[ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Starting Load/Save RF Kill Switch Status... [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.85' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 484.108741] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue [ 484.124691] audit: type=1800 audit(1621342117.613:2): pid=8113 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor497" name="file0" dev="loop0" ino=17 res=0 [ 717.672235] INFO: task syz-executor497:8113 blocked for more than 140 seconds. [ 717.680296] Not tainted 4.19.190-syzkaller #0 [ 717.686262] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 717.694916] syz-executor497 D26144 8113 8112 0x00000004 [ 717.701160] Call Trace: [ 717.703848] __schedule+0x887/0x2040 [ 717.707738] ? io_schedule_timeout+0x140/0x140 [ 717.712375] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 717.717063] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 717.722361] ? prepare_to_wait_exclusive+0x121/0x2d0 [ 717.728097] schedule+0x8d/0x1b0 [ 717.731811] io_schedule+0xb5/0x120 [ 717.736071] bit_wait_io+0x12/0x90 [ 717.739848] __wait_on_bit_lock+0xb5/0x170 [ 717.744351] ? bit_wait+0x90/0x90 [ 717.747833] out_of_line_wait_on_bit_lock+0xd2/0x100 [ 717.753463] ? __wait_on_bit_lock+0x170/0x170 [ 717.758144] ? lock_acquire+0x170/0x3c0 [ 717.762285] ? init_wait_var_entry+0x1a0/0x1a0 [ 717.767130] __lock_buffer+0x52/0x60 [ 717.770923] __sync_dirty_buffer+0x2a6/0x320 [ 717.776082] __ext4_handle_dirty_metadata+0x234/0x590 [ 717.781495] ext4_convert_inline_data_nolock+0x5c9/0xd10 [ 717.787340] ? ext4_read_inline_page+0x6f0/0x6f0 [ 717.792334] ext4_convert_inline_data+0x347/0x3a0 [ 717.797992] ? ext4_inline_data_truncate+0xa30/0xa30 [ 717.803189] ? common_file_perm+0x4e5/0x850 [ 717.807944] ext4_fallocate+0x137/0x2150 [ 717.812264] ? ext4_insert_range+0x1500/0x1500 [ 717.817440] vfs_fallocate+0x487/0x9a0 [ 717.821326] __x64_sys_fallocate+0xcf/0x140 [ 717.826650] do_syscall_64+0xf9/0x620 [ 717.830668] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 717.836141] RIP: 0033:0x4447b9 [ 717.839349] Code: Bad RIP value. [ 717.843167] RSP: 002b:00007ffeffeff408 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 717.851635] RAX: ffffffffffffffda RBX: 0030656c69662f2e RCX: 00000000004447b9 [ 717.859252] RDX: 000000000000048d RSI: 0000000000000000 RDI: 0000000000000003 [ 717.867124] RBP: 0000000000000000 R08: 00000000004b0080 R09: 00000000004b0080 [ 717.874546] R10: 0000000000000006 R11: 0000000000000246 R12: 00007ffeffeff430 [ 717.882166] R13: 0000000000000000 R14: 431bde82d7b634db R15: 00000000004004a0 [ 717.889832] [ 717.889832] Showing all locks held in the system: [ 717.896622] 1 lock held by khungtaskd/1570: [ 717.901034] #0: 00000000c6995760 (rcu_read_lock){....}, at: debug_show_all_locks+0x53/0x265 [ 717.910971] 1 lock held by in:imklog/7882: [ 717.915481] 2 locks held by syz-executor497/8113: [ 717.920320] #0: 000000007847a759 (sb_writers#3){.+.+}, at: vfs_fallocate+0x7c0/0x9a0 [ 717.928555] #1: 000000008611efa3 (&ei->xattr_sem){++++}, at: ext4_convert_inline_data+0x20a/0x3a0 [ 717.938495] [ 717.940121] ============================================= [ 717.940121] [ 717.947532] NMI backtrace for cpu 0 [ 717.951340] CPU: 0 PID: 1570 Comm: khungtaskd Not tainted 4.19.190-syzkaller #0 [ 717.958956] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 717.968563] Call Trace: [ 717.971285] dump_stack+0x1fc/0x2ef [ 717.975113] nmi_cpu_backtrace.cold+0x63/0xa2 [ 717.979875] ? lapic_can_unplug_cpu+0x80/0x80 [ 