[ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Starting Load/Save RF Kill Switch Status... [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.146' (ECDSA) to the list of known hosts. syzkaller login: [ 41.452506] IPVS: ftp: loaded support on port[0] = 21 [ 41.452648] IPVS: ftp: loaded support on port[0] = 21 [ 41.468804] IPVS: ftp: loaded support on port[0] = 21 [ 41.473134] IPVS: ftp: loaded support on port[0] = 21 [ 41.480554] IPVS: ftp: loaded support on port[0] = 21 [ 41.483666] IPVS: ftp: loaded support on port[0] = 21 executing program executing program executing program executing program executing program [ 41.684103] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue [ 41.713793] EXT4-fs error (device loop0): ext4_map_blocks:613: inode #18: block 62218: comm syz-executor128: lblock 0 mapped to illegal pblock 62218 (length 1) executing program [ 41.732604] audit: type=1804 audit(1665023972.855:2): pid=8244 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor128" name="/root/file0/bus" dev="loop0" ino=18 res=1 [ 41.760615] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue [ 41.788322] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue [ 41.801417] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 41.801969] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue [ 41.822604] audit: type=1800 audit(1665023972.945:3): pid=8256 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor128" name="bus" dev="loop2" ino=18 res=0 [ 41.825507] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue [ 41.862042] EXT4-fs error (device loop4): ext4_map_blocks:613: inode #18: block 62218: comm syz-executor128: lblock 0 mapped to illegal pblock 62218 (length 1) [ 41.934650] audit: type=1804 audit(1665023972.945:4): pid=8256 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor128" name="/root/file0/bus" dev="loop2" ino=18 res=1 [ 41.985707] EXT4-fs error (device loop0): ext4_validate_block_bitmap:392: comm syz-executor128: bg 0: block 5: invalid block bitmap [ 42.002496] EXT4-fs error (device loop2): ext4_validate_block_bitmap:392: comm syz-executor128: bg 0: block 5: invalid block bitmap [ 42.054319] EXT4-fs error (device loop5): ext4_validate_block_bitmap:392: comm syz-executor128: bg 0: block 5: invalid block bitmap [ 42.068462] EXT4-fs (loop0): Delayed block allocation failed for inode 19 at logical offset 0 with max blocks 1128 with error 117 [ 42.082257] EXT4-fs (loop2): Delayed block allocation failed for inode 19 at logical offset 0 with max blocks 902 with error 117 executing program [ 42.096307] audit: type=1800 audit(1665023972.985:5): pid=8266 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor128" name="bus" dev="loop5" ino=18 res=0 [ 42.130442] EXT4-fs (loop5): Delayed block allocation failed for inode 19 at logical offset 0 with max blocks 922 with error 117 [ 42.153622] EXT4-fs (loop0): This should not happen!! Data will be lost [ 42.153622] [ 42.162873] EXT4-fs (loop2): This should not happen!! Data will be lost [ 42.162873] [ 42.172308] EXT4-fs (loop5): This should not happen!! Data will be lost [ 42.172308] executing program [ 42.200669] EXT4-fs error (device loop4): ext4_validate_block_bitmap:392: comm syz-executor128: bg 0: block 5: invalid block bitmap [ 42.202914] audit: type=1804 audit(1665023972.985:6): pid=8266 