[[0;32m  OK  [0m] Reached target Login Prompts.
[[0;32m  OK  [0m] Reached target Multi-User System.
[[0;32m  OK  [0m] Reached target Graphical Interface.
         Starting Update UTMP about System Runlevel Changes...
[[0;32m  OK  [0m] Started Update UTMP about System Runlevel Changes.

Debian GNU/Linux 9 syzkaller ttyS0

Warning: Permanently added '10.128.1.44' (ECDSA) to the list of known hosts.
2021/05/28 17:18:35 parsed 1 programs
2021/05/28 17:18:36 executed programs: 0
syzkaller login: [ 1582.490321][ T8470] chnl_net:caif_netlink_parms(): no params data found
[ 1582.533084][ T8470] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1582.540884][ T8470] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1582.549442][ T8470] device bridge_slave_0 entered promiscuous mode
[ 1582.558690][ T8470] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1582.566317][ T8470] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1582.574020][ T8470] device bridge_slave_1 entered promiscuous mode
[ 1582.592166][ T8470] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1582.603233][ T8470] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1582.622354][ T8470] team0: Port device team_slave_0 added
[ 1582.629364][ T8470] team0: Port device team_slave_1 added
[ 1582.644319][ T8470] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1582.651680][ T8470] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1582.677587][ T8470] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1582.689733][ T8470] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1582.696713][ T8470] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1582.722788][ T8470] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1582.746175][ T8470] device hsr_slave_0 entered promiscuous mode
[ 1582.754312][ T8470] device hsr_slave_1 entered promiscuous mode
[ 1582.832725][ T8470] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1582.845393][ T8470] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1582.854560][ T8470] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1582.863560][ T8470] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1582.882727][ T8470] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1582.889998][ T8470] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1582.897633][ T8470] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1582.904727][ T8470] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1582.939282][ T8470] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1582.953917][ T8611] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1582.965280][ T8611] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1582.973568][ T8611] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1582.981497][ T8611] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 1582.993190][ T8470] 8021q: adding VLAN 0 to HW filter on device team0
[ 1583.005587][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1583.014053][    T5] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1583.021711][    T5] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1583.033389][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1583.041986][    T5] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1583.049367][    T5] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1583.066365][ T8692] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1583.074810][ T8692] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1583.091940][ T8470] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1583.103790][ T8470] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1583.116450][ T8692] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1583.125206][ T8692] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1583.134104][ T8692] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1583.144892][ T8692] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1583.158691][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1583.166275][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1583.178642][ T8470] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1583.201676][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1583.213521][ T8692] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1583.224728][ T8692] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1583.232736][ T8692] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1583.240390][ T8470] device veth0_vlan entered promiscuous mode
[ 1583.252852][ T8470] device veth1_vlan entered promiscuous mode
[ 1583.271022][ T4864] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1583.279761][ T4864] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1583.288535][ T4864] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1583.299190][ T8470] device veth0_macvtap entered promiscuous mode
[ 1583.308672][ T8470] device veth1_macvtap entered promiscuous mode
[ 1583.325174][ T8470] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1583.333387][ T8692] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1583.343447][ T8692] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1583.354250][ T8470] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1583.362808][ T4864] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1583.374364][ T8470] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1583.383632][ T8470] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1583.392919][ T8470] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1583.403100][ T8470] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1583.473897][ T3310] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1583.492566][ T3310] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1583.508822][  T116] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1583.510516][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1583.521468][  T116] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1583.534832][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1584.382508][    T5] Bluetooth: hci0: command 0x0409 tx timeout
2021/05/28 17:18:41 executed programs: 3
[ 1586.461752][ T8694] Bluetooth: hci0: command 0x041b tx timeout
[ 1588.531848][ T8442] Bluetooth: hci0: command 0x040f tx timeout
[ 1590.611491][ T8611] Bluetooth: hci0: command 0x0419 tx timeout
2021/05/28 17:18:46 executed programs: 9
2021/05/28 17:18:51 executed programs: 15
2021/05/28 17:18:57 executed programs: 21
[ 1606.622121][ T3245] ieee802154 phy0 wpan0: encryption failed: -22
[ 1606.628750][ T3245] ieee802154 phy1 wpan1: encryption failed: -22
[ 1668.052100][ T3245] ieee802154 phy0 wpan0: encryption failed: -22
[ 1668.058792][ T3245] ieee802154 phy1 wpan1: encryption failed: -22
[ 1705.971549][ T8611] Bluetooth: hci0: command 0x0406 tx timeout
[ 1729.492367][ T3245] ieee802154 phy0 wpan0: encryption failed: -22
[ 1729.499105][ T3245] ieee802154 phy1 wpan1: encryption failed: -22
[ 1760.211694][ T1619] INFO: task syz-executor.0:8876 blocked for more than 143 seconds.
