[[0;32m  OK  [0m] Started Serial Getty on ttyS0.
[[0;32m  OK  [0m] Started Getty on tty1.
[[0;32m  OK  [0m] Started System Logging Service.
[[0;32m  OK  [0m] Started OpenBSD Secure Shell server.
[[0;32m  OK  [0m] Started getty on tty2-tty6 if dbus and logind are not available.

Debian GNU/Linux 9 syzkaller ttyS0

Warning: Permanently added '10.128.0.173' (ECDSA) to the list of known hosts.
executing program
syzkaller login: [ 1344.987936][ T6856] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 1344.996312][ T6856] gfs2: fsid=syz:syz: Now mounting FS...
[ 1345.008458][ T6856] gfs2: fsid=syz:syz.0: fatal: invalid metadata block
[ 1345.008458][ T6856]   bh = 2072 (magic number)
[ 1345.008458][ T6856]   function = gfs2_meta_indirect_buffer, file = fs/gfs2/meta_io.c, line = 417
[ 1345.028624][ T6856] gfs2: fsid=syz:syz.0: about to withdraw this file system
[ 1345.035837][ T6856] general protection fault, probably for non-canonical address 0xdffffc000000000e: 0000 [#1] PREEMPT SMP KASAN
[ 1345.047538][ T6856] KASAN: null-ptr-deref in range [0x0000000000000070-0x0000000000000077]
[ 1345.055952][ T6856] CPU: 1 PID: 6856 Comm: syz-executor264 Not tainted 5.9.0-syzkaller #0
[ 1345.064431][ T6856] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1345.074630][ T6856] RIP: 0010:gfs2_withdraw.cold+0xff/0xc0e
[ 1345.080331][ T6856] Code: 00 48 c1 e0 2a 80 3c 02 00 0f 85 19 02 00 00 4c 8b bb a0 08 00 00 b8 ff ff 37 00 48 c1 e0 2a 49 8d 7f 70 48 89 fa 48 c1 ea 03 <80> 3c 02 00 74 05 e8 07 52 68 fe 4d 8b 7f 70 b8 ff ff 37 00 48 c1
[ 1345.099938][ T6856] RSP: 0018:ffffc9000314f3b8 EFLAGS: 00010202
[ 1345.105999][ T6856] RAX: dffffc0000000000 RBX: ffff888091f6c000 RCX: ffffffff834ec53e
[ 1345.113953][ T6856] RDX: 000000000000000e RSI: ffffffff834ec54f RDI: 0000000000000070
[ 1345.121903][ T6856] RBP: ffff888091f6c26d R08: 0000000000000038 R09: ffff8880ae520f8b
[ 1345.129870][ T6856] R10: 0000000000000000 R11: 0000000000000000 R12: ffff888091f6c050
[ 1345.137823][ T6856] R13: ffff888091f6c2f0 R14: ffffffff88cc1560 R15: 0000000000000000
[ 1345.145773][ T6856] FS:  0000000001135880(0000) GS:ffff8880ae500000(0000) knlGS:0000000000000000
[ 1345.154765][ T6856] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1345.161335][ T6856] CR2: 00007fb28ad51000 CR3: 000000009fbb8000 CR4: 00000000001506e0
[ 1345.169285][ T6856] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1345.177758][ T6856] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1345.185705][ T6856] Call Trace:
[ 1345.188978][ T6856]  gfs2_meta_check_ii+0x68/0xa0
[ 1345.193855][ T6856]  gfs2_meta_indirect_buffer+0x3a3/0x3f0
[ 1345.199483][ T6856]  ? gfs2_meta_wipe+0x1b0/0x1b0
[ 1345.204419][ T6856]  ? lock_is_held_type+0xbb/0xf0
[ 1345.209339][ T6856]  gfs2_inode_refresh+0x95/0xdf0
[ 1345.214255][ T6856]  ? gfs2_glock2rgrp+0x60/0x60
[ 1345.219109][ T6856]  ? lock_downgrade+0x830/0x830
[ 1345.223940][ T6856]  ? lock_acquire+0x1f3/0xaf0
[ 1345.228591][ T6856]  ? finish_xmote+0x65/0xf40
[ 1345.233152][ T6856]  inode_go_lock+0x309/0x49f
[ 1345.237777][ T6856]  do_promote+0x4a0/0xc10
[ 1345.242101][ T6856]  finish_xmote+0x4ed/0xf40
[ 1345.246592][ T6856]  do_xmote+0x812/0xba0
[ 1345.250721][ T6856]  run_queue+0x323/0x680
[ 1345.254951][ T6856]  gfs2_glock_nq+0x716/0x11b0
[ 1345.259613][ T6856]  gfs2_lookupi+0x314/0x630
[ 1345.264124][ T6856]  ? gfs2_lookup_by_inum+0x100/0x100
[ 1345.269381][ T6856]  ? gfs2_lookupi+0x30c/0x630
[ 1345.274126][ T6856]  ? crc32_body+0x348/0x5f0
[ 1345.278607][ T6856]  gfs2_lookup_simple+0x99/0xe0
[ 1345.283427][ T6856]  ? gfs2_lookupi+0x630/0x630
[ 1345.288080][ T6856]  ? do_raw_spin_lock+0x120/0x2b0
[ 1345.293109][ T6856]  init_inodes+0x367/0x1f40
[ 1345.297640][ T6856]  ? vsnprintf+0x2cc/0x14f0
[ 1345.302294][ T6856]  ? pointer+0x970/0x970
