Warning: Permanently added '10.128.0.247' (ECDSA) to the list of known hosts. 2020/06/16 17:44:51 fuzzer started 2020/06/16 17:44:51 connecting to host at 10.128.0.26:33891 2020/06/16 17:44:51 checking machine... 2020/06/16 17:44:51 checking revisions... 2020/06/16 17:44:51 testing simple program... [ 66.058267][ T6793] BUG: using smp_processor_id() in preemptible [00000000] code: syz-fuzzer/6793 [ 66.067522][ T6793] caller is ext4_mb_new_blocks+0xa4d/0x3b70 [ 66.073426][ T6793] CPU: 1 PID: 6793 Comm: syz-fuzzer Not tainted 5.8.0-rc1-syzkaller #0 [ 66.081750][ T6793] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 66.091844][ T6793] Call Trace: [ 66.095125][ T6793] dump_stack+0x18f/0x20d [ 66.099442][ T6793] check_preemption_disabled+0x20d/0x220 [ 66.105055][ T6793] ext4_mb_new_blocks+0xa4d/0x3b70 [ 66.110156][ T6793] ? ext4_ext_search_right+0x2ca/0xb20 [ 66.115609][ T6793] ? ext4_inode_to_goal_block+0x2df/0x3f0 [ 66.121310][ T6793] ext4_ext_map_blocks+0x201b/0x33e0 [ 66.126593][ T6793] ? ext4_ext_release+0x10/0x10 [ 66.131432][ T6793] ? down_write_killable+0x170/0x170 [ 66.136696][ T6793] ? ext4_es_lookup_extent+0x41d/0xd10 [ 66.142149][ T6793] ext4_map_blocks+0x4cb/0x1640 [ 66.147001][ T6793] ? ext4_issue_zeroout+0x1e0/0x1e0 [ 66.152190][ T6793] ? rcu_read_lock_sched_held+0x9c/0xd0 [ 66.157713][ T6793] ? rcu_read_lock_any_held.part.0+0x50/0x50 [ 66.163669][ T6793] ? prandom_u32_state+0xe/0x170 [ 66.168610][ T6793] ? __brelse+0x84/0xa0 [ 66.172753][ T6793] ? __ext4_new_inode+0x144/0x55e0 [ 66.177843][ T6793] ext4_getblk+0xad/0x520 [ 66.182152][ T6793] ? ext4_iomap_overwrite_begin+0xa0/0xa0 [ 66.188058][ T6793] ? ext4_free_inode+0x1700/0x1700 [ 66.193186][ T6793] ext4_bread+0x7c/0x380 [ 66.197430][ T6793] ? ext4_getblk+0x520/0x520 [ 66.202014][ T6793] ? dquot_get_next_dqblk+0x180/0x180 [ 66.207384][ T6793] ext4_append+0x153/0x360 [ 66.211795][ T6793] ext4_mkdir+0x5e0/0xdf0 [ 66.216107][ T6793] ? ext4_rmdir+0xde0/0xde0 [ 66.220593][ T6793] ? security_inode_permission+0xc4/0xf0 [ 66.226211][ T6793] vfs_mkdir+0x419/0x690 [ 66.230434][ T6793] do_mkdirat+0x21e/0x280 [ 66.234744][ T6793] ? __ia32_sys_mknod+0xb0/0xb0 [ 66.239724][ T6793] ? do_syscall_64+0x1c/0xe0 [ 66.244325][ T6793] ? lockdep_hardirqs_on_prepare+0x3a2/0x590 [ 66.250314][ T6793] do_syscall_64+0x60/0xe0 [ 66.254714][ T6793] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 66.260582][ T6793] RIP: 0033:0x4b02a0 [ 66.264461][ T6793] Code: Bad RIP value. [ 66.268522][ T6793] RSP: 002b:000000c0000dd4b8 EFLAGS: 00000212 ORIG_RAX: 0000000000000102 [ 66.276918][ T6793] RAX: ffffffffffffffda RBX: 000000c00002c000 RCX: 00000000004b02a0 [ 66.284870][ T6793] RDX: 00000000000001c0 RSI: 000000c0000269a0 RDI: ffffffffffffff9c [ 66.292833][ T6793] RBP: 000000c0000dd510 R08: 0000000000000000 R09: 0000000000000000 [ 66.300782][ T6793] R10: 