[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   69.487062][   T27] audit: type=1800 audit(1584671362.551:25): pid=9437 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0
[   69.538153][   T27] audit: type=1800 audit(1584671362.551:26): pid=9437 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0
[   69.578137][   T27] audit: type=1800 audit(1584671362.551:27): pid=9437 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.71' (ECDSA) to the list of known hosts.
executing program
executing program
executing program
executing program
executing program
executing program
syzkaller login: [  556.347664][ T1137] INFO: task syz-executor786:9596 blocked for more than 143 seconds.
[  556.347683][ T1137]       Not tainted 5.6.0-rc6-syzkaller #0
[  556.347689][ T1137] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  556.347696][ T1137] syz-executor786 D28328  9596   9595 0x00000004
[  556.347720][ T1137] Call Trace:
[  556.347915][ T1137]  ? __schedule+0x934/0x1f90
[  556.347942][ T1137]  ? __sched_text_start+0x8/0x8
[  556.347973][ T1137]  schedule+0xd0/0x2a0
[  556.347993][ T1137]  schedule_preempt_disabled+0xf/0x20
[  556.348006][ T1137]  __mutex_lock+0x7ab/0x13c0
[  556.348078][ T1137]  ? fb_open+0xd3/0x430
[  556.348101][ T1137]  ? mutex_trylock+0x2c0/0x2c0
[  556.348124][ T1137]  ? __mutex_unlock_slowpath+0xe2/0x660
[  556.348230][ T1137]  ? chrdev_open+0xc4/0x5c0
[  556.348282][ T1137]  ? lock_downgrade+0x7f0/0x7f0
[  556.348309][ T1137]  ? fb_open+0xd3/0x430
[  556.348320][ T1137]  fb_open+0xd3/0x430
[  556.348337][ T1137]  ? get_fb_info.part.0+0x80/0x80
[  556.348350][ T1137]  chrdev_open+0x219/0x5c0
[  556.348365][ T1137]  ? rwlock_bug.part.0+0x90/0x90
[  556.348379][ T1137]  ? cdev_put.part.0+0x50/0x50
[  556.348410][ T1137]  do_dentry_open+0x4a2/0x1250
[  556.348428][ T1137]  ? cdev_put.part.0+0x50/0x50
[  556.348465][ T1137]  ? security_inode_permission+0xc4/0xf0
[  556.348479][ T1137]  ? chown_common+0x550/0x550
[  556.348496][ T1137]  ? inode_permission+0xab/0x500
[  556.348523][ T1137]  path_openat+0x122a/0x32b0
[  556.348559][ T1137]  ? path_mountpoint.isra.0+0x370/0x370
[  556.348571][ T1137]  ? __lock_acquire+0x14bd/0x3ca0
[  556.348591][ T1137]  ? __lock_acquire+0x14bd/0x3ca0
[  556.348620][ T1137]  do_filp_open+0x192/0x260
[  556.348637][ T1137]  ? may_open_dev+0xf0/0xf0
[  556.348665][ T1137]  ? do_raw_spin_lock+0x129/0x2e0
[  556.348697][ T1137]  ? _raw_spin_unlock+0x24/0x40
[  556.348741][ T1137]  ? __alloc_fd+0x46d/0x600
[  556.348770][ T1137]  do_sys_openat2+0x54c/0x740
[  556.348790][ T1137]  ? file_open_root+0x3d0/0x3d0
[  556.348834][ T1137]  ? rcu_read_lock_sched_held+0x9c/0xd0
[  556.348857][ T1137]  do_sys_open+0xc3/0x140
[  556.348872][ T1137]  ? filp_open+0x70/0x70
[  556.348925][ T1137]  ? fpregs_mark_activate+0x320/0x320
[  556.348972][ T1137]  ? trace_hardirqs_off_caller+0x55/0x230
[  556.349005][ T1137]  do_syscall_64+0xf6/0x7d0
[  556.349050][ T1137]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  556.349061][ T1137] RIP: 0033:0x441419
[  556.349102][ T1137] Code: Bad RIP value.
