[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   75.258314][   T27] audit: type=1800 audit(1579231476.170:25): pid=9640 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0
[   75.278358][   T27] audit: type=1800 audit(1579231476.180:26): pid=9640 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0
[   75.331936][   T27] audit: type=1800 audit(1579231476.180:27): pid=9640 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.1.2' (ECDSA) to the list of known hosts.
executing program
executing program
executing program
executing program
executing program
executing program
syzkaller login: [  562.140382][  T776] INFO: task syz-executor035:9802 blocked for more than 143 seconds.
[  562.140406][  T776]       Not tainted 5.5.0-rc6-syzkaller #0
[  562.140412][  T776] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  562.140419][  T776] syz-executor035 D28280  9802   9800 0x20020004
[  562.140473][  T776] Call Trace:
[  562.140633][  T776]  __schedule+0x934/0x1f90
[  562.140659][  T776]  ? __sched_text_start+0x8/0x8
[  562.140674][  T776]  ? lock_downgrade+0x920/0x920
[  562.140692][  T776]  ? rwlock_bug.part.0+0x90/0x90
[  562.140716][  T776]  schedule+0xdc/0x2b0
[  562.140738][  T776]  schedule_preempt_disabled+0x13/0x20
[  562.140755][  T776]  __mutex_lock+0x7ab/0x13c0
[  562.140776][  T776]  ? fb_open+0xd7/0x450
[  562.140799][  T776]  ? mutex_trylock+0x2d0/0x2d0
[  562.140817][  T776]  ? __kasan_check_write+0x14/0x20
[  562.140835][  T776]  ? __mutex_unlock_slowpath+0xf0/0x6a0
[  562.140848][  T776]  ? chrdev_open+0xca/0x6b0
[  562.140883][  T776]  mutex_lock_nested+0x16/0x20
[  562.140901][  T776]  ? mutex_lock_nested+0x16/0x20
[  562.140917][  T776]  fb_open+0xd7/0x450
[  562.140937][  T776]  ? get_fb_info.part.0+0x80/0x80
[  562.140953][  T776]  chrdev_open+0x245/0x6b0
[  562.140972][  T776]  ? cdev_put.part.0+0x50/0x50
[  562.140993][  T776]  ? security_file_open+0x87/0x300
[  562.141016][  T776]  do_dentry_open+0x4e6/0x1380
[  562.141029][  T776]  ? __kasan_check_read+0x11/0x20
[  562.141044][  T776]  ? cdev_put.part.0+0x50/0x50
[  562.141067][  T776]  ? chown_common+0x5c0/0x5c0
[  562.141086][  T776]  ? inode_permission+0xb4/0x520
[  562.141106][  T776]  vfs_open+0xa0/0xd0
[  562.141125][  T776]  path_openat+0x118b/0x3180
[  562.141157][  T776]  ? path_lookupat.isra.0+0x470/0x470
[  562.141171][  T776]  ? __lock_acquire+0x16f2/0x4a00
[  562.141194][  T776]  ? __alloc_fd+0x487/0x620
[  562.141217][  T776]  do_filp_open+0x1a1/0x280
[  562.141237][  T776]  ? may_open_dev+0x100/0x100
[  562.141267][  T776]  ? do_raw_spin_unlock+0x181/0x270
[  562.141301][  T776]  do_sys_open+0x3fe/0x5d0
[  562.141319][  T776]  ? filp_open+0x80/0x80
[  562.141342][  T776]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  562.141365][  T776]  ? do_fast_syscall_32+0xd1/0xe16
[  562.141398][  T776]  ? entry_SYSENTER_compat+0x70/0x7f
[  562.141415][  T776]  ? do_fast_syscall_32+0xd1/0xe16
[  562.141436][  T776]  __ia32_compat_sys_openat+0x98/0xf0
[  562.141457][  T776]  do_fast_syscall_32+0x27b/0xe16
[  562.141479][  T776]  entry_SYSENTER_compat+0x70/0x7f
[  562.141515][  T776] RIP: 0023:0xf7fc5a39
[  562.141652][  T776] Code: Bad RIP value.
