./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor443042954 <...> DUID 00:04:11:8f:03:6f:2d:f9:09:85:36:f8:30:a5:df:54:60:b4 forked to background, child pid 192 Starting sshd: OK syzkaller syzkaller login: [ 13.902816][ T22] kauditd_printk_skb: 60 callbacks suppressed [ 13.902824][ T22] audit: type=1400 audit(1671751774.589:71): avc: denied { transition } for pid=265 comm="sshd" path="/bin/sh" dev="sda1" ino=73 scontext=system_u:system_r:initrc_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 13.907937][ T22] audit: type=1400 audit(1671751774.599:72): avc: denied { write } for pid=265 comm="sh" path="pipe:[10541]" dev="pipefs" ino=10541 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:initrc_t tclass=fifo_file permissive=1 Warning: Permanently added '10.128.1.44' (ECDSA) to the list of known hosts. execve("./syz-executor443042954", ["./syz-executor443042954"], 0x7ffc60c6e120 /* 10 vars */) = 0 brk(NULL) = 0x55555750f000 brk(0x55555750fc40) = 0x55555750fc40 arch_prctl(ARCH_SET_FS, 0x55555750f300) = 0 uname({sysname="Linux", nodename="syzkaller", ...}) = 0 readlink("/proc/self/exe", "/root/syz-executor443042954", 4096) = 27 brk(0x555557530c40) = 0x555557530c40 brk(0x555557531000) = 0x555557531000 mprotect(0x7f57c5fe9000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 openat(AT_FDCWD, "/sys/kernel/debug/failslab/ignore-gfp-wait", O_WRONLY|O_CLOEXEC) = 3 write(3, "N", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/sys/kernel/debug/fail_futex/ignore-private", O_WRONLY|O_CLOEXEC) = 3 write(3, "N", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/ignore-gfp-highmem", O_WRONLY|O_CLOEXEC) = 3 write(3, "N", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/ignore-gfp-wait", O_WRONLY|O_CLOEXEC) = 3 write(3, "N", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/min-order", O_WRONLY|O_CLOEXEC) = 3 write(3, "0", 1) = 1 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555750f5d0) = 305 ./strace-static-x86_64: Process 305 attached [pid 305] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 305] setpgid(0, 0) = 0 [pid 305] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 305] write(3, "1000", 4) = 4 [pid 305] close(3) = 0 [pid 305] openat(AT_FDCWD, "/dev/loop-control", O_RDONLY) = 3 [ 21.501436][ T22] audit: type=1400 audit(1671751782.189:73): avc: denied { execmem } for pid=304 comm="syz-executor443" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 21.520868][ T22] audit: type=1400 audit(1671751782.199:74): avc: denied { read } for pid=305 comm="syz-executor443" name="loop-control" dev="devtmpfs" ino=1151 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1 [pid 305] ioctl(3, LOOP_CTL_REMOVE, 0) = 0 [pid 305] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 4 [pid 305] write(4, "81", 2) = 2 [ 21.545500][ T22] audit: type=1400 audit(1671751782.199:75): avc: denied { open } for pid=305 comm="syz-executor443" path="/dev/loop-control" dev="devtmpfs" ino=1151 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1 [ 21.570534][ T22] audit: type=1400 audit(1671751782.199:76): avc: denied { ioctl } for pid=305 comm="syz-executor443" path="/dev/loop-control" dev="devtmpfs" ino=1151 ioctlcmd=0x4c81 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1 [ 21.608939][ T305] FAULT_INJECTION: forcing a