[ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Starting Load/Save RF Kill Switch Status... [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.224' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 663.644496] XFS (loop0): Mounting V4 Filesystem [ 663.649967] XFS (loop0): Log size 256 blocks too small, minimum size is 2880 blocks [ 663.658027] XFS (loop0): Log size out of supported range. [ 663.663669] XFS (loop0): Continuing onwards, but if log hangs are experienced then please report this message in the bug report. [ 663.698783] XFS (loop0): Starting recovery (logdev: internal) [ 857.967983] INFO: task syz-executor158:7970 blocked for more than 140 seconds. [ 857.975567] Not tainted 4.14.302-syzkaller #0 [ 857.981546] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 857.990007] syz-executor158 D27312 7970 7969 0x00000004 [ 857.995622] Call Trace: [ 857.998789] __schedule+0x88b/0x1de0 [ 858.002497] ? io_schedule_timeout+0x140/0x140 [ 858.007063] schedule+0x8d/0x1b0 [ 858.011193] xlog_grant_head_wait+0x12f/0xc10 [ 858.015680] xlog_grant_head_check+0x357/0x3a0 [ 858.020823] ? xlog_grant_head_wait+0xc10/0xc10 [ 858.025486] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 858.031500] xfs_log_reserve+0x2fb/0x9e0 [ 858.035548] ? percpu_counter_add_batch+0xf8/0x160 [ 858.041064] ? xlog_ticket_alloc+0x450/0x450 [ 858.045490] ? xfs_mod_fdblocks+0xd5/0x3c0 [ 858.050310] xfs_trans_reserve+0x5bb/0x940 [ 858.054535] xfs_trans_alloc+0x1fc/0x320 [ 858.059136] xlog_recover_process_intents+0x1d2/0x3f0 [ 858.064313] ? xlog_recover_process_bui+0x90/0x90 [ 858.069702] ? __wake_up_bit+0xd0/0xd0 [ 858.073577] ? xfs_iget+0x10ba/0x28d0 [ 858.077357] xlog_recover_finish+0x52/0x210 [ 858.082481] xfs_log_mount_finish+0xd9/0x2d0 [ 858.086880] ? xfs_iunlock+0x21a/0x3b0 [ 858.091313] xfs_mountfs+0xeef/0x1f40 [ 858.095098] ? xfs_filestream_get_parent+0xd0/0xd0 [ 858.100595] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 858.106055] ? xfs_default_resblks+0x60/0x60 [ 858.111015] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 858.116026] ? xfs_mru_cache_create+0x426/0x540 [ 858.121254] xfs_fs_fill_super+0xb7a/0x1380 [ 858.125591] mount_bdev+0x2b3/0x360 [ 858.130515] ? xfs_parseargs+0x1130/0x1130 [ 858.134740] mount_fs+0x92/0x2a0 [ 858.138670] vfs_kern_mount.part.0+0x5b/0x470 [ 858.143152] do_mount+0xe65/0x2a30 [ 858.146670] ? retint_kernel+0x2d/0x2d [ 858.151278] ? copy_mount_string+0x40/0x40 [ 858.155499] ? memset+0x20/0x40 [ 858.159309] ? copy_mount_options+0x1fa/0x2f0 [ 858.163789] ? copy_mnt_ns+0xa30/0xa30 [ 858.167657] SyS_mount+0xa8/0x120 [ 858.171846] ? copy_mnt_ns+0xa30/0xa30 [ 858.175720] do_syscall_64+0x1d5/0x640 [ 858.180135] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 858.185306] RIP: 0033:0x7f32598b85ca [ 858.189533] RSP: 002b:00007fff621632d8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 858.197235] RAX: ffffffffffffffda RBX: 