[ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Starting Load/Save RF Kill Switch Status... [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.10.51' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 30.715093] F2FS-fs (loop0): invalid crc value [ 30.723483] F2FS-fs (loop0): Found nat_bits in checkpoint [ 30.748830] F2FS-fs (loop0): Cannot turn on journaled quota: error -2 [ 30.755442] F2FS-fs (loop0): Cannot turn on journaled quota: error -2 [ 30.777764] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e4 [ 30.791116] F2FS-fs (loop0): access invalid blkaddr:62 [ 30.796720] ------------[ cut here ]------------ [ 30.801477] WARNING: CPU: 0 PID: 7980 at fs/f2fs/checkpoint.c:150 f2fs_is_valid_blkaddr+0x2d9/0x920 [ 30.810649] Kernel panic - not syncing: panic_on_warn set ... [ 30.810649] [ 30.818087] CPU: 0 PID: 7980 Comm: syz-executor385 Not tainted 4.14.302-syzkaller #0 [ 30.825969] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 30.836082] Call Trace: [ 30.838652] dump_stack+0x1b2/0x281 [ 30.842276] panic+0x1f9/0x42d [ 30.845460] ? add_taint.cold+0x16/0x16 [ 30.849412] ? f2fs_is_valid_blkaddr+0x2d9/0x920 [ 30.854142] ? f2fs_is_valid_blkaddr+0x2d9/0x920 [ 30.858889] __warn.cold+0x20/0x44 [ 30.862403] ? ist_end_non_atomic+0x10/0x10 [ 30.866698] ? f2fs_is_valid_blkaddr+0x2d9/0x920 [ 30.871428] report_bug+0x208/0x250 [ 30.875030] do_error_trap+0x195/0x2d0 [ 30.878908] ? math_error+0x2d0/0x2d0 [ 30.882680] ? log_store.cold+0x16/0x16 [ 30.886637] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 30.891716] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 30.896532] invalid_op+0x1b/0x40 [ 30.899959] RIP: 0010:f2fs_is_valid_blkaddr+0x2d9/0x920 [ 30.905292] RSP: 0018:ffff8880959c76d8 EFLAGS: 00010282 [ 30.910626] RAX: dffffc0000000000 RBX: ffff8880b3208b80 RCX: 0000000000000000 [ 30.917871] RDX: 0000000000000000 RSI: ffffffff878bd020 RDI: ffffed1012b38eb5 [ 30.925110] RBP: 0000000000000005 R08: 000000000000002a R09: 0000000000000000 [ 30.932380] R10: 0000000000000000 R11: 0000000000000000 R12: 000000000000003e [ 30.939631] R13: 0000000000000001 R14: 0000000000001000 R15: 0000000000000200 [ 30.946885] ? f2fs_is_valid_blkaddr+0x2d9/0x920 [ 30.951616] f2fs_submit_page_bio+0x10a/0x1380 [ 30.956172] ? check_preemption_disabled+0x35/0x240 [ 30.961163] read_node_page+0x209/0x2f0 [ 30.965108] ? truncate_node+0xc80/0xc80 [ 30.969152] __get_node_page.part.0+0x97/0xea0 [ 30.973716] get_node_page+0xdd/0x170 [ 30.977491] f2fs_iget+0x1e8/0x3760 [ 30.981090] ? __f2fs_find_entry+0xa50/0xa50 [ 30.985480] f2fs_lookup+0x301/0x750 [ 30.989166] ? __recover_dot_dentries+0x7e0/0x7e0 [ 30.993983] ? d_lookup+0x156/0x220 [ 30.997584] ? __recover_dot_dentries+0x7e0/0x7e0 [ 31.002399] lookup_open+0x5c4/0x1750 [ 31.006265] ? vfs_mkdir+0x6e0/0x6e0 [ 31.009977] path_openat+0x14bb/0x2970 [ 31.013844] ? path_lookupat+0x780/0x780 [ 31.017877] ? trace_hardirqs_on+0x10/0x10 [ 31.022086] ? trace_hardirqs_on+0x10/0x10 [ 31.026292] do_filp_open+0x179/0x3c0 [ 31.030066] ? may_open_dev+0xe0/0xe0 [ 31.033840] ? lock_downgrade+0x740/0x740 [ 31.038224] ? do_raw_spin_unlock+0x164/0x220 [ 31.042693] ? _raw_spin_unlock+0x29/0x40 [ 31.046813] ? __alloc_fd+0x1be/0x490 [ 31.050586] ? _raw_spin_unlock_irq+0x24/0x80 [ 31.055055] do_sys_open+0x296/0x410 [ 31.058768] ? filp_open+0x60/0x60 [ 31.062304] ? do_syscall_64+0x4c/0x640 [ 31.066337] ? do_sys_open+0x410/0x410 [ 31.070288] do_syscall_64+0x1d5/0x640 [ 31.074164] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 31.079325] RIP: 0033:0x7f1be0eb8919 [ 31.083009] RSP: 002b:00007ffe40018e18 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 31.090773] RAX: ffffffffffffffda RBX: 0032656c69662f2e RCX: 00007f1be0eb8919 [ 31.098034] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000100 [ 31.105275] RBP: 00007f1be0e781b0 R08: 00007ffe40018ce0 R09: 0000000000000000 [ 31.112518] R10: 00007ffe40018ce0 R11: 0000000000000246 R12: 00007f1be0e78240 [ 31.119766] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 31.127207] Kernel Offset: disabled [ 31.130869] Rebooting in 86400 seconds..