[  556.349109][ T1137] RSP: 002b:00007ffc862d2f78 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  556.349122][ T1137] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441419
[  556.349130][ T1137] RDX: 0000000000000000 RSI: 0000000020000180 RDI: ffffffffffffff9c
[  556.349143][ T1137] RBP: 00000000006cb018 R08: 0000000000000004 R09: 00000000004002c8
[  556.349151][ T1137] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000402190
[  556.349158][ T1137] R13: 0000000000402220 R14: 0000000000000000 R15: 0000000000000000
[  556.349201][ T1137] INFO: task syz-executor786:9597 blocked for more than 143 seconds.
[  556.349208][ T1137]       Not tainted 5.6.0-rc6-syzkaller #0
[  556.349214][ T1137] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  556.349219][ T1137] syz-executor786 D28328  9597   9592 0x00000004
[  556.349239][ T1137] Call Trace:
[  556.349261][ T1137]  ? __schedule+0x934/0x1f90
[  556.349286][ T1137]  ? __sched_text_start+0x8/0x8
[  556.349317][ T1137]  schedule+0xd0/0x2a0
[  556.349336][ T1137]  schedule_preempt_disabled+0xf/0x20
[  556.349349][ T1137]  __mutex_lock+0x7ab/0x13c0
[  556.349366][ T1137]  ? fb_open+0xd3/0x430
[  556.349389][ T1137]  ? mutex_trylock+0x2c0/0x2c0
[  556.349411][ T1137]  ? __mutex_unlock_slowpath+0xe2/0x660
[  556.349424][ T1137]  ? chrdev_open+0xc4/0x5c0
[  556.349445][ T1137]  ? lock_downgrade+0x7f0/0x7f0
[  556.349472][ T1137]  ? fb_open+0xd3/0x430
[  556.349483][ T1137]  fb_open+0xd3/0x430
[  556.349500][ T1137]  ? get_fb_info.part.0+0x80/0x80
[  556.349513][ T1137]  chrdev_open+0x219/0x5c0
[  556.349527][ T1137]  ? rwlock_bug.part.0+0x90/0x90
[  556.349542][ T1137]  ? cdev_put.part.0+0x50/0x50
[  556.349572][ T1137]  do_dentry_open+0x4a2/0x1250
[  556.349589][ T1137]  ? cdev_put.part.0+0x50/0x50
[  556.349624][ T1137]  ? security_inode_permission+0xc4/0xf0
[  556.349638][ T1137]  ? chown_common+0x550/0x550
[  556.349652][ T1137]  ? inode_permission+0xab/0x500
[  556.349678][ T1137]  path_openat+0x122a/0x32b0
[  556.349714][ T1137]  ? path_mountpoint.isra.0+0x370/0x370
[  556.349736][ T1137]  ? __lock_acquire+0x14bd/0x3ca0
[  556.349765][ T1137]  do_filp_open+0x192/0x260
[  556.349781][ T1137]  ? may_open_dev+0xf0/0xf0
[  556.349810][ T1137]  ? do_raw_spin_lock+0x129/0x2e0
[  556.349841][ T1137]  ? _raw_spin_unlock+0x24/0x40
[  556.349855][ T1137]  ? __alloc_fd+0x46d/0x600
[  556.349884][ T1137]  do_sys_openat2+0x54c/0x740
[  556.349904][ T1137]  ? file_open_root+0x3d0/0x3d0
[  556.349960][ T1137]  ? up_read+0x1ab/0x750
[  556.349981][ T1137]  do_sys_open+0xc3/0x140
[  556.349995][ T1137]  ? filp_open+0x70/0x70
[  556.350018][ T1137]  ? trace_hardirqs_off_caller+0x55/0x230
[  556.350045][ T1137]  do_syscall_64+0xf6/0x7d0
[  556.350064][ T1137]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  556.350073][ T1137] RIP: 0033:0x441419
[  556.350087][ T1137] Code: Bad RIP value.
[  556.350095][ T1137] RSP: 002b:00007ffc862d2f78 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  556.350107][ T1137] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441419
[  556.350115][ T1137] RDX: 0000000000000000 RSI: 0000000020000180 RDI: ffffffffffffff9c
[  556.350123][ T1137] RBP: 00000000006cb018 R08: 0000000000000004 R09: 00000000004002c8
[  556.350131][ T1137] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000402190
[  556.350144][ T1137] R13: 0000000000402220 R14: 0000000000000000 R15: 0000000000000000
[  556.350180][ T1137] INFO: task syz-executor786:9598 blocked for more than 143 seconds.
