[[0;32m  OK  [0m] Reached target Graphical Interface.
         Starting Update UTMP about System Runlevel Changes...
         Starting Load/Save RF Kill Switch Status...
[[0;32m  OK  [0m] Started Update UTMP about System Runlevel Changes.
[[0;32m  OK  [0m] Started Load/Save RF Kill Switch Status.

Debian GNU/Linux 9 syzkaller ttyS0

Warning: Permanently added '10.128.0.220' (ECDSA) to the list of known hosts.
executing program
executing program
executing program
executing program
executing program
syzkaller login: [  130.870774][   T26] audit: type=1400 audit(1589572397.343:8): avc:  denied  { execmem } for  pid=7221 comm="syz-executor200" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
executing program
[  130.902389][   T26] audit: type=1800 audit(1589572397.363:9): pid=7229 uid=0 auid=0 ses=5 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor200" name="file0" dev="sda1" ino=15709 res=0
[  130.930751][ T7230] MINIX-fs: mounting unchecked file system, running fsck is recommended
[  130.934891][ T7228] MINIX-fs: mounting unchecked file system, running fsck is recommended
[  130.941982][ T7229] MINIX-fs: mounting unchecked file system, running fsck is recommended
[  130.965038][   T26] audit: type=1800 audit(1589572397.363:10): pid=7230 uid=0 auid=0 ses=5 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor200" name="file0" dev="sda1" ino=15710 res=0
[  130.987589][   T26] audit: type=1800 audit(1589572397.393:11): pid=7228 uid=0 auid=0 ses=5 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor200" name="file0" dev="sda1" ino=15715 res=0
[  130.996861][ T7230] Process accounting resumed
[  131.012456][   T26] audit: type=1800 audit(1589572397.433:12): pid=7236 uid=0 auid=0 ses=5 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor200" name="file0" dev="sda1" ino=15718 res=0
[  131.016564][ T7235] MINIX-fs: mounting unchecked file system, running fsck is recommended
[  131.046302][ T7236] MINIX-fs: mounting unchecked file system, running fsck is recommended
[  131.057002][ T7230] ==================================================================
[  131.065241][ T7230] BUG: KASAN: use-after-free in get_block+0x110f/0x1380
[  131.072182][ T7230] Read of size 2 at addr ffff88809799fbb8 by task syz-executor200/7230
[  131.080424][ T7230] 
[  131.082761][ T7230] CPU: 0 PID: 7230 Comm: syz-executor200 Not tainted 5.7.0-rc5-syzkaller #0
[  131.083671][   T26] audit: type=1800 audit(1589572397.433:13): pid=7235 uid=0 auid=0 ses=5 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor200" name="file0" dev="sda1" ino=15719 res=0
[  131.091422][ T7230] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  131.091439][ T7230] Call Trace:
[  131.091462][ T7230]  dump_stack+0x188/0x20d
[  131.091486][ T7230]  print_address_description.constprop.0.cold+0xd3/0x413
[  131.091504][ T7230]  ? vprintk_func+0x81/0x17e
[  131.091521][ T7230]  ? get_block+0x110f/0x1380
[  131.091533][ T7230]  __kasan_report.cold+0x20/0x38
[  131.091548][ T7230]  ? ___might_sleep+0xf0/0x2b0
[  131.091558][ T7230]  ? get_block+0x110f/0x1380
[  131.091570][ T7230]  ? get_block+0x110f/0x1380
[  131.091579][ T7230]  kasan_report+0x33/0x50
[  131.091594][ T7230]  get_block+0x110f/0x1380
[  131.091611][ T7230]  ? __schedule+0x93f/0x1ff0
[  131.091633][ T7230]  ? block_to_path.isra.0+0x300/0x300
[  131.091661][ T7230]  ? preempt_schedule_thunk+0x16/0x18
[  131.137733][ T7246] Process accounting resumed
[  131.141189][ T7230]  minix_get_block+0xe5/0x110
[  131.141209][ T7230]  __block_write_begin_int+0x490/0x1b00
[  131.141227][ T7230]  ? minix_rename+0x8c0/0x8c0
[  131.141252][ T7230]  ? remove_inode_buffers+0x1c0/0x1c0
[  131.141267][ T7230]  ? pagecache_get_page+0x204/0xa10
