Warning: Permanently added '10.128.0.149' (ECDSA) to the list of known hosts.
executing program
executing program
executing program
executing program
executing program
executing program
syzkaller login: [   62.935335][   T27] audit: type=1800 audit(1590029703.949:2): pid=7257 uid=0 auid=0 ses=5 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor267" name="file0" dev="sda1" ino=15718 res=0
[   62.962722][ T7258] MINIX-fs: mounting unchecked file system, running fsck is recommended
[   62.964311][ T7256] MINIX-fs: mounting unchecked file system, running fsck is recommended
[   62.991905][ T7259] MINIX-fs: mounting unchecked file system, running fsck is recommended
[   62.991968][ T7260] MINIX-fs: mounting unchecked file system, running fsck is recommended
[   63.014632][ T7257] MINIX-fs: mounting unchecked file system, running fsck is recommended
[   63.019464][ T7261] MINIX-fs: mounting unchecked file system, running fsck is recommended
[   63.027874][ T7260] Process accounting resumed
[   63.037926][ T7258] Process accounting resumed
[   63.038713][   T27] audit: type=1800 audit(1590029703.949:3): pid=7258 uid=0 auid=0 ses=5 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor267" name="file0" dev="sda1" ino=15719 res=0
[   63.063666][   T27] audit: type=1800 audit(1590029703.949:4): pid=7256 uid=0 auid=0 ses=5 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor267" name="file0" dev="sda1" ino=15720 res=0
[   63.064882][ T7260] minix_free_block (loop0:42527): bit already cleared
[   63.084191][   T27] audit: type=1800 audit(1590029703.969:5): pid=7260 uid=0 auid=0 ses=5 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor267" name="file0" dev="sda1" ino=15721 res=0
[   63.108679][ T7258] minix_free_block (loop4:27): bit already cleared
[   63.108836][   T27] audit: type=1800 audit(1590029703.969:6): pid=7259 uid=0 auid=0 ses=5 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor267" name="file0" dev="sda1" ino=15722 res=0
[   63.149196][ T7259] Process accounting resumed
[   63.157690][ T7259] minix_free_block (loop1:25956): bit already cleared
[   63.167444][ T7260] Process accounting resumed
[   63.183339][ T7260] minix_free_block (loop2:12142): bit already cleared
[   63.197805][ T7261] Process accounting resumed
[   63.204548][ T7261] ==================================================================
[   63.212823][ T7261] BUG: KASAN: use-after-free in get_block+0x110f/0x1380
[   63.219866][ T7261] Read of size 2 at addr ffff888086983644 by task syz-executor267/7261
[   63.228360][ T7261] 
[   63.230701][ T7261] CPU: 0 PID: 7261 Comm: syz-executor267 Not tainted 5.7.0-rc1-next-20200415-syzkaller #0
[   63.240585][ T7261] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   63.250642][ T7261] Call Trace:
[   63.253945][ T7261]  dump_stack+0x188/0x20d
[   63.258291][ T7261]  print_address_description.constprop.0.cold+0xd3/0x315
[   63.265324][ T7261]  ? get_block+0x110f/0x1380
[   63.269921][ T7261]  __kasan_report.cold+0x35/0x4d
[   63.274873][ T7261]  ? get_block+0x110f/0x1380
[   63.279472][ T7261]  ? get_block+0x110f/0x1380
[   63.284073][ T7261]  kasan_report+0x33/0x50
[   63.288416][ T7261]  get_block+0x110f/0x1380
[   63.292863][ T7261]  ? block_to_path.isra.0+0x300/0x300
[   63.298258][ T7261]  ? create_empty_buffers+0x590/0x8c0
[   63.303631][ T7261]  ? __alloc_pages_nodemask+0x5f4/0x810
[   63.309184][ T7261]  ? do_raw_spin_unlock+0x171/0x260
[   63.314396][ T7261]  minix_get_block+0xe5/0x110
[   63.319084][ T7261]  __block_write_begin_int+0x490/0x1b00
[   63.324636][ T7261]  ? minix_rename+0x8c0/0x8c0
[   63.329336][ T7261]  ? remove_inode_buffers+0x1c0/0x1c0
[   63.334717][ T7261]  ? pagecache_get_page+0x204/0xa10
[   63.339921][ T7261]  ? wait_for_stable_page+0x11c/0x1e0
