[ 35.962235] audit: type=1800 audit(1578069730.423:33): pid=7032 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op="collect_data" cause="failed(directio)" comm="startpar" name="rc.local" dev="sda1" ino=2465 res=0 [ 35.989614] audit: type=1800 audit(1578069730.423:34): pid=7032 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op="collect_data" cause="failed(directio)" comm="startpar" name="rmnologin" dev="sda1" ino=2456 res=0 Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 37.859458] random: sshd: uninitialized urandom read (32 bytes read) [ 38.120882] audit: type=1400 audit(1578069732.583:35): avc: denied { map } for pid=7205 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 [ 38.183848] random: sshd: uninitialized urandom read (32 bytes read) [ 38.802779] random: sshd: uninitialized urandom read (32 bytes read) [ 606.847949] random: sshd: uninitialized urandom read (32 bytes read) Warning: Permanently added '10.128.0.129' (ECDSA) to the list of known hosts. [ 612.441394] random: sshd: uninitialized urandom read (32 bytes read) executing program executing program executing program executing program executing program executing program [ 612.561769] audit: type=1400 audit(1578070307.023:36): avc: denied { map } for pid=7217 comm="syz-executor099" path="/root/syz-executor099289953" dev="sda1" ino=1426 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 [ 612.577940] block nbd3: Device being setup by another task [ 612.594072] block nbd1: Device being setup by another task [ 612.598038] block nbd5: Device being setup by another task [ 612.606923] block nbd2: Device being setup by another task [ 612.610121] block nbd4: Device being setup by another task [ 612.614163] block nbd0: Device being setup by another task [ 612.734213] block nbd1: shutting down sockets [ 612.738888] block nbd2: shutting down sockets [ 612.739014] block nbd5: shutting down sockets [ 612.744184] block nbd3: shutting down sockets [ 612.753630] block nbd4: shutting down sockets [ 612.761711] block nbd0: shutting down sockets [ 858.080188] INFO: task syz-executor099:7227 blocked for more than 140 seconds. [ 858.087684] Not tainted 4.14.161-syzkaller #0 [ 858.092770] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 858.100773] syz-executor099 D29008 7227 7223 0x00000004 [ 858.106437] Call Trace: [ 858.109070] __schedule+0x7b8/0x1cd0 [ 858.112834] ? firmware_map_remove+0x196/0x196 [ 858.117409] schedule+0x92/0x1c0 [ 858.120836] schedule_timeout+0x93b/0xe10 [ 858.124967] ? wait_for_completion+0x274/0x420 [ 858.129565] ? find_held_lock+0x35/0x130 [ 858.133667] ? usleep_range+0x130/0x130 [ 858.137636] ? wait_for_completion+0x274/0x420 [ 858.142238] ? _raw_spin_unlock_irq+0x28/0x90 [ 858.146725] ? trace_hardirqs_on_caller+0x400/0x590 [ 858.151768] wait_for_completion+0x27c/0x420 [ 858.156161] ? wait_for_completion_interruptible+0x490/0x490 [ 858.162020] ? wake_up_q+0xf0/0xf0 [ 858.165591] flush_workqueue+0x3d1/0x1400 [ 858.169764] ? uevent_store+0x70/0x70 [ 858.173606] ? flush_work+0x730/0x730 [ 858.177403] ? wait_for_completion+0x420/0x420 [ 858.182468] ? sock_shutdown+0x1d9/0x250 [ 858.186529] nbd_ioctl+0x545/0xb30 [ 858.190093] ? nbd_ioctl+0x545/0xb30 [ 858.193796] ? nbd_add_socket+0x5e0/0x5e0 [ 858.197924] ? __lock_acquire+0x5f7/0x4620 [ 858.202172] ? finish_wait+0x260/0x260 [ 858.206077] ? do_futex+0x152/0x19e0 [ 858.209807] ? __fd_install+0x1fb/0x5f0 [ 858.213831] ? nbd_add_socket+0x5e0/0x5e0 [ 858.218010] blkdev_ioctl+0x96b/0x1860 [ 858.221910] ? blkpg_ioctl+0x980/0x980 [ 858.225786] ? __might_sleep+0x93/0xb0 [ 858.229665] ? __fget+0x210/0x370 [ 858.233270] block_ioctl+0xde/0x120 [ 858.236901] ? blkdev_fallocate+0x3b0/0x3b0 [ 858.241304] do_vfs_ioctl+0x7ae/0x1060 [ 858.245229] ? selinux_file_mprotect+0x5d0/0x5d0 [ 858.250086] ? lock_downgrade+0x740/0x740 [ 858.254283] ? ioctl_preallocate+0x1c0/0x1c0 [ 858.258677] ? __fget+0x237/0x370 [ 858.262209] ? security_file_ioctl+0x7d/0xb0 [ 858.266613] ? security_file_ioctl+0x89/0xb0 [ 858.271066] SyS_ioctl+0x8f/0xc0 [ 858.274425] ? do_vfs_ioctl+0x1060/0x1060 [ 858.278564] do_syscall_64+0x1e8/0x640 [ 858.282629] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 858.287502] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 858.292738] RIP: 0033:0x44a719 [ 858.295917] RSP: 002b:00007f34a8646ce8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 858.303670] RAX: ffffffffffffffda RBX: 00000000006dbc48 RCX: 000000000044a719 [ 858.311348] RDX: 0000000000000000 RSI: 000000000000ab03 RDI: 0000000000000006 [ 858.318603] RBP: 00000000006dbc40 R08: 0000000000000000 R09: 0000000000000000 [ 858.325978] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006dbc4c [ 858.333309] R13: 00007fff3033079f R14: 00007f34a86479c0 R15: 0000000000000000 [ 858.340631] INFO: task syz-executor099:7228 blocked for more than 140 seconds. [ 858.347978] Not tainted 4.14.161-syzkaller #0 [ 858.353038] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 858.361012] syz-executor099 D28432 7228 7221 0x00000004 [ 858.366621] Call Trace: [ 858.369191] __schedule+0x7b8/0x1cd0 [ 858.372931] ? firmware_map_remove+0x196/0x196 [ 858.377500] schedule+0x92/0x1c0 [ 858.380887] schedule_timeout+0x93b/0xe10 [ 858.385036] ? wait_for_completion+0x274/0x420 [ 858.389596] ? find_held_lock+0x35/0x130 [ 858.393715] ? usleep_range+0x130/0x130 [ 858.397711] ? wait_for_completion+0x274/0x420 [ 858.402327] ? _raw_spin_unlock_irq+0x28/0x90 [ 858.406813] ? trace_hardirqs_on_caller+0x400/0x590 [ 858.411867] wait_for_completion+0x27c/0x420 [ 858.416265] ? wait_for_completion_interruptible+0x490/0x490 [ 858.422083] ? wake_up_q+0xf0/0xf0 [ 858.425698] flush_workqueue+0x3d1/0x1400 [ 858.429911] ? uevent_store+0x70/0x70 [ 