[ OK ] Started Getty on tty4. [ OK ] Started Getty on tty3. [ OK ] Started Getty on tty2. [ OK ] Started Serial Getty on ttyS0. [ OK ] Started Getty on tty1. [ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... Starting Load/Save RF Kill Switch Status... [ OK ] Started Update UTMP about System Runlevel Changes. [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.225' (ECDSA) to the list of known hosts. syzkaller login: [ 32.763093] FAULT_INJECTION: forcing a failure. [ 32.763093] name failslab, interval 1, probability 0, space 0, times 1 [ 32.774587] CPU: 1 PID: 8090 Comm: syz-executor952 Not tainted 4.19.195-syzkaller #0 [ 32.782459] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 32.791799] Call Trace: [ 32.794369] dump_stack+0x1fc/0x2ef [ 32.797976] should_fail.cold+0xa/0xf [ 32.801763] ? setup_fault_attr+0x200/0x200 [ 32.806079] ? lock_acquire+0x170/0x3c0 [ 32.810034] __should_failslab+0x115/0x180 [ 32.814246] should_failslab+0x5/0x10 [ 32.818025] kmem_cache_alloc_node_trace+0x244/0x3b0 [ 32.823113] setup_kmem_cache_node+0x283/0x510 [ 32.827678] __do_tune_cpucache+0x161/0x210 [ 32.831985] enable_cpucache+0x50/0x130 [ 32.835938] __kmem_cache_create+0x1a7/0x260 [ 32.840339] create_cache+0xd1/0x1f0 [ 32.844202] kmem_cache_create_usercopy+0x1a6/0x240 [ 32.849273] kmem_cache_create+0xd/0x10 [ 32.853243] copy_pid_ns+0x7d9/0x970 [ 32.857092] ? pid_ns_ctl_handler+0x340/0x340 [ 32.861660] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 32.866699] create_new_namespaces+0x2b2/0x7b0 [ 32.871275] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 32.876189] ksys_unshare+0x36c/0x9a0 [ 32.879974] ? walk_process_tree+0x2c0/0x2c0 [ 32.884360] ? mntput+0x67/0x90 [ 32.887621] ? ksys_chdir+0x12e/0x1d0 [ 32.891403] ? __ia32_sys_access+0x70/0x70 [ 32.895623] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 32.900972] ? trace_hardirqs_off_caller+0x6e/0x210 [ 32.905972] __x64_sys_unshare+0x2d/0x40 [ 32.910019] do_syscall_64+0xf9/0x620 [ 32.913801] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 32.919069] RIP: 0033:0x44e6a7 [ 32.922247] Code: 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 32.941269] RSP: 002b:00007ffd6717dbb8 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 32.948958] RAX: ffffffffffffffda RBX: 00000000004b2098 RCX: 000000000044e6a7 [ 32.956208] RDX: 0000000000000263 RSI: 00000000000001ff RDI: 0000000020000000 [ 32.963456] RBP: 00007ffd6717dbd0 R08: 0000000000000028 R09: 00000009ac6fbc73 [ 32.970707] R10: 0016b7a887854250 R11: 0000000000000246 R12: 0000000000404530 [ 32.977960] R13: 0000000000000000 R14: 00000000004b5018 R15: 00000000004004a0 [ 32.989681] enable_cpucache failed for pid_2, error 12 [ 32.995060] kmem_cache_create(pid_2) failed with error -12 [ 33.000993] CPU: 0 PID: 8090 Comm: syz-executor952 Not tainted 4.19.195-syzkaller #0 [ 33.008948] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 33.018286] Call Trace: [ 33.020863] dump_stack+0x1fc/0x2ef [ 