[ OK ] Started Getty on tty2. [ OK ] Started Getty on tty1. [ OK ] Started Serial Getty on ttyS0. [ OK ] Reached target Login Prompts. [ OK ] Started OpenBSD Secure Shell server. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.125' (ECDSA) to the list of known hosts. syzkaller login: [ 195.732999] FAULT_INJECTION: forcing a failure. [ 195.732999] name failslab, interval 1, probability 0, space 0, times 1 [ 195.745338] CPU: 1 PID: 8093 Comm: syz-executor899 Not tainted 4.19.190-syzkaller #0 [ 195.753630] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 195.763437] Call Trace: [ 195.766293] dump_stack+0x1fc/0x2ef [ 195.769939] should_fail.cold+0xa/0xf [ 195.774110] ? setup_fault_attr+0x200/0x200 [ 195.778795] ? lock_acquire+0x170/0x3c0 [ 195.782772] __should_failslab+0x115/0x180 [ 195.787027] should_failslab+0x5/0x10 [ 195.790843] kmem_cache_alloc+0x277/0x370 [ 195.794997] anon_vma_fork+0x1df/0x630 [ 195.798877] ? dup_userfaultfd+0x157/0x6b0 [ 195.803862] copy_process.part.0+0x360f/0x8260 [ 195.808557] ? __cleanup_sighand+0x60/0x60 [ 195.812807] ? _raw_spin_unlock_irq+0x24/0x80 [ 195.817852] ? _raw_spin_unlock_irq+0x5a/0x80 [ 195.822369] ? do_sigaction+0x387/0x880 [ 195.826391] _do_fork+0x22f/0xf30 [ 195.830076] ? fork_idle+0x220/0x220 [ 195.834618] ? do_sigaction+0x880/0x880 [ 195.839695] ? _raw_spin_unlock_irq+0x5a/0x80 [ 195.844414] ? task_work_run+0x126/0x1c0 [ 195.848717] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 195.854095] ? trace_hardirqs_off_caller+0x6e/0x210 [ 195.860013] ? do_syscall_64+0x21/0x620 [ 195.865419] do_syscall_64+0xf9/0x620 [ 195.871047] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 195.876605] RIP: 0033:0x44941b executing program executing program [ 195.879882] Code: ed 0f 85 60 01 00 00 64 4c 8b 0c 25 10 00 00 00 45 31 c0 4d 8d 91 d0 02 00 00 31 d2 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 89 00 00 00 41 89 c5 85 c0 0f 85 90 00 00 [ 195.899420] RSP: 002b:00007ffd15f2d5d0 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 195.907226] RAX: ffffffffffffffda RBX: 00007ffd15f2d670 RCX: 000000000044941b [ 195.914902] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011 [ 195.922184] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000001882400 executing program executing program executing program [ 195.929649] R10: 00000000018826d0 R11: 0000000000000246 R12: 0000000000000000 [ 195.937947] R13: 0000000000000000 R14: 00000000004c9018 R15: 00000000004004e8 [ 195.963441] erofs: read_super, device -> /dev/loop4 [ 195.969672] erofs: options -> [ 195.973461] FAULT_INJECTION: forcing a failure. [ 195.973461] name failslab, interval 1, probability 0, space 0, times 0 [ 195.989110] erofs: read_super, device -> /dev/loop2 [ 195.994685] erofs: options -> [ 195.999938] CPU: 1 PID: 8102 Comm: syz-executor899 Not tainted 4.19.190-syzkaller #0 [ 196.009032] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 196.013903] erofs: read_super, device -> /dev/loop1 [ 196.019372] Call Trace: [ 196.019399] dump_stack+0x1fc/0x2ef [ 196.019418] should_fail.cold+0xa/0xf [ 196.019432] ? do_mount+0x113c/0x2f10 [ 196.019446] ? setup_fault_attr+0x200/0x200 [ 196.019459] ? blk_queue_enter+0x40b/0xb70 [ 196.019489] __should_failslab+0x115/0x180 [ 196.030320] erofs: options -> [ 196.030832] should_failslab+0x5/0x10 [ 196.051602] erofs: root inode @ nid 36 [ 196.051853] kmem_cache_alloc_node+0x54/0x3b0 [ 196.065532] erofs: mounted on /dev/loop1 with opts: . [ 196.067551] create_task_io_context+0x2c/0x430 [ 196.067570] generic_make_request_checks+0x1c4f/0x22e0 [ 196.067589] ? should_fail_bio.isra.0+0xa0/0xa0 [ 196.067605] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 196.067619] ? kmem_cache_alloc+0x315/0x370 [ 196.067637] generic_make_request+0x23f/0xdf0 [ 196.081119] FAULT_INJECTION: forcing a failure. [ 196.081119] name failslab, interval 1, probability 0, space 0, times 0 [ 196.083380] ? blk_put_request+0x110/0x110 [ 