[ 48.013184] bond0 (unregistering): Released all slaves Warning: Permanently added '10.128.0.133' (ECDSA) to the list of known hosts. 2020/05/16 12:59:24 parsed 1 programs 2020/05/16 12:59:24 executed programs: 0 [ 53.328435] IPVS: ftp: loaded support on port[0] = 21 [ 53.333169] IPVS: ftp: loaded support on port[0] = 21 [ 53.341314] IPVS: ftp: loaded support on port[0] = 21 [ 53.343628] IPVS: ftp: loaded support on port[0] = 21 [ 53.347419] IPVS: ftp: loaded support on port[0] = 21 [ 53.380373] IPVS: ftp: loaded support on port[0] = 21 [ 53.469117] ntfs: (device loop0): is_boot_sector_ntfs(): Invalid end of sector marker. [ 53.479506] ntfs: (device loop0): map_mft_record_page(): Mft record 0x1 is corrupt. Run chkdsk. [ 53.488494] ntfs: (device loop0): map_mft_record(): Failed with error code 5. [ 53.495850] ntfs: (device loop0): ntfs_read_locked_inode(): Failed with error code -5. Marking corrupt inode 0x1 as bad. Run chkdsk. [ 53.510130] ntfs: (device loop0): load_system_files(): Failed to load $MFTMirr. Mounting read-only. Run ntfsfix and/or chkdsk. [ 53.523278] ntfs: (device loop0): map_mft_record_page(): Mft record 0xa is corrupt. Run chkdsk. [ 53.532271] ntfs: (device loop0): map_mft_record(): Failed with error code 5. [ 53.539610] ntfs: (device loop0): ntfs_read_locked_inode(): Failed with error code -5. Marking corrupt inode 0xa as bad. Run chkdsk. [ 53.564582] ntfs: (device loop0): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default. [ 53.576526] ntfs: volume version 3.1. [ 53.581524] ntfs: (device loop1): is_boot_sector_ntfs(): Invalid end of sector marker. [ 53.585194] ================================================================== [ 53.596941] BUG: KASAN: use-after-free in ntfs_read_locked_inode+0x442f/0x52a0 [ 53.603165] ntfs: volume version 3.1. [ 53.604284] Read of size 8 at addr ffff8881b4cc22e8 by task syz-executor/3911 [ 53.604285] [ 53.604291] CPU: 0 PID: 3911 Comm: syz-executor Not tainted 5.7.0-rc5-syzkaller #0 [ 53.604294] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 53.604296] Call Trace: [ 53.604306] dump_stack+0x12f/0x187 [ 53.604313] ? ntfs_read_locked_inode+0x442f/0x52a0 [ 53.604318] ? ntfs_read_locked_inode+0x442f/0x52a0 [ 53.650327] print_address_description.constprop.8+0x3f/0x60 [ 53.656132] ? ntfs_read_locked_inode+0x442f/0x52a0 [ 53.661142] ? ntfs_read_locked_inode+0x442f/0x52a0 RESULT: signal 0, coverage 0 errno 0 [ 53.666155] __kasan_report.cold.11+0x23/0x3a [ 53.670649] ? cache_grow_begin.cold.61+0x1b/0x31 [ 53.675490] ? ntfs_read_locked_inode+0x442f/0x52a0 [ 53.680501] kasan_report+0x38/0x50 [ 53.684122] __asan_report_load_n_noabort+0xf/0x20 [ 53.689044] ntfs_read_locked_inode+0x442f/0x52a0 [ 53.693884] ntfs_iget+0xe6/0x120 [ 53.695025] ntfs: volume version 3.1. [ 53.697324] ? ntfs_read_locked_inode+0x52a0/0x52a0 [ 53.697330] ? kfree+0x1d6/0x290 [ 53.697335] load_system_files+0x53df/0x6270 [ 53.697340] ? insert_vmap_area_augment.constprop.52+0x8d0/0x8d0 [ 53.697346] ? ntfs_remount+0x420/0x420 [ 53.697351] ? __kasan_check_write+0x14/0x20 [ 53.697357] ? wait_for_completion+0x280/0x280 [ 53.697362] ? generate_default_upcase+0xb5/0x510 [ 53.701387] ntfs: volume version 3.1. [ 53.706144] ntfs_fill_super+0x12a6/0x2d40 [ 53.706150] ? snprintf+0x91/0xc0 [ 53.706153] ? vsprintf+0x20/0x20 [ 53.706160] mount_bdev+0x27b/0x340 [ 53.706163] ? load_system_files+0x6270/0x6270 [ 53.706167] ? ntfs_rl_punch_nolock+0x1ec0/0x1ec0 [ 53.706170] ntfs_mount+0x10/0x20 [ 53.706175] legacy_get_tree+0x103/0x1f0 [ 53.706180] vfs_get_tree+0x8b/0x2d0 [ 53.706185] ? capable+0x14/0x20 [ 53.706190] do_mount+0x1287/0x1c30 [ 53.706194] ? lock_downgrade+0x960/0x960 [ 53.706199] ? copy_mount_string+0x20/0x20 [ 53.754092] ntfs: volume version 3.1. [ 53.756301] ? ___might_sleep+0x13e/0x2b0 [ 53.756309] ? __kasan_check_write+0x14/0x20 [ 53.756315] ? _copy_from_user+0xc5/0x110 [ 53.756322] __x64_sys_mount+0x169/0x1c0 [ 53.756329] do_syscall_64+0xd0/0x630 RESULT: signal 0, coverage 0 errno 0 RESULT: signal 0, coverage 0 errno 0 RESULT: signal 0, coverage 0 errno 0 [ 53.756335] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 53.756340] RIP: 0033:0x457e5a [ 53.824839] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 dd 8f fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 ba 8f fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 53.835241] ntfs: volume version 3.1. [ 53.843747] RSP: 