[  556.350187][ T1137]       Not tainted 5.6.0-rc6-syzkaller #0
[  556.350192][ T1137] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  556.350198][ T1137] syz-executor786 D28328  9598   9594 0x00000004
[  556.350219][ T1137] Call Trace:
[  556.350240][ T1137]  ? __schedule+0x934/0x1f90
[  556.350265][ T1137]  ? __sched_text_start+0x8/0x8
[  556.350296][ T1137]  schedule+0xd0/0x2a0
[  556.350315][ T1137]  schedule_preempt_disabled+0xf/0x20
[  556.350328][ T1137]  __mutex_lock+0x7ab/0x13c0
[  556.350345][ T1137]  ? fb_open+0xd3/0x430
[  556.350369][ T1137]  ? mutex_trylock+0x2c0/0x2c0
[  556.350391][ T1137]  ? __mutex_unlock_slowpath+0xe2/0x660
[  556.350404][ T1137]  ? chrdev_open+0xc4/0x5c0
[  556.350425][ T1137]  ? lock_downgrade+0x7f0/0x7f0
[  556.350452][ T1137]  ? fb_open+0xd3/0x430
[  556.350463][ T1137]  fb_open+0xd3/0x430
[  556.350480][ T1137]  ? get_fb_info.part.0+0x80/0x80
[  556.350493][ T1137]  chrdev_open+0x219/0x5c0
[  556.350507][ T1137]  ? rwlock_bug.part.0+0x90/0x90
[  556.350522][ T1137]  ? cdev_put.part.0+0x50/0x50
[  556.350552][ T1137]  do_dentry_open+0x4a2/0x1250
[  556.350569][ T1137]  ? cdev_put.part.0+0x50/0x50
[  556.350588][ T1137]  ? security_inode_permission+0xc4/0xf0
[  556.350602][ T1137]  ? chown_common+0x550/0x550
[  556.350616][ T1137]  ? inode_permission+0xab/0x500
[  556.350642][ T1137]  path_openat+0x122a/0x32b0
[  556.350678][ T1137]  ? path_mountpoint.isra.0+0x370/0x370
[  556.350699][ T1137]  ? __lock_acquire+0x14bd/0x3ca0
[  556.350728][ T1137]  do_filp_open+0x192/0x260
[  556.350745][ T1137]  ? may_open_dev+0xf0/0xf0
[  556.350774][ T1137]  ? do_raw_spin_lock+0x129/0x2e0
[  556.350805][ T1137]  ? _raw_spin_unlock+0x24/0x40
[  556.350819][ T1137]  ? __alloc_fd+0x46d/0x600
[  556.350848][ T1137]  do_sys_openat2+0x54c/0x740
[  556.350868][ T1137]  ? file_open_root+0x3d0/0x3d0
[  556.350892][ T1137]  ? rcu_read_lock_sched_held+0x9c/0xd0
[  556.350914][ T1137]  do_sys_open+0xc3/0x140
[  556.350928][ T1137]  ? filp_open+0x70/0x70
[  556.350946][ T1137]  ? fpregs_mark_activate+0x320/0x320
[  556.350963][ T1137]  ? trace_hardirqs_off_caller+0x55/0x230
[  556.350989][ T1137]  do_syscall_64+0xf6/0x7d0
[  556.351009][ T1137]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  556.351018][ T1137] RIP: 0033:0x441419
[  556.351031][ T1137] Code: Bad RIP value.
[  556.351039][ T1137] RSP: 002b:00007ffc862d2f78 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  556.351051][ T1137] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441419
[  556.351059][ T1137] RDX: 0000000000000000 RSI: 0000000020000180 RDI: ffffffffffffff9c
[  556.351067][ T1137] RBP: 00000000006cb018 R08: 0000000000000004 R09: 00000000004002c8
[  556.351074][ T1137] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000402190
[  556.351082][ T1137] R13: 0000000000402220 R14: 0000000000000000 R15: 0000000000000000
[  556.351118][ T1137] INFO: task syz-executor786:9599 blocked for more than 143 seconds.
