[ OK ] Listening on Load/Save RF Kill Switch Status /dev/rfkill Watch. [ OK ] Reached target Login Prompts. Starting Load/Save RF Kill Switch Status... [ OK ] Started Load/Save RF Kill Switch Status. [ OK ] Started System Logging Service. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.178' (ECDSA) to the list of known hosts. executing program executing program executing program executing program executing program executing program syzkaller login: [ 41.515981] audit: type=1400 audit(1600902321.477:8): avc: denied { execmem } for pid=6378 comm="syz-executor642" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 41.532599] BTRFS: device fsid f90cac8b-044b-4fa8-8bee-4b8d3da88dc2 devid 0 transid 0 /dev/loop5 executing program [ 41.609346] print_req_error: I/O error, dev loop3, sector 0 executing program executing program executing program executing program executing program executing program executing program [ 41.783157] BTRFS: device fsid f90cac8b-044b-4fa8-8bee-4b8d3da88dc2 devid 1 transid 7 /dev/loop4 executing program executing program executing program [ 41.830647] BTRFS info (device loop4): disk space caching is enabled [ 41.841747] BTRFS info (device loop4): has skinny extents executing program executing program executing program executing program executing program executing program [ 41.976628] BTRFS error (device loop4): bad tree block start 0 5279744 [ 41.983918] BTRFS warning (device loop4): failed to recover relocation: -5 executing program [ 42.037150] BTRFS error (device loop4): open_ctree failed [ 42.045729] BTRFS info (device loop4): disk space caching is enabled [ 42.056358] BTRFS info (device loop4): has skinny extents executing program executing program executing program [ 42.141190] BTRFS error (device loop4): bad tree block start 0 5279744 [ 42.148890] BTRFS warning (device loop4): failed to recover relocation: -5 executing program executing program executing program executing program executing program executing program executing program [ 42.226906] BTRFS error (device loop4): open_ctree failed [ 42.235367] BTRFS info (device loop4): disk space caching is enabled [ 42.243081] BTRFS info (device loop4): has skinny extents executing program executing program executing program executing program [ 42.352526] BTRFS error (device loop4): bad tree block start 0 5279744 [ 42.359468] BTRFS warning (device loop4): failed to recover relocation: -5 [ 42.399185] ------------[ cut here ]------------ [ 42.404114] WARNING: CPU: 1 PID: 6449 at fs/btrfs/volumes.c:935 __btrfs_close_devices+0x888/0xb20 [ 42.413135] Kernel panic - not syncing: panic_on_warn set ... [ 42.413135] [ 42.420602] CPU: 1 PID: 6449 Comm: syz-executor642 Not tainted 4.14.198-syzkaller #0 [ 42.428485] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 42.437896] Call Trace: [ 42.440492] dump_stack+0x1b2/0x283 [ 42.444120] panic+0x1f9/0x42d [ 42.447307] ? add_taint.cold+0x16/0x16 [ 42.451269] ? __btrfs_close_devices+0x888/0xb20 [ 42.456019] ? __btrfs_close_devices+0x888/0xb20 [ 42.460773] __warn.cold+0x20/0x4b [ 42.464421] ? ist_end_non_atomic+0x10/0x10 [ 42.468735] ? __btrfs_close_devices+0x888/0xb20 [ 42.473479] report_bug+0x208/0x249 [ 42.477096] do_error_trap+0x195/0x2d0 [ 42.480978] ? math_error+0x2d0/0x2d0 [ 42.484793] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 42.489812] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 42.494919] ? debug_object_active_state+0x236/0x330 [ 42.500012] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 42.504930] invalid_op+0x1b/0x40 [ 42.508375] RIP: 0010:__btrfs_close_devices+0x888/0xb20 [ 42.513733] RSP: 0018:ffff888096bcf618 EFLAGS: 00010297 [ 42.519079] RAX: ffff8880986d0040 RBX: dffffc0000000000 RCX: ffff888096bcf688 [ 42.526335] RDX: 0000000000000000 RSI: ffff8880986d08f0 RDI: ffff8880a0fd8a60 [ 42.533592] RBP: ffff888094ced240 R08: 0000000000000286 R09: 0000000000000000 [ 42.540848] R10: 0000000000000000 R11: 0000000000000000 R12: dead000000000200 [ 42.548103] R13: dead000000000100 R14: ffff8880a6b8c200 R15: ffff888094ced2e0 [ 42.555376] ? __btrfs_close_devices+0x888/0xb20 [ 42.560142] ? kvfree+0x45/0x50 [ 42.563436] ? btrfs_alloc_device+0x580/0x580 [ 42.567920] btrfs_close_devices+0x24/0x140 [ 42.572230] open_ctree+0x241/0x7430 [ 42.575941] ? close_ctree+0x840/0x840 [ 42.579831] ? dlm_send_remote_unlock_request.constprop.0.cold+0x1d/0x1d [ 42.586704] btrfs_mount+0x1915/0x1fe0 [ 42.590592] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 42.596560] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 42.602013] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 42.607037] ? __lockdep_init_map+0x100/0x560 [ 42.611521] ? __lockdep_init_map+0x100/0x560 [ 42.616005] mount_fs+0x92/0x2a0 [ 42.619359] vfs_kern_mount.part.0+0x5b/0x470 [ 42.623853] vfs_kern_mount+0x3c/0x60 [ 42.627649] btrfs_mount+0x42a/0x1fe0 [ 42.631441] ? lock_downgrade+0x740/0x740 [ 42.635583] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 42.641556] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 42.646996] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 42.652002] ? __lockdep_init_map+0x100/0x560 [ 42.656499] ? __lockdep_init_map+0x100/0x560 [ 42.660992] mount_fs+0x92/0x2a0 [ 42.664346] vfs_kern_mount.part.0+0x5b/0x470 [ 42.668824] do_mount+0xe53/0x2a00 [ 42.672348] ? copy_mount_string+0x40/0x40 [ 42.676569] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 42.681594] ? copy_mnt_ns+0xa30/0xa30 [ 42.685477] ? copy_mount_options+0x1fa/0x2f0 [ 42.689956] ? copy_mnt_ns+0xa30/0xa30 [ 42.693825] SyS_mount+0xa8/0x120 [ 42.697258] ? copy_mnt_ns+0xa30/0xa30 [ 42.701142] do_syscall_64+0x1d5/0x640 [ 42.705026] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 42.710201] RIP: 0033:0x44850a [ 42.713377] RSP: 002b:00007ffc2f3e3268 EFLAGS: 00000293 ORIG_RAX: 00000000000000a5 [ 42.721087] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000044850a [ 42.728360] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007ffc2f3e32b0 [ 42.735632] RBP: 00007ffc2f3e32f0 R08: 00007ffc2f3e32f0 R09: 0000000000000000 [ 42.742891] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 [ 42.750153] R13: 00007ffc2f3e32b0 R14: 0000000000000003 R15: 0000000000000001 [ 42.758952] Kernel Offset: disabled [ 42.762634] Rebooting in 86400 seconds..