[ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Starting Load/Save RF Kill Switch Status... [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.249' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 28.203626] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:793: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 28.218996] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue [ 28.229212] ------------[ cut here ]------------ [ 28.233973] kernel BUG at fs/ext4/ext4.h:2849! [ 28.238697] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 28.244044] Modules linked in: [ 28.247225] CPU: 0 PID: 7974 Comm: syz-executor360 Not tainted 4.14.295-syzkaller #0 [ 28.255083] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 28.264411] task: ffff888097072340 task.stack: ffff88809bbf0000 [ 28.270443] RIP: 0010:ext4_mb_load_buddy_gfp+0x10dd/0x16c0 [ 28.276051] RSP: 0018:ffff88809bbf73f8 EFLAGS: 00010297 [ 28.281388] RAX: ffff888097072340 RBX: ffff88809bbf74e0 RCX: 0000000000000001 [ 28.288635] RDX: 0000000000000000 RSI: 00000000ffffffff RDI: ffff8880b3884140 [ 28.295879] RBP: 0000000000000001 R08: ffffffff81b7afd0 R09: ffff88809bbf7800 [ 28.303122] R10: ffff88809bbf7857 R11: ffff888097072340 R12: ffff8880961e2080 [ 28.310362] R13: ffff88808e4fa7b0 R14: ffff8880b3884100 R15: ffff8880961e2700 [ 28.317605] FS: 0000555556061300(0000) GS:ffff8880ba400000(0000) knlGS:0000000000000000 [ 28.325800] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 28.331651] CR2: 0000561ea69d7160 CR3: 00000000a22cf000 CR4: 00000000003406f0 [ 28.338895] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 28.346151] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 28.353401] Call Trace: [ 28.355967] ext4_mballoc_query_range+0x8f/0x740 [ 28.360694] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 28.366116] ? ext4_getfsmap_helper+0x13f0/0x13f0 [ 28.370929] ? ext4_trim_fs+0x2250/0x2250 [ 28.375054] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 28.380487] ext4_getfsmap_datadev+0x5ba/0x11d0 [ 28.385136] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 28.391082] ? sort+0x260/0x2d0 [ 28.394338] ? ext4_file_write_iter+0xd20/0xd20 [ 28.398980] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 28.404926] ext4_getfsmap+0x5f6/0x8c0 [ 28.408787] ? ext4_getfsmap_datadev+0x11d0/0x11d0 [ 28.413687] ? do_sys_open+0x296/0x410 [ 28.417547] ? do_syscall_64+0x1d5/0x640 [ 28.421579] ? entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 28.426914] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 28.432857] ? trace_hardirqs_on+0x10/0x10 [ 28.437064] ? swap_inode_data+0x640/0x640 [ 28.441276] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 28.446698] ext4_ioc_getfsmap+0x251/0x830 [ 28.450906] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 28.455546] ? trace_hardirqs_on+0x10/0x10 [ 28.459755] ? ima_rdwr_violation_check+0x3a0/0x3a0 [ 28.464747] ? entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 28.470082] ? __save_stack_trace+0xa0/0x160 [ 28.474809] ext4_ioctl+0x248/0x3800 [ 28.478497] ? kasan_slab_free+0x12d/0x1a0 [ 28.482705] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 28.487867] ? putname+0xcd/0x110 [ 28.491293] ? do_sys_open+0x203/0x410 [ 28.495155] ? do_syscall_64+0x1d5/0x640 [ 28.499190] ? entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 28.504527] ? path_lookupat+0x780/0x780 [ 28.508563] ? debug_check_no_obj_freed+0x2c0/0x680 [ 28.513558] ? lock_acquire+0x170/0x3f0 [ 28.517515] ? lock_downgrade+0x740/0x740 [ 28.521636] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 28.526710] ? debug_check_no_obj_freed+0x2c0/0x680 [ 28.531707] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 28.536867] do_vfs_ioctl+0x75a/0xff0 [ 28.540641] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 28.546060] ? ioctl_preallocate+0x1a0/0x1a0 [ 28.550449] ? kmem_cache_free+0x23a/0x2b0 [ 28.554660] ? putname+0xcd/0x110 [ 28.558084] ? do_sys_open+0x208/0x410 [ 28.561941] ? filp_open+0x60/0x60 [ 28.565451] ? security_file_ioctl+0x83/0xb0 [ 28.569834] SyS_ioctl+0x7f/0xb0 [ 28.573171] ? do_vfs_ioctl+0xff0/0xff0 [ 28.577120] do_syscall_64+0x1d5/0x640 [ 28.580981] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 28.586141] RIP: 0033:0x7fe1e1842fb9 [ 28.589828] RSP: 002b:00007ffe80da7178 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 28.597511] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fe1e1842fb9 [ 28.604751] RDX: 0000000020000200 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 28.611993] RBP: 00007fe1e1802820 R08: 0000000000000000 R09: 0000000000000000 [ 28.619238] R10: 00005555560612c0 R11: 0000000000000246 R12: 00007fe1e18028b0 [ 28.626489] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 28.633820] Code: e8 e9 11 af ff e9 90 f8 ff ff e8 af d4 97 ff e9 f5 f6 ff ff e8 a5 d4 97 ff 48 89 ef e8 cd 11 af ff e9 3d fb ff ff e8 93 d4 97 ff <0f> 0b e8 8c d4 97 ff 8b 54 24 28 89 ee 4c 89 e7 e8 ce db ff ff [ 28.652877] RIP: ext4_mb_load_buddy_gfp+0x10dd/0x16c0 RSP: ffff88809bbf73f8 [ 28.660331] ---[ end trace c9b48c97b687a281 ]--- [ 28.665075] Kernel panic - not syncing: Fatal exception [ 28.670595] Kernel Offset: disabled [ 28.674201] Rebooting in 86400 seconds..