INIT: Entering runlevel: 2
[[36minfo[39;49m] Using makefile-style concurrent boot in runlevel 2.
[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.7' (ECDSA) to the list of known hosts.
executing program
syzkaller login: [   29.123491] FAULT_INJECTION: forcing a failure.
[   29.123491] name failslab, interval 1, probability 0, space 0, times 1
[   29.134866] CPU: 0 PID: 4448 Comm: syzkaller751251 Not tainted 4.16.0-rc6+ #284
[   29.142294] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   29.151704] Call Trace:
[   29.154266]  dump_stack+0x194/0x24d
[   29.157869]  ? arch_local_irq_restore+0x53/0x53
[   29.162521]  should_fail+0x8c0/0xa40
[   29.166207]  ? trace_hardirqs_off+0x10/0x10
[   29.170503]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[   29.175581]  ? is_bpf_text_address+0x7b/0x120
[   29.180051]  ? trace_hardirqs_off+0x10/0x10
[   29.184351]  ? print_irqtrace_events+0x270/0x270
[   29.189085]  ? depot_save_stack+0x2ca/0x460
[   29.193385]  ? find_held_lock+0x35/0x1d0
[   29.197425]  ? nametbl_find_seq+0x1d0/0x580
[   29.201729]  ? lock_downgrade+0x980/0x980
[   29.205849]  ? lock_release+0xa40/0xa40
[   29.209800]  should_failslab+0xec/0x120
[   29.213746]  kmem_cache_alloc_trace+0x4b/0x740
[   29.218313]  ? nametbl_find_seq+0x3dd/0x580
[   29.222609]  tipc_nameseq_create+0xad/0x540
[   29.226902]  ? lock_release+0xa40/0xa40
[   29.230847]  ? __tipc_nl_add_monitor+0xf80/0xf80
[   29.235580]  ? tipc_nametbl_subscribe+0x2bc/0xf80
[   29.240398]  tipc_nametbl_subscribe+0xb8e/0xf80
[   29.245036]  ? print_irqtrace_events+0x270/0x270
[   29.249767]  ? find_held_lock+0x35/0x1d0
[   29.253803]  ? __lock_is_held+0xb6/0x140
[   29.257833]  ? tipc_nametbl_withdraw+0x9a0/0x9a0
[   29.262558]  ? mark_held_locks+0xaf/0x100
[   29.266676]  ? __raw_spin_lock_init+0x1c/0x100
[   29.271229]  ? trace_hardirqs_on_caller+0x421/0x5c0
[   29.276217]  ? __lockdep_init_map+0xe4/0x650
[   29.280599]  ? lockdep_init_map+0x9/0x10
[   29.284634]  tipc_sub_subscribe+0x342/0x510
[   29.288929]  ? tipc_sub_get+0x20/0x20
[   29.292726]  tipc_conn_rcv_sub.isra.5+0x383/0x760
[   29.297542]  ? tipc_conn_close+0x140/0x140
[   29.301757]  ? lock_release+0xa40/0xa40
[   29.305705]  ? __lock_is_held+0xb6/0x140
[   29.309747]  tipc_topsrv_kern_subscr+0x5fb/0x9d0
[   29.314483]  ? tipc_topsrv_queue_evt+0x6d0/0x6d0
[   29.319207]  ? tipc_group_create+0x2b6/0x990
[   29.323587]  ? lock_downgrade+0x980/0x980
[   29.327709]  ? memset+0x31/0x40
[   29.330963]  ? tipc_bcast_stop+0x350/0x350
[   29.335175]  tipc_group_create+0x6f2/0x990
[   29.339392]  ? tipc_group_size+0x50/0x50
[   29.343435]  ? mark_held_locks+0xaf/0x100
[   29.347569]  ? do_raw_spin_trylock+0x190/0x190
[   29.352129]  ? trace_hardirqs_on_caller+0x421/0x5c0
[   29.357120]  ? lock_sock_nested+0x91/0x110
[   29.361325]  ? trace_hardirqs_on+0xd/0x10
