[ 29.267192] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 29.274338] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 29.282794] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 29.292141] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 29.302868] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 29.382777] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 29.894334] can: request_module (can-proto-0) failed. [ 29.904124] can: request_module (can-proto-0) failed. [ 29.913240] can: request_module (can-proto-0) failed. [ 39.705183] unregister_netdevice: waiting for ip6gre0 to become free. Usage count = -1 Warning: Permanently added '10.128.10.54' (ECDSA) to the list of known hosts. [ 48.103231] FAULT_INJECTION: forcing a failure. [ 48.103231] name failslab, interval 1, probability 0, space 0, times 1 [ 48.115549] CPU: 1 PID: 8287 Comm: syz-executor409 Not tainted 4.14.275-syzkaller #0 [ 48.123731] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 48.133889] Call Trace: [ 48.136464] dump_stack+0x14b/0x1e7 [ 48.140070] should_fail.cold.2+0x105/0x144 [ 48.144473] should_failslab+0xba/0xf0 [ 48.148363] kmem_cache_alloc_node_trace+0x25b/0x3f0 [ 48.153556] __kmalloc_node+0x3c/0x70 [ 48.157453] blk_mq_alloc_rq_map+0xaa/0x1e0 [ 48.161750] blk_mq_sched_alloc_tags.isra.3+0x76/0x150 [ 48.167004] blk_mq_sched_init_hctx+0x8b/0x190 [ 48.171760] blk_mq_realloc_hw_ctxs+0x667/0xe90 [ 48.176428] ? blk_mq_map_queues+0x90/0x2f0 [ 48.180740] ? wait_woken+0x2a0/0x2a0 [ 48.184529] blk_mq_update_nr_hw_queues+0x1ca/0x390 [ 48.189604] nbd_start_device+0x1b6/0xc50 [ 48.193734] ? security_capable+0x6f/0xa0 [ 48.197868] nbd_ioctl+0x1ae/0xad0 [ 48.201422] ? get_pid_task+0x6e/0x100 [ 48.205292] ? nbd_release+0x140/0x140 [ 48.209176] ? get_pid_task+0x8b/0x100 [ 48.213043] blkdev_ioctl+0x7c0/0x1760 [ 48.216928] ? blkpg_ioctl+0x8c0/0x8c0 [ 48.220798] ? lock_downgrade+0x7f0/0x7f0 [ 48.225180] ? __vfs_write+0xdb/0x840 [ 48.228973] ? debug_check_no_obj_freed+0x2d5/0x890 [ 48.233990] block_ioctl+0xd7/0x130 [ 48.237660] do_vfs_ioctl+0x180/0xfb0 [ 48.241539] ? ioctl_preallocate+0x1a0/0x1a0 [ 48.246108] ? __sb_end_write+0xa4/0xd0 [ 48.250152] ? vfs_write+0x30b/0x4f0 [ 48.253966] ? SyS_write+0x100/0x250 [ 48.257708] ? SyS_read+0x250/0x250 [ 48.261322] SyS_ioctl+0x74/0x80 [ 48.264677] ? do_vfs_ioctl+0xfb0/0xfb0 [ 48.268641] do_syscall_64+0x1c7/0x5b0 [ 48.272510] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 48.277351] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 48.282520] RIP: 0033:0x7f15726d4dc9 [ 48.286854] RSP: 002b:00007ffcae0ab4b8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 48.294841] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f15726d4dc9 [ 48.302209] RDX: 0000000000000000 RSI: 000000000000ab03 RDI: 0000000000000007 [ 48.309473] RBP: 00007ffcae0ab4c0 R08: 0000000000000002 R09: 00007f1572003631 [ 48.316720] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000008 [ 48.324089] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 48.334206] BUG: unable to handle kernel NULL pointer dereference at 0000000000000120 [ 48.342760] IP: blk_mq_map_swqueue+0x23a/0xa60 [ 48.347348] PGD af251067 P4D af251067 PUD 93069067 