8021q: adding VLAN 0 to HW filter on device ipvlan1 gfs2: fsid=*!\(:+%)º: Now mounting FS... attempt to access beyond end of device ============================================ WARNING: possible recursive locking detected 4.19.206-syzkaller #0 Not tainted -------------------------------------------- syz-executor.4/30160 is trying to acquire lock: 00000000de871649 (&team->lock){+.+.}, at: team_vlan_rx_add_vid+0x38/0x1e0 drivers/net/team/team.c:1896 but task is already holding lock: loop1: rw=4096, want=136, limit=12 00000000e0de8504 (&team->lock){+.+.}, at: team_add_slave+0x98/0x1fa0 drivers/net/team/team.c:1975 other info that might help us debug this: Possible unsafe locking scenario: CPU0 ---- lock(&team->lock); lock(&team->lock); *** DEADLOCK *** May be due to missing lock nesting notation 2 locks held by syz-executor.4/30160: #0: 00000000c159ba11 (rtnl_mutex){+.+.}, at: rtnl_lock net/core/rtnetlink.c:77 [inline] #0: 00000000c159ba11 (rtnl_mutex){+.+.}, at: rtnetlink_rcv_msg+0x3fe/0xb80 net/core/rtnetlink.c:4779 gfs2: error 10 reading superblock #1: 00000000e0de8504 (&team->lock){+.+.}, at: team_add_slave+0x98/0x1fa0 drivers/net/team/team.c:1975 stack backtrace: CPU: 1 PID: 30160 Comm: syz-executor.4 Not tainted 4.19.206-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x1fc/0x2ef lib/dump_stack.c:118 print_deadlock_bug kernel/locking/lockdep.c:1764 [inline] check_deadlock kernel/locking/lockdep.c:1808 [inline] validate_chain kernel/locking/lockdep.c:2404 [inline] __lock_acquire.cold+0x121/0x57e kernel/locking/lockdep.c:3416 gfs2: fsid=*!\(:+%)º: can't read superblock lock_acquire+0x170/0x3c0 kernel/locking/lockdep.c:3908 __mutex_lock_common kernel/locking/mutex.c:938 [inline] __mutex_lock+0xd7/0x1200 kernel/locking/mutex.c:1083 gfs2: fsid=*!\(:+%)º: can't read superblock: -5 team_vlan_rx_add_vid+0x38/0x1e0 drivers/net/team/team.c:1896 vlan_add_rx_filter_info+0x13c/0x1c0 net/8021q/vlan_core.c:210 __vlan_vid_add net/8021q/vlan_core.c:278 [inline] vlan_vid_add+0x3ee/0x7e0 net/8021q/vlan_core.c:308 vlan_device_event.cold+0x28/0x2d net/8021q/vlan.c:382 notifier_call_chain+0xc0/0x230 kernel/notifier.c:93 call_netdevice_notifiers net/core/dev.c:1762 [inline] dev_open net/core/dev.c:1442 [inline] dev_open+0x128/0x140 net/core/dev.c:1430 team_port_add drivers/net/team/team.c:1220 [inline] team_add_slave+0xb02/0x1fa0 drivers/net/team/team.c:1976 do_set_master+0x1c8/0x220 net/core/rtnetlink.c:2321 do_setlink+0x7ec/0x3540 net/core/rtnetlink.c:2455 rtnl_newlink+0xda9/0x15c0 net/core/rtnetlink.c:3077 rtnetlink_rcv_msg+0x453/0xb80 net/core/rtnetlink.c:4782 netlink_rcv_skb+0x160/0x440 net/netlink/af_netlink.c:2457 netlink_unicast_kernel net/netlink/af_netlink.c:1320 [inline] netlink_unicast+0x4d5/0x690 net/netlink/af_netlink.c:1346 netlink_sendmsg+0x6bb/0xc40 net/netlink/af_netlink.c:1911 sock_sendmsg_nosec net/socket.c:651 [inline] sock_sendmsg+0xc3/0x120 net/socket.c:661 ___sys_sendmsg+0x7bb/0x8e0 net/socket.c:2227 __sys_sendmsg net/socket.c:2265 [inline] __do_sys_sendmsg net/socket.c:2274 [inline] __se_sys_sendmsg net/socket.c:2272 [inline] __x64_sys_sendmsg+0x132/0x220 net/socket.c:2272 do_syscall_64+0xf9/0x620 arch/x86/entry/common.c:293 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x7f1d6c74a739 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007f1d69cc1188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e RAX: ffffffffffffffda RBX: 00007f1d6c84ef80 RCX: 00007f1d6c74a739 RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000004 RBP: 00007f1d6c7a4cc4 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 00007f1d6c84ef80 R13: 00007ffd43ec94ef R14: 00007f1d69cc1300 R15: 0000000000022000 team0: Port device ipvlan1 added gfs2: fsid=*!