[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [ 64.839573][ T27] audit: type=1800 audit(1583668706.455:25): pid=9442 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0 [ 64.859589][ T27] audit: type=1800 audit(1583668706.465:26): pid=9442 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0 [ 64.912147][ T27] audit: type=1800 audit(1583668706.465:27): pid=9442 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.19' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 442.944860][ T9596] XFS (loop0): correcting sb_features alignment problem [ 442.952943][ T9596] XFS (loop0): Mounting V4 Filesystem [ 442.958922][ T9596] XFS (loop0): log size 2150998016 bytes too large, maximum size is 2136997888 bytes [ 442.968472][ T9596] XFS (loop0): Log size out of supported range. [ 442.974864][ T9596] XFS (loop0): Continuing onwards, but if log hangs are experienced then please report this message in the bug report. [ 442.988419][ T9596] XFS (loop0): totally zeroed log [ 442.994254][ T2793] XFS (loop0): Metadata corruption detected at xfs_agf_verify+0x55c/0x9e0, xfs_agf block 0x1 [ 443.004669][ T2793] XFS (loop0): Unmount and run xfs_repair [ 443.010383][ T2793] XFS (loop0): First 128 bytes of corrupted metadata buffer: [ 443.017835][ T2793] 00000000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 443.026819][ T2793] 00000010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 443.035738][ T2793] 00000020: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 443.044650][ T2793] 00000030: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 443.053600][ T2793] 00000040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 443.062508][ T2793] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 443.071500][ T2793] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 443.080422][ T2793] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 443.089430][ T9596] XFS (loop0): metadata I/O error in "xfs_read_agf+0x1e6/0x540" at daddr 0x1 len 1 error 117 [ 592.712213][ T1094] INFO: task syz-executor665:9596 blocked for more than 143 seconds. [ 592.720436][ T1094] Not tainted 5.6.0-rc4-syzkaller #0 [ 592.726344][ T1094] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 592.735516][ T1094] syz-executor665 D26976 9596 9594 0x00004000 [ 592.741837][ T1094] Call Trace: [ 592.745310][ T1094] ? __schedule+0x934/0x1f90 [ 592.749976][ T1094] ? xlog_grant_head_wait+0x26a/0xd40 [ 592.755437][ T1094] ? __sched_text_start+0x8/0x8 [ 592.760340][ T1094] ? rcu_read_lock_sched_held+0x9c/0xd0 [ 592.765965][ T1094] schedule+0xd0/0x2a0 [ 592.770041][ T1094] xlog_grant_head_wait+0x422/0xd40 [ 592.775289][ T1094] xlog_grant_head_check+0x3b9/0x410 [ 592.780571][ T1094] ? xlog_grant_head_wait+0xd40/0xd40 [ 592.786008][ T1094] ? rcu_read_lock_any_held.part.0+0x50/0x50 [ 592.791991][ T1094] xfs_log_reserve+0x34b/0xac0 [ 592.796901][ T1094] ? xlog_ticket_alloc+0x440/0x440 [ 592.802014][ T1094] xfs_log_write_unmount_record+0x167/0x880 [ 592.808001][ T1094] ? xfs_log_reserve+0xac0/0xac0 [ 592.813056][ T1094] ? lock_downgrade+0x7f0/0x7f0 [ 592.817889][ T1094] ? do_raw_spin_lock+0x129/0x2e0 [ 592.822973][ T1094] ? rwlock_bug.part.0+0x90/0x90 [ 592.827908][ T1094] ? do_raw_spin_unlock+0x171/0x260 [ 592.833142][ T1094] ? _raw_spin_unlock+0x24/0x40 [ 592.837989][ T1094] ? xfs_log_force+0x837/0xd60 [ 592.843024][ T1094] ? xlog_commit_record+0x1c0/0x1c0 [ 592.848229][ T1094] ? xfs_log_quiesce+0x155/0x510 [ 592.853278][ T1094] ? lockdep_hardirqs_on+0x417/0x5d0 [ 592.858568][ T1094] xfs_log_quiesce+0x397/0x510 [ 592.864045][ T1094] ? xfs_log_write_unmount_record+0x880/0x880 [ 592.870133][ T1094] ? xfs_check_summary_counts+0x1d0/0x4e0 [ 592.875938][ T1094] ? xfs_check_sizes+0x3f0/0x3f0 [ 592.880882][ T1094] ? xlog_cil_init_post_recovery+0x7b/0x1a0 [ 592.887036][ T1094] xfs_log_unmount+0x1d/0xb0 [ 592.891625][ T1094] xfs_mountfs+0x15ea/0x1f80 [ 592.896409][ T1094] ? xfs_default_resblks+0x60/0x60 [ 592.901641][ T1094] ? init_timer_key+0xa6/0x390 [ 592.906545][ T1094] ? queue_work_node+0x370/0x370 [ 592.911487][ T1094] ? lockdep_init_map+0x1b0/0x6c0 [ 592.916699][ T1094] ? xfs_mru_cache_create+0x473/0x580 [ 592.922191][ T1094] ? xfs_filestream_get_ag+0x50/0x50 [ 592.927466][ T1094] xfs_fc_fill_super+0x89b/0x1220 [ 592.932638][ T1094] get_tree_bdev+0x3f8/0x710 [ 592.937236][ T1094] ? xfs_mount_free+0x80/0x80 [ 592.941901][ T1094] vfs_get_tree+0x89/0x2f0 [ 592.946432][ T1094] do_mount+0x1306/0x1a60 [ 592.950788][ T1094] ? copy_mount_string+0x40/0x40 [ 592.955837][ T1094] ? _copy_from_user+0x123/0x190 [ 592.960780][ T1094] __x64_sys_mount+0x18f/0x230 [ 592.965628][ T1094] do_syscall_64+0xf6/0x7d0 [ 592.970136][ T1094] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 592.976064][ T1094] RIP: 0033:0x44761a [ 592.979969][ T1094] Code: Bad RIP value. [ 592.984113][ T1094] RSP: 002b:00007ffdba793dd8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 592.993031][ T1094] RAX: ffffffffffffffda RBX: 00007ffdba793fb0 RCX: 000000000044761a [ 593.001001][ T1094] RDX: 00007ffdba793e20 RSI: 0000000020000000 RDI: 00007ffdba793e40 [ 593.009070][ T1094] RBP: 0000000000000000 R08: 00007ffdba793e80 R09: 0000000000000000 [ 593.017102][ T1094] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000402900 [ 593.025159][ T1094] R13: 0000000000402990 R14: 0000000000000000 R15: 0000000000000000 [ 593.033221][ T1094] [ 593.033221][ T1094] Showing all locks held in the system: [ 593.040934][ T1094] 1 lock held by khungtaskd/1094: [ 593.046073][ T1094] #0: ffffffff897accc0 (rcu_read_lock){....}, at: debug_show_all_locks+0x53/0x260 [ 593.055491][ T1094] 1 lock held by rsyslogd/9480: [ 593.060325][ T1094] #0: ffff8880a0053920 (&f->f_pos_lock){+.+.}, at: __fdget_pos+0xe3/0x100 [ 593.069168][ T1094] 2 locks held by getty/9570: [ 593.073973][ T1094] #0: ffff88809ef9d090 (&tty->ldisc_sem){++++}, at: tty_ldisc_ref_wait+0x22/0x80 [ 593.083316][ T1094] #1: ffffc9000188b2e0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x21d/0x1b30 [ 593.093063][ T1094] 2 locks held by getty/9571: [ 593.097726][ T1094] #0: ffff8880a8ddb090 (&tty->ldisc_sem){++++}, at: tty_ldisc_ref_wait+0x22/0x80 [ 593.107075][ T1094] #1: ffffc9000185b2e0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x21d/0x1b30 [ 593.116745][ T1094] 2 locks held by getty/9572: [ 593.121407][ T1094] #0: ffff8880a60ea090 (&tty->ldisc_sem){++++}, at: tty_ldisc_ref_wait+0x22/0x80 [ 593.131411][ T1094] #1: ffffc9000183b2e0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x21d/0x1b30 [ 593.141052][ T1094] 2 locks held by getty/9573: [ 593.145779][ T1094] #0: ffff88809edae090 (&tty->ldisc_sem){++++}, at: tty_ldisc_ref_wait+0x22/0x80 [ 593.155099][ T1094] #1: ffffc9000182b2e0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x21d/0x1b30 [ 593.164806][ T1094] 2 locks held by getty/9574: [ 593.169459][ T1094] #0: ffff8880a19b7090 (&tty->ldisc_sem){++++}, at: tty_ldisc_ref_wait+0x22/0x80 [ 593.178709][ T1094] #1: ffffc9000184b2e0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x21d/0x1b30 [ 593.188375][ T1094] 2 locks held by getty/9575: [ 593.193073][ T1094] #0: ffff88808d9d3090 (&tty->ldisc_sem){++++}, at: tty_ldisc_ref_wait+0x22/0x80 [ 593.202348][ T1094] #1: ffffc9000186b2e0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x21d/0x1b30 [ 593.211901][ T1094] 2 locks held by getty/9576: [ 593.216658][ T1094] #0: ffff8880a7030090 (&tty->ldisc_sem){++++}, at: tty_ldisc_ref_wait+0x22/0x80 [ 593.225941][ T1094] #1: ffffc900017cb2e0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x21d/0x1b30 [ 593.235573][ T1094] 1 lock held by syz-executor665/9596: [ 593.241019][ T1094] #0: ffff8880a44700d8 (&type->s_umount_key#40/1){+.+.}, at: alloc_super+0x152/0x910 [ 593.250660][ T1094] [ 593.253468][ T1094] ============================================= [ 593.253468][ T1094] [ 593.261869][ T1094] NMI backtrace for cpu 1 [ 593.266252][ T1094] CPU: 1 PID: 1094 Comm: khungtaskd Not tainted 5.6.0-rc4-syzkaller #0 [ 593.274476][ T1094] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 593.284519][ T1094] Call Trace: [ 593.287870][ T1094] dump_stack+0x188/0x20d [ 593.292195][ T1094] nmi_cpu_backtrace.cold+0x70/0xb1 [ 593.297409][ T1094] ? lapic_can_unplug_cpu.cold+0x3b/0x3b [ 593.303020][ T1094] nmi_trigger_cpumask_backtrace+0x231/0x27e [ 593.309020][ T1094] watchdog+0xa8c/0x1010 [ 593.313242][ T1094] ? reset_hung_task_detector+0x30/0x30 [ 593.318764][ T1094] kthread+0x357/0x430 [ 593.322809][ T1094] ? kthread_mod_delayed_work+0x1a0/0x1a0 [ 593.328514][ T1094] ret_from_fork+0x24/0x30 [ 593.333066][ T1094] Sending NMI from CPU 1 to CPUs 0: [ 593.338335][ C0] NMI backtrace for cpu 0 skipped: idling at native_safe_halt+0xe/0x10 [ 593.339300][ T1094] Kernel panic - not syncing: hung_task: blocked tasks [ 593.353418][ T1094] CPU: 1 PID: 1094 Comm: khungtaskd Not tainted 5.6.0-rc4-syzkaller #0 [ 593.361639][ T1094] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 593.371669][ T1094] Call Trace: [ 593.374954][ T1094] dump_stack+0x188/0x20d [ 593.379323][ T1094] panic+0x2e3/0x75c [ 593.383196][ T1094] ? add_taint.cold+0x16/0x16 [ 593.387854][ T1094] ? lapic_can_unplug_cpu.cold+0x3b/0x3b [ 593.393466][ T1094] ? ___preempt_schedule+0x16/0x18 [ 593.398567][ T1094] ? watchdog+0xa8c/0x1010 [ 593.402961][ T1094] ? nmi_trigger_cpumask_backtrace+0x214/0x27e [ 593.409103][ T1094] watchdog+0xa9d/0x1010 [ 593.413326][ T1094] ? reset_hung_task_detector+0x30/0x30 [ 593.418847][ T1094] kthread+0x357/0x430 [ 593.422892][ T1094] ? kthread_mod_delayed_work+0x1a0/0x1a0 [ 593.428589][ T1094] ret_from_fork+0x24/0x30 [ 593.434530][ T1094] Kernel Offset: disabled [ 593.438872][ T1094] Rebooting in 86400 seconds..