./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1020049685 <...> syzkaller syzkaller login: [ 11.417835][ T24] kauditd_printk_skb: 60 callbacks suppressed [ 11.417845][ T24] audit: type=1400 audit(1665088542.880:71): avc: denied { transition } for pid=290 comm="sshd" path="/bin/sh" dev="sda1" ino=73 scontext=system_u:system_r:initrc_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 11.422182][ T24] audit: type=1400 audit(1665088542.880:72): avc: denied { write } for pid=290 comm="sh" path="pipe:[1000]" dev="pipefs" ino=1000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:initrc_t tclass=fifo_file permissive=1 [ 12.504142][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #08!!! [ 12.914198][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #80!!! [ 13.394901][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #80!!! [ 13.644212][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #80!!! [ 14.694901][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #80!!! Warning: Permanently added '10.128.0.151' (ECDSA) to the list of known hosts. execve("./syz-executor1020049685", ["./syz-executor1020049685"], 0x7ffe6fe4af70 /* 10 vars */) = 0 brk(NULL) = 0x55555728f000 brk(0x55555728fc40) = 0x55555728fc40 arch_prctl(ARCH_SET_FS, 0x55555728f300) = 0 uname({sysname="Linux", nodename="syzkaller", ...}) = 0 readlink("/proc/self/exe", "/root/syz-executor1020049685", 4096) = 28 brk(0x5555572b0c40) = 0x5555572b0c40 brk(0x5555572b1000) = 0x5555572b1000 mprotect(0x7f00ac89d000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 openat(AT_FDCWD, "/sys/kernel/debug/failslab/ignore-gfp-wait", O_WRONLY|O_CLOEXEC) = 3 write(3, "N", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/sys/kernel/debug/fail_futex/ignore-private", O_WRONLY|O_CLOEXEC) = 3 write(3, "N", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/ignore-gfp-highmem", O_WRONLY|O_CLOEXEC) = 3 write(3, "N", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/ignore-gfp-wait", O_WRONLY|O_CLOEXEC) = 3 write(3, "N", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/min-order", O_WRONLY|O_CLOEXEC) = 3 write(3, "0", 1) = 1 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555728f5d0) = 372 ./strace-static-x86_64: Process 372 attached [pid 372] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 372] setpgid(0, 0) = 0 [pid 372] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 372] write(3, "1000", 4) = 4 [pid 372] close(3) = 0 [pid 372] openat(AT_FDCWD, "/dev/loop-control", O_RDONLY) = 3 [pid 372] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 4 [pid 372] write(4, "71", 2) = 2 [pid 372] ioctl(3, LOOP_CTL_ADD, 0) = -1 EEXIST (File exists) [ 20.683458][ T24] audit: type=1400 audit(1665088552.140:73): avc: denied { execmem } for pid=371 comm="syz-executor102" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 20.704700][ T24] audit: type=1400 audit(1665088552.170:74): avc: denied { read } for pid=372 comm="syz-executor102" name="loop-control" dev="devtmpfs" ino=114 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1 [pid 372] ioctl(3, LOOP_CTL_REMOVE, 0) = 0 [pid 372] exit_group(0) = ? [pid 372] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=372, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 374 attached , child_tidptr=0x55555728f5d0) = 374 [pid 374] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 374] setpgid(0, 0) = 0 [pid 374] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 374] write(3, "1000", 4) = 4 [pid 374] close(3) = 0 [pid 374] openat(AT_FDCWD, "/dev/loop-control", O_RDONLY) = 3 [pid 374] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 4 [pid 374] write(4, "71", 2) = 2 [ 20.729408][ T24] audit: type=1400 audit(1665088552.170:75): avc: denied { open } for pid=372 comm="syz-executor102" path="/dev/loop-control" dev="devtmpfs" ino=114 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1 [ 20.754783][ T24] audit: type=1400 audit(1665088552.170:76): avc: denied { ioctl } for pid=372 comm="syz-executor102" path="/dev/loop-control" dev="devtmpfs" ino=114 ioctlcmd=0x4c80 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1 [ 20.785422][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #08!!! [ 20.794735][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #08!!! [ 20.803729][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #08!!! [ 20.816296][ T374] FAULT_INJECTION: forcing a failure. [ 20.816296][ T374] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 20.829650][ T374] CPU: 1 PID: 374 Comm: syz-executor102 Not tainted 5.10.147-syzkaller-01341-gbc7618b4936f #0 [ 20.839876][ T374] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 20.849914][ T374] Call Trace: [ 20.853195][ T374] dump_stack_lvl+0x1e2/0x24b [ 20.857848][ T374] ? bfq_pos_tree_add_move+0x43e/0x43e [ 20.863280][ T374] ? stack_depot_save+0x433/0x4a0 [ 20.868278][ T374] dump_stack+0x15/0x17 [ 20.872409][ T374] should_fail+0x3c0/0x510 [ 20.876799][ T374] should_fail_alloc_page+0x50/0x60 [ 20.881978][ T374] __alloc_pages_nodemask+0x1c0/0x890 [ 20.887334][ T374] ? loop_add+0x58f/0x760 [ 20.891643][ T374] ? loop_control_ioctl+0x564/0x740 [ 20.896814][ T374] ? __se_sys_ioctl+0x115/0x190 [ 20.901647][ T374] ? gfp_pfmemalloc_allowed+0x120/0x120 [ 20.907169][ T374] ? __kasan_check_write+0x14/0x20 [ 20.912260][ T374] ? lockref_get+0x1b3/0x2a0 [ 20.916825][ T374] ? __kasan_check_write+0x14/0x20 [ 20.921910][ T374] __get_free_pages+0xe/0x30 [ 20.926473][ T374] selinux_genfs_get_sid+0x56/0x250 [ 20.931642][ T374] inode_doinit_with_dentry+0x858/0x1030 [ 20.937243][ T374] ? sb_finish_set_opts+0x7f0/0x7f0 [ 20.942417][ T374] ? current_time+0x1c4/0x310 [ 20.947067][ T374] selinux_d_instantiate+0x27/0x40 [ 20.952148][ T374] security_d_instantiate+0xa5/0x100 [ 20.957501][ T374] d_instantiate+0x55/0x90 [ 20.961893][ T374] __debugfs_create_file+0x2d7/0x4a0 [ 20.967151][ T374] ? up_write+0x19/0xd0 [ 20.971280][ T374] debugfs_create_file+0x4a/0x60 [ 20.976189][ T374] bdi_register_va+0x2ab/0x600 [ 20.980930][ T374] bdi_register+0xd1/0x120 [ 20.985324][ T374] ? __device_add_disk+0x536/0x11d0 [ 20.990506][ T374] ? bdi_register_va+0x600/0x600 [ 20.995417][ T374] ? vsnprintf+0x1bfd/0x1cd0 [ 20.999980][ T374] ? __kasan_check_read+0x11/0x20 [ 21.004975][ T374] ? blk_alloc_devt+0xd4/0x320 [ 21.009710][ T374] __device_add_disk+0x5cb/0x11d0 [ 21.014711][ T374] ? device_add_disk+0x40/0x40 [ 21.019452][ T374] ? loop_add+0x3a0/0x760 [ 21.023750][ T374] ? vsprintf+0x40/0x40 [ 21.027880][ T374] device_add_disk+0x2a/0x40 [ 21.032439][ T374] loop_add+0x58f/0x760 [ 21.036567][ T374] loop_control_ioctl+0x564/0x740 [ 21.041562][ T374] ? loop_remove+0xb0/0xb0 [ 21.045954][ T374] ? _raw_spin_unlock_irq+0x4e/0x70 [ 21.051132][ T374] ? ptrace_notify+0x248/0x340 [ 21.055865][ T374] ? do_notify_parent+0xa40/0xa40 [ 21.060859][ T374] ? __fpregs_load_activate+0x1e7/0x370 [ 21.066375][ T374] ? security_file_ioctl+0xb1/0xd0 [ 21.071459][ T374] ? loop_remove+0xb0/0xb0 [ 21.075846][ T374] __se_sys_ioctl+0x115/0x190 [ 21.080497][ T374] __x64_sys_ioctl+0x7b/0x90 [pid 374] ioctl(3, LOOP_CTL_ADD, 0) = 0 [pid 374] ioctl(3, LOOP_CTL_REMOVE, 0) = -1 EBUSY (Device or resource busy) [pid 374] exit_group(0) = ? [pid 374] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=374, si_uid=0, si_status=0, si_utime=0, si_stime=1} --- [ 21.085060][ T374] do_syscall_64+0x34/0x70 [ 21.089450][ T374] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 21.095311][ T374] RIP: 0033:0x7f00ac830069 [ 21.099694][ T374] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 21.119274][ T374] RSP: 002b:00007ffd12e028d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 21.127671][ T374] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f00ac830069 restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555728f5d0) = 375 ./strace-static-x86_64: Process 375 attached [pid 375] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 375] setpgid(0, 0) = 0 [pid 375] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 375] write(3, "1000", 4) = 4 [pid 375] close(3) = 0 [pid 375] openat(AT_FDCWD, "/dev/loop-control", O_RDONLY) = 3 [pid 375] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 4 [pid 375] write(4, "71", 2) = 2 [pid 375] ioctl(3, LOOP_CTL_ADD, 0) = -1 EEXIST (File exists) [pid 375] ioctl(3, LOOP_CTL_REMOVE, 0) = 0 [pid 375] exit_group(0) = ? [pid 375] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=375, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555728f5d0) = 376 ./strace-static-x86_64: Process 376 attached [pid 376] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 376] setpgid(0, 0) = 0 [pid 376] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 376] write(3, "1000", 4) = 4 [pid 376] close(3) = 0 [pid 376] openat(AT_FDCWD, "/dev/loop-control", O_RDONLY) = 3 [pid 376] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 4 [pid 376] write(4, "71", 2) = 2 [ 21.135628][ T374] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 21.144355][ T374] RBP: 00007ffd12e028f0 R08: 0000000000000002 R09: 0000000000000001 [ 21.152314][ T374] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 21.160270][ T374] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 21.220059][ T376] FAULT_INJECTION: forcing a failure. [ 21.220059][ T376] name failslab, interval 1, probability 0, space 0, times 1 [ 21.233265][ T376] CPU: 1 PID: 376 Comm: syz-executor102 Not tainted 5.10.147-syzkaller-01341-gbc7618b4936f #0 [ 21.243473][ T376] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 21.253500][ T376] Call Trace: [ 21.256767][ T376] dump_stack_lvl+0x1e2/0x24b [ 21.261417][ T376] ? panic+0x7d7/0x7d7 [ 21.265467][ T376] ? entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 21.271516][ T376] ? bfq_pos_tree_add_move+0x43e/0x43e [ 21.276946][ T376] dump_stack+0x15/0x17 [ 21.281079][ T376] should_fail+0x3c0/0x510 [ 21.285465][ T376] __should_failslab+0x9f/0xe0 [ 21.290199][ T376] should_failslab+0x9/0x20 [ 21.294676][ T376] kmem_cache_alloc+0x3f/0x300 [ 21.299411][ T376] ? security_inode_alloc+0x29/0x140 [ 21.304677][ T376] security_inode_alloc+0x29/0x140 [ 21.309764][ T376] inode_init_always+0x3c5/0x950 [ 21.314668][ T376] new_inode_pseudo+0x93/0x220 [ 21.319401][ T376] new_inode+0x28/0x1c0 [ 21.323531][ T376] ? start_creating+0x206/0x320 [ 21.328351][ T376] __debugfs_create_file+0x143/0x4a0 [ 21.333611][ T376] ? up_write+0x19/0xd0 [ 21.337743][ T376] debugfs_create_file+0x4a/0x60 [ 21.342647][ T376] bdi_register_va+0x2ab/0x600 [ 21.347376][ T376] bdi_register+0xd1/0x120 [ 21.352896][ T376] ? __device_add_disk+0x536/0x11d0 [ 21.358061][ T376] ? bdi_register_va+0x600/0x600 [ 21.363083][ T376] ? vsnprintf+0x1bfd/0x1cd0 [ 21.367654][ T376] ? __kasan_check_read+0x11/0x20 [ 21.372654][ T376] ? blk_alloc_devt+0xd4/0x320 [ 21.377431][ T376] __device_add_disk+0x5cb/0x11d0 [ 21.382427][ T376] ? device_add_disk+0x40/0x40 [ 21.387166][ T376] ? loop_add+0x3a0/0x760 [ 21.391551][ T376] ? vsprintf+0x40/0x40 [ 21.395679][ T376] device_add_disk+0x2a/0x40 [ 21.400239][ T376] loop_add+0x58f/0x760 [ 21.404365][ T376] loop_control_ioctl+0x564/0x740 [ 21.410661][ T376] ? loop_remove+0xb0/0xb0 [ 21.415049][ T376] ? _raw_spin_unlock_irq+0x4e/0x70 [ 21.420219][ T376] ? ptrace_notify+0x248/0x340 [ 21.424954][ T376] ? do_notify_parent+0xa40/0xa40 [ 21.429949][ T376] ? __fpregs_load_activate+0x1e7/0x370 [ 21.435469][ T376] ? security_file_ioctl+0xb1/0xd0 [ 21.440554][ T376] ? loop_remove+0xb0/0xb0 [ 21.444943][ T376] __se_sys_ioctl+0x115/0x190 [ 21.449591][ T376] __x64_sys_ioctl+0x7b/0x90 [ 21.454163][ T376] do_syscall_64+0x34/0x70 [ 21.458559][ T376] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 21.464423][ T376] RIP: 0033:0x7f00ac830069 [pid 376] ioctl(3, LOOP_CTL_ADD, 0) = 0 [ 21.468808][ T376] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 21.488387][ T376] RSP: 002b:00007ffd12e028d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 21.496786][ T376] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f00ac830069 [ 21.504728][ T376] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 21.512675][ T376] RBP: 00007ffd12e028f0 R08: 0000000000000002 R09: 0000000000000001 [pid 376] ioctl(3, LOOP_CTL_REMOVE, 0) = 0 [pid 376] exit_group(0) = ? [pid 376] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=376, si_uid=0, si_status=0, si_utime=0, si_stime=1} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555728f5d0) = 377 ./strace-static-x86_64: Process 377 attached [pid 377] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 377] setpgid(0, 0) = 0 [pid 377] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 377] write(3, "1000", 4) = 4 [pid 377] close(3) = 0 [pid 377] openat(AT_FDCWD, "/dev/loop-control", O_RDONLY) = 3 [pid 377] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 4 [pid 377] write(4, "71", 2) = 2 [ 21.520616][ T376] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 21.528567][ T376] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 21.536582][ T376] debugfs: out of free dentries, can not create file 'stats' [ 21.589916][ T377] FAULT_INJECTION: forcing a failure. [ 21.589916][ T377] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 21.603224][ T377] CPU: 1 PID: 377 Comm: syz-executor102 Not tainted 5.10.147-syzkaller-01341-gbc7618b4936f #0 [ 21.613491][ T377] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 21.623523][ T377] Call Trace: [ 21.626799][ T377] dump_stack_lvl+0x1e2/0x24b [ 21.631467][ T377] ? bfq_pos_tree_add_move+0x43e/0x43e [ 21.636912][ T377] dump_stack+0x15/0x17 [ 21.641042][ T377] should_fail+0x3c0/0x510 [ 21.645447][ T377] should_fail_alloc_page+0x50/0x60 [ 21.650625][ T377] __alloc_pages_nodemask+0x1c0/0x890 [ 21.655978][ T377] ? gfp_pfmemalloc_allowed+0x120/0x120 [ 21.661502][ T377] ? stack_trace_save+0x12d/0x1f0 [ 21.666502][ T377] ? stack_trace_snprint+0x100/0x100 [ 21.671771][ T377] stack_depot_save+0x373/0x4a0 [ 21.676595][ T377] ? __set_page_owner+0x28/0x2e0 [ 21.681505][ T377] save_stack+0x1b0/0x240 [ 21.685804][ T377] ? stack_trace_save+0x1f0/0x1f0 [ 21.690798][ T377] ? __reset_page_owner+0x160/0x160 [ 21.695976][ T377] ? get_page_from_freelist+0x755/0x810 [ 21.701499][ T377] ? __alloc_pages_nodemask+0x3b6/0x890 [ 21.707017][ T377] ? __get_free_pages+0xe/0x30 [ 21.711772][ T377] ? selinux_genfs_get_sid+0x56/0x250 [ 21.717133][ T377] ? inode_doinit_with_dentry+0x858/0x1030 [ 21.722931][ T377] ? selinux_d_instantiate+0x27/0x40 [ 21.728191][ T377] ? security_d_instantiate+0xa5/0x100 [ 21.733621][ T377] ? d_instantiate+0x55/0x90 [ 21.738182][ T377] ? __debugfs_create_file+0x2d7/0x4a0 [ 21.743607][ T377] ? debugfs_create_file+0x4a/0x60 [ 21.748685][ T377] ? bdi_register_va+0x2ab/0x600 [ 21.753590][ T377] ? bdi_register+0xd1/0x120 [ 21.758150][ T377] ? __device_add_disk+0x5cb/0x11d0 [ 21.763318][ T377] ? device_add_disk+0x2a/0x40 [ 21.768071][ T377] ? loop_add+0x58f/0x760 [ 21.772376][ T377] ? loop_control_ioctl+0x564/0x740 [ 21.777554][ T377] ? free_pcp_prepare+0x1c0/0x1c0 [ 21.782559][ T377] __set_page_owner+0x28/0x2e0 [ 21.787300][ T377] ? kernel_init_free_pages+0xee/0x100 [ 21.792732][ T377] get_page_from_freelist+0x755/0x810 [ 21.798166][ T377] __alloc_pages_nodemask+0x3b6/0x890 [ 21.803512][ T377] ? loop_add+0x58f/0x760 [ 21.807818][ T377] ? loop_control_ioctl+0x564/0x740 [ 21.812987][ T377] ? __se_sys_ioctl+0x115/0x190 [ 21.817900][ T377] ? gfp_pfmemalloc_allowed+0x120/0x120 [ 21.823424][ T377] ? __kasan_check_write+0x14/0x20 [ 21.828508][ T377] ? lockref_get+0x1b3/0x2a0 [ 21.833079][ T377] ? __kasan_check_write+0x14/0x20 [ 21.838259][ T377] __get_free_pages+0xe/0x30 [ 21.842847][ T377] selinux_genfs_get_sid+0x56/0x250 [ 21.848027][ T377] inode_doinit_with_dentry+0x858/0x1030 [ 21.853638][ T377] ? sb_finish_set_opts+0x7f0/0x7f0 [ 21.858811][ T377] ? current_time+0x1c4/0x310 [ 21.863460][ T377] selinux_d_instantiate+0x27/0x40 [ 21.868545][ T377] security_d_instantiate+0xa5/0x100 [ 21.873799][ T377] d_instantiate+0x55/0x90 [ 21.878189][ T377] __debugfs_create_file+0x2d7/0x4a0 [ 21.883461][ T377] ? up_write+0x19/0xd0 [ 21.887595][ T377] debugfs_create_file+0x4a/0x60 [ 21.892507][ T377] bdi_register_va+0x2ab/0x600 [ 21.897257][ T377] bdi_register+0xd1/0x120 [ 21.901667][ T377] ? __device_add_disk+0x536/0x11d0 [ 21.906840][ T377] ? bdi_register_va+0x600/0x600 [ 21.911747][ T377] ? vsnprintf+0x1bfd/0x1cd0 [ 21.916310][ T377] ? __kasan_check_read+0x11/0x20 [ 21.921312][ T377] ? blk_alloc_devt+0xd4/0x320 [ 21.926056][ T377] __device_add_disk+0x5cb/0x11d0 [ 21.931060][ T377] ? device_add_disk+0x40/0x40 [ 21.935797][ T377] ? loop_add+0x3a0/0x760 [ 21.940100][ T377] ? vsprintf+0x40/0x40 [ 21.944228][ T377] device_add_disk+0x2a/0x40 [ 21.948790][ T377] loop_add+0x58f/0x760 [ 21.952924][ T377] loop_control_ioctl+0x564/0x740 [ 21.957946][ T377] ? loop_remove+0xb0/0xb0 [ 21.962338][ T377] ? _raw_spin_unlock_irq+0x4e/0x70 [ 21.967533][ T377] ? ptrace_notify+0x248/0x340 [ 21.972277][ T377] ? do_notify_parent+0xa40/0xa40 [ 21.977279][ T377] ? __fpregs_load_activate+0x1e7/0x370 [ 21.982801][ T377] ? security_file_ioctl+0xb1/0xd0 [ 21.987885][ T377] ? loop_remove+0xb0/0xb0 [ 21.992273][ T377] __se_sys_ioctl+0x115/0x190 [ 21.996931][ T377] __x64_sys_ioctl+0x7b/0x90 [ 22.001498][ T377] do_syscall_64+0x34/0x70 [ 22.005895][ T377] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 22.011759][ T377] RIP: 0033:0x7f00ac830069 [ 22.016149][ T377] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [pid 377] ioctl(3, LOOP_CTL_ADD, 0) = 0 [pid 377] ioctl(3, LOOP_CTL_REMOVE, 0) = 0 [pid 377] exit_group(0) = ? [pid 377] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=377, si_uid=0, si_status=0, si_utime=0, si_stime=2} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555728f5d0) = 379 ./strace-static-x86_64: Process 379 attached [pid 379] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 379] setpgid(0, 0) = 0 [pid 379] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 379] write(3, "1000", 4) = 4 [pid 379] close(3) = 0 [pid 379] openat(AT_FDCWD, "/dev/loop-control", O_RDONLY) = 3 [pid 379] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 4 [pid 379] write(4, "71", 2) = 2 [ 22.035732][ T377] RSP: 002b:00007ffd12e028d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 22.044133][ T377] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f00ac830069 [ 22.052085][ T377] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 22.060028][ T377] RBP: 00007ffd12e028f0 R08: 0000000000000002 R09: 0000000000000001 [ 22.067973][ T377] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 22.075918][ T377] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 22.130395][ T379] FAULT_INJECTION: forcing a failure. [ 22.130395][ T379] name