./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1803334529 <...> DUID 00:04:d6:b0:09:ff:72:32:c6:5d:c0:56:b1:2d:70:06:fa:56 forked to background, child pid 4634 [ 32.146079][ T4635] 8021q: adding VLAN 0 to HW filter on device bond0 [ 32.156504][ T4635] eql: remember to turn off Van-Jacobson compression on your slave devices Starting sshd: OK syzkaller Warning: Permanently added '10.128.1.20' (ECDSA) to the list of known hosts. execve("./syz-executor1803334529", ["./syz-executor1803334529"], 0x7ffde4aaa3a0 /* 10 vars */) = 0 brk(NULL) = 0x5555561a6000 brk(0x5555561a6c40) = 0x5555561a6c40 arch_prctl(ARCH_SET_FS, 0x5555561a6300) = 0 uname({sysname="Linux", nodename="syzkaller", ...}) = 0 set_tid_address(0x5555561a65d0) = 5056 set_robust_list(0x5555561a65e0, 24) = 0 rt_sigaction(SIGRTMIN, {sa_handler=0x7fed1af3d420, sa_mask=[], sa_flags=SA_RESTORER|SA_SIGINFO, sa_restorer=0x7fed1af3daf0}, NULL, 8) = 0 rt_sigaction(SIGRT_1, {sa_handler=0x7fed1af3d4c0, sa_mask=[], sa_flags=SA_RESTORER|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fed1af3daf0}, NULL, 8) = 0 rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor1803334529", 4096) = 28 brk(0x5555561c7c40) = 0x5555561c7c40 brk(0x5555561c8000) = 0x5555561c8000 mprotect(0x7fed1affe000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 openat(AT_FDCWD, "/sys/kernel/debug/failslab/ignore-gfp-wait", O_WRONLY|O_CLOEXEC) = 3 write(3, "N", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/sys/kernel/debug/fail_futex/ignore-private", O_WRONLY|O_CLOEXEC) = 3 write(3, "N", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/ignore-gfp-highmem", O_WRONLY|O_CLOEXEC) = 3 write(3, "N", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/ignore-gfp-wait", O_WRONLY|O_CLOEXEC) = 3 write(3, "N", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/min-order", O_WRONLY|O_CLOEXEC) = 3 write(3, "0", 1) = 1 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5057 attached , child_tidptr=0x5555561a65d0) = 5057 [pid 5057] set_robust_list(0x5555561a65e0, 24) = 0 [pid 5057] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5057] setpgid(0, 0) = 0 [pid 5057] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5057] write(3, "1000", 4) = 4 [pid 5057] close(3) = 0 [pid 5057] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5057] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fed1af0d000 [pid 5057] mprotect(0x7fed1af0e000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5057] clone(child_stack=0x7fed1af2d3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 5058 attached [pid 5058] set_robust_list(0x7fed1af2d9e0, 24 [pid 5057] <... clone resumed>, parent_tid=[5058], tls=0x7fed1af2d700, child_tidptr=0x7fed1af2d9d0) = 5058 [pid 5057] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5057] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5058] <... set_robust_list resumed>) = 0 [pid 5058] openat(AT_FDCWD, "/dev/nbd0", O_RDONLY) = 3 [pid 5058] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5057] <... futex resumed>) = 0 [pid 5057] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5057] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5058] socketpair(AF_UNIX, SOCK_STREAM, 0, [4, 5]) = 0 [pid 5058] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5057] <... futex resumed>) = 0 [pid 5057] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5057] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5058] openat(AT_FDCWD, "/dev/nbd0", O_RDONLY) = 6 [pid 5058] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5057] <... futex resumed>) = 0 [pid 5057] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5057] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5058] ioctl(6, NBD_SET_SOCK, 4 [pid 5057] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5057] futex(0x7fed1b0044dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5057] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fed1aeec000 [pid 5057] mprotect(0x7fed1aeed000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5057] clone(child_stack=0x7fed1af0c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[5059], tls=0x7fed1af0c700, child_tidptr=0x7fed1af0c9d0) = 5059 [pid 5057] futex(0x7fed1b0044d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5057] futex(0x7fed1b0044dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 5059 attached [pid 5059] set_robust_list(0x7fed1af0c9e0, 24) = 0 [pid 5059] ioctl(3, NBD_SET_SOCK, 4 [pid 5058] <... ioctl resumed>) = 0 [pid 5058] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5058] futex(0x7fed1b0044c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5057] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5059] <... ioctl resumed>) = -1 EBUSY (Device or resource busy) [pid 5057] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5059] futex(0x7fed1b0044dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5058] <... futex resumed>) = 0 [pid 5057] <... futex resumed>) = 1 [pid 5059] <... futex resumed>) = 0 [pid 5058] ioctl(3, NBD_SET_FLAGS, NBD_FLAG_SEND_FLUSH|NBD_FLAG_SEND_FUA|NBD_FLAG_ROTATIONAL|NBD_FLAG_SEND_TRIM|NBD_FLAG_SEND_WRITE_ZEROES|NBD_FLAG_SEND_DF|NBD_FLAG_CAN_MULTI_CONN|NBD_FLAG_SEND_RESIZE|NBD_FLAG_SEND_CACHE|0x7800 [pid 5057] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5058] <... ioctl resumed>) = 0 [pid 5058] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5057] <... futex resumed>) = 0 [pid 5058] futex(0x7fed1b0044c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5057] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5059] futex(0x7fed1b0044d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5058] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5057] <... futex resumed>) = 0 [pid 5058] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5057] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5058] <... openat resumed>) = 7 [pid 5058] write(7, "18", 2) = 2 syzkaller login: [ 57.659735][ T5059] block nbd0: Device being setup by another task [ 57.675809][ T5058] FAULT_INJECTION: forcing a failure. [ 57.675809][ T5058] name failslab, interval 1, probability 0, space 0, times 1 [ 57.688553][ T5058] CPU: 1 PID: 5058 Comm: syz-executor180 Not tainted 6.2.0-rc6-syzkaller-00003-g22b8077d0fce #0 [ 57.698982][ T5058] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023 [ 57.709050][ T5058] Call Trace: [ 57.712339][ T5058] [ 57.715286][ T5058] dump_stack_lvl+0x1e3/0x2d0 [ 57.719978][ T5058] ? nf_tcp_handle_invalid+0x630/0x630 [ 57.725434][ T5058] ? panic+0x770/0x770 [ 57.729503][ T5058] ? __might_sleep+0xc0/0xc0 [ 57.734213][ T5058] should_fail_ex+0x3aa/0x4e0 [ 57.738911][ T5058] ? new_inode_pseudo+0x81/0x1d0 [ 57.743856][ T5058] should_failslab+0x5/0x20 [ 57.748371][ T5058] kmem_cache_alloc_lru+0x75/0x320 [ 57.753502][ T5058] ? try_lookup_one_len+0x670/0x670 [ 57.758704][ T5058] new_inode_pseudo+0x81/0x1d0 [ 57.763508][ T5058] new_inode+0x25/0x1d0 [ 57.767687][ T5058] ? start_creating+0x22a/0x330 [ 57.772555][ T5058] __debugfs_create_file+0x146/0x500 [ 57.777881][ T5058] nbd_start_device+0x42c/0xb70 [ 57.782773][ T5058] nbd_start_device_ioctl+0xa7/0x5c0 [ 57.788062][ T5058] ? nbd_ioctl+0xd7/0x5b0 [ 57.792401][ T5058] ? nbd_set_size+0x490/0x490 [ 57.797097][ T5058] ? safesetid_security_capable+0xab/0x1b0 [ 57.802934][ T5058] ? bpf_lsm_capable+0x5/0x10 [ 57.807722][ T5058] nbd_ioctl+0x28c/0x5b0 [ 57.811999][ T5058] ? nbd_release+0x130/0x130 [ 57.816618][ T5058] blkdev_ioctl+0x3c9/0x7c0 [ 57.821135][ T5058] ? blkdev_compat_ptr_ioctl+0xd0/0xd0 [ 57.826602][ T5058] ? bpf_lsm_file_ioctl+0x5/0x10 [ 57.831638][ T5058] ? security_file_ioctl+0x9d/0xb0 [ 57.836783][ T5058] ? blkdev_compat_ptr_ioctl+0xd0/0xd0 [ 57.842248][ T5058] __se_sys_ioctl+0xfb/0x170 [ 57.846872][ T5058] do_syscall_64+0x2b/0x70 [ 57.851288][ T5058] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 57.857214][ T5058] RIP: 0033:0x7fed1af80309 [ 57.861652][ T5058] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 57.881370][ T5058] RSP: 002b:00007fed1af2d2e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 57.889826][ T5058] RAX: ffffffffffffffda RBX: 00007fed1b0044c0 RCX: 00007fed1af80309 [ 57.898355][ T5058] RDX: 0000000000000000 RSI: 000000000000ab03 RDI: 0000000000000003 [pid 5058] ioctl(3, NBD_DO_IT [pid 5057] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [ 57.906378][ T5058] RBP: 00007fed1afd1194 R08: 0000000000000002 R09: 0000000000003831 [ 57.914369][ T5058] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fed1b0044cc [ 57.922360][ T5058] R13: 00007fed1af2d2f0 R14: 00007fed1b0044c8 R15: 0000000000000002 [ 57.930387][ T5058] [ 57.934276][ T5058] debugfs: out of free dentries, can not create file 'timeout' [pid 5057] exit_group(0 [pid 5059] <... futex resumed>) = ? [pid 5057] <... exit_group resumed>) = ? [pid 5059] +++ exited with 0 +++ [pid 5058] <... ioctl resumed>) = ? [pid 5058] +++ exited with 0 +++ [pid 5057] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5057, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 [ 58.074249][ T5058] block nbd0: shutting down sockets clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555561a65d0) = 5061 ./strace-static-x86_64: Process 5061 attached [pid 5061] set_robust_list(0x5555561a65e0, 24) = 0 [pid 5061] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5061] setpgid(0, 0) = 0 [pid 5061] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5061] write(3, "1000", 4) = 4 [pid 5061] close(3) = 0 [pid 5061] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5061] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fed1af0d000 [pid 5061] mprotect(0x7fed1af0e000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5061] clone(child_stack=0x7fed1af2d3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[5062], tls=0x7fed1af2d700, child_tidptr=0x7fed1af2d9d0) = 5062 [pid 5061] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5061] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 5062 attached [pid 5062] set_robust_list(0x7fed1af2d9e0, 24) = 0 [pid 5062] openat(AT_FDCWD, "/dev/nbd0", O_RDONLY) = 3 [pid 5062] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5061] <... futex resumed>) = 0 [pid 5061] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5061] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5062] <... futex resumed>) = 1 [pid 5062] socketpair(AF_UNIX, SOCK_STREAM, 0, [4, 5]) = 0 [pid 5062] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5061] <... futex resumed>) = 0 [pid 5061] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5061] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5062] <... futex resumed>) = 1 [pid 5062] openat(AT_FDCWD, "/dev/nbd0", O_RDONLY) = 6 [pid 5062] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5061] <... futex resumed>) = 0 [pid 5061] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5061] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5062] <... futex resumed>) = 1 [pid 5062] ioctl(6, NBD_SET_SOCK, 4 [pid 5061] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5061] futex(0x7fed1b0044dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5061] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fed1aeec000 [pid 5061] mprotect(0x7fed1aeed000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5061] clone(child_stack=0x7fed1af0c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[5063], tls=0x7fed1af0c700, child_tidptr=0x7fed1af0c9d0) = 5063 [pid 5061] futex(0x7fed1b0044d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5061] futex(0x7fed1b0044dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 5063 attached [pid 5063] set_robust_list(0x7fed1af0c9e0, 24) = 0 [pid 5063] ioctl(3, NBD_SET_SOCK, 4 [pid 5062] <... ioctl resumed>) = 0 [pid 5062] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5062] futex(0x7fed1b0044c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5061] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5063] <... ioctl resumed>) = -1 EBUSY (Device or resource busy) [pid 