[  556.351125][ T1137]       Not tainted 5.6.0-rc6-syzkaller #0
[  556.351130][ T1137] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  556.351140][ T1137] syz-executor786 D28304  9599   9590 0x00004004
[  556.351159][ T1137] Call Trace:
[  556.351180][ T1137]  ? __schedule+0x934/0x1f90
[  556.351205][ T1137]  ? __sched_text_start+0x8/0x8
[  556.351236][ T1137]  schedule+0xd0/0x2a0
[  556.351254][ T1137]  schedule_preempt_disabled+0xf/0x20
[  556.351267][ T1137]  __mutex_lock+0x7ab/0x13c0
[  556.351284][ T1137]  ? fb_open+0xd3/0x430
[  556.351307][ T1137]  ? mutex_trylock+0x2c0/0x2c0
[  556.351329][ T1137]  ? __mutex_unlock_slowpath+0xe2/0x660
[  556.351342][ T1137]  ? chrdev_open+0xc4/0x5c0
[  556.351363][ T1137]  ? lock_downgrade+0x7f0/0x7f0
[  556.351391][ T1137]  ? fb_open+0xd3/0x430
[  556.351401][ T1137]  fb_open+0xd3/0x430
[  556.351418][ T1137]  ? get_fb_info.part.0+0x80/0x80
[  556.351431][ T1137]  chrdev_open+0x219/0x5c0
[  556.351445][ T1137]  ? rwlock_bug.part.0+0x90/0x90
[  556.351460][ T1137]  ? cdev_put.part.0+0x50/0x50
[  556.351490][ T1137]  do_dentry_open+0x4a2/0x1250
[  556.351507][ T1137]  ? cdev_put.part.0+0x50/0x50
[  556.351526][ T1137]  ? security_inode_permission+0xc4/0xf0
[  556.351540][ T1137]  ? chown_common+0x550/0x550
[  556.351554][ T1137]  ? inode_permission+0xab/0x500
[  556.351581][ T1137]  path_openat+0x122a/0x32b0
[  556.351617][ T1137]  ? path_mountpoint.isra.0+0x370/0x370
[  556.351638][ T1137]  ? __lock_acquire+0x14bd/0x3ca0
[  556.351667][ T1137]  do_filp_open+0x192/0x260
[  556.351684][ T1137]  ? may_open_dev+0xf0/0xf0
[  556.351713][ T1137]  ? do_raw_spin_lock+0x129/0x2e0
[  556.351744][ T1137]  ? _raw_spin_unlock+0x24/0x40
[  556.351758][ T1137]  ? __alloc_fd+0x46d/0x600
[  556.351787][ T1137]  do_sys_openat2+0x54c/0x740
[  556.351806][ T1137]  ? file_open_root+0x3d0/0x3d0
[  556.351831][ T1137]  ? rcu_read_lock_sched_held+0x9c/0xd0
[  556.351852][ T1137]  do_sys_open+0xc3/0x140
[  556.351867][ T1137]  ? filp_open+0x70/0x70
[  556.351885][ T1137]  ? fpregs_mark_activate+0x320/0x320
[  556.351901][ T1137]  ? trace_hardirqs_off_caller+0x55/0x230
[  556.351928][ T1137]  do_syscall_64+0xf6/0x7d0
[  556.351947][ T1137]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  556.351956][ T1137] RIP: 0033:0x441419
[  556.351970][ T1137] Code: Bad RIP value.
[  556.351977][ T1137] RSP: 002b:00007ffc862d2f78 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  556.351989][ T1137] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441419
[  556.351997][ T1137] RDX: 0000000000000000 RSI: 0000000020000180 RDI: ffffffffffffff9c
[  556.352004][ T1137] RBP: 00000000006cb018 R08: 0000000000000004 R09: 00000000004002c8
[  556.352012][ T1137] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000402190
[  556.352020][ T1137] R13: 0000000000402220 R14: 0000000000000000 R15: 0000000000000000
[  556.352055][ T1137] INFO: task syz-executor786:9600 blocked for more than 143 seconds.