[  131.141284][ T7230]  ? wait_for_stable_page+0x11c/0x1e0
[  131.224528][ T7230]  ? minix_rename+0x8c0/0x8c0
[  131.229293][ T7230]  block_write_begin+0x58/0x2e0
[  131.234128][ T7230]  minix_write_begin+0x35/0xe0
[  131.238893][ T7230]  generic_perform_write+0x20a/0x4e0
[  131.244166][ T7230]  ? __mnt_drop_write+0x50/0x80
[  131.249001][ T7230]  ? trace_event_raw_event_file_check_and_advance_wb_err+0x4a0/0x4a0
[  131.257063][ T7230]  ? update_time+0xc0/0xc0
[  131.261473][ T7230]  ? down_write+0xdb/0x150
[  131.265879][ T7230]  __generic_file_write_iter+0x24c/0x610
[  131.271765][ T7230]  generic_file_write_iter+0x3f3/0x630
[  131.277210][ T7230]  ? __generic_file_write_iter+0x610/0x610
[  131.283018][ T7230]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  131.288485][ T7230]  ? preempt_schedule_irq+0xee/0x150
[  131.293758][ T7230]  new_sync_write+0x4a2/0x700
[  131.298507][ T7230]  ? new_sync_read+0x7a0/0x7a0
[  131.304240][ T7230]  __vfs_write+0xc9/0x100
[  131.308554][ T7230]  __kernel_write+0x11c/0x3a0
[  131.313233][ T7230]  do_acct_process+0xcdc/0x10e0
[  131.318075][ T7230]  ? acct_on+0x770/0x770
[  131.322336][ T7230]  acct_process+0x50e/0x5b7
[  131.326831][ T7230]  ? acct_collect+0x800/0x800
[  131.331496][ T7230]  ? fput_many+0x2f/0x1a0
[  131.335834][ T7230]  do_exit+0x1ac0/0x2dd0
[  131.340067][ T7230]  ? mm_update_next_owner+0x7a0/0x7a0
[  131.345417][ T7230]  ? up_read+0x1ab/0x750
[  131.349645][ T7230]  ? down_read_nested+0x420/0x420
[  131.354682][ T7230]  ? handle_mm_fault+0x29e/0x660
[  131.359602][ T7230]  do_group_exit+0x125/0x340
[  131.364199][ T7230]  __x64_sys_exit_group+0x3a/0x50
[  131.369205][ T7230]  do_syscall_64+0xf6/0x7d0
[  131.373702][ T7230]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  131.379570][ T7230] RIP: 0033:0x444a68
[  131.383465][ T7230] Code: Bad RIP value.
[  131.387506][ T7230] RSP: 002b:00007ffe8913fcc8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[  131.395912][ T7230] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000444a68
[  131.403873][ T7230] RDX: 0000000000000000 RSI: 000000000000003c RDI: 0000000000000000
[  131.411823][ T7230] RBP: 00000000004c50f0 R08: 00000000000000e7 R09: ffffffffffffffd4
[  131.419772][ T7230] R10: 00007ffe8913fbd0 R11: 0000000000000246 R12: 0000000000000001
[  131.427724][ T7230] R13: 00000000006d7180 R14: 0000000000000000 R15: 0000000000000000
[  131.435684][ T7230] 
[  131.437988][ T7230] The buggy address belongs to the page:
[  131.443602][ T7230] page:ffffea00025e67c0 refcount:0 mapcount:0 mapping:00000000b68aab73 index:0x1
[  131.452681][ T7230] flags: 0xfffe0000000000()
[  131.457165][ T7230] raw: 00fffe0000000000 ffffea0002274808 ffff8880ae63b148 0000000000000000
[  131.466079][ T7230] raw: 0000000000000001 0000000000000000 00000000ffffffff 0000000000000000
[  131.474650][ T7230] page dumped because: kasan: bad access detected
[  131.481053][ T7230] 
[  131.483365][ T7230] Memory state around the buggy address:
[  131.488982][ T7230]  ffff88809799fa80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  131.497033][ T7230]  ffff88809799fb00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  131.505073][ T7230] >ffff88809799fb80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  131.515194][ T7230]                                         ^
[  131.521064][ T7230]  ffff88809799fc00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  131.529277][ T7230]  ffff88809799fc80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  131.537328][ T7230] ==================================================================
[  131.545366][ T7230] Disabling lock debugging due to kernel taint
[  131.551604][ T7230] Kernel panic - not syncing: panic_on_warn set ...