[   29.365445]  ? __local_bh_enable_ip+0x121/0x230
[   29.370091]  tipc_setsockopt+0x28a/0xcf0
[   29.374129]  ? tipc_sk_leave+0x200/0x200
[   29.378169]  ? __fdget+0x18/0x20
[   29.381507]  ? security_socket_setsockopt+0x89/0xb0
[   29.386499]  SyS_setsockopt+0x189/0x360
[   29.390448]  ? SyS_recv+0x40/0x40
[   29.393957]  ? SyS_write+0x184/0x220
[   29.397647]  ? SyS_read+0x220/0x220
[   29.401246]  ? do_syscall_64+0xb7/0x940
[   29.405193]  ? SyS_recv+0x40/0x40
[   29.408617]  do_syscall_64+0x281/0x940
[   29.412475]  ? __do_page_fault+0xc90/0xc90
[   29.416680]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   29.421407]  ? syscall_return_slowpath+0x550/0x550
[   29.426306]  ? syscall_return_slowpath+0x2ac/0x550
[   29.431209]  ? prepare_exit_to_usermode+0x350/0x350
[   29.436198]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[   29.441541]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   29.446362]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[   29.451523] RIP: 0033:0x440419
[   29.454682] RSP: 002b:00007ffc0537c0a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   29.462358] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000440419
[   29.469598] RDX: 0000000000000087 RSI: 000000000000010f RDI: 0000000000000003
[   29.476837] RBP: 00000000006cb018 R08: 0000000000000010 R09: 00007ffc05370034
[   29.484085] R10: 0000000020265000 R11: 0000000000000246 R12: 0000000000000004
[   29.491325] R13: ffffffffffffffff R14: 0000000000000000 R15: 0000000000000000
[   29.498841] Name sequence creation failed, no memory
[   29.503948] Failed to create subscription for {1020,0,4294967295}
[   29.511625] list_del corruption. prev->next should be 00000000fe4ad99f, but was           (null)
[   29.520767] ------------[ cut here ]------------
[   29.525500] kernel BUG at lib/list_debug.c:53!
[   29.530088] invalid opcode: 0000 [#1] SMP KASAN
[   29.534727] Dumping ftrace buffer:
[   29.538236]    (ftrace buffer empty)
[   29.541925] Modules linked in:
[   29.545090] CPU: 0 PID: 4448 Comm: syzkaller751251 Not tainted 4.16.0-rc6+ #284
[   29.552503] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   29.561835] RIP: 0010:__list_del_entry_valid+0xef/0x150
[   29.567167] RSP: 0018:ffff8801b0016ec8 EFLAGS: 00010282
[   29.572498] RAX: 0000000000000054 RBX: ffffffff886edfe0 RCX: 0000000000000000
[   29.579738] RDX: 0000000000000054 RSI: 1ffff10036002d8e RDI: ffffed0036002dcd
[   29.586975] RBP: ffff8801b0016ee0 R08: 1ffff10036002d25 R09: 0000000000000000
[   29.594212] R10: ffff8801b0016da8 R11: 0000000000000000 R12: ffffffffffffffff
[   29.601453] R13: ffff8801b0017080 R14: ffff8801ca5d81d8 R15: ffff8801d3fd0b40
[   29.608694] FS:  0000000000000000(0000) GS:ffff8801db200000(0000) knlGS:0000000000000000
[   29.617157] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   29.623009] CR2: 0000000020265000 CR3: 0000000007a22004 CR4: 00000000001606f0