0000000000000000 R11: 0000000000000212 R12: ffffffffffffffff [ 66.308745][ T6793] R13: 000000000000004e R14: 000000000000004d R15: 0000000000000100 [ 66.334434][ T6806] BUG: using smp_processor_id() in preemptible [00000000] code: syz-executor.0/6806 [ 66.343904][ T6806] caller is ext4_mb_new_blocks+0xa4d/0x3b70 [ 66.349892][ T6806] CPU: 0 PID: 6806 Comm: syz-executor.0 Not tainted 5.8.0-rc1-syzkaller #0 [ 66.358549][ T6806] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 66.368585][ T6806] Call Trace: [ 66.371858][ T6806] dump_stack+0x18f/0x20d [ 66.376176][ T6806] check_preemption_disabled+0x20d/0x220 [ 66.381789][ T6806] ext4_mb_new_blocks+0xa4d/0x3b70 [ 66.386885][ T6806] ? ext4_ext_search_right+0x2ca/0xb20 [ 66.392323][ T6806] ? ext4_inode_to_goal_block+0x2df/0x3f0 [ 66.398024][ T6806] ext4_ext_map_blocks+0x201b/0x33e0 [ 66.403317][ T6806] ? ext4_ext_release+0x10/0x10 [ 66.408158][ T6806] ? down_write_killable+0x170/0x170 [ 66.413449][ T6806] ? ext4_es_lookup_extent+0x41d/0xd10 [ 66.418891][ T6806] ext4_map_blocks+0x4cb/0x1640 [ 66.423749][ T6806] ? ext4_issue_zeroout+0x1e0/0x1e0 [ 66.428927][ T6806] ? rcu_read_lock_sched_held+0x9c/0xd0 [ 66.434487][ T6806] ? rcu_read_lock_any_held.part.0+0x50/0x50 [ 66.440444][ T6806] ? prandom_u32_state+0xe/0x170 [ 66.445361][ T6806] ? __brelse+0x84/0xa0 [ 66.449510][ T6806] ? __ext4_new_inode+0x144/0x55e0 [ 66.454633][ T6806] ext4_getblk+0xad/0x520 [ 66.458965][ T6806] ? ext4_iomap_overwrite_begin+0xa0/0xa0 [ 66.464666][ T6806] ? ext4_free_inode+0x1700/0x1700 [ 66.469757][ T6806] ext4_bread+0x7c/0x380 [ 66.473977][ T6806] ? ext4_getblk+0x520/0x520 [ 66.478545][ T6806] ? dquot_get_next_dqblk+0x180/0x180 [ 66.483911][ T6806] ext4_append+0x153/0x360 [ 66.488323][ T6806] ext4_mkdir+0x5e0/0xdf0 [ 66.492648][ T6806] ? ext4_rmdir+0xde0/0xde0 [ 66.497154][ T6806] ? security_inode_permission+0xc4/0xf0 [ 66.502799][ T6806] vfs_mkdir+0x419/0x690 [ 66.507024][ T6806] do_mkdirat+0x21e/0x280 [ 66.511332][ T6806] ? __ia32_sys_mknod+0xb0/0xb0 [ 66.516187][ T6806] ? do_syscall_64+0x1c/0xe0 [ 66.520776][ T6806] ? lockdep_hardirqs_on_prepare+0x3a2/0x590 [ 66.526749][ T6806] do_syscall_64+0x60/0xe0 [ 66.531170][ T6806] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 66.537040][ T6806] RIP: 0033:0x45bed7 [ 66.540920][ T6806] Code: Bad RIP value. [ 66.544974][ T6806] RSP: 002b:00007ffd96f34d38 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 66.553370][ T6806] RAX: ffffffffffffffda RBX: 000000000003a2f8 RCX: 000000000045bed7 [ 66.561329][ T6806] RDX: 0000000000000003 RSI: 00000000000001c0 RDI: 00007ffd96f34f10 [ 66.569299][ T6806] RBP: 0000000000000001 R08: 000000000000f8c0 R09: 00000000000039c0 [ 66.577246][ T6806] R10: 0000000000000011 R11: 0000000000000246 R12: 00000000000000c2 [ 66.585208][ T6806] R13: 00007ffd96f34f10 R14: 8421084210842109 R15: 00007ffd96f34f1c [ 