[info] Using makefile-style concurrent boot in runlevel 2. [ 23.388632] audit: type=1800 audit(1541409798.591:21): pid=5456 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="bootlogs" dev="sda1" ino=2419 res=0 [ 23.415617] audit: type=1800 audit(1541409798.601:22): pid=5456 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="motd" dev="sda1" ino=2447 res=0 [....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.38' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 513.290948] INFO: task syz-executor666:5613 blocked for more than 140 seconds. [ 513.298630] Not tainted 4.19.0+ #320 [ 513.303032] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 513.311042] syz-executor666 D23632 5613 5612 0x00000004 [ 513.316672] Call Trace: [ 513.319302] __schedule+0x8cf/0x21d0 [ 513.323061] ? __sched_text_start+0x8/0x8 [ 513.327262] ? perf_trace_sched_process_exec+0x860/0x860 [ 513.332932] ? zap_class+0x640/0x640 [ 513.336665] ? zap_class+0x640/0x640 [ 513.340369] ? zap_class+0x640/0x640 [ 513.344164] schedule+0xfe/0x460 [ 513.347537] ? __schedule+0x21d0/0x21d0 [ 513.351576] ? find_held_lock+0x36/0x1c0 [ 513.355717] ? mark_held_locks+0xc7/0x130 [ 513.359864] schedule_timeout+0x1cc/0x260 [ 513.364076] ? usleep_range+0x1a0/0x1a0 [ 513.368053] ? wait_for_completion+0x41f/0x8a0 [ 513.372764] ? trace_hardirqs_off_caller+0x310/0x310 [ 513.378205] wait_for_completion+0x427/0x8a0 [ 513.382749] ? wait_for_completion_interruptible+0x840/0x840 [ 513.388604] ? wake_up_q+0x100/0x100 [ 513.392385] ? lock_release+0xa00/0xa00 [ 513.396361] ? __init_waitqueue_head+0x9e/0x150 [ 513.401071] ? init_wait_entry+0x1c0/0x1c0 [ 513.405518] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 513.411151] flush_workqueue+0x742/0x1e10 [ 513.415473] ? print_usage_bug+0xc0/0xc0 [ 513.419530] ? cancel_delayed_work+0x3e0/0x3e0 [ 513.424245] ? is_bpf_text_address+0xac/0x170 [ 513.428746] ? lock_downgrade+0x900/0x900 [ 513.432977] ? check_preemption_disabled+0x48/0x280 [ 513.438018] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 513.443105] ? __lock_acquire+0x62f/0x4c20 [ 513.447350] ? rcu_softirq_qs+0x20/0x20 [ 513.451490] ? unwind_dump+0x190/0x190 [ 513.455393] ? zap_class+0x640/0x640 [ 513.459097] ? mark_held_locks+0x130/0x130 [ 513.463410] ? __kernel_text_address+0xd/0x40 [ 513.467916] ? lock_acquire+0x1ed/0x520 [ 513.471980] ? vim2m_release+0xbc/0x150 [ 513.475967] ? lock_release+0xa00/0xa00 [ 513.479926] ? perf_trace_sched_process_exec+0x860/0x860 [ 513.485682] ? v4l2_ctrl_handler_free.part.12+0x742/0xb80 [ 513.491257] ? lock_downgrade+0x900/0x900 [ 513.495448] ? kfree+0xcf/0x230 [ 513.498722] ? __mutex_lock+0x85e/0x16f0 [ 513.502968] ? trace_hardirqs_on+0x310/0x310 [ 513.507374] ? zap_class+0x640/0x640 [ 513.511158] vim2m_stop_streaming+0x7c/0x2c0 [ 513.515615] ? vim2m_stop_streaming+0x7c/0x2c0 [ 513.520259] ? mark_held_locks+0xc7/0x130 [ 513.524465] ? vim2m_buf_queue+0xa0/0xa0 [ 513.528575] __vb2_queue_cancel+0x171/0xd20 [ 513.533037] ? trace_hardirqs_on+0xbd/0x310 [ 513.537362] ? kasan_check_read+0x11/0x20 [ 513.541655] ? vb2_buffer_done+0xb90/0xb90 [ 513.545894] ? kasan_check_read+0x11/0x20 [ 513.550106] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 