[   29.630254] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   29.637494] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   29.644733] Call Trace:
[   29.647292]  ? _raw_spin_lock_bh+0x39/0x40
[   29.651498]  tipc_nametbl_unsubscribe+0x337/0x990
[   29.656310]  ? __lock_acquire+0x664/0x3e00
[   29.660527]  ? tipc_nametbl_subscribe+0xf80/0xf80
[   29.665344]  ? trace_hardirqs_off+0x10/0x10
[   29.669636]  ? lock_acquire+0x1d5/0x580
[   29.673579]  ? lock_acquire+0x1d5/0x580
[   29.677521]  ? tipc_conn_delete_sub+0x237/0x4a0
[   29.682158]  ? tipc_conn_delete_sub+0x1f0/0x4a0
[   29.686805]  tipc_sub_unsubscribe+0x6d/0x2e0
[   29.691183]  ? tipc_sub_subscribe+0x510/0x510
[   29.695647]  ? tipc_conn_delete_sub+0x237/0x4a0
[   29.700288]  tipc_conn_delete_sub+0x324/0x4a0
[   29.704751]  ? tipc_topsrv_accept+0x340/0x340
[   29.709211]  ? trace_hardirqs_on+0xd/0x10
[   29.713327]  ? __local_bh_enable_ip+0x121/0x230
[   29.717972]  ? _raw_spin_unlock_bh+0x30/0x40
[   29.722350]  tipc_topsrv_kern_unsubscr+0x21d/0x350
[   29.727245]  ? tipc_dest_del+0x350/0x350
[   29.731275]  ? tipc_topsrv_kern_subscr+0x9d0/0x9d0
[   29.736171]  ? debug_check_no_locks_freed+0x3c0/0x3c0
[   29.741328]  ? debug_check_no_locks_freed+0x3c0/0x3c0
[   29.746487]  ? tipc_node_distr_xmit+0x212/0x2b0
[   29.751125]  tipc_group_delete+0x2c0/0x3d0
[   29.755332]  ? tipc_group_create+0x990/0x990
[   29.759715]  ? __tipc_shutdown+0x916/0xc80
[   29.763917]  ? find_held_lock+0x35/0x1d0
[   29.767950]  ? tipc_sk_respond+0x550/0x550
[   29.772156]  tipc_sk_leave+0x10b/0x200
[   29.776012]  ? tipc_sk_withdraw+0x6e0/0x6e0
[   29.780304]  ? trace_hardirqs_on_caller+0x421/0x5c0
[   29.785288]  ? lock_sock_nested+0x91/0x110
[   29.789493]  ? __local_bh_enable_ip+0x121/0x230
[   29.794133]  tipc_release+0x154/0xff0
[   29.797909]  ? mntput_no_expire+0x130/0xa90
[   29.802204]  ? tipc_sk_backlog_rcv+0x390/0x390
[   29.806755]  ? lock_release+0xa40/0xa40
[   29.810708]  ? list_lru_count_node+0x70/0x70
[   29.815090]  ? do_raw_spin_trylock+0x190/0x190
[   29.819651]  ? locks_remove_file+0x3fa/0x5a0
[   29.824029]  ? fcntl_setlk+0x1100/0x1100
[   29.828059]  ? fsnotify+0x7b3/0x1140
[   29.831748]  ? fsnotify_first_mark+0x2b0/0x2b0
[   29.836305]  sock_release+0x8d/0x1e0
[   29.839999]  ? sock_alloc_file+0x560/0x560
[   29.844204]  sock_close+0x16/0x20
[   29.847629]  __fput+0x327/0x7e0
[   29.850879]  ? fput+0x140/0x140
[   29.854129]  ? check_same_owner+0x320/0x320
[   29.858417]  ? _raw_spin_unlock_irq+0x27/0x70
[   29.862894]  ____fput+0x15/0x20
[   29.866142]  task_work_run+0x199/0x270
[   29.870013]  ? task_work_cancel+0x210/0x210
[   29.874302]  ? _raw_spin_unlock+0x22/0x30
[   29.878417]  ? switch_task_namespaces+0x87/0xc0
[   29.883058]  do_exit+0x9bb/0x1ad0
[   29.886476]  ? _raw_spin_unlock_irq+0x27/0x70