196.083399] ? lock_downgrade+0x720/0x720 [ 196.083419] submit_bio+0xb1/0x430 [ 196.083438] ? generic_make_request+0xdf0/0xdf0 [ 196.130420] ? check_preemption_disabled+0x41/0x280 [ 196.135563] ? guard_bio_eod+0x2a0/0x650 [ 196.139653] submit_bh_wbc+0x5a7/0x760 [ 196.143689] __bread_gfp+0x14e/0x300 [ 196.147433] erofs_fill_super+0x207/0x12cc [ 196.151743] ? gb_gbphy_register_driver.cold+0x39/0x39 [ 196.157240] ? vsprintf+0x30/0x30 [ 196.160915] ? wait_for_completion_io+0x10/0x10 [ 196.165893] ? set_blocksize+0x163/0x3f0 [ 196.169981] mount_bdev+0x2fc/0x3b0 [ 196.173737] ? gb_gbphy_register_driver.cold+0x39/0x39 [ 196.179059] erofs_mount+0x8c/0xc0 [ 196.182626] ? erofs_kill_sb+0x20/0x20 [ 196.186547] ? alloc_pages_current+0x19b/0x2a0 [ 196.191143] ? __lockdep_init_map+0x100/0x5a0 [ 196.195781] mount_fs+0xa3/0x310 [ 196.199179] vfs_kern_mount.part.0+0x68/0x470 [ 196.204049] do_mount+0x113c/0x2f10 [ 196.208252] ? cmp_ex_sort+0xc0/0xc0 [ 196.212188] ? __do_page_fault+0x180/0xd60 [ 196.216714] ? copy_mount_string+0x40/0x40 [ 196.221114] ? copy_mount_options+0x1cd/0x380 [ 196.225839] ? memset+0x20/0x40 [ 196.229162] ? copy_mount_options+0x26f/0x380 [ 196.233897] ksys_mount+0xcf/0x130 [ 196.237464] __x64_sys_mount+0xba/0x150 [ 196.241507] erofs: read_super, device -> /dev/loop3 [ 196.241571] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 196.251206] do_syscall_64+0xf9/0x620 [ 196.255040] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 196.255835] erofs: options -> [ 196.260267] RIP: 0033:0x44bf4a [ 196.260282] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 a8 00 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 196.260290] RSP: 002b:00007f4576e74078 EFLAGS: 00000286 ORIG_RAX: 00000000000000a5 [ 196.260310] RAX: ffffffffffffffda RBX: 00007f4576e740d0 RCX: 000000000044bf4a [ 196.260317] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f4576e74090 [ 196.260324] RBP: 0000000000000003 R08: 00007f4576e740d0 R09: 00007f4576e746bc [ 196.260331] R10: 0000000000000000 R11: 0000000000000286 R12: 00007f4576e74090 [ 196.260338] R13: 0000000020000248 R14: 0000000000000005 R15: 0000000000000006 [ 196.270037] erofs: root inode @ nid 36 [ 196.299699] CPU: 0 PID: 8113 Comm: syz-executor899 Not tainted 4.19.190-syzkaller #0 [ 196.320286] erofs: mounted on /dev/loop2 with opts: . [ 196.324322] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 196.324328] Call Trace: [ 196.324357] dump_stack+0x1fc/0x2ef [ 196.324376] should_fail.cold+0xa/0xf [ 196.324394] ? setup_fault_attr+0x200/0x200 [ 196.324409] ? lock_acquire+0x170/0x3c0 [ 196.324427] __should_failslab+0x115/0x180 [ 196.332882] erofs: root inode @ nid 36 [ 196.335878] should_failslab+0x5/0x10 [ 196.335896] kmem_cache_alloc_trace+0x284/0x380 [ 196.335914] get_mountpoint+0x140/0x3c0 [ 196.335930] attach_recursive_mnt+0xc9/0xd80 [ 196.335945] ? count_mounts+0x210/0x210 [ 196.335961] ? lookup_mnt+0x420/0x420 [ 196.345040] erofs: root inode @ nid 36 [ 196.349616] ? vfs_kern_mount.part.0+0x2b4/0x470 [ 196.349634] graft_tree+0x187/0x210 [ 196.349651] do_add_mount+0x239/0x560 [ 196.349666] ? graft_tree+0x210/0x210 [ 196.349679] ? do_raw_spin_unlock+0x171/0x230 [ 196.349693] ? _raw_spin_unlock+0x29/0x40 [ 196.349705] ? vfs_kern_mount.part.0+0x2b9/0x470 [ 196.349719] do_mount+0x1956/0x2f10 [ 196.349734] ? cmp_ex_sort+0xc0/0xc0 [ 196.349749] ? __do_page_fault+0x180/0xd60 [ 196.349761] ? copy_mount_string+0x40/0x40 [ 196.349777] ? copy_mount_options+0x1cd/0x380 [ 196.349805] ? memset+0x20/0x40 [ 196.361188] erofs: mounted on /dev/loop3 with opts: . [ 196.363059] ? copy_mount_options+0x26f/0x380 [ 196.363078] ksys_mount+0xcf/0x130 [ 196.363096] __x64_sys_mount+0xba/0x150 [ 196.363113] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 196.363131] do_syscall_64+0xf9/0x620 [ 196.395979] erofs: read_super, device -> /dev/loop5 [ 196.397273] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 196.401958] erofs: options -> [ 196.405673] RIP: 0033:0x44bf4a [ 196.405688] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 a8 00 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 196.405695] RSP: 002b:00007f4576e74078 EFLAGS: 00000286 ORIG_RAX: 00000000000000a5 [ 196.405708] RAX: ffffffffffffffda RBX: 00007f4576e740d0 RCX: 000000000044bf4a [ 196.405716] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f4576e74090 [ 196.405724] RBP: 0000000000000003 R08: 00007f4576e740d0 R09: 00007f4576e746bc [ 196.405732] R10: 0000000000000000 R11: 0000000000000286 R12: 00007f4576e74090 [ 196.405740] R13: 0000000020000248 R14: 0000000000000005 R15: 0000000000000006 [ 196.412310] erofs: unmounted for /dev/loop1 [ 196.417603] erofs: mounted on /dev/loop4 with opts: . [ 196.428351] FAULT_INJECTION: forcing a failure. [ 196.428351] name failslab, interval 1, probability 0, space 0, times 0 [ 196.437016] erofs: root inode @ nid 36 [ 196.446142] CPU: 0 PID: 8101 Comm: syz-executor899 Not tainted 4.19.190-syzkaller #0 [ 196.451260] erofs: mounted on /dev/loop5 with opts: . [ 196.453034] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 196.453040] Call Trace: [ 196.453061] dump_stack+0x1fc/0x2ef [ 196.453080] should_fail.cold+0xa/0xf [ 196.453098] ? setup_fault_attr+0x200/0x200 [ 196.453113] ? lock_acquire+0x170/0x3c0 [ 196.453131] __should_failslab+0x115/0x180 [ 196.662028] should_failslab+0x5/0x10 [ 196.665959] kmem_cache_alloc+0x277/0x370 [ 196.670352] alloc_vfsmnt+0x23/0x780 [ 196.674114] clone_mnt+0x6c/0x11b0 [ 196.677905] ? is_subdir+0x246/0x410 [ 196.681950] copy_tree+0x100/0xaf0 [ 196.685618] ? lock_acquire+0x170/0x3c0 [ 196.689868] ? is_subdir+0x164/0x410 [ 196.693706] propagate_one.part.0+0x3a8/0x710 [ 196.698474] propagate_mnt+0x40d/0x530 [ 196.702994] ? invent_group_ids+0x152/0x210 [ 196.707525] attach_recursive_mnt+0x697/0xd80 [ 196.712333] ? count_mounts+0x210/0x210 [ 196.716352] ? lookup_mnt+0x420/0x420 [ 196.720543] ? vfs_kern_mount.part.0+0x2b4/0x470 [ 196.725359] graft_tree+0x187/0x210 [ 196.729365] do_add_mount+0x239/0x560 [ 196.733394] ? graft_tree+0x210/0x210 [ 196.737396] ? do_raw_spin_unlock+0x171/0x230 [ 196.742402] ? _raw_spin_unlock+0x29/0x40 [ 196.746574] ? vfs_kern_mount.part.0+0x2b9/0x470 [ 196.751375] do_mount+0x1956/0x2f10 [ 196.755048] ? cmp_ex_sort+0xc0/0xc0 [ 196.758893] ? __do_page_fault+0x180/0xd60 [ 196.763485] ? copy_mount_string+0x40/0x40 [ 196.767872] ? copy_mount_options+0x1cd/0x380 [ 196.772593] ? memset+0x20/0x40 [ 196.776005] ? copy_mount_options+0x26f/0x380 [ 196.781082] ksys_mount+0xcf/0x130 [ 196.784648] __x64_sys_mount+0xba/0x150 [ 196.788643] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 196.793232] do_syscall_64+0xf9/0x620 [ 196.797168] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 196.802834] RIP: 0033:0x44bf4a [ 196.806061] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 a8 00 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 196.825257] RSP: 002b:00007f4576e74078 EFLAGS: 00000286 ORIG_RAX: 00000000000000a5 [ 196.833511] RAX: ffffffffffffffda RBX: 00007f4576e740d0 RCX: 000000000044bf4a [ 196.841372] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f4576e74090 [ 196.848939] RBP: 0000000000000003 R08: 00007f4576e740d0 R09: 00007f4576e746bc [ 196.856889] R10: 0000000000000000 R11: 0000000000000286 R12: 00007f4576e74090 [ 196.864645] R13: 0000000020000248 R14: 0000000000000005 R15: 0000000000000006 [ 196.880651] FAULT_INJECTION: forcing a failure. [ 196.880651] name failslab, interval 1, probability 0, space 0, times 0 [ 196.895782] erofs: unmounted for /dev/loop2 [ 196.898111] CPU: 1 PID: 8120 Comm: syz-executor899 Not tainted 4.19.190-syzkaller #0 [ 196.908791] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 196.919277] Call Trace: [ 196.921901] dump_stack+0x1fc/0x2ef [ 196.926198] should_fail.cold+0xa/0xf [ 196.930129] ? setup_fault_attr+0x200/0x200 [ 196.934571] ? lock_acquire+0x170/0x3c0 [ 