5061] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5063] futex(0x7fed1b0044dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5062] <... futex resumed>) = 0 [pid 5061] <... futex resumed>) = 1 [pid 5062] ioctl(3, NBD_SET_FLAGS, NBD_FLAG_SEND_FLUSH|NBD_FLAG_SEND_FUA|NBD_FLAG_ROTATIONAL|NBD_FLAG_SEND_TRIM|NBD_FLAG_SEND_WRITE_ZEROES|NBD_FLAG_SEND_DF|NBD_FLAG_CAN_MULTI_CONN|NBD_FLAG_SEND_RESIZE|NBD_FLAG_SEND_CACHE|0x7800 [pid 5061] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5062] <... ioctl resumed>) = 0 [pid 5062] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5061] <... futex resumed>) = 0 [pid 5062] futex(0x7fed1b0044c8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable) [pid 5061] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5062] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5061] <... futex resumed>) = 0 [pid 5063] <... futex resumed>) = 0 [pid 5063] futex(0x7fed1b0044d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5061] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5062] <... openat resumed>) = 7 [pid 5062] write(7, "18", 2) = 2 [ 58.239764][ T5063] block nbd0: Device being setup by another task [ 58.253899][ T5062] FAULT_INJECTION: forcing a failure. [ 58.253899][ T5062] name failslab, interval 1, probability 0, space 0, times 0 [ 58.266650][ T5062] CPU: 1 PID: 5062 Comm: syz-executor180 Not tainted 6.2.0-rc6-syzkaller-00003-g22b8077d0fce #0 [ 58.277088][ T5062] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023 [pid 5062] ioctl(3, NBD_DO_IT [pid 5061] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [ 58.287159][ T5062] Call Trace: [ 58.290494][ T5062] [ 58.293451][ T5062] dump_stack_lvl+0x1e3/0x2d0 [ 58.298148][ T5062] ? nf_tcp_handle_invalid+0x630/0x630 [ 58.303643][ T5062] ? panic+0x770/0x770 [ 58.307743][ T5062] ? __might_sleep+0xc0/0xc0 [ 58.312462][ T5062] should_fail_ex+0x3aa/0x4e0 [ 58.317169][ T5062] ? new_inode_pseudo+0x81/0x1d0 [ 58.322121][ T5062] should_failslab+0x5/0x20 [ 58.326700][ T5062] kmem_cache_alloc_lru+0x75/0x320 [ 58.331833][ T5062] ? try_lookup_one_len+0x670/0x670 [ 58.337051][ T5062] new_inode_pseudo+0x81/0x1d0 [ 58.341816][ T5062] new_inode+0x25/0x1d0 [ 58.345990][ T5062] ? start_creating+0x22a/0x330 [ 58.350852][ T5062] __debugfs_create_file+0x146/0x500 [ 58.356142][ T5062] nbd_start_device+0x44a/0xb70 [ 58.361049][ T5062] nbd_start_device_ioctl+0xa7/0x5c0 [ 58.366357][ T5062] ? nbd_ioctl+0xd7/0x5b0 [ 58.370721][ T5062] ? nbd_set_size+0x490/0x490 [ 58.375420][ T5062] ? safesetid_security_capable+0xab/0x1b0 [ 58.381233][ T5062] ? bpf_lsm_capable+0x5/0x10 [ 58.385930][ T5062] nbd_ioctl+0x28c/0x5b0 [pid 5061] exit_group(0 [pid 5063] <... futex resumed>) = ? [pid 5061] <... exit_group resumed>) = ? [pid 5063] +++ exited with 0 +++ [ 58.390201][ T5062] ? nbd_release+0x130/0x130 [ 58.395226][ T5062] blkdev_ioctl+0x3c9/0x7c0 [ 58.399731][ T5062] ? blkdev_compat_ptr_ioctl+0xd0/0xd0 [ 58.405208][ T5062] ? bpf_lsm_file_ioctl+0x5/0x10 [ 58.410164][ T5062] ? security_file_ioctl+0x9d/0xb0 [ 58.415293][ T5062] ? blkdev_compat_ptr_ioctl+0xd0/0xd0 [ 58.420751][ T5062] __se_sys_ioctl+0xfb/0x170 [ 58.425341][ T5062] do_syscall_64+0x2b/0x70 [ 58.429865][ T5062] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 58.435848][ T5062] RIP: 0033:0x7fed1af80309 [ 58.440263][ T5062] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 58.459900][ T5062] RSP: 002b:00007fed1af2d2e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 58.468358][ T5062] RAX: ffffffffffffffda RBX: 00007fed1b0044c0 RCX: 00007fed1af80309 [ 58.476352][ T5062] RDX: 0000000000000000 RSI: 000000000000ab03 RDI: 0000000000000003 [pid 5062] <... ioctl resumed>) = ? [pid 5062] +++ exited with 0 +++ [pid 5061] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5061, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555561a65d0) = 5064 ./strace-static-x86_64: Process 5064 attached [pid 5064] set_robust_list(0x5555561a65e0, 24) = 0 [pid 5064] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5064] setpgid(0, 0) = 0 [pid 5064] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5064] write(3, "1000", 4) = 4 [pid 5064] close(3) = 0 [pid 5064] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5064] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fed1af0d000 [pid 5064] mprotect(0x7fed1af0e000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5064] clone(child_stack=0x7fed1af2d3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 5065 attached [pid 5065] set_robust_list(0x7fed1af2d9e0, 24 [pid 5064] <... clone resumed>, parent_tid=[5065], tls=0x7fed1af2d700, child_tidptr=0x7fed1af2d9d0) = 5065 [pid 5065] <... set_robust_list resumed>) = 0 [pid 5064] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5065] openat(AT_FDCWD, "/dev/nbd0", O_RDONLY [pid 5064] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5065] <... openat resumed>) = 3 [pid 5065] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5065] futex(0x7fed1b0044c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5064] <... futex resumed>) = 0 [pid 5064] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5065] <... futex resumed>) = 0 [pid 5064] <... futex resumed>) = 1 [pid 5065] socketpair(AF_UNIX, SOCK_STREAM, 0, [pid 5064] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5065] <... socketpair resumed>[4, 5]) = 0 [pid 5065] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5064] <... futex resumed>) = 0 [pid 5064] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5064] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5065] openat(AT_FDCWD, "/dev/nbd0", O_RDONLY) = 6 [pid 5065] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5064] <... futex resumed>) = 0 [pid 5065] <... futex resumed>) = 1 [pid 5064] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5064] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [ 58.484345][ T5062] RBP: 00007fed1afd1194 R08: 0000000000000002 R09: 0000000000003831 [ 58.492333][ T5062] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fed1b0044cc [ 58.500356][ T5062] R13: 00007fed1af2d2f0 R14: 00007fed1b0044c8 R15: 0000000000000002 [ 58.508349][ T5062] [ 58.511861][ T5062] debugfs: out of free dentries, can not create file 'blocksize_bits' [ 58.527198][ T5062] block nbd0: shutting down sockets [pid 5065] ioctl(6, NBD_SET_SOCK, 4 [pid 5064] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5064] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=0}) = -1 ETIMEDOUT (Connection timed out) [pid 5064] futex(0x7fed1b0044dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5064] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fed1aeec000 [pid 5064] mprotect(0x7fed1aeed000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5064] clone(child_stack=0x7fed1af0c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[5066], tls=0x7fed1af0c700, child_tidptr=0x7fed1af0c9d0) = 5066 [pid 5064] futex(0x7fed1b0044d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5064] futex(0x7fed1b0044dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 5066 attached [pid 5066] set_robust_list(0x7fed1af0c9e0, 24) = 0 [pid 5066] ioctl(3, NBD_SET_SOCK, 4 [pid 5065] <... ioctl resumed>) = 0 [pid 5065] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5065] futex(0x7fed1b0044c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5064] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5064] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5064] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5066] <... ioctl resumed>) = -1 EBUSY (Device or resource busy) [pid 5066] futex(0x7fed1b0044dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5066] futex(0x7fed1b0044d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5065] <... futex resumed>) = 0 [pid 5065] ioctl(3, NBD_SET_FLAGS, NBD_FLAG_SEND_FLUSH|NBD_FLAG_SEND_FUA|NBD_FLAG_ROTATIONAL|NBD_FLAG_SEND_TRIM|NBD_FLAG_SEND_WRITE_ZEROES|NBD_FLAG_SEND_DF|NBD_FLAG_CAN_MULTI_CONN|NBD_FLAG_SEND_RESIZE|NBD_FLAG_SEND_CACHE|0x7800) = 0 [pid 5065] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5064] <... futex resumed>) = 0 [pid 5065] <... futex resumed>) = 1 [pid 5064] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5065] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5064] <... futex resumed>) = 0 [pid 5064] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5065] <... openat resumed>) = 7 [pid 5065] write(7, "18", 2) = 2 [ 58.669814][ T5066] block nbd0: Device being setup by another task [ 58.682520][ T5065] FAULT_INJECTION: forcing a failure. [ 58.682520][ T5065] name failslab, interval 1, probability 0, space 0, times 0 [ 58.695203][ T5065] CPU: 1 PID: 5065 Comm: syz-executor180 Not tainted 6.2.0-rc6-syzkaller-00003-g22b8077d0fce #0 [ 58.705647][ T5065] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023 [ 58.715747][ T5065] Call Trace: [ 58.719026][ T5065] [ 58.721966][ T5065] dump_stack_lvl+0x1e3/0x2d0 [ 58.726665][ T5065] ? nf_tcp_handle_invalid+0x630/0x630 [ 58.732153][ T5065] ? panic+0x770/0x770 [ 58.736257][ T5065] ? __might_sleep+0xc0/0xc0 [ 58.740860][ T5065] ? lockdep_init_map_type+0x9d/0x8d0 [ 58.746339][ T5065] should_fail_ex+0x3aa/0x4e0 [ 58.751045][ T5065] ? security_inode_alloc+0x24/0x130 [ 58.756348][ T5065] should_failslab+0x5/0x20 [ 58.760854][ T5065] kmem_cache_alloc+0x69/0x350 [ 58.765628][ T5065] security_inode_alloc+0x24/0x130 [ 58.770740][ T5065] inode_init_always+0x887/0xb80 [ 58.775694][ T5065] new_inode_pseudo+0x94/0x1d0 [ 58.780484][ T5065] new_inode+0x25/0x1d0 [ 58.784635][ T5065] ? start_creating+0x22a/0x330 [ 58.789494][ T5065] __debugfs_create_file+0x146/0x500 [ 58.794825][ T5065] nbd_start_device+0x44a/0xb70 [ 58.799697][ T5065] nbd_start_device_ioctl+0xa7/0x5c0 [ 58.805008][ T5065] ? nbd_ioctl+0xd7/0x5b0 [ 58.809350][ T5065] ? nbd_set_size+0x490/0x490 [ 58.814027][ T5065] ? safesetid_security_capable+0xab/0x1b0 [ 58.819829][ T5065] ? bpf_lsm_capable+0x5/0x10 [ 58.824521][ T5065] nbd_ioctl+0x28c/0x5b0 [ 58.829264][ T5065] ? nbd_release+0x130/0x130 [ 58.833871][ T5065] blkdev_ioctl+0x3c9/0x7c0 [ 58.838480][ T5065] ? blkdev_compat_ptr_ioctl+0xd0/0xd0 [ 58.843965][ T5065] ? bpf_lsm_file_ioctl+0x5/0x10 [ 58.848897][ T5065] ? security_file_ioctl+0x9d/0xb0 [ 58.854019][ T5065] ? blkdev_compat_ptr_ioctl+0xd0/0xd0 [ 58.859669][ T5065] __se_sys_ioctl+0xfb/0x170 [ 58.864289][ T5065] do_syscall_64+0x2b/0x70 [ 58.868711][ T5065] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 58.874602][ T5065] RIP: 0033:0x7fed1af80309 [ 58.879041][ T5065] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 58.898674][ T5065] RSP: 002b:00007fed1af2d2e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 58.907129][ T5065] RAX: ffffffffffffffda RBX: 00007fed1b0044c0 RCX: 00007fed1af80309 [pid 5065] ioctl(3, NBD_DO_IT [pid 5064] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [ 58.915116][ T5065] RDX: 0000000000000000 RSI: 000000000000ab03 RDI: 0000000000000003 [ 58.923084][ T5065] RBP: 00007fed1afd1194 R08: 0000000000000002 R09: 0000000000003831 [ 58.931068][ T5065] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fed1b0044cc [ 58.939188][ T5065] R13: 00007fed1af2d2f0 R14: 00007fed1b0044c8 R15: 0000000000000002 [ 58.947285][ T5065] [ 58.951008][ T5065] debugfs: out of free dentries, can not create file 'blocksize_bits' [pid 5064] exit_group(0 [pid 5066] <... futex resumed>) = ? [pid 5064] <... exit_group resumed>) = ? [pid 5066] +++ exited with 0 +++ [pid 5065] <... ioctl resumed>) = ? [pid 5065] +++ exited with 0 +++ [pid 5064] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5064, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5067 attached , child_tidptr=0x5555561a65d0) = 5067 [pid 5067] set_robust_list(0x5555561a65e0, 24) = 0 [pid 5067] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5067] setpgid(0, 0) = 0 [pid 5067] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5067] write(3, "1000", 4) = 4 [pid 5067] close(3) = 0 [pid 