[ 59.704971][ T21] process_one_work+0x965/0x1690 [ 59.709927][ T21] ? lock_release+0x800/0x800 [ 59.714615][ T21] ? pwq_dec_nr_in_flight+0x310/0x310 [ 59.719998][ T21] ? rwlock_bug.part.0+0x90/0x90 [ 59.724982][ T21] worker_thread+0x96/0xe10 [ 59.729502][ T21] ? process_one_work+0x1690/0x1690 [ 59.734707][ T21] kthread+0x3b5/0x4a0 [ 59.738782][ T21] ? kthread_mod_delayed_work+0x1a0/0x1a0 [ 59.744503][ T21] ? kthread_mod_delayed_work+0x1a0/0x1a0 [ 59.750232][ T21] ret_from_fork+0x1f/0x30 Warning: Permanently added '10.128.1.17' (ECDSA) to the list of known hosts. 2020/06/15 20:33:47 fuzzer started 2020/06/15 20:33:47 connecting to host at 10.128.0.26:38155 2020/06/15 20:33:47 checking machine... 2020/06/15 20:33:47 checking revisions... 2020/06/15 20:33:47 testing simple program... [ 66.816271][ T6786] BUG: using smp_processor_id() in preemptible [00000000] code: syz-fuzzer/6786 [ 66.825523][ T6786] caller is ext4_mb_new_blocks+0xa4d/0x3b70 [ 66.831539][ T6786] CPU: 1 PID: 6786 Comm: syz-fuzzer Not tainted 5.8.0-rc1-syzkaller #0 [ 66.839787][ T6786] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 66.849827][ T6786] Call Trace: [ 66.853226][ T6786] dump_stack+0x18f/0x20d [ 66.857565][ T6786] check_preemption_disabled+0x20d/0x220 [ 66.863194][ T6786] ext4_mb_new_blocks+0xa4d/0x3b70 [ 66.868312][ T6786] ? ext4_ext_search_right+0x2ca/0xb20 [ 66.873785][ T6786] ? ext4_inode_to_goal_block+0x2df/0x3f0 [ 66.879508][ T6786] ext4_ext_map_blocks+0x201b/0x33e0 [ 66.884802][ T6786] ? ext4_ext_release+0x10/0x10 [ 66.889650][ T6786] ? down_write_killable+0x170/0x170 [ 66.895027][ T6786] ? ext4_es_lookup_extent+0x41d/0xd10 [ 66.900495][ T6786] ext4_map_blocks+0x4cb/0x1640 [ 66.905328][ T6786] ? ext4_issue_zeroout+0x1e0/0x1e0 [ 66.910506][ T6786] ? rcu_read_lock_sched_held+0x9c/0xd0 [ 66.916078][ T6786] ? rcu_read_lock_any_held.part.0+0x50/0x50 [ 66.922500][ T6786] ? prandom_u32_state+0xe/0x170 [ 66.927444][ T6786] ? __brelse+0x84/0xa0 [ 66.931581][ T6786] ? __ext4_new_inode+0x144/0x55e0 [ 66.936673][ T6786] ext4_getblk+0xad/0x520 [ 66.940986][ T6786] ? ext4_iomap_overwrite_begin+0xa0/0xa0 [ 66.946684][ T6786] ? ext4_free_inode+0x1700/0x1700 [ 66.951787][ T6786] ext4_bread+0x7c/0x380 [ 66.956096][ T6786] ? ext4_getblk+0x520/0x520 [ 66.960706][ T6786] ? dquot_get_next_dqblk+0x180/0x180 [ 66.966070][ T6786] ext4_append+0x153/0x360 [ 66.970583][ T6786] ext4_mkdir+0x5e0/0xdf0 [ 66.974894][ T6786] ? ext4_rmdir+0xde0/0xde0 [ 66.979386][ T6786] ? security_inode_permission+0xc4/0xf0 [ 66.985019][ T6786] vfs_mkdir+0x419/0x690 [ 66.989243][ T6786] do_mkdirat+0x21e/0x280 [ 66.993561][ T6786] ? __ia32_sys_mknod+0xb0/0xb0 [ 66.998392][ T6786] ? do_syscall_64+0x1c/0xe0 [ 67.002974][ T6786] ? lockdep_hardirqs_on_prepare+0x3a2/0x590 [ 67.009089][ T6786] do_syscall_64+0x60/0xe0 [ 67.013509][ T6786] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 67.019404][ T6786] RIP: 