failslab, interval 1, probability 0, space 0, times 0 [ 22.143003][ T379] CPU: 0 PID: 379 Comm: syz-executor102 Not tainted 5.10.147-syzkaller-01341-gbc7618b4936f #0 [ 22.153217][ T379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 22.163247][ T379] Call Trace: [ 22.166515][ T379] dump_stack_lvl+0x1e2/0x24b [ 22.171170][ T379] ? panic+0x7d7/0x7d7 [ 22.175210][ T379] ? bfq_pos_tree_add_move+0x43e/0x43e [ 22.180647][ T379] ? _raw_spin_lock_bh+0xa3/0x1b0 [ 22.185644][ T379] ? _raw_spin_lock_irq+0x1b0/0x1b0 [ 22.190814][ T379] dump_stack+0x15/0x17 [ 22.194940][ T379] should_fail+0x3c0/0x510 [ 22.199328][ T379] ? kobj_map+0x72/0x6f0 [ 22.203540][ T379] __should_failslab+0x9f/0xe0 [ 22.208289][ T379] should_failslab+0x9/0x20 [ 22.212768][ T379] __kmalloc+0x60/0x360 [ 22.216896][ T379] ? __device_add_disk+0x536/0x11d0 [ 22.222151][ T379] kobj_map+0x72/0x6f0 [ 22.226261][ T379] ? exact_match+0x20/0x20 [ 22.230657][ T379] ? bdev_check_media_change+0x4c0/0x4c0 [ 22.236291][ T379] __device_add_disk+0x663/0x11d0 [ 22.241295][ T379] ? device_add_disk+0x40/0x40 [ 22.246046][ T379] ? loop_add+0x3a0/0x760 [ 22.250346][ T379] ? vsprintf+0x40/0x40 [ 22.254475][ T379] device_add_disk+0x2a/0x40 [ 22.259037][ T379] loop_add+0x58f/0x760 [ 22.263162][ T379] loop_control_ioctl+0x564/0x740 [ 22.268157][ T379] ? loop_remove+0xb0/0xb0 [ 22.272544][ T379] ? _raw_spin_unlock_irq+0x4e/0x70 [ 22.277716][ T379] ? ptrace_notify+0x248/0x340 [ 22.282472][ T379] ? do_notify_parent+0xa40/0xa40 [ 22.287486][ T379] ? __fpregs_load_activate+0x1e7/0x370 [ 22.293010][ T379] ? security_file_ioctl+0xb1/0xd0 [ 22.298100][ T379] ? loop_remove+0xb0/0xb0 [ 22.302495][ T379] __se_sys_ioctl+0x115/0x190 [ 22.307165][ T379] __x64_sys_ioctl+0x7b/0x90 [ 22.311741][ T379] do_syscall_64+0x34/0x70 [ 22.316195][ T379] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 22.322058][ T379] RIP: 0033:0x7f00ac830069 [pid 379] ioctl(3, LOOP_CTL_ADD, 0) = 0 [pid 379] ioctl(3, LOOP_CTL_REMOVE, 0) = -1 EBUSY (Device or resource busy) [pid 379] exit_group(0) = ? [pid 379] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=379, si_uid=0, si_status=0, si_utime=0, si_stime=1} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555728f5d0) = 380 ./strace-static-x86_64: Process 380 attached [pid 380] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 380] setpgid(0, 0) = 0 [pid 380] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 380] write(3, "1000", 4) = 4 [pid 380] close(3) = 0 [pid 380] openat(AT_FDCWD, "/dev/loop-control", O_RDONLY) = 3 [pid 380] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 4 [pid 380] write(4, "71", 2) = 2 [pid 380] ioctl(3, LOOP_CTL_ADD, 0) = -1 EEXIST (File exists) [ 22.326470][ T379] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 22.346135][ T379] RSP: 002b:00007ffd12e028d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 22.354522][ T379] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f00ac830069 [ 22.362470][ T379] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 22.370420][ T379] RBP: 00007ffd12e028f0 R08: 0000000000000002 R09: 0000000000000001 [pid 380] ioctl(3, LOOP_CTL_REMOVE, 0) = 0 [pid 380] exit_group(0) = ? [pid 380] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=380, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555728f5d0) = 381 ./strace-static-x86_64: Process 381 attached [pid 381] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 381] setpgid(0, 0) = 0 [pid 381] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 381] write(3, "1000", 4) = 4 [pid 381] close(3) = 0 [pid 381] openat(AT_FDCWD, "/dev/loop-control", O_RDONLY) = 3 [pid 381] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 4 [pid 381] write(4, "71", 2) = 2 [ 22.378364][ T379] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 22.386306][ T379] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 22.441705][ T381] FAULT_INJECTION: forcing a failure. [ 22.441705][ T381] name failslab, interval 1, probability 0, space 0, times 0 [ 22.454358][ T381] CPU: 0 PID: 381 Comm: syz-executor102 Not tainted 5.10.147-syzkaller-01341-gbc7618b4936f #0 [ 22.464573][ T381] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 22.474605][ T381] Call Trace: [ 22.477870][ T381] dump_stack_lvl+0x1e2/0x24b [ 22.482517][ T381] ? panic+0x7d7/0x7d7 [ 22.486557][ T381] ? bfq_pos_tree_add_move+0x43e/0x43e [ 22.491986][ T381] ? __kasan_kmalloc+0x9/0x10 [ 22.496632][ T381] ? kobj_map+0x72/0x6f0 [ 22.500846][ T381] ? __device_add_disk+0x663/0x11d0 [ 22.506014][ T381] ? device_add_disk+0x2a/0x40 [ 22.510748][ T381] ? loop_control_ioctl+0x564/0x740 [ 22.515918][ T381] ? __se_sys_ioctl+0x115/0x190 [ 22.520736][ T381] ? __x64_sys_ioctl+0x7b/0x90 [ 22.525559][ T381] dump_stack+0x15/0x17 [ 22.529690][ T381] should_fail+0x3c0/0x510 [ 22.534136][ T381] ? kvasprintf_const+0x139/0x180 [ 22.539147][ T381] __should_failslab+0x9f/0xe0 [ 22.543896][ T381] should_failslab+0x9/0x20 [ 22.548372][ T381] __kmalloc_track_caller+0x5f/0x350 [ 22.553629][ T381] kstrdup_const+0x55/0x90 [ 22.558020][ T381] kvasprintf_const+0x139/0x180 [ 22.562843][ T381] kobject_set_name_vargs+0x61/0x120 [ 22.568224][ T381] dev_set_name+0xd1/0x120 [ 22.572619][ T381] ? __kmalloc+0x1f7/0x360 [ 22.577007][ T381] ? get_device+0x30/0x30 [ 22.581305][ T381] ? kobj_map+0x6ad/0x6f0 [ 22.585604][ T381] __device_add_disk+0x6e5/0x11d0 [ 22.590600][ T381] ? device_add_disk+0x40/0x40 [ 22.595333][ T381] ? vsprintf+0x40/0x40 [ 22.599813][ T381] device_add_disk+0x2a/0x40 [ 22.604392][ T381] loop_add+0x58f/0x760 [ 22.608584][ T381] loop_control_ioctl+0x564/0x740 [ 22.613588][ T381] ? loop_remove+0xb0/0xb0 [ 22.617985][ T381] ? _raw_spin_unlock_irq+0x4e/0x70 [ 22.623163][ T381] ? ptrace_notify+0x248/0x340 [ 22.627904][ T381] ? do_notify_parent+0xa40/0xa40 [ 22.632912][ T381] ? __fpregs_load_activate+0x1e7/0x370 [ 22.638436][ T381] ? security_file_ioctl+0xb1/0xd0 [ 22.643527][ T381] ? loop_remove+0xb0/0xb0 [ 22.647931][ T381] __se_sys_ioctl+0x115/0x190 [ 22.652589][ T381] __x64_sys_ioctl+0x7b/0x90 [ 22.657166][ T381] do_syscall_64+0x34/0x70 [ 22.661569][ T381] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 22.667456][ T381] RIP: 0033:0x7f00ac830069 [ 22.671842][ T381] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 22.691426][ T381] RSP: 002b:00007ffd12e028d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 22.699815][ T381] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f00ac830069 [ 22.707765][ T381] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 22.715715][ T381] RBP: 00007ffd12e028f0 R08: 0000000000000002 R09: 0000000000000001 [ 22.723667][ T381] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 22.731623][ T381] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 22.739792][ T381] kobject_add_internal failed for queue (error: -2 parent: (null)) [ 22.747861][ T381] ------------[ cut here ]------------ [ 22.753328][ T381] WARNING: CPU: 0 PID: 381 at fs/sysfs/file.c:328 sysfs_create_files+0x215/0x4a0 [ 22.762434][ T381] Modules linked in: [ 22.766350][ T381] CPU: 0 PID: 381 Comm: syz-executor102 Not tainted 5.10.147-syzkaller-01341-gbc7618b4936f #0 [ 22.776578][ T381] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 22.786634][ T381] RIP: 0010:sysfs_create_files+0x215/0x4a0 [ 22.792414][ T381] Code: 24 04 48 b9 00 00 00 00 00 fc ff df 48 8b 54 24 08 4c 8b 74 24 20 eb 2b 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 e8 bb 98 9a ff <0f> 0b c7 44 24 04 ea ff ff ff 48 b9 00 00 00 00 00 fc ff df 48 8b [ 22.812032][ T381] RSP: 0018:ffffc900009bfae0 EFLAGS: 00010293 [ 22.818113][ T381] RAX: ffffffff81d252d1 RBX: ffff88810a032098 RCX: ffff8881067de2c0 [ 22.826278][ T381] RDX: 0000000000000000 RSI: ffffffff8653a880 RDI: ffff88810a032068 [ 22.834276][ T381] RBP: ffffc900009bfbb0 R08: ffffffff826c3c88 R09: ffffed102127aaf4 [ 22.842245][ T381] R10: ffffed102127aaf4 R11: 1ffff1102127aaf3 R12: 0000000000000000 [ 22.850238][ T381] R13: ffffffff854329a0 R14: ffff88810a032068 R15: ffffffff8653a880 [ 22.858214][ T381] FS: 000055555728f300(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 22.867151][ T381] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 22.873721][ T381] CR2: 000055cd7ad33028 CR3: 00000001049ba000 CR4: 00000000003506b0 [ 22.881716][ T381] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 22.889691][ T381] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 22.897661][ T381] Call Trace: [ 22.900938][ T381] ? sysfs_create_file_ns+0x2a0/0x2a0 [ 22.906345][ T381] ? __kasan_check_write+0x14/0x20 [ 22.911453][ T381] ? kobject_get+0xd2/0x120 [ 22.915962][ T381] __device_add_disk+0x9cb/0x11d0 [ 22.921064][ T381] ? device_add_disk+0x40/0x40 [ 22.925831][ T381] ? vsprintf+0x40/0x40 [ 22.929979][ T381] device_add_disk+0x2a/0x40 [ 22.934579][ T381] loop_add+0x58f/0x760 [ 22.938846][ T381] loop_control_ioctl+0x564/0x740 [ 22.943859][ T381] ? loop_remove+0xb0/0xb0 [ 22.948291][ T381] ? _raw_spin_unlock_irq+0x4e/0x70 [ 22.953483][ T381] ? ptrace_notify+0x248/0x340 [ 22.958246][ T381] ? do_notify_parent+0xa40/0xa40 [ 22.963444][ T381] ? __fpregs_load_activate+0x1e7/0x370 [ 22.969022][ T381] ? security_file_ioctl+0xb1/0xd0 [ 22.974145][ T381] ? loop_remove+0xb0/0xb0 [ 22.978547][ T381] __se_sys_ioctl+0x115/0x190 [ 22.983196][ T381] __x64_sys_ioctl+0x7b/0x90 [ 22.987786][ T381] do_syscall_64+0x34/0x70 [ 22.992188][ T381] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 22.998097][ T381] RIP: 0033:0x7f00ac830069 [ 23.002508][ T381] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 23.022129][ T381] RSP: 002b:00007ffd12e028d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 23.030644][ T381] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f00ac830069 [ 23.038626][ T381] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 23.046680][ T381] RBP: 00007ffd12e028f0 R08: 0000000000000002 R09: 0000000000000001 [ 23.054658][ T381] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 23.062629][ T381] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 23.070607][ T381] ---[ end trace 88d494f2e1e9ee43 ]--- [ 23.076063][ T381] ------------[ cut here ]------------ [ 23.081514][ T381] kernfs: can not remove 'events', no directory [ 23.087815][ T381] WARNING: CPU: 0 PID: 381 at fs/kernfs/dir.c:1515 kernfs_remove_by_name_ns+0x65/0x90 [ 23.097369][ T381] Modules linked in: [ 23.101248][ T381] CPU: 0 PID: 381 Comm: syz-executor102 Tainted: G W 5.10.147-syzkaller-01341-gbc7618b4936f #0 [ 23.112873][ T381] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 23.122936][ T381] RIP: 0010:kernfs_remove_by_name_ns+0x65/0x90 [ 23.129089][ T381] Code: 48 89 c3 e8 0d f7 9a ff 48 89 df e8 c5 ee ff ff 31 db eb 29 e8 fc f6 9a ff 48 c7 c7 c0 29 2d 85 4c 89 fe 31 c0 e8 8b 0e 6d ff <0f> 0b bb fe ff ff ff eb 16 e8 dd f6 9a ff bb fe ff ff ff 48 c7 c7 [ 23.148697][ T381] RSP: 0018:ffffc900009bfab8 EFLAGS: 00010246 [ 23.154771][ T381] RAX: f1fa4be9a203bb00 RBX: 0000000000000000 RCX: ffff8881067de2c0 [ 23.162738][ T381] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000 [ 23.171152][ T381] RBP: ffffc900009bfad0 R08: ffffffff8153d388 R09: fffff52000137e7d [ 23.179124][ T381] R10: fffff52000137e7d R11: 1ffff92000137e7c R12: ffffffff8653a880 [ 23.187099][ T381] R13: 0000000000000000 R14: 0000000000000000 R15: ffffffff85432980 [ 23.195081][ T381] FS: 000055555728f300(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 23.203985][ T381] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 23.210577][ T381] CR2: 000055cd7ad33028 CR3: 00000001049ba000 CR4: 00000000003506b0 [ 23.218558][ T381] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 23.226530][ T381] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 23.234500][ T381] Call Trace: [ 23.237769][ T381] sysfs_create_files+0x40a/0x4a0 [ 23.242769][ T381] ? sysfs_create_file_ns+0x2a0/0x2a0 [ 23.248329][ T381] ? __kasan_check_write+0x14/0x20 [ 23.253430][ T381] ? kobject_get+0xd2/0x120 [ 23.257939][ T381] __device_add_disk+0x9cb/0x11d0 [ 23.262965][ T381] ? device_add_disk+0x40/0x40 [ 23.267766][ T381] ? vsprintf+0x40/0x40 [ 23.271936][ T381] device_add_disk+0x2a/0x40 [ 23.276535][ T381] loop_add+0x58f/0x760 [ 23.280684][ T381] loop_control_ioctl+0x564/0x740 [ 23.285709][ T381] ? loop_remove+0xb0/0xb0 [ 23.290116][ T381] ? _raw_spin_unlock_irq+0x4e/0x70 [ 23.295422][ T381] ? ptrace_notify+0x248/0x340 [ 23.300184][ T381] ? do_notify_parent+0xa40/0xa40 [ 23.305215][ T381] ? __fpregs_load_activate+0x1e7/0x370 [ 