\(:+%)º: Trying to join cluster "lock_nolock", "*!\(:+%)º" gfs2: fsid=*!\(:+%)º: Now mounting FS... attempt to access beyond end of device loop1: rw=4096, want=136, limit=12 gfs2: error 10 reading superblock gfs2: fsid=*!\(:+%)º: can't read superblock gfs2: fsid=*!\(:+%)º: can't read superblock: -5 gfs2: fsid=*!\(:+%)º: Trying to join cluster "lock_nolock", "*!\(:+%)º" sysfs: cannot create duplicate filename '/fs/gfs2/*!\(:+%)º' gfs2: fsid=*!\(:+%)º: Now mounting FS... CPU: 0 PID: 30261 Comm: syz-executor.3 Not tainted 4.19.206-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: attempt to access beyond end of device __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x1fc/0x2ef lib/dump_stack.c:118 sysfs_warn_dup.cold+0x1c/0x29 fs/sysfs/dir.c:30 sysfs_create_dir_ns+0x228/0x280 fs/sysfs/dir.c:63 loop1: rw=4096, want=136, limit=13 create_dir lib/kobject.c:88 [inline] kobject_add_internal+0x2a5/0x9c0 lib/kobject.c:247 kobject_add_varg lib/kobject.c:382 [inline] kobject_init_and_add+0x101/0x160 lib/kobject.c:453 gfs2: error 10 reading superblock gfs2_sys_fs_add+0x18e/0x440 fs/gfs2/sys.c:659 gfs2: fsid=*!\(:+%)º: can't read superblock fill_super+0x1240/0x2550 fs/gfs2/ops_fstype.c:1103 gfs2: fsid=*!\(:+%)º: can't read superblock: -5 gfs2_mount+0x4c0/0x5a0 fs/gfs2/ops_fstype.c:1316 mount_fs+0xa3/0x310 fs/super.c:1261 vfs_kern_mount.part.0+0x68/0x470 fs/namespace.c:961 vfs_kern_mount fs/namespace.c:951 [inline] do_new_mount fs/namespace.c:2492 [inline] do_mount+0x115c/0x2f50 fs/namespace.c:2822 ksys_mount+0xcf/0x130 fs/namespace.c:3038 __do_sys_mount fs/namespace.c:3052 [inline] __se_sys_mount fs/namespace.c:3049 [inline] __x64_sys_mount+0xba/0x150 fs/namespace.c:3049 do_syscall_64+0xf9/0x620 arch/x86/entry/common.c:293 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x7fc7eb121c5a Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007fc7e8696fa8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 RAX: ffffffffffffffda RBX: 00000000200003c0 RCX: 00007fc7eb121c5a RDX: 0000000020000040 RSI: 0000000020000080 RDI: 00007fc7e8697000 RBP: 00007fc7e8697040 R08: 00007fc7e8697040 R09: 0000000020000040 R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020000040 R13: 0000000020000080 R14: 00007fc7e8697000 R15: 00000000200000c0 kobject_add_internal failed for *!\(:+%)º with -EEXIST, don't try to register things with the same name in the same directory. gfs2: fsid=*!\(:+%)º: Trying to join cluster "lock_nolock", "*!\(:+%)º" gfs2: fsid=*!\(:+%)º: error -17 adding sysfs files gfs2: fsid=*!\(:+%)º: Now mounting FS... attempt to access beyond end of device loop1: rw=4096, want=136, limit=13 gfs2: error 10 reading superblock gfs2: fsid=*!\(:+%)º: can't read superblock gfs2: fsid=*!\(:+%)º: can't read superblock: -5 EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue gfs2: fsid=*!\(:+%)º: Trying to join cluster "lock_nolock", "*!\(:+%)º" gfs2: fsid=*!\(:+%)º: Now mounting FS... attempt to access beyond end of device loop1: rw=4096, want=136, limit=13 gfs2: error 10 reading superblock gfs2: fsid=*!