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor128" name="/root/file0/bus" dev="loop5" ino=18 res=1 [ 42.238555] EXT4-fs (loop4): Delayed block allocation failed for inode 19 at logical offset 0 with max blocks 1054 with error 117 [ 42.289925] EXT4-fs (loop2): Delayed block allocation failed for inode 19 at logical offset 902 with max blocks 2 with error 28 [ 42.292390] EXT4-fs (loop4): This should not happen!! Data will be lost [ 42.292390] [ 42.311426] EXT4-fs (loop0): Delayed block allocation failed for inode 19 at logical offset 1128 with max blocks 2 with error 28 [ 42.317568] EXT4-fs (loop2): This should not happen!! Data will be lost [ 42.317568] [ 42.346096] EXT4-fs (loop5): Delayed block allocation failed for inode 19 at logical offset 922 with max blocks 4 with error 28 [ 42.360187] EXT4-fs (loop5): This should not happen!! Data will be lost [ 42.360187] [ 42.365930] EXT4-fs (loop0): This should not happen!! Data will be lost [ 42.365930] [ 42.371962] EXT4-fs (loop2): Total free blocks count 0 [ 42.390967] audit: type=1804 audit(1665023973.005:7): pid=8305 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor128" name="/root/bus" dev="sda1" ino=13862 res=1 [ 42.398897] EXT4-fs (loop0): Total free blocks count 0 [ 42.412575] EXT4-fs (loop2): Free/Dirty block details [ 42.417226] EXT4-fs (loop5): Total free blocks count 0 [ 42.423420] EXT4-fs (loop2): free_blocks=0 [ 42.445103] EXT4-fs (loop2): dirty_blocks=912 [ 42.454565] EXT4-fs (loop5): Free/Dirty block details [ 42.460719] audit: type=1804 audit(1665023973.015:8): pid=8308 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor128" name="/root/bus" dev="sda1" ino=13862 res=1 [ 42.461364] EXT4-fs (loop2): Block reservation details [ 42.481059] EXT4-fs (loop5): free_blocks=0 [ 42.491037] EXT4-fs (loop5): dirty_blocks=928 [ 42.495846] EXT4-fs (loop4): Delayed block allocation failed for inode 19 at logical offset 1054 with max blocks 2 with error 28 [ 42.496668] EXT4-fs (loop0): Free/Dirty block details [ 42.509261] EXT4-fs (loop5): Block reservation details [ 42.513326] EXT4-fs (loop0): free_blocks=0 [ 42.520064] EXT4-fs (loop4): This should not happen!! Data will be lost [ 42.520064] [ 42.523486] EXT4-fs (loop0): dirty_blocks=1152 [ 42.533362] EXT4-fs (loop5): i_reserved_data_blocks=58 [ 42.536328] EXT4-fs (loop2): i_reserved_data_blocks=57 executing program executing program [ 42.543456] EXT4-fs (loop4): Total free blocks count 0 [ 42.551385] audit: type=1804 audit(1665023973.025:9): pid=8308 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor128" name="/root/bus" dev="sda1" ino=13862 res=1 [ 42.570188] EXT4-fs (loop4): Free/Dirty block details [ 42.576738] EXT4-fs (loop0): Block reservation details [ 42.589957] EXT4-fs (loop4): free_blocks=0 executing program [ 42.593342] EXT4-fs (loop0): i_reserved_data_blocks=71 [ 42.604097] ------------[ cut here ]------------ [ 42.609050] kernel BUG at fs/ext4/inline.c:222! [ 42.610340] EXT4-fs (loop4): dirty_blocks=1072 [ 42.614072] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 42.623682] CPU: 0 PID: 8306 Comm: syz-executor128 Not tainted 4.19.211-syzkaller #0 [ 42.631554] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 42.635215] EXT4-fs (loop4): Block reservation details [ 42.640908] RIP: 0010:ext4_write_inline_data+0x337/0x3d0 [ 42.640919] Code: 5f e9 5d d8 84 ff e8 58 d8 84 ff 45 8d 64 2c c4 41 bd 3c 00 00 00 41 29 ed e9 df fe ff ff e8 40 d8 84 ff 0f 0b e8 39 d8 84 ff <0f> 0b e8 02 b4 ba ff e9 f5 fd ff ff 4c 89 ff e8 f5 b3 ba ff e9 99 [ 42.640929] RSP: 0018:ffff888096ab7338 EFLAGS: 00010293 [ 42.669316] EXT4-fs (loop4): i_reserved_data_blocks=66 [ 42.670496] RAX: ffff8880b320a300 RBX: ffff88808b4648b0 RCX: ffffffff81ddab4e [ 42.670504] RDX: 0000000000000000 RSI: ffffffff81ddad37 RDI: 0000000000000006 [ 42.670511] RBP: 0000000000000882 R08: 000000000000000b R09: 000000000000088d [ 42.670521] R10: 0000000000000006 R11: 0000000000000000 R12: 000000000000000b [ 42.708348] audit: type=1804 audit(1665023973.025:10): pid=8308 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor128" name="/root/bus" dev="sda1" ino=13862 res=1 [ 42.710135] R13: 000000000000088d R14: ffff888096ab73c0 R15: ffff88808b464d6e [ 42.710146] FS: 00007f1371604700(0000) GS:ffff8880ba000000(0000) knlGS:0000000000000000 [ 42.710154] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 42.710161] CR2: 00007fff7cc7d9c0 CR3: 000000009ab6c000 CR4: 00000000003406f0 [ 42.710169] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 42.710180] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 42.732966] audit: type=1804 audit(1665023973.085:11): pid=8307 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor128" name="/root/file0/bus" dev="loop4" ino=18 res=1 [ 42.736919] Call Trace: [ 42.736942] ext4_write_inline_data_end+0x228/0x650 [ 42.736956] ? ext4_try_to_write_inline_data+0x1a20/0x1a20 [ 42.736973] ext4_write_end+0x1de/0xec0 [ 42.736994] ext4_da_write_end+0x860/0xa70 [ 42.814244] generic_perform_write+0x2ae/0x4d0 [ 42.818809] ? filemap_page_mkwrite+0x2f0/0x2f0 [ 42.823454] ? current_time+0x1c0/0x1c0 [ 42.827409] ? lock_acquire+0x170/0x3c0 [ 42.831369] __generic_file_write_iter+0x24b/0x610 [ 42.836288] ext4_file_write_iter+0x2fe/0xf20 [ 42.840763] ? kasan_kmalloc+0x139/0x160 [ 42.844803] ? ext4_file_open+0x600/0x600 [ 42.848928] ? iter_file_splice_write+0x168/0xbb0 [ 42.853746] ? direct_splice_actor+0x115/0x160 [ 42.858307] ? splice_direct_to_actor+0x33f/0x8d0 [ 42.863129] ? do_sendfile+0x550/0xc30 [ 42.866994] ? __se_sys_sendfile64+0x147/0x160 [ 42.871551] ? do_syscall_64+0xf9/0x620 [ 42.875503] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 42.880847] ? common_file_perm+0x4e5/0x850 [ 42.885151] do_iter_readv_writev+0x668/0x790 [ 42.889709] ? clone_verify_area+0x240/0x240 [ 42.894098] ? mark_held_locks+0xa6/0xf0 [ 42.898136] ? security_file_permission+0x1c0/0x220 [ 42.903133] do_iter_write+0x182/0x5d0 [ 42.906997] vfs_iter_write+0x70/0xa0 [ 42.910775] iter_file_splice_write+0x60d/0xbb0 [ 42.915426] ? splice_from_pipe_next.part.0+0x360/0x360 [ 42.920775] ? security_file_permission+0x1c0/0x220 [ 42.925778] ? splice_from_pipe_next.part.0+0x360/0x360 [ 42.931120] direct_splice_actor+0x115/0x160 [ 42.935856] splice_direct_to_actor+0x33f/0x8d0 [ 42.940515] ? generic_pipe_buf_nosteal+0x10/0x10 [ 42.945335] ? do_splice_to+0x160/0x160 [ 42.949286] do_splice_direct+0x1a7/0x270 [ 42.953412] ? splice_direct_to_actor+0x8d0/0x8d0 [ 42.958235] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 42.963230] do_sendfile+0x550/0xc30 [ 42.966923] ? do_compat_pwritev64+0x1b0/0x1b0 [ 42.971501] ? lock_downgrade+0x720/0x720 [ 