00646975756f6e2c RCX: 00007f32598b85ca [ 858.205244] RDX: 000000002000bb00 RSI: 0000000020000040 RDI: 00007fff621632e0 [ 858.212844] RBP: 00007fff621632e0 R08: 00007fff62163320 R09: 0000000000000002 [ 858.220462] R10: 0000000000000003 R11: 0000000000000206 R12: 0000000000000004 [ 858.227731] R13: 0000555556f022c0 R14: 00007fff62163320 R15: 0000000000000000 [ 858.235676] [ 858.235676] Showing all locks held in the system: [ 858.242436] 1 lock held by khungtaskd/1533: [ 858.246790] #0: (tasklist_lock){.+.+}, at: [] debug_show_all_locks+0x7c/0x21a [ 858.255894] 2 locks held by syz-executor158/7970: [ 858.260846] #0: (&type->s_umount_key#46/1){+.+.}, at: [] sget_userns+0x556/0xc10 [ 858.270167] #1: (sb_internal#2){.+.+}, at: [] xfs_trans_alloc+0x259/0x320 [ 858.278954] [ 858.280580] ============================================= [ 858.280580] [ 858.287654] NMI backtrace for cpu 0 [ 858.291399] CPU: 0 PID: 1533 Comm: khungtaskd Not tainted 4.14.302-syzkaller #0 [ 858.298820] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 858.308172] Call Trace: [ 858.310737] dump_stack+0x1b2/0x281 [ 858.314343] nmi_cpu_backtrace.cold+0x57/0x93 [ 858.318818] ? irq_force_complete_move+0x350/0x350 [ 858.324073] nmi_trigger_cpumask_backtrace+0x13a/0x180 [ 858.329327] watchdog+0x5b9/0xb40 [ 858.332755] ? hungtask_pm_notify+0x50/0x50 [ 858.337053] kthread+0x30d/0x420 [ 858.340396] ? kthread_create_on_node+0xd0/0xd0 [ 858.345038] ret_from_fork+0x24/0x30 [ 858.348811] Sending NMI from CPU 0 to CPUs 1: [ 858.353747] NMI backtrace for cpu 1 [ 858.353751] CPU: 1 PID: 4620 Comm: systemd-journal Not tainted 4.14.302-syzkaller #0 [ 858.353755] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 858.353758] task: ffff8880a1b38040 task.stack: ffff8880a1b40000 [ 858.353761] RIP: 0010:__lock_acquire+0x1d0/0x3f20 [ 858.353764] RSP: 0018:ffff8880a1b47728 EFLAGS: 00000046 [ 858.353769] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 858.353772] RDX: 1ffffffff180e304 RSI: 0000000000000000 RDI: ffffffff8c071820 [ 858.353775] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000001 [ 858.353779] R10: 0000000000000001 R11: ffff8880a1b38040 R12: ffffffff8c071820 [ 858.353782] R13: 0000000000000000 R14: 0000000000000001 R15: ffffffff8becfdc0 [ 858.353786] FS: 00007f77ead318c0(0000) GS:ffff8880ba500000(0000) knlGS:0000000000000000 [ 858.353789] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 858.353792] CR2: 00007f77e8104000 CR3: 00000000a183f000 CR4: 00000000003406e0 [ 858.353796] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 858.353799] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 858.353801] Call Trace: [ 858.353803] ? __lock_acquire+0x5fc/0x3f20 [ 858.353805] ? trace_hardirqs_on+0x10/0x10 [ 858.353808] ? trace_hardirqs_on+0x10/0x10 [ 858.353810] ? __lock_acquire+0x5fc/0x3f20 [ 858.353812] ? trace_hardirqs_on+0x10/0x10 [ 858.353815] ? debug_check_no_obj_freed+0x2c0/0x680 [ 