23.310759][ T381] ? security_file_ioctl+0xb1/0xd0 [ 23.315884][ T381] ? loop_remove+0xb0/0xb0 [ 23.320303][ T381] __se_sys_ioctl+0x115/0x190 [ 23.324993][ T381] __x64_sys_ioctl+0x7b/0x90 [ 23.329576][ T381] do_syscall_64+0x34/0x70 [ 23.333974][ T381] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 23.339887][ T381] RIP: 0033:0x7f00ac830069 [pid 381] ioctl(3, LOOP_CTL_ADD, 0) = 0 [ 23.344304][ T381] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 23.364171][ T381] RSP: 002b:00007ffd12e028d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 23.372675][ T381] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f00ac830069 [ 23.380655][ T381] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 23.388638][ T381] RBP: 00007ffd12e028f0 R08: 0000000000000002 R09: 0000000000000001 [ 23.396628][ T381] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 23.404598][ T381] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 23.412551][ T381] ---[ end trace 88d494f2e1e9ee44 ]--- [ 23.418096][ T381] loop0: failed to create sysfs files for events [ 23.424653][ T381] ------------[ cut here ]------------ [ 23.430226][ T381] kernfs: can not remove 'events', no directory [ 23.436662][ T381] WARNING: CPU: 0 PID: 381 at fs/kernfs/dir.c:1515 kernfs_remove_by_name_ns+0x65/0x90 [ 23.446352][ T381] Modules linked in: [ 23.450505][ T381] CPU: 1 PID: 381 Comm: syz-executor102 Tainted: G W 5.10.147-syzkaller-01341-gbc7618b4936f #0 [ 23.462392][ T381] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 23.472611][ T381] RIP: 0010:kernfs_remove_by_name_ns+0x65/0x90 [ 23.478931][ T381] Code: 48 89 c3 e8 0d f7 9a ff 48 89 df e8 c5 ee ff ff 31 db eb 29 e8 fc f6 9a ff 48 c7 c7 c0 29 2d 85 4c 89 fe 31 c0 e8 8b 0e 6d ff <0f> 0b bb fe ff ff ff eb 16 e8 dd f6 9a ff bb fe ff ff ff 48 c7 c7 [ 23.498698][ T381] RSP: 0018:ffffc900009bfbf8 EFLAGS: 00010246 [ 23.504907][ T381] RAX: f1fa4be9a203bb00 RBX: 0000000000000000 RCX: ffff8881067de2c0 [ 23.513056][ T381] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000 [ 23.521158][ T381] RBP: ffffc900009bfc10 R08: ffffffff8153d388 R09: ffffed103ee0a5e8 [ 23.529189][ T381] R10: ffffed103ee0a5e8 R11: 1ffff1103ee0a5e7 R12: 0000000000000000 [ 23.537355][ T381] R13: ffffffff8653a880 R14: 0000000000000000 R15: ffffffff85432980 [ 23.545376][ T381] FS: 000055555728f300(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000 [ 23.554416][ T381] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 23.561097][ T381] CR2: 00007ffd12e028b8 CR3: 00000001049ba000 CR4: 00000000003506a0 [ 23.569737][ T381] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 23.577820][ T381] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 23.585954][ T381] Call Trace: [ 23.589227][ T381] sysfs_remove_files+0xab/0x110 [ 23.594178][ T381] del_gendisk+0x278/0xe20 [ 23.598594][ T381] ? device_add_disk_no_queue_reg+0x30/0x30 [ 23.604506][ T381] ? __radix_tree_delete+0x2ba/0x380 [ 23.609793][ T381] ? radix_tree_delete_item+0x261/0x360 [ 23.615375][ T381] loop_remove+0x46/0xb0 [ 23.619609][ T381] loop_control_ioctl+0x67f/0x740 [ 23.624635][ T381] ? loop_remove+0xb0/0xb0 [ 23.629218][ T381] ? _raw_spin_unlock_irq+0x4e/0x70 [ 23.634433][ T381] ? ptrace_notify+0x248/0x340 [ 23.639200][ T381] ? do_notify_parent+0xa40/0xa40 [ 23.644239][ T381] ? __fpregs_load_activate+0x1e7/0x370 [ 23.649778][ T381] ? security_file_ioctl+0xb1/0xd0 [ 23.655056][ T381] ? loop_remove+0xb0/0xb0 [ 23.659484][ T381] __se_sys_ioctl+0x115/0x190 [ 23.664174][ T381] __x64_sys_ioctl+0x7b/0x90 [ 23.668760][ T381] do_syscall_64+0x34/0x70 [ 23.673156][ T381] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 23.679065][ T381] RIP: 0033:0x7f00ac830069 [ 23.683468][ T381] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 23.703094][ T381] RSP: 002b:00007ffd12e028d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 23.711528][ T381] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f00ac830069 [ 23.719505][ T381] RDX: 0000000000000000 RSI: 0000000000004c81 RDI: 0000000000000003 [ 23.727493][ T381] RBP: 00007ffd12e028f0 R08: 0000000000000001 R09: 0000000000000001 [ 23.735476][ T381] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000004 [ 23.743435][ T381] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 23.751412][ T381] ---[ end trace 88d494f2e1e9ee45 ]--- [ 23.756863][ T381] ------------[ cut here ]------------ [ 23.762295][ T381] kernfs: can not remove 'events_async', no directory [ 23.769123][ T381] WARNING: CPU: 0 PID: 381 at fs/kernfs/dir.c:1515 kernfs_remove_by_name_ns+0x65/0x90 [ 23.778655][ T381] Modules linked in: [ 23.782545][ T381] CPU: 0 PID: 381 Comm: syz-executor102 Tainted: G W 5.10.147-syzkaller-01341-gbc7618b4936f #0 [ 23.794177][ T381] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 23.804259][ T381] RIP: 0010:kernfs_remove_by_name_ns+0x65/0x90 [ 23.810384][ T381] Code: 48 89 c3 e8 0d f7 9a ff 48 89 df e8 c5 ee ff ff 31 db eb 29 e8 fc f6 9a ff 48 c7 c7 c0 29 2d 85 4c 89 fe 31 c0 e8 8b 0e 6d ff <0f> 0b bb fe ff ff ff eb 16 e8 dd f6 9a ff bb fe ff ff ff 48 c7 c7 [ 23.830180][ T381] RSP: 0018:ffffc900009bfbf8 EFLAGS: 00010246 [ 23.836357][ T381] RAX: f1fa4be9a203bb00 RBX: 0000000000000000 RCX: ffff8881067de2c0 [ 23.844332][ T381] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000 [ 23.852290][ T381] RBP: ffffc900009bfc10 R08: ffffffff8153d388 R09: fffff52000137ea5 [ 23.860267][ T381] R10: fffff52000137ea5 R11: 1ffff92000137ea4 R12: 0000000000000000 [ 23.868351][ T381] R13: ffffffff8653a880 R14: 0000000000000000 R15: ffffffff85432a60 [ 23.876336][ T381] FS: 000055555728f300(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 23.885277][ T381] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 23.891849][ T381] CR2: 000055cd7ad33028 CR3: 00000001049ba000 CR4: 00000000003506b0 [ 23.900283][ T381] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 23.908278][ T381] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 23.916329][ T381] Call Trace: [ 23.919619][ T381] sysfs_remove_files+0xab/0x110 [ 23.924565][ T381] del_gendisk+0x278/0xe20 [ 23.928984][ T381] ? device_add_disk_no_queue_reg+0x30/0x30 [ 23.934878][ T381] ? __radix_tree_delete+0x2ba/0x380 [ 23.940338][ T381] ? radix_tree_delete_item+0x261/0x360 [ 23.945890][ T381] loop_remove+0x46/0xb0 [ 23.950126][ T381] loop_control_ioctl+0x67f/0x740 [ 23.955161][ T381] ? loop_remove+0xb0/0xb0 [ 23.959567][ T381] ? _raw_spin_unlock_irq+0x4e/0x70 [ 23.964768][ T381] ? ptrace_notify+0x248/0x340 [ 23.969523][ T381] ? do_notify_parent+0xa40/0xa40 [ 23.974558][ T381] ? __fpregs_load_activate+0x1e7/0x370 [ 23.980202][ T381] ? security_file_ioctl+0xb1/0xd0 [ 23.985320][ T381] ? loop_remove+0xb0/0xb0 [ 23.989754][ T381] __se_sys_ioctl+0x115/0x190 [ 23.994456][ T381] __x64_sys_ioctl+0x7b/0x90 [ 23.999038][ T381] do_syscall_64+0x34/0x70 [ 24.003428][ T381] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 24.009329][ T381] RIP: 0033:0x7f00ac830069 [ 24.013733][ T381] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 24.033343][ T381] RSP: 002b:00007ffd12e028d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 24.041816][ T381] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f00ac830069 [ 24.049885][ T381] RDX: 0000000000000000 RSI: 0000000000004c81 RDI: 0000000000000003 [ 24.057858][ T381] RBP: 00007ffd12e028f0 R08: 0000000000000001 R09: 0000000000000001 [ 24.065840][ T381] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000004 [ 24.073798][ T381] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 24.081784][ T381] ---[ end trace 88d494f2e1e9ee46 ]--- [ 24.087238][ T381] ------------[ cut here ]------------ [ 24.092668][ T381] kernfs: can not remove 'events_poll_msecs', no directory [ 24.099930][ T381] WARNING: CPU: 0 PID: 381 at fs/kernfs/dir.c:1515 kernfs_remove_by_name_ns+0x65/0x90 [ 24.109586][ T381] Modules linked in: [ 24.113478][ T381] CPU: 0 PID: 381 Comm: syz-executor102 Tainted: G W 5.10.147-syzkaller-01341-gbc7618b4936f #0 [ 24.125095][ T381] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 24.135256][ T381] RIP: 0010:kernfs_remove_by_name_ns+0x65/0x90 [ 24.141391][ T381] Code: 48 89 c3 e8 0d f7 9a ff 48 89 df e8 c5 ee ff ff 31 db eb 29 e8 fc f6 9a ff 48 c7 c7 c0 29 2d 85 4c 89 fe 31 c0 e8 8b 0e 6d ff <0f> 0b bb fe ff ff ff eb 16 e8 dd f6 9a ff bb fe ff ff ff 48 c7 c7 [ 24.161003][ T381] RSP: 0018:ffffc900009bfbf8 EFLAGS: 00010246 [ 24.167085][ T381] RAX: f1fa4be9a203bb00 RBX: 0000000000000000 RCX: ffff8881067de2c0 [ 24.175230][ T381] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000 [ 24.183192][ T381] RBP: ffffc900009bfc10 R08: ffffffff8153d388 R09: fffff52000137ea5 [ 24.191164][ T381] R10: fffff52000137ea5 R11: 1ffff92000137ea4 R12: 0000000000000000 [ 24.199140][ T381] R13: ffffffff8653a880 R14: 0000000000000000 R15: ffffffff85432ac0 [ 24.207114][ T381] FS: 000055555728f300(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 24.216041][ T381] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 24.222605][ T381] CR2: 000055cd7ad33028 CR3: 00000001049ba000 CR4: 00000000003506b0 [ 24.230578][ T381] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 24.238660][ T381] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 24.246634][ T381] Call Trace: [ 24.249921][ T381] sysfs_remove_files+0xab/0x110 [ 24.254863][ T381] del_gendisk+0x278/0xe20 [ 24.259274][ T381] ? device_add_disk_no_queue_reg+0x30/0x30 [ 24.265262][ T381] ? __radix_tree_delete+0x2ba/0x380 [ 24.270544][ T381] ? radix_tree_delete_item+0x261/0x360 [ 24.276100][ T381] loop_remove+0x46/0xb0 [ 24.280423][ T381] loop_control_ioctl+0x67f/0x740 [ 24.285452][ T381] ? loop_remove+0xb0/0xb0 [ 24.289857][ T381] ? _raw_spin_unlock_irq+0x4e/0x70 [ 24.295087][ T381] ? ptrace_notify+0x248/0x340 [ 24.299924][ T381] ? do_notify_parent+0xa40/0xa40 [ 24.304956][ T381] ? __fpregs_load_activate+0x1e7/0x370 [ 24.310491][ T381] ? security_file_ioctl+0xb1/0xd0 [ 24.315602][ T381] ? loop_remove+0xb0/0xb0 [ 24.320016][ T381] __se_sys_ioctl+0x115/0x190 [ 24.324707][ T381] __x64_sys_ioctl+0x7b/0x90 [ 24.329284][ T381] do_syscall_64+0x34/0x70 [ 24.333675][ T381] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 24.339576][ T381] RIP: 0033:0x7f00ac830069 [ 24.343980][ T381] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 24.363594][ T381] RSP: 002b:00007ffd12e028d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 24.372043][ T381] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f00ac830069 [ 24.380024][ T381] RDX: 0000000000000000 RSI: 0000000000004c81 RDI: 0000000000000003 [ 24.388001][ T381] RBP: 00007ffd12e028f0 R08: 0000000000000001 R09: 0000000000000001 [ 24.395983][ T381] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000004 [ 24.403941][ T381] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 24.411922][ T381] ---[ end trace 88d494f2e1e9ee47 ]--- [ 24.417405][ T381] ------------[ cut here ]------------ [ 24.422838][ T381] kernfs: can not remove 'bdi', no directory [ 24.428979][ T381] WARNING: CPU: 0 PID: 381 at fs/kernfs/dir.c:1515 kernfs_remove_by_name_ns+0x65/0x90 [ 24.438508][ T381] Modules linked in: [ 24.442387][ T381] CPU: 0 PID: 381 Comm: syz-executor102 Tainted: G W 5.10.147-syzkaller-01341-gbc7618b4936f #0 [ 24.454006][ T381] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 24.464072][ T381] RIP: 0010:kernfs_remove_by_name_ns+0x65/0x90 [ 24.470230][ T381] Code: 48 89 c3 e8 0d f7 9a ff 48 89 df e8 c5 ee ff ff 31 db eb 29 e8 fc f6 9a ff 48 c7 c7 c0 29 2d 85 4c 89 fe 31 c0 e8 8b 0e 6d ff <0f> 0b bb fe ff ff ff eb 16 e8 dd f6 9a ff bb fe ff ff ff 48 c7 c7 [ 24.489834][ T381] RSP: 0018:ffffc900009bfc18 EFLAGS: 00010246 [ 24.495900][ T381] RAX: f1fa4be9a203bb00 RBX: 0000000000000000 RCX: ffff8881067de2c0 [ 24.503860][ T381] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000 [ 24.511831][ T381] RBP: ffffc900009bfc30 R08: ffffffff8153d388 R09: fffff52000137ea9 [ 24.519809][ T381] R10: fffff52000137ea9 R11: 1ffff92000137ea8 R12: 0000000000000240 [ 24.527780][ T381] R13: ffff88810a032030 R14: 0000000000000000 R15: ffffffff85432360 [ 24.535753][ T381] FS: 000055555728f300(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 24.544681][ T381] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 24.551258][ T381] CR2: 000055cd7ad33028 CR3: 00000001049ba000 CR4: 00000000003506b0 [ 24.559262][ T381] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 24.567245][ T381] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 24.575220][ T381] Call