[ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... Starting Load/Save RF Kill Switch Status... [ OK ] Started Load/Save RF Kill Switch Status. [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.188' (ECDSA) to the list of known hosts. executing program executing program executing program executing program executing program executing program syzkaller login: [ 35.560274] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue [ 35.577448] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue [ 35.589253] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 35.594448] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue [ 35.609279] audit: type=1804 audit(1667573019.658:2): pid=8122 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor157" name="/root/file0/bus" dev="loop5" ino=18 res=1 [ 35.670595] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue [ 35.679870] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue [ 35.698259] EXT4-fs error (device loop0): ext4_validate_block_bitmap:392: comm syz-executor157: bg 0: block 5: invalid block bitmap [ 35.710373] EXT4-fs error (device loop3): ext4_validate_block_bitmap:392: comm syz-executor157: bg 0: block 5: invalid block bitmap [ 35.711130] EXT4-fs error (device loop3) in ext4_free_blocks:4973: Corrupt filesystem [ 35.726182] EXT4-fs error (device loop4): ext4_validate_block_bitmap:392: comm syz-executor157: bg 0: block 5: invalid block bitmap [ 35.742403] EXT4-fs error (device loop5): ext4_validate_block_bitmap:392: comm syz-executor157: bg 0: block 5: invalid block bitmap [ 35.764686] audit: type=1804 audit(1667573019.688:3): pid=8112 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor157" name="/root/file0/bus" dev="loop0" ino=18 res=1 [ 35.767112] ------------[ cut here ]------------ [ 35.789389] kernel BUG at fs/ext4/inline.c:222! [ 35.794198] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 35.799570] CPU: 0 PID: 8121 Comm: syz-executor157 Not tainted 4.19.211-syzkaller #0 [ 35.807441] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 35.816806] RIP: 0010:ext4_write_inline_data+0x337/0x3d0 [ 35.822258] Code: 5f e9 5d d8 84 ff e8 58 d8 84 ff 45 8d 64 2c c4 41 bd 3c 00 00 00 41 29 ed e9 df fe ff ff e8 40 d8 84 ff 0f 0b e8 39 d8 84 ff <0f> 0b e8 02 b4 ba ff e9 f5 fd ff ff 4c 89 ff e8 f5 b3 ba ff e9 99 [ 35.831098] EXT4-fs error (device loop4) in ext4_free_blocks:4973: Corrupt filesystem [ 35.841163] RSP: 0018:ffff8880b2fb7338 EFLAGS: 00010293 [ 35.841175] RAX: ffff8880affc64c0 RBX: ffff88808b4b6270 RCX: ffffffff81ddab4e [ 35.841182] RDX: 0000000000000000 RSI: ffffffff81ddad37 RDI: 0000000000000006 [ 35.841188] RBP: 000000000000000b R08: 0000000000000ff5 R09: 0000000000001000 [ 35.841193] R10: 0000000000000006 R11: 0000000000000000 R12: 0000000000000ff5 [ 35.841199] R13: 0000000000001000 R14: ffff8880b2fb73c0 R15: ffff88808b4b672e [ 35.841207] FS: 00007f6c63acb700(0000) GS:ffff8880ba000000(0000) knlGS:0000000000000000 [ 35.841214] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 35.841220] CR2: 00007f6c63a89718 CR3: 