196.938807] __should_failslab+0x115/0x180 [ 196.943202] should_failslab+0x5/0x10 [ 196.947079] kmem_cache_alloc+0x277/0x370 [ 196.951301] alloc_vfsmnt+0x23/0x780 [ 196.955194] clone_mnt+0x6c/0x11b0 [ 196.959160] ? is_subdir+0x246/0x410 [ 196.962925] copy_tree+0x100/0xaf0 [ 196.966507] ? lock_acquire+0x170/0x3c0 [ 196.970701] ? is_subdir+0x164/0x410 [ 196.974523] propagate_one.part.0+0x3a8/0x710 [ 196.979929] propagate_mnt+0x40d/0x530 [ 196.983920] ? invent_group_ids+0x152/0x210 [ 196.988890] attach_recursive_mnt+0x697/0xd80 [ 196.994050] ? count_mounts+0x210/0x210 [ 196.999427] ? lookup_mnt+0x420/0x420 [ 197.003440] ? vfs_kern_mount.part.0+0x2b4/0x470 [ 197.008955] graft_tree+0x187/0x210 [ 197.012714] do_add_mount+0x239/0x560 [ 197.017338] ? graft_tree+0x210/0x210 [ 197.021159] ? do_raw_spin_unlock+0x171/0x230 [ 197.025916] ? _raw_spin_unlock+0x29/0x40 [ 197.030387] ? vfs_kern_mount.part.0+0x2b9/0x470 [ 197.036099] do_mount+0x1956/0x2f10 [ 197.040227] ? cmp_ex_sort+0xc0/0xc0 [ 197.044034] ? __do_page_fault+0x180/0xd60 [ 197.048879] ? copy_mount_string+0x40/0x40 [ 197.053575] ? copy_mount_options+0x1cd/0x380 [ 197.058470] ? memset+0x20/0x40 [ 197.062553] ? copy_mount_options+0x26f/0x380 [ 197.068588] ksys_mount+0xcf/0x130 [ 197.072229] __x64_sys_mount+0xba/0x150 [ 197.076310] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 197.080906] do_syscall_64+0xf9/0x620 [ 197.084716] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 197.090219] RIP: 0033:0x44bf4a [ 197.093402] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 a8 00 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 197.112759] RSP: 002b:00007f4576e53078 EFLAGS: 00000286 ORIG_RAX: 00000000000000a5 [ 197.120565] RAX: ffffffffffffffda RBX: 00007f4576e530d0 RCX: 000000000044bf4a [ 197.127944] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f4576e53090 [ 197.135211] RBP: 0000000000000003 R08: 00007f4576e530d0 R09: 00007f4576e536bc [ 197.143186] R10: 0000000000000000 R11: 0000000000000286 R12: 00007f4576e53090 [ 197.150994] R13: 0000000020000248 R14: 0000000000000005 R15: 0000000000000006 [ 197.160738] FAULT_INJECTION: forcing a failure. [ 197.160738] name failslab, interval 1, probability 0, space 0, times 0 [ 197.172608] erofs: unmounted for /dev/loop3 [ 197.177243] CPU: 1 PID: 8112 Comm: syz-executor899 Not tainted 4.19.190-syzkaller #0 [ 197.185180] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 197.194643] Call Trace: [ 197.197266] dump_stack+0x1fc/0x2ef [ 197.201132] should_fail.cold+0xa/0xf [ 197.204957] ? setup_fault_attr+0x200/0x200 [ 197.209727] ? lock_acquire+0x170/0x3c0 [ 197.213729] __should_failslab+0x115/0x180 [ 197.218575] should_failslab+0x5/0x10 [ 197.223212] kmem_cache_alloc+0x277/0x370 [ 197.229441] alloc_vfsmnt+0x23/0x780 [ 197.233446] clone_mnt+0x6c/0x11b0 [ 197.237092] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 197.242244] ? ida_alloc_range+0x342/0x750 [ 197.246942] copy_tree+0x100/0xaf0 [ 197.250588] ? get_mountpoint+0x2fb/0x3c0 [ 197.254894] propagate_one.part.0+0x3a8/0x710 [ 197.259798] propagate_mnt+0x40d/0x530 [ 197.263776] ? invent_group_ids+0x152/0x210 [ 197.268883] attach_recursive_mnt+0x697/0xd80 [ 197.273602] ? count_mounts+0x210/0x210 [ 197.277599] ? lookup_mnt+0x420/0x420 [ 197.281499] ? vfs_kern_mount.part.0+0x2b4/0x470 [ 197.286393] graft_tree+0x187/0x210 [ 197.290036] do_add_mount+0x239/0x560 [ 197.294063] ? graft_tree+0x210/0x210 [ 197.298347] ? do_raw_spin_unlock+0x171/0x230 [ 197.307925] ? _raw_spin_unlock+0x29/0x40 [ 197.316108] ? vfs_kern_mount.part.0+0x2b9/0x470 [ 197.324477] do_mount+0x1956/0x2f10 [ 197.331329] ? cmp_ex_sort+0xc0/0xc0 [ 197.336175] ? __do_page_fault+0x180/0xd60 [ 197.342516] ? copy_mount_string+0x40/0x40 [ 197.347853] ? copy_mount_options+0x1cd/0x380 [ 197.352894] ? memset+0x20/0x40 [ 197.356886] ? copy_mount_options+0x26f/0x380 [ 197.361710] ksys_mount+0xcf/0x130 [ 197.365991] __x64_sys_mount+0xba/0x150 [ 