[ 37.283937][ T27] audit: type=1800 audit(1555418287.623:27): pid=7550 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [ 37.315326][ T27] audit: type=1800 audit(1555418287.623:28): pid=7550 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="ssh" dev="sda1" ino=2417 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. [ 37.879488][ T27] audit: type=1800 audit(1555418288.273:29): pid=7550 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0 [ 37.900468][ T27] audit: type=1800 audit(1555418288.273:30): pid=7550 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0 Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.1.33' (ECDSA) to the list of known hosts. executing program executing program executing program syzkaller login: [ 464.016073][ T1043] INFO: task syz-executor274:7726 blocked for more than 143 seconds. [ 464.024970][ T1043] Not tainted 5.1.0-rc5-next-20190416 #26 [ 464.031526][ T1043] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 464.040375][ T1043] syz-executor274 D28096 7726 7702 0x00000004 [ 464.046808][ T1043] Call Trace: [ 464.050579][ T1043] __schedule+0x813/0x1cc0 [ 464.055144][ T1043] ? trace_hardirqs_on+0x67/0x230 [ 464.060309][ T1043] ? kasan_check_read+0x11/0x20 [ 464.065184][ T1043] ? __sched_text_start+0x8/0x8 [ 464.070132][ T1043] ? __lock_acquire+0x548/0x3fb0 [ 464.075126][ T1043] ? finish_task_switch+0x1f0/0x780 [ 464.080406][ T1043] ? __switch_to_asm+0x40/0x70 [ 464.085174][ T1043] schedule+0x92/0x180 [ 464.089302][ T1043] schedule_timeout+0x717/0xc50 [ 464.094233][ T1043] ? wait_for_completion+0x294/0x440 [ 464.099597][ T1043] ? find_held_lock+0x35/0x130 [ 464.104413][ T1043] ? usleep_range+0x170/0x170 [ 464.109177][ T1043] ? mark_held_locks+0xa4/0xf0 [ 464.113947][ T1043] ? _raw_spin_unlock_irq+0x28/0x90 [ 464.119198][ T1043] ? wait_for_completion+0x294/0x440 [ 464.124497][ T1043] ? _raw_spin_unlock_irq+0x28/0x90 [ 464.130194][ T1043] ? lockdep_hardirqs_on+0x418/0x5d0 [ 464.135699][ T1043] ? trace_hardirqs_on+0x67/0x230 [ 464.140720][ T1043] ? kasan_check_read+0x11/0x20 [ 464.145923][ T1043] wait_for_completion+0x29c/0x440 [ 464.151163][ T1043] ? wait_for_completion_interruptible+0x4b0/0x4b0 [ 464.157836][ T1043] ? wake_up_q+0xf0/0xf0 [ 464.162164][ T1043] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 464.168539][ T1043] ? pcrypt_aead_encrypt+0x372/0x470 [ 464.174029][ T1043] aead_recvmsg+0x1492/0x1ab0 [ 464.179767][ T1043] ? aead_release+0x50/0x50 [ 464.184503][ T1043] ? apparmor_socket_recvmsg+0x2a/0x30 [ 464.190889][ T1043] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 464.197378][ T1043] ? security_socket_recvmsg+0x9b/0xd0 [ 464.203071][ T1043] ? aead_release+0x50/0x50 [ 464.207789][ T1043] sock_recvmsg+0xd0/0x110 [ 464.212573][ T1043] sock_read_iter+0x299/0x3b0 [ 464.218264][ T1043] ? sock_recvmsg+0x110/0x110 [ 464.223043][ T1043] ? fsnotify+0xbc0/0xbc0 [ 464.227618][ T1043] do_iter_readv_writev+0x700/0x8e0 [ 464.232836][ T1043] ? vfs_dedupe_file_range+0x780/0x780 [ 464.239123][ T1043] ? rw_verify_area+0x118/0x360 [ 464.244009][ T1043] do_iter_read+0x27c/0x660 [ 464.248749][ T1043] ? dup_iter+0x260/0x260 [ 464.253103][ T1043] ? lock_downgrade+0x880/0x880 [ 464.258090][ T1043] vfs_readv+0xf0/0x160 [ 464.262271][ T1043] ? compat_rw_copy_check_uvector+0x3f0/0x3f0 [ 464.268403][ T1043] ? __sys_sendmmsg+0x3ac/0x4d0 [ 464.273319][ T1043] ? __fd_install+0x200/0x640 [ 464.278091][ T1043] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 464.284358][ T1043] ? __fget_light+0x1a9/0x230 [ 464.289121][ T1043] do_readv+0x15e/0x370 [ 464.293284][ T1043] ? vfs_readv+0x160/0x160 [ 464.297868][ T1043] ? do_syscall_64+0x26/0x610 [ 464.302562][ T1043] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 464.308996][ T1043] ? do_syscall_64+0x26/0x610 [ 464.314156][ T1043] __x64_sys_readv+0x75/0xb0 [ 464.319054][ T1043] do_syscall_64+0x103/0x610 [ 464.323672][ T1043] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 464.330244][ T1043] RIP: 0033:0x441349 [ 464.334569][ T1043] Code: e8 fc ab 02 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 9b 09 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 464.354386][ T1043] RSP: 002b:00007fff00b777e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000013 [ 464.363005][ T1043] RAX: ffffffffffffffda RBX: 00000000004a23d8 RCX: 0000000000441349 [ 464.371250][ T1043] RDX: 0000000000000001 RSI: 00000000200007c0 RDI: 0000000000000004 [ 464.379253][ T1043] RBP: 000000000004b611 R08: 00000000004002c8 R09: 00000000004002c8 [ 464.387377][ T1043] R10: 00000000004002c8 R11: 0000000000000246 R12: 0000000000402170 [ 464.395378][ T1043] R13: 0000000000402200 R14: 0000000000000000 R15: 0000000000000000 [ 464.403614][ T1043] [ 464.403614][ T1043] Showing all locks held in the system: [ 464.411390][ T1043] 1 lock held by khungtaskd/1043: [ 464.416658][ T1043] #0: 0000000070d10fb6 (rcu_read_lock){....