5067] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5067] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fed1af0d000 [pid 5067] mprotect(0x7fed1af0e000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5067] clone(child_stack=0x7fed1af2d3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 5068 attached [pid 5068] set_robust_list(0x7fed1af2d9e0, 24 [pid 5067] <... clone resumed>, parent_tid=[5068], tls=0x7fed1af2d700, child_tidptr=0x7fed1af2d9d0) = 5068 [pid 5068] <... set_robust_list resumed>) = 0 [pid 5067] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5068] openat(AT_FDCWD, "/dev/nbd0", O_RDONLY [pid 5067] <... futex resumed>) = 0 [ 59.094631][ T5065] block nbd0: shutting down sockets [pid 5067] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5068] <... openat resumed>) = 3 [pid 5068] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5067] <... futex resumed>) = 0 [pid 5068] socketpair(AF_UNIX, SOCK_STREAM, 0, [pid 5067] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5068] <... socketpair resumed>[4, 5]) = 0 [pid 5067] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5068] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5067] <... futex resumed>) = 0 [pid 5068] openat(AT_FDCWD, "/dev/nbd0", O_RDONLY [pid 5067] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5068] <... openat resumed>) = 6 [pid 5067] <... futex resumed>) = 0 [pid 5068] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5067] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5068] <... futex resumed>) = 0 [pid 5067] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5067] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5068] ioctl(6, NBD_SET_SOCK, 4 [pid 5067] <... futex resumed>) = 0 [pid 5067] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}) = -1 ETIMEDOUT (Connection timed out) [pid 5067] futex(0x7fed1b0044dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5067] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fed1aeec000 [pid 5067] mprotect(0x7fed1aeed000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5067] clone(child_stack=0x7fed1af0c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[5069], tls=0x7fed1af0c700, child_tidptr=0x7fed1af0c9d0) = 5069 [pid 5067] futex(0x7fed1b0044d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5067] futex(0x7fed1b0044dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 5069 attached [pid 5069] set_robust_list(0x7fed1af0c9e0, 24) = 0 [pid 5069] ioctl(3, NBD_SET_SOCK, 4 [pid 5068] <... ioctl resumed>) = 0 [pid 5068] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5068] futex(0x7fed1b0044c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5067] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5067] futex(0x7fed1b0044dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=0}) = -1 ETIMEDOUT (Connection timed out) [pid 5067] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5068] <... futex resumed>) = 0 [pid 5067] <... futex resumed>) = 1 [pid 5068] ioctl(3, NBD_SET_FLAGS, NBD_FLAG_SEND_FLUSH|NBD_FLAG_SEND_FUA|NBD_FLAG_ROTATIONAL|NBD_FLAG_SEND_TRIM|NBD_FLAG_SEND_WRITE_ZEROES|NBD_FLAG_SEND_DF|NBD_FLAG_CAN_MULTI_CONN|NBD_FLAG_SEND_RESIZE|NBD_FLAG_SEND_CACHE|0x7800 [pid 5067] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5068] <... ioctl resumed>) = 0 [pid 5068] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5067] <... futex resumed>) = 0 [pid 5068] futex(0x7fed1b0044c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5067] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5068] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5067] <... futex resumed>) = 0 [pid 5068] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5067] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5068] <... openat resumed>) = 7 [pid 5068] write(7, "18", 2) = 2 [pid 5068] ioctl(3, NBD_DO_IT [pid 5069] <... ioctl resumed>) = -1 EBUSY (Device or resource busy) [pid 5069] futex(0x7fed1b0044dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 59.249756][ T5069] block nbd0: Device being setup by another task [ 59.259154][ T5068] FAULT_INJECTION: forcing a failure. [ 59.259154][ T5068] name failslab, interval 1, probability 0, space 0, times 0 [ 59.273162][ T5068] CPU: 0 PID: 5068 Comm: syz-executor180 Not tainted 6.2.0-rc6-syzkaller-00003-g22b8077d0fce #0 [ 59.283715][ T5068] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023 [ 59.293772][ T5068] Call Trace: [ 59.297079][ T5068] [ 59.300031][ T5068] dump_stack_lvl+0x1e3/0x2d0 [ 59.304731][ T5068] ? nf_tcp_handle_invalid+0x630/0x630 [ 59.310199][ T5068] ? panic+0x770/0x770 [ 59.314299][ T5068] ? __might_sleep+0xc0/0xc0 [ 59.318897][ T5068] ? lockdep_init_map_type+0x9d/0x8d0 [ 59.324282][ T5068] should_fail_ex+0x3aa/0x4e0 [ 59.328968][ T5068] ? security_inode_alloc+0x24/0x130 [ 59.334261][ T5068] should_failslab+0x5/0x20 [ 59.338784][ T5068] kmem_cache_alloc+0x69/0x350 [ 59.343568][ T5068] security_inode_alloc+0x24/0x130 [ 59.348693][ T5068] inode_init_always+0x887/0xb80 [ 59.353649][ T5068] new_inode_pseudo+0x94/0x1d0 [ 59.358460][ T5068] new_inode+0x25/0x1d0 [ 59.362612][ T5068] ? start_creating+0x22a/0x330 [ 59.367456][ T5068] __debugfs_create_file+0x146/0x500 [ 59.372741][ T5068] nbd_start_device+0x44a/0xb70 [ 59.377603][ T5068] nbd_start_device_ioctl+0xa7/0x5c0 [ 59.382890][ T5068] ? nbd_ioctl+0xd7/0x5b0 [ 59.387230][ T5068] ? nbd_set_size+0x490/0x490 [ 59.391923][ T5068] ? safesetid_security_capable+0xab/0x1b0 [ 59.397727][ T5068] ? bpf_lsm_capable+0x5/0x10 [ 59.402444][ T5068] nbd_ioctl+0x28c/0x5b0 [ 59.406731][ T5068] ? nbd_release+0x130/0x130 [ 59.411326][ T5068] blkdev_ioctl+0x3c9/0x7c0 [ 59.415829][ T5068] ? blkdev_compat_ptr_ioctl+0xd0/0xd0 [ 59.421459][ T5068] ? bpf_lsm_file_ioctl+0x5/0x10 [ 59.426406][ T5068] ? security_file_ioctl+0x9d/0xb0 [ 59.431529][ T5068] ? blkdev_compat_ptr_ioctl+0xd0/0xd0 [ 59.437435][ T5068] __se_sys_ioctl+0xfb/0x170 [ 59.442023][ T5068] do_syscall_64+0x2b/0x70 [ 59.446445][ T5068] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 59.452449][ T5068] RIP: 0033:0x7fed1af80309 [ 59.456892][ T5068] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 59.476524][ T5068] RSP: 002b:00007fed1af2d2e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 59.484965][ T5068] RAX: ffffffffffffffda RBX: 00007fed1b0044c0 RCX: 00007fed1af80309 [ 59.493027][ T5068] RDX: 0000000000000000 RSI: 000000000000ab03 RDI: 0000000000000003 [pid 5069] futex(0x7fed1b0044d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5067] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [ 59.501037][ T5068] RBP: 00007fed1afd1194 R08: 0000000000000002 R09: 0000000000003831 [ 59.509039][ T5068] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fed1b0044cc [ 59.517030][ T5068] R13: 00007fed1af2d2f0 R14: 00007fed1b0044c8 R15: 0000000000000002 [ 59.525033][ T5068] [ 59.531928][ T5068] debugfs: out of free dentries, can not create file 'blocksize_bits' [pid 5067] exit_group(0 [pid 5069] <... futex resumed>) = ? [pid 5067] <... exit_group resumed>) = ? [pid 5069] +++ exited with 0 +++ [pid 5068] <... ioctl resumed>) = ? [pid 5068] +++ exited with 0 +++ [pid 5067] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5067, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555561a65d0) = 5070 ./strace-static-x86_64: Process 5070 attached [pid 5070] set_robust_list(0x5555561a65e0, 24) = 0 [pid 5070] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5070] setpgid(0, 0) = 0 [pid 5070] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5070] write(3, "1000", 4) = 4 [pid 5070] close(3) = 0 [pid 5070] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5070] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fed1af0d000 [pid 5070] mprotect(0x7fed1af0e000, 131072, PROT_READ|PROT_WRITE) = 0 [ 59.689445][ T5068] block nbd0: shutting down sockets [pid 5070] clone(child_stack=0x7fed1af2d3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[5071], tls=0x7fed1af2d700, child_tidptr=0x7fed1af2d9d0) = 5071 [pid 5070] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5070] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 5071 attached [pid 5071] set_robust_list(0x7fed1af2d9e0, 24) = 0 [pid 5071] openat(AT_FDCWD, "/dev/nbd0", O_RDONLY) = 3 [pid 5071] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5070] <... futex resumed>) = 0 [pid 5070] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5070] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5071] <... futex resumed>) = 1 [pid 5071] socketpair(AF_UNIX, SOCK_STREAM, 0, [4, 5]) = 0 [pid 5071] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5070] <... futex resumed>) = 0 [pid 5070] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5070] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5071] <... futex resumed>) = 1 [pid 5071] openat(AT_FDCWD, "/dev/nbd0", O_RDONLY) = 6 [pid 5071] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5070] <... futex resumed>) = 0 [pid 5071] <... futex resumed>) = 1 [pid 5070] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5071] ioctl(6, NBD_SET_SOCK, 4 [pid 5070] <... futex resumed>) = 0 [pid 5070] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}) = -1 ETIMEDOUT (Connection timed out) [pid 5070] futex(0x7fed1b0044dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5070] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fed1aeec000 [pid 5070] mprotect(0x7fed1aeed000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5070] clone(child_stack=0x7fed1af0c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 5072 attached , parent_tid=[5072], tls=0x7fed1af0c700, child_tidptr=0x7fed1af0c9d0) = 5072 [pid 5070] futex(0x7fed1b0044d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5070] futex(0x7fed1b0044dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5072] set_robust_list(0x7fed1af0c9e0, 24) = 0 [pid 5072] ioctl(3, NBD_SET_SOCK, 4 [pid 5071] <... ioctl resumed>) = 0 [pid 5071] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5071] futex(0x7fed1b0044c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5070] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5070] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5071] <... futex resumed>) = 0 [pid 5070] <... futex resumed>) = 1 [pid 5071] ioctl(3, NBD_SET_FLAGS, NBD_FLAG_SEND_FLUSH|NBD_FLAG_SEND_FUA|NBD_FLAG_ROTATIONAL|NBD_FLAG_SEND_TRIM|NBD_FLAG_SEND_WRITE_ZEROES|NBD_FLAG_SEND_DF|NBD_FLAG_CAN_MULTI_CONN|NBD_FLAG_SEND_RESIZE|NBD_FLAG_SEND_CACHE|0x7800 [pid 5070] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5072] <... ioctl resumed>) = -1 EBUSY (Device or resource busy) [pid 5071] <... ioctl resumed>) = 0 [pid 5071] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5072] futex(0x7fed1b0044dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5071] <... futex resumed>) = 1 [pid 5070] <... futex resumed>) = 0 [pid 5071] futex(0x7fed1b0044c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5070] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5071] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5070] <... futex resumed>) = 0 [pid 5071] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5070] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5072] futex(0x7fed1b0044d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5071] <... openat resumed>) = 7 [pid 5071] write(7, "18", 2) = 2 [ 59.840078][ T5072] block nbd0: Device being setup by another task [ 59.849464][ T5071] FAULT_INJECTION: forcing a failure. [ 59.849464][ T5071] name failslab, interval 1, probability 0, space 0, times 0 [ 59.862312][ T5071] CPU: 0 PID: 5071 Comm: syz-executor180 Not tainted 6.2.0-rc6-syzkaller-00003-g22b8077d0fce #0 [ 59.872729][ T5071] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023 [ 59.882789][ T5071] Call Trace: [ 59.886102][ T5071] [ 59.889125][ T5071] dump_stack_lvl+0x1e3/0x2d0 [ 59.893840][ T5071] ? nf_tcp_handle_invalid+0x630/0x630 [ 59.899506][ T5071] ? panic+0x770/0x770 [ 59.903606][ T5071] ? __might_sleep+0xc0/0xc0 [ 59.908223][ T5071] ? lockdep_init_map_type+0x9d/0x8d0 [ 59.913611][ T5071] should_fail_ex+0x3aa/0x4e0 [ 59.918302][ T5071] ? security_inode_alloc+0x24/0x130 [ 59.923617][ T5071] should_failslab+0x5/0x20 [ 59.928139][ T5071] kmem_cache_alloc+0x69/0x350 [ 59.932908][ T5071] security_inode_alloc+0x24/0x130 [ 59.938027][ T5071] inode_init_always+0x887/0xb80 [ 59.942969][ T5071] new_inode_pseudo+0x94/0x1d0 [ 59.947751][ T5071] new_inode+0x25/0x1d0 [ 59.951907][ T5071] ? start_creating+0x22a/0x330 [ 59.956757][ T5071] __debugfs_create_file+0x146/0x500 [ 59.962045][ T5071] nbd_start_device+0x44a/0xb70 [ 59.966927][ T5071] nbd_start_device_ioctl+0xa7/0x5c0 [ 59.972220][ T5071] ? nbd_ioctl+0xd7/0x5b0 [ 59.976588][ T5071] ? nbd_set_size+0x490/0x490 [ 59.981270][ T5071] ? safesetid_security_capable+0xab/0x1b0 [ 59.987107][ T5071] ? bpf_lsm_capable+0x5/0x10 [ 59.991792][ T5071] nbd_ioctl+0x28c/0x5b0 [ 59.996042][ T5071] ? nbd_release+0x130/0x130 [ 60.000659][ T5071] blkdev_ioctl+0x3c9/0x7c0 [ 60.005253][ T5071] ? blkdev_compat_ptr_ioctl+0xd0/0xd0 [ 60.010719][ T5071] ? bpf_lsm_file_ioctl+0x5/0x10 [ 60.015659][ T5071] ? security_file_ioctl+0x9d/0xb0 [ 60.020796][ T5071] ? blkdev_compat_ptr_ioctl+0xd0/0xd0 [ 60.026272][ T5071] __se_sys_ioctl+0xfb/0x170 [ 60.030878][ T5071] do_syscall_64+0x2b/0x70 [ 60.035301][ T5071] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 60.041227][ T5071] RIP: 0033:0x7fed1af80309 [ 60.045650][ T5071] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 60.065258][ T5071] RSP: 002b:00007fed1af2d2e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 60.073695][ T5071] RAX: ffffffffffffffda RBX: 00007fed1b0044c0 RCX: 00007fed1af80309 [ 60.081770][ T5071] RDX: 0000000000000000 RSI: 000000000000ab03 RDI: 0000000000000003 [pid 5071] ioctl(3, NBD_DO_IT [pid 5070] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [ 60.089738][ T5071] RBP: 00007fed1afd1194 R08: 0000000000000002 R09: 0000000000003831 [ 60.097810][ T5071] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fed1b0044cc [ 60.105793][ T5071] R13: 00007fed1af2d2f0 R14: 00007fed1b0044c8 R15: 0000000000000002 [ 60.113799][ T5071] [ 60.119385][ T5071] debugfs: out of free dentries, can not create file 'blocksize_bits' [pid 5070] exit_group(0 [pid 5072] <... futex resumed>) = ? [pid 5070] <... exit_group resumed>) = ? [pid 5072] +++ exited with 0 +++ [pid 5071] <... ioctl resumed>) = ? [pid 5071] +++ exited with 0 +++ [pid 5070] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5070, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555561a65d0) = 5073 ./strace-static-x86_64: Process 5073 attached [pid 5073] set_robust_list(0x5555561a65e0, 24) = 0 [pid 5073] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5073] setpgid(0, 0) = 0 [pid 5073] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5073] write(3, "1000", 4) = 4 [pid 5073] close(3) = 0 [pid 5073] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5073] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fed1af0d000 [pid 5073] mprotect(0x7fed1af0e000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5073] clone(child_stack=0x7fed1af2d3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 5074 attached , parent_tid=[5074], tls=0x7fed1af2d700, child_tidptr=0x7fed1af2d9d0) = 5074 [pid 5074] set_robust_list(0x7fed1af2d9e0, 24) = 0 [pid 5073] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5074] openat(AT_FDCWD, "/dev/nbd0", O_RDONLY [pid 5073] <... futex resumed>) = 0 [pid 5073] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5074] <... openat resumed>) = 3 [pid 5074] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5073] <... futex resumed>) = 0 [pid 5074] futex(0x7fed1b0044c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5073] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5074] <... futex resumed>) = 0 [pid 5073] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5074] socketpair(AF_UNIX, SOCK_STREAM, 0, [4, 5]) = 0 [pid 5074] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5074] futex(0x7fed1b0044c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5073] <... futex resumed>) = 0 [pid 5073] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5073] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5074] <... futex resumed>) = 0 [pid 5074] openat(AT_FDCWD, "/dev/nbd0", O_RDONLY) = 6 [pid 5074] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5073] <... futex resumed>) = 0 [pid 5073] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5073] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [ 60.289748][ T5071] block nbd0: shutting down sockets [pid 5074] ioctl(6, NBD_SET_SOCK, 4) = 0 [pid 5074] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5073] <... futex resumed>) = 0 [pid 5074] ioctl(3, NBD_SET_SOCK, 4 [pid 5073] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5073] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5074] <... ioctl resumed>) = 0 [pid 5074] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5073] <... futex resumed>) = 0 [pid 5074] ioctl(3, NBD_SET_FLAGS, NBD_FLAG_SEND_FLUSH|NBD_FLAG_SEND_FUA|NBD_FLAG_ROTATIONAL|NBD_FLAG_SEND_TRIM|NBD_FLAG_SEND_WRITE_ZEROES|NBD_FLAG_SEND_DF|NBD_FLAG_CAN_MULTI_CONN|NBD_FLAG_SEND_RESIZE|NBD_FLAG_SEND_CACHE|0x7800 [pid 5073] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5073] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5074] <... ioctl resumed>) = 0 [pid 5074] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5073] <... futex resumed>) = 0 [pid 5073] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5073] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5074] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 7 [pid 5074] write(7, "18", 2) = 2 [pid 5074] ioctl(3, NBD_DO_IT [pid 5073] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [ 60.475582][ T5074] FAULT_INJECTION: forcing a failure. [ 60.475582][ T5074] name failslab, interval 1, probability 0, space 0, times 0 [ 60.488415][ T5074] CPU: 1 PID: 5074 Comm: syz-executor180 Not tainted 6.2.0-rc6-syzkaller-00003-g22b8077d0fce #0 [ 60.498846][ T5074] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023 [ 60.508908][ T5074] Call Trace: [ 60.512191][ T5074] [ 60.515129][ T5074] dump_stack_lvl+0x1e3/0x2d0 [ 60.519839][ T5074] ? nf_tcp_handle_invalid+0x630/0x630 [ 60.525321][ T5074] ? panic+0x770/0x770 [ 60.529400][ T5074] ? mark_lock+0x9a/0x350 [ 60.533730][ T5074] should_fail_ex+0x3aa/0x4e0 [ 60.538418][ T5074] ? kobject_set_name_vargs+0x5d/0x110 [ 60.543902][ T5074] should_failslab+0x5/0x20 [ 60.548411][ T5074] __kmem_cache_alloc_node+0x68/0x340 [ 60.553813][ T5074] ? ptr_to_hashval+0x70/0x70 [ 60.558611][ T5074] ? kobject_set_name_vargs+0x5d/0x110 [ 60.564100][ T5074] __kmalloc_node_track_caller+0x9c/0x190 [ 60.569950][ T5074] kvasprintf+0xdb/0x190 [pid 5073] exit_group(0) = ? [ 60.574228][ T5074] ? bust_spinlocks+0xd0/0xd0 [ 60.578937][ T5074] ? rcu_lock_release+0x5/0x20 [ 60.583726][ T5074] ? kvasprintf_const+0x4d/0x170 [ 60.588686][ T5074] kobject_set_name_vargs+0x5d/0x110 [ 60.594001][ T5074] kobject_add+0x10d/0x210 [ 60.598441][ T5074] ? blk_mq_register_hctx+0x4f/0x3b0 [ 60.603743][ T5074] ? kobject_init+0x1d0/0x1d0 [ 60.608434][ T5074] ? xa_clear_mark+0x2d0/0x2d0 [ 60.613216][ T5074] blk_mq_register_hctx+0xd5/0x3b0 [ 60.618938][ T5074] blk_mq_sysfs_register_hctxs+0x128/0x1f0 [ 60.624749][ T5074] ? blk_mq_sysfs_unregister_hctxs+0x320/0x320 [ 60.630920][ T5074] ? blk_mq_map_queues+0x683/0x6b0 [ 60.636064][ T5074] blk_mq_update_nr_hw_queues+0xdbf/0x13a0 [ 60.641883][ T5074] ? blk_mq_update_nr_requests+0x680/0x680 [ 60.647701][ T5074] ? trace_raw_output_contention_end+0xd0/0xd0 [ 60.653877][ T5074] ? blkdev_common_ioctl+0x685/0x21b0 [ 60.659256][ T5074] nbd_start_device+0x15d/0xb70 [ 60.664146][ T5074] nbd_start_device_ioctl+0xa7/0x5c0 [ 60.669436][ T5074] ? nbd_ioctl+0xd7/0x5b0 [ 60.673765][ T5074] ? print_irqtrace_events+0x220/0x220 [ 60.679226][ T5074] ? nbd_set_size+0x490/0x490 [ 60.683918][ T5074] ? safesetid_security_capable+0xab/0x1b0 [ 60.689761][ T5074] ? bpf_lsm_capable+0x5/0x10 [ 60.694491][ T5074] nbd_ioctl+0x28c/0x5b0 [ 60.698772][ T5074] ? nbd_release+0x130/0x130 [ 60.703366][ T5074] blkdev_ioctl+0x3c9/0x7c0 [ 60.707900][ T5074] ? blkdev_compat_ptr_ioctl+0xd0/0xd0 [ 60.713384][ T5074] ? bpf_lsm_file_ioctl+0x5/0x10 [ 60.718340][ T5074] ? security_file_ioctl+0x9d/0xb0 [ 60.723447][ T5074] ? blkdev_compat_ptr_ioctl+0xd0/0xd0 [ 60.728900][ T5074] __se_sys_ioctl+0xfb/0x170 [ 60.733493][ T5074] do_syscall_64+0x2b/0x70 [ 60.737911][ T5074] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 60.743802][ T5074] RIP: 0033:0x7fed1af80309 [ 60.748233][ T5074] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 60.767857][ T5074] RSP: 002b:00007fed1af2d2e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 60.776277][ T5074] RAX: ffffffffffffffda RBX: 00007fed1b0044c0 RCX: 00007fed1af80309 [ 60.784341][ T5074] RDX: 0000000000000000 RSI: 000000000000ab03 RDI: 0000000000000003 [ 60.792325][ T5074] RBP: 00007fed1afd1194 R08: 0000000000000002 R09: 0000000000003831 [ 60.800346][ T5074] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fed1b0044cc [ 60.808432][ T5074] R13: 00007fed1af2d2f0 R14: 00007fed1b0044c8 R15: 0000000000000002 [ 60.816419][ T5074] [pid 5074] <... ioctl resumed>) = ? [pid 5074] +++ exited with 0 +++ [pid 5073] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5073, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5076 attached , child_tidptr=0x5555561a65d0) = 5076 [pid 5076] set_robust_list(0x5555561a65e0, 24) = 0 [pid 5076] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5076] setpgid(0, 0) = 0 [pid 5076] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5076] write(3, "1000", 4) = 4 [pid 5076] close(3) = 0 [pid 5076] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5076] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fed1af0d000 [pid 5076] mprotect(0x7fed1af0e000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5076] clone(child_stack=0x7fed1af2d3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 5077 attached , parent_tid=[5077], tls=0x7fed1af2d700, child_tidptr=0x7fed1af2d9d0) = 5077 [pid 5076] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5076] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5077] set_robust_list(0x7fed1af2d9e0, 24) = 0 [pid 5077] openat(AT_FDCWD, "/dev/nbd0", O_RDONLY) = 3 [pid 5077] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5076] <... futex resumed>) = 0 [pid 5076] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5076] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5077] socketpair(AF_UNIX, SOCK_STREAM, 0, [4, 5]) = 0 [pid 5077] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5076] <... futex resumed>) = 0 [pid 5076] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5076] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5077] openat(AT_FDCWD, "/dev/nbd0", O_RDONLY) = 6 [pid 5077] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5076] <... futex resumed>) = 0 [pid 5076] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5076] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [ 60.822902][ T5074] kobject: can not set name properly! [ 60.842667][ T5074] block nbd0: shutting down sockets [pid 5077] ioctl(6, NBD_SET_SOCK, 4) = 0 [pid 5077] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5076] <... futex resumed>) = 0 [pid 5077] futex(0x7fed1b0044c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5076] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5077] <... futex resumed>) = 0 [pid 5076] <... futex resumed>) = 1 [pid 5077] ioctl(3, NBD_SET_SOCK, 4 [pid 5076] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5077] <... ioctl resumed>) = 0 [pid 5077] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5076] <... futex resumed>) = 0 [pid 5077] futex(0x7fed1b0044c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5076] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5077] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5076] <... futex