\(:+%)º: can't read superblock gfs2: fsid=*!\(:+%)º: can't read superblock: -5 gfs2: fsid=*!\(:+%)º: Trying to join cluster "lock_nolock", "*!\(:+%)º" gfs2: fsid=*!\(:+%)º: Now mounting FS... attempt to access beyond end of device loop1: rw=4096, want=136, limit=13 gfs2: error 10 reading superblock gfs2: fsid=*!\(:+%)º: can't read superblock gfs2: fsid=*!\(:+%)º: can't read superblock: -5 gfs2: fsid=*!\(:+%)º: Trying to join cluster "lock_nolock", "*!\(:+%)º" gfs2: fsid=*!\(:+%)º: Now mounting FS... attempt to access beyond end of device loop1: rw=4096, want=136, limit=14 gfs2: error 10 reading superblock gfs2: fsid=*!\(:+%)º: can't read superblock gfs2: fsid=*!\(:+%)º: can't read superblock: -5 BFS-fs: bfs_fill_super(): No BFS filesystem on loop0 (magic=df016610) gfs2: fsid=*!\(:+%)º: Trying to join cluster "lock_nolock", "*!\(:+%)º" EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue gfs2: fsid=*!\(:+%)º: Now mounting FS... nla_parse: 33 callbacks suppressed netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. attempt to access beyond end of device netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'. netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. loop1: rw=4096, want=136, limit=14 gfs2: error 10 reading superblock gfs2: fsid=*!\(:+%)º: can't read superblock gfs2: fsid=*!\(:+%)º: can't read superblock: -5 netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'. gfs2: fsid=*!\(:+%)º: Trying to join cluster "lock_nolock", "*!\(:+%)º" gfs2: fsid=*!\(:+%)º: Now mounting FS... attempt to access beyond end of device loop1: rw=4096, want=136, limit=14 gfs2: error 10 reading superblock BFS-fs: bfs_fill_super(): No BFS filesystem on loop0 (magic=df016610) netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. gfs2: fsid=*!\(:+%)º: can't read superblock gfs2: fsid=*!\(:+%)º: can't read superblock: -5 netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'. netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. gfs2: fsid=*!\(:+%)º: Trying to join cluster "lock_nolock", "*!\(:+%)º" gfs2: fsid=*!\(:+%)º: Now mounting FS... attempt to access beyond end of device loop1: rw=4096, want=136, limit=14 gfs2: error 10 reading superblock gfs2: fsid=*!\(:+%)º: can't read superblock gfs2: fsid=*!\(:+%)º: can't read superblock: -5 netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'. EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'. gfs2: fsid=*!\(:+%)º: Trying to join cluster "lock_nolock", "*!\(:+%)º" gfs2: fsid=*!\(:+%)º: Now mounting FS... qfq: no options netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'. attempt to access beyond end of device qfq: no options loop1: rw=4096, want=136, limit=15 gfs2: error 10 reading superblock gfs2: fsid=*!\(:+%)º: can't read superblock gfs2: fsid=*!\(:+%)º: can't read superblock: -5 gfs2: fsid=*!\(:+%)º: Trying to join cluster "lock_nolock", "*!\(:+%)º" gfs2: fsid=*!\(:+%)º: Now mounting FS... attempt to access beyond end of device loop1: rw=4096, want=136, limit=15 gfs2: error 10 reading superblock gfs2: fsid=*!\(:+%)º: can't read superblock gfs2: fsid=*!\(:+%)º: can't read superblock: -5 gfs2: fsid=*!\(:+%)º: Trying to join cluster "lock_nolock", "*!\(:+%)º" gfs2: fsid=*!\(:+%)º: Now mounting FS... attempt to access beyond end of device loop1: rw=4096, want=136, limit=15 gfs2: error 10 reading superblock gfs2: fsid=*!