66.672129][ T6807] IPVS: ftp: loaded support on port[0] = 21 [ 66.708893][ T6807] BUG: using smp_processor_id() in preemptible [00000000] code: syz-executor.0/6807 [ 66.718622][ T6807] caller is ext4_mb_new_blocks+0xa4d/0x3b70 [ 66.724514][ T6807] CPU: 1 PID: 6807 Comm: syz-executor.0 Not tainted 5.8.0-rc1-syzkaller #0 [ 66.733073][ T6807] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 66.743278][ T6807] Call Trace: [ 66.746567][ T6807] dump_stack+0x18f/0x20d [ 66.750879][ T6807] check_preemption_disabled+0x20d/0x220 [ 66.756489][ T6807] ext4_mb_new_blocks+0xa4d/0x3b70 [ 66.761584][ T6807] ? ext4_ext_search_right+0x2ca/0xb20 [ 66.767022][ T6807] ? ext4_inode_to_goal_block+0x2df/0x3f0 [ 66.772732][ T6807] ext4_ext_map_blocks+0x201b/0x33e0 [ 66.778091][ T6807] ? ext4_ext_release+0x10/0x10 [ 66.782959][ T6807] ? down_write_killable+0x170/0x170 [ 66.788233][ T6807] ? ext4_es_lookup_extent+0x41d/0xd10 [ 66.793699][ T6807] ext4_map_blocks+0x4cb/0x1640 [ 66.798545][ T6807] ? ext4_issue_zeroout+0x1e0/0x1e0 [ 66.803721][ T6807] ? rcu_read_lock_sched_held+0x9c/0xd0 [ 66.809258][ T6807] ? rcu_read_lock_any_held.part.0+0x50/0x50 [ 66.815226][ T6807] ? prandom_u32_state+0xe/0x170 [ 66.820156][ T6807] ? __brelse+0x84/0xa0 [ 66.824299][ T6807] ? __ext4_new_inode+0x144/0x55e0 [ 66.829411][ T6807] ext4_getblk+0xad/0x520 [ 66.833720][ T6807] ? ext4_iomap_overwrite_begin+0xa0/0xa0 [ 66.839430][ T6807] ? ext4_free_inode+0x1700/0x1700 [ 66.844531][ T6807] ext4_bread+0x7c/0x380 [ 66.848876][ T6807] ? ext4_getblk+0x520/0x520 [ 66.853463][ T6807] ? dquot_get_next_dqblk+0x180/0x180 [ 66.858848][ T6807] ext4_append+0x153/0x360 [ 66.863245][ T6807] ext4_mkdir+0x5e0/0xdf0 [ 66.867570][ T6807] ? ext4_rmdir+0xde0/0xde0 [ 66.872067][ T6807] ? security_inode_permission+0xc4/0xf0 [ 66.877694][ T6807] vfs_mkdir+0x419/0x690 [ 66.881928][ T6807] do_mkdirat+0x21e/0x280 [ 66.886237][ T6807] ? __ia32_sys_mknod+0xb0/0xb0 [ 66.891066][ T6807] ? do_syscall_64+0x1c/0xe0 [ 66.895650][ T6807] ? lockdep_hardirqs_on_prepare+0x3a2/0x590 [ 66.901609][ T6807] do_syscall_64+0x60/0xe0 [ 66.906007][ T6807] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 66.911876][ T6807] RIP: 0033:0x45bed7 [ 66.915757][ T6807] Code: Bad RIP value. [ 66.919797][ T6807] RSP: 002b:00007ffd96f34c28 EFLAGS: 00000206 ORIG_RAX: 0000000000000053 [ 66.928212][ T6807] RAX: ffffffffffffffda RBX: 000000000078c988 RCX: 000000000045bed7 [ 66.936162][ T6807] RDX: 00007ffd96f34c73 RSI: 00000000000001ff RDI: 00007ffd96f34c70 [ 66.944111][ T6807] RBP: 00000000000000f8 R08: 0000000000000000 R09: 0000000000000003 [ 66.952069][ T6807] R10: 0000000000000064 R11: 0000000000000206 R12: 00000000004185c0 [ 66.960032][ T6807] R13: 00007ffd96f34c60 R14: 0000000000000000 R15: 00007ffd96f34c70 [ 67.013533][ T6807] BUG: using smp_processor_id() in preemptible [00000000] code: syz-executor.0/6807 [ 67.024213][ T6807] caller is ext4_mb_new_blocks+0xa4d/0x3b70 [ 67.030340][ T6807] CPU: 1 PID: 6807 Comm: syz-executor.0 Not tainted 5.8.0-rc1-syzkaller #0 [ 67.038929][ T6807] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 67.048986][ T6807] Call Trace: [ 67.052274][ T6807] dump_stack+0x18f/0x20d [ 67.056612][ T6807] check_preemption_disabled+0x20d/0x220 [ 67.062285][ T6807] ext4_mb_new_blocks+0xa4d/0x3b70 [ 67.067423][ T6807] ? ext4_ext_search_right+0x2ca/0xb20 [ 67.072983][ T6807] ? ext4_inode_to_goal_block+0x2df/0x3f0 [ 67.078732][ T6807] ext4_ext_map_blocks+0x201b/0x33e0 [ 67.084043][ T6807] ? ext4_ext_release+0x10/0x10 [ 67.088919][ T6807] ? down_write_killable+0x170/0x170 [ 67.094213][ T6807] ? ext4_es_lookup_extent+0x41d/0xd10 [ 67.099690][ T6807] ext4_map_blocks+0x4cb/0x1640 [ 67.104563][ T6807] ? ext4_issue_zeroout+0x1e0/0x1e0 [ 67.109805][ T6807] ? rcu_read_lock_sched_held+0x9c/0xd0 [ 67.115365][ T6807] ? rcu_read_lock_any_held.part.0+0x50/0x50 [ 67.121451][ T6807] ? prandom_u32_state+0xe/0x170 [ 67.126395][ T6807] ? __brelse+0x84/0xa0 [ 67.130541][ T6807] ? __ext4_new_inode+0x144/0x55e0 [ 67.135633][ T6807] ext4_getblk+0xad/0x520 [ 67.139957][ T6807] ? ext4_iomap_overwrite_begin+0xa0/0xa0 [ 67.145765][ T6807] ? ext4_free_inode+0x1700/0x1700 [ 67.150863][ T6807] ext4_bread+0x7c/0x380 [ 67.155098][ T6807] ? ext4_getblk+0x520/0x520 [ 67.159671][ T6807] ? dquot_get_next_dqblk+0x180/0x180 [ 67.165039][ T6807] ext4_append+0x153/0x360 [ 67.169445][ T6807] ext4_mkdir+0x5e0/0xdf0 [ 67.173862][ T6807] ? ext4_rmdir+0xde0/0xde0 [ 67.178346][ T6807] ? security_inode_permission+0xc4/0xf0 [ 67.183977][ T6807] vfs_mkdir+0x419/0x690 [ 67.188212][ T6807] do_mkdirat+0x21e/0x280 [ 67.192522][ T6807] ? __ia32_sys_mknod+0xb0/0xb0 [ 67.197368][ T6807] ? do_syscall_64+0x1c/0xe0 [ 67.201952][ T6807] ? lockdep_hardirqs_on_prepare+0x3a2/0x590 [ 67.207923][ T6807] do_syscall_64+0x60/0xe0 [ 67.212323][ T6807] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 67.218206][ T6807] RIP: 0033:0x45bed7 [ 67.222071][ T6807] Code: Bad RIP value. [ 67.226111][ T6807] RSP: 002b:00007ffd96f34c28 EFLAGS: 00000206 ORIG_RAX: 0000000000000053 [ 67.234522][ T6807] RAX: ffffffffffffffda RBX: 00000000000105bc RCX: 000000000045bed7 [ 67.242473][ T6807] RDX: 00007ffd96f34c73 RSI: 00000000000001ff RDI: 00007ffd96f34c70 [ 67.250435][ T6807] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000003 2020/06/16 17:44:52 building call list... [ 67.258384][ T6807] R10: 0000000000000064 R11: 0000000000000206 R12: 0000000000000003 [ 67.266332][ T6807] R13: 00007ffd96f34c60 R14: 00000000000105b8 R15: 00007ffd96f34c70 [ 67.525271][ T4488] tipc: TX() has been purged, node left! [ 68.047363][ T4488] ================================================================== [ 68.055634][ T4488] BUG: KASAN: use-after-free in