[  556.352063][ T1137]       Not tainted 5.6.0-rc6-syzkaller #0
[  556.352068][ T1137] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  556.352073][ T1137] syz-executor786 D28328  9600   9593 0x00000004
[  556.352092][ T1137] Call Trace:
[  556.352113][ T1137]  ? __schedule+0x934/0x1f90
[  556.352142][ T1137]  ? __sched_text_start+0x8/0x8
[  556.352173][ T1137]  schedule+0xd0/0x2a0
[  556.352192][ T1137]  schedule_preempt_disabled+0xf/0x20
[  556.352204][ T1137]  __mutex_lock+0x7ab/0x13c0
[  556.352222][ T1137]  ? fb_open+0xd3/0x430
[  556.352245][ T1137]  ? mutex_trylock+0x2c0/0x2c0
[  556.352267][ T1137]  ? __mutex_unlock_slowpath+0xe2/0x660
[  556.352280][ T1137]  ? chrdev_open+0xc4/0x5c0
[  556.352301][ T1137]  ? lock_downgrade+0x7f0/0x7f0
[  556.352328][ T1137]  ? fb_open+0xd3/0x430
[  556.352339][ T1137]  fb_open+0xd3/0x430
[  556.352356][ T1137]  ? get_fb_info.part.0+0x80/0x80
[  556.352369][ T1137]  chrdev_open+0x219/0x5c0
[  556.352383][ T1137]  ? rwlock_bug.part.0+0x90/0x90
[  556.352398][ T1137]  ? cdev_put.part.0+0x50/0x50
[  556.352428][ T1137]  do_dentry_open+0x4a2/0x1250
[  556.352445][ T1137]  ? cdev_put.part.0+0x50/0x50
[  556.352464][ T1137]  ? security_inode_permission+0xc4/0xf0
[  556.352478][ T1137]  ? chown_common+0x550/0x550
[  556.352492][ T1137]  ? inode_permission+0xab/0x500
[  556.352518][ T1137]  path_openat+0x122a/0x32b0
[  556.352555][ T1137]  ? path_mountpoint.isra.0+0x370/0x370
[  556.352566][ T1137]  ? __lock_acquire+0x14bd/0x3ca0
[  556.352586][ T1137]  ? __lock_acquire+0x14bd/0x3ca0
[  556.352615][ T1137]  do_filp_open+0x192/0x260
[  556.352632][ T1137]  ? may_open_dev+0xf0/0xf0
[  556.352660][ T1137]  ? do_raw_spin_lock+0x129/0x2e0
[  556.352691][ T1137]  ? _raw_spin_unlock+0x24/0x40
[  556.352705][ T1137]  ? __alloc_fd+0x46d/0x600
[  556.352734][ T1137]  do_sys_openat2+0x54c/0x740
[  556.352754][ T1137]  ? file_open_root+0x3d0/0x3d0
[  556.352778][ T1137]  ? rcu_read_lock_sched_held+0x9c/0xd0
[  556.352800][ T1137]  do_sys_open+0xc3/0x140
[  556.352814][ T1137]  ? filp_open+0x70/0x70
[  556.352832][ T1137]  ? fpregs_mark_activate+0x320/0x320
[  556.352849][ T1137]  ? trace_hardirqs_off_caller+0x55/0x230
[  556.352875][ T1137]  do_syscall_64+0xf6/0x7d0
[  556.352894][ T1137]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  556.352903][ T1137] RIP: 0033:0x441419
[  556.352918][ T1137] Code: Bad RIP value.