0033:0x4b02a0 [ 67.023275][ T6786] Code: Bad RIP value. [ 67.027324][ T6786] RSP: 002b:000000c0003cd4b8 EFLAGS: 00000212 ORIG_RAX: 0000000000000102 [ 67.035742][ T6786] RAX: ffffffffffffffda RBX: 000000c00002e500 RCX: 00000000004b02a0 [ 67.043708][ T6786] RDX: 00000000000001c0 RSI: 000000c000026700 RDI: ffffffffffffff9c [ 67.051679][ T6786] RBP: 000000c0003cd510 R08: 0000000000000000 R09: 0000000000000000 [ 67.059629][ T6786] R10: 0000000000000000 R11: 0000000000000212 R12: ffffffffffffffff [ 67.067585][ T6786] R13: 0000000000000039 R14: 0000000000000038 R15: 0000000000000100 [ 67.099419][ T6798] BUG: using smp_processor_id() in preemptible [00000000] code: syz-executor.0/6798 [ 67.109113][ T6798] caller is ext4_mb_new_blocks+0xa4d/0x3b70 [ 67.115040][ T6798] CPU: 0 PID: 6798 Comm: syz-executor.0 Not tainted 5.8.0-rc1-syzkaller #0 [ 67.123668][ T6798] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 67.133727][ T6798] Call Trace: [ 67.137019][ T6798] dump_stack+0x18f/0x20d [ 67.141730][ T6798] check_preemption_disabled+0x20d/0x220 [ 67.147452][ T6798] ext4_mb_new_blocks+0xa4d/0x3b70 [ 67.152586][ T6798] ? ext4_ext_search_right+0x2ca/0xb20 [ 67.158167][ T6798] ? ext4_inode_to_goal_block+0x2df/0x3f0 [ 67.164939][ T6798] ext4_ext_map_blocks+0x201b/0x33e0 [ 67.171352][ T6798] ? ext4_ext_release+0x10/0x10 [ 67.176404][ T6798] ? down_write_killable+0x170/0x170 [ 67.181677][ T6798] ? ext4_es_lookup_extent+0x41d/0xd10 [ 67.187140][ T6798] ext4_map_blocks+0x4cb/0x1640 [ 67.192070][ T6798] ? ext4_issue_zeroout+0x1e0/0x1e0 [ 67.197263][ T6798] ? rcu_read_lock_sched_held+0x9c/0xd0 [ 67.202797][ T6798] ? rcu_read_lock_any_held.part.0+0x50/0x50 [ 67.208794][ T6798] ? prandom_u32_state+0xe/0x170 [ 67.213730][ T6798] ? __brelse+0x84/0xa0 [ 67.217892][ T6798] ? __ext4_new_inode+0x144/0x55e0 [ 67.223006][ T6798] ext4_getblk+0xad/0x520 [ 67.227597][ T6798] ? ext4_iomap_overwrite_begin+0xa0/0xa0 [ 67.233789][ T6798] ? ext4_free_inode+0x1700/0x1700 [ 67.238898][ T6798] ext4_bread+0x7c/0x380 [ 67.243122][ T6798] ? ext4_getblk+0x520/0x520 [ 67.247796][ T6798] ? dquot_get_next_dqblk+0x180/0x180 [ 67.253164][ T6798] ext4_append+0x153/0x360 [ 67.258181][ T6798] ext4_mkdir+0x5e0/0xdf0 [ 67.263089][ T6798] ? ext4_rmdir+0xde0/0xde0 [ 67.267592][ T6798] ? security_inode_permission+0xc4/0xf0 [ 67.273233][ T6798] vfs_mkdir+0x419/0x690 [ 67.277467][ T6798] do_mkdirat+0x21e/0x280 [ 67.281787][ T6798] ? __ia32_sys_mknod+0xb0/0xb0 [ 67.286634][ T6798] ? do_syscall_64+0x1c/0xe0 [ 67.291466][ T6798] ? lockdep_hardirqs_on_prepare+0x3a2/0x590 [ 67.298121][ T6798] do_syscall_64+0x60/0xe0 [ 67.302553][ T6798] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 67.308802][ T6798] RIP: 0033:0x45bed7 [ 67.312674][ T6798] Code: Bad RIP value. [ 67.316911][ T6798] RSP: 002b:00007fff64f153a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 67.325325][ T6798] RAX: ffffffffffffffda