Starting getty on tty2-tty6 if dbus and logind are not available... [ OK ] Started Regular background program processing daemon. Starting System Logging Service... Starting Permit User Sessions... Starting OpenBSD Secure Shell server... [ OK ] Found device /dev/ttyS0. [ OK ] Started System Logging Service. [ OK ] Started Permit User Sessions. [ OK ] Started OpenBSD Secure Shell server. [ OK ] Started getty on tty2-tty6 if dbus and logind are not available. [ OK ] Listening on Load/Save RF Kill Switch Status /dev/rfkill Watch. [ OK ] Started Getty on tty6. [ OK ] Started Getty on tty5. [ OK ] Started Getty on tty4. [ OK ] Started Getty on tty3. [ OK ] Started Getty on tty2. [ OK ] Started Getty on tty1. [ OK ] Started Serial Getty on ttyS0. [ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... Starting Load/Save RF Kill Switch Status... [ OK ] Started Update UTMP about System Runlevel Changes. [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.54' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 83.712390][ T36] audit: type=1400 audit(1610436700.479:8): avc: denied { execmem } for pid=8476 comm="syz-executor001" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 83.719009][ T8476] loop0: detected capacity change from 98 to 0 [ 83.763512][ T8476] ================================================================== [ 83.771867][ T8476] BUG: KASAN: vmalloc-out-of-bounds in lzo_uncompress+0x44c/0x620 [ 83.779741][ T8476] Write of size 4096 at addr ffffc90000ea1e75 by task syz-executor001/8476 [ 83.788366][ T8476] [ 83.790712][ T8476] CPU: 0 PID: 8476 Comm: syz-executor001 Not tainted 5.11.0-rc3-syzkaller #0 [ 83.799497][ T8476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 83.809588][ T8476] Call Trace: [ 83.812891][ T8476] dump_stack+0x107/0x163 [ 83.817300][ T8476] ? lzo_uncompress+0x44c/0x620 [ 83.822218][ T8476] ? lzo_uncompress+0x44c/0x620 [ 83.827078][ T8476] print_address_description.constprop.0.cold+0x5/0x2c6 [ 83.834058][ T8476] ? lzo_uncompress+0x44c/0x620 [ 83.838917][ T8476] ? lzo_uncompress+0x44c/0x620 [ 83.843774][ T8476] kasan_report.cold+0x79/0xd5 [ 83.848552][ T8476] ? lzo_uncompress+0x44c/0x620 [ 83.853415][ T8476] check_memory_region+0x13d/0x180 [ 83.858537][ T8476] memcpy+0x39/0x60 [ 83.862369][ T8476] lzo_uncompress+0x44c/0x620 [ 83.867061][ T8476] ? lz4_init+0x190/0x190 [ 83.871417][ T8476] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 83.877683][ T8476] squashfs_decompress+0xcc/0x160 [ 83.882737][ T8476] squashfs_read_data+0x1f8/0xe30 [ 83.887776][ T8476] ? squashfs_bio_read+0x630/0x630 [ 83.892910][ T8476] ? do_raw_spin_lock+0x120/0x2b0 [ 83.897956][ T8476] ? rwlock_bug.part.0+0x90/0x90 [ 83.902917][ T8476] squashfs_cache_get+0x4a9/0xd50 [ 83.907960][ T8476] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 83.914214][ T8476] ? find_first_zero_bit+0x94/0xb0 [ 83.919354][ T8476] ? kmalloc_array.constprop.0+0x70/0x70 [ 83.925009][ T8476] ? add_lock_to_list.constprop.0+0x185/0x370 [ 83.931087][ T8476] ? lockdep_unlock+0x11c/0x290 [ 83.935951][ T8476] ? __lock_acquire+0x251a/0x54f0 [ 83.940993][ T8476] squashfs_read_metadata+0x134/0x460 [ 83.946385][ T8476] squashfs_read_inode+0x182/0x1b40 [ 83.951609][ T8476] ? find_held_lock+0x2d/0x110 [ 83.956378][ T8476] ? squashfs_read_id_index_table+0x120/0x120 [ 83.962451][ T8476] ? new_inode+0x23b/0x2f0 [ 83.966871][ T8476] ? lock_downgrade+0x6d0/0x6d0 [ 83.971748][ T8476] ? do_raw_spin_lock+0x120/0x2b0 [ 83.976807][ T8476] ? rwlock_bug.part.0+0x90/0x90 [ 83.981762][ T8476] ? inode_init_always+0xafd/0xdb0 [ 83.986921][ T8476] ? do_raw_spin_unlock+0x171/0x230 [ 83.992149][ T8476] ? _raw_spin_unlock+0x24/0x40 [ 83.997026][ T8476] ? new_inode+0x240/0x2f0 [ 84.001472][ T8476] squashfs_fill_super+0x1140/0x23b0 [ 84.006779][ T8476] get_tree_bdev+0x440/0x760 [ 84.011379][ T8476] ? init_once+0x20/0x20 [ 84.015644][ T8476] vfs_get_tree+0x89/0x2f0 [ 84.020067][ T8476] path_mount+0x13ad/0x20c0 [ 84.024592][ T8476] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 84.030844][ T8476] ? strncpy_from_user+0x2a0/0x3e0 [ 84.035975][ T8476] ? finish_automount+0xac0/0xac0 [ 84.041026][ T8476] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 84.047365][ T8476] ? getname_flags.part.0+0x1dd/0x4f0 [ 84.052753][ T8476] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 84.059052][ T8476] __x64_sys_mount+0x27f/0x300 [ 84.063825][ T8476] ? copy_mnt_ns+0xae0/0xae0 [ 84.068443][ T8476] ? syscall_enter_from_user_mode+0x1d/0x50 [ 84.074368][ T8476] do_syscall_64+0x2d/0x70 [ 84.078819][ T8476] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 84.084732][ T8476] RIP: 0033:0x446d2a [ 84.088646][ T8476] Code: b8 08 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 fd ad fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 da ad fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 84.108272][ T8476] RSP: 002b:00007ffc49d40db8 EFLAGS: 00000293 ORIG_RAX: 00000000000000a5 [ 84.116707][ T8476] RAX: ffffffffffffffda RBX: 00007ffc49d40e10 RCX: 0000000000446d2a [ 84.124709][ T8476] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007ffc49d40dd0 [ 84.132699][ T8476] RBP: 00007ffc49d40dd0 R08: 00007ffc49d40e10 R09: 00007ffc00000015 [ 84.140725][ T8476] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 84.148704][ T8476] R13: 0000000000000004 R14: 0000000000000003 R15: 0000000000000003 [ 84.156700][ T8476] [ 84.159031][ T8476] [ 84.161353][ T8476] Memory state around the buggy address: [ 84.166999][ T8476] ffffc90000ea1f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 84.175068][ T8476] ffffc90000ea1f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 84.183150][ T8476] >ffffc90000ea2000: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 84.191214][ T8476] ^ [ 84.195304][ T8476] ffffc90000ea2080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 84.203383][ T8476] ffffc90000ea2100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 84.211475][ T8476] ================================================================== [ 84.219536][ T8476] Disabling lock debugging due to kernel taint [ 84.227591][ T8476] Kernel panic - not syncing: panic_on_warn set ... [ 84.234257][ T8476] CPU: 1 PID: 8476 Comm: syz-executor001 Tainted: G B 5.11.0-rc3-syzkaller #0 [ 84.244435][ T8476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 84.254630][ T8476] Call Trace: [ 84.257909][ T8476] dump_stack+0x107/0x163 [ 84.262262][ T8476] ? lzo_uncompress+0x430/0x620 [ 84.267118][ T8476] panic+0x306/0x73d [ 84.271015][ T8476] ? __warn_printk+0xf3/0xf3 [ 84.275608][ T8476] ? preempt_schedule_common+0x59/0xc0 [ 84.281085][ T8476] ? lzo_uncompress+0x44c/0x620 [ 84.285951][ T8476] ? preempt_schedule_thunk+0x16/0x18 [ 84.291327][ T8476] ? trace_hardirqs_on+0x38/0x1c0 [ 84.296369][ T8476] ? trace_hardirqs_on+0x51/0x1c0 [ 84.301413][ T8476] ? lzo_uncompress+0x44c/0x620 [ 84.306272][ T8476] ? lzo_uncompress+0x44c/0x620 [ 84.311127][ T8476] end_report+0x58/0x5e [ 84.315300][ T8476] kasan_report.cold+0x67/0xd5 [ 84.320113][ T8476] ? lzo_uncompress+0x44c/0x620 [ 84.324982][ T8476] check_memory_region+0x13d/0x180 [ 84.330095][ T8476] memcpy+0x39/0x60 [ 84.333915][ T8476] lzo_uncompress+0x44c/0x620 [ 84.338594][ T8476] ? lz4_init+0x190/0x190 [ 84.342939][ T8476] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 84.349217][ T8476] squashfs_decompress+0xcc/0x160 [ 84.354248][ T8476] squashfs_read_data+0x1f8/0xe30 [ 84.359349][ T8476] ? squashfs_bio_read+0x630/0x630 [ 84.364478][ T8476] ? do_raw_spin_lock+0x120/0x2b0 [ 84.369509][ T8476] ? rwlock_bug.part.0+0x90/0x90 [ 84.374451][ T8476] squashfs_cache_get+0x4a9/0xd50 [ 84.379484][ T8476] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 84.385732][ T8476] ? find_first_zero_bit+0x94/0xb0 [ 84.390847][ T8476] ? kmalloc_array.constprop.0+0x70/0x70 [ 84.396502][ T8476] ? add_lock_to_list.constprop.0+0x185/0x370 [ 84.402570][ T8476] ? lockdep_unlock+0x11c/0x290 [ 84.407433][ T8476] ? __lock_acquire+0x251a/0x54f0 [ 84.412470][ T8476] squashfs_read_metadata+0x134/0x460 [ 84.417854][ T8476] squashfs_read_inode+0x182/0x1b40 [ 84.423075][ T8476] ? find_held_lock+0x2d/0x110 [ 84.427862][ T8476] ? squashfs_read_id_index_table+0x120/0x120 [ 84.433955][ T8476] ? new_inode+0x23b/0x2f0 [ 84.438395][ T8476] ? lock_downgrade+0x6d0/0x6d0 [ 84.443251][ T8476] ? do_raw_spin_lock+0x120/0x2b0 [ 84.448297][ T8476] ? rwlock_bug.part.0+0x90/0x90 [ 84.453254][ T8476] ? inode_init_always+0xafd/0xdb0 [ 84.458371][ T8476] ? do_raw_spin_unlock+0x171/0x230 [ 84.463576][ T8476] ? _raw_spin_unlock+0x24/0x40 [ 84.468451][ T8476] ? new_inode+0x240/0x2f0 [ 84.472873][ T8476] squashfs_fill_super+0x1140/0x23b0 [ 84.478188][ T8476] get_tree_bdev+0x440/0x760 [ 84.482784][ T8476] ? init_once+0x20/0x20 [ 84.487030][ T8476] vfs_get_tree+0x89/0x2f0 [ 84.491451][ T8476] path_mount+0x13ad/0x20c0 [ 84.495958][ T8476] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 84.502201][ T8476] ? strncpy_from_user+0x2a0/0x3e0 [ 84.507317][ T8476] ? finish_automount+0xac0/0xac0 [ 84.512341][ T8476] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 84.518610][ T8476] ? getname_flags.part.0+0x1dd/0x4f0 [ 84.524018][ T8476] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 84.530265][ T8476] __x64_sys_mount+0x27f/0x300 [ 84.535034][ T8476] ? copy_mnt_ns+0xae0/0xae0 [ 84.539623][ T8476] ? syscall_enter_from_user_mode+0x1d/0x50 [ 84.545518][ T8476] do_syscall_64+0x2d/0x70 [ 84.549937][ T8476] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 84.555831][ T8476] RIP: 0033:0x446d2a [ 84.559781][ T8476] Code: b8 08 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 fd ad fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 da ad fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 84.579383][ T8476] RSP: 002b:00007ffc49d40db8 EFLAGS: 00000293 ORIG_RAX: 00000000000000a5 [ 84.587805][ T8476] RAX: ffffffffffffffda RBX: 00007ffc49d40e10 RCX: 0000000000446d2a [ 84.595773][ T8476] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007ffc49d40dd0 [ 84.603749][ T8476] RBP: 00007ffc49d40dd0 R08: 00007ffc49d40e10 R09: 00007ffc00000015 [ 84.611747][ T8476] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 84.619717][ T8476] R13: 0000000000000004 R14: 0000000000000003 R15: 0000000000000003 [ 84.628223][ T8476] Kernel Offset: disabled [ 84.632561][ T8476] Rebooting in 86400 seconds..