858.433810] ? flush_work+0x730/0x730 [ 858.437607] ? wait_for_completion+0x420/0x420 [ 858.442668] ? sock_shutdown+0x1d9/0x250 [ 858.446737] nbd_ioctl+0x545/0xb30 [ 858.450316] ? nbd_ioctl+0x545/0xb30 [ 858.454024] ? nbd_add_socket+0x5e0/0x5e0 [ 858.458164] ? __lock_acquire+0x5f7/0x4620 [ 858.462444] ? finish_wait+0x260/0x260 [ 858.466323] ? do_futex+0x152/0x19e0 [ 858.470101] ? __fd_install+0x1fb/0x5f0 [ 858.474098] ? nbd_add_socket+0x5e0/0x5e0 [ 858.478228] blkdev_ioctl+0x96b/0x1860 [ 858.482150] ? blkpg_ioctl+0x980/0x980 [ 858.486027] ? __might_sleep+0x93/0xb0 [ 858.489914] ? __fget+0x210/0x370 [ 858.493584] block_ioctl+0xde/0x120 [ 858.497203] ? blkdev_fallocate+0x3b0/0x3b0 [ 858.501567] do_vfs_ioctl+0x7ae/0x1060 [ 858.505447] ? selinux_file_mprotect+0x5d0/0x5d0 [ 858.510238] ? lock_downgrade+0x740/0x740 [ 858.514401] ? ioctl_preallocate+0x1c0/0x1c0 [ 858.518787] ? __fget+0x237/0x370 [ 858.522265] ? security_file_ioctl+0x7d/0xb0 [ 858.526669] ? security_file_ioctl+0x89/0xb0 [ 858.531110] SyS_ioctl+0x8f/0xc0 [ 858.534462] ? do_vfs_ioctl+0x1060/0x1060 [ 858.538586] do_syscall_64+0x1e8/0x640 [ 858.542487] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 858.547328] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 858.552556] RIP: 0033:0x44a719 [ 858.555732] RSP: 002b:00007f34a8646ce8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 858.563466] RAX: ffffffffffffffda RBX: 00000000006dbc48 RCX: 000000000044a719 [ 858.571077] RDX: 0000000000000000 RSI: 000000000000ab03 RDI: 0000000000000006 [ 858.578331] RBP: 00000000006dbc40 R08: 0000000000000000 R09: 0000000000000000 [ 858.585617] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006dbc4c [ 858.592933] R13: 00007fff3033079f R14: 00007f34a86479c0 R15: 0000000000000000 [ 858.600259] INFO: task syz-executor099:7229 blocked for more than 140 seconds. [ 858.607603] Not tainted 4.14.161-syzkaller #0 [ 858.612648] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 858.620629] syz-executor099 D28016 7229 7219 0x00000004 [ 858.626235] Call Trace: [ 858.628802] __schedule+0x7b8/0x1cd0 [ 858.632547] ? firmware_map_remove+0x196/0x196 [ 858.637122] schedule+0x92/0x1c0 [ 858.640507] schedule_timeout+0x93b/0xe10 [ 858.644669] ? wait_for_completion+0x274/0x420 [ 858.649230] ? find_held_lock+0x35/0x130 [ 858.653333] ? usleep_range+0x130/0x130 [ 858.657298] ? wait_for_completion+0x274/0x420 [ 858.661903] ? _raw_spin_unlock_irq+0x28/0x90 [ 858.666388] ? trace_hardirqs_on_caller+0x400/0x590 [ 858.671463] wait_for_completion+0x27c/0x420 [ 858.675863] ? wait_for_completion_interruptible+0x490/0x490 [ 858.681678] ? wake_up_q+0xf0/0xf0 [ 858.685248] flush_workqueue+0x3d1/0x1400 [ 858.689376] ? uevent_store+0x70/0x70 [ 858.693272] ? flush_work+0x730/0x730 [ 858.697066] ? wait_for_completion+0x420/0x420 [ 858.702145] ? sock_shutdown+0x1d9/0x250 [ 858.706200] nbd_ioctl+0x545/0xb30 [ 858.709723] ? nbd_ioctl+0x545/0xb30 [ 858.713532] ? nbd_add_socket+0x5e0/0x5e0 [ 858.717697] ? __lock_acquire+0x5f7/0x4620 [ 858.721976] ? finish_wait+0x260/0x260 [ 858.725859] ? do_futex+0x152/0x19e0 [ 858.729557] ? __fd_install+0x1fb/0x5f0 [ 858.733592] ? nbd_add_socket+0x5e0/0x5e0 [ 858.737738] blkdev_ioctl+0x96b/0x1860 [ 858.741647] ? blkpg_ioctl+0x980/0x980 [ 858.745547] ? __might_sleep+0x93/0xb0 [ 858.749414] ? __fget+0x210/0x370 [ 858.752899] block_ioctl+0xde/0x120 [ 858.756512] ? blkdev_fallocate+0x3b0/0x3b0 [ 858.760845] do_vfs_ioctl+0x7ae/0x1060 [ 858.764723] ? selinux_file_mprotect+0x5d0/0x5d0 [ 858.769457] ? lock_downgrade+0x740/0x740 [ 858.773652] ? ioctl_preallocate+0x1c0/0x1c0 [ 858.778059] ? __fget+0x237/0x370 [ 858.781600] ? security_file_ioctl+0x7d/0xb0 [ 858.785997] ? security_file_ioctl+0x89/0xb0 [ 858.790441] SyS_ioctl+0x8f/0xc0 [ 858.793800] ? do_vfs_ioctl+0x1060/0x1060 [ 858.797942] do_syscall_64+0x1e8/0x640 [ 858.801851] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 858.806682] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 858.811898] RIP: 0033:0x44a719 [ 858.815079] RSP: 002b:00007f34a8646ce8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 858.822800] RAX: ffffffffffffffda RBX: 00000000006dbc48 RCX: 000000000044a719 [ 858.830463] RDX: 0000000000000000 RSI: 000000000000ab03 RDI: 0000000000000006 [ 858.837726] RBP: 00000000006dbc40 R08: 0000000000000000 R09: 0000000000000000 [ 858.845060] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006dbc4c [ 858.852384] R13: 00007fff3033079f R14: 00007f34a86479c0 R15: 0000000000000000 [ 858.859657] INFO: task syz-executor099:7235 blocked for more than 140 seconds. [ 858.867065] Not tainted 4.14.161-syzkaller #0 [ 858.872099] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 858.880084] syz-executor099 D29008 7235 7222 0x00000004 [ 858.885718] Call Trace: [ 858.888291] __schedule+0x7b8/0x1cd0 [ 858.892072] ? firmware_map_remove+0x196/0x196 [ 858.896641] schedule+0x92/0x1c0 [ 858.899985] schedule_timeout+0x93b/0xe10 [ 858.904164] ? wait_for_completion+0x274/0x420 [ 858.908743] ? find_held_lock+0x35/0x130 [ 858.913014] ? usleep_range+0x130/0x130 [ 858.916981] ? wait_for_completion+0x274/0x420 [ 858.921597] ? _raw_spin_unlock_irq+0x28/0x90 [ 858.926080] ? trace_hardirqs_on_caller+0x400/0x590 [ 858.931134] wait_for_completion+0x27c/0x420 [ 858.935531] ? wait_for_completion_interruptible+0x490/0x490 [ 858.941352] ? wake_up_q+0xf0/0xf0 [ 858.944884] flush_workqueue+0x3d1/0x1400 [ 858.949013] ? uevent_store+0x70/0x70 [ 858.952866] ? flush_work+0x730/0x730 [ 858.956655] ? wait_for_completion+0x420/0x420 [ 858.961707] ? sock_shutdown+0x1d9/0x250 [ 858.965765] nbd_ioctl+0x545/0xb30 [ 858.969283] ? nbd_ioctl+0x545/0xb30 [ 858.973035] ? nbd_add_socket+0x5e0/0x5e0 [ 858.977169] ? __lock_acquire+0x5f7/0x4620 [ 858.981427] ? finish_wait+0x260/0x260 [ 858.985302] ? do_futex+0x152/0x19e0 [ 858.988992] ? __fd_install+0x1fb/0x5f0 [ 858.993007] ? nbd_add_socket+0x5e0/0x5e0 [ 858.997145] blkdev_ioctl+0x96b/0x1860 [ 859.001048] ? blkpg_ioctl+0x980/0x980 [ 859.004938] ? __might_sleep+0x93/0xb0 [ 859.008818] ? __fget+0x210/0x370 [ 859.012312] block_ioctl+0xde/0x120 [ 859.015937] ? blkdev_fallocate+0x3b0/0x3b0 [ 859.020275] do_vfs_ioctl+0x7ae/0x1060 [ 859.024151] ? selinux_file_mprotect+0x5d0/0x5d0 [ 859.028897] ? lock_downgrade+0x740/0x740 [ 859.033077] ? ioctl_preallocate+0x1c0/0x1c0 [ 859.037476] ? __fget+0x237/0x370 [ 859.041279] ? security_file_ioctl+0x7d/0xb0 [ 859.045672] ? security_file_ioctl+0x89/0xb0 [ 859.050114] SyS_ioctl+0x8f/0xc0 [ 859.053470] ? do_vfs_ioctl+0x1060/0x1060 [ 859.057599] do_syscall_64+0x1e8/0x640 [ 859.061520] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 859.066350] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 859.071572] RIP: 0033:0x44a719 [ 859.074749] RSP: 002b:00007f34a8646ce8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 859.082485] RAX: ffffffffffffffda RBX: 00000000006dbc48 RCX: 000000000044a719 [ 859.089739] RDX: 0000000000000000 RSI: 000000000000ab03 RDI: 0000000000000006 [ 859.097484] RBP: 00000000006dbc40 R08: 0000000000000000 R09: 0000000000000000 [ 859.104785] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006dbc4c [ 859.112114] R13: 00007fff3033079f R14: 00007f34a86479c0 R15: 0000000000000000 [ 859.119401] INFO: task syz-executor099:7236 blocked for more than 140 seconds. [ 859.127061] Not tainted 4.14.161-syzkaller #0 [ 859.132096] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 859.140127] syz-executor099 D28744 7236 7220 0x00000004 [ 859.145759] Call Trace: [ 859.148328] __schedule+0x7b8/0x1cd0 [ 859.152070] ? firmware_map_remove+0x196/0x196 [ 859.156641] schedule+0x92/0x1c0 [ 859.160060] schedule_timeout+0x93b/0xe10 [ 859.164197] ? wait_for_completion+0x274/0x420 [ 859.168759] ? find_held_lock+0x35/0x130 [ 859.172843] ? usleep_range+0x130/0x130 [ 859.176802] ? wait_for_completion+0x274/0x420 [ 859.181408] ? _raw_spin_unlock_irq+0x28/0x90 [ 859.185893] ? trace_hardirqs_on_caller+0x400/0x590 [ 859.190945] wait_for_completion+0x27c/0x420 [ 859.195342] ? wait_for_completion_interruptible+0x490/0x490 [ 859.201161] ? wake_up_q+0xf0/0xf0 [ 859.204695] flush_workqueue+0x3d1/0x1400 [ 859.208829] ? uevent_store+0x70/0x70 [ 859.212650] ? flush_work+0x730/0x730 [ 859.216435] ? wait_for_completion+0x420/0x420 [ 859.221445] ? sock_shutdown+0x1d9/0x250 [ 859.225493] nbd_ioctl+0x545/0xb30 [ 859.229049] ? nbd_ioctl+0x545/0xb30 [ 859.232797] ? nbd_add_socket+0x5e0/0x5e0 [ 859.236991] ? __lock_acquire+0x5f7/0x4620 [ 859.241254] ? finish_wait+0x260/0x260 [ 859.245128] ? do_futex+0x152/0x19e0 [ 859.248822] ? __fd_install+0x1fb/0x5f0 [ 859.252831] ? nbd_add_socket+0x5e0/0x5e0 [ 