RBX: 000000000003a2f8 RCX: 000000000045bed7 [ 67.333297][ T6798] RDX: 0000000000000002 RSI: 00000000000001c0 RDI: 00007fff64f15580 [ 67.341254][ T6798] RBP: 0000000000000001 R08: 000000000000f8c0 R09: 0000000000002e40 [ 67.349233][ T6798] R10: 0000000000000011 R11: 0000000000000246 R12: 00000000000000c2 [ 67.357447][ T6798] R13: 00007fff64f15580 R14: 8421084210842109 R15: 00007fff64f1558c [ 67.443562][ T6799] IPVS: ftp: loaded support on port[0] = 21 [ 67.480272][ T6799] BUG: using smp_processor_id() in preemptible [00000000] code: syz-executor.0/6799 [ 67.490606][ T6799] caller is ext4_mb_new_blocks+0xa4d/0x3b70 [ 67.496483][ T6799] CPU: 0 PID: 6799 Comm: syz-executor.0 Not tainted 5.8.0-rc1-syzkaller #0 [ 67.505130][ T6799] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 67.515166][ T6799] Call Trace: [ 67.518442][ T6799] dump_stack+0x18f/0x20d [ 67.523711][ T6799] check_preemption_disabled+0x20d/0x220 [ 67.532125][ T6799] ext4_mb_new_blocks+0xa4d/0x3b70 [ 67.537686][ T6799] ? ext4_ext_search_right+0x2ca/0xb20 [ 67.543245][ T6799] ? ext4_inode_to_goal_block+0x2df/0x3f0 [ 67.548952][ T6799] ext4_ext_map_blocks+0x201b/0x33e0 [ 67.554412][ T6799] ? ext4_ext_release+0x10/0x10 [ 67.559257][ T6799] ? down_write_killable+0x170/0x170 [ 67.564590][ T6799] ? ext4_es_lookup_extent+0x41d/0xd10 [ 67.571010][ T6799] ext4_map_blocks+0x4cb/0x1640 [ 67.575855][ T6799] ? ext4_issue_zeroout+0x1e0/0x1e0 [ 67.581036][ T6799] ? rcu_read_lock_sched_held+0x9c/0xd0 [ 67.586563][ T6799] ? rcu_read_lock_any_held.part.0+0x50/0x50 [ 67.592802][ T6799] ? prandom_u32_state+0xe/0x170 [ 67.597761][ T6799] ? __brelse+0x84/0xa0 [ 67.601899][ T6799] ? __ext4_new_inode+0x144/0x55e0 [ 67.607019][ T6799] ext4_getblk+0xad/0x520 [ 67.611350][ T6799] ? ext4_iomap_overwrite_begin+0xa0/0xa0 [ 67.617057][ T6799] ? ext4_free_inode+0x1700/0x1700 [ 67.622185][ T6799] ext4_bread+0x7c/0x380 [ 67.626928][ T6799] ? ext4_getblk+0x520/0x520 [ 67.631497][ T6799] ? dquot_get_next_dqblk+0x180/0x180 [ 67.636863][ T6799] ext4_append+0x153/0x360 [ 67.641271][ T6799] ext4_mkdir+0x5e0/0xdf0 [ 67.645685][ T6799] ? ext4_rmdir+0xde0/0xde0 [ 67.650180][ T6799] ? security_inode_permission+0xc4/0xf0 [ 67.655794][ T6799] vfs_mkdir+0x419/0x690 [ 67.660021][ T6799] do_mkdirat+0x21e/0x280 [ 67.664329][ T6799] ? __ia32_sys_mknod+0xb0/0xb0 [ 67.669182][ T6799] ? do_syscall_64+0x1c/0xe0 [ 67.673748][ T6799] ? lockdep_hardirqs_on_prepare+0x3a2/0x590 [ 67.679721][ T6799] do_syscall_64+0x60/0xe0 [ 67.684118][ T6799] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 67.689985][ T6799] RIP: 0033:0x45bed7 [ 67.693875][ T6799] Code: Bad RIP value. [ 67.697932][ T6799] RSP: 002b:00007fff64f15298 EFLAGS: 00000202 ORIG_RAX: 0000000000000053 [ 67.706361][ T6799] RAX: ffffffffffffffda RBX: 000000000078c988 RCX: 000000000045bed7 [ 67.714330][ T6799] RDX: 00007fff64f152e3 RSI: 00000000000001ff RDI: 00007fff64f152e0 [ 