [ 66.693927][ T6816] ext4_mb_new_blocks+0xa4d/0x3b70 [ 66.699103][ T6816] ? ext4_ext_search_right+0x2ca/0xb20 [ 66.704587][ T6816] ? ext4_inode_to_goal_block+0x2df/0x3f0 [ 66.711449][ T6816] ext4_ext_map_blocks+0x201b/0x33e0 [ 66.716969][ T6816] ? ext4_ext_release+0x10/0x10 [ 66.721864][ T6816] ? down_write_killable+0x170/0x170 [ 66.727302][ T6816] ? ext4_es_lookup_extent+0x41d/0xd10 [ 66.732792][ T6816] ext4_map_blocks+0x4cb/0x1640 [ 66.737844][ T6816] ? ext4_issue_zeroout+0x1e0/0x1e0 [ 66.743407][ T6816] ? rcu_read_lock_sched_held+0x9c/0xd0 [ 66.748965][ T6816] ? rcu_read_lock_any_held.part.0+0x50/0x50 [ 66.755150][ T6816] ? prandom_u32_state+0xe/0x170 [ 66.761889][ T6816] ? __brelse+0x84/0xa0 [ 66.766197][ T6816] ? __ext4_new_inode+0x144/0x55e0 [ 66.771864][ T6816] ext4_getblk+0xad/0x520 [ 66.776452][ T6816] ? ext4_iomap_overwrite_begin+0xa0/0xa0 [ 66.782443][ T6816] ? ext4_free_inode+0x1700/0x1700 [ 66.787948][ T6816] ext4_bread+0x7c/0x380 [ 66.792341][ T6816] ? ext4_getblk+0x520/0x520 [ 66.797315][ T6816] ? dquot_get_next_dqblk+0x180/0x180 [ 66.802780][ T6816] ext4_append+0x153/0x360 [ 66.807838][ T6816] ext4_mkdir+0x5e0/0xdf0 [ 66.812474][ T6816] ? ext4_rmdir+0xde0/0xde0 [ 66.817056][ T6816] ? security_inode_permission+0xc4/0xf0 [ 66.824011][ T6816] vfs_mkdir+0x419/0x690 [ 66.828580][ T6816] do_mkdirat+0x21e/0x280 [ 66.832993][ T6816] ? __ia32_sys_mknod+0xb0/0xb0 [ 66.838018][ T6816] ? do_syscall_64+0x1c/0xe0 2020/06/16 05:42:15 building call list... [ 66.843115][ T6816] ? lockdep_hardirqs_on_prepare+0x3a2/0x590 [ 66.849237][ T6816] do_syscall_64+0x60/0xe0 [ 66.853960][ T6816] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 66.860399][ T6816] RIP: 0033:0x45bed7 [ 66.864522][ T6816] Code: Bad RIP value. [ 66.869298][ T6816] RSP: 002b:00007ffe98d30288 EFLAGS: 00000206 ORIG_RAX: 0000000000000053 [ 66.878341][ T6816] RAX: ffffffffffffffda RBX: 000000000001044a RCX: 000000000045bed7 [ 66.887063][ T6816] RDX: 00007ffe98d302d3 RSI: 00000000000001ff RDI: 00007ffe98d302d0 [ 66.895586][ T6816] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000003 [ 66.904228][ T6816] R10: 0000000000000064 R11: 0000000000000206 R12: 0000000000000003 [ 66.912993][ T6816] R13: 00007ffe98d302c0 R14: 0000000000010444 R15: 00007ffe98d302d0 [ 67.140433][ T353] tipc: TX() has been purged, node left! [ 67.682380][ T353] ================================================================== [ 67.691297][ T353] BUG: KASAN: use-after-free in afs_wake_up_async_call+0x6aa/0x770 [ 67.699581][ T353] Write of size 1 at addr ffff8880a8c529e4 by task kworker/u4:8/353 [ 67.710497][ T353] [ 67.713081][ T353] CPU: 1 PID: 353 Comm: kworker/u4:8 Not tainted 5.8.0-rc1-syzkaller #0 [ 67.723900][ T353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 67.734962][ T353] Workqueue: netns cleanup_net [ 67.740141][ T353] Call Trace: [ 67.743553][ T353] dump_stack+0x18f/0x20d [ 67.748083][ T353] ? afs_wake_up_async_call+0x6aa/0x770 [ 67.753904][ T353] ? afs_wake_up_async_call+0x6aa/0x770 [ 67.759562][ T353] ? afs_put_call+0xa40/0xa40 [ 67.764340][ T353] print_address_description.constprop.0.cold+0xd3/0x413 [ 67.772465][ T353] ? vprintk_func+0x97/0x1a6 [ 67.777282][ T353] ? afs_wake_up_async_call+0x6aa/0x770 [ 67.783313][ T353] kasan_report.cold+0x1f/0x37 [ 67.788210][ T353] ? rcu_read_lock_held_common+0x51/0xa0 [ 67.793851][ T353] ? afs_wake_up_async_call+0x6aa/0x770 [ 67.799519][ T353] afs_wake_up_async_call+0x6aa/0x770 [ 67.805389][ T353] ? afs_close_socket+0x320/0x320 [ 67.810522][ T353] ? afs_put_call+0xa40/0xa40 [ 67.816418][ T353] rxrpc_notify_socket+0x1db/0x5d0 [ 67.822775][ T353] ? afs_put_call+0xa40/0xa40 [ 67.827602][ T353] __rxrpc_set_call_completion.part.0+0x172/0x410 [ 67.834212][ T353] rxrpc_call_completed+0xca/0xf0 [ 67.839431][ T353] rxrpc_discard_prealloc+0x781/0xab0 [ 67.844826][ T353] ? lock_sock_nested+0x94/0x110 [ 67.851796][ T353] rxrpc_listen+0x147/0x360 [ 67.856759][ T353] afs_close_socket+0x95/0x320 [ 67.861650][ T353] ? afs_purge_servers+0x16d/0x300 [ 67.866776][ T353] ? afs_rx_discard_new_call+0x50/0x50 [ 67.873020][ T353] ? init_wait_var_entry+0x200/0x200 [ 67.878727][ T353] ? rcu_read_lock_held_common+0xa0/0xa0 [ 67.886942][ T353] ? check_preemption_disabled+0x38/0x220 [ 67.893466][ T353] afs_net_exit+0x1bc/0x310 [ 67.898569][ T353] ? afs_net_init+0xe30/0xe30 [ 67.904845][ T353] ops_exit_list.isra.0+0xa8/0x150 [ 67.910065][ T353] cleanup_net+0x511/0xa50 [ 67.914653][ T353] ? unregister_pernet_device+0x70/0x70 [ 67.920211][ T353] ? rcu_read_lock_any_held.part.0+0x50/0x50 [ 67.926210][ T353] process_one_work+0x965/0x1690 [ 67.931292][ T353] ? lock_release+0x800/0x800 [ 67.936800][ T353] ? pwq_dec_nr_in_flight+0x310/0x310 [ 67.942314][ T353] ? rwlock_bug.part.0+0x90/0x90 [ 67.947493][ T353] worker_thread+0x96/0xe10 [ 67.952196][ T353] ? process_one_work+0x1690/0x1690 [ 67.957412][ T353] kthread+0x3b5/0x4a0 [ 67.962630][ T353] ? kthread_mod_delayed_work+0x1a0/0x1a0 [ 67.972144][ T353] ? kthread_mod_delayed_work+0x1a0/0x1a0 [ 67.979025][ T353] ret_from_fork+0x1f/0x30 [ 67.984594][ T353] [ 67.986931][ T353] Allocated by task 6816: [ 67.991654][ T353] save_stack+0x1b/0x40 [ 67.996273][ T353] __kasan_kmalloc.constprop.0+0xbf/0xd0 [ 68.002015][ T353] kmem_cache_alloc_trace+0x153/0x7d0 [ 68.007931][ T353] afs_alloc_call+0x55/0x630 [ 68.012613][ T353] afs_charge_preallocation+0xe9/0x2d0 [ 68.018263][ T353] afs_open_socket+0x292/0x360 [ 68.023485][ T353] afs_net_init+0xa6c/0xe30 [ 68.028389][ T353] ops_init+0xaf/0x420 [ 68.033002][ T353] setup_net+0x2de/0x860 [ 68.037507][ T353] copy_net_ns+0x293/0x590 [ 68.041943][ T353] create_new_namespaces+0x3fb/0xb30 [ 68.047234][ T353] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 68.053560][ T353] ksys_unshare+0x43d/0x8e0 [ 68.058075][ T353] __x64_sys_unshare+0x2d/0x40 [ 68.062937][ T353] do_syscall_64+0x60/0xe0 [ 68.067452][ T353] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 68.073761][ T353] [ 68.076167][ T353] Freed by task 353: [ 68.080078][ T353] save_stack+0x1b/0x40 [ 68.084267][ T353] __kasan_slab_free+0xf7/0x140 [ 68.090363][ T353] kfree+0x109/0x2b0 [ 68.097763][ T353] afs_put_call+0x585/0xa40 [ 68.102457][ T353] rxrpc_discard_prealloc+0x764/0xab0 [ 68.108021][ T353] rxrpc_listen+0x147/0x360 [ 68.112766][ T353] afs_close_socket+0x95/0x320 [ 68.117710][ T353] afs_net_exit+0x1bc/0x310 [ 68.122229][ T353] ops_exit_list.isra.0+0xa8/0x150 [ 68.127610][ T353] cleanup_net+0x511/0xa50 [ 68.132072][ T353] process_one_work+0x965/0x1690 [ 68.139692][ T353] worker_thread+0x96/0xe10 [ 68.144422][ T353] kthread+0x3b5/0x4a0 [ 68.148710][ T353] ret_from_fork+0x1f/0x30 [ 68.153525][ T353] [ 68.155871][ T353] The buggy address belongs to the object at ffff8880a8c52800 [ 68.155871][ T353] which belongs to the cache kmalloc-1k of size 1024 [ 68.174162][ T353] The buggy address is located 484 bytes inside of [ 68.174162][ T353] 1024-byte region [ffff8880a8c52800, ffff8880a8c52c00) [ 68.188888][ T353] The buggy address belongs to the page: [ 68.194933][ T353] page:ffffea0002a31480 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 [ 68.204228][ T353] flags: 0xfffe0000000200(slab) [ 68.209096][ T353] raw: 00fffe0000000200 ffffea0002379a48 ffffea00029faa88 ffff8880aa000c40 [ 68.217914][ T353] raw: 0000000000000000 ffff8880a8c52000 0000000100000002 0000000000000000 [ 68.227047][ T353] page dumped because: kasan: bad access detected [ 68.233498][ T353] [ 68.236166][ T353] Memory state around the buggy address: [ 68.241853][ T353] ffff8880a8c52880: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 68.250462][ T353] ffff8880a8c52900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 68.258742][ T353] >ffff8880a8c52980: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 68.266902][ T353] ^ [ 68.274453][ T353] ffff8880a8c52a00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 68.282525][ T353] ffff8880a8c52a80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 68.290596][ T353] ================================================================== [ 68.298657][ T353] Disabling lock debugging due to kernel taint [ 68.305108][ T353] Kernel panic - not syncing: panic_on_warn