[ OK ] Listening on Load/Save RF Kill Switch Status /dev/rfkill Watch. Starting Load/Save RF Kill Switch Status... [ OK ] Started Update UTMP about System Runlevel Changes. [ 11.917156][ C0] random: crng init done [ 11.918090][ C0] random: 7 urandom warning(s) missed due to ratelimiting Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.56' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 562.457716][ T12] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 562.547868][ T12] usb 1-1: Using ep0 maxpacket: 32 [ 562.667726][ T12] usb 1-1: config 0 has an invalid interface number: 1 but max is 0 [ 562.675835][ T12] usb 1-1: config 0 has no interface number 0 [ 562.682924][ T12] usb 1-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8 [ 562.692053][ T12] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 562.704887][ T12] usb 1-1: config 0 descriptor?? [ 562.754635][ T12] snd_usb_pod 1-1:0.1: Line 6 Pocket POD found [ 562.958308][ T12] snd_usb_pod 1-1:0.1: Line 6 Pocket POD now attached [ 777.632599][ C1] watchdog: BUG: soft lockup - CPU#1 stuck for 123s! [syz-executor545:387] [ 777.641368][ C1] Modules linked in: [ 777.645252][ C1] irq event stamp: 30786 [ 777.649498][ C1] hardirqs last enabled at (30785): [] trace_hardirqs_on_thunk+0x1a/0x1c [ 777.659549][ C1] hardirqs last disabled at (30786): [] trace_hardirqs_off_thunk+0x1a/0x1c [ 777.669689][ C1] softirqs last enabled at (672): [] __do_softirq+0x673/0x950 [ 777.678786][ C1] softirqs last disabled at (657): [] irq_exit+0x178/0x1a0 [ 777.688143][ C1] CPU: 1 PID: 387 Comm: syz-executor545 Not tainted 5.6.0-rc5-syzkaller #0 [ 777.697580][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 777.707649][ C1] RIP: 0010:smp_call_function_single+0x2cf/0x3a0 [ 777.713970][ C1] Code: 5f 5d c3 e8 53 62 0a 00 48 8b 54 24 08 4c 89 f9 8b 7c 24 14 48 8d 74 24 40 e8 cd f9 ff ff 41 89 c4 eb 07 e8 33 62 0a 00 f3 90 <8b> 5c 24 58 31 ff 83 e3 01 89 de e8 c1 63 0a 00 85 db 75 e5 e8 18 [ 777.733566][ C1] RSP: 0018:ffff8881ce2777a0 EFLAGS: 00000293 ORIG_RAX: ffffffffffffff13 [ 777.741968][ C1] RAX: ffff8881c7a7e200 RBX: 0000000000000001 RCX: ffffffff8134f3bf [ 777.749942][ C1] RDX: 0000000000000000 RSI: ffffffff8134f3ad RDI: 0000000000000005 [ 777.757931][ C1] RBP: ffff8881ce277880 R08: ffff8881c7a7e200 R09: ffffed103b646aa9 [ 777.765912][ C1] R10: ffffed103b646aa8 R11: ffff8881db235547 R12: 0000000000000000 [ 777.773882][ C1] R13: 0000000000000001 R14: ffff8881ce55b9c0 R15: ffff8881db333e00 [ 777.781849][ C1] FS: 0000000000000000(0000) GS:ffff8881db300000(0000) knlGS:0000000000000000 [ 777.790774][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 777.797351][ C1] CR2: 0000558745955df0 CR3: 0000000007021000 CR4: 