[ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... Starting Load/Save RF Kill Switch Status... [ OK ] Started Update UTMP about System Runlevel Changes. [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.120' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 32.986125] audit: type=1400 audit(1601677740.552:8): avc: denied { execmem } for pid=6359 comm="syz-executor159" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 32.993360] ERROR: (device loop0): xtSearch: XT_GETPAGE: xtree page corrupt [ 32.993360] [ 33.017955] BUG: unable to handle kernel paging request at ffffffffffffff80 [ 33.025074] IP: diFree+0x12e/0x2830 [ 33.028686] PGD 7c6d067 P4D 7c6d067 PUD 7c6f067 PMD 0 [ 33.033958] Oops: 0000 [#1] PREEMPT SMP KASAN [ 33.038474] Modules linked in: [ 33.041643] CPU: 1 PID: 6359 Comm: syz-executor159 Not tainted 4.14.198-syzkaller #0 [ 33.049493] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 33.058851] task: ffff8880971e8600 task.stack: ffff888097758000 [ 33.064887] RIP: 0010:diFree+0x12e/0x2830 [ 33.069006] RSP: 0018:ffff88809775f9a8 EFLAGS: 00010246 [ 33.074356] RAX: 0000000000000000 RBX: ffff8880905a2ac0 RCX: ffff88808269e474 [ 33.081602] RDX: 1ffffffffffffff0 RSI: 0000000000000000 RDI: ffffffffffffff80 [ 33.088853] RBP: ffff88808269e468 R08: ffffffff8a09ad30 R09: 0000000000000001 [ 33.096110] R10: 0000000000000000 R11: ffff8880971e8600 R12: ffff88808269e468 [ 33.103368] R13: ffff88808269e490 R14: ffffffff86d12980 R15: ffff88808269e620 [ 33.110616] FS: 00000000012ab880(0000) GS:ffff8880aeb00000(0000) knlGS:0000000000000000 [ 33.118813] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 33.124671] CR2: ffffffffffffff80 CR3: 0000000088dfb000 CR4: 00000000001406e0 [ 33.131917] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 33.139166] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 33.146416] Call Trace: [ 33.148989] ? trace_hardirqs_on+0x10/0x10 [ 33.153210] ? pagevec_lookup_entries+0x35/0x70 [ 33.157867] ? trace_hardirqs_on+0x10/0x10 [ 33.162091] ? truncate_inode_pages_range+0x45a/0x13e0 [ 33.167352] ? generic_error_remove_page+0xb0/0xb0 [ 33.172262] ? __inode_wait_for_writeback+0x140/0x190 [ 33.177458] ? dquot_initialize_needed+0x240/0x240 [ 33.182363] ? diWrite+0x1240/0x1240 [ 33.186085] ? jfs_write_inode+0x190/0x190 [ 33.190309] jfs_evict_inode+0xee/0x130 [ 33.194260] evict+0x2c8/0x700 [ 33.197430] iput+0x458/0x7e0 [ 33.200512] diFreeSpecial+0x63/0x80 [ 33.204215] jfs_mount+0x20a/0x380 [ 33.207741] jfs_fill_super+0x52a/0xab0 [ 33.211690] ? parse_options+0xd10/0xd10 [ 33.215724] ? set_blocksize+0x125/0x380 [ 33.219761] mount_bdev+0x2b3/0x360 [ 33.223381] ? parse_options+0xd10/0xd10 [ 33.227416] mount_fs+0x92/0x2a0 [ 33.230761] vfs_kern_mount.part.0+0x5b/0x470 [ 33.235232] do_mount+0xe53/0x2a00 [ 33.238746] ? retint_kernel+0x2d/0x2d [ 33.242608] ? copy_mount_string+0x40/0x40 [ 33.246814] ? copy_mount_options+0x194/0x2f0 [ 33.251298] ? copy_mount_options+0x1fa/0x2f0 [ 33.255764] ? copy_mnt_ns+0xa30/0xa30 [ 33.259625] SyS_mount+0xa8/0x120 [ 33.263056] ? copy_mnt_ns+0xa30/0xa30 [ 33.266917] do_syscall_64+0x1d5/0x640 [ 33.270782] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 33.275958] RIP: 0033:0x446dea [ 33.279122] RSP: 002b:00007ffc369d8a88 EFLAGS: 00000283 ORIG_RAX: 00000000000000a5 [ 33.286812] RAX: ffffffffffffffda RBX: 00007ffc369d8ad0 RCX: 0000000000446dea [ 33.294096] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007ffc369d8a90 [ 33.301340] RBP: 00007ffc369d8a90 R08: 00007ffc369d8ad0 R09: 6f6f6c2f7665642f [ 33.308596] R10: 0000000000008001 R11: 0000000000000283 R12: 0000000000000004 [ 33.315859] R13: 0000000000000003 R14: 0000000000000003 R15: 0000000000000006 [ 33.323117] Code: 43 28 48 8d 78 80 48 89 44 24 18 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 5b 20 00 00 48 8b 44 24 18 <48> 8b 68 80 48 8b 44 24 20 4c 8d 6d 04 48 c1 e8 0c 4c 89 ea 48 [ 33.342188] RIP: diFree+0x12e/0x2830 RSP: ffff88809775f9a8 [ 33.347787] CR2: ffffffffffffff80 [ 33.351230] ---[ end trace 985aa5335c4034fb ]--- [ 33.355968] Kernel panic - not syncing: Fatal exception [ 33.362448] Kernel Offset: disabled [ 33.366082] Rebooting in 86400 seconds..