[ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... Starting Load/Save RF Kill Switch Status... [ OK ] Started Update UTMP about System Runlevel Changes. [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.9' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 644.712070] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024) [ 644.722055] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 2048) [ 644.733431] NILFS (loop0): mounting unchecked fs [ 644.742913] NILFS (loop0): recovery complete [ 644.749041] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 644.771566] NILFS (loop0): unrecognized mount option "mode=00000000000000000007777" [ 858.026297] INFO: task syz-executor694:8019 blocked for more than 140 seconds. [ 858.033781] Not tainted 4.14.213-syzkaller #0 [ 858.039971] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 858.048377] syz-executor694 D29712 8019 8009 0x00000004 [ 858.053994] Call Trace: [ 858.057164] __schedule+0x88b/0x1de0 [ 858.060867] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 858.066036] ? io_schedule_timeout+0x140/0x140 [ 858.071942] schedule+0x8d/0x1b0 [ 858.075298] wb_wait_for_completion+0x118/0x170 [ 858.080565] ? wbc_account_io+0x2a0/0x2a0 [ 858.084702] ? lock_acquire+0x170/0x3f0 [ 858.089265] ? wait_woken+0x230/0x230 [ 858.093065] sync_inodes_sb+0x173/0x880 [ 858.097628] ? radix_tree_tagged+0xc/0x50 [ 858.101772] ? __filemap_fdatawrite_range+0x175/0x310 [ 858.107545] ? lock_downgrade+0x740/0x740 [ 858.111704] ? try_to_writeback_inodes_sb_nr+0x70/0x70 [ 858.117677] sync_filesystem+0x12f/0x230 [ 858.121744] nilfs_remount+0x51/0x470 [ 858.125533] do_remount_sb+0x150/0x530 [ 858.130230] ? nilfs_put_super+0x190/0x190 [ 858.134452] ? user_get_super+0x2e0/0x2e0 [ 858.139210] ? security_capable+0x88/0xb0 [ 858.143361] do_mount+0x1632/0x2a00 [ 858.147568] ? copy_mount_string+0x40/0x40 [ 858.151804] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 858.157356] ? copy_mnt_ns+0xa30/0xa30 [ 858.161242] ? copy_mount_options+0x1fa/0x2f0 [ 858.165714] ? copy_mnt_ns+0xa30/0xa30 [ 858.170448] SyS_mount+0xa8/0x120 [ 858.173893] ? copy_mnt_ns+0xa30/0xa30 [ 858.178360] do_syscall_64+0x1d5/0x640 [ 858.182241] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 858.188039] RIP: 0033:0x44b5e9 [ 858.191220] RSP: 002b:00007f9b3a9d1d88 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 858.199537] RAX: ffffffffffffffda RBX: 00000000006ddc38 RCX: 000000000044b5e9 [ 858.207185] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000000 [ 858.214444] RBP: 00000000006ddc30 R08: 0000000020000440 R09: 0000000000000000 [ 858.222368] R10: 0000000000000020 R11: 0000000000000246 R12: 000000005f671b56 [ 858.230026] R13: 000000005f671b56 R14: 0000000000000000 R15: 0000000000000000 [ 858.237799] [ 858.237799] Showing all locks held in the system: [ 858.244127] 2 locks held by kworker/u4:1/22: [ 858.248721] #0: ("writeback"){+.+.}, at: [] process_one_work+0x6b0/0x14a0 [ 858.257568] #1: ((&(&wb->dwork)->work)){+.+.}, at: [] process_one_work+0x6e6/0x14a0 [ 858.267274] 1 lock held by khungtaskd/1530: [ 858.271632] #0: (tasklist_lock){.+.+}, at: [] debug_show_all_locks+0x7c/0x21a [ 858.280762] 2 locks held by syz-executor694/8019: [ 858.285593] #0: (&type->s_umount_key#47){+.+.}, at: [] do_mount+0x837/0x2a00 [ 858.294701] #1: (&bdi->wb_switch_rwsem){+.+.