[ 1760.220487][ T1619]       Not tainted 5.13.0-rc3-syzkaller #0
[ 1760.228051][ T1619] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1760.238175][ T1619] task:syz-executor.0  state:D stack:28112 pid: 8876 ppid:  8470 flags:0x00004004
[ 1760.247872][ T1619] Call Trace:
[ 1760.251340][ T1619]  __schedule+0x916/0x23e0
[ 1760.256775][ T1619]  ? io_schedule_timeout+0x140/0x140
[ 1760.262447][ T1619]  ? get_vtime_delta+0x271/0x420
[ 1760.267397][ T1619]  schedule+0xcf/0x270
[ 1760.272263][ T1619]  schedule_timeout+0x1db/0x250
[ 1760.277124][ T1619]  ? usleep_range+0x170/0x170
[ 1760.282320][ T1619]  ? wait_for_completion+0x160/0x270
[ 1760.287802][ T1619]  ? lock_downgrade+0x6e0/0x6e0
[ 1760.292756][ T1619]  ? do_raw_spin_lock+0x120/0x2b0
[ 1760.298144][ T1619]  ? rwlock_bug.part.0+0x90/0x90
[ 1760.303887][ T1619]  ? _raw_spin_unlock_irq+0x1f/0x40
[ 1760.309141][ T1619]  wait_for_completion+0x168/0x270
[ 1760.314562][ T1619]  ? __flush_work+0x4f9/0xac0
[ 1760.319249][ T1619]  ? bit_wait_io_timeout+0x160/0x160
[ 1760.324623][ T1619]  ? lockdep_hardirqs_off+0x90/0xd0
[ 1760.329827][ T1619]  __flush_work+0x527/0xac0
[ 1760.334368][ T1619]  ? queue_delayed_work_on+0x120/0x120
[ 1760.339825][ T1619]  ? __flush_work+0x843/0xac0
[ 1760.344648][ T1619]  ? flush_workqueue_prep_pwqs+0x510/0x510
[ 1760.350519][ T1619]  ? try_to_grab_pending+0xbd/0xd0
[ 1760.355662][ T1619]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 1760.361996][ T1619]  __cancel_work_timer+0x3f9/0x570
[ 1760.367102][ T1619]  ? try_to_grab_pending+0xd0/0xd0
[ 1760.372494][ T1619]  ? p9_fd_close+0x280/0x520
[ 1760.377092][ T1619]  ? lock_downgrade+0x6e0/0x6e0
[ 1760.383679][ T1619]  ? _raw_spin_unlock_irqrestore+0x50/0x70
[ 1760.389495][ T1619]  p9_fd_close+0x305/0x520
[ 1760.394438][ T1619]  ? p9_client_create+0xa46/0x1110
[ 1760.399555][ T1619]  p9_client_create+0x95a/0x1110
[ 1760.404587][ T1619]  ? p9_client_flush+0x430/0x430
[ 1760.409527][ T1619]  ? lockdep_init_map_type+0x2c3/0x7b0
[ 1760.415793][ T1619]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 1760.421355][ T1619]  ? __raw_spin_lock_init+0x36/0x110
[ 1760.426740][ T1619]  v9fs_session_init+0x1dd/0x1770
[ 1760.431824][ T1619]  ? v9fs_show_options+0x780/0x780
[ 1760.436940][ T1619]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 1760.442579][ T1619]  v9fs_mount+0x79/0x9c0
[ 1760.446825][ T1619]  ? v9fs_write_inode+0x60/0x60
[ 1760.451708][ T1619]  legacy_get_tree+0x105/0x220
[ 1760.456472][ T1619]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1760.462829][ T1619]  vfs_get_tree+0x89/0x2f0
[ 1760.467253][ T1619]  path_mount+0x132a/0x1fa0
[ 1760.471801][ T1619]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 1760.478059][ T1619]  ? strncpy_from_user+0x2a0/0x3e0
[ 1760.483261][ T1619]  ? finish_automount+0xad0/0xad0
[ 1760.488289][ T1619]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1760.494559][ T1619]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1760.499930][ T1619]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 1760.506252][ T1619]  __x64_sys_mount+0x27f/0x300
[ 1760.511028][ T1619]  ? copy_mnt_ns+0xae0/0xae0
