Warning: Permanently added '10.128.0.167' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 1004.507262] INFO: task syz-executor412:8108 blocked for more than 140 seconds. [ 1004.507273] Not tainted 4.19.206-syzkaller #0 [ 1004.507277] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1004.507282] syz-executor412 D27344 8108 8106 0x00000004 [ 1004.533965] Call Trace: [ 1004.536551] __schedule+0x887/0x2040 [ 1004.540423] ? io_schedule_timeout+0x140/0x140 [ 1004.545166] ? mark_held_locks+0xa6/0xf0 [ 1004.549340] ? rwsem_down_write_failed+0x3a5/0x760 [ 1004.554376] schedule+0x8d/0x1b0 [ 1004.557804] rwsem_down_write_failed+0x3aa/0x760 [ 1004.562585] ? rwsem_down_read_failed_killable+0x580/0x580 [ 1004.568283] ? do_raw_spin_unlock+0x171/0x230 [ 1004.573052] call_rwsem_down_write_failed+0x13/0x20 [ 1004.578143] ? __lock_acquire+0x2853/0x3ff0 [ 1004.582487] down_write+0x4f/0x90 [ 1004.585951] ? fuse_reverse_inval_entry+0xaa/0x660 [ 1004.591099] fuse_reverse_inval_entry+0xaa/0x660 [ 1004.595900] ? fuse_update_attributes+0xc0/0xc0 [ 1004.600626] ? fuse_dev_do_write+0x24c7/0x2bc0 [ 1004.605239] fuse_dev_do_write+0x251c/0x2bc0 [ 1004.609713] ? futex_wait_queue_me+0x404/0x5e0 [ 1004.614321] ? lock_acquire+0x170/0x3c0 [ 1004.618349] ? mark_held_locks+0xf0/0xf0 [ 1004.622530] ? fuse_dev_read+0x1f0/0x1f0 [ 1004.626577] ? futex_wait+0x48e/0x610 [ 1004.630629] ? lock_downgrade+0x720/0x720 [ 1004.634902] ? check_preemption_disabled+0x41/0x280 [ 1004.640014] ? check_preemption_disabled+0x41/0x280 [ 1004.645066] ? aa_file_perm+0x417/0xd20 [ 1004.649125] fuse_dev_write+0x153/0x1e0 [ 1004.653229] ? fuse_dev_splice_write+0xa00/0xa00 [ 1004.658163] ? do_futex+0x171/0x1880 [ 1004.661891] ? ksys_mount+0xf4/0x130 [ 1004.665589] ? __x64_sys_mount+0xba/0x150 [ 1004.669816] ? do_syscall_64+0xf9/0x620 [ 1004.673808] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1004.679256] ? iov_iter_init+0xb8/0x1d0 [ 1004.683238] ? iov_iter_init+0xb8/0x1d0 [ 1004.687286] __vfs_write+0x51b/0x770 [ 1004.691011] ? kernel_read+0x110/0x110 [ 1004.695103] ? security_file_permission+0x1c0/0x220 [ 1004.700332] vfs_write+0x1f3/0x540 [ 1004.703981] ksys_write+0x12b/0x2a0 [ 1004.707721] ? __ia32_sys_read+0xb0/0xb0 [ 1004.711809] ? trace_hardirqs_off_caller+0x6e/0x210 [ 1004.716987] ? do_syscall_64+0x21/0x620 [ 1004.721074] do_syscall_64+0xf9/0x620 [ 1004.724868] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1004.730148] RIP: 0033:0x44af59 [ 1004.733528] Code: Bad RIP value. [ 1004.736885] RSP: 002b:00007f5e3c411208 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1004.744878] RAX: ffffffffffffffda RBX: 00000000004cb4e8 RCX: 000000000044af59 [ 1004.752354] RDX: 0000000000000029 RSI: 00000000200043c0 RDI: 0000000000000003 [ 1004.760074] RBP: 00000000004cb4e0 R08: 0000000000000000 R09: 0000000000000000 [ 1004.767436] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000004cb4ec [ 1004.774698] R13: 00007ffdf5d1898f R14: 00007f5e3c411300 R15: 0000000000022000 [ 1004.782213] INFO: task syz-executor412:8113 blocked for more than 140 seconds. [ 1004.789783] Not tainted 4.19.206-syzkaller #0 [ 1004.795061] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1004.803196] syz-executor412 D28488 8113 8106 0x00000004 [ 1004.808911] Call Trace: [ 1004.811502] __schedule+0x887/0x2040 [ 1004.815331] ? io_schedule_timeout+0x140/0x140 [ 1004.819967] ? prepare_to_wait_exclusive+0x2d0/0x2d0 [ 1004.825771] schedule+0x8d/0x1b0 [ 1004.829239] request_wait_answer+0x3dc/0x750 [ 1004.833670] ? flush_bg_queue+0x390/0x390 [ 1004.837906] ? wait_woken+0x250/0x250 [ 1004.841922] __fuse_request_send+0x123/0x1c0 [ 1004.846329] fuse_simple_request+0x2e6/0x820 [ 1004.850818] fuse_lookup_name+0x24c/0x5c0 [ 1004.854974] ? fuse_lock_inode+0xaf/0xe0 [ 1004.859099] ? fuse_readdir+0x12f0/0x12f0 [ 1004.864143] fuse_lookup+0xdf/0x410 [ 