[   63.345304][ T7261]  ? minix_rename+0x8c0/0x8c0
[   63.349988][ T7261]  block_write_begin+0x58/0x2e0
[   63.354890][ T7261]  minix_write_begin+0x35/0xe0
[   63.359665][ T7261]  generic_perform_write+0x20a/0x4e0
[   63.364962][ T7261]  ? __mnt_drop_write+0x50/0x80
[   63.369822][ T7261]  ? trace_event_raw_event_file_check_and_advance_wb_err+0x4a0/0x4a0
[   63.377898][ T7261]  ? update_time+0xc0/0xc0
[   63.382334][ T7261]  ? down_write+0xdb/0x150
[   63.386771][ T7261]  __generic_file_write_iter+0x24c/0x610
[   63.392422][ T7261]  generic_file_write_iter+0x3f3/0x630
[   63.397893][ T7261]  ? __generic_file_write_iter+0x610/0x610
[   63.403723][ T7261]  new_sync_write+0x4a2/0x700
[   63.408413][ T7261]  ? new_sync_read+0x7a0/0x7a0
[   63.413212][ T7261]  __vfs_write+0xc9/0x100
[   63.417551][ T7261]  __kernel_write+0x11c/0x3a0
[   63.422237][ T7261]  do_acct_process+0xcdc/0x10e0
[   63.427101][ T7261]  ? acct_on+0x770/0x770
[   63.431371][ T7261]  acct_process+0x50e/0x5b7
[   63.435884][ T7261]  ? acct_collect+0x800/0x800
[   63.440567][ T7261]  ? fput_many+0x2f/0x1a0
[   63.444908][ T7261]  do_exit+0x1aef/0x2e10
[   63.449169][ T7261]  ? mm_update_next_owner+0x7a0/0x7a0
[   63.454543][ T7261]  ? up_read+0x1a8/0x750
[   63.458794][ T7261]  ? down_read_nested+0x430/0x430
[   63.463830][ T7261]  ? handle_mm_fault+0x29e/0x660
[   63.468782][ T7261]  do_group_exit+0x125/0x340
[   63.473994][ T7261]  __x64_sys_exit_group+0x3a/0x50
[   63.479035][ T7261]  do_syscall_64+0xf6/0x7d0
[   63.483576][ T7261]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[   63.489472][ T7261] RIP: 0033:0x444a58
[   63.493372][ T7261] Code: 00 00 be 3c 00 00 00 eb 19 66 0f 1f 84 00 00 00 00 00 48 89 d7 89 f0 0f 05 48 3d 00 f0 ff ff 77 21 f4 48 89 d7 44 89 c0 0f 05 <48> 3d 00 f0 ff ff 76 e0 f7 d8 64 41 89 01 eb d8 0f 1f 84 00 00 00
[   63.512980][ T7261] RSP: 002b:00007ffefac44ec8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[   63.521400][ T7261] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000444a58
[   63.529380][ T7261] RDX: 0000000000000000 RSI: 000000000000003c RDI: 0000000000000000
[   63.537353][ T7261] RBP: 00000000004c50d0 R08: 00000000000000e7 R09: ffffffffffffffd4
[   63.545327][ T7261] R10: 00007ffefac44dd0 R11: 0000000000000246 R12: 0000000000000001
[   63.553296][ T7261] R13: 00000000006d7180 R14: 0000000000000000 R15: 0000000000000000
[   63.561286][ T7261] 
[   63.563608][ T7261] The buggy address belongs to the page:
[   63.569243][ T7261] page:ffffea00021a60c0 refcount:0 mapcount:0 mapping:0000000015dbf7d2 index:0x1
[   63.578355][ T7261] flags: 0xfffe0000000000()
[   63.582873][ T7261] raw: 00fffe0000000000 ffffea00021a1908 ffff8880ae63b188 0000000000000000
[   63.591466][ T7261] raw: 0000000000000001 0000000000000000 00000000ffffffff 0000000000000000
[   63.600399][ T7261] page dumped because: kasan: bad access detected
[   63.606811][ T7261] 
[   63.609138][ T7261] Memory state around the buggy address:
[   63.614778][ T7261]  ffff888086983500: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   63.622847][ T7261]  ffff888086983580: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   63.630916][ T7261] >ffff888086983600: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   63.638977][ T7261]                                            ^
[   63.645135][ T7261]  ffff888086983680: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   63.653201][ T7261]  ffff888086983700: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   63.661870][ T7261] ==================================================================
[   63.669928][ T7261] Disabling lock debugging due to kernel taint
[   63.676224][ T7261] Kernel panic - not syncing: panic_on_warn set ...