[  562.141662][  T776] RSP: 002b:00000000ffbc6f8c EFLAGS: 00000207 ORIG_RAX: 0000000000000127
[  562.141677][  T776] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000020000180
[  562.141686][  T776] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000080bc5bf
[  562.141695][  T776] RBP: 0000000000000012 R08: 0000000000000000 R09: 0000000000000000
[  562.141704][  T776] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  562.141713][  T776] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  562.141741][  T776] INFO: task syz-executor035:9803 blocked for more than 143 seconds.
[  562.141750][  T776]       Not tainted 5.5.0-rc6-syzkaller #0
[  562.141757][  T776] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  562.141763][  T776] syz-executor035 D28280  9803   9799 0x20020004
[  562.141785][  T776] Call Trace:
[  562.141807][  T776]  __schedule+0x934/0x1f90
[  562.141831][  T776]  ? __sched_text_start+0x8/0x8
[  562.141844][  T776]  ? lock_downgrade+0x920/0x920
[  562.141861][  T776]  ? rwlock_bug.part.0+0x90/0x90
[  562.141885][  T776]  schedule+0xdc/0x2b0
[  562.141907][  T776]  schedule_preempt_disabled+0x13/0x20
[  562.141924][  T776]  __mutex_lock+0x7ab/0x13c0
[  562.141943][  T776]  ? fb_open+0xd7/0x450
[  562.141966][  T776]  ? mutex_trylock+0x2d0/0x2d0
[  562.141983][  T776]  ? __kasan_check_write+0x14/0x20
[  562.142001][  T776]  ? __mutex_unlock_slowpath+0xf0/0x6a0
[  562.142016][  T776]  ? chrdev_open+0xca/0x6b0
[  562.142050][  T776]  mutex_lock_nested+0x16/0x20
[  562.142071][  T776]  ? mutex_lock_nested+0x16/0x20
[  562.142087][  T776]  fb_open+0xd7/0x450
[  562.142108][  T776]  ? get_fb_info.part.0+0x80/0x80
[  562.142121][  T776]  chrdev_open+0x245/0x6b0
[  562.142139][  T776]  ? cdev_put.part.0+0x50/0x50
[  562.142159][  T776]  ? security_file_open+0x87/0x300
[  562.142182][  T776]  do_dentry_open+0x4e6/0x1380
[  562.142196][  T776]  ? __kasan_check_read+0x11/0x20
[  562.142211][  T776]  ? cdev_put.part.0+0x50/0x50
[  562.142240][  T776]  ? chown_common+0x5c0/0x5c0
[  562.142259][  T776]  ? inode_permission+0xb4/0x520
[  562.142279][  T776]  vfs_open+0xa0/0xd0
[  562.142297][  T776]  path_openat+0x118b/0x3180
[  562.142329][  T776]  ? path_lookupat.isra.0+0x470/0x470
[  562.142347][  T776]  ? __lock_acquire+0x16f2/0x4a00
[  562.142370][  T776]  ? __alloc_fd+0x487/0x620
[  562.142394][  T776]  do_filp_open+0x1a1/0x280
[  562.142413][  T776]  ? may_open_dev+0x100/0x100
[  562.142443][  T776]  ? do_raw_spin_unlock+0x181/0x270
[  562.142478][  T776]  do_sys_open+0x3fe/0x5d0
[  562.142496][  T776]  ? filp_open+0x80/0x80
[  562.142517][  T776]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  562.142535][  T776]  ? do_fast_syscall_32+0xd1/0xe16
[  562.142551][  T776]  ? entry_SYSENTER_compat+0x70/0x7f
[  562.142568][  T776]  ? do_fast_syscall_32+0xd1/0xe16
[  562.142589][  T776]  __ia32_compat_sys_openat+0x98/0xf0
[  562.142610][  T776]  do_fast_syscall_32+0x27b/0xe16
[  562.142632][  T776]  entry_SYSENTER_compat+0x70/0x7f
[  562.142643][  T776] RIP: 0023:0xf7fc5a39
[  562.142659][  T776] Code: Bad RIP value.