resumed>) = 0 [pid 5077] ioctl(3, NBD_SET_FLAGS, NBD_FLAG_SEND_FLUSH|NBD_FLAG_SEND_FUA|NBD_FLAG_ROTATIONAL|NBD_FLAG_SEND_TRIM|NBD_FLAG_SEND_WRITE_ZEROES|NBD_FLAG_SEND_DF|NBD_FLAG_CAN_MULTI_CONN|NBD_FLAG_SEND_RESIZE|NBD_FLAG_SEND_CACHE|0x7800 [pid 5076] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5077] <... ioctl resumed>) = 0 [pid 5077] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5076] <... futex resumed>) = 0 [pid 5077] futex(0x7fed1b0044c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5076] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5077] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5076] <... futex resumed>) = 0 [pid 5077] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5076] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5077] <... openat resumed>) = 7 [pid 5077] write(7, "18", 2) = 2 [pid 5077] ioctl(3, NBD_DO_IT [pid 5076] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [ 60.966219][ T5077] FAULT_INJECTION: forcing a failure. [ 60.966219][ T5077] name failslab, interval 1, probability 0, space 0, times 0 [ 60.979123][ T5077] CPU: 1 PID: 5077 Comm: syz-executor180 Not tainted 6.2.0-rc6-syzkaller-00003-g22b8077d0fce #0 [ 60.989559][ T5077] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023 [ 60.999608][ T5077] Call Trace: [ 61.002914][ T5077] [ 61.005842][ T5077] dump_stack_lvl+0x1e3/0x2d0 [ 61.010523][ T5077] ? nf_tcp_handle_invalid+0x630/0x630 [ 61.015992][ T5077] ? panic+0x770/0x770 [ 61.020181][ T5077] ? __might_sleep+0xc0/0xc0 [ 61.024792][ T5077] should_fail_ex+0x3aa/0x4e0 [ 61.029509][ T5077] ? new_inode_pseudo+0x81/0x1d0 [ 61.034466][ T5077] should_failslab+0x5/0x20 [ 61.038979][ T5077] kmem_cache_alloc_lru+0x75/0x320 [ 61.044101][ T5077] ? try_lookup_one_len+0x670/0x670 [ 61.049347][ T5077] new_inode_pseudo+0x81/0x1d0 [ 61.054135][ T5077] new_inode+0x25/0x1d0 [ 61.058294][ T5077] ? start_creating+0x22a/0x330 [ 61.063157][ T5077] __debugfs_create_file+0x146/0x500 [ 61.068462][ T5077] nbd_start_device+0x44a/0xb70 [ 61.073340][ T5077] nbd_start_device_ioctl+0xa7/0x5c0 [ 61.078641][ T5077] ? nbd_ioctl+0xd7/0x5b0 [ 61.083031][ T5077] ? nbd_set_size+0x490/0x490 [ 61.087833][ T5077] ? safesetid_security_capable+0xab/0x1b0 [ 61.093667][ T5077] ? bpf_lsm_capable+0x5/0x10 [ 61.098352][ T5077] nbd_ioctl+0x28c/0x5b0 [ 61.102607][ T5077] ? nbd_release+0x130/0x130 [ 61.107211][ T5077] blkdev_ioctl+0x3c9/0x7c0 [pid 5076] exit_group(0) = ? [ 61.111748][ T5077] ? blkdev_compat_ptr_ioctl+0xd0/0xd0 [ 61.117238][ T5077] ? bpf_lsm_file_ioctl+0x5/0x10 [ 61.122191][ T5077] ? security_file_ioctl+0x9d/0xb0 [ 61.127312][ T5077] ? blkdev_compat_ptr_ioctl+0xd0/0xd0 [ 61.132803][ T5077] __se_sys_ioctl+0xfb/0x170 [ 61.137432][ T5077] do_syscall_64+0x2b/0x70 [ 61.141867][ T5077] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 61.147763][ T5077] RIP: 0033:0x7fed1af80309 [ 61.152178][ T5077] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 61.171875][ T5077] RSP: 002b:00007fed1af2d2e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 61.180297][ T5077] RAX: ffffffffffffffda RBX: 00007fed1b0044c0 RCX: 00007fed1af80309 [ 61.188280][ T5077] RDX: 0000000000000000 RSI: 000000000000ab03 RDI: 0000000000000003 [ 61.196271][ T5077] RBP: 00007fed1afd1194 R08: 0000000000000002 R09: 0000000000003831 [ 61.204264][ T5077] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fed1b0044cc [pid 5077] <... ioctl resumed>) = ? [pid 5077] +++ exited with 0 +++ [pid 5076] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5076, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555561a65d0) = 5078 ./strace-static-x86_64: Process 5078 attached [pid 5078] set_robust_list(0x5555561a65e0, 24) = 0 [pid 5078] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5078] setpgid(0, 0) = 0 [pid 5078] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5078] write(3, "1000", 4) = 4 [pid 5078] close(3) = 0 [pid 5078] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5078] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fed1af0d000 [pid 5078] mprotect(0x7fed1af0e000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5078] clone(child_stack=0x7fed1af2d3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[5079], tls=0x7fed1af2d700, child_tidptr=0x7fed1af2d9d0) = 5079 [pid 5078] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5078] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 5079 attached [pid 5079] set_robust_list(0x7fed1af2d9e0, 24) = 0 [pid 5079] openat(AT_FDCWD, "/dev/nbd0", O_RDONLY) = 3 [pid 5079] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5078] <... futex resumed>) = 0 [pid 5078] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5078] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5079] <... futex resumed>) = 1 [pid 5079] socketpair(AF_UNIX, SOCK_STREAM, 0, [4, 5]) = 0 [pid 5079] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5078] <... futex resumed>) = 0 [pid 5078] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5078] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5079] <... futex resumed>) = 1 [pid 5079] openat(AT_FDCWD, "/dev/nbd0", O_RDONLY) = 6 [pid 5079] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5078] <... futex resumed>) = 0 [pid 5078] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5078] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5079] <... futex resumed>) = 1 [ 61.212276][ T5077] R13: 00007fed1af2d2f0 R14: 00007fed1b0044c8 R15: 0000000000000002 [ 61.220271][ T5077] [ 61.223643][ T5077] debugfs: out of free dentries, can not create file 'blocksize_bits' [ 61.234796][ T5077] block nbd0: shutting down sockets [pid 5079] ioctl(6, NBD_SET_SOCK, 4) = 0 [pid 5079] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5078] <... futex resumed>) = 0 [pid 5079] ioctl(3, NBD_SET_SOCK, 4 [pid 5078] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5078] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5079] <... ioctl resumed>) = 0 [pid 5079] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5078] <... futex resumed>) = 0 [pid 5078] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5078] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5079] ioctl(3, NBD_SET_FLAGS, NBD_FLAG_SEND_FLUSH|NBD_FLAG_SEND_FUA|NBD_FLAG_ROTATIONAL|NBD_FLAG_SEND_TRIM|NBD_FLAG_SEND_WRITE_ZEROES|NBD_FLAG_SEND_DF|NBD_FLAG_CAN_MULTI_CONN|NBD_FLAG_SEND_RESIZE|NBD_FLAG_SEND_CACHE|0x7800) = 0 [pid 5079] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5078] <... futex resumed>) = 0 [pid 5078] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5078] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5079] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 7 [pid 5079] write(7, "18", 2) = 2 [pid 5079] ioctl(3, NBD_DO_IT [pid 5078] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [ 61.336059][ T5079] FAULT_INJECTION: forcing a failure. [ 61.336059][ T5079] name failslab, interval 1, probability 0, space 0, times 0 [ 61.349184][ T5079] CPU: 1 PID: 5079 Comm: syz-executor180 Not tainted 6.2.0-rc6-syzkaller-00003-g22b8077d0fce #0 [ 61.359637][ T5079] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023 [ 61.369715][ T5079] Call Trace: [ 61.373056][ T5079] [ 61.376029][ T5079] dump_stack_lvl+0x1e3/0x2d0 [ 61.380720][ T5079] ? nf_tcp_handle_invalid+0x630/0x630 [ 61.386182][ T5079] ? panic+0x770/0x770 [ 61.390262][ T5079] ? __might_sleep+0xc0/0xc0 [ 61.394861][ T5079] should_fail_ex+0x3aa/0x4e0 [ 61.399542][ T5079] ? new_inode_pseudo+0x81/0x1d0 [ 61.404505][ T5079] should_failslab+0x5/0x20 [ 61.409024][ T5079] kmem_cache_alloc_lru+0x75/0x320 [ 61.414132][ T5079] ? try_lookup_one_len+0x670/0x670 [ 61.419334][ T5079] new_inode_pseudo+0x81/0x1d0 [ 61.424126][ T5079] new_inode+0x25/0x1d0 [ 61.428297][ T5079] ? start_creating+0x22a/0x330 [ 61.433151][ T5079] __debugfs_create_file+0x146/0x500 [ 61.438441][ T5079] nbd_start_device+0x44a/0xb70 [ 61.443306][ T5079] nbd_start_device_ioctl+0xa7/0x5c0 [ 61.448602][ T5079] ? nbd_ioctl+0xd7/0x5b0 [ 61.452935][ T5079] ? nbd_set_size+0x490/0x490 [ 61.457624][ T5079] ? safesetid_security_capable+0xab/0x1b0 [ 61.463434][ T5079] ? bpf_lsm_capable+0x5/0x10 [ 61.468118][ T5079] nbd_ioctl+0x28c/0x5b0 [ 61.472374][ T5079] ? nbd_release+0x130/0x130 [ 61.476973][ T5079] blkdev_ioctl+0x3c9/0x7c0 [ 61.481479][ T5079] ? blkdev_compat_ptr_ioctl+0xd0/0xd0 [ 61.486945][ T5079] ? bpf_lsm_file_ioctl+0x5/0x10 [ 61.491890][ T5079] ? security_file_ioctl+0x9d/0xb0 [ 61.497000][ T5079] ? blkdev_compat_ptr_ioctl+0xd0/0xd0 [ 61.502457][ T5079] __se_sys_ioctl+0xfb/0x170 [ 61.507052][ T5079] do_syscall_64+0x2b/0x70 [ 61.511468][ T5079] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 61.517360][ T5079] RIP: 0033:0x7fed1af80309 [ 61.521789][ T5079] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 61.541432][ T5079] RSP: 002b:00007fed1af2d2e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 61.549949][ T5079] RAX: ffffffffffffffda RBX: 00007fed1b0044c0 RCX: 00007fed1af80309 [ 61.557943][ T5079] RDX: 0000000000000000 RSI: 000000000000ab03 RDI: 0000000000000003 [ 61.565935][ T5079] RBP: 00007fed1afd1194 R08: 0000000000000002 R09: 0000000000003831 [ 61.573906][ T5079] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fed1b0044cc [ 61.581875][ T5079] R13: 00007fed1af2d2f0 R14: 00007fed1b0044c8 R15: 0000000000000002 [ 61.589858][ T5079] [ 61.593536][ T5079] debugfs: out of free dentries, can not create file 'blocksize_bits' [pid 5078] exit_group(0) = ? [pid 5079] <... ioctl resumed>) = ? [pid 5079] +++ exited with 0 +++ [pid 5078] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5078, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555561a65d0) = 5080 ./strace-static-x86_64: Process 5080 attached [pid 5080] set_robust_list(0x5555561a65e0, 24) = 0 [pid 5080] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5080] setpgid(0, 0) = 0 [pid 5080] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5080] write(3, "1000", 4) = 4 [pid 5080] close(3) = 0 [pid 5080] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5080] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fed1af0d000 [pid 5080] mprotect(0x7fed1af0e000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5080] clone(child_stack=0x7fed1af2d3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[5081], tls=0x7fed1af2d700, child_tidptr=0x7fed1af2d9d0) = 5081 [pid 5080] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5080] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 5081 attached [pid 5081] set_robust_list(0x7fed1af2d9e0, 24) = 0 [ 61.740582][ T5079] block nbd0: shutting down sockets [pid 5081] openat(AT_FDCWD, "/dev/nbd0", O_RDONLY) = 3 [pid 5081] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5080] <... futex resumed>) = 0 [pid 5080] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5080] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5081] <... futex resumed>) = 1 [pid 5081] socketpair(AF_UNIX, SOCK_STREAM, 0, [4, 5]) = 0 [pid 5081] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5080] <... futex resumed>) = 0 [pid 5080] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5080] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5081] <... futex resumed>) = 1 [pid 5081] openat(AT_FDCWD, "/dev/nbd0", O_RDONLY) = 6 [pid 5081] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5080] <... futex resumed>) = 0 [pid 5080] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5080] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5081] <... futex resumed>) = 1 [pid 5081] ioctl(6, NBD_SET_SOCK, 4) = 0 [pid 5081] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5080] <... futex resumed>) = 0 [pid 5081] ioctl(3, NBD_SET_SOCK, 4 [pid 5080] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5080] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5081] <... ioctl resumed>) = 0 [pid 5081] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5080] <... futex resumed>) = 0 [pid 