[ 1760.516244][ T1619]  ? syscall_enter_from_user_mode+0x27/0x70
[ 1760.522424][ T1619]  do_syscall_64+0x3a/0xb0
[ 1760.526845][ T1619]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1760.533461][ T1619] RIP: 0033:0x4665d9
[ 1760.537355][ T1619] RSP: 002b:00007f28e5fcb188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1760.545956][ T1619] RAX: ffffffffffffffda RBX: 000000000056c1a8 RCX: 00000000004665d9
[ 1760.554021][ T1619] RDX: 0000000020000240 RSI: 0000000020000200 RDI: 0000000000000000
[ 1760.562049][ T1619] RBP: 00000000004bfcb9 R08: 0000000020000580 R09: 0000000000000000
[ 1760.570022][ T1619] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000056c1a8
[ 1760.578091][ T1619] R13: 00007ffeac913d9f R14: 00007f28e5fcb300 R15: 0000000000022000
[ 1760.586159][ T1619] 
[ 1760.586159][ T1619] Showing all locks held in the system:
[ 1760.593966][ T1619] 2 locks held by kworker/u4:3/116:
[ 1760.599284][ T1619] 1 lock held by khungtaskd/1619:
[ 1760.604361][ T1619]  #0: ffffffff8bf79320 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x53/0x260
[ 1760.614439][ T1619] 1 lock held by in:imklog/8140:
[ 1760.619365][ T1619]  #0: ffff8880210fb9f0 (&f->f_pos_lock){+.+.}-{3:3}, at: __fdget_pos+0xe9/0x100
[ 1760.628748][ T1619] 2 locks held by kworker/1:3/8691:
[ 1760.633983][ T1619]  #0: ffff8880b9d35658 (&rq->lock){-.-.}-{2:2}, at: __schedule+0x21c/0x23e0
[ 1760.642825][ T1619]  #1: ffff8880b9d1f988 (&per_cpu_ptr(group->pcpu, cpu)->seq){-.-.}-{0:0}, at: psi_task_switch+0x24c/0x670
[ 1760.654301][ T1619] 2 locks held by kworker/0:1/8694:
[ 1760.659497][ T1619]  #0: ffff888011064d38 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x871/0x1600
[ 1760.669877][ T1619]  #1: ffffc90001e9fda8 ((work_completion)(&m->wq)){+.+.}-{0:0}, at: process_one_work+0x8a5/0x1600
[ 1760.680996][ T1619] 
[ 1760.684144][ T1619] =============================================
[ 1760.684144][ T1619] 
[ 1760.693024][ T1619] NMI backtrace for cpu 0
[ 1760.697344][ T1619] CPU: 0 PID: 1619 Comm: khungtaskd Not tainted 5.13.0-rc3-syzkaller #0
[ 1760.705917][ T1619] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1760.715951][ T1619] Call Trace:
[ 1760.719206][ T1619]  dump_stack+0x141/0x1d7
[ 1760.723519][ T1619]  nmi_cpu_backtrace.cold+0x44/0xd7
[ 1760.728697][ T1619]  ? lapic_can_unplug_cpu+0x80/0x80
[ 1760.733874][ T1619]  nmi_trigger_cpumask_backtrace+0x1b3/0x230
[ 1760.739833][ T1619]  watchdog+0xd48/0xfb0
[ 1760.743970][ T1619]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 1760.750193][ T1619]  ? reset_hung_task_detector+0x30/0x30
[ 1760.755736][ T1619]  kthread+0x3b1/0x4a0
[ 1760.759786][ T1619]  ? __kthread_bind_mask+0xc0/0xc0
[ 1760.764875][ T1619]  ret_from_fork+0x1f/0x30
[ 1760.769496][ T1619] Sending NMI from CPU 0 to CPUs 1:
[ 1760.775075][    C1] NMI backtrace for cpu 1
[ 1760.775084][    C1] CPU: 1 PID: 8713 Comm: kworker/u4:1 Not tainted 5.13.0-rc3-syzkaller #0
[ 1760.775092][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1760.775099][    C1] Workqueue: bat_events batadv_nc_worker
[ 1760.775109][    C1] RIP: 0010:mark_lock+0x187/0x17b0