[  562.142667][  T776] RSP: 002b:00000000ffbc6f8c EFLAGS: 00000207 ORIG_RAX: 0000000000000127
[  562.142682][  T776] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000020000180
[  562.142691][  T776] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000080bc5bf
[  562.142700][  T776] RBP: 0000000000000012 R08: 0000000000000000 R09: 0000000000000000
[  562.142709][  T776] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  562.142718][  T776] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  562.142746][  T776] INFO: task syz-executor035:9804 blocked for more than 143 seconds.
[  562.142754][  T776]       Not tainted 5.5.0-rc6-syzkaller #0
[  562.142760][  T776] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  562.142767][  T776] syz-executor035 D28280  9804   9801 0x20024004
[  562.142788][  T776] Call Trace:
[  562.142810][  T776]  __schedule+0x934/0x1f90
[  562.142834][  T776]  ? __sched_text_start+0x8/0x8
[  562.142847][  T776]  ? lock_downgrade+0x920/0x920
[  562.142865][  T776]  ? rwlock_bug.part.0+0x90/0x90
[  562.142889][  T776]  schedule+0xdc/0x2b0
[  562.142910][  T776]  schedule_preempt_disabled+0x13/0x20
[  562.142928][  T776]  __mutex_lock+0x7ab/0x13c0
[  562.142947][  T776]  ? fb_open+0xd7/0x450
[  562.142970][  T776]  ? mutex_trylock+0x2d0/0x2d0
[  562.142988][  T776]  ? __kasan_check_write+0x14/0x20
[  562.143006][  T776]  ? __mutex_unlock_slowpath+0xf0/0x6a0
[  562.143020][  T776]  ? chrdev_open+0xca/0x6b0
[  562.143054][  T776]  mutex_lock_nested+0x16/0x20
[  562.143072][  T776]  ? mutex_lock_nested+0x16/0x20
[  562.143088][  T776]  fb_open+0xd7/0x450
[  562.143108][  T776]  ? get_fb_info.part.0+0x80/0x80
[  562.143121][  T776]  chrdev_open+0x245/0x6b0
[  562.143139][  T776]  ? cdev_put.part.0+0x50/0x50
[  562.143159][  T776]  ? security_file_open+0x87/0x300
[  562.143181][  T776]  do_dentry_open+0x4e6/0x1380
[  562.143195][  T776]  ? __kasan_check_read+0x11/0x20
[  562.143210][  T776]  ? cdev_put.part.0+0x50/0x50
[  562.143232][  T776]  ? chown_common+0x5c0/0x5c0
[  562.143252][  T776]  ? inode_permission+0xb4/0x520
[  562.143272][  T776]  vfs_open+0xa0/0xd0
[  562.143290][  T776]  path_openat+0x118b/0x3180
[  562.143323][  T776]  ? path_lookupat.isra.0+0x470/0x470
[  562.143336][  T776]  ? __lock_acquire+0x16f2/0x4a00
[  562.143364][  T776]  ? __alloc_fd+0x487/0x620
[  562.143388][  T776]  do_filp_open+0x1a1/0x280
[  562.143407][  T776]  ? may_open_dev+0x100/0x100
[  562.143437][  T776]  ? do_raw_spin_unlock+0x181/0x270
[  562.143472][  T776]  do_sys_open+0x3fe/0x5d0
[  562.143490][  T776]  ? filp_open+0x80/0x80
[  562.143512][  T776]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  562.143530][  T776]  ? do_fast_syscall_32+0xd1/0xe16
[  562.143546][  T776]  ? entry_SYSENTER_compat+0x70/0x7f
[  562.143562][  T776]  ? do_fast_syscall_32+0xd1/0xe16
[  562.143583][  T776]  __ia32_compat_sys_openat+0x98/0xf0
[  562.143603][  T776]  do_fast_syscall_32+0x27b/0xe16
[  562.143625][  T776]  entry_SYSENTER_compat+0x70/0x7f
[  562.143636][  T776] RIP: 0023:0xf7fc5a39
[  562.143650][  T776] Code: Bad RIP value.