[  556.352925][ T1137] RSP: 002b:00007ffc862d2f78 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  556.352937][ T1137] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441419
[  556.352945][ T1137] RDX: 0000000000000000 RSI: 0000000020000180 RDI: ffffffffffffff9c
[  556.352953][ T1137] RBP: 00000000006cb018 R08: 0000000000000004 R09: 00000000004002c8
[  556.352960][ T1137] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000402190
[  556.352968][ T1137] R13: 0000000000402220 R14: 0000000000000000 R15: 0000000000000000
[  556.353000][ T1137] 
[  556.353000][ T1137] Showing all locks held in the system:
[  556.353014][ T1137] 1 lock held by khungtaskd/1137:
[  556.353018][ T1137]  #0: ffffffff897accc0 (rcu_read_lock){....}, at: debug_show_all_locks+0x53/0x260
[  556.353074][ T1137] 1 lock held by rsyslogd/9475:
[  556.353079][ T1137]  #0: ffff8880a29410e0 (&f->f_pos_lock){+.+.}, at: __fdget_pos+0xe3/0x100
[  556.353107][ T1137] 2 locks held by getty/9565:
[  556.353111][ T1137]  #0: ffff8880a7a28090 (&tty->ldisc_sem){++++}, at: tty_ldisc_ref_wait+0x22/0x80
[  556.353165][ T1137]  #1: ffffc9000188b2e0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x21d/0x1b30
[  556.353192][ T1137] 2 locks held by getty/9566:
[  556.353197][ T1137]  #0: ffff8880a39e5090 (&tty->ldisc_sem){++++}, at: tty_ldisc_ref_wait+0x22/0x80
[  556.353220][ T1137]  #1: ffffc900018bb2e0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x21d/0x1b30
[  556.353247][ T1137] 2 locks held by getty/9567:
[  556.353252][ T1137]  #0: ffff88808e7d2090 (&tty->ldisc_sem){++++}, at: tty_ldisc_ref_wait+0x22/0x80
[  556.353275][ T1137]  #1: ffffc900018eb2e0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x21d/0x1b30
[  556.353302][ T1137] 2 locks held by getty/9568:
[  556.353307][ T1137]  #0: ffff8880908a8090 (&tty->ldisc_sem){++++}, at: tty_ldisc_ref_wait+0x22/0x80
[  556.353331][ T1137]  #1: ffffc900018fb2e0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x21d/0x1b30
[  556.353358][ T1137] 2 locks held by getty/9569:
[  556.353362][ T1137]  #0: ffff88808c539090 (&tty->ldisc_sem){++++}, at: tty_ldisc_ref_wait+0x22/0x80
[  556.353385][ T1137]  #1: ffffc9000190b2e0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x21d/0x1b30
[  556.353412][ T1137] 2 locks held by getty/9570:
[  556.353416][ T1137]  #0: ffff8880a2647090 (&tty->ldisc_sem){++++}, at: tty_ldisc_ref_wait+0x22/0x80
[  556.353440][ T1137]  #1: ffffc900018cb2e0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x21d/0x1b30
[  556.353466][ T1137] 2 locks held by getty/9571:
[  556.353471][ T1137]  #0: ffff888097968090 (&tty->ldisc_sem){++++}, at: tty_ldisc_ref_wait+0x22/0x80
[  556.353498][ T1137]  #1: ffffc9000184b2e0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x21d/0x1b30
[  556.353527][ T1137] 2 locks held by syz-executor786/9591:
[  556.353535][ T1137] 1 lock held by syz-executor786/9596:
[  556.353540][ T1137]  #0: ffff888218c10070 (&fb_info->lock){+.+.}, at: fb_open+0xd3/0x430
[  556.353566][ T1137] 1 lock held by syz-executor786/9597:
[  556.353570][ T1137]  #0: ffff888218c10070 (&fb_info->lock){+.+.}, at: fb_open+0xd3/0x430
[  556.353596][ T1137] 1 lock held by syz-executor786/9598:
[  556.353600][ T1137]  #0: ffff888218c10070 (&fb_info->lock){+.+.}, at: fb_open+0xd3/0x430
