[   45.447321][   T26] audit: type=1800 audit(1554337921.404:30): pid=7592 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.50' (ECDSA) to the list of known hosts.
executing program
syzkaller login: [  491.791205][ T1043] INFO: task syz-executor023:7744 blocked for more than 143 seconds.
[  491.799666][ T1043]       Not tainted 5.1.0-rc3+ #49
[  491.804954][ T1043] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  491.813727][ T1043] syz-executor023 D28216  7744   7742 0x80000000
[  491.820233][ T1043] Call Trace:
[  491.823749][ T1043]  __schedule+0x817/0x1cc0
[  491.828208][ T1043]  ? __sched_text_start+0x8/0x8
[  491.833204][ T1043]  ? __lock_acquire+0x242a/0x3fb0
[  491.838388][ T1043]  schedule+0x92/0x180
[  491.842609][ T1043]  schedule_timeout+0x8ca/0xfd0
[  491.847498][ T1043]  ? wait_for_completion+0x294/0x440
[  491.853057][ T1043]  ? find_held_lock+0x35/0x130
[  491.857956][ T1043]  ? usleep_range+0x170/0x170
[  491.863142][ T1043]  ? kasan_check_write+0x14/0x20
[  491.868267][ T1043]  ? _raw_spin_unlock_irq+0x28/0x90
[  491.873950][ T1043]  ? wait_for_completion+0x294/0x440
[  491.879473][ T1043]  ? _raw_spin_unlock_irq+0x28/0x90
[  491.884945][ T1043]  ? lockdep_hardirqs_on+0x418/0x5d0
[  491.890276][ T1043]  ? trace_hardirqs_on+0x67/0x230
[  491.895694][ T1043]  ? kasan_check_read+0x11/0x20
[  491.900578][ T1043]  wait_for_completion+0x29c/0x440
[  491.905875][ T1043]  ? lockdep_hardirqs_on+0x418/0x5d0
[  491.911409][ T1043]  ? wait_for_completion_interruptible+0x4b0/0x4b0
[  491.917949][ T1043]  ? wake_up_q+0xf0/0xf0
[  491.922466][ T1043]  ? percpu_ref_kill_and_confirm+0x1b7/0x3b0
[  491.928519][ T1043]  exit_aio+0x321/0x3a0
[  491.932925][ T1043]  ? aio_poll_wake+0x11e0/0x11e0
[  491.938055][ T1043]  ? mutex_unlock+0xd/0x10
[  491.942642][ T1043]  mmput+0xcf/0x4c0
[  491.946631][ T1043]  do_exit+0x816/0x2fa0
[  491.951181][ T1043]  ? lock_downgrade+0x880/0x880
[  491.956174][ T1043]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  491.962594][ T1043]  ? kasan_check_read+0x11/0x20
[  491.967483][ T1043]  ? mm_update_next_owner+0x640/0x640
[  491.973195][ T1043]  ? __x64_sys_io_submit+0x37d/0x580
[  491.978487][ T1043]  ? __ia32_sys_io_destroy+0x420/0x420
[  491.984149][ T1043]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  491.989993][ T1043]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  491.995572][ T1043]  do_group_exit+0x135/0x370
[  492.000169][ T1043]  __x64_sys_exit_group+0x44/0x50
[  492.005459][ T1043]  do_syscall_64+0x103/0x610
[  492.010086][ T1043]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  492.016231][ T1043] RIP: 0033:0x43eea8
[  492.020193][ T1043] Code: 00 00 be 3c 00 00 00 eb 19 66 0f 1f 84 00 00 00 00 00 48 89 d7 89 f0 0f 05 48 3d 00 f0 ff ff 77 21 f4 48 89 d7 44 89 c0 0f 05 <48> 3d 00 f0 ff ff 76 e0 f7 d8 64 41 89 01 eb d8 0f 1f 84 00 00 00
[  492.040426][ T1043] RSP: 002b:00007ffe3a6b3298 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[  492.049030][ T1043] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 000000000043eea8
[  492.057468][ T1043] RDX: 0000000000000000 RSI: 000000000000003c RDI: 0000000000000000
[  492.065504][ T1043] RBP: 00000000004be6a8 R08: 00000000000000e7 R09: ffffffffffffffd0
[  492.073759][ T1043] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  492.082038][ T1043] R13: 00000000006d0180 R14: 0000000000000000 R15: 0000000000000000
[  492.090209][ T1043] 
[  492.090209][ T1043] Showing all locks held in the system:
[  492.098060][ T1043] 1 lock held by khungtaskd/1043:
[  492.103101][ T1043]  #0: 0000000002f19feb (rcu_read_lock){....}, at: debug_show_all_locks+0x5f/0x27e