[  562.143658][  T776] RSP: 002b:00000000ffbc6f8c EFLAGS: 00000207 ORIG_RAX: 0000000000000127
[  562.143672][  T776] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000020000180
[  562.143681][  T776] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000080bc5bf
[  562.143690][  T776] RBP: 0000000000000012 R08: 0000000000000000 R09: 0000000000000000
[  562.143699][  T776] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  562.143708][  T776] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  562.143735][  T776] INFO: task syz-executor035:9805 blocked for more than 143 seconds.
[  562.143744][  T776]       Not tainted 5.5.0-rc6-syzkaller #0
[  562.143750][  T776] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  562.143756][  T776] syz-executor035 D28280  9805   9798 0x20024004
[  562.143776][  T776] Call Trace:
[  562.143797][  T776]  __schedule+0x934/0x1f90
[  562.143821][  T776]  ? __sched_text_start+0x8/0x8
[  562.143834][  T776]  ? lock_downgrade+0x920/0x920
[  562.143850][  T776]  ? rwlock_bug.part.0+0x90/0x90
[  562.143874][  T776]  schedule+0xdc/0x2b0
[  562.143896][  T776]  schedule_preempt_disabled+0x13/0x20
[  562.143913][  T776]  __mutex_lock+0x7ab/0x13c0
[  562.143932][  T776]  ? fb_open+0xd7/0x450
[  562.143955][  T776]  ? mutex_trylock+0x2d0/0x2d0
[  562.143972][  T776]  ? __kasan_check_write+0x14/0x20
[  562.143991][  T776]  ? __mutex_unlock_slowpath+0xf0/0x6a0
[  562.144005][  T776]  ? chrdev_open+0xca/0x6b0
[  562.144039][  T776]  mutex_lock_nested+0x16/0x20
[  562.144056][  T776]  ? mutex_lock_nested+0x16/0x20
[  562.144072][  T776]  fb_open+0xd7/0x450
[  562.144092][  T776]  ? get_fb_info.part.0+0x80/0x80
[  562.144106][  T776]  chrdev_open+0x245/0x6b0
[  562.144124][  T776]  ? cdev_put.part.0+0x50/0x50
[  562.144143][  T776]  ? security_file_open+0x87/0x300
[  562.144165][  T776]  do_dentry_open+0x4e6/0x1380
[  562.144178][  T776]  ? __kasan_check_read+0x11/0x20
[  562.144193][  T776]  ? cdev_put.part.0+0x50/0x50
[  562.144214][  T776]  ? chown_common+0x5c0/0x5c0
[  562.144233][  T776]  ? inode_permission+0xb4/0x520
[  562.144253][  T776]  vfs_open+0xa0/0xd0
[  562.144271][  T776]  path_openat+0x118b/0x3180
[  562.144304][  T776]  ? path_lookupat.isra.0+0x470/0x470
[  562.144317][  T776]  ? __lock_acquire+0x16f2/0x4a00
[  562.144340][  T776]  ? __alloc_fd+0x487/0x620
[  562.144368][  T776]  do_filp_open+0x1a1/0x280
[  562.144387][  T776]  ? may_open_dev+0x100/0x100
[  562.144417][  T776]  ? do_raw_spin_unlock+0x181/0x270
[  562.144452][  T776]  do_sys_open+0x3fe/0x5d0
[  562.144470][  T776]  ? filp_open+0x80/0x80
[  562.144491][  T776]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  562.144509][  T776]  ? do_fast_syscall_32+0xd1/0xe16
[  562.144525][  T776]  ? entry_SYSENTER_compat+0x70/0x7f
[  562.144542][  T776]  ? do_fast_syscall_32+0xd1/0xe16
[  562.144563][  T776]  __ia32_compat_sys_openat+0x98/0xf0
[  562.144584][  T776]  do_fast_syscall_32+0x27b/0xe16
[  562.144606][  T776]  entry_SYSENTER_compat+0x70/0x7f
[  562.144616][  T776] RIP: 0023:0xf7fc5a39
[  562.144630][  T776] Code: Bad RIP value.