67.722283][ T6799] RBP: 00000000000000f8 R08: 0000000000000000 R09: 0000000000000003 [ 67.730246][ T6799] R10: 0000000000000064 R11: 0000000000000202 R12: 00000000004185c0 [ 67.738209][ T6799] R13: 00007fff64f152d0 R14: 0000000000000000 R15: 00007fff64f152e0 [ 67.793789][ T6799] BUG: using smp_processor_id() in preemptible [00000000] code: syz-executor.0/6799 [ 67.803277][ T6799] caller is ext4_mb_new_blocks+0xa4d/0x3b70 [ 67.809292][ T6799] CPU: 0 PID: 6799 Comm: syz-executor.0 Not tainted 5.8.0-rc1-syzkaller #0 [ 67.817874][ T6799] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 67.827933][ T6799] Call Trace: [ 67.831218][ T6799] dump_stack+0x18f/0x20d [ 67.835544][ T6799] check_preemption_disabled+0x20d/0x220 [ 67.841187][ T6799] ext4_mb_new_blocks+0xa4d/0x3b70 [ 67.846320][ T6799] ? ext4_ext_search_right+0x2ca/0xb20 [ 67.851788][ T6799] ? ext4_inode_to_goal_block+0x2df/0x3f0 [ 67.857528][ T6799] ext4_ext_map_blocks+0x201b/0x33e0 [ 67.862839][ T6799] ? ext4_ext_release+0x10/0x10 [ 67.867720][ T6799] ? down_write_killable+0x170/0x170 [ 67.873022][ T6799] ? ext4_es_lookup_extent+0x41d/0xd10 [ 67.878584][ T6799] ext4_map_blocks+0x4cb/0x1640 [ 67.883458][ T6799] ? ext4_issue_zeroout+0x1e0/0x1e0 [ 67.888665][ T6799] ? rcu_read_lock_sched_held+0x9c/0xd0 [ 67.894223][ T6799] ? rcu_read_lock_any_held.part.0+0x50/0x50 [ 67.900218][ T6799] ? prandom_u32_state+0xe/0x170 [ 67.905358][ T6799] ? __brelse+0x84/0xa0 [ 67.909546][ T6799] ? __ext4_new_inode+0x144/0x55e0 [ 67.914656][ T6799] ext4_getblk+0xad/0x520 [ 67.918972][ T6799] ? ext4_iomap_overwrite_begin+0xa0/0xa0 [ 67.924697][ T6799] ? ext4_free_inode+0x1700/0x1700 [ 67.929806][ T6799] ext4_bread+0x7c/0x380 [ 67.934037][ T6799] ? ext4_getblk+0x520/0x520 [ 67.938619][ T6799] ? dquot_get_next_dqblk+0x180/0x180 [ 67.944059][ T6799] ext4_append+0x153/0x360 [ 67.949080][ T6799] ext4_mkdir+0x5e0/0xdf0 [ 67.953399][ T6799] ? ext4_rmdir+0xde0/0xde0 [ 67.958049][ T6799] ? security_inode_permission+0xc4/0xf0 [ 67.963688][ T6799] vfs_mkdir+0x419/0x690 [ 67.968135][ T6799] do_mkdirat+0x21e/0x280 [ 67.972454][ T6799] ? __ia32_sys_mknod+0xb0/0xb0 [ 67.977285][ T6799] ? do_syscall_64+0x1c/0xe0 [ 67.981854][ T6799] ? lockdep_hardirqs_on_prepare+0x3a2/0x590 [ 67.987813][ T6799] do_syscall_64+0x60/0xe0 2020/06/15 20:33:49 building call list... [ 67.992211][ T6799] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 67.998082][ T6799] RIP: 0033:0x45bed7 [ 68.001947][ T6799] Code: Bad RIP value. [ 68.005998][ T6799] RSP: 002b:00007fff64f15298 EFLAGS: 00000202 ORIG_RAX: 0000000000000053 [ 68.014383][ T6799] RAX: ffffffffffffffda RBX: 00000000000108bf RCX: 000000000045bed7 [ 68.022329][ T6799] RDX: 00007fff64f152e3 RSI: 00000000000001ff RDI: 00007fff64f152e0 [ 68.030279][ T6799] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000003 [ 68.038226][ T6799] R10: 0000000000000064 R11: 0000000000000202 R12: 0000000000000003 [ 68.046346][ T6799] R13: 00007fff64f152d0 R14: 00000000000108b7 R15: 00007fff64f152e0 [ 68.267121][ T459] tipc: TX() has been purged, node left! [ 68.779001][ T459] ================================================================== [ 68.787333][ T459] BUG: KASAN: use-after-free in afs_wake_up_async_call+0x6aa/0x770 [ 68.795220][ T459] Write of size 1 at addr ffff8880948511e4 by task kworker/u4:7/459 [ 68.803181][ T459] [ 68.805515][ T459] CPU: 0 PID: 459 Comm: kworker/u4:7 Not tainted 5.8.0-rc1-syzkaller #0 [ 68.813830][ T459] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 68.823908][ T459] Workqueue: netns cleanup_net [ 68.828663][ T459] Call Trace: [ 68.831956][ T459] dump_stack+0x18f/0x20d [ 68.836289][ T459] ? afs_wake_up_async_call+0x6aa/0x770 [ 68.841829][ T459] ? afs_wake_up_async_call+0x6aa/0x770 [ 68.847369][ T459] ? afs_put_call+0xa40/0xa40 [ 68.852046][ T459] print_address_description.constprop.0.cold+0xd3/0x413 [ 68.859072][ T459] ? vprintk_func+0x97/0x1a6 [ 68.863664][ T459] ? afs_wake_up_async_call+0x6aa/0x770 [ 68.869203][ T459] kasan_report.cold+0x1f/0x37 [ 68.873968][ T459] ? rcu_read_lock_held_common+0x51/0xa0 [ 68.879611][ T459] ? afs_wake_up_async_call+0x6aa/0x770 [ 68.885173][ T459] afs_wake_up_async_call+0x6aa/0x770 [ 68.890547][ T459] ? afs_close_socket+0x320/0x320 [ 68.895571][ T459] ? afs_put_call+0xa40/0xa40 [ 68.900248][ T459] rxrpc_notify_socket+0x1db/0x5d0 [ 68.905361][ T459] ? afs_put_call+0xa40/0xa40 [ 68.910041][ T459] __rxrpc_set_call_completion.part.0+0x172/0x410 [ 68.916455][ T459] rxrpc_call_completed+0xca/0xf0 [ 68.921492][ T459] rxrpc_discard_prealloc+0x781/0xab0 [ 68.926886][ T459] ? lock_sock_nested+0x94/0x110 [ 68.931827][ T459] rxrpc_listen+0x147/0x360 [ 68.936331][ T459] afs_close_socket+0x95/0x320 [ 68.941093][ T459] ? afs_purge_servers+0x16d/0x300 [ 68.946222][ T459] ? afs_rx_discard_new_call+0x50/0x50 [ 68.951702][ T459] ? init_wait_var_entry+0x200/0x200 [ 68.957075][ T459] ? rcu_read_lock_held_common+0xa0/0xa0 [ 68.962703][ T459] ? check_preemption_disabled+0x38/0x220 [ 68.968422][ T459] afs_net_exit+0x1bc/0x310 [ 68.972921][ T459] ? afs_net_init+0xe30/0xe30 [ 68.977598][ T459] ops_exit_list.isra.0+0xa8/0x150 [ 68.982708][ T459] cleanup_net+0x511/0xa50 [ 68.987125][ T459] ? unregister_pernet_device+0x70/0x70 [ 68.992670][ T459] ? rcu_read_lock_any_held.part.0+0x50/0x50 [ 68.998654][ T459] process_one_work+0x965/0x1690 [ 69.003600][ T459] ? lock_release+0x800/0x800 [ 69.008279][ T459] ? pwq_dec_nr_in_flight+0x310/0x310 [ 69.013650][ T459] ? rwlock_bug.part.0+0x90/0x90 [ 69.018597][ T459] worker_thread+0x96/0xe10 [ 69.023110][ T459] ? process_one_work+0x1690/0x1690 [ 69.028307][ T459] kthread+0x3b5/0x4a0 [ 69.032371][ T459] ? kthread_mod_delayed_work+0x1a0/0x1a0 [ 69.038098][ T459] ? kthread_mod_delayed_work+0x1a0/0x1a0 [ 69.043837][ T459] ret_from_fork+0x1f/0x30 [ 69.048300][ T459] [ 