1004.867836] ? fuse_lookup_name+0x5c0/0x5c0 [ 1004.872837] ? d_alloc+0x1b7/0x230 [ 1004.876379] ? do_raw_spin_unlock+0x171/0x230 [ 1004.880948] ? _raw_spin_unlock+0x29/0x40 [ 1004.885383] ? d_alloc+0x1bc/0x230 [ 1004.889034] __lookup_hash+0x117/0x180 [ 1004.892932] filename_create+0x186/0x490 [ 1004.897087] ? kern_path_mountpoint+0x40/0x40 [ 1004.901606] ? strncpy_from_user+0x2a2/0x350 [ 1004.906086] ? getname_flags+0x25b/0x590 [ 1004.910368] do_mkdirat+0xa0/0x2d0 [ 1004.913987] ? __ia32_sys_mknod+0x120/0x120 [ 1004.918470] ? trace_hardirqs_off_caller+0x6e/0x210 [ 1004.923504] ? do_syscall_64+0x21/0x620 [ 1004.928202] do_syscall_64+0xf9/0x620 [ 1004.932025] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1004.937292] RIP: 0033:0x44af59 [ 1004.940496] Code: Bad RIP value. [ 1004.943862] RSP: 002b:00007f5e3c3f0208 EFLAGS: 00000246 ORIG_RAX: 0000000000000102 [ 1004.951653] RAX: ffffffffffffffda RBX: 00000000004cb4f8 RCX: 000000000044af59 [ 1004.959050] RDX: 0000000000000000 RSI: 0000000020004380 RDI: 00000000ffffff9c [ 1004.966490] RBP: 00000000004cb4f0 R08: 0000000000000000 R09: 0000000000000000 [ 1004.974427] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000004cb4fc [ 1004.982244] R13: 00007ffdf5d1898f R14: 00007f5e3c3f0300 R15: 0000000000022000 [ 1004.989607] [ 1004.989607] Showing all locks held in the system: [ 1004.996479] 1 lock held by khungtaskd/1490: [ 1005.001357] #0: 000000006da82cfa (rcu_read_lock){....}, at: debug_show_all_locks+0x53/0x265 [ 1005.010145] 1 lock held by in:imklog/7808: [ 1005.014388] #0: 00000000965495d9 (&f->f_pos_lock){+.+.}, at: __fdget_pos+0x26f/0x310 [ 1005.022922] 2 locks held by syz-executor412/8108: [ 1005.027834] #0: 00000000181afe93 (&fc->killsb){.+.+}, at: fuse_dev_do_write+0x24c7/0x2bc0 [ 1005.036267] #1: 000000009f9ab0b6 (&type->i_mutex_dir_key#8){+.+.}, at: fuse_reverse_inval_entry+0xaa/0x660 [ 1005.046532] 3 locks held by syz-executor412/8113: [ 1005.051536] #0: 00000000e62e60c8 (sb_writers#11){.+.+}, at: mnt_want_write+0x3a/0xb0 [ 1005.059592] #1: 000000009f9ab0b6 (&type->i_mutex_dir_key#7/1){+.+.}, at: filename_create+0x15a/0x490 [ 1005.069138] #2: 000000004de6e4a2 (&fi->mutex){+.+.}, at: fuse_lock_inode+0xaf/0xe0 [ 1005.077026] [ 1005.078698] ============================================= [ 1005.078698] [ 1005.086263] NMI backtrace for cpu 0 [ 1005.090225] CPU: 0 PID: 1490 Comm: khungtaskd Not tainted 4.19.206-syzkaller #0 [ 1005.097979] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1005.107572] Call Trace: [ 1005.110155] dump_stack+0x1fc/0x2ef [ 1005.113790] nmi_cpu_backtrace.cold+0x63/0xa2 [ 1005.118364] ? lapic_can_unplug_cpu+0x80/0x80 [ 1005.123301] nmi_trigger_cpumask_backtrace+0x1a6/0x1f0 [ 1005.128838] watchdog+0x991/0xe60 [ 1005.132369] ? reset_hung_task_detector+0x30/0x30 [ 1005.137197] kthread+0x33f/0x460 [ 1005.140547] ? kthread_park+0x180/0x180 [ 1005.144518] ret_from_fork+0x24/0x30 [ 1005.148335] Sending NMI from CPU 0 to CPUs 1: [ 1005.152995] NMI backtrace for cpu 1 skipped: idling at native_safe_halt+0xe/0x10 [ 1005.153999] Kernel panic - not syncing: hung_task: blocked tasks [ 1005.166754] CPU: 0 PID: 1490 Comm: khungtaskd Not tainted 4.19.206-syzkaller #0 [ 1005.174360] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1005.183699] Call Trace: [ 1005.186282] dump_stack+0x1fc/0x2ef [ 1005.190000] panic+0x26a/0x50e [ 1005.193181] ? __warn_printk+0xf3/0xf3 [ 1005.197156] ? lapic_can_unplug_cpu+0x80/0x80 [ 1005.201640] ? ___preempt_schedule+0x16/0x18 [ 1005.206143] ? watchdog+0x991/0xe60 [ 1005.209940] ? nmi_trigger_cpumask_backtrace+0x15e/0x1f0 [ 1005.215392] watchdog+0x9a2/0xe60 [ 1005.218927] ? reset_hung_task_detector+0x30/0x30 [ 1005.223761] kthread+0x33f/0x460 [ 1005.227119] ? kthread_park+0x180/0x180 [ 1005.231090] ret_from_fork+0x24/0x30 [ 1005.236324] Kernel Offset: disabled [ 1005.239971] Rebooting in 86400 seconds..