33.024478] kmem_cache_create_usercopy.cold+0x23/0xae [ 33.029776] kmem_cache_create+0xd/0x10 [ 33.033735] copy_pid_ns+0x7d9/0x970 [ 33.037427] ? pid_ns_ctl_handler+0x340/0x340 [ 33.041977] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 33.046978] create_new_namespaces+0x2b2/0x7b0 [ 33.051548] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 33.056478] ksys_unshare+0x36c/0x9a0 [ 33.060263] ? walk_process_tree+0x2c0/0x2c0 [ 33.064653] ? mntput+0x67/0x90 [ 33.067924] ? ksys_chdir+0x12e/0x1d0 [ 33.071702] ? __ia32_sys_access+0x70/0x70 [ 33.075920] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 33.081267] ? trace_hardirqs_off_caller+0x6e/0x210 [ 33.086275] __x64_sys_unshare+0x2d/0x40 [ 33.090315] do_syscall_64+0xf9/0x620 [ 33.094112] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 33.099280] RIP: 0033:0x44e6a7 [ 33.102455] Code: 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 33.121337] RSP: 002b:00007ffd6717dbb8 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 33.129051] RAX: ffffffffffffffda RBX: 00000000004b2098 RCX: 000000000044e6a7 [ 33.136302] RDX: 0000000000000263 RSI: 00000000000001ff RDI: 0000000020000000 [ 33.143571] RBP: 00007ffd6717dbd0 R08: 0000000000000028 R09: 00000009ac6fbc73 [ 33.150835] R10: 0016b7a887854250 R11: 0000000000000246 R12: 0000000000404530 executing program [ 33.158083] R13: 0000000000000000 R14: 00000000004b5018 R15: 00000000004004a0 [ 33.182261] IPVS: ftp: loaded support on port[0] = 21 [ 33.224182] erofs: read_super, device -> /dev/loop0 [ 33.229663] erofs: options -> fault_injection=0x0000000000000000, [ 33.236092] FAULT_INJECTION: forcing a failure. [ 33.236092] name failslab, interval 1, probability 0, space 0, times 0 [ 33.247700] CPU: 1 PID: 8112 Comm: syz-executor952 Not tainted 4.19.195-syzkaller #0 [ 33.255665] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 33.265025] Call Trace: [ 33.267601] dump_stack+0x1fc/0x2ef [ 33.271229] should_fail.cold+0xa/0xf [ 33.275012] ? do_mount+0x113c/0x2f10 [ 33.278793] ? setup_fault_attr+0x200/0x200 [ 33.283098] ? blk_queue_enter+0x40b/0xb70 [ 33.287330] __should_failslab+0x115/0x180 [ 33.291545] should_failslab+0x5/0x10 [ 33.295325] kmem_cache_alloc_node+0x54/0x3b0 [ 33.299805] create_task_io_context+0x2c/0x430 [ 33.304381] generic_make_request_checks+0x1c4f/0x22e0 [ 33.309643] ? should_fail_bio.isra.0+0xa0/0xa0 [ 33.314297] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 33.319296] ? kmem_cache_alloc+0x315/0x370 [ 33.323599] generic_make_request+0x23f/0xdf0 [ 33.328076] ? blk_put_request+0x110/0x110 [ 33.332296] ? lock_downgrade+0x720/0x720 [ 33.336448] submit_bio+0xb1/0x430 [ 33.339978] ? generic_make_request+0xdf0/0xdf0 [ 33.344637] ? check_preemption_disabled+0x41/0x280 [ 33.349812] ? guard_bio_eod+0x2a0/0x650 [ 33.354125] submit_bh_wbc+0x5a7/0x760 [ 33.358087] __bread_gfp+0x14e/0x300 [ 33.361802] erofs_fill_super+0x207/0x12cc [ 33.366020] ? gb_gbphy_register_driver.cold+0x39/0x39 [ 33.371280] ? vsprintf+0x30/0x30 [ 