[ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... Starting Load/Save RF Kill Switch Status... [ OK ] Started Update UTMP about System Runlevel Changes. [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.15.207' (ECDSA) to the list of known hosts. syzkaller login: [ 479.530210] IPVS: ftp: loaded support on port[0] = 21 executing program [ 717.741553] INFO: task syz-executor137:8101 blocked for more than 140 seconds. [ 717.748984] Not tainted 4.19.211-syzkaller #0 [ 717.754069] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 717.762255] syz-executor137 D27840 8101 8100 0x00000000 [ 717.767971] Call Trace: [ 717.770553] __schedule+0x887/0x2040 [ 717.774479] ? io_schedule_timeout+0x140/0x140 [ 717.779062] ? mark_held_locks+0xa6/0xf0 [ 717.783299] ? rwsem_down_read_failed+0x20a/0x390 [ 717.788168] schedule+0x8d/0x1b0 [ 717.791587] rwsem_down_read_failed+0x20a/0x390 [ 717.796260] ? rt_mutex_futex_unlock+0xf0/0xf0 [ 717.800828] ? unlazy_walk+0x21f/0x540 [ 717.804780] call_rwsem_down_read_failed+0x14/0x30 [ 717.809800] down_read+0x44/0x80 [ 717.813223] ? walk_component+0x798/0xda0 [ 717.817372] walk_component+0x798/0xda0 [ 717.821503] ? lookup_fast+0x1080/0x1080 [ 717.825565] ? lock_downgrade+0x720/0x720 [ 717.829696] ? fuse_allow_current_process+0x107/0x340 [ 717.834937] ? fuse_getattr+0x2e0/0x2e0 [ 717.838915] ? fuse_permission+0x168/0x5a0 [ 717.843213] ? security_inode_permission+0xc5/0xf0 [ 717.848143] ? inode_permission.part.0+0x10c/0x450 [ 717.853432] link_path_walk.part.0+0x901/0x1230 [ 717.858110] ? walk_component+0xda0/0xda0 [ 717.862321] ? percpu_counter_add_batch+0x126/0x180 [ 717.867341] path_openat+0x1db/0x2df0 [ 717.871130] ? path_lookupat+0x8d0/0x8d0 [ 717.875291] ? mark_held_locks+0xf0/0xf0 [ 717.879371] ? mark_held_locks+0xf0/0xf0 [ 717.883509] ? lock_downgrade+0x720/0x720 [ 717.887671] do_filp_open+0x18c/0x3f0 [ 717.891526] ? may_open_dev+0xf0/0xf0 [ 717.895343] ? lock_downgrade+0x720/0x720 [ 717.899485] ? lock_acquire+0x170/0x3c0 [ 717.903729] ? __alloc_fd+0x34/0x570 [ 717.907507] ? do_raw_spin_unlock+0x171/0x230 [ 717.912090] ? _raw_spin_unlock+0x29/0x40 [ 717.916249] ? __alloc_fd+0x28d/0x570 [ 717.920039] do_sys_open+0x3b3/0x520 [ 717.923814] ? filp_open+0x70/0x70 [ 717.927460] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 717.933007] ? trace_hardirqs_off_caller+0x6e/0x210 [ 717.938054] ? do_syscall_64+0x21/0x620 [ 717.942105] do_syscall_64+0xf9/0x620 [ 717.945911] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 717.951086] RIP: 0033:0x7f8360ca9648 [ 717.954973] Code: Bad RIP value. [ 717.958682] RSP: 002b:00007ffd14f3b750 EFLAGS: 00000287 ORIG_RAX: 0000000000000101 [ 717.966489] RAX: ffffffffffffffda RBX: 00007ffd14f3b7c0 RCX: 00007f8360ca9648 [ 717.973832] RDX: 0000000000090800 RSI: 00007f8360cfb004 RDI: 00000000ffffff9c [ 717.981096] RBP: 0000000000000002 R08: 0000000000090800 R09: 00007f8360cfb004 [ 717.988561] R10: 0000000000000000 R11: 0000000000000287 R12: 00007ffd14f3b94c [ 717.995926] R13: 0000000000000002 R14: 00007ffd14f3b9a0 R15: 00007ffd14f3b990 [ 718.003631] INFO: task syz-executor137:8124 blocked for more than 140 seconds. [ 718.011095] Not tainted 4.19.211-syzkaller #0 [ 718.016173] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 718.024207] syz-executor137 D27176 8124 8101 0x00000004 [ 718.029845] Call Trace: [ 