513.555318] ? v4l2_m2m_cancel_job+0x2f8/0x650 [ 513.559951] ? v4l2_m2m_job_finish+0x4c0/0x4c0 [ 513.564590] ? kasan_check_read+0x11/0x20 [ 513.568746] ? mutex_destroy+0x103/0x200 [ 513.572853] ? percpu_down_write+0x540/0x540 [ 513.577372] ? vidioc_querycap+0xd0/0xd0 [ 513.581492] vb2_core_queue_release+0x26/0x80 [ 513.586039] vb2_queue_release+0x15/0x20 [ 513.590095] v4l2_m2m_ctx_release+0x1e/0x35 [ 513.594527] vim2m_release+0xe6/0x150 [ 513.598339] v4l2_release+0x224/0x3a0 [ 513.602183] ? dev_debug_store+0x140/0x140 [ 513.606470] __fput+0x385/0xa30 [ 513.609739] ? get_max_files+0x20/0x20 [ 513.613679] ? trace_hardirqs_on+0xbd/0x310 [ 513.618057] ? kasan_check_read+0x11/0x20 [ 513.622267] ? task_work_run+0x1af/0x2a0 [ 513.626329] ? trace_hardirqs_off_caller+0x310/0x310 [ 513.631476] ? filp_close+0x1cd/0x250 [ 513.635279] ____fput+0x15/0x20 [ 513.638547] task_work_run+0x1e8/0x2a0 [ 513.642481] ? task_work_cancel+0x240/0x240 [ 513.646828] ? copy_fd_bitmaps+0x210/0x210 [ 513.651158] ? do_syscall_64+0x9a/0x820 [ 513.655141] exit_to_usermode_loop+0x318/0x380 [ 513.659710] ? __bpf_trace_sys_exit+0x30/0x30 [ 513.664242] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 513.669780] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 513.675360] do_syscall_64+0x6be/0x820 [ 513.679247] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 513.684684] ? syscall_return_slowpath+0x5e0/0x5e0 [ 513.689623] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 513.694537] ? trace_hardirqs_on_caller+0x310/0x310 [ 513.699556] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 513.704616] ? prepare_exit_to_usermode+0x291/0x3b0 [ 513.709639] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 513.714700] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 513.719896] RIP: 0033:0x401010 [ 513.723144] Code: 00 00 5b 00 00 00 12 00 0c 00 70 1e 40 00 00 00 00 00 00 00 00 00 00 00 00 00 74 00 00 00 12 00 0f 00 78 6f 40 00 00 00 00 00 <00> 00 00 00 00 00 00 00 a5 00 00 00 11 00 1a 00 a8 88 60 00 00 00 [ 513.742173] RSP: 002b:00007ffdfe739768 EFLAGS: 00000246 ORIG_RAX: 0000000000000003 [ 513.749876] RAX: 0000000000000000 RBX: 0000000000000003 RCX: 0000000000401010 [ 513.757225] RDX: 0000000000444bb9 RSI: 0000000000000000 RDI: 0000000000000003 [ 513.764580] RBP: 0000000000000000 R08: 00000000004002e0 R09: 00000000004002e0 [ 513.771905] R10: 00000000004002e0 R11: 0000000000000246 R12: 0000000000401f20 [ 513.779174] R13: 0000000000401fb0 R14: 0000000000000000 R15: 0000000000000000 [ 513.786684] [ 513.786684] Showing all locks held in the system: [ 513.793044] 2 locks held by kworker/0:1/12: [ 513.797475] #0: 0000000011eedfb9 ((wq_completion)"events"){+.+.}, at: process_one_work+0xb43/0x1c40 [ 513.806892] #1: 00000000db166076 ((work_completion)(&smc->tcp_listen_work)){+.+.}, at: process_one_work+0xb9a/0x1c40 [ 513.817708] 1 lock held by khungtaskd/1008: [ 513.822136] #0: 00000000b69ca09f (rcu_read_lock){....}, at: debug_show_all_locks+0xd0/0x424 [ 513.830851] 1 lock held by rsyslogd/5494: [ 513.835066] #0: 00000000c785ab84 (&f->f_pos_lock){+.+.