717.984370] nmi_trigger_cpumask_backtrace+0x1a6/0x1f0 [ 717.989818] watchdog+0x991/0xe60 [ 717.993492] ? reset_hung_task_detector+0x30/0x30 [ 717.998502] kthread+0x33f/0x460 [ 718.002119] ? kthread_park+0x180/0x180 [ 718.006091] ret_from_fork+0x24/0x30 [ 718.009976] Sending NMI from CPU 0 to CPUs 1: [ 718.014861] NMI backtrace for cpu 1 [ 718.014866] CPU: 1 PID: 4695 Comm: systemd-journal Not tainted 4.19.190-syzkaller #0 [ 718.014872] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 718.014876] RIP: 0010:__sanitizer_cov_trace_pc+0x4/0x50 [ 718.014886] Code: e8 b1 c3 35 00 e9 ab fe ff ff 4c 89 ef e8 a4 c3 35 00 e9 23 fe ff ff 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 8b 34 24 <65> 48 8b 04 25 80 df 01 00 65 8b 15 8c 80 9f 7e 81 e2 00 01 1f 00 [ 718.014889] RSP: 0018:ffff8880a08a7dd8 EFLAGS: 00000202 [ 718.014915] RAX: 0000000000000000 RBX: ffff8880a0d9a780 RCX: ffffffff81a9ce96 [ 718.014920] RDX: 0000000000000000 RSI: ffffffff81a9cea4 RDI: 0000000000000004 [ 718.014925] RBP: 0000000000000014 R08: 0000000000000001 R09: 0000000000000040 [ 718.014930] R10: 0000000000000004 R11: 0000000000000000 R12: 0000000000000040 [ 718.014934] R13: ffff8880a0d9a7d8 R14: 0000000000000000 R15: 0000000000004000 [ 718.014939] FS: 00007f93775358c0(0000) GS:ffff8880ba100000(0000) knlGS:0000000000000000 [ 718.014943] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 718.014947] CR2: 00007f937487b000 CR3: 00000000a11df000 CR4: 00000000001406e0 [ 718.014952] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 718.014956] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 718.014959] Call Trace: [ 718.014962] __alloc_fd+0x1c4/0x570 [ 718.014964] do_sys_open+0x297/0x520 [ 718.014967] ? filp_open+0x70/0x70 [ 718.014971] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 718.014974] ? trace_hardirqs_off_caller+0x6e/0x210 [ 718.014977] ? do_syscall_64+0x21/0x620 [ 718.014980] do_syscall_64+0xf9/0x620 [ 718.014984] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 718.014987] RIP: 0033:0x7f9376ac4840 [ 718.014996] Code: 73 01 c3 48 8b 0d 68 77 20 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 83 3d 89 bb 20 00 00 75 10 b8 02 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 1e f6 ff ff 48 89 04 24 [ 718.015000] RSP: 002b:00007ffdbbd5d928 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 718.015008] RAX: ffffffffffffffda RBX: 00007ffdbbd5dc30 RCX: 00007f9376ac4840 [ 718.015012] RDX: 00000000000001a0 RSI: 0000000000080042 RDI: 0000556cd9c5dd80 [ 718.015017] RBP: 000000000000000d R08: 0000000000000000 R09: 00000000ffffffff [ 718.015021] R10: 0000000000000069 R11: 0000000000000246 R12: 00000000ffffffff [ 718.015026] R13: 0000556cd9c52040 R14: 00007ffdbbd5dbf0 R15: 0000556cd9c5ebd0 [ 718.015658] Kernel panic - not syncing: hung_task: blocked tasks [ 718.253857] CPU: 0 PID: 1570 Comm: khungtaskd Not tainted 4.19.190-syzkaller #0 [ 718.261639] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 718.271618] Call Trace: [ 718.274378] dump_stack+0x1fc/0x2ef [ 718.278184] panic+0x26a/0x50e [ 718.281365] ? __warn_printk+0xf3/0xf3 [ 718.285310] ? lapic_can_unplug_cpu+0x80/0x80 [ 718.290225] ? ___preempt_schedule+0x16/0x18 [ 718.294673] ? watchdog+0x991/0xe60 [ 718.298288] ? nmi_trigger_cpumask_backtrace+0x15e/0x1f0 [ 718.303848] watchdog+0x9a2/0xe60 [ 718.307650] ? reset_hung_task_detector+0x30/0x30 [ 718.312588] kthread+0x33f/0x460 [ 718.315948] ? kthread_park+0x180/0x180 [ 718.320870] ret_from_fork+0x24/0x30 [ 718.326874] Kernel Offset: disabled [ 718.330785] Rebooting in 86400 seconds..