[  562.144639][  T776] RSP: 002b:00000000ffbc6f8c EFLAGS: 00000207 ORIG_RAX: 0000000000000127
[  562.144653][  T776] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000020000180
[  562.144662][  T776] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000080bc5bf
[  562.144672][  T776] RBP: 0000000000000012 R08: 0000000000000000 R09: 0000000000000000
[  562.144680][  T776] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  562.144690][  T776] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  562.144717][  T776] INFO: task syz-executor035:9806 blocked for more than 143 seconds.
[  562.144726][  T776]       Not tainted 5.5.0-rc6-syzkaller #0
[  562.144732][  T776] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  562.144738][  T776] syz-executor035 D28280  9806   9796 0x20024004
[  562.144760][  T776] Call Trace:
[  562.144781][  T776]  __schedule+0x934/0x1f90
[  562.144805][  T776]  ? __sched_text_start+0x8/0x8
[  562.144819][  T776]  ? lock_downgrade+0x920/0x920
[  562.144835][  T776]  ? rwlock_bug.part.0+0x90/0x90
[  562.144858][  T776]  schedule+0xdc/0x2b0
[  562.144880][  T776]  schedule_preempt_disabled+0x13/0x20
[  562.144897][  T776]  __mutex_lock+0x7ab/0x13c0
[  562.144916][  T776]  ? fb_open+0xd7/0x450
[  562.144939][  T776]  ? mutex_trylock+0x2d0/0x2d0
[  562.144956][  T776]  ? __kasan_check_write+0x14/0x20
[  562.144975][  T776]  ? __mutex_unlock_slowpath+0xf0/0x6a0
[  562.144989][  T776]  ? chrdev_open+0xca/0x6b0
[  562.145022][  T776]  mutex_lock_nested+0x16/0x20
[  562.145040][  T776]  ? mutex_lock_nested+0x16/0x20
[  562.145056][  T776]  fb_open+0xd7/0x450
[  562.145076][  T776]  ? get_fb_info.part.0+0x80/0x80
[  562.145090][  T776]  chrdev_open+0x245/0x6b0
[  562.145114][  T776]  ? cdev_put.part.0+0x50/0x50
[  562.145135][  T776]  ? security_file_open+0x87/0x300
[  562.145157][  T776]  do_dentry_open+0x4e6/0x1380
[  562.145170][  T776]  ? __kasan_check_read+0x11/0x20
[  562.145186][  T776]  ? cdev_put.part.0+0x50/0x50
[  562.145209][  T776]  ? chown_common+0x5c0/0x5c0
[  562.145227][  T776]  ? inode_permission+0xb4/0x520
[  562.145247][  T776]  vfs_open+0xa0/0xd0
[  562.145266][  T776]  path_openat+0x118b/0x3180
[  562.145299][  T776]  ? path_lookupat.isra.0+0x470/0x470
[  562.145312][  T776]  ? __lock_acquire+0x16f2/0x4a00
[  562.145335][  T776]  ? __alloc_fd+0x487/0x620
[  562.145401][  T776]  do_filp_open+0x1a1/0x280
[  562.145418][  T776]  ? may_open_dev+0x100/0x100
[  562.145446][  T776]  ? do_raw_spin_unlock+0x181/0x270
[  562.145481][  T776]  do_sys_open+0x3fe/0x5d0
[  562.145498][  T776]  ? filp_open+0x80/0x80
[  562.145520][  T776]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  562.145538][  T776]  ? do_fast_syscall_32+0xd1/0xe16
[  562.145554][  T776]  ? entry_SYSENTER_compat+0x70/0x7f
[  562.145571][  T776]  ? do_fast_syscall_32+0xd1/0xe16
[  562.145591][  T776]  __ia32_compat_sys_openat+0x98/0xf0
[  562.145612][  T776]  do_fast_syscall_32+0x27b/0xe16
[  562.145634][  T776]  entry_SYSENTER_compat+0x70/0x7f
[  562.145645][  T776] RIP: 0023:0xf7fc5a39
[  562.145666][  T776] Code: Bad RIP value.