[   29.890948]  ? finish_task_switch+0x1c1/0x7e0
[   29.895412]  ? mm_update_next_owner+0x930/0x930
[   29.900051]  ? copy_overflow+0x20/0x20
[   29.903914]  ? __schedule+0x903/0x1ec0
[   29.907772]  ? __sched_text_start+0x8/0x8
[   29.911884]  ? lock_downgrade+0x980/0x980
[   29.915998]  ? __local_bh_enable_ip+0x121/0x230
[   29.920634]  ? trace_hardirqs_on_caller+0x421/0x5c0
[   29.925620]  ? release_sock+0x1d4/0x2a0
[   29.929563]  ? __local_bh_enable_ip+0x121/0x230
[   29.934202]  ? _raw_spin_unlock_bh+0x30/0x40
[   29.938580]  ? release_sock+0x1d4/0x2a0
[   29.942532]  ? __release_sock+0x360/0x360
[   29.946648]  ? tipc_nametbl_build_group+0x2a0/0x3a0
[   29.951644]  ? schedule+0xf5/0x430
[   29.955151]  ? __schedule+0x1ec0/0x1ec0
[   29.959096]  ? __fdget+0x18/0x20
[   29.962434]  ? security_socket_setsockopt+0x89/0xb0
[   29.967423]  ? exit_to_usermode_loop+0x8c/0x2f0
[   29.972063]  do_group_exit+0x149/0x400
[   29.975921]  ? trace_hardirqs_off+0xd/0x10
[   29.980133]  ? exit_to_usermode_loop+0x198/0x2f0
[   29.984865]  ? SyS_exit+0x30/0x30
[   29.988288]  ? trace_event_raw_event_sys_exit+0x260/0x260
[   29.993791]  ? do_syscall_64+0xb7/0x940
[   29.997743]  ? do_group_exit+0x400/0x400
[   30.001772]  SyS_exit_group+0x1d/0x20
[   30.005541]  do_syscall_64+0x281/0x940
[   30.009394]  ? __do_page_fault+0xc90/0xc90
[   30.013600]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   30.018327]  ? syscall_return_slowpath+0x550/0x550
[   30.023226]  ? syscall_return_slowpath+0x2ac/0x550
[   30.028126]  ? prepare_exit_to_usermode+0x350/0x350
[   30.033113]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[   30.038452]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   30.043270]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[   30.048445] RIP: 0033:0x43f0d8
[   30.051612] RSP: 002b:00007ffc0537c0d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[   30.059289] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 000000000043f0d8
[   30.066543] RDX: 0000000000000000 RSI: 000000000000003c RDI: 0000000000000000
[   30.073782] RBP: 00000000004bf1c8 R08: 00000000000000e7 R09: ffffffffffffffd0
[   30.081020] R10: 0000000020265000 R11: 0000000000000246 R12: 0000000000000001
[   30.088259] R13: 00000000006d1180 R14: 0000000000000000 R15: 0000000000000000
[   30.095503] Code: 4c 89 e2 48 c7 c7 40 8e e5 86 e8 a5 67 a7 fe 0f 0b 48 c7 c7 a0 8e e5 86 e8 97 67 a7 fe 0f 0b 48 c7 c7 00 8f e5 86 e8 89 67 a7 fe <0f> 0b 48 c7 c7 60 8f e5 86 e8 7b 67 a7 fe 0f 0b 48 89 df 48 89 
[   30.114579] RIP: __list_del_entry_valid+0xef/0x150 RSP: ffff8801b0016ec8
[   30.121421] ---[ end trace b069d07f6d18df08 ]---
[   30.126153] Kernel panic - not syncing: Fatal exception in interrupt
[   30.133023] Dumping ftrace buffer:
[   30.136536]    (ftrace buffer empty)
[   30.140216] Kernel Offset: disabled
[   30.143812] Rebooting in 86400 seconds..