set ... [ 68.311812][ T353] CPU: 1 PID: 353 Comm: kworker/u4:8 Tainted: G B 5.8.0-rc1-syzkaller #0 [ 68.321705][ T353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 68.334301][ T353] Workqueue: netns cleanup_net [ 68.339803][ T353] Call Trace: [ 68.343109][ T353] dump_stack+0x18f/0x20d [ 68.347488][ T353] ? afs_wake_up_async_call+0x670/0x770 [ 68.353141][ T353] ? afs_put_call+0xa40/0xa40 [ 68.357831][ T353] panic+0x2e3/0x75c [ 68.362277][ T353] ? __warn_printk+0xf3/0xf3 [ 68.367265][ T353] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 68.373994][ T353] ? trace_hardirqs_on+0x55/0x220 [ 68.379483][ T353] ? afs_wake_up_async_call+0x6aa/0x770 [ 68.385347][ T353] ? afs_wake_up_async_call+0x6aa/0x770 [ 68.392389][ T353] ? afs_put_call+0xa40/0xa40 [ 68.397704][ T353] end_report+0x4d/0x53 [ 68.402052][ T353] kasan_report.cold+0xd/0x37 [ 68.406926][ T353] ? rcu_read_lock_held_common+0x51/0xa0 [ 68.412983][ T353] ? afs_wake_up_async_call+0x6aa/0x770 [ 68.419068][ T353] afs_wake_up_async_call+0x6aa/0x770 [ 68.424956][ T353] ? afs_close_socket+0x320/0x320 [ 68.430081][ T353] ? afs_put_call+0xa40/0xa40 [ 68.434910][ T353] rxrpc_notify_socket+0x1db/0x5d0 [ 68.440211][ T353] ? afs_put_call+0xa40/0xa40 [ 68.445078][ T353] __rxrpc_set_call_completion.part.0+0x172/0x410 [ 68.451994][ T353] rxrpc_call_completed+0xca/0xf0 [ 68.457180][ T353] rxrpc_discard_prealloc+0x781/0xab0 [ 68.462967][ T353] ? lock_sock_nested+0x94/0x110 [ 68.468877][ T353] rxrpc_listen+0x147/0x360 [ 68.473568][ T353] afs_close_socket+0x95/0x320 [ 68.478427][ T353] ? afs_purge_servers+0x16d/0x300 [ 68.483640][ T353] ? afs_rx_discard_new_call+0x50/0x50 [ 68.490410][ T353] ? init_wait_var_entry+0x200/0x200 [ 68.495972][ T353] ? rcu_read_lock_held_common+0xa0/0xa0 [ 68.502487][ T353] ? check_preemption_disabled+0x38/0x220 [ 68.508575][ T353] afs_net_exit+0x1bc/0x310 [ 68.513226][ T353] ? afs_net_init+0xe30/0xe30 [ 68.518078][ T353] ops_exit_list.isra.0+0xa8/0x150 [ 68.523443][ T353] cleanup_net+0x511/0xa50 [ 68.528056][ T353] ? unregister_pernet_device+0x70/0x70 [ 68.533946][ T353] ? rcu_read_lock_any_held.part.0+0x50/0x50 [ 68.540304][ T353] process_one_work+0x965/0x1690 [ 68.549613][ T353] ? lock_release+0x800/0x800 [ 68.555006][ T353] ? pwq_dec_nr_in_flight+0x310/0x310 [ 68.561072][ T353] ? rwlock_bug.part.0+0x90/0x90 [ 68.566484][ T353] worker_thread+0x96/0xe10 [ 68.572659][ T353] ? process_one_work+0x1690/0x1690 [ 68.577871][ T353] kthread+0x3b5/0x4a0 [ 68.581949][ T353] ? kthread_mod_delayed_work+0x1a0/0x1a0 [ 68.588052][ T353] ? kthread_mod_delayed_work+0x1a0/0x1a0 [ 68.594610][ T353] ret_from_fork+0x1f/0x30 [ 68.601463][ T353] Kernel Offset: disabled [ 68.606020][ T353] Rebooting in 86400 seconds..