[ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Starting Load/Save RF Kill Switch Status... [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.245' (ECDSA) to the list of known hosts. syzkaller login: [ 307.080169] IPVS: ftp: loaded support on port[0] = 21 executing program [ 307.169088] ERROR: (device loop0): xtTruncate_pmap: XT_GETPAGE: xtree page corrupt [ 307.169088] [ 307.180679] ERROR: (device loop0): txAbort: [ 307.180679] [ 307.197273] ERROR: (device loop0): xtTruncate: XT_GETPAGE: xtree page corrupt [ 307.197273] [ 307.206896] BUG: unable to handle kernel paging request at ffff887c8be50d48 [ 307.214174] PGD 0 P4D 0 [ 307.217095] Oops: 0000 [#1] PREEMPT SMP KASAN [ 307.221569] CPU: 0 PID: 8098 Comm: syz-executor606 Not tainted 4.19.211-syzkaller #0 [ 307.229427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 307.239465] RIP: 0010:__lock_acquire+0x1f5/0x3ff0 [ 307.244422] Code: 00 44 89 f8 5b 5d 41 5c 41 5d 41 5e 41 5f c3 48 b8 00 00 00 00 00 fc ff df 4c 89 f2 48 c1 ea 03 80 3c 02 00 0f 85 b3 2a 00 00 <49> 81 3e 20 f2 66 8c 0f 84 65 ff ff ff 83 fe 01 0f 87 68 ff ff ff [ 307.263503] RSP: 0018:ffff8880b2b1f438 EFLAGS: 00010046 [ 307.268862] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 307.276129] RDX: 1ffff10f917ca1a9 RSI: 0000000000000000 RDI: 0000000000000001 [ 307.283398] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000001 [ 307.290691] R10: 0000000000000004 R11: 0000000000000000 R12: 0000000000000000 [ 307.297944] R13: ffff888096724480 R14: ffff887c8be50d48 R15: 0000000000000001 [ 307.305446] FS: 0000555557032300(0000) GS:ffff8880ba000000(0000) knlGS:0000000000000000 [ 307.313665] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 307.319563] CR2: ffff887c8be50d48 CR3: 000000009a810000 CR4: 00000000003406f0 [ 307.326824] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 307.334173] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 307.341611] Call Trace: [ 307.344626] ? vprintk_func+0x81/0x180 [ 307.348872] ? unwind_next_frame+0xeee/0x1400 [ 307.353351] ? printk+0xba/0xed [ 307.356663] ? log_store.cold+0x16/0x16 [ 307.360835] ? mark_held_locks+0xf0/0xf0 [ 307.364885] ? deref_stack_reg+0x1d0/0x1d0 [ 307.369248] ? xtTruncate+0x1f71/0x25b0 [ 307.373219] ? jfs_error+0x120/0x260 [ 307.376991] ? lock_downgrade+0x720/0x720 [ 307.381165] ? jfs_quota_on+0x130/0x130 [ 307.385139] ? deref_stack_reg+0x1d0/0x1d0 [ 307.389517] lock_acquire+0x170/0x3c0 [ 307.393312] ? diFree+0x24c/0x29c0 [ 307.397040] ? diFree+0x24c/0x29c0 [ 307.400588] __mutex_lock+0xd7/0x1190 [ 307.404380] ? diFree+0x24c/0x29c0 [ 307.407916] ? xtTruncate+0x115c/0x25b0 [ 307.411892] ? diFree+0x24c/0x29c0 [ 307.415428] ? mutex_trylock+0x1a0/0x1a0 [ 307.419592] ? xtInitRoot+0x1c0/0x1c0 [ 307.423549] diFree+0x24c/0x29c0 [ 307.426899] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 307.431472] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 307.436228] ? __dquot_initialize+0x298/0xb70 [ 307.440727] ? __inode_wait_for_writeback+0x184/0x1f0 [ 307.446054] ? diWrite+0x13c0/0x13c0 [ 307.449838] ? jfs_free_zero_link+0x1c3/0x440 [ 307.454315] ? jfs_create+0x60/0x60 [ 