[ 18.672117] hub 1-0:1.0: activate --> -22 [ 18.694398] hub 1-0:1.0: activate --> -22 [ 18.717112] hub 1-0:1.0: activate --> -22 [ 18.739339] hub 1-0:1.0: activate --> -22 [ 18.761094] hub 1-0:1.0: activate --> -22 [ 18.783509] hub 1-0:1.0: activate --> -22 [ 18.806217] hub 1-0:1.0: activate --> -22 [ 18.828139] hub 1-0:1.0: activate --> -22 [ 18.851409] hub 1-0:1.0: activate --> -22 [ 18.879079] hub 1-0:1.0: activate --> -22 [ 18.902448] hub 1-0:1.0: activate --> -22 [ 18.925123] hub 1-0:1.0: activate --> -22 [ 18.947108] hub 1-0:1.0: activate --> -22 [ 18.974105] hub 1-0:1.0: activate --> -22 [ 18.996948] hub 1-0:1.0: activate --> -22 [ 19.021320] hub 1-0:1.0: activate --> -22 [ 19.045925] hub 1-0:1.0: activate --> -22 [ 19.073339] hub 1-0:1.0: activate --> -22 [ 19.096094] hub 1-0:1.0: activate --> -22 [ 19.118251] hub 1-0:1.0: activate --> -22 [ 19.141327] hub 1-0:1.0: activate --> -22 [ 19.167112] hub 1-0:1.0: activate --> -22 [ 19.189151] hub 1-0:1.0: activate --> -22 [ 19.212093] hub 1-0:1.0: activate --> -22 [ 19.235286] hub 1-0:1.0: activate --> -22 [ 19.257129] hub 1-0:1.0: activate --> -22 [ 19.280563] hub 1-0:1.0: activate --> -22 [ 19.303122] hub 1-0:1.0: activate --> -22 [ 19.328112] hub 1-0:1.0: activate --> -22 [ 19.350180] hub 1-0:1.0: activate --> -22 [ 19.374096] hub 1-0:1.0: activate --> -22 [ 19.396089] hub 1-0:1.0: activate --> -22 [ 19.422161] hub 1-0:1.0: activate --> -22 [ 19.449099] hub 1-0:1.0: activate --> -22 [ 19.472735] hub 1-0:1.0: activate --> -22 [ 19.495156] hub 1-0:1.0: activate --> -22 [ 19.517246] hub 1-0:1.0: activate --> -22 Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 19.540572] hub 1-0:1.0: activate --> -22 [ 19.564523] hub 1-0:1.0: activate --> -22 [ 19.588154] hub 1-0:1.0: activate --> -22 [ 19.610377] hub 1-0:1.0: activate --> -22 [ 19.633883] hub 1-0:1.0: activate --> -22 [ 19.658094] hub 1-0:1.0: activate --> -22 [ 19.680115] hub 1-0:1.0: activate --> -22 [ 19.703099] hub 1-0:1.0: activate --> -22 [ 19.726228] hub 1-0:1.0: activate --> -22 [ 19.749098] hub 1-0:1.0: activate --> -22 [ 19.771070] hub 1-0:1.0: activate --> -22 [ 19.793089] hub 1-0:1.0: activate --> -22 [ 19.815136] hub 1-0:1.0: activate --> -22 [ 19.837083] hub 1-0:1.0: activate --> -22 [ 19.859595] hub 1-0:1.0: activate --> -22 [ 19.882104] hub 1-0:1.0: activate --> -22 [ 19.904104] hub 1-0:1.0: activate --> -22 [ 19.926085] hub 1-0:1.0: activate --> -22 [ 19.948076] hub 1-0:1.0: activate --> -22 [ 19.970104] hub 1-0:1.0: activate --> -22 [ 19.992092] hub 1-0:1.0: activate --> -22 [ 20.014151] hub 1-0:1.0: activate --> -22 [ 20.036082] hub 1-0:1.0: activate --> -22 [ 20.059620] hub 1-0:1.0: activate --> -22 [ 20.081103] hub 1-0:1.0: activate --> -22 [ 20.103156] hub 1-0:1.0: activate --> -22 [ 20.125106] hub 1-0:1.0: activate --> -22 [ 20.149542] hub 1-0:1.0: activate --> -22 [ 20.172344] hub 1-0:1.0: activate --> -22 [ 20.195081] hub 1-0:1.0: activate --> -22 [ 20.217090] hub 1-0:1.0: activate --> -22 [ 20.239122] hub 1-0:1.0: activate --> -22 [ 20.261120] hub 1-0:1.0: activate --> -22 [ 20.283181] hub 1-0:1.0: activate --> -22 [ 20.305098] hub 1-0:1.0: activate --> -22 [ 20.327098] hub 1-0:1.0: activate --> -22 [ 20.350073] hub 1-0:1.0: activate --> -22 [ 20.372170] hub 1-0:1.0: activate --> -22 [ 20.395237] hub 1-0:1.0: activate --> -22 [ 20.419097] hub 1-0:1.0: activate --> -22 [ 20.441510] hub 1-0:1.0: activate --> -22 [ 20.465106] hub 1-0:1.0: activate --> -22 [ 20.487095] hub 1-0:1.0: activate --> -22 [ 20.509086] hub 1-0:1.0: activate --> -22 [ 20.531088] hub 1-0:1.0: activate --> -22 [ 20.553080] hub 1-0:1.0: activate --> -22 [ 20.575084] hub 1-0:1.0: activate --> -22 [ 20.597112] hub 1-0:1.0: activate --> -22 [ 20.619098] hub 1-0:1.0: activate --> -22 [ 20.641096] hub 1-0:1.0: activate --> -22 [ 20.663109] hub 1-0:1.0: activate --> -22 [ 20.687493] hub 1-0:1.0: activate --> -22 [ 20.714063] hub 1-0:1.0: activate --> -22 [ 20.736136] hub 1-0:1.0: activate --> -22 [ 20.759477] hub 1-0:1.0: activate --> -22 [ 20.782110] hub 1-0:1.0: activate --> -22 [ 20.805115] hub 1-0:1.0: activate --> -22 [ 20.827111] hub 1-0:1.0: activate --> -22 [ 20.849117] hub 1-0:1.0: activate --> -22 [ 20.871104] hub 1-0:1.0: activate --> -22 [ 20.893113] hub 1-0:1.0: activate --> -22 [ 20.918104] hub 1-0:1.0: activate --> -22 2017/11/09 07:19:04 parsed 1 programs 2017/11/09 07:19:04 executed programs: 0 [ 20.937497] FAULT_INJECTION: forcing a failure. [ 20.937497] name failslab, interval 1, probability 0, space 0, times 1 [ 20.939042] CPU: 3 PID: 2989 Comm: syz-executor0 Not tainted 4.14.0-rc8-next-20171109+ #11 [ 20.940238] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS Bochs 01/01/2011 [ 20.940994] hub 1-0:1.0: activate --> -22 [ 20.942026] Call Trace: [ 20.942701] dump_stack+0x194/0x257 [ 20.943204] ? arch_local_irq_restore+0x53/0x53 [ 20.943789] ? rcutorture_record_progress+0x10/0x10 [ 20.944391] should_fail+0x8c0/0xa40 [ 20.944828] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 20.945423] ? unwind_get_return_address+0x61/0xa0 [ 20.946131] ? find_held_lock+0x39/0x1d0 [ 20.946631] ? lock_downgrade+0x990/0x990 [ 20.947151] ? trace_event_raw_event_sched_switch+0x8a0/0x8a0 [ 20.947845] ? rcu_note_context_switch+0x710/0x710 [ 20.948443] should_failslab+0xec/0x120 [ 20.948914] kmem_cache_alloc_trace+0x4b/0x750 [ 20.949457] ? trace_event_raw_event_sched_switch+0x8a0/0x8a0 [ 20.951189] ? sget_userns+0x157/0xe20 [ 20.951663] ? rcu_pm_notify+0xc0/0xc0 [ 20.952142] selinux_sb_alloc_security+0x93/0x2e0 [ 20.952729] ? selinux_inode_alloc_security+0x390/0x390 [ 20.953378] ? rcu_read_lock_sched_held+0x108/0x120 [ 20.954195] ? kmem_cache_alloc_trace+0x459/0x750 [ 20.954787] security_sb_alloc+0x6d/0xa0 [ 20.955278] sget_userns+0x361/0xe20 [ 20.955712] ? set_anon_super+0x20/0x20 [ 20.956189] ? free_unref_page+0x9d0/0x9d0 [ 20.956688] ? put_filp+0x90/0x90 [ 20.957096] ? destroy_unused_super.part.7+0xd0/0xd0 [ 20.957693] ? alloc_pages_current+0xbe/0x1e0 [ 20.958292] ? free_pages+0x51/0x90 [ 20.958721] ? selinux_sb_copy_data+0x4a1/0x610 [ 20.959278] ? selinux_task_setrlimit+0x470/0x470 [ 20.959841] ? lockdep_init_map+0x3d/0x70 [ 20.960358] ? mqueue_get_inode+0xc60/0xc60 [ 20.960870] mount_ns+0x6d/0x190 [ 20.961276] mqueue_mount+0xbe/0xe0 [ 20.961712] mount_fs+0x66/0x2d0 [ 20.962216] vfs_kern_mount.part.26+0xc6/0x4a0 [ 20.962799] ? may_umount+0xa0/0xa0 [ 20.963655] ? compat_SyS_msgrcv+0x50/0x50 [ 20.964208] ? ida_remove+0x3e0/0x3e0 [ 20.964698] ? kmem_cache_alloc_trace+0x459/0x750 [ 20.965317] kern_mount_data+0x50/0xb0 [ 20.965802] mq_init_ns+0x167/0x220 [ 20.966113] hub 1-0:1.0: activate --> -22 [ 20.966897] copy_ipcs+0x3a4/0x520 [ 20.967424] ? ipcns_get+0xf0/0xf0 [ 20.967854] ? do_mount+0x2bb0/0x2bb0 [ 20.968323] create_new_namespaces+0x278/0x880 [ 20.968869] ? selinux_capable+0x36/0x40 [ 20.969370] ? sys_ni_syscall+0x20/0x20 [ 20.969854] ? ns_capable_common+0xcf/0x160 [ 20.970396] unshare_nsproxy_namespaces+0xae/0x1e0 [ 20.970985] SyS_unshare+0x653/0xfa0 [ 20.971423] ? kernel_read+0x120/0x120 [ 20.971887] ? walk_process_tree+0x400/0x400 [ 20.972433] ? __lock_is_held+0xbc/0x140 [ 20.972974] ? __sb_end_write+0x9e/0xd0 [ 20.973446] ? vfs_write+0x22a/0x510 [ 20.973893] ? SyS_write+0x184/0x220 [ 20.974469] ? entry_SYSCALL_64_fastpath+0x5/0x96 [ 20.975040] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 20.975635] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 20.976203] entry_SYSCALL_64_fastpath+0x1f/0x96 [ 20.976764] RIP: 0033:0x447c99 [ 20.977139] RSP: 002b:00007ffe3285ca68 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 20.978113] RAX: ffffffffffffffda RBX: 00000000016a490c RCX: 0000000000447c99 [ 20.978972] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000002c000200 [ 20.979825] RBP: 0000000000000082 R08: 0000000000000000 R09: 0000000000000000 [ 20.980673] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000004a971e [ 20.981523] R13: 0000000000000000 R14: 00007ffe3285c858 R15: 00007ffe3285c9c8 [ 20.982507] DEBUG_LOCKS_WARN_ON(depth <= 0) [ 20.982539] ------------[ cut here ]------------ [ 20.983596] WARNING: CPU: 3 PID: 2989 at kernel/locking/lockdep.c:3766 lock_release+0x5ec/0xd70 [ 20.984560] Kernel panic - not syncing: panic_on_warn set ... [ 20.984560] [ 20.985419] CPU: 3 PID: 2989 Comm: syz-executor0 Not tainted 4.14.0-rc8-next-20171109+ #11 [ 20.986495] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS Bochs 01/01/2011 [ 20.987446] Call Trace: [ 20.987761] dump_stack+0x194/0x257 [ 20.988195] ? arch_local_irq_restore+0x53/0x53 [ 20.988751] ? vsnprintf+0x1ed/0x1900 [ 20.989617] hub 1-0:1.0: activate --> -22 [ 20.990586] panic+0x1e4/0x41c [ 20.990979] ? refcount_error_report+0x214/0x214 [ 20.991607] ? show_regs_print_info+0x65/0x65 [ 20.992215] ? __warn+0x1a9/0x1e0 [ 20.992691] ? lock_release+0x5ec/0xd70 [ 20.993220] __warn+0x1c4/0x1e0 [ 20.993653] ? lock_release+0x5ec/0xd70 [ 20.994225] report_bug+0x211/0x2d0 [ 20.994705] fixup_bug+0x40/0x90 [ 20.995159] do_trap+0x260/0x390 [ 20.995584] do_error_trap+0x120/0x390 [ 20.996043] ? do_trap+0x390/0x390 [ 20.996455] ? lock_release+0x5ec/0xd70 [ 20.996916] ? vprintk_emit+0x3ea/0x590 [ 20.997374] ? unwind_get_return_address+0x61/0xa0 [ 20.997929] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 20.998597] do_invalid_op+0x1b/0x20 [ 20.999053] invalid_op+0x18/0x20 [ 20.999470] RIP: 0010:lock_release+0x5ec/0xd70 [ 21.000049] RSP: 0018:ffff88002cae74c0 EFLAGS: 00010086 [ 21.000742] RAX: 000000000000001f RBX: 1ffff1000595ce9d RCX: 0000000000000000 [ 21.001671] RDX: 000000000000001f RSI: 1ffff1000595ce58 RDI: ffffed000595ce8c [ 21.002622] RBP: ffff88002cae7670 R08: 0000000000000001 R09: 0000000000000000 [ 