}, at: [] sync_inodes_sb+0x156/0x880 [ 858.304078] [ 858.305697] ============================================= [ 858.305697] [ 858.313301] NMI backtrace for cpu 0 [ 858.316983] CPU: 0 PID: 1530 Comm: khungtaskd Not tainted 4.14.213-syzkaller #0 [ 858.324436] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 858.333776] Call Trace: [ 858.336357] dump_stack+0x1b2/0x283 [ 858.339974] nmi_cpu_backtrace.cold+0x57/0x93 [ 858.344455] ? irq_force_complete_move.cold+0x89/0x89 [ 858.349650] nmi_trigger_cpumask_backtrace+0x13a/0x17f [ 858.354924] watchdog+0x5b9/0xb40 [ 858.358360] ? hungtask_pm_notify+0x50/0x50 [ 858.362664] kthread+0x30d/0x420 [ 858.366006] ? kthread_create_on_node+0xd0/0xd0 [ 858.370655] ret_from_fork+0x24/0x30 [ 858.374500] Sending NMI from CPU 0 to CPUs 1: [ 858.379408] NMI backtrace for cpu 1 [ 858.379413] CPU: 1 PID: 8 Comm: rcu_preempt Not tainted 4.14.213-syzkaller #0 [ 858.379417] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 858.379420] task: ffff8880b5414200 task.stack: ffff8880b5418000 [ 858.379423] RIP: 0010:lock_release+0x27/0x870 [ 858.379426] RSP: 0018:ffff8880b541fa60 EFLAGS: 00000086 [ 858.379432] RAX: dffffc0000000000 RBX: 0000000000000086 RCX: ffffffff88f7fd40 [ 858.379435] RDX: ffffffff8321e8aa RSI: 0000000000000001 RDI: ffffffff8bfb09e0 [ 858.379439] RBP: ffffffff8bfb09e0 R08: ffffffff8b9ac430 R09: 0000000000000086 [ 858.379442] R10: ffff8880b5414ab0 R11: ffff8880b5414200 R12: ffffffff8321e8aa [ 858.379446] R13: 1ffff11016a83f64 R14: ffff8880b541fd18 R15: ffffffff8bfb09c8 [ 858.379450] FS: 0000000000000000(0000) GS:ffff8880ba500000(0000) knlGS:0000000000000000 [ 858.379453] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 858.379456] CR2: 00007f6e1df7d000 CR3: 00000000a1849000 CR4: 00000000001406e0 [ 858.379460] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 858.379463] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 858.379465] Call Trace: [ 858.379468] ? lock_acquire+0x170/0x3f0 [ 858.379470] ? debug_object_deactivate+0xdf/0x2e0 [ 858.379473] ? lock_acquire+0x170/0x3f0 [ 858.379476] _raw_spin_unlock_irqrestore+0x1b/0xe0 [ 858.379478] debug_object_deactivate+0x1da/0x2e0 [ 858.379481] ? debug_stats_show+0xd0/0xd0 [ 858.379483] ? lock_timer_base+0x58/0x190 [ 858.379486] ? _raw_spin_lock_irqsave+0x94/0xc0 [ 858.379488] detach_if_pending+0x82/0x430 [ 858.379491] try_to_del_timer_sync+0x9a/0xe0 [ 858.379494] ? detach_if_pending+0x430/0x430 [ 858.379496] del_timer_sync+0x17c/0x240 [ 858.379498] schedule_timeout+0x4b7/0xe90 [ 858.379501] ? _raw_spin_unlock_irqrestore+0x79/0xe0 [ 858.379504] ? usleep_range+0x130/0x130 [ 858.379507] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 858.379509] ? prepare_to_swait+0x115/0x2a0 [ 858.379512] ? run_timer_softirq+0x5a0/0x5a0 [ 858.379514] rcu_gp_kthread+0xc0a/0x1e60 [ 858.379517] ? force_qs_rnp+0x4f0/0x4f0 [ 858.379519] ? force_qs_rnp+0x4f0/0x4f0 [ 858.379521] kthread+0x30d/0x420 [ 858.379524] ? kthread_create_on_node+0xd0/0xd0 [ 858.379526] ret_from_fork+0x24/0x30 [ 858.379528] Code: 0f 1f 40 00 48 b8 00 00 00 00 00 fc ff df 41 57 41 56 41 55 41 54 49 89 d4 55 48 89 fd 53 48 83 ec 58 48 c7 44 24 18 b3 8a b5 41 <48> 8d 5c 24 18 48 c7 44 24 20 74 5c b5 88 48 c1 eb 03 48 c7 44 [ 858.380090] Kernel panic - not syncing: hung_task: blocked tasks [ 858.618014] CPU: 0 PID: 1530 Comm: khungtaskd Not tainted 4.14.213-syzkaller #0 [ 858.625434] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 858.634767] Call Trace: [ 858.637341] dump_stack+0x1b2/0x283 [ 858.640943] panic+0x1f9/0x42d [ 858.644112] ? add_taint.cold+0x16/0x16 [ 858.648068] watchdog+0x5ca/0xb40 [ 858.651506] ? hungtask_pm_notify+0x50/0x50 [ 858.655816] kthread+0x30d/0x420 [ 858.659162] ? kthread_create_on_node+0xd0/0xd0 [ 858.663813] ret_from_fork+0x24/0x30 [ 858.668328] Kernel Offset: disabled [ 858.671952] Rebooting in 86400 seconds..