[  562.145675][  T776] RSP: 002b:00000000ffbc6f8c EFLAGS: 00000207 ORIG_RAX: 0000000000000127
[  562.145690][  T776] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000020000180
[  562.145699][  T776] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000080bc5bf
[  562.145708][  T776] RBP: 0000000000000012 R08: 0000000000000000 R09: 0000000000000000
[  562.145717][  T776] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  562.145726][  T776] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  562.145749][  T776] 
[  562.145749][  T776] Showing all locks held in the system:
[  562.145765][  T776] 1 lock held by khungtaskd/776:
[  562.145770][  T776]  #0: ffffffff899a3f00 (rcu_read_lock){....}, at: debug_show_all_locks+0x5f/0x279
[  562.145831][  T776] 1 lock held by rsyslogd/9678:
[  562.145836][  T776]  #0: ffff8880a4af9620 (&f->f_pos_lock){+.+.}, at: __fdget_pos+0xee/0x110
[  562.145868][  T776] 2 locks held by getty/9768:
[  562.145873][  T776]  #0: ffff88808aa8a090 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[  562.145967][  T776]  #1: ffffc900060632e0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x220/0x1bf0
[  562.146007][  T776] 2 locks held by getty/9769:
[  562.146012][  T776]  #0: ffff88809f291090 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[  562.146039][  T776]  #1: ffffc900060432e0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x220/0x1bf0
[  562.146073][  T776] 2 locks held by getty/9770:
[  562.146078][  T776]  #0: ffff88809e18e090 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[  562.146104][  T776]  #1: ffffc90005fef2e0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x220/0x1bf0
[  562.146139][  T776] 2 locks held by getty/9771:
[  562.146144][  T776]  #0: ffff8880a30d6090 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[  562.146170][  T776]  #1: ffffc900060832e0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x220/0x1bf0
[  562.146204][  T776] 2 locks held by getty/9772:
[  562.146209][  T776]  #0: ffff8880976bd090 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[  562.146235][  T776]  #1: ffffc900060532e0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x220/0x1bf0
[  562.146269][  T776] 2 locks held by getty/9773:
[  562.146274][  T776]  #0: ffff88809b77e090 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[  562.146300][  T776]  #1: ffffc900060732e0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x220/0x1bf0
[  562.146334][  T776] 2 locks held by getty/9774:
[  562.146338][  T776]  #0: ffff888099836090 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[  562.146364][  T776]  #1: ffffc90005fd32e0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x220/0x1bf0
[  562.146420][  T776] 2 locks held by syz-executor035/9797:
[  562.146430][  T776] 1 lock held by syz-executor035/9802:
[  562.146435][  T776]  #0: ffff888218c49070 (&fb_info->lock){+.+.}, at: fb_open+0xd7/0x450
[  562.146469][  T776] 1 lock held by syz-executor035/9803:
[  562.146474][  T776]  #0: ffff888218c49070 (&fb_info->lock){+.+.}, at: fb_open+0xd7/0x450
[  562.146506][  T776] 1 lock held by syz-executor035/9804:
[  562.146511][  T776]  #0: ffff888218c49070 (&fb_info->lock){+.+.}, at: fb_open+0xd7/0x450
[  562.146544][  T776] 1 lock held by syz-executor035/9805:
[  562.146549][  T776]  #0: ffff888218c49070 (&fb_info->lock){+.+.}, at: fb_open+0xd7/0x450