[  131.558179][ T7230] CPU: 0 PID: 7230 Comm: syz-executor200 Tainted: G    B             5.7.0-rc5-syzkaller #0
[  131.568212][ T7230] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  131.578589][ T7230] Call Trace:
[  131.581882][ T7230]  dump_stack+0x188/0x20d
[  131.586192][ T7230]  panic+0x2e3/0x75c
[  131.590081][ T7230]  ? add_taint.cold+0x16/0x16
[  131.594735][ T7230]  ? retint_kernel+0x2b/0x2b
[  131.599318][ T7230]  ? get_block+0x110f/0x1380
[  131.603888][ T7230]  ? trace_hardirqs_on+0x55/0x220
[  131.608897][ T7230]  ? get_block+0x110f/0x1380
[  131.613464][ T7230]  end_report+0x4d/0x53
[  131.617596][ T7230]  __kasan_report.cold+0xd/0x38
[  131.622436][ T7230]  ? ___might_sleep+0xf0/0x2b0
[  131.627174][ T7230]  ? get_block+0x110f/0x1380
[  131.631742][ T7230]  ? get_block+0x110f/0x1380
[  131.636306][ T7230]  kasan_report+0x33/0x50
[  131.640627][ T7230]  get_block+0x110f/0x1380
[  131.645026][ T7230]  ? __schedule+0x93f/0x1ff0
[  131.649611][ T7230]  ? block_to_path.isra.0+0x300/0x300
[  131.654965][ T7230]  ? preempt_schedule_thunk+0x16/0x18
[  131.660315][ T7230]  minix_get_block+0xe5/0x110
[  131.664971][ T7230]  __block_write_begin_int+0x490/0x1b00
[  131.670496][ T7230]  ? minix_rename+0x8c0/0x8c0
[  131.675169][ T7230]  ? remove_inode_buffers+0x1c0/0x1c0
[  131.680528][ T7230]  ? pagecache_get_page+0x204/0xa10
[  131.685728][ T7230]  ? wait_for_stable_page+0x11c/0x1e0
[  131.691083][ T7230]  ? minix_rename+0x8c0/0x8c0
[  131.695738][ T7230]  block_write_begin+0x58/0x2e0
[  131.700591][ T7230]  minix_write_begin+0x35/0xe0
[  131.705335][ T7230]  generic_perform_write+0x20a/0x4e0
[  131.711207][ T7230]  ? __mnt_drop_write+0x50/0x80
[  131.716471][ T7230]  ? trace_event_raw_event_file_check_and_advance_wb_err+0x4a0/0x4a0
[  131.724527][ T7230]  ? update_time+0xc0/0xc0
[  131.728922][ T7230]  ? down_write+0xdb/0x150
[  131.733317][ T7230]  __generic_file_write_iter+0x24c/0x610
[  131.738928][ T7230]  generic_file_write_iter+0x3f3/0x630
[  131.744381][ T7230]  ? __generic_file_write_iter+0x610/0x610
[  131.750165][ T7230]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  131.755621][ T7230]  ? preempt_schedule_irq+0xee/0x150
[  131.760909][ T7230]  new_sync_write+0x4a2/0x700
[  131.765575][ T7230]  ? new_sync_read+0x7a0/0x7a0
[  131.770338][ T7230]  __vfs_write+0xc9/0x100
[  131.774647][ T7230]  __kernel_write+0x11c/0x3a0
[  131.779318][ T7230]  do_acct_process+0xcdc/0x10e0
[  131.784145][ T7230]  ? acct_on+0x770/0x770
[  131.788388][ T7230]  acct_process+0x50e/0x5b7
[  131.792957][ T7230]  ? acct_collect+0x800/0x800
[  131.797636][ T7230]  ? fput_many+0x2f/0x1a0
[  131.801945][ T7230]  do_exit+0x1ac0/0x2dd0
[  131.806174][ T7230]  ? mm_update_next_owner+0x7a0/0x7a0
[  131.811523][ T7230]  ? up_read+0x1ab/0x750
[  131.815767][ T7230]  ? down_read_nested+0x420/0x420
[  131.820770][ T7230]  ? handle_mm_fault+0x29e/0x660
[  131.825690][ T7230]  do_group_exit+0x125/0x340
[  131.830257][ T7230]  __x64_sys_exit_group+0x3a/0x50
[  131.835272][ T7230]  do_syscall_64+0xf6/0x7d0
[  131.839859][ T7230]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  131.845729][ T7230] RIP: 0033:0x444a68
[  131.849629][ T7230] Code: Bad RIP value.
[  131.853691][ T7230] RSP: 002b:00007ffe8913fcc8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[  131.862078][ T7230] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000444a68
[  131.870027][ T7230] RDX: 0000000000000000 RSI: 000000000000003c RDI: 0000000000000000
[  131.877975][ T7230] RBP: 00000000004c50f0 R08: 00000000000000e7 R09: ffffffffffffffd4
[  131.885938][ T7230] R10: 00007ffe8913fbd0 R11: 0000000000000246 R12: 0000000000000001
[  131.893904][ T7230] R13: 00000000006d7180 R14: 0000000000000000 R15: 0000000000000000
[  131.902568][ T7230] Kernel Offset: disabled
[  131.906900][ T7230] Rebooting in 86400 seconds..