859.256979] blkdev_ioctl+0x96b/0x1860 [ 859.260872] ? blkpg_ioctl+0x980/0x980 [ 859.264761] ? __might_sleep+0x93/0xb0 [ 859.268624] ? __fget+0x210/0x370 [ 859.272134] block_ioctl+0xde/0x120 [ 859.275750] ? blkdev_fallocate+0x3b0/0x3b0 [ 859.280084] do_vfs_ioctl+0x7ae/0x1060 [ 859.283963] ? selinux_file_mprotect+0x5d0/0x5d0 [ 859.288751] ? lock_downgrade+0x740/0x740 [ 859.293101] ? ioctl_preallocate+0x1c0/0x1c0 [ 859.297517] ? __fget+0x237/0x370 [ 859.301008] ? security_file_ioctl+0x7d/0xb0 [ 859.305409] ? security_file_ioctl+0x89/0xb0 [ 859.309810] SyS_ioctl+0x8f/0xc0 [ 859.313234] ? do_vfs_ioctl+0x1060/0x1060 [ 859.317419] do_syscall_64+0x1e8/0x640 [ 859.321342] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 859.326192] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 859.331584] RIP: 0033:0x44a719 [ 859.334761] RSP: 002b:00007f34a8646ce8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 859.342502] RAX: ffffffffffffffda RBX: 00000000006dbc48 RCX: 000000000044a719 [ 859.349754] RDX: 0000000000000000 RSI: 000000000000ab03 RDI: 0000000000000006 [ 859.357482] RBP: 00000000006dbc40 R08: 0000000000000000 R09: 0000000000000000 [ 859.364803] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006dbc4c [ 859.372095] R13: 00007fff3033079f R14: 00007f34a86479c0 R15: 0000000000000000 [ 859.379367] INFO: task syz-executor099:7239 blocked for more than 140 seconds. [ 859.386750] Not tainted 4.14.161-syzkaller #0 [ 859.391778] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 859.399718] syz-executor099 D29008 7239 7218 0x00000004 [ 859.405371] Call Trace: [ 859.407947] __schedule+0x7b8/0x1cd0 [ 859.411682] ? firmware_map_remove+0x196/0x196 [ 859.416251] schedule+0x92/0x1c0 [ 859.419591] schedule_timeout+0x93b/0xe10 [ 859.423756] ? wait_for_completion+0x274/0x420 [ 859.428330] ? find_held_lock+0x35/0x130 [ 859.432409] ? usleep_range+0x130/0x130 [ 859.436368] ? wait_for_completion+0x274/0x420 [ 859.440971] ? _raw_spin_unlock_irq+0x28/0x90 [ 859.445455] ? trace_hardirqs_on_caller+0x400/0x590 [ 859.450509] wait_for_completion+0x27c/0x420 [ 859.454926] ? wait_for_completion_interruptible+0x490/0x490 [ 859.460742] ? wake_up_q+0xf0/0xf0 [ 859.464273] flush_workqueue+0x3d1/0x1400 [ 859.468401] ? uevent_store+0x70/0x70 [ 859.472239] ? flush_work+0x730/0x730 [ 859.476027] ? wait_for_completion+0x420/0x420 [ 859.481049] ? sock_shutdown+0x1d9/0x250 [ 859.485098] nbd_ioctl+0x545/0xb30 [ 859.488632] ? nbd_ioctl+0x545/0xb30 [ 859.492433] ? nbd_add_socket+0x5e0/0x5e0 [ 859.496578] ? __lock_acquire+0x5f7/0x4620 [ 859.500832] ? finish_wait+0x260/0x260 [ 859.504712] ? do_futex+0x152/0x19e0 [ 859.508436] ? __fd_install+0x1fb/0x5f0 [ 859.512455] ? nbd_add_socket+0x5e0/0x5e0 [ 859.516602] blkdev_ioctl+0x96b/0x1860 [ 859.520522] ? blkpg_ioctl+0x980/0x980 [ 859.524409] ? __might_sleep+0x93/0xb0 [ 859.528277] ? __fget+0x210/0x370 [ 