[ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... Starting Load/Save RF Kill Switch Status... [ OK ] Started Update UTMP about System Runlevel Changes. [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.5' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 41.281836] audit: type=1400 audit(1601442155.630:8): avc: denied { execmem } for pid=6489 comm="syz-executor490" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 41.311254] REISERFS (device loop0): found reiserfs format "3.6" with standard journal [ 41.320314] REISERFS (device loop0): using ordered data mode [ 41.326211] reiserfs: using flush barriers [ 41.331774] REISERFS (device loop0): journal params: device loop0, size 8192, journal first block 18, max trans len 1024, max batch 900, max commit age 30, max trans age 30 [ 41.350150] REISERFS (device loop0): checking transaction log (loop0) [ 42.109356] REISERFS (device loop0): Using tea hash to sort names [ 42.116059] kasan: CONFIG_KASAN_INLINE enabled [ 42.120695] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 42.128323] general protection fault: 0000 [#1] PREEMPT SMP KASAN [ 42.134608] CPU: 1 PID: 6492 Comm: syz-executor490 Not tainted 4.19.148-syzkaller #0 [ 42.142470] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 42.151958] RIP: 0010:open_xa_dir+0xf6/0x690 [ 42.156355] Code: 48 c1 ea 03 80 3c 02 00 0f 85 d2 04 00 00 4c 8b ad 70 05 00 00 48 b8 00 00 00 00 00 fc ff df 4d 8d 75 58 4c 89 f2 48 c1 ea 03 <80> 3c 02 00 0f 85 be 04 00 00 49 8b 6d 58 4c 89 04 24 48 85 ed 0f [ 42.175235] RSP: 0018:ffff8880852a76d0 EFLAGS: 00010202 [ 42.180577] RAX: dffffc0000000000 RBX: ffff88807fd8c740 RCX: ffffffff81edae4e [ 42.187826] RDX: 000000000000000b RSI: ffffffff81ed86c6 RDI: ffff8880a386c570 [ 42.195079] RBP: ffff8880a386c000 R08: ffff88808499abc0 R09: 0000000000000000 [ 42.202333] R10: 0000000000000005 R11: 0000000000000002 R12: 1ffff11010a54edc [ 42.209601] R13: 0000000000000000 R14: 0000000000000058 R15: ffff88808499a540 [ 42.216852] FS: 000000000220f880(0000) GS:ffff8880ae300000(0000) knlGS:0000000000000000 [ 42.225056] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 42.230931] CR2: 000055f3b067e970 CR3: 000000009f98a000 CR4: 00000000001406e0 [ 42.238182] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 42.245433] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 42.252680] Call Trace: [ 42.255259] ? xattr_mkdir.constprop.0+0xe0/0xe0 [ 42.259994] ? is_bpf_text_address+0x136/0x1f0 [ 42.264556] ? kernel_text_address+0xbd/0xf0 [ 42.268942] ? __kernel_text_address+0x9/0x30 [ 42.273417] xattr_lookup+0x21/0x3e0 [ 42.277112] reiserfs_xattr_get+0x9d/0x9a0 [ 42.281330] ? check_preemption_disabled+0x41/0x2b0 [ 42.286333] ? reiserfs_set_acl+0x620/0x620 [ 42.290630] reiserfs_get_acl+0x57/0x620 [ 42.294670] ? forget_cached_acl+0x70/0x70 [ 42.298898] ? reiserfs_set_acl+0x620/0x620 [ 42.303200] get_acl.part.0+0x132/0x260 [ 42.307154] get_acl+0x41/0x60 [ 42.310327] generic_permission+0x448/0x510 [ 42.314628] reiserfs_permission+0x64/0x80 [ 42.318858] ? reiserfs_listxattr+0x2e0/0x2e0 [ 42.323332] inode_permission+0x34e/0x540 [ 