failure. [ 21.608939][ T305] name failslab, interval 1, probability 0, space 0, times 1 [ 21.622603][ T305] CPU: 1 PID: 305 Comm: syz-executor443 Not tainted 5.4.219-syzkaller-00012-ga8aad8851131 #0 [ 21.632824][ T305] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 21.642844][ T305] Call Trace: [ 21.646113][ T305] dump_stack+0x1d8/0x241 [ 21.650407][ T305] ? panic+0x73e/0x73e [ 21.654440][ T305] ? nf_ct_l4proto_log_invalid+0x26c/0x26c [ 21.660211][ T305] ? __kasan_kmalloc+0x1a5/0x1e0 [ 21.665116][ T305] ? loop_add+0x554/0x710 [ 21.669411][ T305] ? __kasan_kmalloc+0x131/0x1e0 [ 21.674312][ T305] ? kobj_map+0x74/0x650 [ 21.678522][ T305] ? __device_add_disk+0x63e/0x1200 [ 21.683682][ T305] should_fail+0x709/0x870 [ 21.688062][ T305] ? setup_fault_attr+0x3d0/0x3d0 [ 21.693058][ T305] ? kobject_set_name_vargs+0x5d/0x110 [ 21.698483][ T305] should_failslab+0x5/0x20 [ 21.702955][ T305] __kmalloc_track_caller+0x4f/0x280 [ 21.708204][ T305] kstrdup_const+0x51/0x90 [ 21.712584][ T305] kobject_set_name_vargs+0x5d/0x110 [ 21.717835][ T305] dev_set_name+0xd1/0x120 [ 21.722236][ T305] ? get_device+0x30/0x30 [ 21.726528][ T305] ? kobj_map+0x61f/0x650 [ 21.730823][ T305] __device_add_disk+0x6c3/0x1200 [ 21.735835][ T305] ? device_add_disk+0x30/0x30 [ 21.740571][ T305] ? device_initialize+0x1c7/0x3d0 [ 21.745644][ T305] ? __alloc_disk_node+0x326/0x380 [ 21.750722][ T305] loop_add+0x554/0x710 [ 21.754841][ T305] loop_control_ioctl+0x564/0x740 [ 21.759831][ T305] ? loop_remove+0xa0/0xa0 [ 21.764214][ T305] ? cgroup_leave_frozen+0x13b/0x290 [ 21.769463][ T305] ? loop_remove+0xa0/0xa0 [ 21.773851][ T305] do_vfs_ioctl+0x744/0x1730 [ 21.778418][ T305] ? selinux_file_ioctl+0x723/0x970 [ 21.783581][ T305] ? ioctl_preallocate+0x250/0x250 [ 21.788656][ T305] ? check_preemption_disabled+0x154/0x330 [ 21.794425][ T305] ? syscall_trace_enter+0x652/0x940 [ 21.799673][ T305] ? do_syscall_64+0x1c0/0x1c0 [ 21.804401][ T305] ? __fpregs_load_activate+0x1d7/0x3c0 [ 21.809911][ T305] ? security_file_ioctl+0x9d/0xb0 [ 21.814986][ T305] __x64_sys_ioctl+0xd4/0x110 [ 21.819639][ T305] do_syscall_64+0xcb/0x1c0 [ 21.824110][ T305] entry_SYSCALL_64_after_hwframe+0x5c/0xc1 [ 21.830598][ T305] kobject_add_internal failed for queue (error: -2 parent: (null)) [ 21.839202][ T305] ------------[ cut here ]------------ [ 21.844655][ T305] WARNING: CPU: 0 PID: 305 at fs/sysfs/file.c:328 sysfs_create_files+0x215/0x4a0 [ 21.853727][ T305] Modules linked in: [ 21.857596][ T305] CPU: 0 PID: 305 Comm: syz-executor443 Not tainted 5.4.219-syzkaller-00012-ga8aad8851131 #0 [ 21.867705][ T305] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 21.877736][ T305] RIP: 0010:sysfs_create_files+0x215/0x4a0 [ 21.883529][ T305] Code: 24 04 48 b9 00 00 00 00 00 fc ff df 48 8b 54 24 08 4c 8b 74 24 20 eb 2b 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 e8 8b 1c ab ff <0f> 0b c7 44 24 04 ea ff ff ff 48 b9 00 00 00 00 00 fc ff df 48 8b [ 21.903186][ T305] RSP: 0018:ffff8881e086f920 EFLAGS: 00010293 [ 21.909242][ T305] RAX: ffffffff81ba2f11 RBX: ffff8881dd5400a0 RCX: ffff8881ddbf0fc0 [ 21.917187][ T305] RDX: 0000000000000000 RSI: ffffffff85e45820 RDI: ffff8881dd540070 [ 21.925126][ T305] RBP: ffff8881e086f9f0 R08: ffffffff843e6101 R09: ffffed103ddb8796 [ 21.933066][ T305] R10: ffffed103ddb8796 