[ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Starting Load/Save RF Kill Switch Status... [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.190' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 593.939290][ T8486] BTRFS: device fsid b6c6de41-0f3d-4d56-a285-1537704be259 devid 1 transid 7 /dev/loop0 scanned by syz-executor154 (8486) [ 593.961307][ T8486] BTRFS info (device loop0): disk space caching is enabled [ 593.968786][ T8486] BTRFS info (device loop0): has skinny extents [ 594.015691][ T8486] BTRFS info (device loop0): enabling ssd optimizations executing program [ 594.106599][ T8513] ================================================================== [ 594.114901][ T8513] BUG: KASAN: null-ptr-deref in start_transaction+0x158/0x1170 [ 594.122448][ T8513] Write of size 4 at addr 000000000000003a by task syz-executor154/8513 [ 594.130766][ T8513] [ 594.133122][ T8513] CPU: 1 PID: 8513 Comm: syz-executor154 Not tainted 5.10.0-rc2-syzkaller #0 [ 594.141877][ T8513] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 594.151924][ T8513] Call Trace: [ 594.155231][ T8513] dump_stack+0x107/0x163 [ 594.159622][ T8513] ? start_transaction+0x158/0x1170 [ 594.164803][ T8513] ? start_transaction+0x158/0x1170 [ 594.170028][ T8513] kasan_report.cold+0x5/0x37 [ 594.174707][ T8513] ? start_transaction+0x158/0x1170 [ 594.179928][ T8513] check_memory_region+0x13d/0x180 [ 594.185029][ T8513] start_transaction+0x158/0x1170 [ 594.190078][ T8513] ? __reserve_bytes+0xcae/0x1480 [ 594.195127][ T8513] ? lock_downgrade+0x6d0/0x6d0 [ 594.199962][ T8513] flush_space+0x1c0/0xf60 [ 594.204363][ T8513] __reserve_bytes+0xd2c/0x1480 [ 594.209242][ T8513] ? btrfs_async_reclaim_metadata_space+0x410/0x410 [ 594.215815][ T8513] ? find_held_lock+0x2d/0x110 [ 594.220568][ T8513] ? rwlock_bug.part.0+0x90/0x90 [ 594.225493][ T8513] btrfs_reserve_metadata_bytes+0x75/0x260 [ 594.231288][ T8513] btrfs_delalloc_reserve_metadata+0x261/0xb90 [ 594.237426][ T8513] ? btrfs_check_data_free_space+0x100/0x170 [ 594.243423][ T8513] btrfs_buffered_write.isra.0+0x445/0xf10 [ 594.249225][ T8513] ? btrfs_dirty_pages+0x910/0x910 [ 594.254376][ T8513] ? ktime_get_coarse_real_ts64+0xfd/0x190 [ 594.260196][ T8513] ? init_once+0x230/0x230 [ 594.264632][ T8513] ? iov_iter_alignment+0x1b2/0x810 [ 594.269830][ T8513] ? current_time+0x1e6/0x2c0 [ 594.274516][ T8513] ? btrfs_direct_IO+0x2d8/0x600 [ 594.279470][ T8513] btrfs_file_write_iter+0xda6/0x16d0 [ 594.284859][ T8513] ? btrfs_fdatawrite_range+0x110/0x110 [ 594.290417][ T8513] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 594.296445][ T8513] do_iter_readv_writev+0x46f/0x740 [ 594.301653][ T8513] ? new_sync_write+0x650/0x650 [ 594.306577][ T8513] ? apparmor_file_permission+0x26e/0x4e0 [ 594.312328][ T8513] do_iter_write+0x188/0x670 [ 594.316931][ T8513] ? __sb_start_write+0x1c9/0x450 [ 594.321969][ T8513] vfs_writev+0x1aa/0x2e0 [ 594.326310][ T8513] ? vfs_iter_write+0xa0/0xa0 [ 594.331007][ T8513] ? __fget_files+0x272/0x400 [ 594.335711][ T8513] ? __fget_files+0x294/0x400 [ 594.340408][ T8513] __x64_sys_pwritev+0x231/0x310 [ 594.345356][ T8513] ? __ia32_sys_preadv2+0x150/0x150 [ 594.350591][ T8513] ? syscall_enter_from_user_mode+0x1d/0x50 [ 594.356496][ T8513] do_syscall_64+0x2d/0x70 [ 594.360962][ T8513] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 594.366857][ T8513] RIP: 0033:0x44d959 [ 594.370748][ T8513] Code: 7d cb fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 4b cb fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 594.390349][ T8513] RSP: 002b:00007f78b0d8bce8 EFLAGS: 00000246 ORIG_RAX: 0000000000000128 [ 594.398772][ T8513] RAX: ffffffffffffffda RBX: 00000000006e1c28 RCX: 000000000044d959 [ 594.406737][ T8513] RDX: 0000000000000001 RSI: 00000000200014c0 RDI: 0000000000000003 [ 594.414687][ T8513] RBP: 00000000006e1c20 R08: 0000000000000020 R09: 0000000000000000 [ 594.422638][ T8513] R10: 0000000000000002 R11: 0000000000000246 R12: 00000000006e1c2c [ 594.430592][ T8513] R13: 00007ffefe638f4f R14: 00007f78b0d8c9c0 R15: 20c49ba5e353f7cf [ 594.438551][ T8513] ================================================================== [ 594.446594][ T8513] Disabling lock debugging due to kernel taint [ 594.462622][ T8513] Kernel panic - not syncing: panic_on_warn set ... [ 594.469218][ T8513] CPU: 1 PID: 8513 Comm: syz-executor154 Tainted: G B 5.10.0-rc2-syzkaller #0 [ 594.479343][ T8513] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 594.489368][ T8513] Call Trace: [ 594.492636][ T8513] dump_stack+0x107/0x163 [ 594.496941][ T8513] ? start_transaction+0xd0/0x1170 [ 594.502045][ T8513] panic+0x306/0x73d [ 594.505942][ T8513] ? __warn_printk+0xf3/0xf3 [ 594.510564][ T8513] ? preempt_schedule_common+0x59/0xc0 [ 594.515998][ T8513] ? start_transaction+0x158/0x1170 [ 594.521212][ T8513] ? preempt_schedule_thunk+0x16/0x18 [ 594.526583][ T8513] ? trace_hardirqs_on+0x51/0x1c0 [ 594.531585][ T8513] ? start_transaction+0x158/0x1170 [ 594.536764][ T8513] ? start_transaction+0x158/0x1170 [ 594.541941][ T8513] end_report+0x58/0x5e [ 594.546080][ T8513] kasan_report.cold+0xd/0x37 [ 594.550736][ T8513] ? start_transaction+0x158/0x1170 [ 594.555909][ T8513] check_memory_region+0x13d/0x180 [ 594.560997][ T8513] start_transaction+0x158/0x1170 [ 594.565998][ T8513] ? __reserve_bytes+0xcae/0x1480 [ 594.571000][ T8513] ? lock_downgrade+0x6d0/0x6d0 [ 594.575825][ T8513] flush_space+0x1c0/0xf60 [ 594.580250][ T8513] __reserve_bytes+0xd2c/0x1480 [ 594.585077][ T8513] ? btrfs_async_reclaim_metadata_space+0x410/0x410 [ 594.591643][ T8513] ? find_held_lock+0x2d/0x110 [ 594.596383][ T8513] ? rwlock_bug.part.0+0x90/0x90 [ 594.601297][ T8513] btrfs_reserve_metadata_bytes+0x75/0x260 [ 594.607080][ T8513] btrfs_delalloc_reserve_metadata+0x261/0xb90 [ 594.613209][ T8513] ? btrfs_check_data_free_space+0x100/0x170 [ 594.619177][ T8513] btrfs_buffered_write.isra.0+0x445/0xf10 [ 594.624959][ T8513] ? btrfs_dirty_pages+0x910/0x910 [ 594.630046][ T8513] ? ktime_get_coarse_real_ts64+0xfd/0x190 [ 594.635826][ T8513] ? init_once+0x230/0x230 [ 594.640218][ T8513] ? iov_iter_alignment+0x1b2/0x810 [ 594.645387][ T8513] ? current_time+0x1e6/0x2c0 [ 594.650053][ T8513] ? btrfs_direct_IO+0x2d8/0x600 [ 594.654967][ T8513] btrfs_file_write_iter+0xda6/0x16d0 [ 594.660315][ T8513] ? btrfs_fdatawrite_range+0x110/0x110 [ 594.665839][ T8513] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 594.671796][ T8513] do_iter_readv_writev+0x46f/0x740 [ 594.676968][ T8513] ? new_sync_write+0x650/0x650 [ 594.681792][ T8513] ? apparmor_file_permission+0x26e/0x4e0 [ 594.687487][ T8513] do_iter_write+0x188/0x670 [ 594.692052][ T8513] ? __sb_start_write+0x1c9/0x450 [ 594.697057][ T8513] vfs_writev+0x1aa/0x2e0 [ 594.701370][ T8513] ? vfs_iter_write+0xa0/0xa0 [ 594.706028][ T8513] ? __fget_files+0x272/0x400 [ 594.710687][ T8513] ? __fget_files+0x294/0x400 [ 594.715341][ T8513] __x64_sys_pwritev+0x231/0x310 [ 594.720261][ T8513] ? __ia32_sys_preadv2+0x150/0x150 [ 594.725454][ T8513] ? syscall_enter_from_user_mode+0x1d/0x50 [ 594.731320][ T8513] do_syscall_64+0x2d/0x70 [ 594.735789][ T8513] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 594.741654][ T8513] RIP: 0033:0x44d959 [ 594.745523][ T8513] Code: 7d cb fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 4b cb fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 594.765098][ T8513] RSP: 002b:00007f78b0d8bce8 EFLAGS: 00000246 ORIG_RAX: 0000000000000128 [ 594.773522][ T8513] RAX: ffffffffffffffda RBX: 00000000006e1c28 RCX: 000000000044d959 [ 594.781466][ T8513] RDX: 0000000000000001 RSI: 00000000200014c0 RDI: 0000000000000003 [ 594.789412][ T8513] RBP: 00000000006e1c20 R08: 0000000000000020 R09: 0000000000000000 [ 594.797371][ T8513] R10: 0000000000000002 R11: 0000000000000246 R12: 00000000006e1c2c [ 594.805318][ T8513] R13: 00007ffefe638f4f R14: 00007f78b0d8c9c0 R15: 20c49ba5e353f7cf [ 594.813959][ T8513] Kernel Offset: disabled [ 594.818268][ T8513] Rebooting in 86400 seconds..