\(:+%)º: can't read superblock gfs2: fsid=*!\(:+%)º: can't read superblock: -5 BFS-fs: bfs_fill_super(): No BFS filesystem on loop3 (magic=df016610) netlink: 'syz-executor.2': attribute type 13 has an invalid length. netlink: 'syz-executor.2': attribute type 13 has an invalid length. gfs2: fsid=*!\(:+%)º: Trying to join cluster "lock_nolock", "*!\(:+%)º" gfs2: fsid=*!\(:+%)º: Now mounting FS... attempt to access beyond end of device loop1: rw=4096, want=136, limit=15 gfs2: error 10 reading superblock gfs2: fsid=*!\(:+%)º: can't read superblock gfs2: fsid=*!\(:+%)º: can't read superblock: -5 gfs2: fsid=*!\(:+%)º: Trying to join cluster "lock_nolock", "*!\(:+%)º" BFS-fs: bfs_fill_super(): No BFS filesystem on loop3 (magic=df016610) gfs2: fsid=*!\(:+%)º: Now mounting FS... attempt to access beyond end of device loop1: rw=4096, want=136, limit=16 gfs2: error 10 reading superblock gfs2: fsid=*!\(:+%)º: can't read superblock gfs2: fsid=*!\(:+%)º: can't read superblock: -5 gfs2: fsid=*!\(:+%)º: Trying to join cluster "lock_nolock", "*!\(:+%)º" gfs2: fsid=*!\(:+%)º: Now mounting FS... attempt to access beyond end of device loop1: rw=4096, want=136, limit=16 gfs2: error 10 reading superblock gfs2: fsid=*!\(:+%)º: can't read superblock gfs2: fsid=*!\(:+%)º: can't read superblock: -5 gfs2: fsid=*!\(:+%)º: Trying to join cluster "lock_nolock", "*!\(:+%)º" gfs2: fsid=*!\(:+%)º: Now mounting FS... BFS-fs: bfs_fill_super(): No BFS filesystem on loop3 (magic=df016610) attempt to access beyond end of device loop1: rw=4096, want=136, limit=16 gfs2: error 10 reading superblock gfs2: fsid=*!\(:+%)º: can't read superblock gfs2: fsid=*!\(:+%)º: can't read superblock: -5 gfs2: fsid=*!\(:+%)º: Trying to join cluster "lock_nolock", "*!\(:+%)º" gfs2: fsid=*!\(:+%)º: Now mounting FS... BFS-fs: bfs_fill_super(): No BFS filesystem on loop3 (magic=df016610) attempt to access beyond end of device loop1: rw=4096, want=136, limit=16 gfs2: error 10 reading superblock gfs2: fsid=*!\(:+%)º: can't read superblock gfs2: fsid=*!\(:+%)º: can't read superblock: -5 BFS-fs: bfs_fill_super(): No BFS filesystem on loop3 (magic=df016610) gfs2: fsid=*!\(:+%)º: Trying to join cluster "lock_nolock", "*!\(:+%)º" gfs2: fsid=*!\(:+%)º: Now mounting FS... attempt to access beyond end of device loop1: rw=4096, want=136, limit=17 gfs2: error 10 reading superblock gfs2: fsid=*!\(:+%)º: can't read superblock gfs2: fsid=*!\(:+%)º: can't read superblock: -5 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 CPU: 0 PID: 30837 Comm: syz-executor.4 Not tainted 4.19.206-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x1fc/0x2ef lib/dump_stack.c:118 fail_dump lib/fault-inject.c:51 [inline] should_fail.cold+0xa/0xf lib/fault-inject.c:149 gfs2: fsid=*!\(:+%)º: Trying to join cluster "lock_nolock", "*!\(:+%)º" __should_failslab+0x115/0x180 mm/failslab.c:32 should_failslab+0x5/0x10 mm/slab_common.c:1590 slab_pre_alloc_hook mm/slab.h:424 [inline] slab_alloc_node mm/slab.c:3304 [inline] kmem_cache_alloc_node_trace+0x244/0x3b0 mm/slab.c:3666 __do_kmalloc_node mm/slab.c:3688 [inline] __kmalloc_node+0x38/0x70 mm/slab.c:3696 kmalloc_node include/linux/slab.h:557 [inline] kvmalloc_node+0x61/0xf0 mm/util.c:423 kvmalloc include/linux/mm.h:577 [inline] __do_sys_add_key security/keys/keyctl.c:105 [inline] __se_sys_add_key+0x21f/0x430 security/keys/keyctl.c:63 gfs2: fsid=*!