Warning: Permanently added '10.128.1.51' (ECDSA) to the list of known hosts.
executing program
executing program
executing program
executing program
executing program
executing program
syzkaller login: [ 1057.960435] audit: type=1400 audit(1595071796.306:8): avc:  denied  { execmem } for  pid=6351 comm="syz-executor183" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
[ 1288.111317] INFO: task syz-executor183:6358 blocked for more than 140 seconds.
[ 1288.111326]       Not tainted 4.14.184-syzkaller #0
[ 1288.111329] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1288.111334] syz-executor183 D28768  6358   6357 0x00000004
[ 1288.111413] Call Trace:
[ 1288.111507]  __schedule+0x8a6/0x1d70
[ 1288.111564]  ? bad_range+0x255/0x3a0
[ 1288.111579]  ? firmware_map_remove+0x18f/0x18f
[ 1288.111640]  ? __lock_acquire+0x655/0x42a0
[ 1288.111650]  ? __down+0x133/0x280
[ 1288.111656]  schedule+0x8d/0x1b0
[ 1288.111666]  schedule_timeout+0x86c/0xe50
[ 1288.111682]  ? usleep_range+0x130/0x130
[ 1288.111690]  ? __down+0x177/0x280
[ 1288.111703]  ? lock_downgrade+0x6e0/0x6e0
[ 1288.111712]  ? _raw_spin_unlock_irq+0x24/0x90
[ 1288.111721]  ? __down+0x133/0x280
[ 1288.111728]  __down+0x17f/0x280
[ 1288.111739]  ? ww_mutex_lock+0x180/0x180
[ 1288.111746]  ? down+0xd/0x80
[ 1288.111760]  down+0x57/0x80
[ 1288.111796]  console_lock+0x24/0x70
[ 1288.111831]  do_fb_ioctl+0x36a/0x840
[ 1288.111841]  ? lock_downgrade+0x6e0/0x6e0
[ 1288.111849]  ? fb_write+0x550/0x550
[ 1288.111879]  ? avc_has_extended_perms+0x6e2/0xbe0
[ 1288.111892]  ? avc_ss_reset+0x100/0x100
[ 1288.111937]  ? wp_page_copy+0xfb6/0x1bc0
[ 1288.111952]  ? add_mm_counter_fast.part.0+0x30/0x30
[ 1288.111959]  ? __lock_acquire+0x655/0x42a0
[ 1288.111986]  ? debug_check_no_obj_freed+0x27c/0x5fd
[ 1288.112011]  fb_ioctl+0xda/0x120
[ 1288.112018]  ? do_fb_ioctl+0x840/0x840
[ 1288.112034]  do_vfs_ioctl+0x75a/0xfe0
[ 1288.112046]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 1288.112055]  ? ioctl_preallocate+0x1a0/0x1a0
[ 1288.112067]  ? lock_downgrade+0x6e0/0x6e0
[ 1288.112098]  ? security_file_ioctl+0x76/0xb0
[ 1288.112106]  ? security_file_ioctl+0x83/0xb0
[ 1288.112115]  SyS_ioctl+0x7f/0xb0
[ 1288.112122]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 1288.112134]  do_syscall_64+0x1d5/0x640
[ 1288.112149]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 1288.112157] RIP: 0033:0x4414e9
[ 1288.112162] RSP: 002b:00007ffdf9be7278 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1288.112172] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000004414e9
[ 1288.112177] RDX: 0000000020000000 RSI: 0000000000004601 RDI: 0000000000000003
[ 1288.112182] RBP: 00000000006cb018 R08: 00000000004002c8 R09: 00000000004002c8
[ 1288.112187] R10: 0000000000000004 R11: 0000000000000246 R12: 00000000004021e0
[ 1288.112192] R13: 0000000000402270 R14: 0000000000000000 R15: 0000000000000000
[ 1288.112211] INFO: task syz-executor183:6360 blocked for more than 140 seconds.