R11: 1ffff1103ddb8795 R12: 0000000000000000 [ 21.941010][ T305] R13: ffffffff84fd70e0 R14: ffff8881dd540070 R15: ffffffff85e45820 [ 21.949054][ T305] FS: 000055555750f300(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 [ 21.957953][ T305] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 21.964505][ T305] CR2: 000055ae67f990d8 CR3: 00000001e0e3b000 CR4: 00000000003406f0 [ 21.972454][ T305] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 21.980394][ T305] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 21.988333][ T305] Call Trace: [ 21.991594][ T305] ? sysfs_create_file_ns+0x2a0/0x2a0 [ 21.996932][ T305] ? kobject_get+0xca/0x110 [ 22.001401][ T305] __device_add_disk+0x92b/0x1200 [ 22.006392][ T305] ? device_add_disk+0x30/0x30 [ 22.011120][ T305] ? device_initialize+0x1c7/0x3d0 [ 22.016195][ T305] ? __alloc_disk_node+0x326/0x380 [ 22.021271][ T305] loop_add+0x554/0x710 [ 22.025390][ T305] loop_control_ioctl+0x564/0x740 [ 22.030380][ T305] ? loop_remove+0xa0/0xa0 [ 22.034762][ T305] ? cgroup_leave_frozen+0x13b/0x290 [ 22.040018][ T305] ? loop_remove+0xa0/0xa0 [ 22.044399][ T305] do_vfs_ioctl+0x744/0x1730 [ 22.048955][ T305] ? selinux_file_ioctl+0x723/0x970 [ 22.054116][ T305] ? ioctl_preallocate+0x250/0x250 [ 22.059195][ T305] ? check_preemption_disabled+0x154/0x330 [ 22.064966][ T305] ? syscall_trace_enter+0x652/0x940 [ 22.070230][ T305] ? do_syscall_64+0x1c0/0x1c0 [ 22.074960][ T305] ? __fpregs_load_activate+0x1d7/0x3c0 [ 22.080472][ T305] ? security_file_ioctl+0x9d/0xb0 [ 22.085548][ T305] __x64_sys_ioctl+0xd4/0x110 [ 22.090191][ T305] do_syscall_64+0xcb/0x1c0 [ 22.094661][ T305] entry_SYSCALL_64_after_hwframe+0x5c/0xc1 [ 22.100519][ T305] ---[ end trace 0e0bec924c313cca ]--- [ 22.106057][ T305] ------------[ cut here ]------------ [ 22.111498][ T305] kernfs: can not remove 'events', no directory [ 22.117796][ T305] WARNING: CPU: 0 PID: 305 at fs/kernfs/dir.c:1511 kernfs_remove_by_name_ns+0x61/0x90 [ 22.127308][ T305] Modules linked in: [ 22.131176][ T305] CPU: 0 PID: 305 Comm: syz-executor443 Tainted: G W 5.4.219-syzkaller-00012-ga8aad8851131 #0 [ 22.142671][ T305] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 22.152723][ T305] RIP: 0010:kernfs_remove_by_name_ns+0x61/0x90 [ 22.158845][ T305] Code: 48 89 c3 e8 61 79 ab ff 48 89 df e8 e9 ee ff ff 31 db eb 29 e8 50 79 ab ff 48 c7 c7 80 0d e8 84 4c 89 fe 31 c0 e8 4f 52 82 ff <0f> 0b bb fe ff ff ff eb 16 e8 31 79 ab ff bb fe ff ff ff 48 c7 c7 [ 22.178525][ T305] RSP: 0018:ffff8881e086f900 EFLAGS: 00010246 [ 22.184565][ T305] RAX: fa37e2d74a353f00 RBX: 0000000000000000 RCX: ffff8881ddbf0fc0 [ 22.192504][ T305] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000 [ 22.200445][ T305] RBP: ffff8881e086f9f0 R08: ffffffff814e3a77 R09: 0000000000000003 [ 22.208388][ T305] R10: ffffed103c10de99 R11: 1ffff1103c10de98 R12: ffffffff85e45820 [ 22.216325][ T305] R13: 0000000000000000 R14: 0000000000000000 R15: ffffffff84fd71a0 [ 22.224265][ T305] FS: 000055555750f300(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 [ 22.233160][ T305] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 22.239709][ T305] CR2: 000055ae67f990d8 CR3: 00000001e0e3b000 CR4: 00000000003406f0 [ 22.247650][ T305] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 22.255591][ T305] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 22.263526][ T305] Call Trace: [ 22.266788][ T305] sysfs_create_files+0x40a/0x4a0 [ 22.271777][ T305] ? sysfs_create_file_ns+0x2a0/0x2a0 [ 22.277114][ T305] ? kobject_get+0xca/0x110 [ 22.281583][ T305] __device_add_disk+0x92b/0x1200 [ 22.286572][ T305] ? device_add_disk+0x30/0x30 [ 22.291302][ T305] ? device_initialize+0x1c7/0x3d0 [ 22.296380][ T305] ? __alloc_disk_node+0x326/0x380 [ 22.301464][ T305] loop_add+0x554/0x710 [ 22.305586][ T305] loop_control_ioctl+0x564/0x740 [ 22.310576][ T305] ? loop_remove+0xa0/0xa0 [ 22.314964][ T305] ? cgroup_leave_frozen+0x13b/0x290 [ 22.320220][ T305] ? loop_remove+0xa0/0xa0 [ 22.324603][ T305] do_vfs_ioctl+0x744/0x1730 [ 22.329162][ T305] ? selinux_file_ioctl+0x723/0x970 [ 22.334322][ T305] ? ioctl_preallocate+0x250/0x250 [ 22.339401][ T305] ? check_preemption_disabled+0x154/0x330 [ 22.345171][ T305] ? syscall_trace_enter+0x652/0x940 [ 22.350420][ T305] ? do_syscall_64+0x1c0/0x1c0 [ 22.355148][ T305] ? __fpregs_load_activate+0x1d7/0x3c0 [pid 305] ioctl(3, LOOP_CTL_ADD, 0) = 0 [pid 305] exit_group(0) = ? [pid 305] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=305, si_uid=0, si_status=0, si_utime=0, si_stime=6} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 308 attached , child_tidptr=0x55555750f5d0) = 308 [pid 308] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 308] setpgid(0, 0) = 0 [pid 308] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 308] write(3, "1000", 4) = 4 [pid 308] close(3) = 0 [pid 308] openat(AT_FDCWD, "/dev/loop-control", O_RDONLY) = 3 [ 22.360661][ T305] ? security_file_ioctl+0x9d/0xb0 [ 22.365740][ T305] __x64_sys_ioctl+0xd4/0x110 [ 22.370410][ T305] do_syscall_64+0xcb/0x1c0 [ 22.374882][ T305] entry_SYSCALL_64_after_hwframe+0x5c/0xc1 [ 22.380741][ T305] ---[ end trace 0e0bec924c313ccb ]--- [ 22.386201][ T305] loop0: failed to create sysfs files for events [ 22.399729][ T308] ------------[ cut here ]------------ [ 22.405221][ T308] kernfs: can not remove 'events', no directory [ 22.411560][ T308] WARNING: CPU: 0 PID: 308 at fs/kernfs/dir.c:1511 kernfs_remove_by_name_ns+0x61/0x90 [ 22.421068][ T308] Modules linked in: [ 22.424933][ T308] CPU: 0 PID: 308 Comm: syz-executor443 Tainted: G W 5.4.219-syzkaller-00012-ga8aad8851131 #0 [ 22.436436][ T308] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 22.446468][ T308] RIP: 0010:kernfs_remove_by_name_ns+0x61/0x90 [ 22.452591][ T308] Code: 48 89 c3 e8 61 79 ab ff 48 89 df e8 e9 ee ff ff 31 db eb 29 e8 50 79 ab ff 48 c7 c7 80 0d e8 84 4c 89 fe 31 c0 e8 4f 52 82 ff <0f> 0b bb fe ff ff ff eb 16 e8 31 79 ab ff bb fe ff ff ff 48 c7 c7 [ 22.472165][ T308] RSP: 0018:ffff8881e086fa20 EFLAGS: 00010246 [ 22.478197][ T308] RAX: 33a6acc229e02700 RBX: 0000000000000000 RCX: ffff8881dd835e80 [ 22.486142][ T308] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000 [ 22.494091][ T308] RBP: ffffffff85e45820 R08: ffffffff814e3a77 R09: 0000000000000003 [ 22.502039][ T308] R10: ffffed103c10debd R11: 1ffff1103c10debc R12: 0000000000000000 [ 22.509984][ T308] R13: dffffc0000000000 R14: 0000000000000000 R15: ffffffff84fd71a0 [ 22.517925][ T308] FS: 000055555750f300(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 [ 22.526824][ T308] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 