858.353817] lock_acquire+0x170/0x3f0 [ 858.353819] ? debug_check_no_obj_freed+0x135/0x680 [ 858.353822] _raw_spin_lock_irqsave+0x8c/0xc0 [ 858.353824] ? debug_check_no_obj_freed+0x135/0x680 [ 858.353827] debug_check_no_obj_freed+0x135/0x680 [ 858.353829] ? debug_object_activate+0x490/0x490 [ 858.353832] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 858.353834] __free_pages_ok+0x215/0xed0 [ 858.353837] ? kmem_freepages.isra.0+0x199/0x4b0 [ 858.353839] ? lock_downgrade+0x740/0x740 [ 858.353841] slabs_destroy+0x90/0xd0 [ 858.353843] ___cache_free+0x213/0x2c0 [ 858.353846] qlist_free_all+0x79/0x140 [ 858.353848] quarantine_reduce+0x185/0x200 [ 858.353850] kasan_kmalloc+0xa2/0x160 [ 858.353852] ? __lock_acquire+0x5fc/0x3f20 [ 858.353855] ? seccomp_run_filters+0x151/0x540 [ 858.353857] ? devkmsg_read+0x5f6/0x9b0 [ 858.353860] ? __put_seccomp_filter+0x90/0x90 [ 858.353862] ? trace_hardirqs_on+0x10/0x10 [ 858.353864] ? __lock_acquire+0x5fc/0x3f20 [ 858.353866] ? __seccomp_filter+0xbd/0xdd0 [ 858.353869] ? seccomp_send_sigsys+0x180/0x180 [ 858.353871] ? fsnotify+0x974/0x11b0 [ 858.353873] ? fs_reclaim_release+0xd0/0x110 [ 858.353876] ? kmem_cache_alloc+0x2c8/0x3c0 [ 858.353878] kmem_cache_alloc+0x111/0x3c0 [ 858.353880] prepare_creds+0x39/0x490 [ 858.353882] SyS_faccessat+0x7b/0x680 [ 858.353884] ? SyS_fallocate+0x80/0x80 [ 858.353887] ? do_syscall_64+0x4c/0x640 [ 858.353889] ? SyS_faccessat+0x680/0x680 [ 858.353891] do_syscall_64+0x1d5/0x640 [ 858.353894] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 858.353896] RIP: 0033:0x7f77e9fec9c7 [ 858.353898] RSP: 002b:00007ffd8aaf5f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000015 [ 858.353904] RAX: ffffffffffffffda RBX: 00007ffd8aaf8e40 RCX: 00007f77e9fec9c7 [ 858.353907] RDX: 00007f77eaa5da00 RSI: 0000000000000000 RDI: 00005620675209a3 [ 858.353911] RBP: 00007ffd8aaf5f60 R08: 0000000000000000 R09: 0000000000000000 [ 858.353914] R10: 0000000000000069 R11: 0000000000000246 R12: 0000000000000000 [ 858.353917] R13: 0000000000000000 R14: 00007ffd8aaf8e40 R15: 00007ffd8aaf6450 [ 858.353919] Code: 00 48 81 c4 80 01 00 00 44 89 e8 5b 5d 41 5c 41 5d 41 5e 41 5f c3 48 b8 00 00 00 00 00 fc ff df 4c 89 e2 48 c1 ea 03 80 3c 02 00 <0f> 85 67 2a 00 00 49 81 3c 24 e0 b7 2f 8b 0f 84 5f ff ff ff 83 [ 858.354817] Kernel panic - not syncing: hung_task: blocked tasks [ 858.709765] CPU: 0 PID: 1533 Comm: khungtaskd Not tainted 4.14.302-syzkaller #0 [ 858.717189] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 858.726547] Call Trace: [ 858.729386] dump_stack+0x1b2/0x281 [ 858.732992] panic+0x1f9/0x42d [ 858.736163] ? add_taint.cold+0x16/0x16 [ 858.740119] watchdog+0x5ca/0xb40 [ 858.743553] ? hungtask_pm_notify+0x50/0x50 [ 858.747858] kthread+0x30d/0x420 [ 858.751202] ? kthread_create_on_node+0xd0/0xd0 [ 858.755847] ret_from_fork+0x24/0x30 [ 858.759810] Kernel Offset: disabled [ 858.763469] Rebooting in 86400 seconds..