Warning: Permanently added '10.128.1.23' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 632.700819][ T35] audit: type=1400 audit(1608635010.786:8): avc: denied { execmem } for pid=8497 comm="syz-executor579" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 632.717579][ T8497] loop0: detected capacity change from 37488 to 0 [ 632.738549][ T8497] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 632.753626][ T8497] gfs2: fsid=syz:syz: Now mounting FS... [ 632.764961][ T8497] gfs2: fsid=syz:syz.0: fatal: invalid metadata block [ 632.764961][ T8497] bh = 2075 (magic number) [ 632.764961][ T8497] function = gfs2_meta_indirect_buffer, file = fs/gfs2/meta_io.c, line = 488 [ 632.800101][ T8497] gfs2: fsid=syz:syz.0: about to withdraw this file system [ 632.808101][ T8497] general protection fault, probably for non-canonical address 0xdffffc000000000e: 0000 [#1] PREEMPT SMP KASAN [ 632.819863][ T8497] KASAN: null-ptr-deref in range [0x0000000000000070-0x0000000000000077] [ 632.828248][ T8497] CPU: 1 PID: 8497 Comm: syz-executor579 Not tainted 5.10.0-syzkaller #0 [ 632.836666][ T8497] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 632.846691][ T8497] RIP: 0010:gfs2_withdraw.cold+0xff/0xbee [ 632.852396][ T8497] Code: 00 48 c1 e0 2a 80 3c 02 00 0f 85 1c 02 00 00 4c 8b bb 08 09 00 00 b8 ff ff 37 00 48 c1 e0 2a 49 8d 7f 70 48 89 fa 48 c1 ea 03 <80> 3c 02 00 74 05 e8 01 ab dc f8 4d 8b 7f 70 b8 ff ff 37 00 48 c1 [ 632.872088][ T8497] RSP: 0018:ffffc90001667370 EFLAGS: 00010202 [ 632.878124][ T8497] RAX: dffffc0000000000 RBX: ffff888028a74000 RCX: 0000000000000000 [ 632.886062][ T8497] RDX: 000000000000000e RSI: ffffffff88d98f35 RDI: 0000000000000070 [ 632.894004][ T8497] RBP: ffff888028a742c5 R08: 0000000000000038 R09: 0000000000000000 [ 632.901946][ T8497] R10: ffffffff88d98f24 R11: 0000000000000000 R12: ffff888028a740a8 [ 632.909975][ T8497] R13: ffff888028a74348 R14: ffffffff89b1ad00 R15: 0000000000000000 [ 632.917918][ T8497] FS: 00000000014cb880(0000) GS:ffff8880b9d00000(0000) knlGS:0000000000000000 [ 632.926820][ T8497] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 632.933379][ T8497] CR2: 000056337ac1fc18 CR3: 0000000023494000 CR4: 00000000001506e0 [ 632.941324][ T8497] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 632.949266][ T8497] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 632.957213][ T8497] Call Trace: [ 632.960467][ T8497] gfs2_meta_check_ii+0x68/0xa0 [ 632.965299][ T8497] gfs2_meta_indirect_buffer+0x3a3/0x3f0 [ 632.970905][ T8497] ? gfs2_journal_wipe+0xc00/0xc00 [ 632.975990][ T8497] gfs2_inode_refresh+0x95/0xe20 [ 632.980897][ T8497] ? inode_go_sync+0x560/0x560 [ 632.985633][ T8497] ? lock_downgrade+0x6d0/0x6d0 [ 632.990459][ T8497] inode_go_lock+0x309/0x4a0 [ 632.995023][ T8497] do_promote+0x4a0/0xbb0 [ 632.999323][ T8497] finish_xmote+0x671/0xe50 [ 633.003801][ T8497] do_xmote+0x821/0xbc0 [ 633.007930][ T8497] run_queue+0x323/0x680 [ 633.012141][ T8497] gfs2_glock_nq+0x70a/0x11a0 [ 633.016789][ T8497] gfs2_lookupi+0x314/0x630 [ 633.021263][ T8497] ? gfs2_lookup_by_inum+0x100/0x100 [ 633.026538][ T8497] ? gfs2_lookupi+0x30c/0x630 [ 633.031191][ T8497] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 633.036914][ T8497] ? crc32_body+0x348/0x5f0 [ 633.041388][ T8497] gfs2_lookup_simple+0x99/0xe0 [ 633.046227][ T8497] ? gfs2_rename2+0xa0/0xa0 [ 633.050703][ T8497] ? ip6_compressed_string+0xb20/0xb20 [ 633.056137][ T8497] init_inodes+0x3cb/0x2660 [ 633.060613][ T8497] ? do_raw_spin_lock+0x120/0x2b0 [ 633.065614][ T8497] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 633.071829][ T8497] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 633.078048][ T8497] ? vsnprintf+0x2cc/0x14f0 [ 633.082560][ T8497] ? end_bio_io_page+0x100/0x100 [ 633.087467][ T8497] ? pointer+0x930/0x930 [ 633.091680][ T8497] ? gfs2_glock_dq_uninit+0x87/0x100 [ 633.096935][ T8497] ? init_sb+0x9fd/0xd70 [ 633.101149][ T8497] ? snprintf+0xbb/0xf0 [ 633.105273][ T8497] ? vsprintf+0x30/0x30 [ 633.109395][ T8497] ? gfs2_read_super+0x1140/0x1140 [ 633.114480][ T8497] ? __debugfs_create_file+0x33d/0x4c0 [ 633.119909][ T8497] gfs2_fill_super+0x1ae8/0x2580 [ 633.124820][ T8497] ? gfs2_reconfigure+0x1030/0x1030 [ 633.129991][ T8497] ? lock_downgrade+0x6d0/0x6d0 [ 633.134816][ T8497] ? gfs2_glock_nq_num+0xf9/0x240 [ 633.139813][ T8497] ? snprintf+0xbb/0xf0 [ 633.143939][ T8497] ? vsprintf+0x30/0x30 [ 633.148064][ T8497] ? __sanitizer_cov_trace_cmp4+0x1c/0x70 [ 633.153765][ T8497] ? set_blocksize+0x1bb/0x400 [ 633.158504][ T8497] get_tree_bdev+0x440/0x760 [ 633.163106][ T8497] ? gfs2_reconfigure+0x1030/0x1030 [ 633.168277][ T8497] gfs2_get_tree+0x4a/0x270 [ 633.172769][ T8497] vfs_get_tree+0x89/0x2f0 [ 633.177158][ T8497] path_mount+0x13ad/0x20c0 [ 633.181634][ T8497] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 633.187880][ T8497] ? strncpy_from_user+0x2a0/0x3e0 [ 633.192963][ T8497] ? finish_automount+0xb20/0xb20 [ 633.197959][ T8497] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 633.204175][ T8497] ? getname_flags.part.0+0x1dd/0x4f0 [ 633.209522][ T8497] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 633.215750][ T8497] __x64_sys_mount+0x27f/0x300 [ 633.220508][ T8497] ? copy_mnt_ns+0xae0/0xae0 [ 633.225075][ T8497] ? syscall_enter_from_user_mode+0x1d/0x50 [ 633.230945][ T8497] do_syscall_64+0x2d/0x70 [ 633.235334][ T8497] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 633.241199][ T8497] RIP: 0033:0x45b45a [ 633.245065][ T8497] Code: b8 08 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 fd ad fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 da ad fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 633.264730][ T8497] RSP: 002b:00007ffd84e15b68 EFLAGS: 00000293 ORIG_RAX: 00000000000000a5 [ 633.273137][ T8497] RAX: ffffffffffffffda RBX: 00007ffd84e15bc0 RCX: 000000000045b45a [ 633.281084][ T8497] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007ffd84e15b80 [ 633.289029][ T8497] RBP: 00007ffd84e15b80 R08: 00007ffd84e15bc0 R09: 00007ffd00000015 [ 633.296975][ T8497] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000919 [ 633.304916][ T8497] R13: 0000000000000004 R14: 0000000000000003 R15: 0000000000000003 [ 633.312872][ T8497] Modules linked in: [ 633.316843][ T8497] ---[ end trace c5551347909d4bc2 ]--- [ 633.322331][ T8497] RIP: 0010:gfs2_withdraw.cold+0xff/0xbee [ 633.328062][ T8497] Code: 00 48 c1 e0 2a 80 3c 02 00 0f 85 1c 02 00 00 4c 8b bb 08 09 00 00 b8 ff ff 37 00 48 c1 e0 2a 49 8d 7f 70 48 89 fa 48 c1 ea 03 <80> 3c 02 00 74 05 e8 01 ab dc f8 4d 8b 7f 70 b8 ff ff 37 00 48 c1 [ 633.348074][ T8497] RSP: 0018:ffffc90001667370 EFLAGS: 00010202 [ 633.354294][ T8497] RAX: dffffc0000000000 RBX: ffff888028a74000 RCX: 0000000000000000 [ 633.362313][ T8497] RDX: 000000000000000e RSI: ffffffff88d98f35 RDI: 0000000000000070 [ 633.370313][ T8497] RBP: ffff888028a742c5 R08: 0000000000000038 R09: 0000000000000000 [ 633.378274][ T8497] R10: ffffffff88d98f24 R11: 0000000000000000 R12: ffff888028a740a8 [ 633.386271][ T8497] R13: ffff888028a74348 R14: ffffffff89b1ad00 R15: 0000000000000000 [ 633.394256][ T8497] FS: 00000000014cb880(0000) GS:ffff8880b9d00000(0000) knlGS:0000000000000000 [ 633.403197][ T8497] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 633.409784][ T8497] CR2: 000056337ac1fc18 CR3: 0000000023494000 CR4: 00000000001506e0 [ 633.417755][ T8497] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 633.425750][ T8497] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 633.433794][ T8497] Kernel panic - not syncing: Fatal exception [ 633.440435][ T8497] Kernel Offset: disabled [ 633.444741][ T8497] Rebooting in 86400 seconds..