197.370629] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 197.375879] do_syscall_64+0xf9/0x620 [ 197.379790] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 197.385159] RIP: 0033:0x44bf4a [ 197.388906] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 a8 00 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 197.411285] RSP: 002b:00007f4576e74078 EFLAGS: 00000286 ORIG_RAX: 00000000000000a5 [ 197.422366] RAX: ffffffffffffffda RBX: 00007f4576e740d0 RCX: 000000000044bf4a executing program [ 197.433601] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f4576e74090 [ 197.441707] RBP: 0000000000000003 R08: 00007f4576e740d0 R09: 00007f4576e746bc [ 197.450250] R10: 0000000000000000 R11: 0000000000000286 R12: 00007f4576e74090 [ 197.458721] R13: 0000000020000248 R14: 0000000000000005 R15: 0000000000000006 [ 197.466832] erofs: unmounted for /dev/loop5 executing program executing program executing program [ 197.599578] erofs: read_super, device -> /dev/loop1 [ 197.604767] erofs: options -> [ 197.610482] erofs: read_super, device -> /dev/loop2 [ 197.616345] erofs: root inode @ nid 36 [ 197.621563] erofs: options -> [ 197.625225] erofs: mounted on /dev/loop1 with opts: . [ 197.630783] erofs: root inode @ nid 36 [ 197.630850] FAULT_INJECTION: forcing a failure. [ 197.630850] name failslab, interval 1, probability 0, space 0, times 0 [ 197.635073] erofs: mounted on /dev/loop2 with opts: . [ 197.646636] CPU: 1 PID: 8137 Comm: syz-executor899 Not tainted 4.19.190-syzkaller #0 [ 197.659657] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 197.669029] Call Trace: [ 197.671651] dump_stack+0x1fc/0x2ef [ 197.675304] should_fail.cold+0xa/0xf [ 197.679135] ? setup_fault_attr+0x200/0x200 [ 197.683504] ? lock_acquire+0x170/0x3c0 [ 197.687526] __should_failslab+0x115/0x180 [ 197.687977] erofs: read_super, device -> /dev/loop3 [ 197.691770] should_failslab+0x5/0x10 [ 197.691786] kmem_cache_alloc_trace+0x284/0x380 [ 197.691803] get_mountpoint+0x140/0x3c0 [ 197.691820] attach_recursive_mnt+0xc9/0xd80 [ 197.699377] erofs: options -> [ 197.700658] ? count_mounts+0x210/0x210 [ 197.700681] ? lookup_mnt+0x420/0x420 [ 197.706233] erofs: root inode @ nid 36 [ 197.709787] ? vfs_kern_mount.part.0+0x2b4/0x470 [ 197.709805] graft_tree+0x187/0x210 [ 197.709821] do_add_mount+0x239/0x560 [ 197.709835] ? graft_tree+0x210/0x210 [ 197.709847] ? do_raw_spin_unlock+0x171/0x230 [ 197.709862] ? _raw_spin_unlock+0x29/0x40 [ 197.709874] ? vfs_kern_mount.part.0+0x2b9/0x470 [ 197.709892] do_mount+0x1956/0x2f10 [ 197.729817] erofs: mounted on /dev/loop3 with opts: . [ 197.734442] ? cmp_ex_sort+0xc0/0xc0 [ 197.734465] ? __do_page_fault+0x180/0xd60 [ 197.734481] ? copy_mount_string+0x40/0x40 [ 197.734499] ? copy_mount_options+0x1cd/0x380 [ 197.786479] ? memset+0x20/0x40 [ 197.790039] ? copy_mount_options+0x26f/0x380 [ 197.795425] ksys_mount+0xcf/0x130 executing program executing program [ 197.799088] __x64_sys_mount+0xba/0x150 [ 197.803294] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 197.808058] do_syscall_64+0xf9/0x620 [ 197.811924] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 197.817230] RIP: 0033:0x44bf4a [ 197.820451] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 a8 00 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 197.839744] RSP: 002b:00007f4576e74078 EFLAGS: 00000286 ORIG_RAX: 00000000000000a5 [ 197.847655] RAX: ffffffffffffffda RBX: 00007f4576e740d0 RCX: 000000000044bf4a [ 197.849753] erofs: read_super, device -> /dev/loop5 [ 197.855034] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f4576e74090 [ 197.855042] RBP: 0000000000000003 R08: 00007f4576e740d0 R09: 00007f4576e746bc [ 197.855049] R10: 0000000000000000 R11: 0000000000000286 R12: 00007f4576e74090 [ 197.855057] R13: 0000000020000248 R14: 0000000000000005 R15: 0000000000000006 [ 197.863950] FAULT_INJECTION: forcing a failure. [ 197.863950] name failslab, interval 1, probability 0, space 0, times 0 [ 197.900765] erofs: options -> [ 197.903216] erofs: unmounted for /dev/loop1 [ 197.913813] CPU: 1 PID: 8145 Comm: syz-executor899 Not tainted 4.19.190-syzkaller #0 [ 197.914707] erofs: root inode @ nid 36 [ 197.922086] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 197.922093] Call Trace: [ 197.922119] dump_stack+0x1fc/0x2ef [ 197.922137] should_fail.cold+0xa/0xf [ 197.922154] ? setup_fault_attr+0x200/0x200 [ 197.922168] ? lock_acquire+0x170/0x3c0 [ 197.922187] __should_failslab+0x115/0x180 [ 197.922201] should_failslab+0x5/0x10 [ 197.922214] __kmalloc_track_caller+0x2a6/0x3c0 [ 197.922227] ? kstrdup_const+0x53/0x80 [ 197.922242] kstrdup+0x36/0x70 [ 197.922256] kstrdup_const+0x53/0x80 [ 197.922269] alloc_vfsmnt+0xb5/0x780 [ 197.922283] clone_mnt+0x6c/0x11b0 [ 197.922303] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 197.942875] FAULT_INJECTION: forcing a failure. [ 197.942875] name failslab, interval 1, probability 0, space 0, times 0 [ 197.946683] ? ida_alloc_range+0x342/0x750 [ 197.946705] copy_tree+0x100/0xaf0 [ 197.946721] ? get_mountpoint+0x2fb/0x3c0 [ 197.946747] propagate_one.part.0+0x3a8/0x710 [ 198.024444] propagate_mnt+0x40d/0x530 [ 198.028993] ? invent_group_ids+0x152/0x210 [ 198.033356] attach_recursive_mnt+0x697/0xd80 [ 198.038193] ? count_mounts+0x210/0x210 [ 198.042527] ? lookup_mnt+0x420/0x420 [ 198.046546] ? vfs_kern_mount.part.0+0x2b4/0x470 [ 198.051534] graft_tree+0x187/0x210 [ 198.055650] do_add_mount+0x239/0x560 [ 198.059877] ? graft_tree+0x210/0x210 [ 198.064183] ? do_raw_spin_unlock+0x171/0x230 [ 198.069771] ? _raw_spin_unlock+0x29/0x40 [ 198.074147] ? vfs_kern_mount.part.0+0x2b9/0x470 [ 198.079049] do_mount+0x1956/0x2f10 [ 198.082737] ? cmp_ex_sort+0xc0/0xc0 [ 198.086474] ? __do_page_fault+0x180/0xd60 [ 198.090736] ? copy_mount_string+0x40/0x40 [ 198.095089] ? copy_mount_options+0x1cd/0x380 [ 198.099617] ? memset+0x20/0x40 [ 198.102954] ? copy_mount_options+0x26f/0x380 [ 198.107757] ksys_mount+0xcf/0x130 [ 198.112293] __x64_sys_mount+0xba/0x150 [ 198.116440] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 198.121051] do_syscall_64+0xf9/0x620 [ 198.125058] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 198.130789] RIP: 0033:0x44bf4a [ 198.134379] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 a8 00 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 198.154110] RSP: 002b:00007f4576e74078 EFLAGS: 00000286 ORIG_RAX: 00000000000000a5 [ 198.162557] RAX: ffffffffffffffda RBX: 00007f4576e740d0 RCX: 000000000044bf4a [ 198.170294] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f4576e74090 [ 198.177905] RBP: 0000000000000003 R08: 00007f4576e740d0 R09: 00007f4576e746bc [ 198.185449] R10: 0000000000000000 R11: 0000000000000286 R12: 00007f4576e74090 [ 198.192864] R13: 0000000020000248 R14: 0000000000000005 R15: 0000000000000006 [ 198.200192] CPU: 0 PID: 8161 Comm: syz-executor899 Not tainted 4.19.190-syzkaller #0 [ 198.204709] erofs: unmounted for /dev/loop2 [ 198.208289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 198.208296] Call Trace: [ 198.208322] dump_stack+0x1fc/0x2ef [ 198.208341] should_fail.cold+0xa/0xf [ 198.208358] ? setup_fault_attr+0x200/0x200 [ 198.208372] ? lock_acquire+0x170/0x3c0 [ 198.208389] __should_failslab+0x115/0x180 [ 198.208405] should_failslab+0x5/0x10 [ 198.208418] kmem_cache_alloc+0x277/0x370 [ 198.208434] erofs_fill_super+0x10a1/0x12cc [ 198.208454] ? gb_gbphy_register_driver.cold+0x39/0x39 [ 198.208467] ? vsprintf+0x30/0x30 [ 198.208485] ? wait_for_completion_io+0x10/0x10 [ 198.208498] ? set_blocksize+0x163/0x3f0 [ 198.208515] mount_bdev+0x2fc/0x3b0 [ 198.208529] ? gb_gbphy_register_driver.cold+0x39/0x39 [ 198.208545] erofs_mount+0x8c/0xc0 [ 198.208563] ? erofs_kill_sb+0x20/0x20 [ 198.242179] FAULT_INJECTION: forcing a failure. [ 198.242179] name failslab, interval 1, probability 0, space 0, times 0 [ 198.244629] ? alloc_pages_current+0x19b/0x2a0 [ 198.244645] ? __lockdep_init_map+0x100/0x5a0 [ 