}, at: __fdget_pos+0x1bb/0x200 [ 513.843123] 2 locks held by getty/5585: [ 513.847093] #0: 00000000c7916b4b (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x32/0x40 [ 513.855384] #1: 000000001345f313 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x335/0x1e80 [ 513.864342] 2 locks held by getty/5586: [ 513.868298] #0: 000000000e575265 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x32/0x40 [ 513.876566] #1: 00000000dd2b6de7 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x335/0x1e80 [ 513.885449] 2 locks held by getty/5587: [ 513.889404] #0: 00000000fd421f65 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x32/0x40 [ 513.897774] #1: 00000000e5232280 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x335/0x1e80 [ 513.906665] 2 locks held by getty/5588: [ 513.910629] #0: 00000000ee1d6608 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x32/0x40 [ 513.919112] #1: 00000000c3692826 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x335/0x1e80 [ 513.928262] 2 locks held by getty/5589: [ 513.932263] #0: 00000000241840e6 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x32/0x40 [ 513.940509] #1: 0000000001833815 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x335/0x1e80 [ 513.949437] 2 locks held by getty/5590: [ 513.953572] #0: 000000001b21ee18 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x32/0x40 [ 513.962043] #1: 000000007262ba2f (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x335/0x1e80 [ 513.970964] 2 locks held by getty/5591: [ 513.974935] #0: 00000000242fd0f7 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x32/0x40 [ 513.983226] #1: 00000000ec2c168c (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x335/0x1e80 [ 513.992221] 2 locks held by syz-executor666/5613: [ 513.997083] #0: 00000000967af508 (&mdev->req_queue_mutex){+.+.}, at: v4l2_release+0x1d7/0x3a0 [ 514.005896] #1: 000000003bcb6b9b (&dev->dev_mutex){+.+.}, at: vim2m_release+0xbc/0x150 [ 514.014110] [ 514.015785] ============================================= [ 514.015785] [ 514.022875] NMI backtrace for cpu 0 [ 514.026505] CPU: 0 PID: 1008 Comm: khungtaskd Not tainted 4.19.0+ #320 [ 514.033158] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 514.042654] Call Trace: [ 514.045323] dump_stack+0x244/0x39d [ 514.048950] ? dump_stack_print_info.cold.1+0x20/0x20 [ 514.054212] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 514.059752] nmi_cpu_backtrace.cold.2+0x5c/0xa1 [ 514.064466] ? lapic_can_unplug_cpu.cold.27+0x3f/0x3f [ 514.069653] nmi_trigger_cpumask_backtrace+0x1e8/0x22a [ 514.074937] arch_trigger_cpumask_backtrace+0x14/0x20 [ 514.080118] watchdog+0xb51/0x1060 [ 514.083732] ? hungtask_pm_notify+0xb0/0xb0 [ 514.088052] ? __kthread_parkme+0xce/0x1a0 [ 514.092287] ? _raw_spin_unlock_irqrestore+0x82/0xd0 [ 514.097391] ? _raw_spin_unlock_irqrestore+0x82/0xd0 [ 514.102486] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 514.107072] ? trace_hardirqs_on+0xbd/0x310 [ 514.111386] ? kasan_check_read+0x11/0x20 [ 514.115533] ? __kthread_parkme+0xce/0x1a0 [ 514.119771] ? trace_hardirqs_off_caller+0x310/0x310 [ 514.124946] ? preempt_schedule+0x4d/0x60 [ 514.129176] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 514.134274] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 514.139808] ? __kthread_parkme+0xfb/0x1a0 [ 514.144034] ? hungtask_pm_notify+0xb0/0xb0 [ 