
[[36minfo[39;49m] Using makefile-style concurrent boot in runlevel 2.
[....] Starting enhanced syslogd: rsyslogd[   15.942641][    C1] random: crng init done
[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.1.4' (ECDSA) to the list of known hosts.
executing program
syzkaller login: [  410.262078][   T22] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  410.501887][   T22] usb 1-1: Using ep0 maxpacket: 8
[  410.622079][   T22] usb 1-1: config 0 has an invalid interface number: 28 but max is 0
[  410.630416][   T22] usb 1-1: config 0 has no interface number 0
[  410.637268][   T22] usb 1-1: config 0 interface 28 altsetting 0 has an invalid endpoint with address 0x98, skipping
[  410.648163][   T22] usb 1-1: New USB device found, idVendor=0f11, idProduct=2020, bcdDevice=4a.c9
[  410.657353][   T22] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  410.668140][   T22] usb 1-1: config 0 descriptor??
[  410.716237][   T22] ldusb 1-1:0.28: Interrupt out endpoint not found (using control endpoint instead)
[  410.728914][   T22] ldusb 1-1:0.28: LD USB Device #0 now attached to major 180 minor 0
[  556.141965][   T23] INFO: task syz-executor742:1725 blocked for more than 143 seconds.
[  556.151647][   T23]       Not tainted 5.3.0+ #0
[  556.156737][   T23] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  556.165780][   T23] syz-executor742 D28272  1725   1723 0x00000000
[  556.172538][   T23] Call Trace:
[  556.176301][   T23]  ? __schedule+0x6e1/0x15d0
[  556.182303][   T23]  ? __sched_text_start+0x8/0x8
[  556.187538][   T23]  ? mark_held_locks+0x9f/0xe0
[  556.192530][   T23]  schedule+0xca/0x250
[  556.197101][   T23]  schedule_timeout+0x440/0xb20
[  556.202595][   T23]  ? find_held_lock+0x2d/0x110
[  556.207591][   T23]  ? usleep_range+0x160/0x160
[  556.213101][   T23]  ? __next_timer_interrupt+0x190/0x190
[  556.218905][   T23]  ? mark_held_locks+0x9f/0xe0
[  556.224121][   T23]  ? _raw_spin_unlock_irq+0x24/0x30
[  556.229777][   T23]  wait_for_completion_timeout+0x282/0x3e0
[  556.236315][   T23]  ? wait_for_completion_io+0x3c0/0x3c0
[  556.242367][   T23]  ? wake_up_q+0xf0/0xf0
[  556.247053][   T23]  ? usb_submit_urb+0x6ed/0x13b0
[  556.252292][   T23]  usb_start_wait_urb+0x14b/0x2b0
[  556.257590][   T23]  ? sg_clean+0x230/0x230
[  556.262782][   T23]  ? kasan_unpoison_shadow+0x30/0x40
[  556.268255][   T23]  ? memset+0x20/0x40
[  556.272409][   T23]  usb_control_msg+0x31c/0x4a0
[  556.277730][   T23]  ? usb_start_wait_urb+0x2b0/0x2b0
[  556.283379][   T23]  ? __might_fault+0x192/0x1d0
[  556.288565][   T23]  ld_usb_write+0x856/0xa10
[  556.293381][   T23]  ? _raw_spin_unlock_irqrestore+0x3e/0x50
[  556.299387][   T23]  ? copy_overflow+0x30/0x30
[  556.307666][   T23]  ? putname+0xe1/0x120
[  556.312194][   T23]  ? putname+0xe1/0x120
[  556.316813][   T23]  ? putname+0xe1/0x120
[  556.321361][   T23]  ? rcu_read_lock_sched_held+0x9c/0xd0
[  556.327589][   T23]  ? rcu_read_lock_bh_held+0xb0/0xb0
[  556.333313][   T23]  ? security_file_permission+0x8a/0x370
[  556.339358][   T23]  ? copy_overflow+0x30/0x30
[  556.344610][   T23]  __vfs_write+0x76/0x100
[  556.349272][   T23]  vfs_write+0x262/0x5c0
[  556.354294][   T23]  ksys_write+0x1e8/0x250
[  556.358788][   T23]  ? __ia32_sys_read+0xb0/0xb0
[  556.363754][   T23]  ? hrtimer_nanosleep+0x4f0/0x4f0
[  556.369382][   T23]  ? trace_hardirqs_off_caller+0x55/0x1e0
[  556.375794][   T23]  do_syscall_64+0xb7/0x580
[  556.380692][   T23]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  556.387160][   T23] RIP: 0033:0x440819
[  556.391215][   T23] Code: Bad RIP value.