5081] futex(0x7fed1b0044c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5080] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5081] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5080] <... futex resumed>) = 0 [pid 5081] ioctl(3, NBD_SET_FLAGS, NBD_FLAG_SEND_FLUSH|NBD_FLAG_SEND_FUA|NBD_FLAG_ROTATIONAL|NBD_FLAG_SEND_TRIM|NBD_FLAG_SEND_WRITE_ZEROES|NBD_FLAG_SEND_DF|NBD_FLAG_CAN_MULTI_CONN|NBD_FLAG_SEND_RESIZE|NBD_FLAG_SEND_CACHE|0x7800 [pid 5080] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5081] <... ioctl resumed>) = 0 [pid 5081] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5080] <... futex resumed>) = 0 [pid 5081] futex(0x7fed1b0044c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5080] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5081] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5080] <... futex resumed>) = 0 [pid 5081] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5080] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5081] <... openat resumed>) = 7 [pid 5081] write(7, "18", 2) = 2 [ 61.873960][ T5081] FAULT_INJECTION: forcing a failure. [ 61.873960][ T5081] name failslab, interval 1, probability 0, space 0, times 0 [ 61.886678][ T5081] CPU: 0 PID: 5081 Comm: syz-executor180 Not tainted 6.2.0-rc6-syzkaller-00003-g22b8077d0fce #0 [ 61.897120][ T5081] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023 [ 61.907204][ T5081] Call Trace: [ 61.910502][ T5081] [ 61.913447][ T5081] dump_stack_lvl+0x1e3/0x2d0 [ 61.918148][ T5081] ? nf_tcp_handle_invalid+0x630/0x630 [ 61.923622][ T5081] ? panic+0x770/0x770 [ 61.927704][ T5081] ? __might_sleep+0xc0/0xc0 [ 61.932336][ T5081] should_fail_ex+0x3aa/0x4e0 [ 61.937020][ T5081] ? new_inode_pseudo+0x81/0x1d0 [ 61.941972][ T5081] should_failslab+0x5/0x20 [ 61.946485][ T5081] kmem_cache_alloc_lru+0x75/0x320 [ 61.951604][ T5081] ? try_lookup_one_len+0x670/0x670 [ 61.956820][ T5081] new_inode_pseudo+0x81/0x1d0 [ 61.961583][ T5081] new_inode+0x25/0x1d0 [ 61.965736][ T5081] ? start_creating+0x22a/0x330 [ 61.970584][ T5081] __debugfs_create_file+0x146/0x500 [ 61.975869][ T5081] nbd_start_device+0x44a/0xb70 [ 61.980726][ T5081] nbd_start_device_ioctl+0xa7/0x5c0 [ 61.986013][ T5081] ? nbd_ioctl+0xd7/0x5b0 [ 61.990345][ T5081] ? nbd_set_size+0x490/0x490 [ 61.995037][ T5081] ? safesetid_security_capable+0xab/0x1b0 [ 62.000848][ T5081] ? bpf_lsm_capable+0x5/0x10 [ 62.005557][ T5081] nbd_ioctl+0x28c/0x5b0 [ 62.009818][ T5081] ? nbd_release+0x130/0x130 [ 62.014433][ T5081] blkdev_ioctl+0x3c9/0x7c0 [ 62.018948][ T5081] ? blkdev_compat_ptr_ioctl+0xd0/0xd0 [ 62.024413][ T5081] ? bpf_lsm_file_ioctl+0x5/0x10 [ 62.029355][ T5081] ? security_file_ioctl+0x9d/0xb0 [ 62.034474][ T5081] ? blkdev_compat_ptr_ioctl+0xd0/0xd0 [ 62.039951][ T5081] __se_sys_ioctl+0xfb/0x170 [ 62.044581][ T5081] do_syscall_64+0x2b/0x70 [ 62.049022][ T5081] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 62.054958][ T5081] RIP: 0033:0x7fed1af80309 [ 62.059396][ T5081] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 62.079004][ T5081] RSP: 002b:00007fed1af2d2e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 62.087415][ T5081] RAX: ffffffffffffffda RBX: 00007fed1b0044c0 RCX: 00007fed1af80309 [ 62.095409][ T5081] RDX: 0000000000000000 RSI: 000000000000ab03 RDI: 0000000000000003 [ 62.103392][ T5081] RBP: 00007fed1afd1194 R08: 0000000000000002 R09: 0000000000003831 [ 62.111375][ T5081] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fed1b0044cc [pid 5081] ioctl(3, NBD_DO_IT [pid 5080] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [ 62.119343][ T5081] R13: 00007fed1af2d2f0 R14: 00007fed1b0044c8 R15: 0000000000000002 [ 62.127415][ T5081] [ 62.132634][ T5081] debugfs: out of free dentries, can not create file 'blocksize_bits' [pid 5080] exit_group(0) = ? [pid 5081] <... ioctl resumed>) = ? [pid 5081] +++ exited with 0 +++ [pid 5080] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5080, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555561a65d0) = 5082 ./strace-static-x86_64: Process 5082 attached [pid 5082] set_robust_list(0x5555561a65e0, 24) = 0 [pid 5082] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5082] setpgid(0, 0) = 0 [pid 5082] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5082] write(3, "1000", 4) = 4 [pid 5082] close(3) = 0 [pid 5082] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5082] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fed1af0d000 [pid 5082] mprotect(0x7fed1af0e000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5082] clone(child_stack=0x7fed1af2d3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[5083], tls=0x7fed1af2d700, child_tidptr=0x7fed1af2d9d0) = 5083 [pid 5082] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5082] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 5083 attached [pid 5083] set_robust_list(0x7fed1af2d9e0, 24) = 0 [pid 5083] openat(AT_FDCWD, "/dev/nbd0", O_RDONLY) = 3 [pid 5083] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5082] <... futex resumed>) = 0 [pid 5082] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5082] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5083] <... futex resumed>) = 1 [pid 5083] socketpair(AF_UNIX, SOCK_STREAM, 0, [4, 5]) = 0 [pid 5083] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5082] <... futex resumed>) = 0 [pid 5082] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5082] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5083] <... futex resumed>) = 1 [pid 5083] openat(AT_FDCWD, "/dev/nbd0", O_RDONLY) = 6 [pid 5083] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5082] <... futex resumed>) = 0 [pid 5082] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5082] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5083] <... futex resumed>) = 1 [ 62.293603][ T5081] block nbd0: shutting down sockets [pid 5083] ioctl(6, NBD_SET_SOCK, 4) = 0 [pid 5083] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5082] <... futex resumed>) = 0 [pid 5083] futex(0x7fed1b0044c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5082] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5083] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5082] <... futex resumed>) = 0 [pid 5083] ioctl(3, NBD_SET_SOCK, 4 [pid 5082] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5083] <... ioctl resumed>) = 0 [pid 5083] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5082] <... futex resumed>) = 0 [pid 5083] ioctl(3, NBD_SET_FLAGS, NBD_FLAG_SEND_FLUSH|NBD_FLAG_SEND_FUA|NBD_FLAG_ROTATIONAL|NBD_FLAG_SEND_TRIM|NBD_FLAG_SEND_WRITE_ZEROES|NBD_FLAG_SEND_DF|NBD_FLAG_CAN_MULTI_CONN|NBD_FLAG_SEND_RESIZE|NBD_FLAG_SEND_CACHE|0x7800 [pid 5082] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5083] <... ioctl resumed>) = 0 [pid 5082] <... futex resumed>) = 0 [pid 5083] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5082] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5083] <... futex resumed>) = 0 [pid 5082] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5083] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5082] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5083] <... openat resumed>) = 7 [pid 5082] <... futex resumed>) = 0 [pid 5083] write(7, "18", 2 [pid 5082] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5083] <... write resumed>) = 2 [ 62.414754][ T5083] FAULT_INJECTION: forcing a failure. [ 62.414754][ T5083] name failslab, interval 1, probability 0, space 0, times 0 [ 62.427551][ T5083] CPU: 0 PID: 5083 Comm: syz-executor180 Not tainted 6.2.0-rc6-syzkaller-00003-g22b8077d0fce #0 [ 62.437981][ T5083] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023 [ 62.448037][ T5083] Call Trace: [ 62.451324][ T5083] [ 62.454273][ T5083] dump_stack_lvl+0x1e3/0x2d0 [ 62.458967][ T5083] ? nf_tcp_handle_invalid+0x630/0x630 [ 62.464421][ T5083] ? panic+0x770/0x770 [ 62.468506][ T5083] ? __might_sleep+0xc0/0xc0 [ 62.473143][ T5083] should_fail_ex+0x3aa/0x4e0 [ 62.477819][ T5083] ? __d_alloc+0x31/0x700 [ 62.482149][ T5083] should_failslab+0x5/0x20 [ 62.486665][ T5083] kmem_cache_alloc_lru+0x75/0x320 [ 62.491773][ T5083] ? mark_lock+0x9a/0x350 [ 62.496190][ T5083] __d_alloc+0x31/0x700 [ 62.500348][ T5083] d_alloc_parallel+0xcb/0x12c0 [ 62.505203][ T5083] ? lockdep_init_map_type+0x9d/0x8d0 [ 62.510574][ T5083] ? lockdep_softirqs_off+0x420/0x420 [ 62.515946][ T5083] ? d_hash_and_lookup+0x1c0/0x1c0 [ 62.521057][ T5083] ? __init_waitqueue_head+0xa6/0x140 [ 62.526430][ T5083] __lookup_slow+0x112/0x3e0 [ 62.531029][ T5083] ? lookup_one_len+0x690/0x690 [ 62.535900][ T5083] lookup_one_len+0x430/0x690 [ 62.540846][ T5083] ? try_lookup_one_len+0x670/0x670 [ 62.546048][ T5083] ? mntput+0x60/0xb0 [ 62.550034][ T5083] start_creating+0x183/0x330 [ 62.554719][ T5083] __debugfs_create_file+0x74/0x500 [ 62.559924][ T5083] nbd_start_device+0x44a/0xb70 [ 62.564897][ T5083] nbd_start_device_ioctl+0xa7/0x5c0 [ 62.570186][ T5083] ? nbd_ioctl+0xd7/0x5b0 [ 62.574536][ T5083] ? nbd_set_size+0x490/0x490 [ 62.579218][ T5083] ? safesetid_security_capable+0xab/0x1b0 [ 62.585029][ T5083] ? bpf_lsm_capable+0x5/0x10 [ 62.589716][ T5083] nbd_ioctl+0x28c/0x5b0 [ 62.593963][ T5083] ? nbd_release+0x130/0x130 [ 62.598577][ T5083] blkdev_ioctl+0x3c9/0x7c0 [ 62.603101][ T5083] ? blkdev_compat_ptr_ioctl+0xd0/0xd0 [ 62.608585][ T5083] ? bpf_lsm_file_ioctl+0x5/0x10 [ 62.613540][ T5083] ? security_file_ioctl+0x9d/0xb0 [ 62.618651][ T5083] ? blkdev_compat_ptr_ioctl+0xd0/0xd0 [ 62.624133][ T5083] __se_sys_ioctl+0xfb/0x170 [ 62.628724][ T5083] do_syscall_64+0x2b/0x70 [ 62.633152][ T5083] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 62.639043][ T5083] RIP: 0033:0x7fed1af80309 [ 62.643480][ T5083] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [pid 5083] ioctl(3, NBD_DO_IT [pid 5082] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [ 62.663085][ T5083] RSP: 002b:00007fed1af2d2e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 62.671502][ T5083] RAX: ffffffffffffffda RBX: 00007fed1b0044c0 RCX: 00007fed1af80309 [ 62.679482][ T5083] RDX: 0000000000000000 RSI: 000000000000ab03 RDI: 0000000000000003 [ 62.687473][ T5083] RBP: 00007fed1afd1194 R08: 0000000000000002 R09: 0000000000003831 [ 62.695440][ T5083] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fed1b0044cc [ 62.703413][ T5083] R13: 00007fed1af2d2f0 R14: 00007fed1b0044c8 R15: 0000000000000002 [ 62.711416][ T5083] [pid 5082] exit_group(0) = ? [pid 5083] <... ioctl resumed>) = ? [pid 5083] +++ exited with 0 +++ [pid 5082] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5082, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555561a65d0) = 5084 ./strace-static-x86_64: Process 5084 attached [pid 5084] set_robust_list(0x5555561a65e0, 24) = 0 [pid 5084] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5084] setpgid(0, 0) = 0 [pid 5084] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5084] write(3, "1000", 4) = 4 [pid 5084] close(3) = 0 [pid 5084] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5084] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fed1af0d000 [pid 5084] mprotect(0x7fed1af0e000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5084] clone(child_stack=0x7fed1af2d3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 5085 attached , parent_tid=[5085], tls=0x7fed1af2d700, child_tidptr=0x7fed1af2d9d0) = 5085 [pid 5084] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5084] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5085] set_robust_list(0x7fed1af2d9e0, 24) = 0 [pid 5085] openat(AT_FDCWD, "/dev/nbd0", O_RDONLY) = 3 [pid 5085] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5084] <... futex resumed>) = 0 [pid 5084] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5085] socketpair(AF_UNIX, SOCK_STREAM, 0, [pid 5084] <... futex resumed>) = 0 [pid 5084] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5085] <... socketpair resumed>[4, 5]) = 0 [pid 5085] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5084] <... futex resumed>) = 0 [pid 