33.374713] ? wait_for_completion_io+0x10/0x10 [ 33.379362] ? set_blocksize+0x163/0x3f0 [ 33.383405] mount_bdev+0x2fc/0x3b0 [ 33.387013] ? gb_gbphy_register_driver.cold+0x39/0x39 [ 33.392272] erofs_mount+0x8c/0xc0 [ 33.395792] ? erofs_kill_sb+0x20/0x20 [ 33.399760] ? alloc_pages_current+0x19b/0x2a0 [ 33.404331] ? __lockdep_init_map+0x100/0x5a0 [ 33.408900] mount_fs+0xa3/0x310 [ 33.412332] vfs_kern_mount.part.0+0x68/0x470 [ 33.416809] do_mount+0x113c/0x2f10 [ 33.420424] ? __do_page_fault+0x180/0xd60 [ 33.424762] ? copy_mount_string+0x40/0x40 [ 33.429003] ? copy_mount_options+0x1cd/0x380 [ 33.433488] ? copy_mount_options+0x1da/0x380 [ 33.437970] ? copy_mount_options+0x1e9/0x380 [ 33.442451] ? copy_mount_options+0x26f/0x380 [ 33.447028] ksys_mount+0xcf/0x130 [ 33.450565] __x64_sys_mount+0xba/0x150 [ 33.454608] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 33.459176] do_syscall_64+0xf9/0x620 [ 33.462980] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 33.468148] RIP: 0033:0x44e61a [ 33.471320] Code: 48 c7 c2 c0 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 c8 03 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 33.490221] RSP: 002b:00007ffd6717d848 EFLAGS: 00000286 ORIG_RAX: 00000000000000a5 [ 33.497912] RAX: ffffffffffffffda RBX: 00007ffd6717d8a0 RCX: 000000000044e61a [ 33.505178] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007ffd6717d860 [ 33.512571] RBP: 00007ffd6717d860 R08: 00007ffd6717d8a0 R09: 0000000000000000 executing program [ 33.519826] R10: 0000000000000000 R11: 0000000000000286 R12: 0000000020000248 [ 33.527078] R13: 0000000000000005 R14: 0000000000000006 R15: 0000000000000003 [ 33.537514] erofs: FAULT_INJECTION was not selected [ 33.543071] erofs: root inode @ nid 36 [ 33.547504] erofs: mounted on /dev/loop0 with opts: fault_injection=0x0000000000000000. [ 33.561013] erofs: unmounted for /dev/loop0 [ 33.597923] erofs: read_super, device -> /dev/loop0 [ 33.603488] erofs: options -> fault_injection=0x0000000000000000, [ 33.610313] erofs: FAULT_INJECTION was not selected [ 33.615416] erofs: root inode @ nid 36 [ 33.619840] FAULT_INJECTION: forcing a failure. [ 33.619840] name failslab, interval 1, probability 0, space 0, times 0 [ 33.631657] CPU: 0 PID: 8121 Comm: syz-executor952 Not tainted 4.19.195-syzkaller #0 [ 33.639551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 33.648905] Call Trace: [ 33.651484] dump_stack+0x1fc/0x2ef [ 33.655092] should_fail.cold+0xa/0xf [ 33.658872] ? setup_fault_attr+0x200/0x200 [ 33.663172] ? lock_acquire+0x170/0x3c0 [ 33.667127] __should_failslab+0x115/0x180 [ 33.671343] should_failslab+0x5/0x10 [ 33.675122] kmem_cache_alloc+0x277/0x370 [ 33.679248] __d_alloc+0x2b/0xa10 [ 33.682685] d_make_root+0x3e/0x90 [ 33.686204] erofs_fill_super+0x102f/0x12cc [ 33.690509] ? gb_gbphy_register_driver.cold+0x39/0x39 [ 33.695775] ? vsprintf+0x30/0x30 [ 33.699210] ? wait_for_completion_io+0x10/0x10 [ 33.703857] ? set_blocksize+0x163/0x3f0 [ 33.707901] mount_bdev+0x2fc/0x3b0 [ 33.711505] ? gb_gbphy_register_driver.cold+0x39/0x39 [ 33.716778] erofs_mount+0x8c/0xc0 [ 33.720311] ? erofs_kill_sb+0x20/0x20 [ 33.724183] ? alloc_pages_current+0x19b/0x2a0 [ 33.728760] ? __lockdep_init_map+0x100/0x5a0 [ 33.733239] mount_fs+0xa3/0x310 [ 33.736608] vfs_kern_mount.part.0+0x68/0x470 [ 33.741087] do_mount+0x113c/0x2f10 [ 33.744699] ? __do_page_fault+0x180/0xd60 [ 33.748918] ? copy_mount_string+0x40/0x40 [ 33.753136] ? copy_mount_options+0x1cd/0x380 [ 33.757611] ? copy_mount_options+0x1da/0x380 [ 33.762088] ? copy_mount_options+0x1e9/0x380 [ 33.766568] ? copy_mount_options+0x26f/0x380 [ 33.771077] ksys_mount+0xcf/0x130 [ 33.774599] __x64_sys_mount+0xba/0x150 [ 33.778552] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 33.783125] do_syscall_64+0xf9/0x620 [ 33.786909] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 33.792091] RIP: 0033:0x44e61a [ 33.795263] Code: 48 c7 c2 c0 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 c8 03 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 33.814143] RSP: 002b:00007ffd6717d848 EFLAGS: 00000286 ORIG_RAX: 00000000000000a5 [ 33.821830] RAX: ffffffffffffffda RBX: 00007ffd6717d8a0 RCX: 000000000044e61a [ 33.829181] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007ffd6717d860 [ 33.836447] RBP: 00007ffd6717d860 R08: 00007ffd6717d8a0 R09: 0000000000000000 [ 33.843701] R10: 0000000000000000 R11: 0000000000000286 R12: 0000000020000248 [ 33.850955] R13: 0000000000000005 R14: 0000000000000006 R15: 0000000000000003 [ 33.860335] ------------[ cut here ]------------ [ 33.865110] kernel BUG at fs/inode.c:1571! [ 33.869711] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 33.875084] CPU: 0 PID: 8121 Comm: syz-executor952 Not tainted 4.19.195-syzkaller #0 [ 33.882966] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 33.892307] RIP: 0010:iput+0x727/0x860 [ 33.896171] Code: b8 00 00 00 00 00 fc ff df 48 c1 ea 03 80 3c 02 00 0f 84 18 fd ff ff 48 8b 3c 24 e8 43 db ee ff e9 0a fd ff ff e8 79 0e b9 ff <0f> 0b e8 72 0e b9 ff 48 89 ef e8 1a f7 ff ff 4c 89 f7 e8 12 fb 6e [ 33.915054] RSP: 0018:ffff8880b159fa80 EFLAGS: 00010293 [ 33.920411] RAX: ffff8880af836340 RBX: 0000000000000040 RCX: ffffffff81a969ee [ 33.927659] RDX: 0000000000000000 RSI: ffffffff81a970b7 RDI: 0000000000000007 [ 33.934906] RBP: ffff88808dbf3500 R08: 0000000000000000 R09: 0000000000000000 [ 33.942160] R10: 0000000000000007 R11: 0000000000000000 R12: ffff8880b5243540 [ 33.949410] R13: ffff88808dbf3500 R14: 0000000000000000 R15: 00000000fffffff4 [ 33.956661] FS: 0000000001d09300(0000) GS:ffff8880ba000000(0000) knlGS:0000000000000000 [ 33.964983] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 33.970844] CR2: 00007ffd6717e000 CR3: 000000009b349000 CR4: 00000000001406f0 [ 33.978276] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 33.985539] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 33.992803] Call Trace: [ 33.995382] erofs_fill_super+0x1205/0x12cc [ 