00000000001406e0 [ 777.805314][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 777.813279][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 777.821248][ C1] Call Trace: [ 777.824540][ C1] ? flush_tlb_func_common.constprop.0+0x8a0/0x8a0 [ 777.831033][ C1] ? generic_exec_single+0x370/0x370 [ 777.836309][ C1] ? flush_tlb_func_common.constprop.0+0x8a0/0x8a0 [ 777.842803][ C1] ? rcu_read_lock_bh_held+0xb0/0xb0 [ 777.848078][ C1] ? _find_next_bit.constprop.0+0x1a3/0x200 [ 777.853964][ C1] smp_call_function_many_cond+0x25e/0x900 [ 777.859882][ C1] ? flush_tlb_func_common.constprop.0+0x8a0/0x8a0 [ 777.866383][ C1] ? native_flush_tlb_others+0x3c9/0x4b0 [ 777.872119][ C1] flush_tlb_mm_range+0x1e8/0x3e0 [ 777.877155][ C1] tlb_flush_mmu+0x274/0x630 [ 777.881745][ C1] tlb_finish_mmu+0x93/0x420 [ 777.886329][ C1] exit_mmap+0x298/0x4d0 [ 777.890566][ C1] ? __ia32_sys_munmap+0x80/0x80 [ 777.895497][ C1] mmput+0xce/0x3d0 [ 777.899314][ C1] do_exit+0xa83/0x2c80 [ 777.903459][ C1] ? find_held_lock+0x2d/0x110 [ 777.908215][ C1] ? mm_update_next_owner+0x7a0/0x7a0 [ 777.913579][ C1] ? lock_downgrade+0x6e0/0x6e0 [ 777.918423][ C1] do_group_exit+0x125/0x340 [ 777.923005][ C1] get_signal+0x480/0x2470 [ 777.927413][ C1] ? lock_acquire+0x130/0x340 [ 777.932086][ C1] ? _raw_spin_unlock_irqrestore+0x39/0x40 [ 777.937901][ C1] do_signal+0x88/0x1490 [ 777.942149][ C1] ? free_object+0x5/0x70 [ 777.946494][ C1] ? hrtimer_nanosleep+0x211/0x3a0 [ 777.951606][ C1] ? nanosleep_copyout+0x100/0x100 [ 777.956726][ C1] ? setup_sigcontext+0x820/0x820 [ 777.961772][ C1] ? hrtimer_init_sleeper_on_stack+0x90/0x90 [ 777.967772][ C1] ? put_old_itimerspec32+0x1d0/0x1d0 [ 777.973164][ C1] ? raw_open+0x470/0x470 [ 777.977609][ C1] ? __x64_sys_nanosleep+0x1ed/0x260 [ 777.982896][ C1] ? hrtimer_nanosleep+0x3a0/0x3a0 [ 777.988010][ C1] exit_to_usermode_loop+0x1a2/0x200 [ 777.993294][ C1] do_syscall_64+0x4e0/0x5a0 [ 777.997882][ C1] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 778.003791][ C1] RIP: 0033:0x475981 [ 778.007821][ C1] Code: Bad RIP value. [ 778.011885][ C1] RSP: 002b:00007f07c454ad40 EFLAGS: 00000293 ORIG_RAX: 0000000000000023 [ 778.020305][ C1] RAX: fffffffffffffdfc RBX: 0000000000000003 RCX: 0000000000475981 [ 778.028297][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007f07c454ad50 [ 778.036284][ C1] RBP: 00000000006dbc20 R08: 4f20d4d1e5b1cf4b R09: 92ce12f6911197ee [ 778.044257][ C1] R10: 7057b4b5ff14ebc9 R11: 0000000000000293 R12: 00000000006dbc2c [ 778.052226][ C1] R13: 0001001b02090100 R14: 0000d5e850510e41 R15: 2053434100000112 [ 778.060194][ C1] Sending NMI from CPU 1 to CPUs 0: [ 778.066425][ C1] NMI backtrace for cpu 0 [ 778.066431][ C1] CPU: 0 PID: 0 Comm: swapper/0 Not tainted 