[ 1288.112217]       Not tainted 4.14.184-syzkaller #0
[ 1288.112220] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1288.112224] syz-executor183 D28928  6360   6353 0x00000004
[ 1288.112244] Call Trace:
[ 1288.112256]  __schedule+0x8a6/0x1d70
[ 1288.112263]  ? bad_range+0x255/0x3a0
[ 1288.112277]  ? firmware_map_remove+0x18f/0x18f
[ 1288.112285]  ? __lock_acquire+0x655/0x42a0
[ 1288.112294]  ? __down+0x133/0x280
[ 1288.112300]  schedule+0x8d/0x1b0
[ 1288.112308]  schedule_timeout+0x86c/0xe50
[ 1288.112320]  ? usleep_range+0x130/0x130
[ 1288.112328]  ? __down+0x177/0x280
[ 1288.112340]  ? lock_downgrade+0x6e0/0x6e0
[ 1288.112349]  ? _raw_spin_unlock_irq+0x24/0x90
[ 1288.112359]  ? __down+0x133/0x280
[ 1288.112366]  __down+0x17f/0x280
[ 1288.112377]  ? ww_mutex_lock+0x180/0x180
[ 1288.112383]  ? down+0xd/0x80
[ 1288.112397]  down+0x57/0x80
[ 1288.112405]  console_lock+0x24/0x70
[ 1288.112412]  do_fb_ioctl+0x36a/0x840
[ 1288.112419]  ? lock_downgrade+0x6e0/0x6e0
[ 1288.112427]  ? fb_write+0x550/0x550
[ 1288.112438]  ? avc_has_extended_perms+0x6e2/0xbe0
[ 1288.112450]  ? avc_ss_reset+0x100/0x100
[ 1288.112460]  ? wp_page_copy+0xfb6/0x1bc0
[ 1288.112476]  ? add_mm_counter_fast.part.0+0x30/0x30
[ 1288.112482]  ? __lock_acquire+0x655/0x42a0
[ 1288.112490]  ? debug_check_no_obj_freed+0x27c/0x5fd
[ 1288.112514]  fb_ioctl+0xda/0x120
[ 1288.112521]  ? do_fb_ioctl+0x840/0x840
[ 1288.112529]  do_vfs_ioctl+0x75a/0xfe0
[ 1288.112538]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 1288.112547]  ? ioctl_preallocate+0x1a0/0x1a0
[ 1288.112559]  ? lock_downgrade+0x6e0/0x6e0
[ 1288.112571]  ? security_file_ioctl+0x76/0xb0
[ 1288.112578]  ? security_file_ioctl+0x83/0xb0
[ 1288.112587]  SyS_ioctl+0x7f/0xb0
[ 1288.112602]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 1288.112612]  do_syscall_64+0x1d5/0x640
[ 1288.112626]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 1288.112632] RIP: 0033:0x4414e9
[ 1288.112636] RSP: 002b:00007ffdf9be7278 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1288.112645] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000004414e9
[ 1288.112650] RDX: 0000000020000000 RSI: 0000000000004601 RDI: 0000000000000003
[ 1288.112655] RBP: 00000000006cb018 R08: 00000000004002c8 R09: 00000000004002c8
[ 1288.112660] R10: 0000000000000004 R11: 0000000000000246 R12: 00000000004021e0
[ 1288.112665] R13: 0000000000402270 R14: 0000000000000000 R15: 0000000000000000
[ 1288.112682] INFO: task syz-executor183:6361 blocked for more than 140 seconds.
[ 1288.112686]       Not tainted 4.14.184-syzkaller #0
[ 1288.112690] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1288.112693] syz-executor183 D28928  6361   6356 0x00000004
[ 1288.112711] Call Trace:
[ 1288.112722]  __schedule+0x8a6/0x1d70
[ 1288.112729]  ? bad_range+0x255/0x3a0
[ 1288.112742]  ? firmware_map_remove+0x18f/0x18f
[ 1288.112751]  ? __lock_acquire+0x655/0x42a0
[ 1288.112760]  ? __down+0x133/0x280
[ 1288.112766]  schedule+0x8d/0x1b0
[ 1288.112774]  schedule_timeout+0x86c/0xe50
[ 1288.112786]  ? usleep_range+0x130/0x130
[ 1288.112794]  ? __down+0x177/0x280
[ 1288.112806]  ? lock_downgrade+0x6e0/0x6e0
[ 1288.112815]  ? _raw_spin_unlock_irq+0x24/0x90
[ 1288.112825]  ? __down+0x133/0x280
[ 1288.112831]  __down+0x17f/0x280
[ 1288.112842]  ? ww_mutex_lock+0x180/0x180
[ 1288.112848]  ? down+0xd/0x80
[ 1288.112862]  down+0x57/0x80
[ 1288.112871]  console_lock+0x24/0x70
[ 1288.112878]  do_fb_ioctl+0x36a/0x840
[ 1288.112885]  ? lock_downgrade+0x6e0/0x6e0
[ 1288.112892]  ? fb_write+0x550/0x550
[ 1288.112903]  ? avc_has_extended_perms+0x6e2/0xbe0
[ 1288.112915]  ? avc_ss_reset+0x100/0x100
[ 1288.112925]  ? wp_page_copy+0xfb6/0x1bc0
[ 1288.112940]  ? add_mm_counter_fast.part.0+0x30/0x30