afs_wake_up_async_call+0x6aa/0x770 [ 68.063608][ T4488] Write of size 1 at addr ffff8880a37859e4 by task kworker/u4:8/4488 [ 68.071679][ T4488] [ 68.074015][ T4488] CPU: 0 PID: 4488 Comm: kworker/u4:8 Not tainted 5.8.0-rc1-syzkaller #0 [ 68.082414][ T4488] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 68.092468][ T4488] Workqueue: netns cleanup_net [ 68.097223][ T4488] Call Trace: [ 68.100518][ T4488] dump_stack+0x18f/0x20d [ 68.104849][ T4488] ? afs_wake_up_async_call+0x6aa/0x770 [ 68.110390][ T4488] ? afs_wake_up_async_call+0x6aa/0x770 [ 68.115947][ T4488] ? afs_put_call+0xa40/0xa40 [ 68.120628][ T4488] print_address_description.constprop.0.cold+0xd3/0x413 [ 68.127655][ T4488] ? vprintk_func+0x97/0x1a6 [ 68.132247][ T4488] ? afs_wake_up_async_call+0x6aa/0x770 [ 68.137811][ T4488] kasan_report.cold+0x1f/0x37 [ 68.142594][ T4488] ? rcu_read_lock_held_common+0x51/0xa0 [ 68.148220][ T4488] ? afs_wake_up_async_call+0x6aa/0x770 [ 68.153769][ T4488] afs_wake_up_async_call+0x6aa/0x770 [ 68.159136][ T4488] ? afs_close_socket+0x320/0x320 [ 68.164160][ T4488] ? afs_put_call+0xa40/0xa40 [ 68.168834][ T4488] rxrpc_notify_socket+0x1db/0x5d0 [ 68.173950][ T4488] ? afs_put_call+0xa40/0xa40 [ 68.178628][ T4488] __rxrpc_set_call_completion.part.0+0x172/0x410 [ 68.185043][ T4488] rxrpc_call_completed+0xca/0xf0 [ 68.190076][ T4488] rxrpc_discard_prealloc+0x781/0xab0 [ 68.195450][ T4488] ? lock_sock_nested+0x94/0x110 [ 68.200419][ T4488] rxrpc_listen+0x147/0x360 [ 68.204945][ T4488] afs_close_socket+0x95/0x320 [ 68.209705][ T4488] ? afs_purge_servers+0x16d/0x300 [ 68.214830][ T4488] ? afs_rx_discard_new_call+0x50/0x50 [ 68.220308][ T4488] ? init_wait_var_entry+0x200/0x200 [ 68.225599][ T4488] ? rcu_read_lock_held_common+0xa0/0xa0 [ 68.231229][ T4488] ? check_preemption_disabled+0x38/0x220 [ 68.236948][ T4488] afs_net_exit+0x1bc/0x310 [ 68.241469][ T4488] ? afs_net_init+0xe30/0xe30 [ 68.246141][ T4488] ops_exit_list.isra.0+0xa8/0x150 [ 68.251273][ T4488] cleanup_net+0x511/0xa50 [ 68.255692][ T4488] ? unregister_pernet_device+0x70/0x70 [ 68.261241][ T4488] ? rcu_read_lock_any_held.part.0+0x50/0x50 [ 68.267228][ T4488] process_one_work+0x965/0x1690 [ 68.272178][ T4488] ? lock_release+0x800/0x800 [ 68.276856][ T4488] ? pwq_dec_nr_in_flight+0x310/0x310 [ 68.282231][ T4488] ? rwlock_bug.part.0+0x90/0x90 [ 68.287179][ T4488] worker_thread+0x96/0xe10 [ 68.291694][ T4488] ? process_one_work+0x1690/0x1690 [ 68.296892][ T4488] kthread+0x3b5/0x4a0 [ 68.300964][ T4488] ? kthread_mod_delayed_work+0x1a0/0x1a0 [ 68.306685][ T4488] ? kthread_mod_delayed_work+0x1a0/0x1a0 [ 68.312407][ T4488] ret_from_fork+0x1f/0x30 [ 68.316830][ T4488] [ 68.319157][ T4488] Allocated by task 6807: [ 68.323485][ T4488] save_stack+0x1b/0x40 [ 68.327657][ T4488] __kasan_kmalloc.constprop.0+0xbf/0xd0 [ 68.333283][ T4488] kmem_cache_alloc_trace+0x153/0x7d0 [ 