[ 1345.306513][ T6856]  ? end_bio_io_page+0x100/0x100
[ 1345.311421][ T6856]  ? init_sb+0x9ba/0xd30
[ 1345.315647][ T6856]  ? snprintf+0xbb/0xf0
[ 1345.319783][ T6856]  ? vsprintf+0x30/0x30
[ 1345.323912][ T6856]  ? gfs2_read_super+0x1080/0x1080
[ 1345.329049][ T6856]  ? __debugfs_create_file+0x36b/0x4f0
[ 1345.334502][ T6856]  gfs2_fill_super+0x195e/0x254a
[ 1345.339417][ T6856]  ? gfs2_reconfigure+0x1020/0x1020
[ 1345.344600][ T6856]  ? lock_downgrade+0x830/0x830
[ 1345.349424][ T6856]  ? gfs2_glock_nq_num+0xf9/0x240
[ 1345.354430][ T6856]  ? snprintf+0xbb/0xf0
[ 1345.358555][ T6856]  ? vsprintf+0x30/0x30
[ 1345.362732][ T6856]  ? wait_for_completion+0x260/0x260
[ 1345.368092][ T6856]  ? set_blocksize+0x1c1/0x400
[ 1345.372877][ T6856]  get_tree_bdev+0x421/0x740
[ 1345.377444][ T6856]  ? gfs2_reconfigure+0x1020/0x1020
[ 1345.382615][ T6856]  gfs2_get_tree+0x4a/0x270
[ 1345.387092][ T6856]  vfs_get_tree+0x89/0x2f0
[ 1345.391522][ T6856]  path_mount+0x1387/0x20a0
[ 1345.396057][ T6856]  ? strncpy_from_user+0x2bf/0x3e0
[ 1345.401153][ T6856]  ? copy_mount_string+0x40/0x40
[ 1345.406075][ T6856]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1345.411442][ T6856]  __x64_sys_mount+0x27f/0x300
[ 1345.416182][ T6856]  ? copy_mnt_ns+0xa60/0xa60
[ 1345.420842][ T6856]  ? check_preemption_disabled+0x50/0x130
[ 1345.426531][ T6856]  ? syscall_enter_from_user_mode+0x1d/0x60
[ 1345.432397][ T6856]  do_syscall_64+0x2d/0x70
[ 1345.436828][ T6856]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1345.442694][ T6856] RIP: 0033:0x45b4ca
[ 1345.446563][ T6856] Code: b8 08 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 fd ad fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 da ad fb ff c3 66 0f 1f 84 00 00 00 00 00
[ 1345.466152][ T6856] RSP: 002b:00007ffcb0e03bf8 EFLAGS: 00000293 ORIG_RAX: 00000000000000a5
[ 1345.474545][ T6856] RAX: ffffffffffffffda RBX: 00007ffcb0e03c50 RCX: 000000000045b4ca
[ 1345.482541][ T6856] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007ffcb0e03c10
[ 1345.490493][ T6856] RBP: 00007ffcb0e03c10 R08: 00007ffcb0e03c50 R09: 00007ffc00000015
[ 1345.498478][ T6856] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000000091c
[ 1345.506427][ T6856] R13: 0000000000000004 R14: 0000000000000003 R15: 0000000000000003
[ 1345.514382][ T6856] Modules linked in:
[ 1345.518805][ T6856] ---[ end trace 9c55a25d804427ee ]---
[ 1345.524275][ T6856] RIP: 0010:gfs2_withdraw.cold+0xff/0xc0e
[ 1345.530184][ T6856] Code: 00 48 c1 e0 2a 80 3c 02 00 0f 85 19 02 00 00 4c 8b bb a0 08 00 00 b8 ff ff 37 00 48 c1 e0 2a 49 8d 7f 70 48 89 fa 48 c1 ea 03 <80> 3c 02 00 74 05 e8 07 52 68 fe 4d 8b 7f 70 b8 ff ff 37 00 48 c1
[ 1345.550037][ T6856] RSP: 0018:ffffc9000314f3b8 EFLAGS: 00010202
[ 1345.556121][ T6856] RAX: dffffc0000000000 RBX: ffff888091f6c000 RCX: ffffffff834ec53e
[ 1345.564140][ T6856] RDX: 000000000000000e RSI: ffffffff834ec54f RDI: 0000000000000070
[ 1345.572217][ T6856] RBP: ffff888091f6c26d R08: 0000000000000038 R09: ffff8880ae520f8b
[ 1345.580244][ T6856] R10: 0000000000000000 R11: 0000000000000000 R12: ffff888091f6c050
[ 1345.588296][ T6856] R13: ffff888091f6c2f0 R14: ffffffff88cc1560 R15: 0000000000000000
[ 1345.596278][ T6856] FS:  0000000001135880(0000) GS:ffff8880ae500000(0000) knlGS:0000000000000000
[ 1345.605257][ T6856] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1345.611891][ T6856] CR2: 00007fb28ad51000 CR3: 000000009fbb8000 CR4: 00000000001506e0
[ 1345.619999][ T6856] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1345.628051][ T6856] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1345.636020][ T6856] Kernel panic - not syncing: Fatal exception
[ 1345.643203][ T6856] Kernel Offset: disabled
[ 1345.647525][ T6856] Rebooting in 86400 seconds..