5.6.0-rc5-syzkaller #0 [ 778.066439][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 778.066443][ C1] RIP: 0010:line6_midibuf_read+0x4fd/0xa30 [ 778.066458][ C1] Code: 7c 08 84 d2 0f 85 37 04 00 00 48 b8 00 00 00 00 00 fc ff df 48 8b 74 24 10 8b 5d 1c 48 89 f2 83 e6 07 48 c1 ea 03 0f b6 04 02 <40> 38 f0 7f 08 84 c0 0f 85 17 04 00 00 48 8b 44 24 10 88 18 e8 2a [ 778.066462][ C1] RSP: 0018:ffff8881db2099e0 EFLAGS: 00000802 [ 778.066471][ C1] RAX: 0000000000000000 RBX: 00000000000000fe RCX: ffffffff84ba5e44 [ 778.066477][ C1] RDX: 1ffff1103a78e140 RSI: 0000000000000000 RDI: 0000000000000005 [ 778.066484][ C1] RBP: ffff8881d3c708a0 R08: ffffffff8702cc40 R09: ffffed103a78e141 [ 778.066490][ C1] R10: ffffed103a78e140 R11: ffff8881d3c70a00 R12: 0000000000000001 [ 778.066496][ C1] R13: 0000000000000025 R14: 00000000000003db R15: 0000000000000001 [ 778.066502][ C1] FS: 0000000000000000(0000) GS:ffff8881db200000(0000) knlGS:0000000000000000 [ 778.066507][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 778.066514][ C1] CR2: 000055e2df9e52e7 CR3: 00000001c7cab000 CR4: 00000000001406f0 [ 778.066520][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 778.066526][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 778.066529][ C1] Call Trace: [ 778.066532][ C1] [ 778.066536][ C1] line6_data_received+0x318/0x520 [ 778.066540][ C1] ? device_id_show+0x80/0x80 [ 778.066544][ C1] __usb_hcd_giveback_urb+0x29a/0x550 [ 778.066548][ C1] usb_hcd_giveback_urb+0x368/0x420 [ 778.066552][ C1] dummy_timer+0x1258/0x32ae [ 778.066556][ C1] ? dummy_udc_probe+0x930/0x930 [ 778.066561][ C1] ? rcu_read_lock_sched_held+0x9c/0xd0 [ 778.066565][ C1] ? rcu_read_lock_bh_held+0xb0/0xb0 [ 778.066569][ C1] call_timer_fn+0x195/0x6f0 [ 778.066573][ C1] ? dummy_udc_probe+0x930/0x930 [ 778.066577][ C1] ? msleep_interruptible+0x130/0x130 [ 778.066582][ C1] ? rcu_read_lock_sched_held+0x9c/0xd0 [ 778.066586][ C1] ? rcu_read_lock_bh_held+0xb0/0xb0 [ 778.066590][ C1] ? _raw_spin_unlock_irq+0x1f/0x30 [ 778.066594][ C1] ? dummy_udc_probe+0x930/0x930 [ 778.066598][ C1] run_timer_softirq+0x5f9/0x1500 [ 778.066602][ C1] ? add_timer+0x7a0/0x7a0 [ 778.066606][ C1] ? rcu_read_lock_sched_held+0x9c/0xd0 [ 778.066610][ C1] ? rcu_read_lock_bh_held+0xb0/0xb0 [ 778.066614][ C1] __do_softirq+0x21e/0x950 [ 778.066618][ C1] irq_exit+0x178/0x1a0 [ 778.066622][ C1] smp_apic_timer_interrupt+0x141/0x540 [ 778.066626][ C1] apic_timer_interrupt+0xf/0x20 [ 778.066629][ C1] [ 778.066633][ C1] RIP: 0010:default_idle+0x28/0x300 [ 778.066647][ C1] Code: cc cc 41 56 41 55 65 44 8b 2d 44 77 72 7a 41 54 55 53 0f 1f 44 00 00 e8 b6 62 b5 fb e9 07 00 00 00 0f 00 2d ea 0c 53 00 fb f4 <65> 44 8b 2d 20 77 72 7a 0f 1f 44 00 00 5b 5d 