PMD 0 [ 48.352879] Oops: 0002 [#1] PREEMPT SMP KASAN [ 48.357472] Modules linked in: [ 48.360766] CPU: 1 PID: 8287 Comm: syz-executor409 Not tainted 4.14.275-syzkaller #0 [ 48.368627] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 48.377982] task: ffff88809ecec240 task.stack: ffff8880ac1d0000 [ 48.384120] RIP: 0010:blk_mq_map_swqueue+0x23a/0xa60 [ 48.389295] RSP: 0018:ffff8880ac1d79e0 EFLAGS: 00010297 [ 48.394918] RAX: ffff8880ae94bec8 RBX: 0000000000000007 RCX: ffffe8ffffd35240 [ 48.402472] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000 [ 48.410117] RBP: ffff8880ac1d7a58 R08: 0000000000000001 R09: 0000000000000001 [ 48.417460] R10: ffff8880ae94bec0 R11: ffff8880aef74080 R12: ffff8880ae94c840 [ 48.424833] R13: fffffbfff1412306 R14: ffff8880aea510b0 R15: dffffc0000000000 [ 48.432267] FS: 0000555557163300(0000) GS:ffff8880ba700000(0000) knlGS:0000000000000000 [ 48.440564] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 48.446688] CR2: 0000000000000120 CR3: 00000000ab1fd000 CR4: 00000000003406e0 [ 48.453940] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 48.461194] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 48.468450] Call Trace: [ 48.471026] blk_mq_update_nr_hw_queues+0x219/0x390 [ 48.476205] nbd_start_device+0x1b6/0xc50 [ 48.480336] ? security_capable+0x6f/0xa0 [ 48.484461] nbd_ioctl+0x1ae/0xad0 [ 48.487987] ? get_pid_task+0x6e/0x100 [ 48.492028] ? nbd_release+0x140/0x140 [ 48.495891] ? get_pid_task+0x8b/0x100 [ 48.499839] blkdev_ioctl+0x7c0/0x1760 [ 48.503708] ? blkpg_ioctl+0x8c0/0x8c0 [ 48.507568] ? lock_downgrade+0x7f0/0x7f0 [ 48.512038] ? __vfs_write+0xdb/0x840 [ 48.515911] ? debug_check_no_obj_freed+0x2d5/0x890 [ 48.520904] block_ioctl+0xd7/0x130 [ 48.524507] do_vfs_ioctl+0x180/0xfb0 [ 48.528372] ? ioctl_preallocate+0x1a0/0x1a0 [ 48.532758] ? __sb_end_write+0xa4/0xd0 [ 48.536705] ? vfs_write+0x30b/0x4f0 [ 48.540491] ? SyS_write+0x100/0x250 [ 48.544198] ? SyS_read+0x250/0x250 [ 48.547804] SyS_ioctl+0x74/0x80 [ 48.551163] ? do_vfs_ioctl+0xfb0/0xfb0 [ 48.555122] do_syscall_64+0x1c7/0x5b0 [ 48.558998] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 48.563827] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 48.569112] RIP: 0033:0x7f15726d4dc9 [ 48.572803] RSP: 002b:00007ffcae0ab4b8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 48.580582] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f15726d4dc9 [ 48.587958] RDX: 0000000000000000 RSI: 000000000000ab03 RDI: 0000000000000007 [ 48.595202] RBP: 00007ffcae0ab4c0 R08: 0000000000000002 R09: 00007f1572003631 [ 48.602970] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000008 [ 48.610226] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 48.617477] Code: 0f 85 11 05 00 00 8b 00 49 8d 04 c2 48 89 c6 48 c1 ee 03 42 80 3c 3e 00 0f 85 cc 04 00 00 41 83 f8 07 48 8b 30 0f 87 f3 03 00 00 4c 0f ab 8e 20 01 00 00 48 8d be 78 01 00 00 48 89 f8 48 c1 [ 48.636726] RIP: blk_mq_map_swqueue+0x23a/0xa60 RSP: ffff8880ac1d79e0 [ 48.643281] CR2: 0000000000000120 [ 48.646713] ---[ end trace 1d12247d04ebaf97 ]--- [ 48.651438] Kernel panic - not syncing: Fatal exception [ 48.657033] Kernel Offset: disabled [ 48.660650] Rebooting in 86400 seconds..