\(:+%)º: Now mounting FS... attempt to access beyond end of device do_syscall_64+0xf9/0x620 arch/x86/entry/common.c:293 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x7f1d6c74a739 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 loop1: rw=4096, want=136, limit=17 RSP: 002b:00007f1d69cc1188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f8 RAX: ffffffffffffffda RBX: 00007f1d6c84ef80 RCX: 00007f1d6c74a739 RDX: 0000000020000180 RSI: 0000000000000000 RDI: 0000000020000280 RBP: 00007f1d69cc11d0 R08: 0000000018163a49 R09: 0000000000000000 R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001 R13: 00007ffd43ec94ef R14: 00007f1d69cc1300 R15: 0000000000022000 BFS-fs: bfs_fill_super(): No BFS filesystem on loop3 (magic=df016610) gfs2: error 10 reading superblock gfs2: fsid=*!\(:+%)º: can't read superblock gfs2: fsid=*!\(:+%)º: can't read superblock: -5 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 CPU: 1 PID: 30876 Comm: syz-executor.4 Not tainted 4.19.206-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x1fc/0x2ef lib/dump_stack.c:118 fail_dump lib/fault-inject.c:51 [inline] should_fail.cold+0xa/0xf lib/fault-inject.c:149 gfs2: fsid=*!\(:+%)º: Trying to join cluster "lock_nolock", "*!\(:+%)º" __should_failslab+0x115/0x180 mm/failslab.c:32 should_failslab+0x5/0x10 mm/slab_common.c:1590 slab_pre_alloc_hook mm/slab.h:424 [inline] slab_alloc mm/slab.c:3383 [inline] kmem_cache_alloc_trace+0x284/0x380 mm/slab.c:3623 gfs2: fsid=*!\(:+%)º: Now mounting FS... kmalloc include/linux/slab.h:515 [inline] kzalloc include/linux/slab.h:709 [inline] x509_cert_parse+0x4e/0x6d0 crypto/asymmetric_keys/x509_cert_parser.c:72 attempt to access beyond end of device x509_key_preparse+0x61/0x8e0 crypto/asymmetric_keys/x509_public_key.c:170 asymmetric_key_preparse+0xca/0x1a0 crypto/asymmetric_keys/asymmetric_type.c:388 key_create_or_update+0x3c2/0xb90 security/keys/key.c:852 loop1: rw=4096, want=136, limit=17 gfs2: error 10 reading superblock __do_sys_add_key security/keys/keyctl.c:123 [inline] __se_sys_add_key+0x2c8/0x430 security/keys/keyctl.c:63 gfs2: fsid=*!\(:+%)º: can't read superblock do_syscall_64+0xf9/0x620 arch/x86/entry/common.c:293 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x7f1d6c74a739 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007f1d69cc1188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f8 gfs2: fsid=*!\(:+%)º: can't read superblock: -5 RAX: ffffffffffffffda RBX: 00007f1d6c84ef80 RCX: 00007f1d6c74a739 RDX: 0000000020000180 RSI: 0000000000000000 RDI: 0000000020000280 RBP: 00007f1d69cc11d0 R08: 0000000020a7e796 R09: 0000000000000000 R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001 R13: 00007ffd43ec94ef R14: 00007f1d69cc1300 R15: 0000000000022000 gfs2: fsid=*!\(:+%)º: Trying to join cluster "lock_nolock", "*!\(:+%)º" gfs2: fsid=*!\(:+%)º: Now mounting FS... attempt to access beyond end of device loop1: rw=4096, want=136, limit=17 gfs2: error 10 reading superblock gfs2: fsid=*!\(:+%)º: can't read superblock FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 gfs2: fsid=*!