[ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... Starting Load/Save RF Kill Switch Status... [ OK ] Started Load/Save RF Kill Switch Status. [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.182' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 106.348689] audit: type=1400 audit(1602638242.632:8): avc: denied { execmem } for pid=6496 comm="syz-executor306" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 106.376005] EXT4-fs (loop0): Mount option "noacl" will be removed by 3.5 [ 106.376005] Contact linux-ext4@vger.kernel.org if you think we should keep it. [ 106.376005] [ 106.391789] EXT4-fs (loop0): Ignoring removed nomblk_io_submit option [ 106.398513] EXT4-fs (loop0): Ignoring removed nomblk_io_submit option [ 106.417045] EXT4-fs (loop0): mounted filesystem without journal. Opts: errors=remount-ro,noacl,nomblk_io_submit,nomblk_io_submit,barrier=0x000000000000007f, [ 106.434161] EXT4-fs (loop0): re-mounted. Opts: [ 106.441609] EXT4-fs error (device loop0): __ext4_new_inode:922: comm syz-executor306: reserved inode found cleared - inode=1 [ 106.455997] EXT4-fs (loop0): Remounting filesystem read-only [ 106.473795] ------------[ cut here ]------------ [ 106.478692] kernel BUG at fs/ext4/inode.c:981! [ 106.485783] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 106.491153] CPU: 0 PID: 6496 Comm: syz-executor306 Not tainted 4.19.150-syzkaller #0 [ 106.499012] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 106.508359] RIP: 0010:ext4_getblk+0x470/0x510 [ 106.512833] Code: 01 e8 b4 12 7c ff 4c 89 e7 e8 6c 00 ce ff e9 94 fd ff ff e8 a2 12 7c ff 4c 89 e7 e8 ba 00 ce ff e9 d3 fe ff ff e8 90 12 7c ff <0f> 0b 48 c7 c7 00 c0 a1 89 e8 52 5c c0 01 e8 bd b6 4c ff 48 89 34 [ 106.531987] RSP: 0018:ffff8880a3e27258 EFLAGS: 00010293 [ 106.537355] RAX: ffff8880a3d86140 RBX: 0000000000000009 RCX: ffffffff81f5bf31 [ 106.544602] RDX: 0000000000000000 RSI: ffffffff81f5bfd0 RDI: 0000000000000005 [ 106.551857] RBP: 1ffff110147c4e4d R08: 0000000000002400 R09: 0000000000000000 [ 106.559125] R10: 0000000000000005 R11: 0000000000000000 R12: 0000000000000021 [ 106.566372] R13: 0000000000000000 R14: ffff888082ffa5f0 R15: 0000000000000001 [ 106.573631] FS: 0000000001380880(0000) GS:ffff8880ae200000(0000) knlGS:0000000000000000 [ 106.581832] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 106.587700] CR2: 00005589959e3230 CR3: 00000000909cc000 CR4: 00000000001406f0 [ 106.594962] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 106.602209] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 106.609451] Call Trace: [ 106.612033] ? ext4_iomap_begin+0xf40/0xf40 [ 106.616336] ? remove_tree+0x9cc/0x1110 [ 106.620291] ? remove_tree+0x1eb/0x1110 [ 106.624252] ? remove_tree+0x1eb/0x1110 [ 106.628201] ? remove_tree+0x1eb/0x1110 [ 106.632153] ? qtree_release_dquot+0x195/0x1d0 [ 106.636707] ? v2_release_dquot+0xce/0x120 [ 106.640930] ? dquot_release+0x1be/0x3b0 [ 106.644980] ? ext4_release_dquot+0x23e/0x2b0 [ 106.649451] ? dqput.part.0+0x1a3/0x850 [ 106.653412] ? __dquot_drop+0x1c6/0x2a0 [ 106.657362] ? dquot_drop+0x14b/0x1a0 [ 106.661138] ? ext4_clear_inode+0x31/0x1d0 [ 106.665448] ext4_bread+0x7c/0x210 [ 106.668967] ? ext4_getblk+0x510/0x510 [ 106.672847] ? do_syscall_64+0x57c/0x670 [ 106.676887] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 106.682230] ? lock_downgrade+0x750/0x750 [ 106.686354] ? lock_acquire+0x170/0x3f0 [ 106.690314] ext4_quota_write+0x244/0x580 [ 106.694442] ? ext4_quota_on+0x9d0/0x9d0 [ 106.698498] ? mark_held_locks+0xa6/0xf0 [ 106.702537] ? ext4_quota_on+0x9d0/0x9d0 [ 106.706575] write_blk+0x12d/0x210 [ 106.710102] remove_free_dqentry+0x1eb/0x4b0 [ 106.714493] remove_tree+0x9cc/0x1110 [ 106.718287] ? qtree_read_dquot+0x720/0x720 [ 106.722587] ? qid_valid+0x140/0x140 [ 106.726280] ? ext4_quota_read+0x296/0x320 [ 106.730505] remove_tree+0x1eb/0x1110 [ 106.734290] ? __sanitizer_cov_trace_switch+0x4b/0x80 [ 106.739458] ? qtree_read_dquot+0x720/0x720 [ 