307.457921] ? lock_downgrade+0x720/0x720 [ 307.462086] jfs_evict_inode+0x1a1/0x210 [ 307.466137] ? jfs_write_inode+0x1d0/0x1d0 [ 307.470444] evict+0x2ed/0x760 [ 307.473618] iput+0x4f1/0x860 [ 307.476714] dentry_unlink_inode+0x265/0x320 [ 307.481228] __dentry_kill+0x3c0/0x640 [ 307.485193] shrink_dentry_list+0x28d/0x6e0 [ 307.489686] shrink_dcache_parent+0xdc/0x120 [ 307.494074] ? shrink_dcache_sb+0x220/0x220 [ 307.498374] ? debug_check_no_obj_freed+0x201/0x490 [ 307.503527] shrink_dcache_for_umount+0x71/0x330 [ 307.508461] generic_shutdown_super+0x68/0x370 [ 307.513040] kill_block_super+0x97/0xf0 [ 307.517016] deactivate_locked_super+0x94/0x160 [ 307.521713] deactivate_super+0x174/0x1a0 [ 307.526015] ? deactivate_locked_super+0x160/0x160 [ 307.530950] ? dput+0x31/0x640 [ 307.534344] cleanup_mnt+0x1a8/0x290 [ 307.538062] task_work_run+0x148/0x1c0 [ 307.541936] do_exit+0xbf3/0x2be0 [ 307.545375] ? lock_downgrade+0x720/0x720 [ 307.549544] ? mm_update_next_owner+0x650/0x650 [ 307.554348] ? up_read+0x17/0x110 [ 307.557968] ? __do_page_fault+0x180/0xd60 [ 307.562202] do_group_exit+0x125/0x310 [ 307.566080] __x64_sys_exit_group+0x3a/0x50 [ 307.570390] do_syscall_64+0xf9/0x620 [ 307.574174] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 307.579347] RIP: 0033:0x7fca7a5894f9 [ 307.583059] Code: Bad RIP value. [ 307.586416] RSP: 002b:00007ffee8d02f28 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 307.594264] RAX: ffffffffffffffda RBX: 00007fca7a60c330 RCX: 00007fca7a5894f9 [ 307.601655] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000001 [ 307.609012] RBP: 0000000000000001 R08: ffffffffffffffc0 R09: 0000000000000000 [ 307.616364] R10: 00005555570322c0 R11: 0000000000000246 R12: 00007fca7a60c330 [ 307.623617] R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000000001 [ 307.630888] Modules linked in: [ 307.634080] CR2: ffff887c8be50d48 [ 307.637529] ---[ end trace 34ea22807caafce1 ]--- [ 307.642368] RIP: 0010:__lock_acquire+0x1f5/0x3ff0 [ 307.647455] Code: 00 44 89 f8 5b 5d 41 5c 41 5d 41 5e 41 5f c3 48 b8 00 00 00 00 00 fc ff df 4c 89 f2 48 c1 ea 03 80 3c 02 00 0f 85 b3 2a 00 00 <49> 81 3e 20 f2 66 8c 0f 84 65 ff ff ff 83 fe 01 0f 87 68 ff ff ff [ 307.666617] RSP: 0018:ffff8880b2b1f438 EFLAGS: 00010046 [ 307.672581] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 307.680038] RDX: 1ffff10f917ca1a9 RSI: 0000000000000000 RDI: 0000000000000001 [ 307.687391] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000001 [ 307.694654] R10: 0000000000000004 R11: 0000000000000000 R12: 0000000000000000 [ 307.702011] R13: ffff888096724480 R14: ffff887c8be50d48 R15: 0000000000000001 [ 307.709726] FS: 0000555557032300(0000) GS:ffff8880ba000000(0000) knlGS:0000000000000000 [ 307.718025] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 307.723995] CR2: 00007fca7a5894cf CR3: 000000009a810000 CR4: 00000000003406f0 [ 307.732040] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 307.739302] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 307.746599] Kernel panic - not syncing: Fatal exception [ 307.752093] Kernel Offset: disabled [ 307.755707] Rebooting in 86400 seconds..