Trace: [ 24.578499][ T381] sysfs_remove_link+0x50/0x60 [ 24.583239][ T381] del_gendisk+0x7cd/0xe20 [ 24.587665][ T381] ? device_add_disk_no_queue_reg+0x30/0x30 [ 24.593549][ T381] ? __radix_tree_delete+0x2ba/0x380 [ 24.598836][ T381] ? radix_tree_delete_item+0x261/0x360 [ 24.604384][ T381] loop_remove+0x46/0xb0 [ 24.608613][ T381] loop_control_ioctl+0x67f/0x740 [ 24.613611][ T381] ? loop_remove+0xb0/0xb0 [ 24.618027][ T381] ? _raw_spin_unlock_irq+0x4e/0x70 [ 24.623227][ T381] ? ptrace_notify+0x248/0x340 [ 24.628005][ T381] ? do_notify_parent+0xa40/0xa40 [ 24.633115][ T381] ? __fpregs_load_activate+0x1e7/0x370 [ 24.638672][ T381] ? security_file_ioctl+0xb1/0xd0 [ 24.643773][ T381] ? loop_remove+0xb0/0xb0 [ 24.648197][ T381] __se_sys_ioctl+0x115/0x190 [ 24.652869][ T381] __x64_sys_ioctl+0x7b/0x90 [ 24.657482][ T381] do_syscall_64+0x34/0x70 [ 24.662017][ T381] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 24.668068][ T381] RIP: 0033:0x7f00ac830069 [ 24.672481][ T381] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 24.692103][ T381] RSP: 002b:00007ffd12e028d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 24.700546][ T381] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f00ac830069 [ 24.708539][ T381] RDX: 0000000000000000 RSI: 0000000000004c81 RDI: 0000000000000003 [ 24.716613][ T381] RBP: 00007ffd12e028f0 R08: 0000000000000001 R09: 0000000000000001 [ 24.724595][ T381] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000004 [ 24.732559][ T381] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 24.740573][ T381] ---[ end trace 88d494f2e1e9ee48 ]--- [ 24.746400][ T381] general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN [ 24.758105][ T381] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007] [ 24.766683][ T381] CPU: 0 PID: 381 Comm: syz-executor102 Tainted: G W 5.10.147-syzkaller-01341-gbc7618b4936f #0 [ 24.778385][ T381] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 24.788654][ T381] RIP: 0010:strlen+0x3a/0x80 [ 24.793220][ T381] Code: c0 ff ff ff ff 49 bf 00 00 00 00 00 fc ff df 48 89 fb 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 49 89 c4 48 89 d8 48 c1 e8 03 <42> 0f b6 04 38 84 c0 75 12 48 ff c3 49 8d 44 24 01 43 80 7c 26 01 [ 24.813334][ T381] RSP: 0018:ffffc900009bfb68 EFLAGS: 00010246 [ 24.819389][ T381] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffff8881067de2c0 [ 24.827339][ T381] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 24.835293][ T381] RBP: ffffc900009bfb88 R08: ffffffff81d1c9bc R09: fffff52000137f75 [ 24.843242][ T381] R10: fffff52000137f75 R11: 1ffff92000137f74 R12: ffffffffffffffff [ 24.851205][ T381] R13: 0000000000000000 R14: 0000000000000000 R15: dffffc0000000000 [ 24.859479][ T381] FS: 000055555728f300(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 24.868402][ T381] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 24.874967][ T381] CR2: 000055cd7ad33028 CR3: 00000001049ba000 CR4: 00000000003506b0 [ 24.883014][ T381] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 24.890964][ T381] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 24.898996][ T381] Call Trace: [ 24.902272][ T381] kernfs_name_hash+0x21/0x240 [ 24.907100][ T381] kernfs_find_ns+0x72/0x280 [ 24.911668][ T381] kernfs_remove_by_name_ns+0x36/0x90 [ 24.917026][ T381] sysfs_remove_link+0x50/0x60 [ 24.921772][ T381] del_gendisk+0xbe0/0xe20 [ 24.926170][ T381] ? device_add_disk_no_queue_reg+0x30/0x30 [ 24.932039][ T381] ? __radix_tree_delete+0x2ba/0x380 [ 24.937300][ T381] ? radix_tree_delete_item+0x261/0x360 [ 24.942909][ T381] loop_remove+0x46/0xb0 [ 24.947132][ T381] loop_control_ioctl+0x67f/0x740 [ 24.952136][ T381] ? loop_remove+0xb0/0xb0 [ 24.956637][ T381] ? _raw_spin_unlock_irq+0x4e/0x70 [ 24.961815][ T381] ? ptrace_notify+0x248/0x340 [ 24.966555][ T381] ? do_notify_parent+0xa40/0xa40 [ 24.971556][ T381] ? __fpregs_load_activate+0x1e7/0x370 [ 24.977088][ T381] ? security_file_ioctl+0xb1/0xd0 [ 24.982177][ T381] ? loop_remove+0xb0/0xb0 [ 24.986573][ T381] __se_sys_ioctl+0x115/0x190 [ 24.991244][ T381] __x64_sys_ioctl+0x7b/0x90 [ 24.995813][ T381] do_syscall_64+0x34/0x70 [ 25.000208][ T381] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 25.006094][ T381] RIP: 0033:0x7f00ac830069 [ 25.010587][ T381] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 25.030179][ T381] RSP: 002b:00007ffd12e028d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 25.038670][ T381] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f00ac830069 [ 25.046619][ T381] RDX: 0000000000000000 RSI: 0000000000004c81 RDI: 0000000000000003 [ 25.054574][ T381] RBP: 00007ffd12e028f0 R08: 0000000000000001 R09: 0000000000000001 [ 25.062523][ T381] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000004 [ 25.070469][ T381] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 25.078441][ T381] Modules linked in: [ 25.082609][ T381] ---[ end trace 88d494f2e1e9ee49 ]--- [ 25.088199][ T381] RIP: 0010:strlen+0x3a/0x80 [ 25.092862][ T381] Code: c0 ff ff ff ff 49 bf 00 00 00 00 00 fc ff df 48 89 fb 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 49 89 c4 48 89 d8 48 c1 e8 03 <42> 0f b6 04 38 84 c0 75 12 48 ff c3 49 8d 44 24 01 43 80 7c 26 01 [ 25.112865][ T381] RSP: 0018:ffffc900009bfb68 EFLAGS: 00010246 [ 25.118992][ T381] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffff8881067de2c0 [ 25.127088][ T381] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 25.135155][ T381] RBP: ffffc900009bfb88 R08: ffffffff81d1c9bc R09: fffff52000137f75 [ 25.143214][ T381] R10: fffff52000137f75 R11: 1ffff92000137f74 R12: ffffffffffffffff [ 25.151326][ T381] R13: 0000000000000000 R14: 0000000000000000 R15: dffffc0000000000 [ 25.159384][ T381] FS: 000055555728f300(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 25.168414][ T381] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 25.175106][ T381] CR2: 000055cd7ad33028 CR3: 00000001049ba000 CR4: 00000000003506b0 [ 25.183062][ T381] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 25.191157][ T381] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 25.199234][ T381] Kernel panic - not syncing: Fatal exception [ 25.205989][ T381] Kernel Offset: disabled [ 25.210439][ T381] Rebooting in 86400 seconds..