22.533381][ T308] CR2: 00007f57c5fed130 CR3: 00000001de2a9000 CR4: 00000000003406f0 [ 22.541325][ T308] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 22.549267][ T308] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 22.557207][ T308] Call Trace: [ 22.560472][ T308] sysfs_remove_files+0x99/0xf0 [ 22.565291][ T308] del_gendisk+0x26e/0xbf0 [ 22.569680][ T308] ? device_add_disk_no_queue_reg+0x20/0x20 [ 22.575540][ T308] loop_remove+0x42/0xa0 [ 22.579751][ T308] loop_control_ioctl+0x67f/0x740 [ 22.584741][ T308] ? loop_remove+0xa0/0xa0 [ 22.589122][ T308] ? do_wp_page+0x535/0x8b0 [ 22.593589][ T308] ? cgroup_leave_frozen+0x13b/0x290 [ 22.598841][ T308] ? loop_remove+0xa0/0xa0 [ 22.603231][ T308] do_vfs_ioctl+0x744/0x1730 [ 22.607791][ T308] ? selinux_file_ioctl+0x723/0x970 [ 22.612957][ T308] ? ioctl_preallocate+0x250/0x250 [ 22.618122][ T308] ? syscall_trace_enter+0x652/0x940 [ 22.623375][ T308] ? do_syscall_64+0x1c0/0x1c0 [ 22.628109][ T308] ? debug_smp_processor_id+0x20/0x20 [ 22.633448][ T308] ? security_file_ioctl+0x9d/0xb0 [ 22.638526][ T308] __x64_sys_ioctl+0xd4/0x110 [ 22.643195][ T308] do_syscall_64+0xcb/0x1c0 [ 22.647674][ T308] entry_SYSCALL_64_after_hwframe+0x5c/0xc1 [ 22.653531][ T308] ---[ end trace 0e0bec924c313ccc ]--- [ 22.659047][ T308] ------------[ cut here ]------------ [ 22.664497][ T308] kernfs: can not remove 'events_async', no directory [ 22.671394][ T308] WARNING: CPU: 0 PID: 308 at fs/kernfs/dir.c:1511 kernfs_remove_by_name_ns+0x61/0x90 [ 22.680914][ T308] Modules linked in: [ 22.684793][ T308] CPU: 0 PID: 308 Comm: syz-executor443 Tainted: G W 5.4.219-syzkaller-00012-ga8aad8851131 #0 [ 22.696296][ T308] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 22.706327][ T308] RIP: 0010:kernfs_remove_by_name_ns+0x61/0x90 [ 22.712447][ T308] Code: 48 89 c3 e8 61 79 ab ff 48 89 df e8 e9 ee ff ff 31 db eb 29 e8 50 79 ab ff 48 c7 c7 80 0d e8 84 4c 89 fe 31 c0 e8 4f 52 82 ff <0f> 0b bb fe ff ff ff eb 16 e8 31 79 ab ff bb fe ff ff ff 48 c7 c7 [ 22.732023][ T308] RSP: 0018:ffff8881e086fa20 EFLAGS: 00010246 [ 22.738057][ T308] RAX: 33a6acc229e02700 RBX: 0000000000000000 RCX: ffff8881dd835e80 [ 22.745996][ T308] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000 [ 22.753941][ T308] RBP: ffffffff85e45820 R08: ffffffff814e3a77 R09: 0000000000000003 [ 22.761891][ T308] R10: ffffed103c10debd R11: 1ffff1103c10debc R12: 0000000000000000 [ 22.769832][ T308] R13: dffffc0000000000 R14: 0000000000000000 R15: ffffffff84fd7240 [ 22.777782][ T308] FS: 000055555750f300(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 [ 22.786688][ T308] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 22.793243][ T308] CR2: 00007f57c5fed130 CR3: 00000001de2a9000 CR4: 00000000003406f0 [ 22.801189][ T308] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 22.809218][ T308] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 22.817157][ T308] Call Trace: [ 22.820420][ T308] sysfs_remove_files+0x99/0xf0 [ 22.825240][ T308] del_gendisk+0x26e/0xbf0 [ 22.829631][ T308] ? device_add_disk_no_queue_reg+0x20/0x20 [ 22.835518][ T308] loop_remove+0x42/0xa0 [ 22.839739][ T308] loop_control_ioctl+0x67f/0x740 [ 22.844731][ T308] ? loop_remove+0xa0/0xa0 [ 22.849117][ T308] ? do_wp_page+0x535/0x8b0 [ 22.853590][ T308] ? cgroup_leave_frozen+0x13b/0x290 [ 22.858846][ T308] ? loop_remove+0xa0/0xa0 [ 22.863231][ T308] do_vfs_ioctl+0x744/0x1730 [ 22.867795][ T308] ? selinux_file_ioctl+0x723/0x970 [ 22.872959][ T308] ? ioctl_preallocate+0x250/0x250 [ 22.878045][ T308] ? syscall_trace_enter+0x652/0x940 [ 22.883306][ T308] ? do_syscall_64+0x1c0/0x1c0 [ 22.888037][ T308] ? debug_smp_processor_id+0x20/0x20 [ 22.893379][ T308] ? security_file_ioctl+0x9d/0xb0 [ 22.898479][ T308] __x64_sys_ioctl+0xd4/0x110 [ 22.903125][ T308] do_syscall_64+0xcb/0x1c0 [ 22.907599][ T308] entry_SYSCALL_64_after_hwframe+0x5c/0xc1 [ 22.913463][ T308] ---[ end trace 0e0bec924c313ccd ]--- [ 22.918931][ T308] ------------[ cut here ]------------ [ 22.924365][ T308] kernfs: can not remove 'events_poll_msecs', no directory [ 22.931643][ T308] WARNING: CPU: 0 PID: 308 at fs/kernfs/dir.c:1511 kernfs_remove_by_name_ns+0x61/0x90 [ 22.941241][ T308] Modules linked in: [ 22.945107][ T308] CPU: 0 PID: 308 Comm: syz-executor443 Tainted: G W 5.4.219-syzkaller-00012-ga8aad8851131 #0 [ 22.956609][ T308] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 22.966643][ T308] RIP: 0010:kernfs_remove_by_name_ns+0x61/0x90 [ 22.972770][ T308] Code: 48 89 c3 e8 61 79 ab ff 48 89 df e8 e9 ee ff ff 31 db eb 29 e8 50 79 ab ff 48 c7 c7 80 0d e8 84 4c 89 fe 31 c0 e8 4f 52 82 ff <0f> 0b bb fe ff ff ff eb 16 e8 31 79 ab ff bb fe ff ff ff 48 c7 c7 [ 22.992434][ T308] RSP: 0018:ffff8881e086fa20 EFLAGS: 00010246 [ 22.998469][ T308] RAX: 33a6acc229e02700 RBX: 0000000000000000 RCX: ffff8881dd835e80 [ 23.006408][ T308] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000 [ 23.014351][ T308] RBP: ffffffff85e45820 R08: ffffffff814e3a77 R09: 0000000000000003 [ 23.022291][ T308] R10: ffffed103c10dea9 R11: 1ffff1103c10dea8 R12: 0000000000000000 [ 23.030238][ T308] R13: dffffc0000000000 R14: 0000000000000000 R15: ffffffff84fd7260 [ 23.038188][ T308] FS: 000055555750f300(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 [ 23.047083][ T308] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 23.053638][ T308] CR2: 00007f57c5fed130 CR3: 00000001de2a9000 CR4: 00000000003406f0 [ 23.061586][ T308] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 23.069532][ T308] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 23.077472][ T308] Call Trace: [ 23.080732][ T308] sysfs_remove_files+0x99/0xf0 [ 23.085557][ T308] del_gendisk+0x26e/0xbf0 [ 23.089942][ T308] ? device_add_disk_no_queue_reg+0x20/0x20 [ 23.095804][ T308] loop_remove+0x42/0xa0 [ 23.100018][ T308] loop_control_ioctl+0x67f/0x740 [ 23.105013][ T308] ? loop_remove+0xa0/0xa0 [ 23.109398][ T308] ? do_wp_page+0x535/0x8b0 [ 23.113868][ T308] ? cgroup_leave_frozen+0x13b/0x290 [ 23.119122][ T308] ? loop_remove+0xa0/0xa0 [ 23.123506][ T308] do_vfs_ioctl+0x744/0x1730 [ 23.128063][ T308] ? selinux_file_ioctl+0x723/0x970 [ 23.133226][ T308] ? ioctl_preallocate+0x250/0x250 [ 23.138305][ T308] ? syscall_trace_enter+0x652/0x940 [ 23.143558][ T308] ? do_syscall_64+0x1c0/0x1c0 [ 23.148304][ T308] ? debug_smp_processor_id+0x20/0x20 [ 23.153642][ T308] ? security_file_ioctl+0x9d/0xb0 [ 23.158726][ T308] __x64_sys_ioctl+0xd4/0x110 [ 23.163399][ T308] do_syscall_64+0xcb/0x1c0 [ 23.167878][ T308] entry_SYSCALL_64_after_hwframe+0x5c/0xc1 [ 23.173737][ T308] ---[ end trace 0e0bec924c313cce ]--- [ 23.179243][ T308] ------------[ cut here ]------------ [ 23.184685][ T308] kernfs: can not remove 'bdi', no directory [ 23.190744][ T308] WARNING: CPU: 0 PID: 308 at fs/kernfs/dir.c:1511 kernfs_remove_by_name_ns+0x61/0x90 [ 23.200281][ T308] Modules linked in: [ 23.204149][ T308] CPU: 0 PID: 308 Comm: syz-executor443 Tainted: G W 5.4.219-syzkaller-00012-ga8aad8851131 #0 [ 23.215653][ T308] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 23.225952][ T308] RIP: 0010:kernfs_remove_by_name_ns+0x61/0x90 [ 23.232078][ T308] Code: 48 89 c3 e8 61 79 ab ff 48 89 df e8 e9 ee ff ff 31 db eb 29 e8 50 79 ab ff 48 c7 c7 80 0d e8 84 4c 89 fe 31 c0 e8 4f 52 82 ff <0f> 0b bb fe ff ff ff eb 16 e8 31 79 ab ff bb fe ff ff ff 48 c7 c7 [ 23.251654][ T308] RSP: 0018:ffff8881e086fa60 EFLAGS: 00010246 [ 23.257738][ T308] RAX: 33a6acc229e02700 RBX: 0000000000000000 RCX: ffff8881dd835e80 [ 23.265682][ T308] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000 [ 23.273628][ T308] RBP: ffff8881e086fb68 R08: ffffffff814e3a77 R09: 0000000000000003 [ 23.281568][ T308] R10: ffffed103c10dec5 R11: 1ffff1103c10dec4 R12: ffff8881dd540000 [ 23.289510][ T308] R13: ffff8881dd5404e8 R14: 0000000000000000 R15: ffffffff84fd6d00 [ 23.297460][ T308] FS: 000055555750f300(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 [ 23.306358][ T308] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 23.312908][ T308] CR2: 00007f57c5fed130 CR3: 00000001de2a9000 CR4: 00000000003406f0 [ 23.320853][ T308] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 23.328793][ T308] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 23.336732][ T308] Call Trace: [ 23.340000][ T308] del_gendisk+0x593/0xbf0 [ 23.344393][ T308] ? device_add_disk_no_queue_reg+0x20/0x20 [ 23.350264][ T308] loop_remove+0x42/0xa0 [ 23.354476][ T308] loop_control_ioctl+0x67f/0x740 [ 23.359472][ T308] ? loop_remove+0xa0/0xa0 [ 23.363867][ T308] ? do_wp_page+0x535/0x8b0 [ 23.368337][ T308] ? cgroup_leave_frozen+0x13b/0x290 [ 23.373588][ T308] ? loop_remove+0xa0/0xa0 [ 23.377988][ T308] do_vfs_ioctl+0x744/0x1730 [ 23.382560][ T308] ? selinux_file_ioctl+0x723/0x970 [ 23.387732][ T308] ? ioctl_preallocate+0x250/0x250 [ 23.392810][ T308] ? syscall_trace_enter+0x652/0x940 [ 23.398061][ T308] ? do_syscall_64+0x1c0/0x1c0 [ 23.402794][ T308] ? debug_smp_processor_id+0x20/0x20 [ 23.408138][ T308] ? security_file_ioctl+0x9d/0xb0 [ 23.413217][ T308] __x64_sys_ioctl+0xd4/0x110 [ 23.417871][ T308] do_syscall_64+0xcb/0x1c0 [ 23.422344][ T308] entry_SYSCALL_64_after_hwframe+0x5c/0xc1 [ 23.428201][ T308] ---[ end trace 0e0bec924c313ccf ]--- [ 23.434969][ T308] kasan: CONFIG_KASAN_INLINE enabled [ 23.440252][ T308] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 23.448320][ T308] general protection fault: 0000 [#1] PREEMPT SMP KASAN [ 23.455232][ T308] CPU: 0 PID: 308 Comm: syz-executor443 Tainted: G W 5.4.219-syzkaller-00012-ga8aad8851131 #0 [ 23.466729][ T308] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 23.476763][ T308] RIP: 0010:strlen+0x2a/0x60 [ 23.481321][ T308] Code: 41 57 41 56 41 54 53 49 89 fe 48 c7 c0 ff ff ff ff 49 bf 00 00 00 00 00 fc ff df 48 89 fb 66 90 49 89 c4 48 89 d8 48 c1 e8 03 <42> 0f b6 04 38 84 c0 75 12 48 ff c3 49 8d 44 24 01 43 80 7c 26 01 [ 23.500895][ T308] RSP: 0018:ffff8881e086f9c0 EFLAGS: 