}, at: debug_show_all_locks+0x5f/0x27e [ 464.426091][ T1043] 1 lock held by rsyslogd/7589: [ 464.431055][ T1043] #0: 000000000abb37be (&f->f_pos_lock){+.+.}, at: __fdget_pos+0xee/0x110 [ 464.439845][ T1043] 2 locks held by getty/7679: [ 464.444524][ T1043] #0: 000000008f39d7f8 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 464.453532][ T1043] #1: 000000007237f8b1 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b70 [ 464.463209][ T1043] 2 locks held by getty/7680: [ 464.467910][ T1043] #0: 0000000070def8f7 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 464.476941][ T1043] #1: 0000000088d8cc6c (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b70 [ 464.486557][ T1043] 2 locks held by getty/7681: [ 464.491212][ T1043] #0: 000000002f7bd778 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 464.500214][ T1043] #1: 000000006d324d63 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b70 [ 464.509864][ T1043] 2 locks held by getty/7682: [ 464.514589][ T1043] #0: 000000005aa4d3ae (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 464.523740][ T1043] #1: 0000000008c3a12f (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b70 [ 464.533335][ T1043] 2 locks held by getty/7683: [ 464.538174][ T1043] #0: 000000000a9b6abb (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 464.547160][ T1043] #1: 000000007b08a8d2 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b70 [ 464.556775][ T1043] 2 locks held by getty/7684: [ 464.561544][ T1043] #0: 00000000e9f0a809 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 464.570540][ T1043] #1: 00000000e67bd4fa (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b70 [ 464.580137][ T1043] 2 locks held by getty/7685: [ 464.584799][ T1043] #0: 000000009b641c92 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 464.593832][ T1043] #1: 00000000bf157b62 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b70 [ 464.603429][ T1043] 1 lock held by syz-executor274/7726: [ 464.608927][ T1043] #0: 0000000078be9970 (sk_lock-AF_ALG){+.+.}, at: af_alg_wait_for_data+0x215/0x540 [ 464.618478][ T1043] [ 464.620794][ T1043] ============================================= [ 464.620794][ T1043] [ 464.629411][ T1043] NMI backtrace for cpu 0 [ 464.633796][ T1043] CPU: 0 PID: 1043 Comm: khungtaskd Not tainted 5.1.0-rc5-next-20190416 #26 [ 464.642453][ T1043] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 464.652577][ T1043] Call Trace: [ 464.655933][ T1043] dump_stack+0x172/0x1f0 [ 464.660474][ T1043] nmi_cpu_backtrace.cold+0x63/0xa4 [ 464.665847][ T1043] ? lapic_can_unplug_cpu.cold+0x38/0x38 [ 464.671574][ T1043] nmi_trigger_cpumask_backtrace+0x1be/0x236 [ 464.677543][ T1043] arch_trigger_cpumask_backtrace+0x14/0x20 [ 464.683524][ T1043] watchdog+0x9b7/0xec0 [ 464.687709][ T1043] kthread+0x357/0x430 [ 464.691769][ T1043] ? reset_hung_task_detector+0x30/0x30 [ 464.697303][ T1043] ? kthread_cancel_delayed_work_sync+0x20/0x20 [ 464.703652][ T1043] ret_from_fork+0x3a/0x50 [ 464.708156][ T1043] Sending NMI from CPU 0 to CPUs 1: [ 464.713592][ C1] NMI backtrace for cpu 1 skipped: idling at native_safe_halt+0x2/0x10 [ 464.714426][ T1043] Kernel panic - not syncing: hung_task: blocked tasks [ 464.728694][ T1043] CPU: 0 PID: 1043 Comm: khungtaskd Not tainted 5.1.0-rc5-next-20190416 #26 [ 464.737469][ T1043] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 464.747575][ T1043] Call Trace: [ 464.750867][ T1043] dump_stack+0x172/0x1f0 [ 464.755254][ T1043] panic+0x2cb/0x72b [ 464.759134][ T1043] ? __warn_printk+0xf3/0xf3 [ 464.763712][ T1043] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 464.769459][ T1043] ? printk_safe_flush+0xf2/0x140 [ 464.774538][ T1043] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 464.780781][ T1043] ? lapic_can_unplug_cpu.cold+0x38/0x38 [ 464.786403][ T1043] ? nmi_trigger_cpumask_backtrace+0x1a7/0x236 [ 464.792630][ T1043] ? nmi_trigger_cpumask_backtrace+0x19e/0x236 [ 464.798768][ T1043] watchdog+0x9c8/0xec0 [ 464.803407][ T1043] kthread+0x357/0x430 [ 464.807456][ T1043] ? reset_hung_task_detector+0x30/0x30 [ 464.812977][ T1043] ? kthread_cancel_delayed_work_sync+0x20/0x20 [ 464.819534][ T1043] ret_from_fork+0x3a/0x50 [ 464.825555][ T1043] Kernel Offset: disabled [ 464.829932][ T1043] Rebooting in 86400 seconds..