198.244661] mount_fs+0xa3/0x310 [ 198.320209] vfs_kern_mount.part.0+0x68/0x470 [ 198.324996] do_mount+0x113c/0x2f10 [ 198.328657] ? cmp_ex_sort+0xc0/0xc0 [ 198.332405] ? __do_page_fault+0x180/0xd60 [ 198.337448] ? copy_mount_string+0x40/0x40 [ 198.342081] ? copy_mount_options+0x1cd/0x380 [ 198.346946] ? memset+0x20/0x40 [ 198.350535] ? copy_mount_options+0x26f/0x380 [ 198.355117] ksys_mount+0xcf/0x130 [ 198.358985] __x64_sys_mount+0xba/0x150 [ 198.363116] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 198.367991] do_syscall_64+0xf9/0x620 [ 198.371820] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 198.377026] RIP: 0033:0x44bf4a [ 198.380539] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 a8 00 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 198.400817] RSP: 002b:00007f4576e74078 EFLAGS: 00000286 ORIG_RAX: 00000000000000a5 [ 198.408919] RAX: ffffffffffffffda RBX: 00007f4576e740d0 RCX: 000000000044bf4a [ 198.416299] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f4576e74090 [ 198.424104] RBP: 0000000000000003 R08: 00007f4576e740d0 R09: 00007f4576e746bc [ 198.431397] R10: 0000000000000000 R11: 0000000000000286 R12: 00007f4576e74090 [ 198.438687] R13: 0000000020000248 R14: 0000000000000005 R15: 0000000000000006 [ 198.446098] CPU: 1 PID: 8150 Comm: syz-executor899 Not tainted 4.19.190-syzkaller #0 [ 198.454105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 198.462853] BUG: Dentry 00000000df64a627{i=0,n=/} still in use (-128) [unmount of erofs loop5] [ 198.463600] Call Trace: [ 198.463622] dump_stack+0x1fc/0x2ef [ 198.463640] should_fail.cold+0xa/0xf [ 198.463657] ? setup_fault_attr+0x200/0x200 [ 198.463672] ? lock_acquire+0x170/0x3c0 [ 198.463690] __should_failslab+0x115/0x180 [ 198.463706] should_failslab+0x5/0x10 [ 198.463720] __kmalloc_track_caller+0x2a6/0x3c0 [ 198.463742] ? kstrdup_const+0x53/0x80 [ 198.463757] kstrdup+0x36/0x70 [ 198.463771] kstrdup_const+0x53/0x80 [ 198.463785] alloc_vfsmnt+0xb5/0x780 [ 198.463799] clone_mnt+0x6c/0x11b0 [ 198.472971] ------------[ cut here ]------------ [ 198.475532] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 198.479371] WARNING: CPU: 0 PID: 8161 at fs/dcache.c:1518 umount_check.cold+0xf2/0x116 [ 198.483062] ? ida_alloc_range+0x342/0x750 [ 198.487375] Kernel panic - not syncing: panic_on_warn set ... [ 198.487375] [ 198.491370] copy_tree+0x100/0xaf0 [ 198.557123] ? get_mountpoint+0x2fb/0x3c0 [ 198.561305] propagate_one.part.0+0x3a8/0x710 [ 198.565832] propagate_mnt+0x40d/0x530 [ 198.569826] ? invent_group_ids+0x152/0x210 [ 198.574442] attach_recursive_mnt+0x697/0xd80 [ 198.578957] ? count_mounts+0x210/0x210 [ 198.582941] ? lookup_mnt+0x420/0x420 [ 198.586749] ? vfs_kern_mount.part.0+0x2b4/0x470 [ 198.591619] graft_tree+0x187/0x210 [ 198.595380] do_add_mount+0x239/0x560 [ 198.599196] ? graft_tree+0x210/0x210 [ 198.603184] ? do_raw_spin_unlock+0x171/0x230 [ 198.607789] ? _raw_spin_unlock+0x29/0x40 [ 198.612055] ? vfs_kern_mount.part.0+0x2b9/0x470 [ 198.616837] do_mount+0x1956/0x2f10 [ 198.621339] ? cmp_ex_sort+0xc0/0xc0 [ 198.625114] ? __do_page_fault+0x180/0xd60 [ 198.629374] ? copy_mount_string+0x40/0x40 [ 198.633649] ? copy_mount_options+0x1cd/0x380 [ 198.638381] ? memset+0x20/0x40 [ 198.641689] ? copy_mount_options+0x26f/0x380 [ 198.646314] ksys_mount+0xcf/0x130 [ 198.649981] __x64_sys_mount+0xba/0x150 [ 198.654090] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 198.658696] do_syscall_64+0xf9/0x620 [ 198.662524] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 198.667737] RIP: 0033:0x44bf4a [ 198.670949] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 a8 00 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 198.690152] RSP: 002b:00007f4576e74078 EFLAGS: 00000286 ORIG_RAX: 00000000000000a5 [ 198.697880] RAX: ffffffffffffffda RBX: 00007f4576e740d0 RCX: 000000000044bf4a [ 198.705164] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f4576e74090 [ 198.712723] RBP: 