[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 41.161434] can: request_module (can-proto-0) failed. [ 41.170917] can: request_module (can-proto-0) failed. [ 42.016830] IPVS: ftp: loaded support on port[0] = 21 [ 42.697322] 8021q: adding VLAN 0 to HW filter on device bond0 [ 42.769039] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 43.066589] tipc: TX() has been purged, node left! [ 44.647108] bond0 (unregistering): Released all slaves Warning: Permanently added '10.128.0.204' (ECDSA) to the list of known hosts. 2020/02/12 05:18:33 parsed 1 programs 2020/02/12 05:18:33 executed programs: 0 [ 49.884355] IPVS: ftp: loaded support on port[0] = 21 [ 49.926273] IPVS: ftp: loaded support on port[0] = 21 [ 49.936885] IPVS: ftp: loaded support on port[0] = 21 [ 49.951215] IPVS: ftp: loaded support on port[0] = 21 [ 49.978667] IPVS: ftp: loaded support on port[0] = 21 [ 50.021194] IPVS: ftp: loaded support on port[0] = 21 [ 50.055587] gfs2: fsid=loop2: Trying to join cluster "lock_nolock", "loop2" [ 50.062826] gfs2: fsid=loop2: Now mounting FS... [ 50.083703] gfs2: fsid=loop2.0: journal 0 mapped with 1 extents in 0ms [ 50.090750] gfs2: fsid=loop2.0: jid=0, already locked for use [ 50.096923] gfs2: fsid=loop2.0: jid=0: Looking at journal... [ 50.161220] gfs2: fsid=loop2.0: jid=0: Journal head lookup took 64ms [ 50.175875] gfs2: fsid=loop2.0: jid=0: Done [ 50.180554] gfs2: fsid=loop2.0: first mount done, others may mount [ 50.256471] gfs2: fsid=loop4: Trying to join cluster "lock_nolock", "loop4" [ 50.263673] gfs2: fsid=loop4: Now mounting FS... [ 50.272087] gfs2: fsid=loop4.0: journal 0 mapped with 1 extents in 0ms [ 50.280372] gfs2: fsid=loop4.0: jid=0, already locked for use [ 50.286315] gfs2: fsid=loop4.0: jid=0: Looking at journal... [ 50.286800] gfs2: fsid=loop5: Trying to join cluster "lock_nolock", "loop5" [ 50.299625] gfs2: fsid=loop5: Now mounting FS... [ 50.308669] gfs2: fsid=loop5.0: journal 0 mapped with 1 extents in 0ms [ 50.317559] gfs2: fsid=loop5.0: jid=0, already locked for use [ 50.323548] gfs2: fsid=loop5.0: jid=0: Looking at journal... [ 50.419854] gfs2: fsid=loop5.0: jid=0: Journal head lookup took 96ms [ 50.434022] gfs2: fsid=loop1: Trying to join cluster "lock_nolock", "loop1" [ 50.441360] gfs2: fsid=loop1: Now mounting FS... [ 50.446655] gfs2: fsid=loop5.0: jid=0: Done [ 50.451462] gfs2: fsid=loop5.0: first mount done, others may mount [ 50.460026] gfs2: fsid=loop2.0: found 1 quota changes [ 50.464361] gfs2: fsid=loop1.0: journal 0 mapped with 1 extents in 0ms [ 50.472232] gfs2: fsid=loop1.0: jid=0, already locked for use [ 50.478217] gfs2: fsid=loop1.0: jid=0: Looking at journal... [ 50.572142] gfs2: fsid=loop1.0: jid=0: Journal head lookup took 93ms [ 50.578887] gfs2: fsid=loop1.0: jid=0: Done [ 50.583297] gfs2: fsid=loop1.0: first mount done, others may mount [ 50.592350] gfs2: fsid=loop4.0: jid=0: Journal head lookup took 306ms [ 50.610464] gfs2: fsid=loop4.0: jid=0: Done [ 50.611654] gfs2: fsid=loop0: Trying to join cluster "lock_nolock", "loop0" [ 50.615645] gfs2: fsid=loop4.0: first mount done, others may mount [ 50.622141] gfs2: fsid=loop0: Now mounting FS... [ 50.637210] gfs2: fsid=loop3: Trying to join cluster "lock_nolock", "loop3" [ 50.644433] gfs2: fsid=loop3: Now mounting FS... RESULT: signal 0, coverage 0 errno 0 [ 50.705880] gfs2: fsid=loop3.0: journal 0 mapped with 1 extents in 0ms [ 50.712681] gfs2: fsid=loop3.0: jid=0, already locked for use [ 50.718674] gfs2: fsid=loop3.0: jid=0: Looking at journal... [ 50.735575] ------------[ cut here ]------------ [ 50.740512] WARNING: CPU: 1 PID: 4440 at include/linux/backing-dev.h:349 account_page_dirtied+0x65a/0x870 [ 50.750345] Kernel panic - not syncing: panic_on_warn set ... [ 50.756333] CPU: 1 PID: 4440 Comm: syz-executor2 Not tainted 5.6.0-rc1-syzkaller #0 [ 50.764134] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 50.773494] Call Trace: [ 