859.531774] block_ioctl+0xde/0x120 [ 859.535395] ? blkdev_fallocate+0x3b0/0x3b0 [ 859.539699] do_vfs_ioctl+0x7ae/0x1060 [ 859.543779] ? selinux_file_mprotect+0x5d0/0x5d0 [ 859.548524] ? lock_downgrade+0x740/0x740 [ 859.552700] ? ioctl_preallocate+0x1c0/0x1c0 [ 859.557101] ? __fget+0x237/0x370 [ 859.560579] ? security_file_ioctl+0x7d/0xb0 [ 859.564975] ? security_file_ioctl+0x89/0xb0 [ 859.569367] SyS_ioctl+0x8f/0xc0 [ 859.572781] ? do_vfs_ioctl+0x1060/0x1060 [ 859.576933] do_syscall_64+0x1e8/0x640 [ 859.580827] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 859.585671] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 859.590892] RIP: 0033:0x44a719 [ 859.594171] RSP: 002b:00007f34a8646ce8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 859.601887] RAX: ffffffffffffffda RBX: 00000000006dbc48 RCX: 000000000044a719 [ 859.609153] RDX: 0000000000000000 RSI: 000000000000ab03 RDI: 0000000000000006 [ 859.616862] RBP: 00000000006dbc40 R08: 0000000000000000 R09: 0000000000000000 [ 859.624160] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006dbc4c [ 859.631449] R13: 00007fff3033079f R14: 00007f34a86479c0 R15: 0000000000000000 [ 859.638739] [ 859.638739] Showing all locks held in the system: [ 859.645107] 1 lock held by khungtaskd/1045: [ 859.649537] #0: (tasklist_lock){.+.+}, at: [] debug_show_all_locks+0x7f/0x21f [ 859.658600] 2 locks held by kworker/u5:0/1179: [ 859.663207] #0: ("knbd%d-recv"nbd->index){+.+.}, at: [] process_one_work+0x76e/0x1600 [ 859.672976] #1: ((&args->work)){+.+.}, at: [] process_one_work+0x7ab/0x1600 [ 859.681860] 1 lock held by rsyslogd/7070: [ 859.685976] #0: (&f->f_pos_lock){+.+.}, at: [] __fdget_pos+0xab/0xd0 [ 859.694259] 2 locks held by getty/7193: [ 859.698228] #0: (&tty->ldisc_sem){++++}, at: [] ldsem_down_read+0x33/0x40 [ 859.706930] #1: (&ldata->atomic_read_lock){+.+.}, at: [] n_tty_read+0x1e6/0x17d0 [ 859.716343] 2 locks held by getty/7194: [ 859.720327] #0: (&tty->ldisc_sem){++++}, at: [] ldsem_down_read+0x33/0x40 [ 859.729026] #1: (&ldata->atomic_read_lock){+.+.}, at: [] n_tty_read+0x1e6/0x17d0 [ 859.738381] 2 locks held by getty/7195: [ 859.742398] #0: (&tty->ldisc_sem){++++}, at: [] ldsem_down_read+0x33/0x40 [ 859.751137] #1: (&ldata->atomic_read_lock){+.+.}, at: [] n_tty_read+0x1e6/0x17d0 [ 859.760453] 2 locks held by getty/7196: [ 859.764411] #0: (&tty->ldisc_sem){++++}, at: [] ldsem_down_read+0x33/0x40 [ 859.773176] #1: (&ldata->atomic_read_lock){+.+.}, at: [] n_tty_read+0x1e6/0x17d0 [ 859.782498] 2 locks held by getty/7197: [ 859.786452] #0: (&tty->ldisc_sem){++++}, at: [] ldsem_down_read+0x33/0x40 [ 859.795164] #1: (&ldata->atomic_read_lock){+.+.}, at: [] n_tty_read+0x1e6/0x17d0 [ 859.804474] 2 locks held by getty/7198: [ 859.808429] #0: (&tty->ldisc_sem){++++}, at: [] ldsem_down_read+0x33/0x40 [ 859.817143] #1: (&ldata->atomic_read_lock){+.+.