[ 1288.112947]  ? __lock_acquire+0x655/0x42a0
[ 1288.112954]  ? debug_check_no_obj_freed+0x27c/0x5fd
[ 1288.112979]  fb_ioctl+0xda/0x120
[ 1288.112986]  ? do_fb_ioctl+0x840/0x840
[ 1288.112994]  do_vfs_ioctl+0x75a/0xfe0
[ 1288.113003]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 1288.113012]  ? ioctl_preallocate+0x1a0/0x1a0
[ 1288.113024]  ? lock_downgrade+0x6e0/0x6e0
[ 1288.113036]  ? security_file_ioctl+0x76/0xb0
[ 1288.113044]  ? security_file_ioctl+0x83/0xb0
[ 1288.113053]  SyS_ioctl+0x7f/0xb0
[ 1288.113060]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 1288.113069]  do_syscall_64+0x1d5/0x640
[ 1288.113083]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 1288.113088] RIP: 0033:0x4414e9
[ 1288.113092] RSP: 002b:00007ffdf9be7278 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1288.113101] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000004414e9
[ 1288.113106] RDX: 0000000020000000 RSI: 0000000000004601 RDI: 0000000000000003
[ 1288.113111] RBP: 00000000006cb018 R08: 00000000004002c8 R09: 00000000004002c8
[ 1288.113116] R10: 0000000000000004 R11: 0000000000000246 R12: 00000000004021e0
[ 1288.113121] R13: 0000000000402270 R14: 0000000000000000 R15: 0000000000000000
[ 1288.113139] INFO: task syz-executor183:6362 blocked for more than 140 seconds.
[ 1288.113143]       Not tainted 4.14.184-syzkaller #0
[ 1288.113146] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1288.113150] syz-executor183 D28752  6362   6354 0x00000004
[ 1288.113167] Call Trace:
[ 1288.113179]  __schedule+0x8a6/0x1d70
[ 1288.113194]  ? firmware_map_remove+0x18f/0x18f
[ 1288.113201]  ? lock_downgrade+0x6e0/0x6e0
[ 1288.113212]  schedule+0x8d/0x1b0
[ 1288.113220]  schedule_preempt_disabled+0xf/0x20
[ 1288.113227]  __mutex_lock+0x5f0/0x1430
[ 1288.113236]  ? get_fb_info.part.0+0x5f/0x70
[ 1288.113243]  ? fb_open+0xb7/0x400
[ 1288.113257]  ? __ww_mutex_wakeup_for_backoff+0x210/0x210
[ 1288.113267]  ? __mutex_unlock_slowpath+0x75/0x780
[ 1288.113284]  ? fb_open+0xb7/0x400
[ 1288.113290]  fb_open+0xb7/0x400
[ 1288.113300]  ? get_fb_info.part.0+0x70/0x70
[ 1288.113359]  chrdev_open+0x1fc/0x540
[ 1288.113370]  ? cdev_put.part.0+0x50/0x50
[ 1288.113384]  do_dentry_open+0x44b/0xec0
[ 1288.113393]  ? cdev_put.part.0+0x50/0x50
[ 1288.113403]  ? __inode_permission+0xcd/0x2f0
[ 1288.113412]  vfs_open+0x105/0x220
[ 1288.113425]  path_openat+0xb68/0x2aa0
[ 1288.113442]  ? path_mountpoint+0x960/0x960
[ 1288.113451]  ? trace_hardirqs_on+0x10/0x10
[ 1288.113461]  ? _raw_spin_unlock+0x29/0x40
[ 1288.113472]  do_filp_open+0x18e/0x250
[ 1288.113483]  ? may_open_dev+0xe0/0xe0
[ 1288.113496]  ? lock_acquire+0x170/0x3f0
[ 1288.113504]  ? lock_downgrade+0x6e0/0x6e0
[ 1288.113515]  ? do_raw_spin_unlock+0x164/0x250
[ 1288.113525]  ? __alloc_fd+0x1bf/0x490
[ 1288.113539]  do_sys_open+0x292/0x3e0
[ 1288.113549]  ? filp_open+0x60/0x60
[ 1288.113560]  ? __do_page_fault+0x19a/0xb50
[ 1288.113569]  ? do_syscall_64+0x4c/0x640
[ 1288.113575]  ? SyS_open+0x30/0x30
[ 1288.113585]  do_syscall_64+0x1d5/0x640
[ 1288.113604]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 1288.113610] RIP: 0033:0x4414e9
[ 1288.113615] RSP: 002b:00007ffdf9be7278 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1288.113624] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000004414e9
[ 1288.113629] RDX: 0000000000000000 RSI: 0000000020000180 RDI: ffffffffffffff9c
[ 1288.113634] RBP: 00000000006cb018 R08: 0000000000000004 R09: 00000000004002c8
[ 1288.113639] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000004021e0
[ 1288.113644] R13: 0000000000402270 R14: 0000000000000000 R15: 0000000000000000
[ 1288.113662] INFO: task syz-executor183:6363 blocked for more than 140 seconds.