[  562.146581][  T776] 1 lock held by syz-executor035/9806:
[  562.146585][  T776]  #0: ffff888218c49070 (&fb_info->lock){+.+.}, at: fb_open+0xd7/0x450
[  562.146625][  T776] 
[  562.146634][  T776] =============================================
[  562.146634][  T776] 
[  562.146642][  T776] NMI backtrace for cpu 0
[  562.146682][  T776] CPU: 0 PID: 776 Comm: khungtaskd Not tainted 5.5.0-rc6-syzkaller #0
[  562.146722][  T776] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  562.146727][  T776] Call Trace:
[  562.146766][  T776]  dump_stack+0x197/0x210
[  562.146789][  T776]  nmi_cpu_backtrace.cold+0x70/0xb2
[  562.146804][  T776]  ? vprintk_func+0x86/0x189
[  562.146824][  T776]  ? lapic_can_unplug_cpu.cold+0x3a/0x3a
[  562.146843][  T776]  nmi_trigger_cpumask_backtrace+0x23b/0x28b
[  562.146864][  T776]  arch_trigger_cpumask_backtrace+0x14/0x20
[  562.146879][  T776]  watchdog+0xb11/0x10c0
[  562.146902][  T776]  kthread+0x361/0x430
[  562.146918][  T776]  ? reset_hung_task_detector+0x30/0x30
[  562.146932][  T776]  ? kthread_mod_delayed_work+0x1f0/0x1f0
[  562.146949][  T776]  ret_from_fork+0x24/0x30
[  562.146973][  T776] Sending NMI from CPU 0 to CPUs 1:
[  562.147650][    C1] NMI backtrace for cpu 1
[  562.147657][    C1] CPU: 1 PID: 9797 Comm: syz-executor035 Not tainted 5.5.0-rc6-syzkaller #0
[  562.147665][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  562.147669][    C1] RIP: 0010:__sanitizer_cov_trace_pc+0x14/0x50
[  562.147681][    C1] Code: 8b 80 98 13 00 00 c3 0f 1f 44 00 00 66 2e 0f 1f 84 00 00 00 00 00 55 48 89 e5 65 48 8b 04 25 c0 1e 02 00 65 8b 15 f4 28 8d 7e <81> e2 00 01 1f 00 48 8b 75 08 75 2b 8b 90 80 13 00 00 83 fa 02 75
[  562.147686][    C1] RSP: 0018:ffffc900062bf448 EFLAGS: 00000216
[  562.147693][    C1] RAX: ffff8880992724c0 RBX: 0000000000000050 RCX: ffffffff83c53210
[  562.147699][    C1] RDX: 0000000080000000 RSI: 0000000000000050 RDI: 0000000000000004
[  562.147704][    C1] RBP: ffffc900062bf448 R08: ffff8880992724c0 R09: ffffed10431877d4
[  562.147710][    C1] R10: ffffed10431877d3 R11: ffff888218c3be9f R12: 000000000000001d
[  562.147715][    C1] R13: ffff8880000a001d R14: ffff8880000a0000 R15: 0000000000000000
[  562.147722][    C1] FS:  0000000000000000(0000) GS:ffff8880ae900000(0063) knlGS:0000000009b53840
[  562.147726][    C1] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  562.147732][    C1] CR2: 0000000009b5c0f4 CR3: 00000000a39d8000 CR4: 00000000001406e0
[  562.147737][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  562.147742][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  562.147745][    C1] Call Trace:
[  562.147749][    C1]  vga16fb_fillrect+0xa0a/0x19b0
[  562.147752][    C1]  bit_clear_margins+0x30b/0x530
[  562.147756][    C1]  ? bit_bmove+0x270/0x270
[  562.147760][    C1]  ? efifb_probe.cold+0x181f/0x181f
[  562.147764][    C1]  fbcon_clear_margins+0x1e9/0x250
[  562.147767][    C1]  fbcon_switch+0xd7f/0x17f0
[  562.147771][    C1]  ? fbcon_set_def_font+0x360/0x360
[  562.147774][    C1]  ? fbcon_cursor+0x48c/0x660
[  562.147779][    C1]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  562.147782][    C1]  ? fbcon_set_origin+0x2b/0x50
[  562.147786][    C1]  ? fbcon_scrolldelta+0x1220/0x1220
[  562.147791][    C1]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  562.147794][    C1]  redraw_screen+0x2b6/0x7d0