002b:00007f9c2a9f1bb8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 53.843753] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000457e5a [ 53.843755] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f9c2a9f1c00 RESULT: signal 0, coverage 0 errno 0 [ 53.843757] RBP: 000000000000005a R08: 0000000020077a00 R09: 0000000020000000 [ 53.843759] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 53.843760] R13: 000000000000066c R14: 00000000006fcac0 R15: 0000000000000000 [ 53.843766] [ 53.843769] The buggy address belongs to the page: [ 53.843775] page:ffffea0006d33080 refcount:0 mapcount:0 mapping:0000000050b74131 index:0x1 [ 53.843778] flags: 0x2fffc0000000000() [ 53.843783] raw: 02fffc0000000000 ffffea0006d330c8 ffffea0006d33048 0000000000000000 [ 53.843789] raw: 0000000000000001 0000000000000000 00000000ffffffff 0000000000000000 [ 53.926138] page dumped because: kasan: bad access detected [ 53.931837] [ 53.933448] Memory state around the buggy address: [ 53.938362] ffff8881b4cc2180: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 53.945710] ffff8881b4cc2200: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 53.953068] >ffff8881b4cc2280: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 53.960417] ^ [ 53.967159] ffff8881b4cc2300: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 53.974511] ffff8881b4cc2380: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 53.981893] ================================================================== [ 53.989243] Disabling lock debugging due to kernel taint [ 53.994840] Kernel panic - not syncing: panic_on_warn set ... [ 54.000724] CPU: 0 PID: 3911 Comm: syz-executor Tainted: G B 5.7.0-rc5-syzkaller #0 [ 54.009809] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 54.019149] Call Trace: [ 54.021724] dump_stack+0x12f/0x187 [ 54.025632] ? ntfs_read_locked_inode+0x4370/0x52a0 [ 54.030666] ? ntfs_read_locked_inode+0x442f/0x52a0 [ 54.035657] panic+0x22a/0x4f5 [ 54.038823] ? add_taint.cold.7+0x11/0x11 [ 54.042944] ? do_raw_spin_unlock+0x54/0x260 [ 54.047325] ? do_raw_spin_unlock+0x54/0x260 [ 54.051710] ? ntfs_read_locked_inode+0x442f/0x52a0 [ 54.056713] ? ntfs_read_locked_inode+0x442f/0x52a0 [ 54.061742] end_report+0x51/0x59 [ 54.065178] __kasan_report.cold.11+0xe/0x3a [ 54.069563] ? cache_grow_begin.cold.61+0x1b/0x31 [ 54.074399] ? ntfs_read_locked_inode+0x442f/0x52a0 [ 54.079412] kasan_report+0x38/0x50 [ 54.083015] __asan_report_load_n_noabort+0xf/0x20 [ 54.087918] ntfs_read_locked_inode+0x442f/0x52a0 [ 54.092736] ntfs_iget+0xe6/0x120 [ 54.096176] ? ntfs_read_locked_inode+0x52a0/0x52a0 [ 54.101165] ? kfree+0x1d6/0x290 [ 54.104512] load_system_files+0x53df/0x6270 [ 54.108894] ? insert_vmap_area_augment.constprop.52+0x8d0/0x8d0 [ 54.115017] ? ntfs_remount+0x420/0x420 [ 54.118966] ? __kasan_check_write+0x14/0x20 [ 54.123349] ? wait_for_completion+0x280/0x280 [ 54.127905] ? generate_default_upcase+0xb5/0x510 [ 54.132718] ntfs_fill_super+0x12a6/0x2d40 [ 54.136952] ? snprintf+0x91/0xc0 [ 54.140378] ? vsprintf+0x20/0x20 [ 54.143805] mount_bdev+0x27b/0x340 [ 54.147403] ? load_system_files+0x6270/0x6270 [ 54.151958] ? ntfs_rl_punch_nolock+0x1ec0/0x1ec0 [ 54.156774] ntfs_mount+0x10/0x20 [ 54.160214] legacy_get_tree+0x103/0x1f0 [ 54.164278] vfs_get_tree+0x8b/0x2d0 [ 54.167975] ? capable+0x14/0x20 [ 54.171319] do_mount+0x1287/0x1c30 [ 54.174936] ? lock_downgrade+0x960/0x960 [ 54.179072] ? copy_mount_string+0x20/0x20 [ 54.183289] ? ___might_sleep+0x13e/0x2b0 [ 54.187419] ? __kasan_check_write+0x14/0x20 [ 54.191813] ? _copy_from_user+0xc5/0x110 [ 54.195954] __x64_sys_mount+0x169/0x1c0 [ 54.199997] do_syscall_64+0xd0/0x630 [ 54.203775] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 54.208940] RIP: 0033:0x457e5a [ 54.212108] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 dd 8f fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 ba 8f fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 54.230987] RSP: 002b:00007f9c2a9f1bb8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 54.238682] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000457e5a [ 54.245927] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f9c2a9f1c00 [ 54.253172] RBP: 000000000000005a R08: 0000000020077a00 R09: 0000000020000000 [ 54.260425] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 54.267678] R13: 000000000000066c R14: 00000000006fcac0 R15: 0000000000000000 [ 54.275741] Kernel Offset: disabled [ 54.279486] Rebooting in 86400 seconds..