718.032509] __schedule+0x887/0x2040 [ 718.036243] ? io_schedule_timeout+0x140/0x140 [ 718.040814] ? prepare_to_wait_exclusive+0x2d0/0x2d0 [ 718.045982] schedule+0x8d/0x1b0 [ 718.049354] request_wait_answer+0x3dc/0x750 [ 718.053853] ? flush_bg_queue+0x390/0x390 [ 718.058011] ? wait_woken+0x250/0x250 [ 718.062208] __fuse_request_send+0x123/0x1c0 [ 718.066625] fuse_simple_request+0x2e6/0x820 [ 718.071613] fuse_lookup_name+0x24c/0x5c0 [ 718.075768] ? fuse_lock_inode+0xaf/0xe0 [ 718.079828] ? fuse_readdir+0x12f0/0x12f0 [ 718.084043] ? d_alloc_parallel+0x744/0x19e0 [ 718.088472] fuse_lookup+0xdf/0x410 [ 718.092153] ? fuse_lookup_name+0x5c0/0x5c0 [ 718.096478] ? __lockdep_init_map+0x100/0x5a0 [ 718.100953] ? __lockdep_init_map+0x100/0x5a0 [ 718.105661] __lookup_slow+0x246/0x4a0 [ 718.109568] ? follow_dotdot_rcu+0x1040/0x1040 [ 718.114224] ? lookup_fast+0x4e9/0x1080 [ 718.118239] ? walk_component+0x798/0xda0 [ 718.122466] walk_component+0x7ac/0xda0 [ 718.126452] ? lookup_fast+0x1080/0x1080 [ 718.130493] ? lock_downgrade+0x720/0x720 [ 718.134705] ? fuse_allow_current_process+0x107/0x340 [ 718.139896] ? fuse_getattr+0x2e0/0x2e0 [ 718.144049] ? fuse_permission+0x168/0x5a0 [ 718.148296] ? security_inode_permission+0xc5/0xf0 [ 718.153300] ? inode_permission.part.0+0x10c/0x450 [ 718.158233] link_path_walk.part.0+0x901/0x1230 [ 718.162964] ? walk_component+0xda0/0xda0 [ 718.167115] ? percpu_counter_add_batch+0x126/0x180 [ 718.172196] path_openat+0x1db/0x2df0 [ 718.176007] ? path_lookupat+0x8d0/0x8d0 [ 718.180197] ? mark_held_locks+0xf0/0xf0 [ 718.184347] do_filp_open+0x18c/0x3f0 [ 718.188154] ? may_open_dev+0xf0/0xf0 [ 718.192159] ? lock_downgrade+0x720/0x720 [ 718.196395] ? lock_acquire+0x170/0x3c0 [ 718.200374] ? __alloc_fd+0x34/0x570 [ 718.204171] ? do_raw_spin_unlock+0x171/0x230 [ 718.208676] ? _raw_spin_unlock+0x29/0x40 [ 718.212875] ? __alloc_fd+0x28d/0x570 [ 718.216696] do_sys_open+0x3b3/0x520 [ 718.220392] ? filp_open+0x70/0x70 [ 718.224001] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 718.229369] ? trace_hardirqs_off_caller+0x6e/0x210 [ 718.234526] ? do_syscall_64+0x21/0x620 [ 718.238501] do_syscall_64+0xf9/0x620 [ 718.242370] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 718.247549] RIP: 0033:0x7f8360c661b4 [ 718.251245] Code: Bad RIP value. [ 718.254648] RSP: 002b:00007f8360c55e60 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 718.262442] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f8360c661b4 [ 718.269697] RDX: 0000000000004000 RSI: 00007f8360c55ee0 RDI: 00000000ffffff9c [ 718.277090] RBP: 00007f8360c55ee0 R08: 0000000000000000 R09: 0000000000000000 [ 718.284447] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000004000 [ 718.291781] R13: 0000000000000065 R14: 00007f8360cfd1e8 R15: 00007f8360d304c8 [ 718.299188] INFO: task syz-executor137:8127 blocked for more than 140 seconds. [ 718.306617] Not tainted 4.19.211-syzkaller #0 [ 718.311937] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 718.320675] syz-executor137 D28800 8127 8101 0x00000004 [ 718.326369] Call Trace: [ 718.328963] __schedule+0x887/0x2040 [ 718.332731] ? io_schedule_timeout+0x140/0x140 [ 718.337333] ? mark_held_locks+0xa6/0xf0 [ 718.341485] ? rwsem_down_write_failed+0x3a5/0x760 [ 718.346411] schedule+0x8d/0x1b0 [ 718.349773] rwsem_down_write_failed+0x3aa/0x760 [ 