[  492.113012][ T1043] 1 lock held by rsyslogd/7630:
[  492.118394][ T1043]  #0: 000000004790d668 (&f->f_pos_lock){+.+.}, at: __fdget_pos+0xee/0x110
[  492.127075][ T1043] 2 locks held by getty/7721:
[  492.131943][ T1043]  #0: 000000005b142f20 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[  492.141068][ T1043]  #1: 000000009dbf186a (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b70
[  492.151039][ T1043] 2 locks held by getty/7722:
[  492.155796][ T1043]  #0: 00000000ee877098 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[  492.165079][ T1043]  #1: 00000000e038a222 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b70
[  492.174730][ T1043] 2 locks held by getty/7723:
[  492.179421][ T1043]  #0: 00000000995799d8 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[  492.188469][ T1043]  #1: 000000007543a94b (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b70
[  492.198191][ T1043] 2 locks held by getty/7724:
[  492.202911][ T1043]  #0: 0000000089e28f2c (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[  492.212141][ T1043]  #1: 000000002d9caec3 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b70
[  492.221800][ T1043] 2 locks held by getty/7725:
[  492.226456][ T1043]  #0: 00000000240a84eb (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[  492.235600][ T1043]  #1: 000000004805938f (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b70
[  492.245254][ T1043] 2 locks held by getty/7726:
[  492.249926][ T1043]  #0: 0000000050100a53 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[  492.258952][ T1043]  #1: 00000000badf2793 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b70
[  492.268547][ T1043] 2 locks held by getty/7727:
[  492.273300][ T1043]  #0: 000000006bb5825b (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[  492.282292][ T1043]  #1: 0000000068b15835 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b70
[  492.291926][ T1043] 
[  492.294250][ T1043] =============================================
[  492.294250][ T1043] 
[  492.302775][ T1043] NMI backtrace for cpu 0
[  492.307209][ T1043] CPU: 0 PID: 1043 Comm: khungtaskd Not tainted 5.1.0-rc3+ #49
[  492.314914][ T1043] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  492.325078][ T1043] Call Trace:
[  492.328381][ T1043]  dump_stack+0x172/0x1f0
[  492.332819][ T1043]  nmi_cpu_backtrace.cold+0x63/0xa4
[  492.338131][ T1043]  ? lapic_can_unplug_cpu.cold+0x38/0x38
[  492.343758][ T1043]  nmi_trigger_cpumask_backtrace+0x1be/0x236
[  492.349894][ T1043]  arch_trigger_cpumask_backtrace+0x14/0x20
[  492.355795][ T1043]  watchdog+0x9b7/0xec0
[  492.360247][ T1043]  kthread+0x357/0x430
[  492.364318][ T1043]  ? reset_hung_task_detector+0x30/0x30
[  492.369841][ T1043]  ? kthread_cancel_delayed_work_sync+0x20/0x20
[  492.376060][ T1043]  ret_from_fork+0x3a/0x50
[  492.380614][ T1043] Sending NMI from CPU 0 to CPUs 1:
[  492.386274][    C1] NMI backtrace for cpu 1
[  492.386280][    C1] CPU: 1 PID: 0 Comm: swapper/1 Not tainted 5.1.0-rc3+ #49
[  492.386284][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  492.386287][    C1] RIP: 0010:_nohz_idle_balance+0x35a/0x4d0
[  492.386296][    C1] Code: 81 01 00 00 48 83 c4 68 5b 41 5c 41 5d 41 5e 41 5f 5d c3 31 f6 4c 89 ef e8 f3 f0 ff ff e9 67 ff ff ff 41 bc 01 00 00 00 eb af <8b> 7c 24 5c 45 0f b6 e4 e8 29 ba fd ff 48 8b 44 24 30 48 8d b8 80
[  492.386298][    C1] RSP: 0018:ffff8880ae907df0 EFLAGS: 00000293
[  492.386304][    C1] RAX: 0000000000000007 RBX: dffffc0000000000 RCX: ffffffff832f6e2e
[  492.386307][    C1] RDX: 0000000000000000 RSI: ffffffff832f6e97 RDI: 0000000000000006
