[[0;32m  OK  [0m] Started OpenBSD Secure Shell server.
[[0;32m  OK  [0m] Listening on Load/Save RF Kill Switch Status /dev/rfkill Watch.
[[0;32m  OK  [0m] Reached target Multi-User System.
[[0;32m  OK  [0m] Reached target Graphical Interface.
         Starting Update UTMP about System Runlevel Changes...

Debian GNU/Linux 9 syzkaller ttyS0

Warning: Permanently added '10.128.10.6' (ECDSA) to the list of known hosts.
syzkaller login: [  469.546862][ T7072] IPVS: ftp: loaded support on port[0] = 21
[  469.869486][ T7064] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  470.109401][ T7064] usb 1-1: Using ep0 maxpacket: 16
[  470.229578][ T7064] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  470.240665][ T7064] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  470.251641][ T7064] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  470.339571][ T7064] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  470.348722][ T7064] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=30
[  470.357746][ T7064] usb 1-1: SerialNumber: syz
[  470.365025][ T7064] usb 1-1: config 0 descriptor??
[  471.071704][ T7064] microsoft 0003:045E:07DA.0001: unknown main item tag 0x0
[  616.484259][ T1134] INFO: task syz-executor610:7072 blocked for more than 143 seconds.
[  616.492480][ T1134]       Not tainted 5.7.0-rc7-syzkaller #0
[  616.500441][ T1134] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  616.509972][ T1134] syz-executor610 D24336  7072   7071 0x80004002
[  616.517403][ T1134] Call Trace:
[  616.520814][ T1134]  __schedule+0x805/0xc90
[  616.526494][ T1134]  ? schedule+0x188/0x220
[  616.530926][ T1134]  ? synchronize_rcu_expedited+0x495/0x5b0
[  616.538009][ T1134]  ? init_wait_entry+0xd0/0xd0
[  616.542775][ T1134]  ? rcu_exp_sel_wait_wake+0x18e0/0x18e0
[  616.549663][ T1134]  ? up_write+0xe9/0x450
[  616.553981][ T1134]  ? shrink_dentry_list+0x89b/0x8b0
[  616.560557][ T1134]  ? namespace_unlock+0x1ef/0x410
[  616.566465][ T1134]  ? free_nsproxy+0x49/0x3b0
[  616.571057][ T1134]  ? put_mnt_ns+0xe4/0x200
[  616.576723][ T1134]  ? free_nsproxy+0x49/0x3b0
[  616.581383][ T1134]  ? do_exit+0x5ea/0x1f80
[  616.587047][ T1134]  ? do_group_exit+0x15e/0x2c0
[  616.591891][ T1134]  ? trace_irq_disable_rcuidle+0x1f/0x1d0
[  616.599515][ T1134]  ? __do_sys_exit_group+0x13/0x20
[  616.605373][ T1134]  ? __se_sys_exit_group+0x10/0x10
[  616.610477][ T1134]  ? __x64_sys_exit_group+0x37/0x40
[  616.616926][ T1134]  ? do_syscall_64+0xf3/0x1b0
[  616.621633][ T1134]  ? entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  616.628946][ T1134] 
[  616.628946][ T1134] Showing all locks held in the system:
[  616.637635][ T1134] 1 lock held by khungtaskd/1134:
[  616.642662][ T1134]  #0: ffffffff892e85d0 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0x0/0x30
[  616.653864][ T1134] 1 lock held by in:imklog/6715:
[  616.659601][ T1134]  #0: ffff8880a441e6b0 (&f->f_pos_lock){+.+.}-{3:3}, at: __fdget_pos+0x25d/0x2f0
[  616.669620][ T1134] 6 locks held by kworker/1:0/7064:
[  616.675566][ T1134] 1 lock held by syz-executor610/7072:
[  616.681008][ T1134]  #0: ffffffff892eab20 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x1bd/0x5b0
[  616.693124][ T1134] 4 locks held by systemd-udevd/7099:
[  616.699404][ T1134]  #0: ffff8880a7fdcc70 (&p->lock){+.+.}-{3:3}, at: seq_read+0x60/0xce0
[  616.708641][ T1134]  #1: ffff888096486888 (&of->mutex){+.+.}-{3:3}, at: kernfs_seq_start+0x50/0x3b0
[  616.718779][ T1134]  #2: ffff88809fc0d660 (kn->count#78){.+.+}-{0:0}, at: kernfs_seq_start+0x6f/0x3b0
[  616.729378][ T1134]  #3: ffff8880a1df7218 (&dev->mutex){....}-{3:3}, at: serial_show+0x22/0xa0
[  616.739114][ T1134] 
[  616.741437][ T1134] =============================================
[  616.741437][ T1134] 
[  616.751176][ T1134] NMI backtrace for cpu 0
[  616.755623][ T1134] CPU: 0 PID: 1134 Comm: khungtaskd Not tainted 5.7.0-rc7-syzkaller #0
[  616.763855][ T1134] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  616.773893][ T1134] Call Trace:
[  616.777278][ T1134]  dump_stack+0x1e9/0x30e
[  616.781598][ T1134]  nmi_cpu_backtrace+0x9f/0x180
[  616.786500][ T1134]  ? arch_trigger_cpumask_backtrace+0x10/0x10
[  616.792549][ T1134]  nmi_trigger_cpumask_backtrace+0x16a/0x280
[  616.798575][ T1134]  watchdog+0xd2a/0xd40
[  616.802727][ T1134]  kthread+0x353/0x380
[  616.806784][ T1134]  ? hungtask_pm_notify+0x50/0x50
[  616.811789][ T1134]  ? kthread_blkcg+0xd0/0xd0
[  616.816398][ T1134]  ret_from_fork+0x24/0x30
[  616.821016][ T1134] Sending NMI from CPU 0 to CPUs 1:
[  616.827021][    C1] NMI backtrace for cpu 1
[  616.827025][    C1] CPU: 1 PID: 7064 Comm: kworker/1:0 Not tainted 5.7.0-rc7-syzkaller #0
[  616.827028][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  616.827030][    C1] Workqueue: usb_hub_wq hub_event
[  616.827035][    C1] RIP: 0010:__sanitizer_cov_trace_const_cmp4+0x0/0x90
[  616.827040][    C1] Code: 4c f2 08 48 c1 e0 03 48 83 c8 18 49 89 14 02 4d 89 44 f2 18 49 ff c1 4d 89 0a c3 0f 1f 44 00 00 66 2e 0f 1f 84 00 00 00 00 00 <4c> 8b 04 24 65 48 8b 04 25 40 1e 02 00 65 8b 0d 78 96 8e 7e f7 c1
[  616.827043][    C1] RSP: 0018:ffffc90001676cf0 EFLAGS: 00000246
[  616.827047][    C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffff88809fb9e240
[  616.827050][    C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000ffffffff
[  616.827053][    C1] RBP: ffff888092d24a04 R08: ffffffff86034f3b R09: ffffc900016790cc
[  616.827055][    C1] R10: 0000000000000004 R11: 0000000000000000 R12: ffff888092d24a00
[  616.827058][    C1] R13: 0000000000000000 R14: dffffc0000000000 R15: ffff888092d24a00
[  616.827061][    C1] FS:  0000000000000000(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000
[  616.827063][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  616.827066][    C1] CR2: 00000000004c6e68 CR3: 0000000092d41000 CR4: 00000000001406e0
[  616.827069][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  616.827072][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  616.827074][    C1] Call Trace:
[  616.827076][    C1]  hid_setup_resolution_multiplier+0x2ab/0xbe0
[  616.827079][    C1]  ? hid_parser_global+0x8cc/0x1500