[ 1760.775117][    C1] Code: 00 00 00 48 8b 84 24 10 01 00 00 65 48 2b 04 25 28 00 00 00 0f 85 c3 11 00 00 48 81 c4 18 01 00 00 44 89 d0 5b 5d 41 5c 41 5d <41> 5e 41 5f c3 48 8d 7e 22 48 89 f8 48 c1 e8 03 0f b6 04 10 48 89
[ 1760.775129][    C1] RSP: 0018:ffffc90001f7fb80 EFLAGS: 00000096
[ 1760.775137][    C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: 1ffffffff204ec72
[ 1760.775144][    C1] RDX: dffffc0000000000 RSI: 0000000000000040 RDI: ffffffff90276390
[ 1760.775151][    C1] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffff90226977
[ 1760.775157][    C1] R10: 0000000000000001 R11: 0000000000000000 R12: ffff8880213d54c0
[ 1760.775164][    C1] R13: dffffc0000000000 R14: 000000000000069e R15: ffff8880213d5f00
[ 1760.775171][    C1] FS:  0000000000000000(0000) GS:ffff8880b9d00000(0000) knlGS:0000000000000000
[ 1760.775177][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1760.775183][    C1] CR2: 00007f95e36b2000 CR3: 000000002d4d1000 CR4: 0000000000350ee0
[ 1760.775189][    C1] Call Trace:
[ 1760.775193][    C1]  ? batadv_nc_to_purge_nc_path_decoding+0x160/0x160
[ 1760.775198][    C1]  mark_held_locks+0x9f/0xe0
[ 1760.775202][    C1]  lockdep_hardirqs_on_prepare+0x28b/0x400
[ 1760.775207][    C1]  ? __local_bh_enable_ip+0xa0/0x120
[ 1760.775211][    C1]  trace_hardirqs_on+0x5b/0x1c0
[ 1760.775216][    C1]  ? batadv_nc_purge_paths+0x2a5/0x3a0
[ 1760.775220][    C1]  __local_bh_enable_ip+0xa0/0x120
[ 1760.775225][    C1]  batadv_nc_purge_paths+0x2a5/0x3a0
[ 1760.775229][    C1]  batadv_nc_worker+0x831/0xe50
[ 1760.775233][    C1]  process_one_work+0x98d/0x1600
[ 1760.775238][    C1]  ? pwq_dec_nr_in_flight+0x320/0x320
[ 1760.775242][    C1]  ? rwlock_bug.part.0+0x90/0x90
[ 1760.775246][    C1]  ? _raw_spin_lock_irq+0x41/0x50
[ 1760.775251][    C1]  worker_thread+0x64c/0x1120
[ 1760.775255][    C1]  ? __kthread_parkme+0x13f/0x1e0
[ 1760.775259][    C1]  ? process_one_work+0x1600/0x1600
[ 1760.775263][    C1]  kthread+0x3b1/0x4a0
[ 1760.775267][    C1]  ? __kthread_bind_mask+0xc0/0xc0
[ 1760.775271][    C1]  ret_from_fork+0x1f/0x30
[ 1760.775844][ T1619] Kernel panic - not syncing: hung_task: blocked tasks
[ 1761.003694][ T1619] CPU: 0 PID: 1619 Comm: khungtaskd Not tainted 5.13.0-rc3-syzkaller #0
[ 1761.011996][ T1619] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1761.022028][ T1619] Call Trace:
[ 1761.025296][ T1619]  dump_stack+0x141/0x1d7
[ 1761.029607][ T1619]  panic+0x306/0x73d
[ 1761.033480][ T1619]  ? __warn_printk+0xf3/0xf3
[ 1761.038062][ T1619]  ? lapic_can_unplug_cpu+0x80/0x80
[ 1761.043239][ T1619]  ? preempt_schedule_thunk+0x16/0x18
[ 1761.048593][ T1619]  ? nmi_trigger_cpumask_backtrace+0x196/0x230
[ 1761.054723][ T1619]  ? watchdog.cold+0x5/0x158
[ 1761.059300][ T1619]  watchdog.cold+0x16/0x158
[ 1761.063780][ T1619]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 1761.070002][ T1619]  ? reset_hung_task_detector+0x30/0x30
[ 1761.075530][ T1619]  kthread+0x3b1/0x4a0
[ 1761.079577][ T1619]  ? __kthread_bind_mask+0xc0/0xc0
[ 1761.084668][ T1619]  ret_from_fork+0x1f/0x30
[ 1761.095357][ T1619] Kernel Offset: disabled
[ 1761.099758][ T1619] Rebooting in 86400 seconds..