[[0;32m  OK  [0m] Started Getty on tty4.
[[0;32m  OK  [0m] Started Getty on tty3.
[[0;32m  OK  [0m] Started Getty on tty2.
[[0;32m  OK  [0m] Reached target Login Prompts.
[[0;32m  OK  [0m] Started OpenBSD Secure Shell server.

Debian GNU/Linux 9 syzkaller ttyS0

Warning: Permanently added '10.128.1.160' (ECDSA) to the list of known hosts.
syzkaller login: [  484.083830] IPVS: ftp: loaded support on port[0] = 21
executing program
[  717.656562] INFO: task syz-executor311:8122 blocked for more than 140 seconds.
[  717.664163]       Not tainted 4.19.211-syzkaller #0
[  717.670067] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  717.678210] syz-executor311 D27536  8122   8121 0x00000000
[  717.683841] Call Trace:
[  717.686489]  __schedule+0x887/0x2040
[  717.690205]  ? io_schedule_timeout+0x140/0x140
[  717.694771]  ? lock_downgrade+0x720/0x720
[  717.698979]  ? __mutex_lock+0x418/0x1190
[  717.703038]  schedule+0x8d/0x1b0
[  717.706454]  schedule_preempt_disabled+0xf/0x20
[  717.711116]  __mutex_lock+0x5f0/0x1190
[  717.714989]  ? fuse_lock_inode+0xaf/0xe0
[  717.719106]  ? mutex_trylock+0x1a0/0x1a0
[  717.723167]  ? __d_lookup_rcu+0x382/0x6b0
[  717.727396]  ? check_preemption_disabled+0x41/0x280
[  717.732413]  fuse_lock_inode+0xaf/0xe0
[  717.736282]  fuse_lookup+0x86/0x410
[  717.739967]  ? kernel_text_address+0xbd/0xf0
[  717.744374]  ? fuse_lookup_name+0x5c0/0x5c0
[  717.748768]  ? __d_lookup_rcu+0x6b0/0x6b0
[  717.753014]  ? __lockdep_init_map+0x100/0x5a0
[  717.757599]  ? __lockdep_init_map+0x100/0x5a0
[  717.762108]  __lookup_slow+0x246/0x4a0
[  717.765997]  ? follow_dotdot_rcu+0x1040/0x1040
[  717.770725]  ? lookup_fast+0x4e9/0x1080
[  717.774791]  ? walk_component+0x798/0xda0
[  717.779008]  walk_component+0x7ac/0xda0
[  717.782988]  ? lookup_fast+0x1080/0x1080
[  717.787176]  ? lock_downgrade+0x720/0x720
[  717.791379]  ? fuse_allow_current_process+0x107/0x340
[  717.796710]  ? fuse_getattr+0x2e0/0x2e0
[  717.800686]  ? fuse_permission+0x168/0x5a0
[  717.804916]  ? security_inode_permission+0xc5/0xf0
[  717.809904]  ? inode_permission.part.0+0x10c/0x450
[  717.814840]  link_path_walk.part.0+0x901/0x1230
[  717.819585]  ? walk_component+0xda0/0xda0
[  717.823728]  ? percpu_counter_add_batch+0x126/0x180
[  717.828795]  path_openat+0x1db/0x2df0
[  717.832604]  ? path_lookupat+0x8d0/0x8d0
[  717.836724]  ? mark_held_locks+0xf0/0xf0
[  717.840787]  ? lock_downgrade+0x720/0x720
[  717.844918]  do_filp_open+0x18c/0x3f0
[  717.848757]  ? may_open_dev+0xf0/0xf0
[  717.852563]  ? lock_downgrade+0x720/0x720
[  717.856850]  ? lock_acquire+0x170/0x3c0
[  717.860817]  ? __alloc_fd+0x34/0x570
[  717.864535]  ? do_raw_spin_unlock+0x171/0x230
[  717.869072]  ? _raw_spin_unlock+0x29/0x40
[  717.873228]  ? __alloc_fd+0x28d/0x570
[  717.877084]  do_sys_open+0x3b3/0x520
[  717.880792]  ? filp_open+0x70/0x70
[  717.884318]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  717.889722]  ? trace_hardirqs_off_caller+0x6e/0x210
[  717.894738]  ? do_syscall_64+0x21/0x620
[  717.898772]  do_syscall_64+0xf9/0x620
[  717.902571]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  717.907887] RIP: 0033:0x7fe6a33aae58
[  717.911599] Code: Bad RIP value.