42.327477] ? full_name_hash+0xb5/0xf0 [ 42.331447] lookup_one_len_common+0x279/0x3a0 [ 42.336025] lookup_one_len+0xe6/0x190 [ 42.339921] ? try_lookup_one_len+0x180/0x180 [ 42.344403] reiserfs_lookup_privroot+0x92/0x280 [ 42.349153] reiserfs_fill_super+0x21e8/0x2e60 [ 42.353718] ? reiserfs_remount+0x1640/0x1640 [ 42.358194] ? lock_downgrade+0x750/0x750 [ 42.362322] ? snprintf+0xbb/0xf0 [ 42.365779] ? __mutex_add_waiter+0x160/0x160 [ 42.370267] mount_bdev+0x2fc/0x3b0 [ 42.373874] ? reiserfs_remount+0x1640/0x1640 [ 42.378356] mount_fs+0xa3/0x318 [ 42.381712] vfs_kern_mount.part.0+0x68/0x470 [ 42.386187] do_mount+0x51c/0x2f10 [ 42.389709] ? __do_page_fault+0x1ca/0xe00 [ 42.393943] ? copy_mount_string+0x40/0x40 [ 42.398171] ? copy_mount_options+0x1c3/0x370 [ 42.402648] ? copy_mount_options+0x1d0/0x370 [ 42.407122] ? memset+0x20/0x40 [ 42.410416] ? copy_mount_options+0x261/0x370 [ 42.414890] ksys_mount+0xcf/0x130 [ 42.418415] __x64_sys_mount+0xba/0x150 [ 42.422384] ? lockdep_hardirqs_on+0x3c1/0x5e0 [ 42.426947] do_syscall_64+0xf9/0x670 [ 42.430735] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 42.435906] RIP: 0033:0x447dba [ 42.439081] Code: b8 08 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 7d a3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5a a3 fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 42.457975] RSP: 002b:00007fffbefcd288 EFLAGS: 00000297 ORIG_RAX: 00000000000000a5 [ 42.465663] RAX: ffffffffffffffda RBX: 00007fffbefcd2e0 RCX: 0000000000447dba [ 42.472912] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007fffbefcd2a0 [ 42.480165] RBP: 00007fffbefcd2a0 R08: 00007fffbefcd2e0 R09: 0000000000000000 [ 42.487414] R10: 0000000000010000 R11: 0000000000000297 R12: 0000000000000007 [ 42.494676] R13: 0000000000000004 R14: 0000000000000003 R15: 0000000000000003 [ 42.501927] Modules linked in: [ 42.505791] ---[ end trace 1c9cd68c905fdaa1 ]--- [ 42.510576] RIP: 0010:open_xa_dir+0xf6/0x690 [ 42.515059] Code: 48 c1 ea 03 80 3c 02 00 0f 85 d2 04 00 00 4c 8b ad 70 05 00 00 48 b8 00 00 00 00 00 fc ff df 4d 8d 75 58 4c 89 f2 48 c1 ea 03 <80> 3c 02 00 0f 85 be 04 00 00 49 8b 6d 58 4c 89 04 24 48 85 ed 0f [ 42.534090] RSP: 0018:ffff8880852a76d0 EFLAGS: 00010202 [ 42.539446] RAX: dffffc0000000000 RBX: ffff88807fd8c740 RCX: ffffffff81edae4e [ 42.546751] RDX: 000000000000000b RSI: ffffffff81ed86c6 RDI: ffff8880a386c570 [ 42.554119] RBP: ffff8880a386c000 R08: ffff88808499abc0 R09: 0000000000000000 [ 42.561422] R10: 0000000000000005 R11: 0000000000000002 R12: 1ffff11010a54edc [ 42.568751] R13: 0000000000000000 R14: 0000000000000058 R15: ffff88808499a540 [ 42.576081] FS: 000000000220f880(0000) GS:ffff8880ae300000(0000) knlGS:0000000000000000 [ 42.584358] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 42.590244] CR2: 000055f3b067e970 CR3: 000000009f98a000 CR4: 00000000001406e0 [ 42.597597] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 42.604931] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 42.612190] Kernel panic - not syncing: Fatal exception [ 42.618673] Kernel Offset: disabled [ 42.622307] Rebooting in 86400 seconds..