[  492.386311][    C1] RBP: ffff8880ae907e80 R08: ffff8880aa28c340 R09: ffffed1015d25a02
[  492.386314][    C1] R10: ffffed1015d25a01 R11: ffff8880ae92d00b R12: 0000000000000000
[  492.386317][    C1] R13: ffff8880ae92da88 R14: ffffffff895e2fd4 R15: 0000000000000040
[  492.386321][    C1] FS:  0000000000000000(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000
[  492.386324][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  492.386327][    C1] CR2: ffffffffff600400 CR3: 000000009231f000 CR4: 00000000001406e0
[  492.386331][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  492.386334][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  492.386336][    C1] Call Trace:
[  492.386337][    C1]  <IRQ>
[  492.386340][    C1]  run_rebalance_domains+0x1d2/0x2e0
[  492.386342][    C1]  __do_softirq+0x266/0x95a
[  492.386344][    C1]  ? sched_clock_cpu+0x1b/0x1b0
[  492.386375][    C1]  irq_exit+0x180/0x1d0
[  492.386378][    C1]  scheduler_ipi+0x3ac/0x5b0
[  492.386380][    C1]  smp_reschedule_interrupt+0x7e/0x460
[  492.386383][    C1]  reschedule_interrupt+0xf/0x20
[  492.386384][    C1]  </IRQ>
[  492.386387][    C1] RIP: 0010:native_safe_halt+0x2/0x10
[  492.386394][    C1] Code: ff ff ff 48 89 c7 48 89 45 d8 e8 49 53 98 fa 48 8b 45 d8 e9 ce fe ff ff 48 89 df e8 38 53 98 fa eb 82 90 90 90 90 90 90 fb f4 <c3> 0f 1f 00 66 2e 0f 1f 84 00 00 00 00 00 f4 c3 90 90 90 90 90 90
[  492.386397][    C1] RSP: 0018:ffff8880aa29fd78 EFLAGS: 00000286 ORIG_RAX: ffffffffffffff02
[  492.386403][    C1] RAX: 1ffffffff11252d9 RBX: ffff8880aa28c340 RCX: 0000000000000000
[  492.386406][    C1] RDX: dffffc0000000000 RSI: 0000000000000006 RDI: ffff8880aa28cbbc
[  492.386410][    C1] RBP: ffff8880aa29fda8 R08: ffff8880aa28c340 R09: 0000000000000000
[  492.386413][    C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000001
[  492.386417][    C1] R13: ffffffff889296b8 R14: 0000000000000001 R15: 0000000000000000
[  492.386419][    C1]  ? default_idle+0x4e/0x330
[  492.386421][    C1]  arch_cpu_idle+0x10/0x20
[  492.386423][    C1]  default_idle_call+0x36/0x90
[  492.386425][    C1]  do_idle+0x386/0x570
[  492.386427][    C1]  ? retint_kernel+0x2d/0x2d
[  492.386429][    C1]  ? arch_cpu_idle_exit+0x80/0x80
[  492.386432][    C1]  cpu_startup_entry+0x1b/0x20
[  492.386434][    C1]  start_secondary+0x360/0x4d0
[  492.386436][    C1]  ? set_cpu_sibling_map+0x1850/0x1850
[  492.386439][    C1]  secondary_startup_64+0xa4/0xb0
[  492.386978][ T1043] Kernel panic - not syncing: hung_task: blocked tasks
[  492.695699][ T1043] CPU: 0 PID: 1043 Comm: khungtaskd Not tainted 5.1.0-rc3+ #49
[  492.703317][ T1043] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  492.713459][ T1043] Call Trace:
[  492.716752][ T1043]  dump_stack+0x172/0x1f0
[  492.721078][ T1043]  panic+0x2cb/0x65c
[  492.725182][ T1043]  ? __warn_printk+0xf3/0xf3
[  492.729773][ T1043]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[  492.735633][ T1043]  ? printk_safe_flush+0xf2/0x140
[  492.740689][ T1043]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  492.746932][ T1043]  ? lapic_can_unplug_cpu.cold+0x38/0x38
[  492.752641][ T1043]  ? nmi_trigger_cpumask_backtrace+0x1a7/0x236
[  492.758945][ T1043]  ? nmi_trigger_cpumask_backtrace+0x19e/0x236
[  492.765107][ T1043]  watchdog+0x9c8/0xec0
[  492.769301][ T1043]  kthread+0x357/0x430
[  492.773377][ T1043]  ? reset_hung_task_detector+0x30/0x30
[  492.778920][ T1043]  ? kthread_cancel_delayed_work_sync+0x20/0x20
[  492.785278][ T1043]  ret_from_fork+0x3a/0x50
[  492.791005][ T1043] Kernel Offset: disabled
[  492.795348][ T1043] Rebooting in 86400 seconds..