21.003511] R10: ffff88002ad14080 R11: fffffbfff0e81a5b R12: ffff88002cae7548 [ 21.004335] R13: ffff88002cae7648 R14: ffff880078668358 R15: ffffffff8744dce0 [ 21.005215] ? destroy_unused_super.part.7+0x18/0xd0 [ 21.005701] ? lock_downgrade+0x990/0x990 [ 21.006143] ? trace_event_raw_event_sched_switch+0x8a0/0x8a0 [ 21.006802] ? rcu_pm_notify+0xc0/0xc0 [ 21.007246] ? selinux_sb_alloc_security+0x93/0x2e0 [ 21.007809] ? rcu_read_lock_sched_held+0x108/0x120 [ 21.008422] ? kmem_cache_alloc_trace+0x459/0x750 [ 21.008958] ? trace_event_raw_event_sched_switch+0x8a0/0x8a0 [ 21.009606] ? sget_userns+0x157/0xe20 [ 21.010043] up_write+0x6b/0x120 [ 21.010418] ? up_read+0x40/0x40 [ 21.010797] ? kmem_cache_alloc_trace+0x459/0x750 [ 21.011076] hub 1-0:1.0: activate --> -22 [ 21.011843] destroy_unused_super.part.7+0x18/0xd0 [ 21.012391] sget_userns+0x905/0xe20 [ 21.012811] ? set_anon_super+0x20/0x20 [ 21.013165] ? free_unref_page+0x9d0/0x9d0 [ 21.013636] ? put_filp+0x90/0x90 [ 21.014063] ? destroy_unused_super.part.7+0xd0/0xd0 [ 21.014674] ? alloc_pages_current+0xbe/0x1e0 [ 21.015213] ? free_pages+0x51/0x90 [ 21.015645] ? selinux_sb_copy_data+0x4a1/0x610 [ 21.016203] ? selinux_task_setrlimit+0x470/0x470 [ 21.016742] ? lockdep_init_map+0x3d/0x70 [ 21.017153] ? mqueue_get_inode+0xc60/0xc60 [ 21.017574] mount_ns+0x6d/0x190 [ 21.017903] mqueue_mount+0xbe/0xe0 [ 21.018331] mount_fs+0x66/0x2d0 [ 21.018662] vfs_kern_mount.part.26+0xc6/0x4a0 [ 21.019130] ? may_umount+0xa0/0xa0 [ 21.019494] ? compat_SyS_msgrcv+0x50/0x50 [ 21.019916] ? ida_remove+0x3e0/0x3e0 [ 21.020297] ? kmem_cache_alloc_trace+0x459/0x750 [ 21.020783] kern_mount_data+0x50/0xb0 [ 21.021188] mq_init_ns+0x167/0x220 [ 21.021556] copy_ipcs+0x3a4/0x520 [ 21.021912] ? ipcns_get+0xf0/0xf0 [ 21.022274] ? do_mount+0x2bb0/0x2bb0 [ 21.022659] create_new_namespaces+0x278/0x880 [ 21.023119] ? selinux_capable+0x36/0x40 [ 21.023564] ? sys_ni_syscall+0x20/0x20 [ 21.023984] ? ns_capable_common+0xcf/0x160 [ 21.024514] unshare_nsproxy_namespaces+0xae/0x1e0 [ 21.025116] SyS_unshare+0x653/0xfa0 [ 21.025572] ? kernel_read+0x120/0x120 [ 21.026063] ? walk_process_tree+0x400/0x400 [ 21.026862] ? __lock_is_held+0xbc/0x140 [ 21.027328] ? __sb_end_write+0x9e/0xd0 [ 21.027813] ? vfs_write+0x22a/0x510 [ 21.028267] ? SyS_write+0x184/0x220 [ 21.028721] ? entry_SYSCALL_64_fastpath+0x5/0x96 [ 21.029316] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 21.029927] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 21.030525] entry_SYSCALL_64_fastpath+0x1f/0x96 [ 21.031102] RIP: 0033:0x447c99 [ 21.031487] RSP: 002b:00007ffe3285ca68 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 21.032419] RAX: ffffffffffffffda RBX: 00000000016a490c RCX: 0000000000447c99 [ 21.033079] hub 1-0:1.0: activate --> -22 [ 21.033872] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000002c000200 [ 21.034752] RBP: 0000000000000082 R08: 0000000000000000 R09: 0000000000000000 [ 21.035378] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000004a971e [ 21.036102] R13: 0000000000000000 R14: 00007ffe3285c858 R15: 00007ffe3285c9c8 [ 21.038008] Dumping ftrace buffer: [ 21.038446] (ftrace buffer empty) [ 21.038883] Kernel Offset: disabled [ 21.039317] Rebooting in 86400 seconds..