0000000000000003 R08: 00007f4576e740d0 R09: 00007f4576e746bc [ 198.720019] R10: 0000000000000000 R11: 0000000000000286 R12: 00007f4576e74090 [ 198.727306] R13: 0000000020000248 R14: 0000000000000005 R15: 0000000000000006 [ 198.734727] CPU: 0 PID: 8161 Comm: syz-executor899 Not tainted 4.19.190-syzkaller #0 [ 198.742732] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 198.752204] Call Trace: [ 198.755078] dump_stack+0x1fc/0x2ef [ 198.758743] panic+0x26a/0x50e [ 198.762129] ? __warn_printk+0xf3/0xf3 [ 198.766143] ? umount_check.cold+0xf2/0x116 [ 198.770579] ? __probe_kernel_read+0x130/0x1b0 [ 198.775306] ? __warn.cold+0x5/0x5a [ 198.778946] ? __warn+0xe4/0x200 [ 198.782344] ? umount_check.cold+0xf2/0x116 [ 198.786958] __warn.cold+0x20/0x5a [ 198.790699] ? umount_check.cold+0xf2/0x116 [ 198.795134] report_bug+0x262/0x2b0 [ 198.798777] do_error_trap+0x1d7/0x310 [ 198.803124] ? math_error+0x310/0x310 [ 198.807196] ? __irq_work_queue_local+0x101/0x160 [ 198.812395] ? irq_work_queue+0x29/0x80 [ 198.816572] ? error_entry+0x72/0xd0 [ 198.820326] ? trace_hardirqs_off_caller+0x6e/0x210 [ 198.825364] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 198.830682] invalid_op+0x14/0x20 [ 198.834164] RIP: 0010:umount_check.cold+0xf2/0x116 [ 198.839723] Code: f9 4d 89 f1 45 89 e0 48 89 e9 41 55 4c 89 fa 48 89 ee 48 c7 c7 c0 a3 74 88 e8 8e f0 fe ff 48 c7 c7 c0 a2 74 88 e8 82 f0 fe ff <0f> 0b 58 e9 b4 fd b4 f9 e8 e0 ab a4 f9 e9 22 ff ff ff 48 89 df e8 [ 198.859750] RSP: 0018:ffff8880af1e7a98 EFLAGS: 00010286 [ 198.865250] RAX: 0000000000000024 RBX: 0000000000000000 RCX: 0000000000000000 [ 198.872888] RDX: 0000000000000000 RSI: ffffffff814dde61 RDI: ffffed1015e3cf45 [ 198.880524] RBP: ffff88808febda20 R08: 0000000000000024 R09: 0000000000000000 [ 198.888568] R10: 0000000000000005 R11: 0000000000000000 R12: 00000000ffffff80 [ 198.896096] R13: ffff888093888990 R14: ffffffff893f8520 R15: 0000000000000000 [ 198.904089] ? vprintk_func+0x81/0x180 [ 198.908836] ? umount_check.cold+0xf2/0x116 [ 198.913239] d_walk+0x196/0x990 [ 198.916741] ? shrink_dcache_parent+0x120/0x120 [ 198.921483] ? debug_check_no_obj_freed+0x201/0x490 [ 198.926636] shrink_dcache_for_umount+0x87/0x330 [ 198.931793] generic_shutdown_super+0x68/0x370 [ 198.936428] kill_block_super+0x97/0xf0 [ 198.941608] deactivate_locked_super+0x94/0x160 [ 198.946397] mount_bdev+0x373/0x3b0 [ 198.950045] ? gb_gbphy_register_driver.cold+0x39/0x39 [ 198.955540] erofs_mount+0x8c/0xc0 [ 198.959115] ? erofs_kill_sb+0x20/0x20 [ 198.963285] ? alloc_pages_current+0x19b/0x2a0 [ 198.967880] ? __lockdep_init_map+0x100/0x5a0 [ 198.972400] mount_fs+0xa3/0x310 [ 198.975805] vfs_kern_mount.part.0+0x68/0x470 [ 198.980312] do_mount+0x113c/0x2f10 [ 198.983949] ? cmp_ex_sort+0xc0/0xc0 [ 198.987672] ? __do_page_fault+0x180/0xd60 [ 198.991915] ? copy_mount_string+0x40/0x40 [ 198.996191] ? copy_mount_options+0x1cd/0x380 [ 199.000734] ? memset+0x20/0x40 [ 199.004197] ? copy_mount_options+0x26f/0x380 [ 199.008809] ksys_mount+0xcf/0x130 [ 199.012515] __x64_sys_mount+0xba/0x150 [ 199.016529] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 199.021127] do_syscall_64+0xf9/0x620 [ 199.024948] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 199.030148] RIP: 0033:0x44bf4a [ 199.033426] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 a8 00 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 199.052889] RSP: 002b:00007f4576e74078 EFLAGS: 00000286 ORIG_RAX: 00000000000000a5 [ 199.060842] RAX: ffffffffffffffda RBX: 00007f4576e740d0 RCX: 000000000044bf4a [ 199.068210] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f4576e74090 [ 199.075497] RBP: 0000000000000003 R08: 00007f4576e740d0 R09: 00007f4576e746bc [ 199.083411] R10: 0000000000000000 R11: 0000000000000286 R12: 00007f4576e74090 [ 199.091048] R13: 0000000020000248 R14: 0000000000000005 R15: 0000000000000006 [ 199.099814] Kernel Offset: disabled [ 199.103813] Rebooting in 86400 seconds..