50.776216] dump_stack+0x12f/0x187 [ 50.779862] ? account_page_dirtied+0x65a/0x870 [ 50.784540] panic+0x22a/0x4f5 [ 50.787740] ? add_taint.cold.7+0x11/0x11 [ 50.792069] __warn.cold.10+0x25/0x28 [ 50.795886] ? account_page_dirtied+0x65a/0x870 [ 50.800682] report_bug+0x1b0/0x270 [ 50.804479] do_error_trap+0x11b/0x200 [ 50.808385] do_invalid_op+0x36/0x40 [ 50.812109] ? account_page_dirtied+0x65a/0x870 [ 50.816808] invalid_op+0x23/0x30 [ 50.820270] RIP: 0010:account_page_dirtied+0x65a/0x870 [ 50.825556] Code: c1 ea 03 80 3c 02 00 0f 85 25 02 00 00 49 8b 86 90 01 00 00 be ff ff ff ff 48 8d 78 70 e8 8e de ca ff 85 c0 0f 85 60 fb ff ff <0f> 0b e9 59 fb ff ff 4c 89 ee 4c 89 f7 e8 f4 69 28 00 e9 0a fb ff [ 50.830034] gfs2: fsid=loop3.0: jid=0: Journal head lookup took 111ms [ 50.844791] RSP: 0018:ffff8881c582f790 EFLAGS: 00010046 [ 50.857052] RAX: 0000000000000000 RBX: ffff8881c891f3a8 RCX: ffff8881c7d5ae18 [ 50.864441] RDX: 1ffffffff10a6a27 RSI: ffff8881c576d070 RDI: 0000000000000082 [ 50.871737] RBP: ffff8881c582f7c0 R08: ffffed1039123e76 R09: ffffed1039123e76 [ 50.879425] R10: ffffed1039123e75 R11: ffff8881c891f3af R12: ffff8881c891f218 [ 50.886697] gfs2: fsid=loop5.0: found 1 quota changes [ 50.891894] R13: ffffea0006d62e40 R14: ffff8881c891f218 R15: 0000000000000282 [ 50.899202] __set_page_dirty+0x6f/0x250 [ 50.903295] mark_buffer_dirty+0x2c4/0x3c0 [ 50.907543] gfs2_unpin+0xdf/0xe00 [ 50.911106] buf_lo_after_commit+0x129/0x210 [ 50.915536] gfs2_log_flush+0x9c4/0x1fa0 [ 50.919611] ? lock_downgrade+0x900/0x900 [ 50.923880] ? log_write_header+0xeb0/0xeb0 [ 50.928220] ? mark_held_locks+0xb7/0x130 [ 50.930334] gfs2: fsid=loop3.0: jid=0: Done [ 50.932502] ? kfree+0x132/0x290 [ 50.932511] ? do_sync+0x482/0xa50 [ 50.932519] ? lockdep_hardirqs_on+0x42d/0x5d0 [ 50.932522] ? kfree+0x132/0x290 [ 50.932530] ? trace_hardirqs_on+0x28/0x180 [ 50.932537] ? do_sync+0x482/0xa50 [ 50.932547] do_sync+0x4d3/0xa50 [ 50.932562] ? gfs2_set_dqblk+0xb60/0xb60 [ 50.932566] ? lock_downgrade+0x900/0x900 [ 50.932577] ? rwlock_bug.part.0+0x90/0x90 [ 50.932580] ? lock_acquire+0x194/0x3e0 [ 50.932592] ? do_raw_spin_unlock+0x177/0x260 [ 50.939586] gfs2: fsid=loop3.0: first mount done, others may mount [ 50.940385] gfs2_quota_sync+0x254/0x4f0 [ 50.995123] gfs2_sync_fs+0x41/0xa0 [ 50.998796] sync_filesystem+0xd7/0x200 [ 51.002790] generic_shutdown_super+0x69/0x330 [ 51.007616] kill_block_super+0x96/0xe0 [ 51.010893] gfs2: fsid=loop1.0: found 1 quota changes [ 51.011600] gfs2_kill_sb+0x100/0x150 [ 51.011612] deactivate_locked_super+0x7c/0xd0 [ 51.011620] deactivate_super+0x136/0x150 [ 51.011626] ? mount_bdev+0x340/0x340 [ 51.020574] gfs2: fsid=loop4.0: found 1 quota changes [ 51.020639] ? dput.part.30+0x12d/0xab0 [ 51.042464] ? mnt_get_writers.isra.29+0xb3/0x140 [ 51.047325] cleanup_mnt+0x204/0x440 [ 51.051206] ? trace_hardirqs_on+0x28/0x180 [ 51.055806] __cleanup_mnt+0xd/0x10 [ 51.059443] task_work_run+0x10e/0x190 [ 51.063523] exit_to_usermode_loop+0x1be/0x210 [ 51.068103] do_syscall_64+0x50b/0x600 [ 51.071997] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 51.077186] RIP: 0033:0x4579d7 [ 51.080389] Code: 44 00 00 b8 08 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 fd 8f fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 a6 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 dd 8f fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 51.099395] RSP: 002b:00007ffd455d1e58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 51.108041] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00000000004579d7 [ 51.115309] RDX: 0000000001428983 RSI: 0000000000000002 RDI: 00007ffd455d2fc0 [ 51.122581] RBP: 00007ffd455d2fc0 R08: 0000000000000000 R09: 0000000000000009 [ 51.129855] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000001428940 [ 51.137241] R13: 0000000000000000 R14: 0000000000000002 R15: 000000000000c330 [ 51.145711] Kernel Offset: disabled [ 51.149662] Rebooting in 86400 seconds..