69.050628][ T459] Allocated by task 6799: [ 69.054972][ T459] save_stack+0x1b/0x40 [ 69.059146][ T459] __kasan_kmalloc.constprop.0+0xbf/0xd0 [ 69.064781][ T459] kmem_cache_alloc_trace+0x153/0x7d0 [ 69.070166][ T459] afs_alloc_call+0x55/0x630 [ 69.074924][ T459] afs_charge_preallocation+0xe9/0x2d0 [ 69.080398][ T459] afs_open_socket+0x292/0x360 [ 69.085174][ T459] afs_net_init+0xa6c/0xe30 [ 69.089688][ T459] ops_init+0xaf/0x420 [ 69.093759][ T459] setup_net+0x2de/0x860 [ 69.097994][ T459] copy_net_ns+0x293/0x590 [ 69.102425][ T459] create_new_namespaces+0x3fb/0xb30 [ 69.107723][ T459] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 69.113528][ T459] ksys_unshare+0x43d/0x8e0 [ 69.118029][ T459] __x64_sys_unshare+0x2d/0x40 [ 69.122790][ T459] do_syscall_64+0x60/0xe0 [ 69.127201][ T459] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 69.133084][ T459] [ 69.135404][ T459] Freed by task 459: [ 69.139295][ T459] save_stack+0x1b/0x40 [ 69.143548][ T459] __kasan_slab_free+0xf7/0x140 [ 69.148419][ T459] kfree+0x109/0x2b0 [ 69.152319][ T459] afs_put_call+0x585/0xa40 [ 69.156846][ T459] rxrpc_discard_prealloc+0x764/0xab0 [ 69.162217][ T459] rxrpc_listen+0x147/0x360 [ 69.166714][ T459] afs_close_socket+0x95/0x320 [ 69.171481][ T459] afs_net_exit+0x1bc/0x310 [ 69.175987][ T459] ops_exit_list.isra.0+0xa8/0x150 [ 69.181091][ T459] cleanup_net+0x511/0xa50 [ 69.185507][ T459] process_one_work+0x965/0x1690 [ 69.190567][ T459] worker_thread+0x96/0xe10 [ 69.195062][ T459] kthread+0x3b5/0x4a0 [ 69.199129][ T459] ret_from_fork+0x1f/0x30 [ 69.203519][ T459] [ 69.205856][ T459] The buggy address belongs to the object at ffff888094851000 [ 69.205856][ T459] which belongs to the cache kmalloc-1k of size 1024 [ 69.219904][ T459] The buggy address is located 484 bytes inside of [ 69.219904][ T459] 1024-byte region [ffff888094851000, ffff888094851400) [ 69.233263][ T459] The buggy address belongs to the page: [ 69.238896][ T459] page:ffffea0002521440 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 [ 69.248016][ T459] flags: 0xfffe0000000200(slab) [ 69.252890][ T459] raw: 00fffe0000000200 ffffea0002893788 ffffea000280afc8 ffff8880aa000c40 [ 69.261561][ T459] raw: 0000000000000000 ffff888094851000 0000000100000002 0000000000000000 [ 69.270133][ T459] page dumped because: kasan: bad access detected [ 69.276531][ T459] [ 69.278851][ T459] Memory state around the buggy address: [ 69.284479][ T459] ffff888094851080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 69.292535][ T459] ffff888094851100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 69.300595][ T459] >ffff888094851180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 69.308645][ T459] ^ [ 69.315836][ T459] ffff888094851200: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 69.323915][ T459] ffff888094851280: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 69.331964][ T459] ================================================================== [ 69.340013][ T459] Disabling lock debugging due to kernel taint [ 69.346211][ T459] Kernel panic - not syncing: panic_on_warn set ... [ 69.352805][ T459] CPU: 0 PID: 459 Comm: kworker/u4:7 Tainted: G B 5.8.0-rc1-syzkaller #0 [ 69.362509][ T459] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 69.372564][ T459] Workqueue: netns cleanup_net [ 69.377316][ T459] Call Trace: [ 69.380597][ T459] dump_stack+0x18f/0x20d [ 69.384921][ T459] ? afs_wake_up_async_call+0x670/0x770 [ 69.390453][ T459] ? afs_put_call+0xa40/0xa40 [ 69.395124][ T459] panic+0x2e3/0x75c [ 69.399017][ T459] ? __warn_printk+0xf3/0xf3 [ 69.403605][ T459] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 69.410189][ T459] ? trace_hardirqs_on+0x55/0x220 [ 69.415206][ T459] ? afs_wake_up_async_call+0x6aa/0x770 [ 69.420739][ T459] ? afs_wake_up_async_call+0x6aa/0x770 [ 69.426275][ T459] ? afs_put_call+0xa40/0xa40 [ 69.430942][ T459] end_report+0x4d/0x53 [ 69.435088][ T459] kasan_report.cold+0xd/0x37 [ 69.439763][ T459] ? rcu_read_lock_held_common+0x51/0xa0 [ 69.445385][ T459] ? afs_wake_up_async_call+0x6aa/0x770 [ 69.450924][ T459] afs_wake_up_async_call+0x6aa/0x770 [ 69.456367][ T459] ? afs_close_socket+0x320/0x320 [ 69.461381][ T459] ? afs_put_call+0xa40/0xa40 [ 69.466062][ T459] rxrpc_notify_socket+0x1db/0x5d0 [ 69.471166][ T459] ? afs_put_call+0xa40/0xa40 [ 69.475836][ T459] __rxrpc_set_call_completion.part.0+0x172/0x410 [ 69.482245][ T459] rxrpc_call_completed+0xca/0xf0 [ 69.487283][ T459] rxrpc_discard_prealloc+0x781/0xab0 [ 69.492645][ T459] ? lock_sock_nested+0x94/0x110 [ 69.497574][ T459] rxrpc_listen+0x147/0x360 [ 69.502067][ T459] afs_close_socket+0x95/0x320 [ 69.506825][ T459] ? afs_purge_servers+0x16d/0x300 [ 69.511953][ T459] ? afs_rx_discard_new_call+0x50/0x50 [ 69.517419][ T459] ? init_wait_var_entry+0x200/0x200 [ 69.522696][ T459] ? rcu_read_lock_held_common+0xa0/0xa0 [ 69.528317][ T459] ? check_preemption_disabled+0x38/0x220 [ 69.534031][ T459] afs_net_exit+0x1bc/0x310 [ 69.538540][ T459] ? afs_net_init+0xe30/0xe30 [ 69.543205][ T459] ops_exit_list.isra.0+0xa8/0x150 [ 69.548307][ T459] cleanup_net+0x511/0xa50 [ 69.552770][ T459] ? unregister_pernet_device+0x70/0x70 [ 69.558311][ T459] ? rcu_read_lock_any_held.part.0+0x50/0x50 [ 69.564298][ T459] process_one_work+0x965/0x1690 [ 69.569227][ T459] ? lock_release+0x800/0x800 [ 69.573894][ T459] ? pwq_dec_nr_in_flight+0x310/0x310 [ 69.579261][ T459] ? rwlock_bug.part.0+0x90/0x90 [ 69.584194][ T459] worker_thread+0x96/0xe10 [ 69.588692][ T459] ? process_one_work+0x1690/0x1690 [ 69.593879][ T459] kthread+0x3b5/0x4a0 [ 69.597938][ T459] ? kthread_mod_delayed_work+0x1a0/0x1a0 [ 69.603647][ T459] ? kthread_mod_delayed_work+0x1a0/0x1a0 [ 69.609373][ T459] ret_from_fork+0x1f/0x30 [ 69.615149][ T459] Kernel Offset: disabled [ 69.619510][ T459] Rebooting in 86400 seconds..