Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.1.165' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 27.457480] F2FS-fs (loop0): Found nat_bits in checkpoint [ 27.492143] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 27.586628] attempt to access beyond end of device [ 27.591652] loop0: rw=2049, want=57344, limit=40427 [ 27.598452] attempt to access beyond end of device [ 27.603481] loop0: rw=2049, want=57352, limit=40427 executing program [ 27.833131] F2FS-fs (loop0): Found nat_bits in checkpoint [ 27.866126] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 27.955796] attempt to access beyond end of device [ 27.960734] loop0: rw=2049, want=57344, limit=40427 [ 27.967666] attempt to access beyond end of device [ 27.972682] loop0: rw=2049, want=57352, limit=40427 executing program [ 28.185298] F2FS-fs (loop0): Found nat_bits in checkpoint [ 28.220275] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 28.308929] attempt to access beyond end of device [ 28.313896] loop0: rw=2049, want=57344, limit=40427 [ 28.320010] attempt to access beyond end of device [ 28.325711] loop0: rw=2049, want=57352, limit=40427 executing program [ 28.525411] F2FS-fs (loop0): Found nat_bits in checkpoint [ 28.559895] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 28.650304] attempt to access beyond end of device [ 28.655349] loop0: rw=2049, want=57344, limit=40427 [ 28.661421] attempt to access beyond end of device [ 28.666443] loop0: rw=2049, want=57352, limit=40427 [ 28.701781] BUG: unable to handle kernel paging request at ffffed10953e622e [ 28.708884] IP: get_dnode_of_data+0x6f5/0x1ca0 [ 28.713434] PGD 23fff2067 P4D 23fff2067 PUD 0 [ 28.718001] Oops: 0000 [#1] PREEMPT SMP KASAN [ 28.722464] Modules linked in: [ 28.725631] CPU: 1 PID: 8033 Comm: syz-executor270 Not tainted 4.14.307-syzkaller #0 [ 28.733481] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/16/2023 [ 28.742815] task: ffff888097f9a140 task.stack: ffff88808a520000 [ 28.748853] RIP: 0010:get_dnode_of_data+0x6f5/0x1ca0 [ 28.753924] RSP: 0018:ffff88808a527898 EFLAGS: 00010a07 [ 28.759278] RAX: dffffc0000000000 RBX: ffff8884a9f31174 RCX: 0000000000000000 [ 28.766521] RDX: 1ffff110953e622e RSI: 0000000000000000 RDI: ffff888089c9d3d0 [ 28.773761] RBP: ffff8880aa331168 R08: 0000000000000000 R09: 0000000000000004 [ 28.781002] R10: 0000000000000000 R11: ffff888097f9a140 R12: 00000000fff00003 [ 28.788264] R13: 0000000000000012 R14: 0000000000000012 R15: ffff88808a527b10 [ 28.795517] FS: 00007fb2ee4e8700(0000) GS:ffff8880ba500000(0000) knlGS:0000000000000000 [ 28.803730] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 28.809583] CR2: ffffed10953e622e CR3: 000000009f75b000 CR4: 00000000003406e0 [ 28.816826] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 28.824071] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 28.831312] Call Trace: [ 28.833877] ? alloc_nid_failed+0x2c0/0x2c0 [ 28.838170] __exchange_data_block+0x7ca/0x30a0 [ 28.842812] ? punch_hole.part.0+0x220/0x220 [ 28.847192] ? lock_acquire+0x170/0x3f0 [ 28.851139] f2fs_ioctl+0x52b3/0x6b70 [ 28.854912] ? get_futex_key+0x11b0/0x11b0 [ 28.859118] ? f2fs_fallocate+0x26f0/0x26f0 [ 28.863410] ? lock_acquire+0x170/0x3f0 [ 28.867355] ? lock_downgrade+0x740/0x740 [ 28.871476] ? trace_hardirqs_on+0x10/0x10 [ 28.875685] ? futex_exit_release+0x220/0x220 [ 28.880159] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 28.885234] ? debug_check_no_obj_freed+0x2c0/0x680 [ 28.890223] ? f2fs_fallocate+0x26f0/0x26f0 [ 28.894529] do_vfs_ioctl+0x75a/0xff0 [ 28.898302] ? lock_acquire+0x170/0x3f0 [ 28.902245] ? ioctl_preallocate+0x1a0/0x1a0 [ 28.906625] ? __fget+0x265/0x3e0 [ 28.910053] ? do_vfs_ioctl+0xff0/0xff0 [ 28.914004] ? security_file_ioctl+0x83/0xb0 [ 28.918382] SyS_ioctl+0x7f/0xb0 [ 28.921719] ? do_vfs_ioctl+0xff0/0xff0 [ 28.925664] do_syscall_64+0x1d5/0x640 [ 28.929525] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 28.934686] RIP: 0033:0x7fb2f559f619 [ 28.938366] RSP: 002b:00007fb2ee4e82f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 28.946044] RAX: ffffffffffffffda RBX: 00007fb2f56297b0 RCX: 00007fb2f559f619 [ 28.953285] RDX: 0000000020000100 RSI: 00000000c020f509 RDI: 0000000000000004 [ 28.960526] RBP: 00007fb2f55f65a8 R08: 0000000000000000 R09: 0000000000000000 [ 28.967767] R10: 0000000000000000 R11: 0000000000000246 R12: 0030656c69662f2e [ 28.975011] R13: 0031656c69662f2e R14: f4ffffff00000000 R15: 00007fb2f56297b8 [ 28.982255] Code: 89 fe 45 39 ee 0f 84 27 11 00 00 e8 36 bd 89 fe e8 31 bd 89 fe 4a 8d 5c a5 00 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 <0f> b6 14 02 48 89 d8 83 e0 07 83 c0 03 38 d0 7c 08 84 d2 0f 85 [ 29.001328] RIP: get_dnode_of_data+0x6f5/0x1ca0 RSP: ffff88808a527898 [ 29.007882] CR2: ffffed10953e622e [ 29.011312] ---[ end trace d6e9401cce709442 ]--- [ 29.016044] Kernel panic - not syncing: Fatal exception [ 29.021524] Kernel Offset: disabled [ 29.025130] Rebooting in 86400 seconds..