5084] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5084] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [ 62.851240][ T5083] block nbd0: shutting down sockets [pid 5085] openat(AT_FDCWD, "/dev/nbd0", O_RDONLY) = 6 [pid 5085] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5084] <... futex resumed>) = 0 [pid 5084] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5084] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5085] ioctl(6, NBD_SET_SOCK, 4) = 0 [pid 5085] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5084] <... futex resumed>) = 0 [pid 5084] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5084] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5085] ioctl(3, NBD_SET_SOCK, 4) = 0 [pid 5085] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5084] <... futex resumed>) = 0 [pid 5084] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5084] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5085] ioctl(3, NBD_SET_FLAGS, NBD_FLAG_SEND_FLUSH|NBD_FLAG_SEND_FUA|NBD_FLAG_ROTATIONAL|NBD_FLAG_SEND_TRIM|NBD_FLAG_SEND_WRITE_ZEROES|NBD_FLAG_SEND_DF|NBD_FLAG_CAN_MULTI_CONN|NBD_FLAG_SEND_RESIZE|NBD_FLAG_SEND_CACHE|0x7800) = 0 [pid 5085] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5084] <... futex resumed>) = 0 [pid 5084] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5084] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5085] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 7 [pid 5085] write(7, "18", 2) = 2 [pid 5085] ioctl(3, NBD_DO_IT [pid 5084] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [ 62.986420][ T5085] FAULT_INJECTION: forcing a failure. [ 62.986420][ T5085] name failslab, interval 1, probability 0, space 0, times 0 [ 62.999251][ T5085] CPU: 0 PID: 5085 Comm: syz-executor180 Not tainted 6.2.0-rc6-syzkaller-00003-g22b8077d0fce #0 [ 63.009686][ T5085] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023 [ 63.019780][ T5085] Call Trace: [ 63.023075][ T5085] [ 63.026017][ T5085] dump_stack_lvl+0x1e3/0x2d0 [ 63.030695][ T5085] ? nf_tcp_handle_invalid+0x630/0x630 [ 63.036153][ T5085] ? panic+0x770/0x770 [ 63.040227][ T5085] ? __might_sleep+0xc0/0xc0 [ 63.044828][ T5085] should_fail_ex+0x3aa/0x4e0 [ 63.049527][ T5085] ? __d_alloc+0x31/0x700 [ 63.053881][ T5085] should_failslab+0x5/0x20 [ 63.058387][ T5085] kmem_cache_alloc_lru+0x75/0x320 [ 63.063516][ T5085] ? mark_lock+0x9a/0x350 [ 63.067864][ T5085] __d_alloc+0x31/0x700 [ 63.072045][ T5085] d_alloc_parallel+0xcb/0x12c0 [ 63.076895][ T5085] ? lockdep_init_map_type+0x9d/0x8d0 [ 63.082273][ T5085] ? lockdep_softirqs_off+0x420/0x420 [ 63.087659][ T5085] ? d_hash_and_lookup+0x1c0/0x1c0 [ 63.092799][ T5085] ? __init_waitqueue_head+0xa6/0x140 [ 63.098172][ T5085] __lookup_slow+0x112/0x3e0 [ 63.102764][ T5085] ? lookup_one_len+0x690/0x690 [ 63.107634][ T5085] lookup_one_len+0x430/0x690 [ 63.112321][ T5085] ? try_lookup_one_len+0x670/0x670 [ 63.117544][ T5085] ? mntput+0x60/0xb0 [ 63.121552][ T5085] start_creating+0x183/0x330 [ 63.126248][ T5085] __debugfs_create_file+0x74/0x500 [ 63.131462][ T5085] nbd_start_device+0x44a/0xb70 [ 63.136456][ T5085] nbd_start_device_ioctl+0xa7/0x5c0 [ 63.141764][ T5085] ? nbd_ioctl+0xd7/0x5b0 [ 63.146118][ T5085] ? nbd_set_size+0x490/0x490 [ 63.150827][ T5085] ? safesetid_security_capable+0xab/0x1b0 [ 63.156671][ T5085] ? bpf_lsm_capable+0x5/0x10 [ 63.161371][ T5085] nbd_ioctl+0x28c/0x5b0 [ 63.165624][ T5085] ? nbd_release+0x130/0x130 [ 63.170315][ T5085] blkdev_ioctl+0x3c9/0x7c0 [ 63.174833][ T5085] ? blkdev_compat_ptr_ioctl+0xd0/0xd0 [ 63.180330][ T5085] ? bpf_lsm_file_ioctl+0x5/0x10 [ 63.185272][ T5085] ? security_file_ioctl+0x9d/0xb0 [ 63.190390][ T5085] ? blkdev_compat_ptr_ioctl+0xd0/0xd0 [ 63.195851][ T5085] __se_sys_ioctl+0xfb/0x170 [ 63.200455][ T5085] do_syscall_64+0x2b/0x70 [ 63.204875][ T5085] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 63.210783][ T5085] RIP: 0033:0x7fed1af80309 [ 63.215221][ T5085] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 63.234828][ T5085] RSP: 002b:00007fed1af2d2e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 63.243249][ T5085] RAX: ffffffffffffffda RBX: 00007fed1b0044c0 RCX: 00007fed1af80309 [ 63.251244][ T5085] RDX: 0000000000000000 RSI: 000000000000ab03 RDI: 0000000000000003 [ 63.259216][ T5085] RBP: 00007fed1afd1194 R08: 0000000000000002 R09: 0000000000003831 [ 63.267225][ T5085] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fed1b0044cc [ 63.275198][ T5085] R13: 00007fed1af2d2f0 R14: 00007fed1b0044c8 R15: 0000000000000002 [ 63.283185][ T5085] [pid 5084] exit_group(0) = ? [pid 5085] <... ioctl resumed>) = ? [pid 5085] +++ exited with 0 +++ [pid 5084] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5084, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555561a65d0) = 5086 ./strace-static-x86_64: Process 5086 attached [pid 5086] set_robust_list(0x5555561a65e0, 24) = 0 [pid 5086] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5086] setpgid(0, 0) = 0 [pid 5086] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5086] write(3, "1000", 4) = 4 [pid 5086] close(3) = 0 [pid 5086] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5086] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fed1af0d000 [pid 5086] mprotect(0x7fed1af0e000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5086] clone(child_stack=0x7fed1af2d3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[5087], tls=0x7fed1af2d700, child_tidptr=0x7fed1af2d9d0) = 5087 [pid 5086] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5086] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 5087 attached [pid 5087] set_robust_list(0x7fed1af2d9e0, 24) = 0 [pid 5087] openat(AT_FDCWD, "/dev/nbd0", O_RDONLY) = 3 [pid 5087] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5086] <... futex resumed>) = 0 [pid 5086] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5086] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5087] <... futex resumed>) = 1 [pid 5087] socketpair(AF_UNIX, SOCK_STREAM, 0, [4, 5]) = 0 [pid 5087] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5086] <... futex resumed>) = 0 [pid 5086] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5086] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5087] <... futex resumed>) = 1 [pid 5087] openat(AT_FDCWD, "/dev/nbd0", O_RDONLY) = 6 [pid 5087] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5086] <... futex resumed>) = 0 [pid 5086] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5086] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5087] <... futex resumed>) = 1 [ 63.354119][ T5085] block nbd0: shutting down sockets [pid 5087] ioctl(6, NBD_SET_SOCK, 4) = 0 [pid 5087] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5086] <... futex resumed>) = 0 [pid 5087] ioctl(3, NBD_SET_SOCK, 4 [pid 5086] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5086] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5087] <... ioctl resumed>) = 0 [pid 5087] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5086] <... futex resumed>) = 0 [pid 5087] futex(0x7fed1b0044c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5086] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5087] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5086] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5087] ioctl(3, NBD_SET_FLAGS, NBD_FLAG_SEND_FLUSH|NBD_FLAG_SEND_FUA|NBD_FLAG_ROTATIONAL|NBD_FLAG_SEND_TRIM|NBD_FLAG_SEND_WRITE_ZEROES|NBD_FLAG_SEND_DF|NBD_FLAG_CAN_MULTI_CONN|NBD_FLAG_SEND_RESIZE|NBD_FLAG_SEND_CACHE|0x7800) = 0 [pid 5087] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5086] <... futex resumed>) = 0 [pid 5087] futex(0x7fed1b0044c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5086] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5087] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5086] <... futex resumed>) = 0 [pid 5087] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5086] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5087] <... openat resumed>) = 7 [pid 5087] write(7, "18", 2) = 2 [pid 5087] ioctl(3, NBD_DO_IT [pid 5086] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5086] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=0}) = -1 ETIMEDOUT (Connection timed out) [ 63.473863][ T5087] FAULT_INJECTION: forcing a failure. [ 63.473863][ T5087] name failslab, interval 1, probability 0, space 0, times 0 [ 63.486781][ T5087] CPU: 1 PID: 5087 Comm: syz-executor180 Not tainted 6.2.0-rc6-syzkaller-00003-g22b8077d0fce #0 [ 63.497245][ T5087] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023 [ 63.507313][ T5087] Call Trace: [ 63.510591][ T5087] [ 63.513516][ T5087] dump_stack_lvl+0x1e3/0x2d0 [ 63.518277][ T5087] ? nf_tcp_handle_invalid+0x630/0x630 [ 63.523746][ T5087] ? panic+0x770/0x770 [ 63.527946][ T5087] ? __might_sleep+0xc0/0xc0 [ 63.532564][ T5087] should_fail_ex+0x3aa/0x4e0 [ 63.537239][ T5087] ? __d_alloc+0x31/0x700 [ 63.541573][ T5087] should_failslab+0x5/0x20 [ 63.546077][ T5087] kmem_cache_alloc_lru+0x75/0x320 [ 63.551274][ T5087] ? mark_lock+0x9a/0x350 [ 63.555628][ T5087] __d_alloc+0x31/0x700 [ 63.559810][ T5087] d_alloc_parallel+0xcb/0x12c0 [ 63.564677][ T5087] ? lockdep_init_map_type+0x9d/0x8d0 [ 63.570056][ T5087] ? lockdep_softirqs_off+0x420/0x420 [ 63.575457][ T5087] ? d_hash_and_lookup+0x1c0/0x1c0 [ 63.580583][ T5087] ? __init_waitqueue_head+0xa6/0x140 [ 63.585974][ T5087] __lookup_slow+0x112/0x3e0 [ 63.590592][ T5087] ? lookup_one_len+0x690/0x690 [ 63.595455][ T5087] lookup_one_len+0x430/0x690 [ 63.600141][ T5087] ? try_lookup_one_len+0x670/0x670 [ 63.605353][ T5087] ? mntput+0x60/0xb0 [ 63.609344][ T5087] start_creating+0x183/0x330 [ 63.614033][ T5087] __debugfs_create_file+0x74/0x500 [ 63.619239][ T5087] nbd_start_device+0x44a/0xb70 [pid 5086] exit_group(0) = ? [ 63.624124][ T5087] nbd_start_device_ioctl+0xa7/0x5c0 [ 63.629501][ T5087] ? nbd_ioctl+0xd7/0x5b0 [ 63.633844][ T5087] ? nbd_set_size+0x490/0x490 [ 63.638551][ T5087] ? safesetid_security_capable+0xab/0x1b0 [ 63.644387][ T5087] ? bpf_lsm_capable+0x5/0x10 [ 63.649074][ T5087] nbd_ioctl+0x28c/0x5b0 [ 63.653340][ T5087] ? nbd_release+0x130/0x130 [ 63.657936][ T5087] blkdev_ioctl+0x3c9/0x7c0 [ 63.662435][ T5087] ? blkdev_compat_ptr_ioctl+0xd0/0xd0 [ 63.667891][ T5087] ? bpf_lsm_file_ioctl+0x5/0x10 [ 63.672820][ T5087] ? security_file_ioctl+0x9d/0xb0 [ 63.677924][ T5087] ? blkdev_compat_ptr_ioctl+0xd0/0xd0 [ 63.683377][ T5087] __se_sys_ioctl+0xfb/0x170 [ 63.687964][ T5087] do_syscall_64+0x2b/0x70 [ 63.692383][ T5087] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 63.698272][ T5087] RIP: 0033:0x7fed1af80309 [ 63.702680][ T5087] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 63.722399][ T5087] RSP: 002b:00007fed1af2d2e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 63.730806][ T5087] RAX: ffffffffffffffda RBX: 00007fed1b0044c0 RCX: 00007fed1af80309 [ 63.738787][ T5087] RDX: 0000000000000000 RSI: 000000000000ab03 RDI: 0000000000000003 [ 63.746750][ T5087] RBP: 00007fed1afd1194 R08: 0000000000000002 R09: 0000000000003831 [ 63.754734][ T5087] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fed1b0044cc [ 63.762698][ T5087] R13: 00007fed1af2d2f0 R14: 00007fed1b0044c8 R15: 0000000000000002 [ 63.770675][ T5087] [pid 5087] <... ioctl resumed>) = ? [pid 5087] +++ exited with 0 +++ [pid 5086] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5086, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555561a65d0) = 5088 ./strace-static-x86_64: Process 5088 attached [pid 5088] set_robust_list(0x5555561a65e0, 24) = 0 [pid 5088] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5088] setpgid(0, 0) = 0 [pid 5088] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5088] write(3, "1000", 4) = 4 [pid 5088] close(3) = 0 [pid 5088] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5088] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fed1af0d000 [pid 5088] mprotect(0x7fed1af0e000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5088] clone(child_stack=0x7fed1af2d3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[5089], tls=0x7fed1af2d700, child_tidptr=0x7fed1af2d9d0) = 