106.743765] ? qid_valid+0x140/0x140 [ 106.747467] ? ext4_quota_read+0x296/0x320 [ 106.751688] remove_tree+0x1eb/0x1110 [ 106.755491] ? __sanitizer_cov_trace_switch+0x4b/0x80 [ 106.760667] ? qtree_read_dquot+0x720/0x720 [ 106.764977] ? qid_valid+0x140/0x140 [ 106.768689] ? ext4_quota_read+0x296/0x320 [ 106.772904] remove_tree+0x1eb/0x1110 [ 106.776684] ? qtree_read_dquot+0x720/0x720 [ 106.780993] ? dquot_release+0x4d/0x3b0 [ 106.784948] ? ww_mutex_unlock+0x2f0/0x2f0 [ 106.789158] qtree_release_dquot+0x195/0x1d0 [ 106.793545] ? qtree_delete_dquot+0x100/0x100 [ 106.798021] v2_release_dquot+0xce/0x120 [ 106.802062] dquot_release+0x1be/0x3b0 [ 106.805923] ? v2_get_next_id+0xb0/0xb0 [ 106.809877] ext4_release_dquot+0x23e/0x2b0 [ 106.814189] dqput.part.0+0x1a3/0x850 [ 106.817970] __dquot_drop+0x1c6/0x2a0 [ 106.821748] ? dquot_scan_active+0x310/0x310 [ 106.826136] ? _raw_spin_unlock_irq+0x24/0x90 [ 106.830609] ? lockdep_hardirqs_on+0x3c1/0x5e0 [ 106.835180] dquot_drop+0x14b/0x1a0 [ 106.838805] ext4_clear_inode+0x31/0x1d0 [ 106.842845] ext4_evict_inode+0x25b/0x1830 [ 106.847058] ? ext4_journalled_write_end+0x14b0/0x14b0 [ 106.852313] ? ext4_journalled_write_end+0x14b0/0x14b0 [ 106.857565] evict+0x2ed/0x780 [ 106.860735] dispose_list+0x124/0x1f0 [ 106.864514] evict_inodes+0x341/0x430 [ 106.868291] ? dispose_list+0x1f0/0x1f0 [ 106.872246] ? shrink_dcache_for_umount+0x165/0x330 [ 106.877254] generic_shutdown_super+0xb3/0x370 [ 106.881814] kill_block_super+0x97/0xf0 [ 106.885787] deactivate_locked_super+0x8c/0x100 [ 106.890435] deactivate_super+0x174/0x1a0 [ 106.894571] ? deactivate_locked_super+0x100/0x100 [ 106.899480] ? dput+0x31/0x6a0 [ 106.902660] cleanup_mnt+0x1da/0x300 [ 106.906354] task_work_run+0x141/0x1c0 [ 106.910221] exit_to_usermode_loop+0x269/0x2c0 [ 106.914793] do_syscall_64+0x57c/0x670 [ 106.918666] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 106.923846] RIP: 0033:0x448467 [ 106.927023] Code: 00 00 00 b8 08 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 8d a2 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 a6 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 6d a2 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 106.945924] RSP: 002b:00007ffdc905e478 EFLAGS: 00000202 ORIG_RAX: 00000000000000a6 [ 106.953610] RAX: 0000000000000000 RBX: 0000000000019f89 RCX: 0000000000448467 [ 106.960856] RDX: 0000000000400cf7 RSI: 0000000000000002 RDI: 00007ffdc905e520 [ 106.968101] RBP: 0000000000001961 R08: 0000000000000000 R09: 0000000000000009 [ 106.975348] R10: 0000000000000005 R11: 0000000000000202 R12: 00007ffdc905f580 [ 106.982593] R13: 0000000001381880 R14: 0000000000000000 R15: 0000000000000000 [ 106.989842] Modules linked in: [ 106.993670] ---[ end trace 29c470143373e70d ]--- [ 106.998441] RIP: 0010:ext4_getblk+0x470/0x510 [ 107.003314] Code: 01 e8 b4 12 7c ff 4c 89 e7 e8 6c 00 ce ff e9 94 fd ff ff e8 a2 12 7c ff 4c 89 e7 e8 ba 00 ce ff e9 d3 fe ff ff e8 90 12 7c ff <0f> 0b 48 c7 c7 00 c0 a1 89 e8 52 5c c0 01 e8 bd b6 4c ff 48 89 34 [ 107.022275] RSP: 0018:ffff8880a3e27258 EFLAGS: 00010293 [ 107.027640] RAX: ffff8880a3d86140 RBX: 0000000000000009 RCX: ffffffff81f5bf31 [ 107.035759] RDX: 0000000000000000 RSI: ffffffff81f5bfd0 RDI: 0000000000000005 [ 107.043097] RBP: 1ffff110147c4e4d R08: 0000000000002400 R09: 0000000000000000 [ 107.050367] R10: 0000000000000005 R11: 0000000000000000 R12: 0000000000000021 [ 107.057697] R13: 0000000000000000 R14: ffff888082ffa5f0 R15: 0000000000000001 [ 107.065021] FS: 0000000001380880(0000) GS:ffff8880ae200000(0000) knlGS:0000000000000000 [ 107.073315] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 107.079189] CR2: 00005589959e3230 CR3: 00000000909cc000 CR4: 00000000001406f0 [ 107.086530] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 107.093868] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 107.101145] Kernel panic - not syncing: Fatal exception [ 107.107562] Kernel Offset: disabled [ 107.111175] Rebooting in 86400 seconds..