[ 1288.113666]       Not tainted 4.14.184-syzkaller #0
[ 1288.113669] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1288.113673] syz-executor183 D28928  6363   6352 0x00000004
[ 1288.113691] Call Trace:
[ 1288.113704]  __schedule+0x8a6/0x1d70
[ 1288.113718]  ? firmware_map_remove+0x18f/0x18f
[ 1288.113725]  ? lock_downgrade+0x6e0/0x6e0
[ 1288.113736]  schedule+0x8d/0x1b0
[ 1288.113744]  schedule_preempt_disabled+0xf/0x20
[ 1288.113751]  __mutex_lock+0x5f0/0x1430
[ 1288.113758]  ? get_fb_info.part.0+0x5f/0x70
[ 1288.113765]  ? fb_open+0xb7/0x400
[ 1288.113778]  ? __ww_mutex_wakeup_for_backoff+0x210/0x210
[ 1288.113789]  ? __mutex_unlock_slowpath+0x75/0x780
[ 1288.113806]  ? fb_open+0xb7/0x400
[ 1288.113812]  fb_open+0xb7/0x400
[ 1288.113821]  ? get_fb_info.part.0+0x70/0x70
[ 1288.113829]  chrdev_open+0x1fc/0x540
[ 1288.113838]  ? cdev_put.part.0+0x50/0x50
[ 1288.113852]  do_dentry_open+0x44b/0xec0
[ 1288.113860]  ? cdev_put.part.0+0x50/0x50
[ 1288.113870]  ? __inode_permission+0xcd/0x2f0
[ 1288.113880]  vfs_open+0x105/0x220
[ 1288.113891]  path_openat+0xb68/0x2aa0
[ 1288.113909]  ? path_mountpoint+0x960/0x960
[ 1288.113918]  ? trace_hardirqs_on+0x10/0x10
[ 1288.113928]  ? _raw_spin_unlock+0x29/0x40
[ 1288.113939]  do_filp_open+0x18e/0x250
[ 1288.113949]  ? may_open_dev+0xe0/0xe0
[ 1288.113962]  ? lock_acquire+0x170/0x3f0
[ 1288.113969]  ? lock_downgrade+0x6e0/0x6e0
[ 1288.113981]  ? do_raw_spin_unlock+0x164/0x250
[ 1288.113989]  ? __alloc_fd+0x1bf/0x490
[ 1288.114003]  do_sys_open+0x292/0x3e0
[ 1288.114012]  ? filp_open+0x60/0x60
[ 1288.114022]  ? __do_page_fault+0x19a/0xb50
[ 1288.114030]  ? do_syscall_64+0x4c/0x640
[ 1288.114037]  ? SyS_open+0x30/0x30
[ 1288.114046]  do_syscall_64+0x1d5/0x640
[ 1288.114060]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 1288.114065] RIP: 0033:0x4414e9
[ 1288.114070] RSP: 002b:00007ffdf9be7278 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1288.114078] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000004414e9
[ 1288.114083] RDX: 0000000000000000 RSI: 0000000020000180 RDI: ffffffffffffff9c
[ 1288.114088] RBP: 00000000006cb018 R08: 0000000000000004 R09: 00000000004002c8
[ 1288.114092] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000004021e0
[ 1288.114097] R13: 0000000000402270 R14: 0000000000000000 R15: 0000000000000000
[ 1288.114112] 
[ 1288.114112] Showing all locks held in the system:
[ 1288.114125] 1 lock held by khungtaskd/1056:
[ 1288.114129]  #0:  (tasklist_lock){.+.+}, at: [<ffffffff8146c8d0>] debug_show_all_locks+0x7c/0x21a
[ 1288.114172] 1 lock held by in:imklog/6031:
[ 1288.114175]  #0:  (&f->f_pos_lock){+.+.}, at: [<ffffffff8191e4e6>] __fdget_pos+0xa6/0xc0
[ 1288.114199] 1 lock held by syz-executor183/6362:
[ 1288.114202]  #0:  (&fb_info->lock){+.+.}, at: [<ffffffff83182237>] fb_open+0xb7/0x400
[ 1288.114221] 1 lock held by syz-executor183/6363:
[ 1288.114224]  #0:  (&fb_info->lock){+.+.}, at: [<ffffffff83182237>] fb_open+0xb7/0x400