[  556.353626][ T1137] 1 lock held by syz-executor786/9599:
[  556.353630][ T1137]  #0: ffff888218c10070 (&fb_info->lock){+.+.}, at: fb_open+0xd3/0x430
[  556.353655][ T1137] 1 lock held by syz-executor786/9600:
[  556.353659][ T1137]  #0: ffff888218c10070 (&fb_info->lock){+.+.}, at: fb_open+0xd3/0x430
[  556.353681][ T1137] 
[  556.353686][ T1137] =============================================
[  556.353686][ T1137] 
[  556.353693][ T1137] NMI backtrace for cpu 1
[  556.353706][ T1137] CPU: 1 PID: 1137 Comm: khungtaskd Not tainted 5.6.0-rc6-syzkaller #0
[  556.353713][ T1137] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  556.353718][ T1137] Call Trace:
[  556.353783][ T1137]  dump_stack+0x188/0x20d
[  556.353806][ T1137]  nmi_cpu_backtrace.cold+0x70/0xb1
[  556.353878][ T1137]  ? lapic_can_unplug_cpu.cold+0x3b/0x3b
[  556.353894][ T1137]  nmi_trigger_cpumask_backtrace+0x231/0x27e
[  556.353948][ T1137]  watchdog+0xa8c/0x1010
[  556.353972][ T1137]  ? reset_hung_task_detector+0x30/0x30
[  556.354014][ T1137]  kthread+0x357/0x430
[  556.354028][ T1137]  ? kthread_mod_delayed_work+0x1a0/0x1a0
[  556.354044][ T1137]  ret_from_fork+0x24/0x30
[  556.354078][ T1137] Sending NMI from CPU 1 to CPUs 0:
[  556.354800][    C0] NMI backtrace for cpu 0
[  556.354807][    C0] CPU: 0 PID: 9591 Comm: syz-executor786 Not tainted 5.6.0-rc6-syzkaller #0
[  556.354812][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  556.354815][    C0] RIP: 0010:bitfill_aligned+0x123/0x200
[  556.354826][    C0] Code: 3d bf fd 48 89 5d 00 48 89 5d 08 48 89 5d 10 48 89 5d 18 48 89 5d 20 48 89 5d 28 48 8d 45 38 48 89 5d 30 48 83 c5 40 48 89 18 <41> 83 ef 08 bf 07 00 00 00 44 89 fe e8 6c 3e bf fd 41 83 ff 07 77
[  556.354829][    C0] RSP: 0018:ffffc900020f74d8 EFLAGS: 00000286
[  556.354836][    C0] RAX: ffff8880000a01b8 RBX: 0000000000000000 RCX: ffffffff83b2e824
[  556.354840][    C0] RDX: 0000000000000000 RSI: ffffffff83b2e7ec RDI: 0000000000000005
[  556.354845][    C0] RBP: ffff8880000a01c0 R08: ffff88808e5fa640 R09: 0000000000000040
[  556.354849][    C0] R10: ffffed1043186b6b R11: ffff888218c35b5f R12: 0000000000000050
[  556.354854][    C0] R13: ffff8880000a0000 R14: 0000000000000000 R15: 0000000000000020
[  556.354859][    C0] FS:  00000000009ee880(0000) GS:ffff8880ae600000(0000) knlGS:0000000000000000
[  556.354863][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  556.354867][    C0] CR2: 0000000020000180 CR3: 000000009ee21000 CR4: 00000000001406f0
[  556.354871][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  556.354876][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  556.354878][    C0] Call Trace:
[  556.354881][    C0]  cfb_fillrect+0x418/0x7a0
[  556.354884][    C0]  ? cfb_fillrect+0x7a0/0x7a0
[  556.354887][    C0]  vga16fb_fillrect+0x68f/0x1960
[  556.354890][    C0]  ? memcpy+0x35/0x50
[  556.354893][    C0]  bit_clear_margins+0x2d5/0x4a0
[  556.354895][    C0]  ? bit_bmove+0x210/0x210
[  556.354899][    C0]  ? vesafb_probe.cold+0x1162/0x1162
[  556.354902][    C0]  fbcon_clear_margins+0x1de/0x240
[  556.354905][    C0]  fbcon_switch+0xd1b/0x1740
[  556.354908][    C0]  ? fbcon_set_def_font+0x370/0x370
[  556.354911][    C0]  ? fbcon_cursor+0x477/0x650