514.148354] kthread+0x35a/0x440 [ 514.151708] ? kthread_stop+0x900/0x900 [ 514.155669] ret_from_fork+0x3a/0x50 [ 514.159759] Sending NMI from CPU 0 to CPUs 1: [ 514.165170] NMI backtrace for cpu 1 [ 514.165176] CPU: 1 PID: 0 Comm: swapper/1 Not tainted 4.19.0+ #320 [ 514.165182] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 514.165186] RIP: 0010:lockdep_hardirqs_off+0x65/0x2b0 [ 514.165196] Code: d0 7c 08 84 d2 0f 85 0c 02 00 00 8b 3d 08 1a b3 08 85 ff 0f 84 a0 01 00 00 65 4c 8b 24 25 40 ee 01 00 49 8d bc 24 7c 08 00 00 <48> b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 0f b6 14 02 48 [ 514.165200] RSP: 0018:ffff8801daf07bc0 EFLAGS: 00000002 [ 514.165208] RAX: 0000000000000007 RBX: ffff8801d9b14340 RCX: ffffffff8185b627 [ 514.165213] RDX: 0000000000000000 RSI: ffffffff8185b65f RDI: ffff8801d9b14bbc [ 514.165218] RBP: ffff8801daf07bd8 R08: ffff8801d9b14340 R09: ffffed003b5e5ae4 [ 514.165222] R10: ffffed003b5e5ae4 R11: ffff8801daf2d723 R12: ffff8801d9b14340 [ 514.165228] R13: ffffffff8171bfba R14: 00000077b5999fab R15: 0000000000000004 [ 514.165233] FS: 0000000000000000(0000) GS:ffff8801daf00000(0000) knlGS:0000000000000000 [ 514.165237] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 514.165242] CR2: 0000000002204000 CR3: 00000001c3586000 CR4: 00000000001406e0 [ 514.165247] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 514.165252] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 514.165255] Call Trace: [ 514.165258] [ 514.165261] trace_hardirqs_off+0xb8/0x310 [ 514.165265] ? kasan_check_write+0x14/0x20 [ 514.165269] ? trace_hardirqs_on+0x310/0x310 [ 514.165273] ? check_preemption_disabled+0x48/0x280 [ 514.165277] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 514.165281] ? check_preemption_disabled+0x48/0x280 [ 514.165285] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 514.165288] tick_irq_enter+0x26a/0x3e0 [ 514.165291] irq_enter+0xbd/0xe0 [ 514.165294] scheduler_ipi+0x3d0/0xad0 [ 514.165297] ? kasan_check_read+0x11/0x20 [ 514.165300] ? migration_cpu_stop+0x630/0x630 [ 514.165303] ? rcu_softirq_qs+0x20/0x20 [ 514.165307] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 514.165310] ? check_preemption_disabled+0x48/0x280 [ 514.165313] ? rcu_irq_exit+0x1a2/0x390 [ 514.165316] ? rcu_nmi_exit+0x290/0x290 [ 514.165319] ? kvm_clock_read+0x18/0x30 [ 514.165322] ? kvm_sched_clock_read+0x9/0x20 [ 514.165325] ? task_prio+0x50/0x50 [ 514.165329] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 514.165333] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 514.165336] ? check_preemption_disabled+0x48/0x280 [ 514.165339] smp_reschedule_interrupt+0x109/0x650 [ 514.165343] ? smp_thermal_interrupt+0x850/0x850 [ 514.165346] ? interrupt_entry+0xb5/0xc0 [ 514.165349] ? trace_hardirqs_off_caller+0xbb/0x310 [ 514.165352] ? trace_hardirqs_off_caller+0xbb/0x310 [ 514.165356] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 514.165359] ? trace_hardirqs_on_caller+0x310/0x310 [ 514.165363] ? trace_hardirqs_on_caller+0x310/0x310 [ 514.165366] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 514.165369] reschedule_interrupt+0xf/0x20 [ 514.165371] [ 514.165374] RIP: 0010:native_safe_halt+0x6/0x10 [ 514.165384] Code: e9 2c