\(:+%)º: can't read superblock: -5 CPU: 1 PID: 30907 Comm: syz-executor.4 Not tainted 4.19.206-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x1fc/0x2ef lib/dump_stack.c:118 fail_dump lib/fault-inject.c:51 [inline] should_fail.cold+0xa/0xf lib/fault-inject.c:149 __should_failslab+0x115/0x180 mm/failslab.c:32 should_failslab+0x5/0x10 mm/slab_common.c:1590 slab_pre_alloc_hook mm/slab.h:424 [inline] slab_alloc mm/slab.c:3383 [inline] kmem_cache_alloc_trace+0x284/0x380 mm/slab.c:3623 kmalloc include/linux/slab.h:515 [inline] kzalloc include/linux/slab.h:709 [inline] x509_cert_parse+0x99/0x6d0 crypto/asymmetric_keys/x509_cert_parser.c:75 x509_key_preparse+0x61/0x8e0 crypto/asymmetric_keys/x509_public_key.c:170 asymmetric_key_preparse+0xca/0x1a0 crypto/asymmetric_keys/asymmetric_type.c:388 key_create_or_update+0x3c2/0xb90 security/keys/key.c:852 __do_sys_add_key security/keys/keyctl.c:123 [inline] __se_sys_add_key+0x2c8/0x430 security/keys/keyctl.c:63 do_syscall_64+0xf9/0x620 arch/x86/entry/common.c:293 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x7f1d6c74a739 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007f1d69cc1188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f8 RAX: ffffffffffffffda RBX: 00007f1d6c84ef80 RCX: 00007f1d6c74a739 RDX: 0000000020000180 RSI: 0000000000000000 RDI: 0000000020000280 RBP: 00007f1d69cc11d0 R08: 00000000360a4810 R09: 0000000000000000 R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001 R13: 00007ffd43ec94ef R14: 00007f1d69cc1300 R15: 0000000000022000 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 CPU: 1 PID: 30940 Comm: syz-executor.4 Not tainted 4.19.206-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x1fc/0x2ef lib/dump_stack.c:118 fail_dump lib/fault-inject.c:51 [inline] should_fail.cold+0xa/0xf lib/fault-inject.c:149 __should_failslab+0x115/0x180 mm/failslab.c:32 should_failslab+0x5/0x10 mm/slab_common.c:1590 slab_pre_alloc_hook mm/slab.h:424 [inline] slab_alloc mm/slab.c:3383 [inline] kmem_cache_alloc_trace+0x284/0x380 mm/slab.c:3623 kmalloc include/linux/slab.h:515 [inline] kzalloc include/linux/slab.h:709 [inline] x509_cert_parse+0xfc/0x6d0 crypto/asymmetric_keys/x509_cert_parser.c:78 nla_parse: 47 callbacks suppressed netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'. x509_key_preparse+0x61/0x8e0 crypto/asymmetric_keys/x509_public_key.c:170 asymmetric_key_preparse+0xca/0x1a0 crypto/asymmetric_keys/asymmetric_type.c:388 key_create_or_update+0x3c2/0xb90 security/keys/key.c:852 __do_sys_add_key security/keys/keyctl.c:123 [inline] __se_sys_add_key+0x2c8/0x430 security/keys/keyctl.c:63 do_syscall_64+0xf9/0x620 arch/x86/entry/common.c:293 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x7f1d6c74a739 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007f1d69cc1188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f8 RAX: ffffffffffffffda RBX: 00007f1d6c84ef80 RCX: 00007f1d6c74a739 RDX: 0000000020000180 RSI: 0000000000000000 RDI: 0000000020000280 RBP: 00007f1d69cc11d0 R08: 000000002210f5a0 R09: 0000000000000000 R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001 R13: 00007ffd43ec94ef R14: 00007f1d69cc1300 R15: 0000000000022000 BFS-fs: bfs_fill_super(): No BFS filesystem on loop3 (magic=df016610) gfs2: fsid=*!\(:+%)º: Trying to join cluster "lock_nolock", "*!\(:+%)º" netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. gfs2: fsid=*!\(:+%)º: Now mounting FS... netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'. attempt to access beyond end of device netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. loop1: rw=4096, want=136, limit=31 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 gfs2: error 10 reading superblock gfs2: fsid=*!