5089 [pid 5088] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5088] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 5089 attached [pid 5089] set_robust_list(0x7fed1af2d9e0, 24) = 0 [pid 5089] openat(AT_FDCWD, "/dev/nbd0", O_RDONLY) = 3 [pid 5089] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5088] <... futex resumed>) = 0 [pid 5088] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5088] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5089] <... futex resumed>) = 1 [pid 5089] socketpair(AF_UNIX, SOCK_STREAM, 0, [4, 5]) = 0 [pid 5089] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5088] <... futex resumed>) = 0 [pid 5088] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5088] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5089] <... futex resumed>) = 1 [pid 5089] openat(AT_FDCWD, "/dev/nbd0", O_RDONLY) = 6 [pid 5089] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5088] <... futex resumed>) = 0 [pid 5088] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5088] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5089] <... futex resumed>) = 1 [ 63.777569][ T5087] block nbd0: shutting down sockets [pid 5089] ioctl(6, NBD_SET_SOCK, 4 [pid 5088] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5088] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=0}) = -1 ETIMEDOUT (Connection timed out) [pid 5088] futex(0x7fed1b0044dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5088] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fed1aeec000 [pid 5088] mprotect(0x7fed1aeed000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5088] clone(child_stack=0x7fed1af0c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[5090], tls=0x7fed1af0c700, child_tidptr=0x7fed1af0c9d0) = 5090 [pid 5088] futex(0x7fed1b0044d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5088] futex(0x7fed1b0044dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 5090 attached [pid 5090] set_robust_list(0x7fed1af0c9e0, 24) = 0 [pid 5090] ioctl(3, NBD_SET_SOCK, 4 [pid 5089] <... ioctl resumed>) = 0 [pid 5089] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5089] futex(0x7fed1b0044c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5088] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5088] futex(0x7fed1b0044dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=0}) = -1 ETIMEDOUT (Connection timed out) [pid 5090] <... ioctl resumed>) = -1 EBUSY (Device or resource busy) [pid 5088] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5089] <... futex resumed>) = 0 [pid 5088] <... futex resumed>) = 1 [pid 5089] ioctl(3, NBD_SET_FLAGS, NBD_FLAG_SEND_FLUSH|NBD_FLAG_SEND_FUA|NBD_FLAG_ROTATIONAL|NBD_FLAG_SEND_TRIM|NBD_FLAG_SEND_WRITE_ZEROES|NBD_FLAG_SEND_DF|NBD_FLAG_CAN_MULTI_CONN|NBD_FLAG_SEND_RESIZE|NBD_FLAG_SEND_CACHE|0x7800 [pid 5088] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5089] <... ioctl resumed>) = 0 [pid 5089] futex(0x7fed1b0044cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5088] <... futex resumed>) = 0 [pid 5089] futex(0x7fed1b0044c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5088] futex(0x7fed1b0044c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5089] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5088] <... futex resumed>) = 0 [pid 5089] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5088] futex(0x7fed1b0044cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5089] <... openat resumed>) = 7 [pid 5089] write(7, "18", 2) = 2 [pid 5089] ioctl(3, NBD_DO_IT [pid 5090] futex(0x7fed1b0044dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 63.909804][ T5090] block nbd0: Device being setup by another task [pid 5090] futex(0x7fed1b0044d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5088] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [ 63.962822][ T5089] ------------[ cut here ]------------ [ 63.968321][ T5089] kernfs: can not remove 'nr_tags', no directory [ 63.975624][ T5089] WARNING: CPU: 0 PID: 5089 at fs/kernfs/dir.c:1652 kernfs_remove_by_name_ns+0xf5/0x150 [ 63.985751][ T5089] Modules linked in: [ 63.989929][ T5089] CPU: 0 PID: 5089 Comm: syz-executor180 Not tainted 6.2.0-rc6-syzkaller-00003-g22b8077d0fce #0 [ 64.001798][ T5089] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023 [ 64.012287][ T5089] RIP: 0010:kernfs_remove_by_name_ns+0xf5/0x150 [ 64.018587][ T5089] Code: 48 89 df e8 5d ec ff ff 48 89 df e8 a5 97 ff ff 31 db eb 29 e8 7c 00 70 ff 48 c7 c7 00 bb 20 8b 4c 89 e6 31 c0 e8 6b 51 36 ff <0f> 0b bb fe ff ff ff eb 12 e8 5d 00 70 ff bb fe ff ff ff 4c 89 f7 [ 64.038708][ T5089] RSP: 0018:ffffc90003c1f960 EFLAGS: 00010246 [ 64.045026][ T5089] RAX: 784baa382bb4b800 RBX: ffffffff8db377e0 RCX: ffff88802a9457c0 [ 64.053233][ T5089] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000 [ 64.061402][ T5089] RBP: dffffc0000000000 R08: ffffffff8170be4d R09: fffff52000783ee5 [ 64.069408][ T5089] R10: fffff52000783ee5 R11: 1ffff92000783ee4 R12: ffffffff8b676080 [ 64.077688][ T5089] R13: 0000000000000000 R14: ffffffff8b676020 R15: 0000000000000000 [ 64.086492][ T5089] FS: 00007fed1af2d700(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000 [ 64.095733][ T5089] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 64.102582][ T5089] CR2: 00007fed1afc14b0 CR3: 000000001d2a2000 CR4: 00000000003506f0 [pid 5088] exit_group(0) = ? [pid 5090] <... futex resumed>) = ? [pid 5090] +++ exited with 0 +++ [ 64.110807][ T5089] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 64.118822][ T5089] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 64.127158][ T5089] Call Trace: [ 64.130672][ T5089] [ 64.133633][ T5089] sysfs_remove_group+0x102/0x2b0 [ 64.138736][ T5089] sysfs_remove_groups+0x5b/0xb0 [ 64.144134][ T5089] __kobject_del+0x84/0x300 [ 64.148670][ T5089] kobject_del+0x41/0x60 [ 64.153329][ T5089] blk_mq_sysfs_unregister_hctxs+0x235/0x320 [ 64.159349][ T5089] ? blk_mq_sysfs_unregister+0x3a0/0x3a0 [ 64.165359][ T5089] ? mutex_lock_nested+0x17/0x20 [ 64.170536][ T5089] ? blk_mq_unfreeze_queue+0x71/0x100 [ 64.175936][ T5089] blk_mq_update_nr_hw_queues+0x647/0x13a0 [ 64.182073][ T5089] ? blk_mq_update_nr_requests+0x680/0x680 [ 64.187909][ T5089] ? trace_raw_output_contention_end+0xd0/0xd0 [ 64.194329][ T5089] ? blkdev_common_ioctl+0x685/0x21b0 [ 64.199804][ T5089] nbd_start_device+0x15d/0xb70 [ 64.204712][ T5089] nbd_start_device_ioctl+0xa7/0x5c0 [ 64.210136][ T5089] ? nbd_ioctl+0xd7/0x5b0 [ 64.214510][ T5089] ? nbd_set_size+0x490/0x490 [ 64.219302][ T5089] ? safesetid_security_capable+0xab/0x1b0 [ 64.225180][ T5089] ? bpf_lsm_capable+0x5/0x10 [ 64.229928][ T5089] nbd_ioctl+0x28c/0x5b0 [ 64.234268][ T5089] ? nbd_release+0x130/0x130 [ 64.238876][ T5089] blkdev_ioctl+0x3c9/0x7c0 [ 64.243450][ T5089] ? blkdev_compat_ptr_ioctl+0xd0/0xd0 [ 64.248936][ T5089] ? bpf_lsm_file_ioctl+0x5/0x10 [ 64.253967][ T5089] ? security_file_ioctl+0x9d/0xb0 [ 64.259100][ T5089] ? blkdev_compat_ptr_ioctl+0xd0/0xd0 [ 64.264891][ T5089] __se_sys_ioctl+0xfb/0x170 [ 64.269612][ T5089] do_syscall_64+0x2b/0x70 [ 64.274223][ T5089] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 64.280195][ T5089] RIP: 0033:0x7fed1af80309 [ 64.284635][ T5089] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 64.304358][ T5089] RSP: 002b:00007fed1af2d2e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 64.312834][ T5089] RAX: ffffffffffffffda RBX: 00007fed1b0044c0 RCX: 00007fed1af80309 [ 64.320888][ T5089] RDX: 0000000000000000 RSI: 000000000000ab03 RDI: 0000000000000003 [ 64.328986][ T5089] RBP: 00007fed1afd1194 R08: 0000000000000002 R09: 0000000000003831 [ 64.337056][ T5089] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fed1b0044cc [ 64.345098][ T5089] R13: 00007fed1af2d2f0 R14: 00007fed1b0044c8 R15: 0000000000000002 [ 64.353164][ T5089] [ 64.356197][ T5089] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 64.363469][ T5089] CPU: 0 PID: 5089 Comm: syz-executor180 Not tainted 6.2.0-rc6-syzkaller-00003-g22b8077d0fce #0 [ 64.373885][ T5089] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023 [ 64.383977][ T5089] Call Trace: [ 64.388040][ T5089] [ 64.390970][ T5089] dump_stack_lvl+0x1e3/0x2d0 [ 64.395671][ T5089] ? nf_tcp_handle_invalid+0x630/0x630 [ 64.401130][ T5089] ? panic+0x770/0x770 [ 64.405201][ T5089] ? vscnprintf+0x59/0x80 [ 64.409532][ T5089] ? kernfs_remove_by_name_ns+0xc0/0x150 [ 64.415257][ T5089] panic+0x316/0x770 [ 64.419152][ T5089] ? __warn+0x16d/0x2d0 [ 64.423300][ T5089] ? memcpy_page_flushcache+0x100/0x100 [ 64.428852][ T5089] ? kernfs_remove_by_name_ns+0xf5/0x150 [ 64.434505][ T5089] __warn+0x284/0x2d0 [ 64.438488][ T5089] ? kernfs_remove_by_name_ns+0xf5/0x150 [ 64.444121][ T5089] report_bug+0x1b3/0x2d0 [ 64.448451][ T5089] handle_bug+0x3d/0x70 [ 64.452603][ T5089] exc_invalid_op+0x16/0x40 [ 64.457110][ T5089] asm_exc_invalid_op+0x16/0x20 [ 64.461977][ T5089] RIP: 0010:kernfs_remove_by_name_ns+0xf5/0x150 [ 64.468223][ T5089] Code: 48 89 df e8 5d ec ff ff 48 89 df e8 a5 97 ff ff 31 db eb 29 e8 7c 00 70 ff 48 c7 c7 00 bb 20 8b 4c 89 e6 31 c0 e8 6b 51 36 ff <0f> 0b bb fe ff ff ff eb 12 e8 5d 00 70 ff bb fe ff ff ff 4c 89 f7 [ 64.487857][ T5089] RSP: 0018:ffffc90003c1f960 EFLAGS: 00010246 [ 64.493940][ T5089] RAX: 784baa382bb4b800 RBX: ffffffff8db377e0 RCX: ffff88802a9457c0 [ 64.501909][ T5089] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000 [ 64.509894][ T5089] RBP: dffffc0000000000 R08: ffffffff8170be4d R09: fffff52000783ee5 [ 64.517876][ T5089] R10: fffff52000783ee5 R11: 1ffff92000783ee4 R12: ffffffff8b676080 [ 64.525842][ T5089] R13: 0000000000000000 R14: ffffffff8b676020 R15: 0000000000000000 [ 64.533989][ T5089] ? __wake_up_klogd+0xcd/0x100 [ 64.538848][ T5089] sysfs_remove_group+0x102/0x2b0 [ 64.543899][ T5089] sysfs_remove_groups+0x5b/0xb0 [ 64.548852][ T5089] __kobject_del+0x84/0x300 [ 64.553374][ T5089] kobject_del+0x41/0x60 [ 64.557618][ T5089] blk_mq_sysfs_unregister_hctxs+0x235/0x320 [ 64.563599][ T5089] ? blk_mq_sysfs_unregister+0x3a0/0x3a0 [ 64.569259][ T5089] ? mutex_lock_nested+0x17/0x20 [ 64.574205][ T5089] ? blk_mq_unfreeze_queue+0x71/0x100 [ 64.579619][ T5089] blk_mq_update_nr_hw_queues+0x647/0x13a0 [ 64.585461][ T5089] ? blk_mq_update_nr_requests+0x680/0x680 [ 64.591305][ T5089] ? trace_raw_output_contention_end+0xd0/0xd0 [ 64.597458][ T5089] ? blkdev_common_ioctl+0x685/0x21b0 [ 64.602831][ T5089] nbd_start_device+0x15d/0xb70 [ 64.607707][ T5089] nbd_start_device_ioctl+0xa7/0x5c0 [ 64.613018][ T5089] ? nbd_ioctl+0xd7/0x5b0 [ 64.617387][ T5089] ? nbd_set_size+0x490/0x490 [ 64.622084][ T5089] ? safesetid_security_capable+0xab/0x1b0 [ 64.627926][ T5089] ? bpf_lsm_capable+0x5/0x10 [ 64.632620][ T5089] nbd_ioctl+0x28c/0x5b0 [ 64.636893][ T5089] ? nbd_release+0x130/0x130 [ 64.641502][ T5089] blkdev_ioctl+0x3c9/0x7c0 [ 64.646021][ T5089] ? blkdev_compat_ptr_ioctl+0xd0/0xd0 [ 64.651509][ T5089] ? bpf_lsm_file_ioctl+0x5/0x10 [ 64.656492][ T5089] ? security_file_ioctl+0x9d/0xb0 [ 64.661604][ T5089] ? blkdev_compat_ptr_ioctl+0xd0/0xd0 [ 64.667058][ T5089] __se_sys_ioctl+0xfb/0x170 [ 64.671652][ T5089] do_syscall_64+0x2b/0x70 [ 64.676093][ T5089] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 64.682612][ T5089] RIP: 0033:0x7fed1af80309 [ 64.687024][ T5089] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 64.706625][ T5089] RSP: 002b:00007fed1af2d2e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 64.715135][ T5089] RAX: ffffffffffffffda RBX: 00007fed1b0044c0 RCX: 00007fed1af80309 [ 64.723109][ T5089] RDX: 0000000000000000 RSI: 000000000000ab03 RDI: 0000000000000003 [ 64.731097][ T5089] RBP: 00007fed1afd1194 R08: 0000000000000002 R09: 0000000000003831 [ 64.739079][ T5089] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fed1b0044cc [ 64.747060][ T5089] R13: 00007fed1af2d2f0 R14: 00007fed1b0044c8 R15: 0000000000000002 [ 64.755042][ T5089] [ 64.758219][ T5089] Kernel Offset: disabled [ 64.762612][ T5089] Rebooting in 86400 seconds..