[  616.827081][    C1]  hid_open_report+0xab2/0xdd0
[  616.827083][    C1]  ms_probe+0x12f/0x3f0
[  616.827085][    C1]  hid_device_probe+0x26c/0x410
[  616.827087][    C1]  really_probe+0x704/0xf60
[  616.827089][    C1]  driver_probe_device+0xe6/0x230
[  616.827091][    C1]  ? coredump_store+0x90/0x90
[  616.827093][    C1]  bus_for_each_drv+0x108/0x170
[  616.827095][    C1]  __device_attach+0x20c/0x3a0
[  616.827097][    C1]  bus_probe_device+0xb8/0x1f0
[  616.827099][    C1]  ? device_add+0x14a4/0x1ba0
[  616.827101][    C1]  device_add+0x1828/0x1ba0
[  616.827103][    C1]  hid_add_device+0xa2a/0xef0
[  616.827105][    C1]  ? memset+0x1f/0x40
[  616.827107][    C1]  ? lockdep_init_map_waits+0x2e/0x770
[  616.827109][    C1]  usbhid_probe+0x9bd/0xd10
[  616.827111][    C1]  usb_probe_interface+0x614/0xac0
[  616.827113][    C1]  really_probe+0x761/0xf60
[  616.827115][    C1]  driver_probe_device+0xe6/0x230
[  616.827117][    C1]  ? coredump_store+0x90/0x90
[  616.827119][    C1]  bus_for_each_drv+0x108/0x170
[  616.827121][    C1]  __device_attach+0x20c/0x3a0
[  616.827123][    C1]  bus_probe_device+0xb8/0x1f0
[  616.827125][    C1]  ? device_add+0x14a4/0x1ba0
[  616.827127][    C1]  device_add+0x1828/0x1ba0
[  616.827129][    C1]  usb_set_configuration+0x19d2/0x1f20
[  616.827131][    C1]  usb_generic_driver_probe+0x82/0x140
[  616.827133][    C1]  usb_probe_device+0x12d/0x1d0
[  616.827135][    C1]  really_probe+0x761/0xf60
[  616.827137][    C1]  driver_probe_device+0xe6/0x230
[  616.827139][    C1]  ? coredump_store+0x90/0x90
[  616.827141][    C1]  bus_for_each_drv+0x108/0x170
[  616.827147][    C1]  __device_attach+0x20c/0x3a0
[  616.827149][    C1]  bus_probe_device+0xb8/0x1f0
[  616.827151][    C1]  ? device_add+0x14a4/0x1ba0
[  616.827153][    C1]  device_add+0x1828/0x1ba0
[  616.827155][    C1]  usb_new_device+0xcc3/0x1650
[  616.827157][    C1]  hub_event+0x2823/0x4cb0
[  616.827159][    C1]  ? rcu_read_lock_sched_held+0x106/0x170
[  616.827161][    C1]  process_one_work+0x76e/0xfd0
[  616.827163][    C1]  worker_thread+0xa7f/0x1450
[  616.827165][    C1]  kthread+0x353/0x380
[  616.827167][    C1]  ? rcu_lock_release+0x20/0x20
[  616.827169][    C1]  ? kthread_blkcg+0xd0/0xd0
[  616.827171][    C1]  ret_from_fork+0x24/0x30
[  616.857049][ T1134] Kernel panic - not syncing: hung_task: blocked tasks
[  617.196969][ T1134] CPU: 0 PID: 1134 Comm: khungtaskd Not tainted 5.7.0-rc7-syzkaller #0
[  617.205199][ T1134] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  617.215251][ T1134] Call Trace:
[  617.218534][ T1134]  dump_stack+0x1e9/0x30e
[  617.222854][ T1134]  panic+0x264/0x7a0
[  617.226743][ T1134]  ? nmi_trigger_cpumask_backtrace+0x206/0x280
[  617.232884][ T1134]  watchdog+0xd3d/0xd40
[  617.237035][ T1134]  kthread+0x353/0x380
[  617.241105][ T1134]  ? hungtask_pm_notify+0x50/0x50
[  617.246118][ T1134]  ? kthread_blkcg+0xd0/0xd0
[  617.250708][ T1134]  ret_from_fork+0x24/0x30
[  617.256660][ T1134] Kernel Offset: disabled
[  617.260989][ T1134] Rebooting in 86400 seconds..