ff ff ff 48 89 c7 48 89 45 d8 e8 23 d5 f3 f9 48 8b 45 d8 e9 ca fe ff ff 48 89 df e8 12 d5 f3 f9 eb 82 55 48 89 e5 fb f4 <5d> c3 0f 1f 84 00 00 00 00 00 55 48 89 e5 f4 5d c3 90 90 90 90 90 [ 514.165387] RSP: 0018:ffff8801d9b27cb8 EFLAGS: 00000286 ORIG_RAX: ffffffffffffff02 [ 514.165395] RAX: dffffc0000000000 RBX: 1ffff1003b364f9b RCX: 0000000000000000 [ 514.165399] RDX: 1ffffffff12a3f79 RSI: 0000000000000001 RDI: ffffffff8951fbc8 [ 514.165404] RBP: ffff8801d9b27cb8 R08: ffff8801d9b14340 R09: 0000000000000000 [ 514.165408] R10: 0000000000000000 R11: 0000000000000000 R12: ffff8801d9b27d78 [ 514.165412] R13: ffffffff8a14cae0 R14: 0000000000000000 R15: 0000000000000001 [ 514.165415] default_idle+0xbf/0x490 [ 514.165419] ? rcu_dynticks_eqs_enter+0x4f/0x80 [ 514.165422] ? __sched_text_end+0x1/0x1 [ 514.165425] ? rcu_idle_enter+0x39a/0x530 [ 514.165428] ? rcu_eqs_special_set+0x1c0/0x1c0 [ 514.165432] ? tsc_verify_tsc_adjust+0x137/0x450 [ 514.165435] ? trace_hardirqs_off_caller+0x310/0x310 [ 514.165439] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 514.165443] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 514.165446] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 514.165449] arch_cpu_idle+0x10/0x20 [ 514.165452] default_idle_call+0x6d/0x90 [ 514.165455] do_idle+0x49b/0x5c0 [ 514.165458] ? arch_cpu_idle_exit+0x70/0x70 [ 514.165461] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 514.165464] ? complete+0x62/0x80 [ 514.165467] cpu_startup_entry+0x18/0x20 [ 514.165470] start_secondary+0x487/0x5f0 [ 514.165474] ? set_cpu_sibling_map+0x1890/0x1890 [ 514.165477] secondary_startup_64+0xa4/0xb0 [ 514.165490] Kernel panic - not syncing: hung_task: blocked tasks [ 514.608538] CPU: 0 PID: 1008 Comm: khungtaskd Not tainted 4.19.0+ #320 [ 514.615289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 514.624632] Call Trace: [ 514.627215] dump_stack+0x244/0x39d [ 514.630895] ? dump_stack_print_info.cold.1+0x20/0x20 [ 514.636343] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 514.641412] panic+0x2ad/0x55c [ 514.644593] ? add_taint.cold.5+0x16/0x16 [ 514.648741] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 514.654290] ? nmi_trigger_cpumask_backtrace+0x1d1/0x22a [ 514.659786] ? nmi_trigger_cpumask_backtrace+0x1c8/0x22a [ 514.665288] watchdog+0xb62/0x1060 [ 514.668829] ? hungtask_pm_notify+0xb0/0xb0 [ 514.673141] ? __kthread_parkme+0xce/0x1a0 [ 514.677371] ? _raw_spin_unlock_irqrestore+0x82/0xd0 [ 514.682555] ? _raw_spin_unlock_irqrestore+0x82/0xd0 [ 514.687659] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 514.692231] ? trace_hardirqs_on+0xbd/0x310 [ 514.696539] ? kasan_check_read+0x11/0x20 [ 514.700674] ? __kthread_parkme+0xce/0x1a0 [ 514.704902] ? trace_hardirqs_off_caller+0x310/0x310 [ 514.710061] ? preempt_schedule+0x4d/0x60 [ 514.714214] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 514.719426] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 514.724964] ? __kthread_parkme+0xfb/0x1a0 [ 514.729300] ? hungtask_pm_notify+0xb0/0xb0 [ 514.733613] kthread+0x35a/0x440 [ 514.736966] ? kthread_stop+0x900/0x900 [ 514.740933] ret_from_fork+0x3a/0x50 [ 514.745945] Kernel Offset: disabled [ 514.749578] Rebooting in 86400 seconds..