41 5c 41 5d 41 5e c3 [ 778.066652][ C1] RSP: 0018:ffffffff87007d80 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13 [ 778.066662][ C1] RAX: 0000000000000007 RBX: ffffffff8702cc40 RCX: 0000000000000000 [ 778.066668][ C1] RDX: 0000000000000000 RSI: 0000000000000006 RDI: ffffffff8702d48c [ 778.066674][ C1] RBP: fffffbfff0e05988 R08: ffffffff8702cc40 R09: 0000000000000000 [ 778.066680][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 778.066687][ C1] R13: 0000000000000000 R14: ffffffff87e607c0 R15: 0000000000000000 [ 778.066690][ C1] do_idle+0x3e0/0x500 [ 778.066694][ C1] ? arch_cpu_idle_exit+0x40/0x40 [ 778.066698][ C1] ? schedule+0xe1/0x2b0 [ 778.066701][ C1] cpu_startup_entry+0x14/0x20 [ 778.066705][ C1] start_kernel+0xe16/0xe5a [ 778.066709][ C1] ? mem_encrypt_init+0x5/0x5 [ 778.066713][ C1] ? x86_family+0x3d/0x50 [ 778.066717][ C1] ? load_ucode_bsp+0x23d/0x27d [ 778.066721][ C1] secondary_startup_64+0xb6/0xc0 [ 778.066730][ C1] Kernel panic - not syncing: softlockup: hung tasks [ 778.445436][ C1] CPU: 1 PID: 387 Comm: syz-executor545 Tainted: G L 5.6.0-rc5-syzkaller #0 [ 778.455399][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 778.465442][ C1] Call Trace: [ 778.468718][ C1] [ 778.471565][ C1] dump_stack+0xef/0x16e [ 778.475801][ C1] panic+0x2aa/0x6e1 [ 778.479685][ C1] ? add_taint.cold+0x16/0x16 [ 778.484357][ C1] ? cpumask_next+0x3c/0x40 [ 778.488859][ C1] ? printk_safe_flush+0xd9/0x120 [ 778.493889][ C1] ? watchdog_timer_fn.cold+0xee/0x134 [ 778.499341][ C1] ? watchdog_timer_fn.cold+0xe5/0x134 [ 778.504788][ C1] watchdog_timer_fn.cold+0xff/0x134 [ 778.510065][ C1] __hrtimer_run_queues+0x32c/0xd20 [ 778.515513][ C1] ? lockup_detector_update_enable+0x90/0x90 [ 778.521500][ C1] ? hrtimer_init+0x2e0/0x2e0 [ 778.526168][ C1] ? ktime_get_update_offsets_now+0x24c/0x320 [ 778.533545][ C1] hrtimer_interrupt+0x2e8/0x730 [ 778.538488][ C1] smp_apic_timer_interrupt+0xfe/0x540 [ 778.543949][ C1] apic_timer_interrupt+0xf/0x20 [ 778.548876][ C1] [ 778.551817][ C1] RIP: 0010:smp_call_function_single+0x2cf/0x3a0 [ 778.558149][ C1] Code: 5f 5d c3 e8 53 62 0a 00 48 8b 54 24 08 4c 89 f9 8b 7c 24 14 48 8d 74 24 40 e8 cd f9 ff ff 41 89 c4 eb 07 e8 33 62 0a 00 f3 90 <8b> 5c 24 58 31 ff 83 e3 01 89 de e8 c1 63 0a 00 85 db 75 e5 e8 18 [ 778.577864][ C1] RSP: 0018:ffff8881ce2777a0 EFLAGS: 00000293 ORIG_RAX: ffffffffffffff13 [ 778.586275][ C1] RAX: ffff8881c7a7e200 RBX: 0000000000000001 RCX: ffffffff8134f3bf [ 778.594238][ C1] RDX: 0000000000000000 RSI: ffffffff8134f3ad RDI: 0000000000000005 [ 778.602201][ C1] RBP: ffff8881ce277880 R08: ffff8881c7a7e200 R09: ffffed103b646aa9 [ 778.610166][ C1] R10: ffffed103b646aa8 R11: ffff8881db235547 R12: 0000000000000000 [ 778.618136][ C1] R13: 0000000000000001 R14: ffff8881ce55b9c0 R15: ffff8881db333e00 [ 778.626107][ C1] ? smp_call_function_single+0x2df/0x3a0 [ 778.631828][ C1] ? smp_call_function_single+0x2cd/0x3a0 [ 778.637543][ C1] ? flush_tlb_func_common.constprop.0+0x8a0/0x8a0 [ 778.644033][ C1] ? generic_exec_single+0x370/0x370 [ 778.649310][ C1] ? flush_tlb_func_common.constprop.0+0x8a0/0x8a0 [ 778.655829][ C1] ? rcu_read_lock_bh_held+0xb0/0xb0 [ 778.661128][ C1] ? _find_next_bit.constprop.0+0x1a3/0x200 [ 778.667022][ C1] smp_call_function_many_cond+0x25e/0x900 [ 778.672825][ C1] ? flush_tlb_func_common.constprop.0+0x8a0/0x8a0 [ 778.679320][ C1] ? native_flush_tlb_others+0x3c9/0x4b0 [ 778.684963][ C1] flush_tlb_mm_range+0x1e8/0x3e0 [ 778.690007][ C1] tlb_flush_mmu+0x274/0x630 [ 778.694593][ C1] tlb_finish_mmu+0x93/0x420 [ 778.699178][ C1] exit_mmap+0x298/0x4d0 [ 778.703432][ C1] ? __ia32_sys_munmap+0x80/0x80 [ 778.708376][ C1] mmput+0xce/0x3d0 [ 778.712188][ C1] do_exit+0xa83/0x2c80 [ 778.716340][ C1] ? find_held_lock+0x2d/0x110 [ 778.721093][ C1] ? mm_update_next_owner+0x7a0/0x7a0 [ 778.726457][ C1] ? lock_downgrade+0x6e0/0x6e0 [ 778.731320][ C1] do_group_exit+0x125/0x340 [ 778.735900][ C1] get_signal+0x480/0x2470 [ 778.740305][ C1] ? lock_acquire+0x130/0x340 [ 778.744973][ C1] ? _raw_spin_unlock_irqrestore+0x39/0x40 [ 778.750769][ C1] do_signal+0x88/0x1490 [ 778.755015][ C1] ? free_object+0x5/0x70 [ 778.759335][ C1] ? hrtimer_nanosleep+0x211/0x3a0 [ 778.764437][ C1] ? nanosleep_copyout+0x100/0x100 [ 778.769538][ C1] ? setup_sigcontext+0x820/0x820 [ 778.774554][ C1] ? hrtimer_init_sleeper_on_stack+0x90/0x90 [ 778.780525][ C1] ? put_old_itimerspec32+0x1d0/0x1d0 [ 778.785890][ C1] ? raw_open+0x470/0x470 [ 778.790208][ C1] ? __x64_sys_nanosleep+0x1ed/0x260 [ 778.795482][ C1] ? hrtimer_nanosleep+0x3a0/0x3a0 [ 778.800584][ C1] exit_to_usermode_loop+0x1a2/0x200 [ 778.805862][ C1] do_syscall_64+0x4e0/0x5a0 [ 778.810443][ C1] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 778.816335][ C1] RIP: 0033:0x475981 [ 778.820248][ C1] Code: Bad RIP value. [ 778.824320][ C1] RSP: 002b:00007f07c454ad40 EFLAGS: 00000293 ORIG_RAX: 0000000000000023 [ 778.832754][ C1] RAX: fffffffffffffdfc RBX: 0000000000000003 RCX: 0000000000475981 [ 778.840726][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007f07c454ad50 [ 778.848695][ C1] RBP: 00000000006dbc20 R08: 4f20d4d1e5b1cf4b R09: 92ce12f6911197ee [ 778.856662][ C1] R10: 7057b4b5ff14ebc9 R11: 0000000000000293 R12: 00000000006dbc2c [ 778.864626][ C1] R13: 0001001b02090100 R14: 0000d5e850510e41 R15: 2053434100000112 [ 779.933908][ C1] Shutting down cpus with NMI [ 779.939426][ C1] Kernel Offset: disabled [ 779.943842][ C1] Rebooting in 86400 seconds..