718.354740] ? rwsem_down_read_failed_killable+0x580/0x580 [ 718.360384] ? do_raw_spin_unlock+0x171/0x230 [ 718.365008] call_rwsem_down_write_failed+0x13/0x20 [ 718.370033] ? __lock_acquire+0x2853/0x3ff0 [ 718.374428] down_write+0x4f/0x90 [ 718.377892] ? fuse_reverse_inval_entry+0xaa/0x660 [ 718.382887] fuse_reverse_inval_entry+0xaa/0x660 [ 718.387655] ? fuse_update_attributes+0xc0/0xc0 [ 718.392431] fuse_dev_do_write+0x239e/0x2bc0 [ 718.396929] ? futex_wait_queue_me+0x404/0x5e0 [ 718.401721] ? mark_held_locks+0xf0/0xf0 [ 718.405802] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 718.410898] ? fuse_dev_read+0x1f0/0x1f0 [ 718.415018] ? futex_wait+0x48e/0x610 [ 718.418829] ? lock_downgrade+0x720/0x720 [ 718.423034] ? check_preemption_disabled+0x41/0x280 [ 718.428061] ? check_preemption_disabled+0x41/0x280 [ 718.433136] ? aa_file_perm+0x417/0xd20 [ 718.437118] fuse_dev_write+0x153/0x1e0 [ 718.441075] ? fuse_dev_splice_write+0xa00/0xa00 [ 718.445888] ? do_futex+0x171/0x1880 [ 718.449603] ? iov_iter_init+0xb8/0x1d0 [ 718.453624] ? iov_iter_init+0xb8/0x1d0 [ 718.457631] __vfs_write+0x51b/0x770 [ 718.461402] ? kernel_read+0x110/0x110 [ 718.465298] ? security_file_permission+0x1c0/0x220 [ 718.470410] vfs_write+0x1f3/0x540 [ 718.474005] ksys_write+0x12b/0x2a0 [ 718.477634] ? __ia32_sys_read+0xb0/0xb0 [ 718.481756] ? trace_hardirqs_off_caller+0x6e/0x210 [ 718.486764] ? do_syscall_64+0x21/0x620 [ 718.490719] do_syscall_64+0xf9/0x620 [ 718.494569] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 718.499753] RIP: 0033:0x7f8360ca99b9 [ 718.503525] Code: Bad RIP value. [ 718.506879] RSP: 002b:00007f8360c352f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 718.514626] RAX: ffffffffffffffda RBX: 00007f8360d304d0 RCX: 00007f8360ca99b9 [ 718.521970] RDX: 000000000000002c RSI: 00000000200000c0 RDI: 0000000000000003 [ 718.530005] RBP: 00007f8360cfd1c4 R08: 0000000000000000 R09: 0000000000000000 [ 718.537326] R10: 0000000000000000 R11: 0000000000000246 R12: 0030656c69662f2e [ 718.544665] R13: 0000000000000003 R14: 00007f8360cfd1e8 R15: 00007f8360d304d8 [ 718.552102] [ 718.552102] Showing all locks held in the system: [ 718.558415] 1 lock held by khungtaskd/1570: [ 718.562796] #0: 00000000ed155f32 (rcu_read_lock){....}, at: debug_show_all_locks+0x53/0x265 [ 718.571483] 1 lock held by in:imklog/7845: [ 718.575694] #0: 00000000aa5aee0f (&f->f_pos_lock){+.+.}, at: __fdget_pos+0x26f/0x310 [ 718.583761] 1 lock held by syz-executor137/8101: [ 718.588510] #0: 000000006ea6b4b7 (&type->i_mutex_dir_key#7){++++}, at: walk_component+0x798/0xda0 [ 718.597779] 2 locks held by syz-executor137/8124: [ 718.602681] #0: 000000006ea6b4b7 (&type->i_mutex_dir_key#7){++++}, at: walk_component+0x798/0xda0 [ 718.612034] #1: 00000000d874ce5b (&fi->mutex){+.+.}, at: fuse_lock_inode+0xaf/0xe0 [ 718.619937] 2 locks held by syz-executor137/8127: [ 718.624845] #0: 00000000ccd3f5c9 (&fc->killsb){.+.