\(:+%)º: can't read superblock CPU: 0 PID: 30970 Comm: syz-executor.4 Not tainted 4.19.206-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x1fc/0x2ef lib/dump_stack.c:118 fail_dump lib/fault-inject.c:51 [inline] should_fail.cold+0xa/0xf lib/fault-inject.c:149 gfs2: fsid=*!\(:+%)º: can't read superblock: -5 __should_failslab+0x115/0x180 mm/failslab.c:32 should_failslab+0x5/0x10 mm/slab_common.c:1590 slab_pre_alloc_hook mm/slab.h:424 [inline] slab_alloc mm/slab.c:3383 [inline] kmem_cache_alloc_trace+0x284/0x380 mm/slab.c:3623 kmalloc include/linux/slab.h:515 [inline] kzalloc include/linux/slab.h:709 [inline] x509_cert_parse+0x164/0x6d0 crypto/asymmetric_keys/x509_cert_parser.c:81 x509_key_preparse+0x61/0x8e0 crypto/asymmetric_keys/x509_public_key.c:170 asymmetric_key_preparse+0xca/0x1a0 crypto/asymmetric_keys/asymmetric_type.c:388 key_create_or_update+0x3c2/0xb90 security/keys/key.c:852 __do_sys_add_key security/keys/keyctl.c:123 [inline] __se_sys_add_key+0x2c8/0x430 security/keys/keyctl.c:63 do_syscall_64+0xf9/0x620 arch/x86/entry/common.c:293 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x7f1d6c74a739 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007f1d69cc1188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f8 RAX: ffffffffffffffda RBX: 00007f1d6c84ef80 RCX: 00007f1d6c74a739 RDX: 0000000020000180 RSI: 0000000000000000 RDI: 0000000020000280 RBP: 00007f1d69cc11d0 R08: 00000000208db487 R09: 0000000000000000 R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001 R13: 00007ffd43ec94ef R14: 00007f1d69cc1300 R15: 0000000000022000 gfs2: fsid=*!\(:+%)º: Trying to join cluster "lock_nolock", "*!\(:+%)º" gfs2: fsid=*!\(:+%)º: Now mounting FS... attempt to access beyond end of device loop1: rw=4096, want=136, limit=31 gfs2: error 10 reading superblock netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'. gfs2: fsid=*!\(:+%)º: can't read superblock gfs2: fsid=*!\(:+%)º: can't read superblock: -5 netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'. netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. gfs2: fsid=*!\(:+%)º: Trying to join cluster "lock_nolock", "*!\(:+%)º" gfs2: fsid=*!\(:+%)º: Now mounting FS... BFS-fs: bfs_fill_super(): No BFS filesystem on loop3 (magic=df016610) attempt to access beyond end of device loop1: rw=4096, want=136, limit=36 netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'. gfs2: error 10 reading superblock gfs2: fsid=*!\(:+%)º: can't read superblock gfs2: fsid=*!\(:+%)º: can't read superblock: -5 netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. gfs2: fsid=*!\(:+%)º: Trying to join cluster "lock_nolock", "*!\(:+%)º" gfs2: fsid=*!\(:+%)º: Now mounting FS... attempt to access beyond end of device loop1: rw=4096, want=136, limit=36 gfs2: error 10 reading superblock gfs2: fsid=*!\(:+%)º: can't read superblock gfs2: fsid=*!\(:+%)º: can't read superblock: -5 gfs2: fsid=*!\(:+%)º: Trying to join cluster "lock_nolock", "*!\(:+%)º" gfs2: fsid=*!\(:+%)º: Now mounting FS... attempt to access beyond end of device loop1: rw=4096, want=136, limit=38 gfs2: error 10 reading superblock gfs2: fsid=*!\(:+%)º: can't read superblock gfs2: fsid=*!\(:+%)º: can't read superblock: -5 gfs2: fsid=*!\(:+%)º: Trying to join cluster "lock_nolock", "*!\(:+%)º" gfs2: fsid=*!\(:+%)º: Now mounting FS... attempt to access beyond end of device