[  562.147798][    C1]  ? efifb_probe.cold+0x181f/0x181f
[  562.147802][    C1]  ? respond_string+0x2c0/0x2c0
[  562.147805][    C1]  ? fbcon_set_palette+0x3c4/0x4a0
[  562.147809][    C1]  fbcon_modechanged+0x5c3/0x790
[  562.147812][    C1]  fbcon_update_vcs+0x42/0x50
[  562.147816][    C1]  fb_set_var+0xb32/0xdd0
[  562.147819][    C1]  ? fb_blank+0x1a0/0x1a0
[  562.147822][    C1]  ? lock_acquire+0x190/0x410
[  562.147826][    C1]  ? __mutex_lock+0x458/0x13c0
[  562.147829][    C1]  ? down+0x50/0x90
[  562.147833][    C1]  ? do_fb_ioctl+0x335/0x7d0
[  562.147836][    C1]  do_fb_ioctl+0x390/0x7d0
[  562.147839][    C1]  ? fb_mmap+0x520/0x520
[  562.147843][    C1]  ? lockdep_hardirqs_on+0x421/0x5e0
[  562.147847][    C1]  ? tomoyo_path_number_perm+0x454/0x520
[  562.147851][    C1]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  562.147856][    C1]  ? tomoyo_path_number_perm+0x25e/0x520
[  562.147860][    C1]  ? tomoyo_execute_permission+0x4a0/0x4a0
[  562.147863][    C1]  fb_compat_ioctl+0x305/0xc50
[  562.147867][    C1]  ? fb_release+0x150/0x150
[  562.147892][    C1]  ? do_sys_open+0x31d/0x5d0
[  562.147896][    C1]  ? tomoyo_file_ioctl+0x23/0x30
[  562.147900][    C1]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  562.147904][    C1]  ? security_file_ioctl+0x8d/0xc0
[  562.147908][    C1]  __ia32_compat_sys_ioctl+0x233/0x610
[  562.147911][    C1]  ? fb_release+0x150/0x150
[  562.147915][    C1]  do_fast_syscall_32+0x27b/0xe16
[  562.147919][    C1]  entry_SYSENTER_compat+0x70/0x7f
[  562.147922][    C1] RIP: 0023:0xf7fc5a39
[  562.147935][    C1] Code: 00 00 00 89 d3 5b 5e 5f 5d c3 b8 80 96 98 00 eb c4 8b 04 24 c3 8b 1c 24 c3 8b 34 24 c3 8b 3c 24 c3 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[  562.147940][    C1] RSP: 002b:00000000ffbc6f9c EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  562.147949][    C1] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000004601
[  562.147955][    C1] RDX: 0000000020000000 RSI: 0000000000000001 RDI: 00000000ffbc70b4
[  562.147960][    C1] RBP: 00000000ffbc70bc R08: 0000000000000000 R09: 0000000000000000
[  562.147966][    C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  562.147971][    C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  562.147992][  T776] Kernel panic - not syncing: hung_task: blocked tasks
[  562.148006][  T776] CPU: 0 PID: 776 Comm: khungtaskd Not tainted 5.5.0-rc6-syzkaller #0
[  562.148015][  T776] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  562.148019][  T776] Call Trace:
[  562.148035][  T776]  dump_stack+0x197/0x210
[  562.148054][  T776]  panic+0x2e3/0x75c
[  562.148069][  T776]  ? add_taint.cold+0x16/0x16
[  562.148087][  T776]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[  562.148104][  T776]  ? printk_safe_flush+0xf2/0x140
[  562.148119][  T776]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  562.148140][  T776]  ? nmi_trigger_cpumask_backtrace+0x224/0x28b
[  562.148158][  T776]  ? nmi_trigger_cpumask_backtrace+0x21b/0x28b
[  562.148178][  T776]  watchdog+0xb22/0x10c0
[  562.148199][  T776]  kthread+0x361/0x430
[  562.148215][  T776]  ? reset_hung_task_detector+0x30/0x30
[  562.148228][  T776]  ? kthread_mod_delayed_work+0x1f0/0x1f0
[  562.148245][  T776]  ret_from_fork+0x24/0x30
[  562.150153][  T776] Kernel Offset: disabled
[  564.468971][  T776] Rebooting in 86400 seconds..