+}, at: fuse_dev_do_write+0x2343/0x2bc0 [ 718.633342] #1: 000000006ea6b4b7 (&type->i_mutex_dir_key#7){++++}, at: fuse_reverse_inval_entry+0xaa/0x660 [ 718.643301] [ 718.644921] ============================================= [ 718.644921] [ 718.652000] NMI backtrace for cpu 1 [ 718.655627] CPU: 1 PID: 1570 Comm: khungtaskd Not tainted 4.19.211-syzkaller #0 [ 718.663055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 718.672399] Call Trace: [ 718.674969] dump_stack+0x1fc/0x2ef [ 718.678579] nmi_cpu_backtrace.cold+0x63/0xa2 [ 718.683053] ? lapic_can_unplug_cpu+0x80/0x80 [ 718.687527] nmi_trigger_cpumask_backtrace+0x1a6/0x1f0 [ 718.692824] watchdog+0x991/0xe60 [ 718.696284] ? reset_hung_task_detector+0x30/0x30 [ 718.701123] kthread+0x33f/0x460 [ 718.704471] ? kthread_park+0x180/0x180 [ 718.708429] ret_from_fork+0x24/0x30 [ 718.712258] Sending NMI from CPU 1 to CPUs 0: [ 718.717007] NMI backtrace for cpu 0 [ 718.717013] CPU: 0 PID: 4683 Comm: systemd-journal Not tainted 4.19.211-syzkaller #0 [ 718.717019] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 718.717023] RIP: 0010:do_syscall_64+0x37e/0x620 [ 718.717034] Code: fa 48 c1 ea 03 0f b6 04 02 84 c0 74 08 3c 03 0f 8e d4 01 00 00 83 63 08 f9 0f 1f 44 00 00 e8 d9 0b 62 00 0f 00 2d 02 e4 5f 07 <48> 83 c4 08 5b 5d 41 5c 41 5d e9 c3 0b 62 00 e8 be 0b 62 00 48 b8 [ 718.717038] RSP: 0018:ffff8880a149ff28 EFLAGS: 000000d3 [ 718.717046] RAX: ffff8880a1490340 RBX: ffff8880a1490340 RCX: ffffffff81007956 [ 718.717051] RDX: 0000000000000000 RSI: ffffffff81007997 RDI: ffff8880a1490348 [ 718.717056] RBP: ffff8880a149ff58 R08: 0000000000000000 R09: 0000000000000000 [ 718.717061] R10: 0000000000000005 R11: 0000000000000000 R12: 0000000000000000 [ 718.717066] R13: 0000000000000100 R14: 0000000000000000 R15: 0000000000000000 [ 718.717071] FS: 00007ff0ba4818c0(0000) GS:ffff8880ba000000(0000) knlGS:0000000000000000 [ 718.717075] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 718.717080] CR2: 00007ff0b785f008 CR3: 00000000a1ad4000 CR4: 00000000003406f0 [ 718.717085] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 718.717090] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 718.717093] Call Trace: [ 718.717097] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 718.717100] RIP: 0033:0x7ff0b9719f17 [ 718.717111] Code: ff ff ff 48 8b 4d a0 0f b7 51 fe 48 8b 4d a8 66 89 54 08 fe e9 1a ff ff ff 66 2e 0f 1f 84 00 00 00 00 00 b8 27 00 00 00 0f 05 0f 1f 84 00 00 00 00 00 b8 6e 00 00 00 0f 05 c3 0f 1f 84 00 00 [ 718.717115] RSP: 002b:00007ffe045a97d8 EFLAGS: 00000206 ORIG_RAX: 0000000000000027 [ 718.717123] RAX: 000000000000124b RBX: 0000560d8fccc1e0 RCX: 00007ff0b9719f17 [ 718.717128] RDX: 00007ffe045a9890 RSI: 0000000000000000 RDI: 0000560d8fccc1e0 [ 718.717133] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 718.717138] R10: 0000000000000069 R11: 0000000000000206 R12: 00007ffe045a9890 [ 718.717143] R13: 000000000000124b R14: 00007ffe045ac680 R15: 00007ffe045a9c90 [ 718.717864] Kernel panic - not syncing: hung_task: blocked tasks [ 718.920930] CPU: 1 PID: 1570 Comm: khungtaskd Not tainted 4.19.211-syzkaller #0 [ 718.928379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 718.937749] Call Trace: [ 718.940446] dump_stack+0x1fc/0x2ef [ 718.944232] panic+0x26a/0x50e [ 718.947407] ? __warn_printk+0xf3/0xf3 [ 718.951283] ? lapic_can_unplug_cpu+0x80/0x80 [ 718.955873] ? ___preempt_schedule+0x16/0x18 [ 718.960261] ? watchdog+0x991/0xe60 [ 718.963867] ? nmi_trigger_cpumask_backtrace+0x15e/0x1f0 [ 718.969297] watchdog+0x9a2/0xe60 [ 718.972744] ? reset_hung_task_detector+0x30/0x30 [ 718.977568] kthread+0x33f/0x460 [ 718.981068] ? kthread_park+0x180/0x180 [ 718.985230] ret_from_fork+0x24/0x30 [ 718.989240] Kernel Offset: disabled [ 718.992865] Rebooting in 86400 seconds..