00010246 [ 23.506929][ T308] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffff8881dd835e80 [ 23.514868][ T308] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 23.522812][ T308] RBP: 0000000000000000 R08: ffffffff81b9a329 R09: ffffed103c10df3d [ 23.530758][ T308] R10: ffffed103c10df3d R11: 1ffff1103c10df3c R12: ffffffffffffffff [ 23.538696][ T308] R13: 0000000000000000 R14: 0000000000000000 R15: dffffc0000000000 [ 23.546639][ T308] FS: 000055555750f300(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 [ 23.555533][ T308] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 23.562083][ T308] CR2: 00007f57c5fed130 CR3: 00000001de2a9000 CR4: 00000000003406f0 [ 23.570025][ T308] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 23.577968][ T308] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 23.585905][ T308] Call Trace: [ 23.589167][ T308] kernfs_name_hash+0x1e/0x220 [ 23.593898][ T308] kernfs_find_ns+0x6b/0x260 [ 23.598456][ T308] kernfs_remove_by_name_ns+0x32/0x90 [ 23.603798][ T308] del_gendisk+0x98a/0xbf0 [ 23.608186][ T308] ? device_add_disk_no_queue_reg+0x20/0x20 [ 23.614054][ T308] loop_remove+0x42/0xa0 [ 23.618266][ T308] loop_control_ioctl+0x67f/0x740 [ 23.623257][ T308] ? loop_remove+0xa0/0xa0 [ 23.627640][ T308] ? do_wp_page+0x535/0x8b0 [ 23.632111][ T308] ? cgroup_leave_frozen+0x13b/0x290 [ 23.637364][ T308] ? loop_remove+0xa0/0xa0 [ 23.641746][ T308] do_vfs_ioctl+0x744/0x1730 [ 23.646307][ T308] ? selinux_file_ioctl+0x723/0x970 [ 23.651478][ T308] ? ioctl_preallocate+0x250/0x250 [ 23.656558][ T308] ? syscall_trace_enter+0x652/0x940 [ 23.661818][ T308] ? do_syscall_64+0x1c0/0x1c0 [ 23.666561][ T308] ? debug_smp_processor_id+0x20/0x20 [ 23.671905][ T308] ? security_file_ioctl+0x9d/0xb0 [ 23.676987][ T308] __x64_sys_ioctl+0xd4/0x110 [ 23.681634][ T308] do_syscall_64+0xcb/0x1c0 [ 23.686122][ T308] entry_SYSCALL_64_after_hwframe+0x5c/0xc1 [ 23.691989][ T308] Modules linked in: [ 23.695910][ T308] ---[ end trace 0e0bec924c313cd0 ]--- [ 23.701418][ T308] RIP: 0010:strlen+0x2a/0x60 [ 23.705986][ T308] Code: 41 57 41 56 41 54 53 49 89 fe 48 c7 c0 ff ff ff ff 49 bf 00 00 00 00 00 fc ff df 48 89 fb 66 90 49 89 c4 48 89 d8 48 c1 e8 03 <42> 0f b6 04 38 84 c0 75 12 48 ff c3 49 8d 44 24 01 43 80 7c 26 01 [ 23.725600][ T308] RSP: 0018:ffff8881e086f9c0 EFLAGS: 00010246 [ 23.731685][ T308] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffff8881dd835e80 [ 23.739652][ T308] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 23.747612][ T308] RBP: 0000000000000000 R08: ffffffff81b9a329 R09: ffffed103c10df3d [ 23.755552][ T308] R10: ffffed103c10df3d R11: 1ffff1103c10df3c R12: ffffffffffffffff [ 23.763524][ T308] R13: 0000000000000000 R14: 0000000000000000 R15: dffffc0000000000 [ 23.771487][ T308] FS: 000055555750f300(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 [ 23.780415][ T308] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 23.786989][ T308] CR2: 00007f57c5fed130 CR3: 00000001de2a9000 CR4: 00000000003406f0 [ 23.794936][ T308] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 23.802902][ T308] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 23.810874][ T308] Kernel panic - not syncing: Fatal exception [ 23.817068][ T308] Kernel Offset: disabled [ 23.821368][ T308] Rebooting in 86400 seconds..