[ 1288.114241] 
[ 1288.114244] =============================================
[ 1288.114244] 
[ 1288.114249] NMI backtrace for cpu 0
[ 1288.114257] CPU: 0 PID: 1056 Comm: khungtaskd Not tainted 4.14.184-syzkaller #0
[ 1288.114262] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1288.114265] Call Trace:
[ 1288.114306]  dump_stack+0x1b2/0x283
[ 1288.114345]  nmi_cpu_backtrace.cold+0x57/0x93
[ 1288.114371]  ? irq_force_complete_move.cold+0x7b/0x7b
[ 1288.114379]  nmi_trigger_cpumask_backtrace+0x13a/0x17f
[ 1288.114428]  watchdog+0x5e2/0xb80
[ 1288.114439]  ? kthread_flush_work_fn+0x20/0x20
[ 1288.114449]  ? hungtask_pm_notify+0x50/0x50
[ 1288.114459]  kthread+0x30d/0x420
[ 1288.114467]  ? kthread_create_on_node+0xd0/0xd0
[ 1288.114477]  ret_from_fork+0x24/0x30
[ 1288.114494] Sending NMI from CPU 0 to CPUs 1:
[ 1288.115141] NMI backtrace for cpu 1
[ 1288.115146] CPU: 1 PID: 6359 Comm: syz-executor183 Not tainted 4.14.184-syzkaller #0
[ 1288.115150] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1288.115153] task: ffff88808733e640 task.stack: ffff888097d78000
[ 1288.115156] RIP: 0010:bitfill_aligned+0xf3/0x190
[ 1288.115158] RSP: 0000:ffff888097d7f328 EFLAGS: 00000297
[ 1288.115163] RAX: ffff8880000a0238 RBX: ffff8880000a0200 RCX: 0000000000000000
[ 1288.115167] RDX: 0000000000000000 RSI: ffff8880000a0000 RDI: 0000000000001400
[ 1288.115170] RBP: 0000000000000050 R08: 0000000000001400 R09: 0000000000000040
[ 1288.115173] R10: ffffed1014bd798b R11: ffff8880a5ebcc5f R12: ffff8880000a0280
[ 1288.115177] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1288.115180] FS:  0000000001811880(0000) GS:ffff8880aed00000(0000) knlGS:0000000000000000
[ 1288.115183] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1288.115187] CR2: 00000000006cc080 CR3: 00000000a1568000 CR4: 00000000001406e0
[ 1288.115190] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1288.115193] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1288.115195] Call Trace:
[ 1288.115198]  cfb_fillrect+0x3d5/0x720
[ 1288.115200]  ? cfb_fillrect+0x720/0x720
[ 1288.115202]  vga16fb_fillrect+0x61e/0x1880
[ 1288.115205]  ? fb_copy_cmap+0x28e/0x350
[ 1288.115207]  ? vga16fb_setcolreg+0xfe/0x360
[ 1288.115209]  bit_clear_margins+0x2a4/0x480
[ 1288.115212]  ? bit_clear+0x460/0x460
[ 1288.115214]  fbcon_clear_margins+0x274/0x300
[ 1288.115217]  fbcon_switch+0xc4e/0x1700
[ 1288.115219]  ? fbcon_set_font+0x7c0/0x7c0
[ 1288.115221]  ? bit_update_start+0x1f0/0x1f0
[ 1288.115224]  ? fbcon_set_origin+0x1c/0x40
[ 1288.115226]  ? fbcon_scrolldelta+0x1080/0x1080
[ 1288.115229]  redraw_screen+0x332/0x760
[ 1288.115231]  ? set_palette+0x130/0x130
[ 1288.115234]  ? fbcon_set_palette+0x466/0x580
[ 1288.115236]  fbcon_modechanged+0x552/0x800
[ 1288.115239]  fbcon_event_notify+0x11a/0x1750
[ 1288.115241]  ? lock_acquire+0x170/0x3f0
[ 1288.115243]  notifier_call_chain+0x107/0x1a0