68.338665][ T4488] afs_alloc_call+0x55/0x630 [ 68.343265][ T4488] afs_charge_preallocation+0xe9/0x2d0 [ 68.348718][ T4488] afs_open_socket+0x292/0x360 [ 68.353472][ T4488] afs_net_init+0xa6c/0xe30 [ 68.357976][ T4488] ops_init+0xaf/0x420 [ 68.362041][ T4488] setup_net+0x2de/0x860 [ 68.366277][ T4488] copy_net_ns+0x293/0x590 [ 68.370705][ T4488] create_new_namespaces+0x3fb/0xb30 [ 68.376008][ T4488] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 68.381689][ T4488] ksys_unshare+0x43d/0x8e0 [ 68.386211][ T4488] __x64_sys_unshare+0x2d/0x40 [ 68.390992][ T4488] do_syscall_64+0x60/0xe0 [ 68.395405][ T4488] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 68.401282][ T4488] [ 68.403603][ T4488] Freed by task 4488: [ 68.407611][ T4488] save_stack+0x1b/0x40 [ 68.411763][ T4488] __kasan_slab_free+0xf7/0x140 [ 68.416605][ T4488] kfree+0x109/0x2b0 [ 68.420493][ T4488] afs_put_call+0x585/0xa40 [ 68.424997][ T4488] rxrpc_discard_prealloc+0x764/0xab0 [ 68.430361][ T4488] rxrpc_listen+0x147/0x360 [ 68.434860][ T4488] afs_close_socket+0x95/0x320 [ 68.439615][ T4488] afs_net_exit+0x1bc/0x310 [ 68.444129][ T4488] ops_exit_list.isra.0+0xa8/0x150 [ 68.449246][ T4488] cleanup_net+0x511/0xa50 [ 68.453672][ T4488] process_one_work+0x965/0x1690 [ 68.458622][ T4488] worker_thread+0x96/0xe10 [ 68.463134][ T4488] kthread+0x3b5/0x4a0 [ 68.467214][ T4488] ret_from_fork+0x1f/0x30 [ 68.471623][ T4488] [ 68.473960][ T4488] The buggy address belongs to the object at ffff8880a3785800 [ 68.473960][ T4488] which belongs to the cache kmalloc-1k of size 1024 [ 68.488015][ T4488] The buggy address is located 484 bytes inside of [ 68.488015][ T4488] 1024-byte region [ffff8880a3785800, ffff8880a3785c00) [ 68.501365][ T4488] The buggy address belongs to the page: [ 68.506996][ T4488] page:ffffea00028de140 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 [ 68.516105][ T4488] flags: 0xfffe0000000200(slab) [ 68.520965][ T4488] raw: 00fffe0000000200 ffffea0002837188 ffffea000254cd88 ffff8880aa000c40 [ 68.529578][ T4488] raw: 0000000000000000 ffff8880a3785000 0000000100000002 0000000000000000 [ 68.538153][ T4488] page dumped because: kasan: bad access detected [ 68.544554][ T4488] [ 68.546875][ T4488] Memory state around the buggy address: [ 68.552500][ T4488] ffff8880a3785880: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 68.560557][ T4488] ffff8880a3785900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 68.568624][ T4488] >ffff8880a3785980: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 68.576677][ T4488] ^ [ 68.583868][ T4488] ffff8880a3785a00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 68.591924][ T4488] ffff8880a3785a80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 68.599977][ T4488] ================================================================== [ 68.608029][ T4488] Disabling lock debugging due