42.975633] ? lock_acquire+0x170/0x3c0 [ 42.979599] __se_sys_sendfile64+0x147/0x160 [ 42.983985] ? __se_sys_sendfile+0x180/0x180 [ 42.988374] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 42.994499] ? trace_hardirqs_off_caller+0x6e/0x210 [ 42.999499] ? do_syscall_64+0x21/0x620 [ 43.003451] do_syscall_64+0xf9/0x620 [ 43.007232] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 43.012398] RIP: 0033:0x7f1371679529 [ 43.016088] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 43.034971] RSP: 002b:00007f13716042f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 43.042655] RAX: ffffffffffffffda RBX: 00007f13716ff430 RCX: 00007f1371679529 [ 43.049909] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000003 [ 43.057155] RBP: 00007f13716cc850 R08: 00007f1371604700 R09: 0000000000000000 [ 43.064400] R10: 0001000000201005 R11: 0000000000000246 R12: 652e79726f6d656d [ 43.071650] R13: d851473bfa4ba779 R14: 0030656c69662f2e R15: 00007f13716ff438 [ 43.078895] Modules linked in: [ 43.082204] ---[ end trace 0e7a2c8b61ba25e0 ]--- [ 43.087190] RIP: 0010:ext4_write_inline_data+0x337/0x3d0 [ 43.092640] Code: 5f e9 5d d8 84 ff e8 58 d8 84 ff 45 8d 64 2c c4 41 bd 3c 00 00 00 41 29 ed e9 df fe ff ff e8 40 d8 84 ff 0f 0b e8 39 d8 84 ff <0f> 0b e8 02 b4 ba ff e9 f5 fd ff ff 4c 89 ff e8 f5 b3 ba ff e9 99 [ 43.096564] ------------[ cut here ]------------ [ 43.111595] RSP: 0018:ffff888096ab7338 EFLAGS: 00010293 [ 43.116273] kernel BUG at fs/ext4/inline.c:222! [ 43.116337] invalid opcode: 0000 [#2] PREEMPT SMP KASAN [ 43.121640] RAX: ffff8880b320a300 RBX: ffff88808b4648b0 RCX: ffffffff81ddab4e [ 43.126287] CPU: 1 PID: 8307 Comm: syz-executor128 Tainted: G D 4.19.211-syzkaller #0 [ 43.126294] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 43.126310] RIP: 0010:ext4_write_inline_data+0x337/0x3d0 [ 43.126324] Code: 5f e9 5d d8 84 ff e8 58 d8 84 ff 45 8d 64 2c c4 41 bd 3c 00 00 00 41 29 ed e9 df fe ff ff e8 40 d8 84 ff 0f 0b e8 39 d8 84 ff <0f> 0b e8 02 b4 ba ff e9 f5 fd ff ff 4c 89 ff e8 f5 b3 ba ff e9 99 [ 43.131663] RDX: 0000000000000000 RSI: ffffffff81ddad37 RDI: 0000000000000006 [ 43.138908] RSP: 0018:ffff888096a97338 EFLAGS: 00010293 [ 43.138917] RAX: ffff8880b3104340 RBX: ffff88808b499530 RCX: ffffffff81ddab4e [ 43.138922] RDX: 0000000000000000 RSI: ffffffff81ddad37 RDI: 0000000000000006 [ 43.138928] RBP: 00000000000009d7 R08: 000000000000000b R09: 00000000000009e2 [ 43.138933] R10: 0000000000000006 R11: 0000000000000000 R12: 000000000000000b [ 43.138943] R13: 00000000000009e2 R14: ffff888096a973c0 R15: ffff88808b4999ee [ 43.148207] RBP: 0000000000000882 R08: 000000000000000b R09: 000000000000088d [ 43.157525] FS: 00007f1371604700(0000) GS:ffff8880ba100000(0000) knlGS:0000000000000000 [ 43.157532] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 43.157538] CR2: 00007f5cb2dc5000 CR3: 000000009c7be000 CR4: 00000000003406e0 [ 43.157549] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 43.162973] R10: 0000000000000006 R11: 0000000000000000 R12: 000000000000000b [ 43.181942] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 43.181947] Call Trace: [ 43.181969] ext4_write_inline_data_end+0x228/0x650 [ 43.181982] ? ext4_try_to_write_inline_data+0x1a20/0x1a20 [ 43.181997] ? up_read+0x17/0x110 [ 43.189264] R13: 000000000000088d R14: ffff888096ab73c0 R15: ffff88808b464d6e [ 43.194592] ? try_to_writeback_inodes_sb+0xe2/0x110 [ 43.194609] ext4_write_end+0x1de/0xec0 [ 43.201861] FS: 00007f1371604700(0000) GS:ffff8880ba000000(0000) knlGS:0000000000000000 [ 43.209113] ext4_da_write_end+0x860/0xa70 [ 43.209133] generic_perform_write+0x2ae/0x4d0 [ 43.216480] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 43.223717] ? filemap_page_mkwrite+0x2f0/0x2f0 [ 43.230977] CR2: 00007fff7cc7d9c0 CR3: 000000009ab6c000 CR4: 00000000003406f0 [ 43.238209] ? current_time+0x1c0/0x1c0 [ 43.238223] ? lock_acquire+0x170/0x3c0 [ 43.238239] __generic_file_write_iter+0x24b/0x610 [ 43.246452] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 43.252300] ext4_file_write_iter+0x2fe/0xf20 [ 43.259557] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 43.266797] ? kasan_kmalloc+0x139/0x160 [ 43.266808] ? ext4_file_open+0x600/0x600 [ 43.266822] ? iter_file_splice_write+0x168/0xbb0 [ 43.274073] Kernel panic - not syncing: Fatal exception [ 43.281317] ? direct_splice_actor+0x115/0x160 [ 43.403509] ? splice_direct_to_actor+0x33f/0x8d0 [ 43.408338] ? do_sendfile+0x550/0xc30 [ 43.412210] ? __se_sys_sendfile64+0x147/0x160 [ 43.416780] ? do_syscall_64+0xf9/0x620 [ 43.420742] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 43.426094] ? common_file_perm+0x4e5/0x850 [ 43.430406] do_iter_readv_writev+0x668/0x790 [ 43.434889] ? clone_verify_area+0x240/0x240 [ 43.439285] ? mark_held_locks+0xa6/0xf0 [ 43.443334] ? security_file_permission+0x1c0/0x220 [ 43.448336] do_iter_write+0x182/0x5d0 [ 43.452217] vfs_iter_write+0x70/0xa0 [ 43.456006] iter_file_splice_write+0x60d/0xbb0 [ 43.460670] ? splice_from_pipe_next.part.0+0x360/0x360 [ 43.466028] ? security_file_permission+0x1c0/0x220 [ 43.471030] ? splice_from_pipe_next.part.0+0x360/0x360 [ 43.476381] direct_splice_actor+0x115/0x160 [ 43.480778] splice_direct_to_actor+0x33f/0x8d0 [ 43.485440] ? generic_pipe_buf_nosteal+0x10/0x10 [ 43.490273] ? do_splice_to+0x160/0x160 [ 43.494240] do_splice_direct+0x1a7/0x270 [ 43.498377] ? splice_direct_to_actor+0x8d0/0x8d0 [ 43.503215] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 43.508225] do_sendfile+0x550/0xc30 [ 43.511937] ? do_compat_pwritev64+0x1b0/0x1b0 [ 43.516506] ? __se_sys_futex+0x28f/0x3b0 [ 43.520640] ? __se_sys_futex+0x298/0x3b0 [ 43.524777] __se_sys_sendfile64+0x147/0x160 [ 43.529172] ? __se_sys_sendfile+0x180/0x180 [ 43.533577] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 43.538932] ? trace_hardirqs_off_caller+0x6e/0x210 [ 43.543933] ? do_syscall_64+0x21/0x620 [ 43.547895] do_syscall_64+0xf9/0x620 [ 43.551684] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 43.556860] RIP: 0033:0x7f1371679529 [ 43.560562] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 43.579446] RSP: 002b:00007f13716042f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 43.587136] RAX: ffffffffffffffda RBX: 00007f13716ff430 RCX: 00007f1371679529 [ 43.594389] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000003 [ 43.601643] RBP: 00007f13716cc850 R08: 0000000000000000 R09: 0000000000000000 [ 43.608897] R10: 0001000000201005 R11: 0000000000000246 R12: 652e79726f6d656d [ 43.616150] R13: d851473bfa4ba779 R14: 0030656c69662f2e R15: 00007f13716ff438 [ 43.623405] Modules linked in: [ 43.626770] Kernel Offset: disabled [ 43.630385] Rebooting in 86400 seconds..