000000009b7c1000 CR4: 00000000003406f0 [ 35.841230] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 35.841241] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 35.891398] audit: type=1804 audit(1667573019.688:4): pid=8112 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor157" name="/root/file0/bus" dev="loop0" ino=18 res=1 [ 35.899053] Call Trace: [ 35.899076] ext4_write_inline_data_end+0x228/0x650 [ 35.899090] ? ext4_try_to_write_inline_data+0x1a20/0x1a20 [ 35.899106] ext4_write_end+0x1de/0xec0 [ 35.899122] ext4_da_write_end+0x860/0xa70 [ 35.899138] generic_perform_write+0x2ae/0x4d0 [ 35.899154] ? __mnt_drop_write_file+0x6f/0xa0 [ 35.976507] ? filemap_page_mkwrite+0x2f0/0x2f0 [ 35.981185] ? current_time+0x1c0/0x1c0 [ 35.982878] audit: type=1804 audit(1667573019.688:5): pid=8137 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor157" name="/root/file0/bus" dev="loop4" ino=18 res=1 [ 35.985158] ? lock_acquire+0x170/0x3c0 [ 35.985173] __generic_file_write_iter+0x24b/0x610 [ 35.985189] ext4_file_write_iter+0x2fe/0xf20 [ 36.006062] EXT4-fs error (device loop0) in ext4_free_blocks:4973: Corrupt filesystem [ 36.008905] ? kasan_kmalloc+0x139/0x160 [ 36.008919] ? ext4_file_open+0x600/0x600 [ 36.008929] ? iter_file_splice_write+0x168/0xbb0 [ 36.008942] ? direct_splice_actor+0x115/0x160 [ 36.008953] ? splice_direct_to_actor+0x33f/0x8d0 [ 36.008964] ? do_sendfile+0x550/0xc30 [ 36.008974] ? __se_sys_sendfile64+0x147/0x160 [ 36.008984] ? do_syscall_64+0xf9/0x620 [ 36.009000] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 36.023156] ------------[ cut here ]------------ [ 36.026340] ? common_file_perm+0x4e5/0x850 [ 36.030369] kernel BUG at fs/ext4/inline.c:222! [ 36.034499] do_iter_readv_writev+0x668/0x790 [ 36.084465] ? clone_verify_area+0x240/0x240 [ 36.088851] ? mark_held_locks+0xa6/0xf0 [ 36.092891] ? security_file_permission+0x1c0/0x220 [ 36.097885] do_iter_write+0x182/0x5d0 [ 36.101752] vfs_iter_write+0x70/0xa0 [ 36.105531] iter_file_splice_write+0x60d/0xbb0 [ 36.110185] ? splice_from_pipe_next.part.0+0x360/0x360 [ 36.115531] ? security_file_permission+0x1c0/0x220 [ 36.120527] ? splice_from_pipe_next.part.0+0x360/0x360 [ 36.125872] direct_splice_actor+0x115/0x160 [ 36.130261] splice_direct_to_actor+0x33f/0x8d0 [ 36.134922] ? generic_pipe_buf_nosteal+0x10/0x10 [ 36.139746] ? do_splice_to+0x160/0x160 [ 36.143704] do_splice_direct+0x1a7/0x270 [ 36.147834] ? splice_direct_to_actor+0x8d0/0x8d0 [ 36.152663] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 36.157666] do_sendfile+0x550/0xc30 [ 36.161365] ? do_compat_pwritev64+0x1b0/0x1b0 [ 36.165930] ? __se_sys_futex+0x28f/0x3b0 [ 36.170058] ? __se_sys_futex+0x298/0x3b0 [ 36.174181] __se_sys_sendfile64+0x147/0x160 [ 36.178567] ? __se_sys_sendfile+0x180/0x180 [ 36.182952] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 36.188294] ? trace_hardirqs_off_caller+0x6e/0x210 [ 36.193285] ? do_syscall_64+0x21/0x620 [ 36.197242] do_syscall_64+0xf9/0x620 [ 36.201022] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 36.206190] RIP: 0033:0x7f6c63b28439 [ 36.209882] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 36.228759] RSP: 002b:00007f6c63acb208 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 36.236443] RAX: ffffffffffffffda RBX: 00007f6c63ba63e8 RCX: 00007f6c63b28439 [ 36.243688] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 36.250933] RBP: 00007f6c63ba63e0 R08: 0000000000000000 R09: 0000000000000000 [ 36.258176] R10: 0001000000201005 R11: 0000000000000246 R12: 00007f6c63ba63ec [ 36.265423] R13: 00007ffd70124eef R14: 00007f6c63acb300 R15: 0000000000022000 [ 36.272670] Modules linked in: [ 36.275898] invalid opcode: 0000 [#2] PREEMPT SMP KASAN [ 36.276083] ---[ end trace adacbca91787a6d7 ]--- [ 36.281276] CPU: 1 PID: 8167 Comm: syz-executor157 Tainted: G D 4.19.211-syzkaller #0 [ 36.281283] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 36.281299] RIP: 0010:ext4_write_inline_data+0x337/0x3d0 [ 36.281310] Code: 5f e9 5d d8 84 ff e8 58 d8 84 ff 45 8d 64 2c c4 41 bd 3c 00 00 00 41 29 ed e9 df fe ff ff e8 40 d8 84 ff 0f 0b e8 39 d8 84 ff <0f> 0b e8 02 b4 ba ff e9 f5 fd ff ff 4c 89 ff e8 f5 b3 ba ff e9 99 [ 36.281320] RSP: 0018:ffff888094caf338 EFLAGS: 00010293 [ 36.286075] RIP: 0010:ext4_write_inline_data+0x337/0x3d0 [ 36.295316] RAX: ffff8880af7a42c0 RBX: ffff88808b4a8230 RCX: ffffffff81ddab4e [ 36.295322] RDX: 0000000000000000 RSI: ffffffff81ddad37 RDI: 0000000000000006 [ 36.295327] RBP: 000000000000000b R08: 0000000000000ff5 R09: 0000000000001000 [ 36.295332] R10: 0000000000000006 R11: 0000000000000000 R12: 0000000000000ff5 [ 36.295338] R13: 0000000000001000 R14: ffff888094caf3c0 R15: ffff88808b4a86ee [ 36.295346] FS: 00007f6c63a89700(0000) GS:ffff8880ba100000(0000) knlGS:0000000000000000 [ 36.295352] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 36.295363] CR2: 00007f97f5844000 CR3: 0000000097d96000 CR4: 00000000003406e0 [ 36.304720] Code: 5f e9 5d d8 84 ff e8 58 d8 84 ff 45 8d 64 2c c4 41 bd 3c 00 00 00 41 29 ed e9 df fe ff ff e8 40 d8 84 ff 0f 0b e8 39 d8 84 ff <0f> 0b e8 02 b4 ba ff e9 f5 fd ff ff 4c 89 ff e8 f5 b3 ba ff e9 99 [ 36.310132] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 36.310139] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 36.310143] Call Trace: [ 36.310163] ext4_write_inline_data_end+0x228/0x650 [ 36.329079] RSP: 0018:ffff8880b2fb7338 EFLAGS: 00010293 [ 36.334403] ? ext4_try_to_write_inline_data+0x1a20/0x1a20 [ 36.339839] RAX: ffff8880affc64c0 RBX: ffff88808b4b6270 RCX: ffffffff81ddab4e [ 36.347073] ? ext4_mark_inode_dirty+0x222/0x870 [ 36.347091] ? ext4_expand_extra_isize+0x500/0x500 [ 36.354341] RDX: 0000000000000000 RSI: ffffffff81ddad37 RDI: 0000000000000006 [ 36.361610] ext4_write_end+0x1de/0xec0 [ 36.361628] ext4_da_write_end+0x860/0xa70 [ 36.368881] RBP: 000000000000000b R08: 0000000000000ff5 R09: 0000000000001000 [ 36.376129] generic_perform_write+0x2ae/0x4d0 [ 36.384337] R10: 0000000000000006 R11: 0000000000000000 R12: 0000000000000ff5 [ 36.390200] ? __mnt_drop_write_file+0x6f/0xa0 [ 36.390216] ? filemap_page_mkwrite+0x2f0/0x2f0 [ 36.397470] R13: 0000000000001000 R14: ffff8880b2fb73c0 R15: ffff88808b4b672e [ 36.416342] ? current_time+0x1c0/0x1c0 [ 36.416355] ? lock_acquire+0x170/0x3c0 [ 36.416370] __generic_file_write_iter+0x24b/0x610 [ 36.423632] FS: 00007f6c63acb700(0000) GS:ffff8880ba000000(0000) knlGS:0000000000000000 [ 36.430874] ext4_file_write_iter+0x2fe/0xf20 [ 36.430892] ? kasan_kmalloc+0x139/0x160 [ 36.433448] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 36.438440] ? ext4_file_open+0x600/0x600 [ 36.438450] ? iter_file_splice_write+0x168/0xbb0 [ 36.438466] ? direct_splice_actor+0x115/0x160 [ 36.443799] CR2: 00007f6c63a89718 CR3: 000000009b7c1000 CR4: 00000000003406f0 [ 36.449399] ? splice_direct_to_actor+0x33f/0x8d0 [ 36.449410] ? do_sendfile+0x550/0xc30 [ 36.449425] ? __se_sys_sendfile64+0x147/0x160 [ 36.456682] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 36.461408] ? do_syscall_64+0xf9/0x620 [ 36.466310] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 36.473562] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 36.473582] ? common_file_perm+0x4e5/0x850 [ 36.477537] Kernel panic - not syncing: Fatal exception [ 36.481742] do_iter_readv_writev+0x668/0x790 [ 36.624474] ? clone_verify_area+0x240/0x240 [ 36.628881] ? security_file_permission+0x1c0/0x220 [ 36.633889] do_iter_write+0x182/0x5d0 [ 36.637767] ? check_preemption_disabled+0x41/0x280 [ 36.642770] vfs_iter_write+0x70/0xa0 [ 36.646558] iter_file_splice_write+0x60d/0xbb0 [ 36.651220] ? splice_from_pipe_next.part.0+0x360/0x360 [ 36.656576] ? security_file_permission+0x1c0/0x220 [ 36.661579] ? splice_from_pipe_next.part.0+0x360/0x360 [ 36.666931] direct_splice_actor+0x115/0x160 [ 36.671329] splice_direct_to_actor+0x33f/0x8d0 [ 36.676002] ? generic_pipe_buf_nosteal+0x10/0x10 [ 36.680832] ? do_splice_to+0x160/0x160 [ 36.684801] do_splice_direct+0x1a7/0x270 [ 36.688936] ? splice_direct_to_actor+0x8d0/0x8d0 [ 36.693770] ? check_preemption_disabled+0x41/0x280 [ 36.698774] do_sendfile+0x550/0xc30 [ 36.702484] ? do_compat_pwritev64+0x1b0/0x1b0 [ 36.707061] ? lock_downgrade+0x720/0x720 [ 36.711195] ? lock_acquire+0x170/0x3c0 [ 36.715156] __se_sys_sendfile64+0x147/0x160 [ 36.719550] ? __se_sys_sendfile+0x180/0x180 [ 36.723949] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 36.729300] ? trace_hardirqs_off_caller+0x6e/0x210 [ 36.734306] do_syscall_64+0xf9/0x620 [ 36.738098] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 36.743276] RIP: 0033:0x7f6c63b28439 [ 36.746990] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 36.765877] RSP: 002b:00007f6c63a89208 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 36.773572] RAX: ffffffffffffffda RBX: 00007f6c63ba6408 RCX: 00007f6c63b28439 [ 36.780828] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 36.788085] RBP: 00007f6c63ba6400 R08: 00007f6c63a89700 R09: 0000000000000000 [ 36.795338] R10: 0001000000201005 R11: 0000000000000246 R12: 00007f6c63ba640c [ 36.802593] R13: 00007ffd70124eef R14: 00007f6c63a89300 R15: 0000000000022000 [ 36.809848] Modules linked in: [ 36.813187] Kernel Offset: disabled [ 36.816805] Rebooting in 86400 seconds..