to kernel taint [ 68.614217][ T4488] Kernel panic - not syncing: panic_on_warn set ... [ 68.620813][ T4488] CPU: 0 PID: 4488 Comm: kworker/u4:8 Tainted: G B 5.8.0-rc1-syzkaller #0 [ 68.630631][ T4488] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 68.640712][ T4488] Workqueue: netns cleanup_net [ 68.645468][ T4488] Call Trace: [ 68.648759][ T4488] dump_stack+0x18f/0x20d [ 68.653088][ T4488] ? afs_wake_up_async_call+0x690/0x770 [ 68.658665][ T4488] ? afs_put_call+0xa40/0xa40 [ 68.663332][ T4488] panic+0x2e3/0x75c [ 68.667221][ T4488] ? __warn_printk+0xf3/0xf3 [ 68.671818][ T4488] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 68.677982][ T4488] ? trace_hardirqs_on+0x55/0x220 [ 68.683009][ T4488] ? afs_wake_up_async_call+0x6aa/0x770 [ 68.688545][ T4488] ? afs_wake_up_async_call+0x6aa/0x770 [ 68.694078][ T4488] ? afs_put_call+0xa40/0xa40 [ 68.698744][ T4488] end_report+0x4d/0x53 [ 68.702892][ T4488] kasan_report.cold+0xd/0x37 [ 68.707564][ T4488] ? rcu_read_lock_held_common+0x51/0xa0 [ 68.713201][ T4488] ? afs_wake_up_async_call+0x6aa/0x770 [ 68.718736][ T4488] afs_wake_up_async_call+0x6aa/0x770 [ 68.724129][ T4488] ? afs_close_socket+0x320/0x320 [ 68.729145][ T4488] ? afs_put_call+0xa40/0xa40 [ 68.733814][ T4488] rxrpc_notify_socket+0x1db/0x5d0 [ 68.738920][ T4488] ? afs_put_call+0xa40/0xa40 [ 68.743594][ T4488] __rxrpc_set_call_completion.part.0+0x172/0x410 [ 68.750002][ T4488] rxrpc_call_completed+0xca/0xf0 [ 68.755044][ T4488] rxrpc_discard_prealloc+0x781/0xab0 [ 68.760412][ T4488] ? lock_sock_nested+0x94/0x110 [ 68.765343][ T4488] rxrpc_listen+0x147/0x360 [ 68.769839][ T4488] afs_close_socket+0x95/0x320 [ 68.774591][ T4488] ? afs_purge_servers+0x16d/0x300 [ 68.779690][ T4488] ? afs_rx_discard_new_call+0x50/0x50 [ 68.785142][ T4488] ? init_wait_var_entry+0x200/0x200 [ 68.790421][ T4488] ? rcu_read_lock_held_common+0xa0/0xa0 [ 68.796057][ T4488] ? check_preemption_disabled+0x38/0x220 [ 68.801766][ T4488] afs_net_exit+0x1bc/0x310 [ 68.806258][ T4488] ? afs_net_init+0xe30/0xe30 [ 68.810932][ T4488] ops_exit_list.isra.0+0xa8/0x150 [ 68.816035][ T4488] cleanup_net+0x511/0xa50 [ 68.820443][ T4488] ? unregister_pernet_device+0x70/0x70 [ 68.825982][ T4488] ? rcu_read_lock_any_held.part.0+0x50/0x50 [ 68.831960][ T4488] process_one_work+0x965/0x1690 [ 68.836896][ T4488] ? lock_release+0x800/0x800 [ 68.841573][ T4488] ? pwq_dec_nr_in_flight+0x310/0x310 [ 68.846962][ T4488] ? rwlock_bug.part.0+0x90/0x90 [ 68.851894][ T4488] worker_thread+0x96/0xe10 [ 68.856398][ T4488] ? process_one_work+0x1690/0x1690 [ 68.861588][ T4488] kthread+0x3b5/0x4a0 [ 68.865667][ T4488] ? kthread_mod_delayed_work+0x1a0/0x1a0 [ 68.871520][ T4488] ? kthread_mod_delayed_work+0x1a0/0x1a0 [ 68.877238][ T4488] ret_from_fork+0x1f/0x30 [ 68.883016][ T4488] Kernel Offset: disabled [ 68.887335][ T4488] Rebooting in 86400 seconds..