[  556.354914][    C0]  ? bit_clear+0x4e0/0x4e0
[  556.354917][    C0]  ? is_console_locked+0x5/0x10
[  556.354920][    C0]  ? fbcon_set_origin+0x26/0x50
[  556.354923][    C0]  redraw_screen+0x2a8/0x770
[  556.354926][    C0]  ? vesafb_probe.cold+0x1162/0x1162
[  556.354929][    C0]  ? respond_string+0x290/0x290
[  556.354932][    C0]  ? fbcon_set_palette+0x3b1/0x4a0
[  556.354935][    C0]  fbcon_modechanged+0x5bd/0x780
[  556.354938][    C0]  fbcon_update_vcs+0x3a/0x50
[  556.354941][    C0]  fb_set_var+0xad0/0xd40
[  556.354944][    C0]  ? fb_blank+0x190/0x190
[  556.354947][    C0]  ? preempt_schedule_common+0x5e/0xc0
[  556.354950][    C0]  ? ___preempt_schedule+0x16/0x18
[  556.354953][    C0]  ? lock_acquire+0x197/0x420
[  556.354956][    C0]  ? do_fb_ioctl+0x335/0x7d0
[  556.354959][    C0]  do_fb_ioctl+0x390/0x7d0
[  556.354962][    C0]  ? fb_mmap+0x550/0x550
[  556.354965][    C0]  ? tomoyo_execute_permission+0x470/0x470
[  556.354968][    C0]  ? do_wp_page+0x50b/0x13c0
[  556.354972][    C0]  ? __sanitizer_cov_trace_switch+0x45/0x70
[  556.354975][    C0]  ? do_vfs_ioctl+0x506/0x12c0
[  556.354978][    C0]  ? up_read+0x1ab/0x750
[  556.354981][    C0]  ? mark_held_locks+0x9f/0xe0
[  556.354984][    C0]  fb_ioctl+0xdd/0x130
[  556.354986][    C0]  ? do_fb_ioctl+0x7d0/0x7d0
[  556.354989][    C0]  ksys_ioctl+0x11a/0x180
[  556.354992][    C0]  __x64_sys_ioctl+0x6f/0xb0
[  556.354995][    C0]  ? lockdep_hardirqs_on+0x417/0x5d0
[  556.354998][    C0]  do_syscall_64+0xf6/0x7d0
[  556.355002][    C0]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  556.355004][    C0] RIP: 0033:0x441419
[  556.355013][    C0] Code: e8 ac e8 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb 08 fc ff c3 66 2e 0f 1f 84 00 00 00 00
[  556.355017][    C0] RSP: 002b:00007ffc862d2f78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  556.355024][    C0] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441419
[  556.355029][    C0] RDX: 0000000020000000 RSI: 0000000000004601 RDI: 0000000000000003
[  556.355033][    C0] RBP: 00000000006cb018 R08: 00000000004002c8 R09: 00000000004002c8
[  556.355037][    C0] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000402190
[  556.355042][    C0] R13: 0000000000402220 R14: 0000000000000000 R15: 0000000000000000
[  556.355097][ T1137] Kernel panic - not syncing: hung_task: blocked tasks
[  556.355109][ T1137] CPU: 1 PID: 1137 Comm: khungtaskd Not tainted 5.6.0-rc6-syzkaller #0
[  556.355122][ T1137] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  556.355131][ T1137] Call Trace:
[  556.355154][ T1137]  dump_stack+0x188/0x20d
[  556.355200][ T1137]  panic+0x2e3/0x75c
[  556.355215][ T1137]  ? add_taint.cold+0x16/0x16
[  556.355237][ T1137]  ? cpumask_next+0x3c/0x40
[  556.355253][ T1137]  ? printk_safe_flush+0xd9/0x120
[  556.355267][ T1137]  ? watchdog+0xa8c/0x1010
[  556.355283][ T1137]  ? nmi_trigger_cpumask_backtrace+0x214/0x27e
[  556.355305][ T1137]  watchdog+0xa9d/0x1010
[  556.355329][ T1137]  ? reset_hung_task_detector+0x30/0x30
[  556.355343][ T1137]  kthread+0x357/0x430
[  556.355357][ T1137]  ? kthread_mod_delayed_work+0x1a0/0x1a0
[  556.355372][ T1137]  ret_from_fork+0x24/0x30
[  556.356991][ T1137] Kernel Offset: disabled
[  558.593098][ T1137] Rebooting in 86400 seconds..