}, at: [] n_tty_read+0x1e6/0x17d0 [ 859.826457] 2 locks held by getty/7199: [ 859.830464] #0: (&tty->ldisc_sem){++++}, at: [] ldsem_down_read+0x33/0x40 [ 859.839145] #1: (&ldata->atomic_read_lock){+.+.}, at: [] n_tty_read+0x1e6/0x17d0 [ 859.848543] 2 locks held by kworker/u5:1/7246: [ 859.853180] #0: ("knbd%d-recv"nbd->index){+.+.}, at: [] process_one_work+0x76e/0x1600 [ 859.862939] #1: ((&args->work)){+.+.}, at: [] process_one_work+0x7ab/0x1600 [ 859.871838] 2 locks held by kworker/u5:2/7249: [ 859.876404] #0: ("knbd%d-recv"nbd->index){+.+.}, at: [] process_one_work+0x76e/0x1600 [ 859.886152] #1: ((&args->work)){+.+.}, at: [] process_one_work+0x7ab/0x1600 [ 859.895060] 2 locks held by kworker/u5:3/7250: [ 859.899625] #0: ("knbd%d-recv"nbd->index){+.+.}, at: [] process_one_work+0x76e/0x1600 [ 859.909377] #1: ((&args->work)){+.+.}, at: [] process_one_work+0x7ab/0x1600 [ 859.918272] 2 locks held by kworker/u5:4/7251: [ 859.922868] #0: ("knbd%d-recv"nbd->index){+.+.}, at: [] process_one_work+0x76e/0x1600 [ 859.932629] #1: ((&args->work)){+.+.}, at: [] process_one_work+0x7ab/0x1600 [ 859.941497] 2 locks held by kworker/u5:5/7252: [ 859.946058] #0: ("knbd%d-recv"nbd->index){+.+.}, at: [] process_one_work+0x76e/0x1600 [ 859.955811] #1: ((&args->work)){+.+.}, at: [] process_one_work+0x7ab/0x1600 [ 859.964691] [ 859.966301] ============================================= [ 859.966301] [ 859.973551] NMI backtrace for cpu 0 [ 859.977188] CPU: 0 PID: 1045 Comm: khungtaskd Not tainted 4.14.161-syzkaller #0 [ 859.984612] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 859.993955] Call Trace: [ 859.996614] dump_stack+0x142/0x197 [ 860.000239] nmi_cpu_backtrace.cold+0x57/0x94 [ 860.004740] ? irq_force_complete_move.cold+0x7d/0x7d [ 860.009921] nmi_trigger_cpumask_backtrace+0x141/0x189 [ 860.015182] arch_trigger_cpumask_backtrace+0x14/0x20 [ 860.020390] watchdog+0x5e7/0xb90 [ 860.023826] kthread+0x319/0x430 [ 860.027167] ? hungtask_pm_notify+0x50/0x50 [ 860.031467] ? kthread_create_on_node+0xd0/0xd0 [ 860.036111] ret_from_fork+0x24/0x30 [ 860.039867] Sending NMI from CPU 0 to CPUs 1: [ 860.044436] NMI backtrace for cpu 1 skipped: idling at pc 0xffffffff866516ae [ 860.045383] Kernel panic - not syncing: hung_task: blocked tasks [ 860.057762] CPU: 0 PID: 1045 Comm: khungtaskd Not tainted 4.14.161-syzkaller #0 [ 860.065187] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 860.074518] Call Trace: [ 860.077090] dump_stack+0x142/0x197 [ 860.080769] panic+0x1f9/0x42d [ 860.083941] ? add_taint.cold+0x16/0x16 [ 860.087910] ? irq_force_complete_move.cold+0x7d/0x7d [ 860.093078] watchdog+0x5f8/0xb90 [ 860.096512] kthread+0x319/0x430 [ 860.099852] ? hungtask_pm_notify+0x50/0x50 [ 860.104148] ? kthread_create_on_node+0xd0/0xd0 [ 860.108795] ret_from_fork+0x24/0x30 [ 860.113965] Kernel Offset: disabled [ 860.117592] Rebooting in 86400 seconds..