[ 1288.115246]  blocking_notifier_call_chain+0x79/0x90
[ 1288.115248]  fb_set_var+0xaad/0xc70
[ 1288.115250]  ? fb_set_suspend+0x110/0x110
[ 1288.115253]  ? lock_acquire+0x170/0x3f0
[ 1288.115255]  ? lock_fb_info+0x1a/0x70
[ 1288.115258]  ? lock_fb_info+0x1a/0x70
[ 1288.115260]  ? __mutex_lock+0x2cb/0x1430
[ 1288.115262]  ? trace_hardirqs_on+0x10/0x10
[ 1288.115265]  ? lock_fb_info+0x1a/0x70
[ 1288.115267]  ? __ww_mutex_wakeup_for_backoff+0x210/0x210
[ 1288.115270]  ? do_fb_ioctl+0x36a/0x840
[ 1288.115272]  do_fb_ioctl+0x3cc/0x840
[ 1288.115274]  ? lock_downgrade+0x6e0/0x6e0
[ 1288.115277]  ? fb_write+0x550/0x550
[ 1288.115280]  ? avc_has_extended_perms+0x6e2/0xbe0
[ 1288.115282]  ? avc_ss_reset+0x100/0x100
[ 1288.115284]  ? wp_page_copy+0xfb6/0x1bc0
[ 1288.115287]  ? add_mm_counter_fast.part.0+0x30/0x30
[ 1288.115289]  ? __lock_acquire+0x655/0x42a0
[ 1288.115292]  ? debug_check_no_obj_freed+0x27c/0x5fd
[ 1288.115294]  fb_ioctl+0xda/0x120
[ 1288.115296]  ? do_fb_ioctl+0x840/0x840
[ 1288.115299]  do_vfs_ioctl+0x75a/0xfe0
[ 1288.115301]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 1288.115304]  ? ioctl_preallocate+0x1a0/0x1a0
[ 1288.115306]  ? lock_downgrade+0x6e0/0x6e0
[ 1288.115309]  ? security_file_ioctl+0x76/0xb0
[ 1288.115311]  ? security_file_ioctl+0x83/0xb0
[ 1288.115313]  SyS_ioctl+0x7f/0xb0
[ 1288.115316]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 1288.115318]  do_syscall_64+0x1d5/0x640
[ 1288.115321]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 1288.115323] RIP: 0033:0x4414e9
[ 1288.115325] RSP: 002b:00007ffdf9be7278 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1288.115331] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000004414e9
[ 1288.115335] RDX: 0000000020000000 RSI: 0000000000004601 RDI: 0000000000000003
[ 1288.115338] RBP: 00000000006cb018 R08: 00000000004002c8 R09: 00000000004002c8
[ 1288.115341] R10: 0000000000000004 R11: 0000000000000246 R12: 00000000004021e0
[ 1288.115345] R13: 0000000000402270 R14: 0000000000000000 R15: 0000000000000000
[ 1288.115346] Code: 49 c1 e4 06 49 01 dc e8 3c a6 3e fe 4c 89 3b 4c 89 7b 08 4c 89 7b 10 4c 89 7b 18 4c 89 7b 20 4c 89 7b 28 48 8d 43 38 4c 89 7b 30 <48> 83 c3 40 4c 89 38 49 39 dc 75 d0 83 e5 07 41 89 ec e8 06 a6 
[ 1288.115510] Kernel panic - not syncing: hung_task: blocked tasks
[ 1288.115519] CPU: 0 PID: 1056 Comm: khungtaskd Not tainted 4.14.184-syzkaller #0
[ 1288.115523] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1288.115526] Call Trace:
[ 1288.115536]  dump_stack+0x1b2/0x283
[ 1288.115549]  panic+0x1f9/0x42d
[ 1288.115558]  ? add_taint.cold+0x16/0x16
[ 1288.115569]  ? printk_safe_flush+0xac/0x110
[ 1288.115583]  watchdog+0x5f3/0xb80
[ 1288.115601]  ? kthread_flush_work_fn+0x20/0x20
[ 1288.115611]  ? hungtask_pm_notify+0x50/0x50
[ 1288.115621]  kthread+0x30d/0x420
[ 1288.115629]  ? kthread_create_on_node+0xd0/0xd0
[ 1288.115638]  ret_from_fork+0x24/0x30
[ 1288.117152] Kernel Offset: disabled