[  717.915068] RSP: 002b:00007ffc1c34a740 EFLAGS: 00000287 ORIG_RAX: 0000000000000101
[  717.922834] RAX: ffffffffffffffda RBX: 00007ffc1c34a7b0 RCX: 00007fe6a33aae58
[  717.930156] RDX: 0000000000090800 RSI: 00007fe6a3401004 RDI: 00000000ffffff9c
[  717.937493] RBP: 0000000000000002 R08: 0000000000090800 R09: 00007fe6a3401004
[  717.944757] R10: 0000000000000000 R11: 0000000000000287 R12: 00007ffc1c34a93c
[  717.952205] R13: 0000000000000002 R14: 00007ffc1c34a990 R15: 00007ffc1c34a980
[  717.959565] INFO: task syz-executor311:8148 blocked for more than 140 seconds.
[  717.966961]       Not tainted 4.19.211-syzkaller #0
[  717.971965] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  717.980333] syz-executor311 D27528  8148   8122 0x00000004
[  717.985973] Call Trace:
[  717.988705]  __schedule+0x887/0x2040
[  717.992421]  ? io_schedule_timeout+0x140/0x140
[  717.997065]  ? prepare_to_wait_exclusive+0x2d0/0x2d0
[  718.002166]  schedule+0x8d/0x1b0
[  718.005516]  request_wait_answer+0x3dc/0x750
[  718.010051]  ? flush_bg_queue+0x390/0x390
[  718.014198]  ? ___preempt_schedule+0x16/0x18
[  718.018663]  ? wait_woken+0x250/0x250
[  718.022458]  ? ___preempt_schedule+0x16/0x18
[  718.026910]  __fuse_request_send+0x123/0x1c0
[  718.031323]  fuse_simple_request+0x2e6/0x820
[  718.035723]  fuse_lookup_name+0x24c/0x5c0
[  718.039965]  ? fuse_lock_inode+0xaf/0xe0
[  718.044028]  ? fuse_readdir+0x12f0/0x12f0
[  718.048221]  ? d_alloc_parallel+0x744/0x19e0
[  718.052637]  fuse_lookup+0xdf/0x410
[  718.056245]  ? fuse_lookup_name+0x5c0/0x5c0
[  718.060662]  ? __lockdep_init_map+0x100/0x5a0
[  718.065155]  ? __lockdep_init_map+0x100/0x5a0
[  718.069701]  __lookup_slow+0x246/0x4a0
[  718.073588]  ? follow_dotdot_rcu+0x1040/0x1040
[  718.078229]  ? lookup_fast+0x4e9/0x1080
[  718.082202]  ? walk_component+0x798/0xda0
[  718.086405]  walk_component+0x7ac/0xda0
[  718.090386]  ? lookup_fast+0x1080/0x1080
[  718.094436]  ? lock_downgrade+0x720/0x720
[  718.098671]  ? fuse_allow_current_process+0x107/0x340
[  718.103866]  ? fuse_getattr+0x2e0/0x2e0
[  718.107877]  ? fuse_permission+0x168/0x5a0
[  718.112118]  ? security_inode_permission+0xc5/0xf0
[  718.117107]  ? inode_permission.part.0+0x10c/0x450
[  718.122036]  link_path_walk.part.0+0x901/0x1230
[  718.126756]  ? walk_component+0xda0/0xda0
[  718.130906]  path_lookupat+0xe4/0x8d0
[  718.134691]  ? path_mountpoint+0xac0/0xac0
[  718.138978]  ? check_preemption_disabled+0x41/0x280
[  718.143996]  ? percpu_counter_add_batch+0x126/0x180
[  718.149055]  path_openat+0x1f92/0x2df0
[  718.152955]  ? _raw_spin_unlock_irqrestore+0x79/0xe0
[  718.158108]  ? path_lookupat+0x8d0/0x8d0
[  718.162166]  ? mark_held_locks+0xf0/0xf0
[  718.166210]  do_filp_open+0x18c/0x3f0
[  718.170047]  ? may_open_dev+0xf0/0xf0
[  718.173858]  ? lock_downgrade+0x720/0x720
[  718.178053]  ? lock_acquire+0x170/0x3c0
[  718.182020]  ? __alloc_fd+0x34/0x570
[  718.185729]  ? do_raw_spin_unlock+0x171/0x230
[  718.190265]  ? _raw_spin_unlock+0x29/0x40
[  718.194416]  ? __alloc_fd+0x28d/0x570
[  718.198284]  do_sys_open+0x3b3/0x520
[  718.201993]  ? filp_open+0x70/0x70
[  718.205517]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  718.210918]  ? trace_hardirqs_off_caller+0x6e/0x210
[  718.215938]  ? do_syscall_64+0x21/0x620
[  718.220003]  do_syscall_64+0xf9/0x620
[  718.223800]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  718.229112] RIP: 0033:0x7fe6a33ab1c9
[  718.232831] Code: Bad RIP value.
