Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.51' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 32.473393] netlink: 'syz-executor214': attribute type 1 has an invalid length. [ 32.482418] sysfs: cannot create duplicate filename '/devices/virtual/bdi/43:0' [ 32.490873] CPU: 0 PID: 8077 Comm: syz-executor214 Not tainted 4.19.211-syzkaller #0 [ 32.498778] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 32.508124] Call Trace: [ 32.510712] dump_stack+0x1fc/0x2ef [ 32.514331] sysfs_warn_dup.cold+0x1c/0x29 [ 32.518552] sysfs_create_dir_ns+0x228/0x280 [ 32.522950] ? sysfs_create_mount_point+0xb0/0xb0 [ 32.527781] ? lock_acquire+0x170/0x3c0 [ 32.531766] ? kobject_add_internal+0x134/0x9c0 [ 32.536431] ? ___sys_sendmsg+0x7bb/0x8e0 [ 32.540563] ? class_dir_child_ns_type+0x9/0x60 [ 32.545218] kobject_add_internal+0x2a5/0x9c0 [ 32.549702] kobject_add+0x150/0x1c0 [ 32.553401] ? kset_create_and_add+0x1a0/0x1a0 [ 32.557971] ? device_add+0x2c7/0x16d0 [ 32.561865] device_add+0x37b/0x16d0 [ 32.565579] ? device_check_offline+0x280/0x280 [ 32.570237] ? kfree_const+0x51/0x60 [ 32.573943] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 32.578990] ? kfree+0x1e2/0x210 [ 32.582349] device_create_groups_vargs+0x1f4/0x270 [ 32.587354] device_create+0xdf/0x120 [ 32.591145] ? device_create_vargs+0x50/0x50 [ 32.595542] ? pointer+0x850/0x850 [ 32.599076] bdi_register_va.part.0+0x4c/0x750 [ 32.603649] bdi_register+0x12a/0x140 [ 32.607434] ? bdi_register_va+0x80/0x80 [ 32.611483] ? vsnprintf+0x2cc/0x14f0 [ 32.615285] bdi_register_owner+0x59/0x100 [ 32.619511] __device_add_disk+0xd58/0x10c0 [ 32.623826] ? sprintf+0xc0/0x100 [ 32.627276] ? blk_alloc_devt+0x2d0/0x2d0 [ 32.631419] ? __lockdep_init_map+0x100/0x5a0 [ 32.635903] ? __lockdep_init_map+0x100/0x5a0 [ 32.640388] nbd_dev_add+0x6a9/0x890 [ 32.644090] nbd_genl_connect+0x488/0x1630 [ 32.648317] ? nbd_xmit_timeout+0x730/0x730 [ 32.652625] ? validate_nla+0x1a1/0x820 [ 32.656593] ? __sanitizer_cov_trace_switch+0x4b/0x80 [ 32.661773] ? validate_nla+0x270/0x820 [ 32.665736] ? nla_parse+0x1b2/0x290 [ 32.669441] genl_family_rcv_msg+0x642/0xc40 [ 32.673842] ? genl_rcv+0x40/0x40 [ 32.677299] ? genl_rcv_msg+0x12f/0x160 [ 32.681256] ? mutex_trylock+0x1a0/0x1a0 [ 32.685304] ? __radix_tree_lookup+0x216/0x370 [ 32.689871] genl_rcv_msg+0xbf/0x160 [ 32.693573] netlink_rcv_skb+0x160/0x440 [ 32.697641] ? genl_family_rcv_msg+0xc40/0xc40 [ 32.702207] ? netlink_ack+0xae0/0xae0 [ 32.706078] ? genl_rcv+0x15/0x40 [ 32.709515] genl_rcv+0x24/0x40 [ 32.712778] netlink_unicast+0x4d5/0x690 [ 32.716821] ? netlink_sendskb+0x110/0x110 [ 32.721045] ? _copy_from_iter_full+0x229/0x7c0 [ 32.725695] ? __phys_addr_symbol+0x2c/0x70 [ 32.730002] ? __check_object_size+0x17b/0x3e0 [ 32.734568] netlink_sendmsg+0x6c3/0xc50 [ 32.738615] ? aa_af_perm+0x230/0x230 [ 32.742396] ? nlmsg_notify+0x1f0/0x1f0 [ 32.746353] ? kernel_recvmsg+0x220/0x220 [ 32.750500] ? nlmsg_notify+0x1f0/0x1f0 [ 32.754463] sock_sendmsg+0xc3/0x120 [ 32.758195] ___sys_sendmsg+0x7bb/0x8e0 [ 