[  556.395571][   T23] RSP: 002b:00007ffc59c1d2d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  556.404272][   T23] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 0000000000440819
[  556.412719][   T23] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000004
[  556.422549][   T23] RBP: 00000000006cb018 R08: 000000000000000f R09: 00000000004002c8
[  556.430934][   T23] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000004020a0
[  556.439095][   T23] R13: 0000000000402130 R14: 0000000000000000 R15: 0000000000000000
[  556.447699][   T23] 
[  556.447699][   T23] Showing all locks held in the system:
[  556.456312][   T23] 1 lock held by khungtaskd/23:
[  556.461836][   T23]  #0: ffffffff86cff360 (rcu_read_lock){....}, at: debug_show_all_locks+0x53/0x269
[  556.471669][   T23] 1 lock held by rsyslogd/1604:
[  556.476874][   T23] 2 locks held by getty/1694:
[  556.482348][   T23]  #0: ffff8881d90d0090 (&tty->ldisc_sem){++++}, at: tty_ldisc_ref_wait+0x22/0x80
[  556.491964][   T23]  #1: ffffc900004712e0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x223/0x1ae0
[  556.501709][   T23] 2 locks held by getty/1695:
[  556.506755][   T23]  #0: ffff8881d92d5590 (&tty->ldisc_sem){++++}, at: tty_ldisc_ref_wait+0x22/0x80
[  556.516988][   T23]  #1: ffffc9000047d2e0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x223/0x1ae0
[  556.527369][   T23] 2 locks held by getty/1696:
[  556.532480][   T23]  #0: ffff8881d90d3c10 (&tty->ldisc_sem){++++}, at: tty_ldisc_ref_wait+0x22/0x80
[  556.542677][   T23]  #1: ffffc9000045d2e0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x223/0x1ae0
[  556.553188][   T23] 2 locks held by getty/1697:
[  556.558280][   T23]  #0: ffff8881d7506f10 (&tty->ldisc_sem){++++}, at: tty_ldisc_ref_wait+0x22/0x80
[  556.568132][   T23]  #1: ffffc900004752e0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x223/0x1ae0
[  556.578174][   T23] 2 locks held by getty/1698:
[  556.583032][   T23]  #0: ffff8881d905a290 (&tty->ldisc_sem){++++}, at: tty_ldisc_ref_wait+0x22/0x80
[  556.593246][   T23]  #1: ffffc900004652e0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x223/0x1ae0
[  556.604651][   T23] 2 locks held by getty/1699:
[  556.609349][   T23]  #0: ffff8881d7505590 (&tty->ldisc_sem){++++}, at: tty_ldisc_ref_wait+0x22/0x80
[  556.619374][   T23]  #1: ffffc900004792e0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x223/0x1ae0
[  556.629703][   T23] 2 locks held by getty/1700:
[  556.634731][   T23]  #0: ffff8881d9136690 (&tty->ldisc_sem){++++}, at: tty_ldisc_ref_wait+0x22/0x80
[  556.644642][   T23]  #1: ffffc900004452e0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x223/0x1ae0
[  556.654743][   T23] 1 lock held by syz-executor742/1725:
[  556.660399][   T23]  #0: ffff8881d2d7a560 (&dev->mutex#3){+.+.}, at: ld_usb_write+0x111/0xa10
[  556.669594][   T23] 
[  556.672040][   T23] =============================================
[  556.672040][   T23] 
[  556.680773][   T23] NMI backtrace for cpu 0
[  556.685477][   T23] CPU: 0 PID: 23 Comm: khungtaskd Not tainted 5.3.0+ #0
[  556.692693][   T23] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  556.703435][   T23] Call Trace:
[  556.707031][   T23]  dump_stack+0xca/0x13e
[  556.712378][   T23]  ? irq_force_complete_move.cold+0x1c/0x47
[  556.718846][   T23]  nmi_cpu_backtrace.cold+0x55/0x96
[  556.724207][   T23]  ? lapic_can_unplug_cpu.cold+0x44/0x44
[  556.730504][   T23]  nmi_trigger_cpumask_backtrace+0x1b0/0x1c7
[  556.737327][   T23]  watchdog+0x9a4/0xe50
[  556.741897][   T23]  ? reset_hung_task_detector+0x30/0x30
[  556.747492][   T23]  kthread+0x318/0x420
[  556.751752][   T23]  ? kthread_create_on_node+0xf0/0xf0
[  556.757323][   T23]  ret_from_fork+0x24/0x30
[  556.762034][   T23] Sending NMI from CPU 0 to CPUs 1:
[  556.768198][    C1] NMI backtrace for cpu 1 skipped: idling at default_idle+0x28/0x2e0
[  556.768907][   T23] Kernel panic - not syncing: hung_task: blocked tasks
[  556.783862][   T23] CPU: 0 PID: 23 Comm: khungtaskd Not tainted 5.3.0+ #0
[  556.791514][   T23] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  556.802548][   T23] Call Trace:
[  556.806263][   T23]  dump_stack+0xca/0x13e
[  556.810825][   T23]  panic+0x2a3/0x6da
[  556.814822][   T23]  ? add_taint.cold+0x16/0x16
[  556.819509][   T23]  ? cpumask_next+0x1f/0x30
[  556.824085][   T23]  ? printk_safe_flush+0xd9/0x120
[  556.829186][   T23]  ? watchdog+0x9a4/0xe50
[  556.833605][   T23]  ? nmi_trigger_cpumask_backtrace+0x168/0x1c7
[  556.839844][   T23]  watchdog+0x9b5/0xe50
[  556.844363][   T23]  ? reset_hung_task_detector+0x30/0x30
[  556.850048][   T23]  kthread+0x318/0x420
[  556.854451][   T23]  ? kthread_create_on_node+0xf0/0xf0
[  556.860087][   T23]  ret_from_fork+0x24/0x30
[  556.866204][   T23] Kernel Offset: disabled
[  556.871406][   T23] Rebooting in 86400 seconds..