[ OK ] Started Getty on tty4. [ OK ] Started Getty on tty3. [ OK ] Started Getty on tty2. [ OK ] Started Getty on tty1. [ OK ] Started Serial Getty on ttyS0. [ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Starting Load/Save RF Kill Switch Status... Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.217' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 57.329064][ T6866] general protection fault, probably for non-canonical address 0xdffffc0000000001: 0000 [#1] PREEMPT SMP KASAN [ 57.340783][ T6866] KASAN: null-ptr-deref in range [0x0000000000000008-0x000000000000000f] [ 57.349180][ T6866] CPU: 1 PID: 6866 Comm: syz-executor202 Not tainted 5.9.0-rc5-syzkaller #0 [ 57.357829][ T6866] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 57.367887][ T6866] RIP: 0010:jffs2_parse_param+0x141/0x330 [ 57.373594][ T6866] Code: 48 c1 ea 03 4d 63 fc 80 3c 02 00 0f 85 de 01 00 00 48 b8 00 00 00 00 00 fc ff df 4d 8b 75 00 49 8d 7e 08 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 c8 01 00 00 4d 8b 76 08 4c 89 ff 4c 89 f6 e8 d6 [ 57.393201][ T6866] RSP: 0018:ffffc90001087b78 EFLAGS: 00010202 [ 57.399255][ T6866] RAX: dffffc0000000000 RBX: ffff8880932c9c00 RCX: ffffffff82882084 [ 57.407332][ T6866] RDX: 0000000000000001 RSI: ffffffff82882096 RDI: 0000000000000008 [ 57.415284][ T6866] RBP: 1ffff92000210f6f R08: 0000000000000001 R09: 0000000000000003 [ 57.423246][ T6866] R10: 00000000003fffff R11: 0000000000000000 R12: 0000000000000000 [ 57.431210][ T6866] R13: ffff88808de2a000 R14: 0000000000000000 R15: 0000000000000000 [ 57.439170][ T6866] FS: 0000000002198880(0000) GS:ffff8880ae500000(0000) knlGS:0000000000000000 [ 57.448080][ T6866] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 57.454636][ T6866] CR2: 000000000043e830 CR3: 00000000a11a3000 CR4: 00000000001506e0 [ 57.462600][ T6866] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 57.470557][ T6866] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 57.478501][ T6866] Call Trace: [ 57.481769][ T6866] ? jffs2_alloc_inode+0x40/0x40 [ 57.486690][ T6866] ? vfs_parse_fs_param+0x540/0x550 [ 57.491868][ T6866] ? jffs2_alloc_inode+0x40/0x40 [ 57.496776][ T6866] vfs_parse_fs_param+0x203/0x550 [ 57.501773][ T6866] vfs_parse_fs_string+0xe6/0x150 [ 57.506785][ T6866] ? vfs_parse_fs_param+0x550/0x550 [ 57.511961][ T6866] ? kmem_cache_alloc_trace+0x18e/0x300 [ 57.517496][ T6866] ? bpf_lsm_sb_eat_lsm_opts+0x5/0x10 [ 57.522854][ T6866] generic_parse_monolithic+0x16f/0x1f0 [ 57.528391][ T6866] ? vfs_parse_fs_string+0x150/0x150 [ 57.533659][ T6866] ? jffs2_get_parent+0x60/0x60 [ 57.538492][ T6866] ? alloc_fs_context+0x56e/0x880 [ 57.543492][ T6866] path_mount+0x133f/0x20a0 [ 57.547972][ T6866] ? strncpy_from_user+0x2bf/0x3e0 [ 57.553057][ T6866] ? copy_mount_string+0x40/0x40 [ 57.557971][ T6866] ? getname_flags.part.0+0x1dd/0x4f0 [ 57.563314][ T6866] __x64_sys_mount+0x27f/0x300 [ 57.568499][ T6866] ? copy_mnt_ns+0xa60/0xa60 [ 57.573063][ T6866] ? check_preemption_disabled+0x50/0x130 [ 57.578766][ T6866] ? syscall_enter_from_user_mode+0x1d/0x60 [ 57.584638][ T6866] do_syscall_64+0x2d/0x70 [ 57.589041][ T6866] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 57.594917][ T6866] RIP: 0033:0x44699a [ 57.598788][ T6866] Code: b8 08 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 7d ae fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5a ae fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 57.618384][ T6866] RSP: 002b:00007ffc381bf788 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 57.626779][ T6866] RAX: ffffffffffffffda RBX: 00007ffc381bf7d0 RCX: 000000000044699a [ 57.634740][ T6866] RDX: 0000000020001300 RSI: 0000000020001340 RDI: 0000000000000000 [ 57.642689][ T6866] RBP: 0000000000000000 R08: 00007ffc381bf7d0 R09: 0000000000000014 [ 57.650642][ T6866] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000401c80 [ 57.658605][ T6866] R13: 0000000000401d10 R14: 0000000000000000 R15: 0000000000000000 [ 57.666552][ T6866] Modules linked in: [ 57.671949][ T6866] ---[ end trace 9cf0f624124bffcb ]--- [ 57.677579][ T6866] RIP: 0010:jffs2_parse_param+0x141/0x330 [ 57.683331][ T6866] Code: 48 c1 ea 03 4d 63 fc 80 3c 02 00 0f 85 de 01 00 00 48 b8 00 00 00 00 00 fc ff df 4d 8b 75 00 49 8d 7e 08 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 c8 01 00 00 4d 8b 76 08 4c 89 ff 4c 89 f6 e8 d6 [ 57.703026][ T6866] RSP: 0018:ffffc90001087b78 EFLAGS: 00010202 [ 57.709174][ T6866] RAX: dffffc0000000000 RBX: ffff8880932c9c00 RCX: ffffffff82882084 [ 57.717221][ T6866] RDX: 0000000000000001 RSI: ffffffff82882096 RDI: 0000000000000008 [ 57.725182][ T6866] RBP: 1ffff92000210f6f R08: 0000000000000001 R09: 0000000000000003 [ 57.733219][ T6866] R10: 00000000003fffff R11: 0000000000000000 R12: 0000000000000000 [ 57.741286][ T6866] R13: ffff88808de2a000 R14: 0000000000000000 R15: 0000000000000000 [ 57.749284][ T6866] FS: 0000000002198880(0000) GS:ffff8880ae500000(0000) knlGS:0000000000000000 [ 57.758252][ T6866] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 57.764839][ T6866] CR2: 000000000043e830 CR3: 00000000a11a3000 CR4: 00000000001506e0 [ 57.772907][ T6866] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 57.780931][ T6866] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 57.788947][ T6866] Kernel panic - not syncing: Fatal exception [ 57.796005][ T6866] Kernel Offset: disabled [ 57.800318][ T6866] Rebooting in 86400 seconds..