32.762183] ? copy_msghdr_from_user+0x440/0x440 [ 32.766925] ? netlink_dump+0xc10/0xc10 [ 32.770886] ? nlmsg_notify+0x1f0/0x1f0 [ 32.774856] ? security_socket_recvmsg+0x8f/0xc0 [ 32.779597] ? __sys_recvfrom+0x2cd/0x3a0 [ 32.783728] ? __ia32_sys_send+0x100/0x100 [ 32.787953] ? __fdget+0x1a0/0x230 [ 32.791479] __x64_sys_sendmsg+0x132/0x220 [ 32.795701] ? __sys_sendmsg+0x1b0/0x1b0 [ 32.799752] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 32.805099] ? trace_hardirqs_off_caller+0x6e/0x210 [ 32.810099] ? do_syscall_64+0x21/0x620 [ 32.814057] do_syscall_64+0xf9/0x620 [ 32.817851] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 32.823025] RIP: 0033:0x7f9ed7788bd9 [ 32.826722] Code: 28 c3 e8 5a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 32.845616] RSP: 002b:00007ffde9da0d88 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 32.853305] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f9ed7788bd9 [ 32.860570] RDX: 0000000000000000 RSI: 0000000020000240 RDI: 0000000000000004 [ 32.867847] RBP: 00007f9ed774c640 R08: 0000000000004001 R09: 0000000000000000 [ 32.875097] R10: 000000000000000c R11: 0000000000000246 R12: 00007f9ed774c6d0 [ 32.882350] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 32.898861] kobject_add_internal failed for 43:0 with -EEXIST, don't try to register things with the same name in the same directory. [ 32.911183] ------------[ cut here ]------------ [ 32.916145] WARNING: CPU: 1 PID: 8077 at block/genhd.c:719 __device_add_disk.cold+0x69/0x188 [ 32.924704] Kernel panic - not syncing: panic_on_warn set ... [ 32.924704] [ 32.932076] CPU: 1 PID: 8077 Comm: syz-executor214 Not tainted 4.19.211-syzkaller #0 [ 32.939934] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 32.949268] Call Trace: [ 32.951848] dump_stack+0x1fc/0x2ef [ 32.955461] panic+0x26a/0x50e [ 32.958639] ? __warn_printk+0xf3/0xf3 [ 32.962512] ? __device_add_disk.cold+0x69/0x188 [ 32.967251] ? __probe_kernel_read+0x130/0x1b0 [ 32.971819] ? __warn.cold+0x5/0x5a [ 32.975430] ? __warn+0xe4/0x200 [ 32.978777] ? __device_add_disk.cold+0x69/0x188 [ 32.983514] __warn.cold+0x20/0x5a [ 32.987036] ? __device_add_disk.cold+0x69/0x188 [ 32.991773] report_bug+0x262/0x2b0 [ 32.995384] do_error_trap+0x1d7/0x310 [ 32.999254] ? math_error+0x310/0x310 [ 33.003039] ? irq_work_claim+0xa6/0xc0 [ 33.007002] ? irq_work_queue+0x29/0x80 [ 33.010959] ? error_entry+0x72/0xd0 [ 33.014674] ? trace_hardirqs_off_caller+0x6e/0x210 [ 33.019677] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 33.024506] invalid_op+0x14/0x20 [ 33.027954] RIP: 0010:__device_add_disk.cold+0x69/0x188 [ 33.033299] Code: 02 84 c0 74 08 3c 03 0f 8e a8 00 00 00 44 8b a5 f0 05 00 00 e9 67 ad 6a fb e8 05 45 66 f9 48 c7 c7 60 75 b2 88 e8 64 76 f7 ff <0f> 0b e9 8f b9 6a fb e8 ed 44 66 f9 48 c7 c7 60 75 b2 88 e8 4c 76 [ 33.052179] RSP: 0018:ffff88808ce0f488 EFLAGS: 00010282 [ 33.057548] RAX: 0000000000000024 RBX: 0000000000000001 RCX: 0000000000000000 [ 33.064797] RDX: 0000000000000000 RSI: ffffffff814dff01 RDI: ffffed10119c1e83 [ 33.072047] RBP: ffff8880b24b1240 R08: 0000000000000024 R09: 0000000000000000 [ 33.079298] R10: 0000000000000005 R11: 0000000000000000 R12: ffff8880b24b12d0 [ 33.086559] R13: ffff8880b24b18d0 R14: 00000000ffffffef R15: ffff8880b24b1244 [ 33.093827] ? vprintk_func+0x81/0x180 [ 33.097733] ? __device_add_disk.cold+0x69/0x188 [ 33.102476] ? sprintf+0xc0/0x100 [ 33.105916] ? blk_alloc_devt+0x2d0/0x2d0 [ 33.110054] ? __lockdep_init_map+0x100/0x5a0 [ 33.114551] ? __lockdep_init_map+0x100/0x5a0 [ 33.119035] nbd_dev_add+0x6a9/0x890 [ 33.122739] nbd_genl_connect+0x488/0x1630 [ 33.126983] ? nbd_xmit_timeout+0x730/0x730 [ 33.131291] ? validate_nla+0x1a1/0x820 [ 33.135269] ? __sanitizer_cov_trace_switch+0x4b/0x80 [ 33.140444] ? validate_nla+0x270/0x820 [ 33.144406] ? nla_parse+0x1b2/0x290 [ 33.148105] genl_family_rcv_msg+0x642/0xc40 [ 33.152498] ? genl_rcv+0x40/0x40 [ 33.155933] ? genl_rcv_msg+0x12f/0x160 [ 33.159891] ? mutex_trylock+0x1a0/0x1a0 [ 33.163973] ? __radix_tree_lookup+0x216/0x370 [ 33.168547] genl_rcv_msg+0xbf/0x160 [ 33.172253] netlink_rcv_skb+0x160/0x440 [ 33.176315] ? genl_family_rcv_msg+0xc40/0xc40 [ 33.180879] ? netlink_ack+0xae0/0xae0 [ 33.184750] ? genl_rcv+0x15/0x40 [ 33.188187] genl_rcv+0x24/0x40 [ 33.191452] netlink_unicast+0x4d5/0x690 [ 33.195495] ? netlink_sendskb+0x110/0x110 [ 33.199710] ? _copy_from_iter_full+0x229/0x7c0 [ 33.204361] ? __phys_addr_symbol+0x2c/0x70 [ 33.208667] ? __check_object_size+0x17b/0x3e0 [ 33.213235] netlink_sendmsg+0x6c3/0xc50 [ 33.217284] ? aa_af_perm+0x230/0x230 [ 33.221067] ? nlmsg_notify+0x1f0/0x1f0 [ 33.225024] ? kernel_recvmsg+0x220/0x220 [ 33.229159] ? nlmsg_notify+0x1f0/0x1f0 [ 33.233116] sock_sendmsg+0xc3/0x120 [ 33.236811] ___sys_sendmsg+0x7bb/0x8e0 [ 33.240769] ? copy_msghdr_from_user+0x440/0x440 [ 33.245507] ? netlink_dump+0xc10/0xc10 [ 33.249463] ? nlmsg_notify+0x1f0/0x1f0 [ 33.253426] ? security_socket_recvmsg+0x8f/0xc0 [ 33.258162] ? __sys_recvfrom+0x2cd/0x3a0 [ 33.262297] ? __ia32_sys_send+0x100/0x100 [ 33.266519] ? __fdget+0x1a0/0x230 [ 33.270045] __x64_sys_sendmsg+0x132/0x220 [ 33.274300] ? __sys_sendmsg+0x1b0/0x1b0 [ 33.278354] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 33.283706] ? trace_hardirqs_off_caller+0x6e/0x210 [ 33.288710] ? do_syscall_64+0x21/0x620 [ 33.292675] do_syscall_64+0xf9/0x620 [ 33.296465] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 33.301648] RIP: 0033:0x7f9ed7788bd9 [ 33.305349] Code: 28 c3 e8 5a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 33.324235] RSP: 002b:00007ffde9da0d88 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 33.332028] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f9ed7788bd9 [ 33.339280] RDX: 0000000000000000 RSI: 0000000020000240 RDI: 0000000000000004 [ 33.346533] RBP: 00007f9ed774c640 R08: 0000000000004001 R09: 0000000000000000 [ 33.353804] R10: 000000000000000c R11: 0000000000000246 R12: 00007f9ed774c6d0 [ 33.361056] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 33.368687] Kernel Offset: disabled [ 33.372351] Rebooting in 86400 seconds..