[ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.81' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 43.530197][ T6855] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 43.538513][ T6855] gfs2: fsid=syz:syz: Now mounting FS... [ 43.545582][ T6855] gfs2: fsid=syz:syz.0: fatal: invalid metadata block [ 43.545582][ T6855] bh = 2075 (magic number) [ 43.545582][ T6855] function = gfs2_meta_indirect_buffer, file = fs/gfs2/meta_io.c, line = 417 [ 43.566253][ T6855] gfs2: fsid=syz:syz.0: about to withdraw this file system [ 43.573459][ T6855] general protection fault, probably for non-canonical address 0xdffffc000000000e: 0000 [#1] PREEMPT SMP KASAN [ 43.585171][ T6855] KASAN: null-ptr-deref in range [0x0000000000000070-0x0000000000000077] [ 43.593551][ T6855] CPU: 1 PID: 6855 Comm: syz-executor440 Not tainted 5.9.0-rc6-syzkaller #0 [ 43.602186][ T6855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 43.612218][ T6855] RIP: 0010:gfs2_withdraw+0x2b0/0xe20 [ 43.617556][ T6855] Code: e8 03 48 89 44 24 38 42 80 3c 38 00 74 08 48 89 ef e8 34 f7 69 fe 48 89 6c 24 20 48 8b 6d 00 48 83 c5 70 48 89 e8 48 c1 e8 03 <42> 80 3c 38 00 74 08 48 89 ef e8 11 f7 69 fe 48 8b 45 00 48 89 44 [ 43.637130][ T6855] RSP: 0018:ffffc900015d74f0 EFLAGS: 00010202 [ 43.643175][ T6855] RAX: 000000000000000e RBX: ffff8880945e8000 RCX: d4200a4ac835ec00 [ 43.651113][ T6855] RDX: ffff88809172e140 RSI: 0000000000000000 RDI: ffff8880945e8430 [ 43.659055][ T6855] RBP: 0000000000000070 R08: ffffffff834ad50c R09: ffffed1015d241c3 [ 43.666994][ T6855] R10: ffffed1015d241c3 R11: 0000000000000000 R12: 1ffff110128bd04d [ 43.674932][ T6855] R13: ffff8880945e8050 R14: ffff8880945e826c R15: dffffc0000000000 [ 43.682871][ T6855] FS: 0000000000e12880(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000 [ 43.691766][ T6855] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 43.698321][ T6855] CR2: 00007f91fc94b6c0 CR3: 00000000995a9000 CR4: 00000000001506e0 [ 43.706264][ T6855] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 43.714215][ T6855] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 43.722152][ T6855] Call Trace: [ 43.725416][ T6855] gfs2_meta_check_ii+0x70/0x80 [ 43.730235][ T6855] gfs2_meta_indirect_buffer+0x29f/0x380 [ 43.735836][ T6855] gfs2_inode_refresh+0x65/0xc00 [ 43.740757][ T6855] inode_go_lock+0x12c/0x480 [ 43.745314][ T6855] do_promote+0x4db/0xcd0 [ 43.749613][ T6855] finish_xmote+0x907/0x1350 [ 43.754169][ T6855] do_xmote+0xadb/0x14c0 [ 43.758406][ T6855] gfs2_glock_nq+0xac3/0x14d0 [ 43.763051][ T6855] gfs2_lookupi+0x36f/0x4f0 [ 43.767522][ T6855] ? gfs2_lookupi+0x367/0x4f0 [ 43.772164][ T6855] gfs2_lookup_simple+0xa4/0x100 [ 43.777068][ T6855] init_journal+0x132/0x1970 [ 43.781625][ T6855] ? vsnprintf+0x1a12/0x1aa0 [ 43.786183][ T6855] ? snprintf+0x6f/0x90 [ 43.790307][ T6855] ? _raw_spin_unlock+0x24/0x40 [ 43.795125][ T6855] gfs2_fill_super+0x2717/0x3fe0 [ 43.800033][ T6855] ? gfs2_glock_nq_num+0xaa/0x1d0 [ 43.805032][ T6855] ? snprintf+0x6f/0x90 [ 43.809154][ T6855] ? set_blocksize+0x1f5/0x3c0 [ 43.813884][ T6855] get_tree_bdev+0x3e9/0x5f0 [ 43.818440][ T6855] ? gfs2_reconfigure+0xe10/0xe10 [ 43.823443][ T6855] gfs2_get_tree+0x4c/0x1f0 [ 43.827913][ T6855] vfs_get_tree+0x88/0x270 [ 43.832308][ T6855] path_mount+0x179d/0x29e0 [ 43.836780][ T6855] __se_sys_mount+0x126/0x180 [ 43.841424][ T6855] do_syscall_64+0x31/0x70 [ 43.845810][ T6855] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 43.851676][ T6855] RIP: 0033:0x45b4aa [ 43.855539][ T6855] Code: b8 08 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 fd ad fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 da ad fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 43.875108][ T6855] RSP: 002b:00007ffd0a871ce8 EFLAGS: 00000293 ORIG_RAX: 00000000000000a5 [ 43.883570][ T6855] RAX: ffffffffffffffda RBX: 00007ffd0a871d40 RCX: 000000000045b4aa [ 43.891520][ T6855] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007ffd0a871d00 [ 43.899471][ T6855] RBP: 00007ffd0a871d00 R08: 00007ffd0a871d40 R09: 00007ffd00000015 [ 43.907418][ T6855] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000000091b [ 43.915355][ T6855] R13: 0000000000000004 R14: 0000000000000003 R15: 0000000000000003 [ 43.923297][ T6855] Modules linked in: [ 43.927298][ T6855] ---[ end trace 52a15bbaec0d2008 ]--- [ 43.933160][ T6855] RIP: 0010:gfs2_withdraw+0x2b0/0xe20 [ 43.938574][ T6855] Code: e8 03 48 89 44 24 38 42 80 3c 38 00 74 08 48 89 ef e8 34 f7 69 fe 48 89 6c 24 20 48 8b 6d 00 48 83 c5 70 48 89 e8 48 c1 e8 03 <42> 80 3c 38 00 74 08 48 89 ef e8 11 f7 69 fe 48 8b 45 00 48 89 44 [ 43.958215][ T6855] RSP: 0018:ffffc900015d74f0 EFLAGS: 00010202 [ 43.964257][ T6855] RAX: 000000000000000e RBX: ffff8880945e8000 RCX: d4200a4ac835ec00 [ 43.972234][ T6855] RDX: ffff88809172e140 RSI: 0000000000000000 RDI: ffff8880945e8430 [ 43.980228][ T6855] RBP: 0000000000000070 R08: ffffffff834ad50c R09: ffffed1015d241c3 [ 43.988231][ T6855] R10: ffffed1015d241c3 R11: 0000000000000000 R12: 1ffff110128bd04d [ 43.996223][ T6855] R13: ffff8880945e8050 R14: ffff8880945e826c R15: dffffc0000000000 [ 44.004191][ T6855] FS: 0000000000e12880(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000 [ 44.013119][ T6855] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 44.019724][ T6855] CR2: 00007f91fc94b6c0 CR3: 00000000995a9000 CR4: 00000000001506e0 [ 44.027712][ T6855] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 44.035705][ T6855] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 44.043657][ T6855] Kernel panic - not syncing: Fatal exception [ 44.050968][ T6855] Kernel Offset: disabled [ 44.055274][ T6855] Rebooting in 86400 seconds..