[  718.236176] RSP: 002b:00007fe6a333b2f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  718.243930] RAX: ffffffffffffffda RBX: 00007fe6a34344d0 RCX: 00007fe6a33ab1c9
[  718.251255] RDX: 0000000000200000 RSI: 0000000020000340 RDI: ffffffffffffff9c
[  718.258572] RBP: 00007fe6a34011bc R08: 0000000000000000 R09: 0000000000000000
[  718.265861] R10: 0000000000000000 R11: 0000000000000246 R12: 0030656c69662f2e
[  718.273169] R13: 65646f6d746f6f72 R14: 6873612f7665642f R15: 00007fe6a34344d8
[  718.280527] 
[  718.280527] Showing all locks held in the system:
[  718.286904] 1 lock held by ksoftirqd/0/9:
[  718.291050]  #0: 00000000e500f43e (&rq->lock){-.-.}, at: __schedule+0x1f9/0x2040
[  718.298654] 1 lock held by khungtaskd/1570:
[  718.302963]  #0: 000000005235cee2 (rcu_read_lock){....}, at: debug_show_all_locks+0x53/0x265
[  718.311630] 2 locks held by syz-executor311/8122:
[  718.316523]  #0: 000000002e4ad9c1 (&type->i_mutex_dir_key#7){++++}, at: walk_component+0x798/0xda0
[  718.325625]  #1: 00000000aca68daf (&fi->mutex){+.+.}, at: fuse_lock_inode+0xaf/0xe0
[  718.333466] 2 locks held by syz-executor311/8148:
[  718.338361]  #0: 000000002e4ad9c1 (&type->i_mutex_dir_key#7){++++}, at: walk_component+0x798/0xda0
[  718.347512]  #1: 00000000aca68daf (&fi->mutex){+.+.}, at: fuse_lock_inode+0xaf/0xe0
[  718.355327] 
[  718.357010] =============================================
[  718.357010] 
[  718.364039] NMI backtrace for cpu 1
[  718.367720] CPU: 1 PID: 1570 Comm: khungtaskd Not tainted 4.19.211-syzkaller #0
[  718.375162] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  718.384595] Call Trace:
[  718.387176]  dump_stack+0x1fc/0x2ef
[  718.390799]  nmi_cpu_backtrace.cold+0x63/0xa2
[  718.395372]  ? lapic_can_unplug_cpu+0x80/0x80
[  718.399874]  nmi_trigger_cpumask_backtrace+0x1a6/0x1f0
[  718.405139]  watchdog+0x991/0xe60
[  718.408576]  ? reset_hung_task_detector+0x30/0x30
[  718.413398]  kthread+0x33f/0x460
[  718.416745]  ? kthread_park+0x180/0x180
[  718.420702]  ret_from_fork+0x24/0x30
[  718.424527] Sending NMI from CPU 1 to CPUs 0:
[  718.429516] NMI backtrace for cpu 0
[  718.429522] CPU: 0 PID: 4694 Comm: systemd-journal Not tainted 4.19.211-syzkaller #0
[  718.429529] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  718.429533] RIP: 0010:___bpf_prog_run+0x6e/0x4e80
[  718.429543] Code: ff 4c 89 f0 4c 89 f2 48 c1 e8 03 83 e2 07 0f b6 04 18 38 d0 7f 08 84 c0 0f 85 f7 38 00 00 45 0f b6 3e 4a 8d 3c fd 60 b4 6f 88 <4c> 89 fe 48 89 f8 48 c1 e8 03 80 3c 18 00 0f 85 c7 38 00 00 43 ff
[  718.429548] RSP: 0018:ffff8880a082fa30 EFLAGS: 00000246
[  718.429555] RAX: 0000000000000000 RBX: dffffc0000000000 RCX: ffff8880a082fe70
[  718.429560] RDX: 0000000000000000 RSI: ffffffff816c36e5 RDI: ffffffff886fba00
