[ OK ] Listening on Load/Save RF Kill Switch Status /dev/rfkill Watch. [ OK ] Started Serial Getty on ttyS0. [ OK ] Reached target Login Prompts. Starting Load/Save RF Kill Switch Status... [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.207' (ECDSA) to the list of known hosts. syzkaller login: [ 31.291848] IPVS: ftp: loaded support on port[0] = 21 executing program [ 31.372198] F2FS-fs (loop0): Invalid blocksize (65536), supports only 4KB [ 31.372198] [ 31.380810] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 31.389498] F2FS-fs (loop0): invalid crc value [ 31.397948] F2FS-fs (loop0): Found nat_bits in checkpoint [ 31.425342] F2FS-fs (loop0): Mounted with checkpoint version = 3e17dab1 [ 31.498194] ------------[ cut here ]------------ [ 31.503045] kernel BUG at fs/f2fs/node.c:2780! [ 31.507899] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 31.513254] Modules linked in: [ 31.516427] CPU: 1 PID: 7976 Comm: syz-executor436 Not tainted 4.14.295-syzkaller #0 [ 31.524401] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 31.533732] task: ffff8880b30c05c0 task.stack: ffff888095ed0000 [ 31.539777] RIP: 0010:destroy_node_manager+0x4f4/0x780 [ 31.545057] RSP: 0018:ffff888095ed77b0 EFLAGS: 00010297 [ 31.550390] RAX: ffff8880b30c05c0 RBX: ffff8880b43e3c30 RCX: dffffc0000000000 [ 31.557653] RDX: 0000000000000000 RSI: 0000000000000001 RDI: ffff8880b43e3c54 [ 31.564895] RBP: ffff8880b43e3b40 R08: ffffffff8b9bb2c0 R09: 0000000000040582 [ 31.572238] R10: ffff8880b30c0e70 R11: ffff8880b30c05c0 R12: ffff8880b43e3c58 [ 31.579495] R13: ffffed1012df25de R14: ffff8880b43e3c30 R15: ffff888096f92ec0 [ 31.586749] FS: 0000555556e35300(0000) GS:ffff8880ba500000(0000) knlGS:0000000000000000 [ 31.594952] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 31.600808] CR2: 00007f37c25261d0 CR3: 0000000008e6a000 CR4: 00000000003406e0 [ 31.608170] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 31.615423] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 31.622697] Call Trace: [ 31.625272] ? build_node_manager+0x1d50/0x1d50 [ 31.629948] ? trace_hardirqs_on+0x10/0x10 [ 31.634178] ? debug_object_activate+0x292/0x490 [ 31.638939] ? mark_held_locks+0xa6/0xf0 [ 31.642982] ? _raw_spin_unlock_irqrestore+0x79/0xe0 [ 31.648059] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 31.653047] ? debug_object_active_state+0x236/0x330 [ 31.658120] ? mark_held_locks+0xa6/0xf0 [ 31.662154] ? _raw_spin_unlock_irqrestore+0x79/0xe0 [ 31.667229] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 31.672215] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 31.677308] ? debug_object_active_state+0x236/0x330 [ 31.682381] ? debug_object_free+0x320/0x320 [ 31.686759] ? lock_acquire+0x170/0x3f0 [ 31.690709] ? mark_held_locks+0xa6/0xf0 [ 31.694756] ? check_preemption_disabled+0x35/0x240 [ 31.699762] ? __call_rcu.constprop.0+0x245/0x7d0 [ 31.704590] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 31.709585] ? f2fs_drop_inode+0x7f0/0x7f0 [ 31.713796] ? destroy_inode+0xb9/0x110 [ 31.717754] ? iput+0x458/0x7e0 [ 31.721007] ? f2fs_show_options+0xdf0/0xdf0 [ 31.725391] f2fs_put_super+0x3e1/0x840 [ 31.729340] ? f2fs_quota_off_umount+0xb0/0xb0 [ 31.733949] ? dispose_list+0x1e0/0x1e0 [ 31.737901] ? fsnotify_unmount_inodes+0x1b4/0x210 [ 31.742803] ? f2fs_quota_off_umount+0xb0/0xb0 [ 31.747359] generic_shutdown_super+0x144/0x370 [ 31.752101] kill_block_super+0x95/0xe0 [ 31.756057] deactivate_locked_super+0x6c/0xd0 [ 31.760621] deactivate_super+0x7f/0xa0 [ 31.764589] cleanup_mnt+0x186/0x2c0 [ 31.768372] task_work_run+0x11f/0x190 [ 31.772250] do_exit+0xa44/0x2850 [ 31.775689] ? __do_page_fault+0x571/0xad0 [ 31.779914] ? mm_update_next_owner+0x5b0/0x5b0 [ 31.784564] ? lock_downgrade+0x740/0x740 [ 31.788691] do_group_exit+0x100/0x2e0 [ 31.792555] SyS_exit_group+0x19/0x20 [ 31.796365] ? do_group_exit+0x2e0/0x2e0 [ 31.800398] do_syscall_64+0x1d5/0x640 [ 31.804276] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 31.809459] RIP: 0033:0x7f37c24aec09 [ 31.813150] RSP: 002b:00007ffe1500d948 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 31.820923] RAX: ffffffffffffffda RBX: 00007f37c2525330 RCX: 00007f37c24aec09 [ 31.828178] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000001 [ 31.835427] RBP: 0000000000000001 R08: ffffffffffffffc0 R09: 00007f37c251fe40 [ 31.842680] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f37c2525330 [ 31.850021] R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000000001 [ 31.857408] Code: 40 6c 00 00 00 00 48 81 c4 d8 03 00 00 5b 5d 41 5c 41 5d 41 5e 41 5f c3 e8 ba 66 89 fe 0f 0b e8 b3 66 89 fe 0f 0b e8 ac 66 89 fe <0f> 0b e8 a5 66 89 fe 0f 0b e8 9e 66 89 fe 48 8b 7c 24 28 e8 54 [ 31.876480] RIP: destroy_node_manager+0x4f4/0x780 RSP: ffff888095ed77b0 [ 31.883275] ---[ end trace 39076c4b463e5ea5 ]--- [ 31.888022] Kernel panic - not syncing: Fatal exception [ 31.893534] Kernel Offset: disabled [ 31.897141] Rebooting in 86400 seconds..