33.999706] ? gb_gbphy_register_driver.cold+0x39/0x39 [ 34.004962] ? vsprintf+0x30/0x30 [ 34.008395] ? wait_for_completion_io+0x10/0x10 [ 34.013051] ? set_blocksize+0x163/0x3f0 [ 34.017090] mount_bdev+0x2fc/0x3b0 [ 34.020698] ? gb_gbphy_register_driver.cold+0x39/0x39 [ 34.026082] erofs_mount+0x8c/0xc0 [ 34.029624] ? erofs_kill_sb+0x20/0x20 [ 34.033495] ? alloc_pages_current+0x19b/0x2a0 [ 34.038056] ? __lockdep_init_map+0x100/0x5a0 [ 34.042530] mount_fs+0xa3/0x310 [ 34.045878] vfs_kern_mount.part.0+0x68/0x470 [ 34.050357] do_mount+0x113c/0x2f10 [ 34.053980] ? __do_page_fault+0x180/0xd60 [ 34.058191] ? copy_mount_string+0x40/0x40 [ 34.062406] ? copy_mount_options+0x1cd/0x380 [ 34.066885] ? copy_mount_options+0x1da/0x380 [ 34.071380] ? copy_mount_options+0x1e9/0x380 [ 34.075857] ? copy_mount_options+0x26f/0x380 [ 34.080337] ksys_mount+0xcf/0x130 [ 34.083873] __x64_sys_mount+0xba/0x150 [ 34.087828] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 34.092393] do_syscall_64+0xf9/0x620 [ 34.096175] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 34.101344] RIP: 0033:0x44e61a [ 34.104517] Code: 48 c7 c2 c0 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 c8 03 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 34.123410] RSP: 002b:00007ffd6717d848 EFLAGS: 00000286 ORIG_RAX: 00000000000000a5 [ 34.131099] RAX: ffffffffffffffda RBX: 00007ffd6717d8a0 RCX: 000000000044e61a [ 34.138347] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007ffd6717d860 [ 34.145610] RBP: 00007ffd6717d860 R08: 00007ffd6717d8a0 R09: 0000000000000000 [ 34.152871] R10: 0000000000000000 R11: 0000000000000286 R12: 0000000020000248 [ 34.160143] R13: 0000000000000005 R14: 0000000000000006 R15: 0000000000000003 [ 34.167394] Modules linked in: [ 34.171715] ---[ end trace fa98b62870b06e8d ]--- [ 34.176566] RIP: 0010:iput+0x727/0x860 [ 34.180804] Code: b8 00 00 00 00 00 fc ff df 48 c1 ea 03 80 3c 02 00 0f 84 18 fd ff ff 48 8b 3c 24 e8 43 db ee ff e9 0a fd ff ff e8 79 0e b9 ff <0f> 0b e8 72 0e b9 ff 48 89 ef e8 1a f7 ff ff 4c 89 f7 e8 12 fb 6e [ 34.200152] RSP: 0018:ffff8880b159fa80 EFLAGS: 00010293 [ 34.205509] RAX: ffff8880af836340 RBX: 0000000000000040 RCX: ffffffff81a969ee [ 34.213358] RDX: 0000000000000000 RSI: ffffffff81a970b7 RDI: 0000000000000007 [ 34.220725] RBP: ffff88808dbf3500 R08: 0000000000000000 R09: 0000000000000000 [ 34.227989] R10: 0000000000000007 R11: 0000000000000000 R12: ffff8880b5243540 [ 34.235298] R13: ffff88808dbf3500 R14: 0000000000000000 R15: 00000000fffffff4 [ 34.242898] FS: 0000000001d09300(0000) GS:ffff8880ba000000(0000) knlGS:0000000000000000 [ 34.251161] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 34.257044] CR2: 00007f231403a028 CR3: 000000009b349000 CR4: 00000000001406f0 [ 34.264375] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 34.271698] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 34.279012] Kernel panic - not syncing: Fatal exception [ 34.285228] Kernel Offset: disabled [ 34.288847] Rebooting in 86400 seconds..