[  718.429565] RBP: ffff8880a082fb00 R08: 0000000000000000 R09: 0000000000000000
[  718.429571] R10: 0000000000000007 R11: 0000000000000000 R12: ffffffff886fb460
[  718.429576] R13: ffffed1014105f62 R14: ffffc90001ad4058 R15: 00000000000000b4
[  718.429581] FS:  00007fc6658928c0(0000) GS:ffff8880ba000000(0000) knlGS:0000000000000000
[  718.429585] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  718.429590] CR2: 00007fc662c6c000 CR3: 00000000a084c000 CR4: 00000000003406f0
[  718.429596] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  718.429601] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  718.429603] Call Trace:
[  718.429607]  ? is_console_locked+0x10/0x10
[  718.429610]  ? __bpf_prog_run32+0x8f/0xd0
[  718.429614]  ? __bpf_prog_run64+0xd0/0xd0
[  718.429617]  ? lock_downgrade+0x720/0x720
[  718.429621]  ? __mutex_unlock_slowpath+0xea/0x610
[  718.429625]  ? seccomp_run_filters+0x124/0x590
[  718.429629]  ? __put_seccomp_filter+0xa0/0xa0
[  718.429632]  ? ep_scan_ready_list+0x653/0x9a0
[  718.429636]  ? ep_poll_callback+0xc80/0xc80
[  718.429639]  ? ep_poll+0x224/0xcb0
[  718.429643]  ? __seccomp_filter+0x93/0xca0
[  718.429646]  ? seccomp_send_sigsys+0x1c0/0x1c0
[  718.429650]  ? ep_poll+0x2c8/0xcb0
[  718.429653]  ? lockdep_hardirqs_on+0x3a8/0x5c0
[  718.429657]  ? ep_send_events_proc+0xb50/0xb50
[  718.429661]  ? debug_object_init_on_stack+0x20/0x20
[  718.429664]  ? kfree+0x110/0x210
[  718.429668]  ? task_work_run+0x11c/0x1c0
[  718.429671]  ? __secure_computing+0xfc/0x360
[  718.429675]  ? syscall_trace_enter+0x563/0xd60
[  718.429679]  ? syscall_slow_exit_work+0x630/0x630
[  718.429683]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  718.429687]  ? trace_hardirqs_off_caller+0x6e/0x210
[  718.429690]  ? do_syscall_64+0x21/0x620
[  718.429694]  ? do_syscall_64+0x486/0x620
[  718.429698]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  718.430074] Kernel panic - not syncing: hung_task: blocked tasks
[  718.674560] CPU: 1 PID: 1570 Comm: khungtaskd Not tainted 4.19.211-syzkaller #0
[  718.682074] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  718.691408] Call Trace:
[  718.693982]  dump_stack+0x1fc/0x2ef
[  718.697590]  panic+0x26a/0x50e
[  718.700765]  ? __warn_printk+0xf3/0xf3
[  718.704640]  ? _raw_spin_unlock_irqrestore+0x79/0xe0
[  718.709730]  ? cpumask_next+0x3c/0x40
[  718.713512]  ? printk_safe_flush+0xd6/0x120
[  718.717818]  ? watchdog+0x991/0xe60
[  718.721429]  ? nmi_trigger_cpumask_backtrace+0x15e/0x1f0
[  718.726875]  watchdog+0x9a2/0xe60
[  718.730309]  ? reset_hung_task_detector+0x30/0x30
[  718.735131]  kthread+0x33f/0x460
[  718.738474]  ? kthread_park+0x180/0x180
[  718.742428]  ret_from_fork+0x24/0x30
[  718.746400] Kernel Offset: disabled
[  718.750018] Rebooting in 86400 seconds..