[   63.682816][ T7261] CPU: 0 PID: 7261 Comm: syz-executor267 Tainted: G    B             5.7.0-rc1-next-20200415-syzkaller #0
[   63.694080][ T7261] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   63.704132][ T7261] Call Trace:
[   63.707428][ T7261]  dump_stack+0x188/0x20d
[   63.711761][ T7261]  panic+0x2e3/0x75c
[   63.715653][ T7261]  ? add_taint.cold+0x16/0x16
[   63.720329][ T7261]  ? get_block+0x110f/0x1380
[   63.724923][ T7261]  ? trace_hardirqs_on+0x55/0x220
[   63.729951][ T7261]  ? get_block+0x110f/0x1380
[   63.734544][ T7261]  end_report+0x4d/0x53
[   63.738703][ T7261]  __kasan_report.cold+0xd/0x4d
[   63.743556][ T7261]  ? get_block+0x110f/0x1380
[   63.748162][ T7261]  ? get_block+0x110f/0x1380
[   63.752733][ T7261]  kasan_report+0x33/0x50
[   63.757042][ T7261]  get_block+0x110f/0x1380
[   63.761444][ T7261]  ? block_to_path.isra.0+0x300/0x300
[   63.766811][ T7261]  ? create_empty_buffers+0x590/0x8c0
[   63.772178][ T7261]  ? __alloc_pages_nodemask+0x5f4/0x810
[   63.777702][ T7261]  ? do_raw_spin_unlock+0x171/0x260
[   63.782884][ T7261]  minix_get_block+0xe5/0x110
[   63.787543][ T7261]  __block_write_begin_int+0x490/0x1b00
[   63.793068][ T7261]  ? minix_rename+0x8c0/0x8c0
[   63.797728][ T7261]  ? remove_inode_buffers+0x1c0/0x1c0
[   63.803079][ T7261]  ? pagecache_get_page+0x204/0xa10
[   63.808269][ T7261]  ? wait_for_stable_page+0x11c/0x1e0
[   63.813635][ T7261]  ? minix_rename+0x8c0/0x8c0
[   63.818290][ T7261]  block_write_begin+0x58/0x2e0
[   63.823120][ T7261]  minix_write_begin+0x35/0xe0
[   63.827864][ T7261]  generic_perform_write+0x20a/0x4e0
[   63.833145][ T7261]  ? __mnt_drop_write+0x50/0x80
[   63.838019][ T7261]  ? trace_event_raw_event_file_check_and_advance_wb_err+0x4a0/0x4a0
[   63.846088][ T7261]  ? update_time+0xc0/0xc0
[   63.850492][ T7261]  ? down_write+0xdb/0x150
[   63.854906][ T7261]  __generic_file_write_iter+0x24c/0x610
[   63.860524][ T7261]  generic_file_write_iter+0x3f3/0x630
[   63.865967][ T7261]  ? __generic_file_write_iter+0x610/0x610
[   63.871759][ T7261]  new_sync_write+0x4a2/0x700
[   63.876434][ T7261]  ? new_sync_read+0x7a0/0x7a0
[   63.881201][ T7261]  __vfs_write+0xc9/0x100
[   63.885514][ T7261]  __kernel_write+0x11c/0x3a0
[   63.890181][ T7261]  do_acct_process+0xcdc/0x10e0
[   63.895017][ T7261]  ? acct_on+0x770/0x770
[   63.899261][ T7261]  acct_process+0x50e/0x5b7
[   63.903744][ T7261]  ? acct_collect+0x800/0x800
[   63.908399][ T7261]  ? fput_many+0x2f/0x1a0
[   63.912721][ T7261]  do_exit+0x1aef/0x2e10
[   63.916963][ T7261]  ? mm_update_next_owner+0x7a0/0x7a0
[   63.922313][ T7261]  ? up_read+0x1a8/0x750
[   63.926541][ T7261]  ? down_read_nested+0x430/0x430
[   63.931545][ T7261]  ? handle_mm_fault+0x29e/0x660
[   63.936461][ T7261]  do_group_exit+0x125/0x340
[   63.941030][ T7261]  __x64_sys_exit_group+0x3a/0x50
[   63.946034][ T7261]  do_syscall_64+0xf6/0x7d0
[   63.950519][ T7261]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[   63.956386][ T7261] RIP: 0033:0x444a58
[   63.960268][ T7261] Code: 00 00 be 3c 00 00 00 eb 19 66 0f 1f 84 00 00 00 00 00 48 89 d7 89 f0 0f 05 48 3d 00 f0 ff ff 77 21 f4 48 89 d7 44 89 c0 0f 05 <48> 3d 00 f0 ff ff 76 e0 f7 d8 64 41 89 01 eb d8 0f 1f 84 00 00 00
[   63.979861][ T7261] RSP: 002b:00007ffefac44ec8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[   63.988268][ T7261] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000444a58
[   63.996219][ T7261] RDX: 0000000000000000 RSI: 000000000000003c RDI: 0000000000000000
[   64.004183][ T7261] RBP: 00000000004c50d0 R08: 00000000000000e7 R09: ffffffffffffffd4
[   64.012145][ T7261] R10: 00007ffefac44dd0 R11: 0000000000000246 R12: 0000000000000001
[   64.020093][ T7261] R13: 00000000006d7180 R14: 0000000000000000 R15: 0000000000000000
[   64.029284][ T7261] Kernel Offset: disabled
[   64.033645][ T7261] Rebooting in 86400 seconds..