Warning: Permanently added '10.128.0.144' (ECDSA) to the list of known hosts. executing program [ 378.547055] audit: type=1400 audit(1581798586.477:36): avc: denied { map } for pid=7940 comm="syz-executor800" path="/root/syz-executor800336106" dev="sda1" ino=1426 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 [ 378.562188] IPVS: ftp: loaded support on port[0] = 21 [ 383.600479] block nbd0: shutting down sockets [ 528.602616] INFO: task syz-executor800:7942 blocked for more than 140 seconds. [ 528.610237] Not tainted 4.19.104-syzkaller #0 [ 528.615297] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 528.623303] syz-executor800 D27936 7942 7941 0x00000004 [ 528.628921] Call Trace: [ 528.631556] __schedule+0x866/0x1dc0 [ 528.635316] ? firmware_map_remove+0x1a6/0x1a6 [ 528.639905] ? mark_held_locks+0x100/0x100 [ 528.644183] schedule+0x92/0x1c0 [ 528.647550] schedule_timeout+0x8c8/0xfc0 [ 528.651683] ? wait_for_completion+0x294/0x440 [ 528.656302] ? find_held_lock+0x35/0x130 [ 528.660369] ? usleep_range+0x170/0x170 [ 528.664383] ? _raw_spin_unlock_irq+0x28/0x90 [ 528.668872] ? wait_for_completion+0x294/0x440 [ 528.673498] ? _raw_spin_unlock_irq+0x28/0x90 [ 528.677996] ? lockdep_hardirqs_on+0x415/0x5d0 [ 528.682610] ? trace_hardirqs_on+0x67/0x220 [ 528.686938] wait_for_completion+0x29c/0x440 [ 528.691335] ? wait_for_completion_interruptible+0x4b0/0x4b0 [ 528.697164] ? wake_up_q+0x100/0x100 [ 528.700888] ? flush_workqueue_prep_pwqs+0x352/0x590 [ 528.706148] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 528.711711] flush_workqueue+0x40f/0x14b0 [ 528.716028] ? __dev_printk+0x116/0x280 [ 528.720057] ? _dev_warn+0xd8/0x110 [ 528.723739] ? pwq_unbound_release_workfn+0x2e0/0x2e0 [ 528.729021] ? sock_shutdown+0x1e2/0x250 [ 528.733132] nbd_ioctl+0x546/0xcc0 [ 528.736673] ? nbd_ioctl+0x546/0xcc0 [ 528.740431] ? nbd_add_socket+0x690/0x690 [ 528.744618] ? finish_wait+0x260/0x260 [ 528.748507] ? save_stack+0x45/0xd0 [ 528.752139] ? __kasan_slab_free+0x102/0x150 [ 528.756594] ? kasan_slab_free+0xe/0x10 [ 528.760621] ? kmem_cache_free+0x86/0x260 [ 528.764854] ? putname+0xef/0x130 [ 528.768317] ? do_sys_open+0x318/0x550 [ 528.772210] ? nbd_add_socket+0x690/0x690 [ 528.776505] blkdev_ioctl+0xc2c/0x1ab3 [ 528.780426] ? blkpg_ioctl+0xa90/0xa90 [ 528.784349] ? find_held_lock+0x35/0x130 [ 528.788466] ? debug_check_no_obj_freed+0x200/0x464 [ 528.793555] block_ioctl+0xee/0x130 [ 528.797180] ? blkdev_fallocate+0x400/0x400 [ 528.801486] do_vfs_ioctl+0xd5f/0x1380 [ 528.805404] ? selinux_file_ioctl+0x46c/0x5d0 [ 528.809894] ? selinux_file_ioctl+0x125/0x5d0 [ 528.814425] ? ioctl_preallocate+0x210/0x210 [ 528.818853] ? selinux_file_mprotect+0x620/0x620 [ 528.823658] ? putname+0xef/0x130 [ 528.827115] ? kmem_cache_free+0x222/0x260 [ 528.831334] ? putname+0xf4/0x130 [ 528.834824] ? do_sys_open+0x31d/0x550 [ 528.838720] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 528.844287] ? security_file_ioctl+0x8d/0xc0 [ 528.848699] ksys_ioctl+0xab/0xd0 [ 528.852140] __x64_sys_ioctl+0x73/0xb0 [ 528.856064] do_syscall_64+0xfd/0x620 [ 528.859869] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 528.865092] RIP: 0033:0x4454a9 [ 528.868292] Code: Bad RIP value. [ 528.871642] RSP: 002b:00007fff8c5db528 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 528.879380] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000004454a9 [ 528.886674] RDX: 0000000000000000 RSI: 000000000000ab03 RDI: 0000000000000006 [ 528.893983] RBP: 0000000000000004 R08: 0000000000000004 R09: 0000000000000000 [ 528.901257] R10: 00007fff8c5db080 R11: 0000000000000246 R12: 00000000011bc914 [ 528.908592] R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000000000 [ 528.915896] [ 528.915896] Showing all locks held in the system: [ 528.922206] 1 lock held by khungtaskd/1081: [ 528.926564] #0: 00000000c63fdad1 (rcu_read_lock){....}, at: debug_show_all_locks+0x5f/0x27e [ 528.935208] 2 locks held by kworker/u5:0/1217: [ 528.939768] #0: 000000003a8b1387 ((wq_completion)"knbd%d-recv"nbd->index){+.+.}, at: process_one_work+0x87e/0x1750 [ 528.950382] #1: 0000000032fea809 ((work_completion)(&args->work)){+.+.}, at: process_one_work+0x8b4/0x1750 [ 528.960341] 1 lock held by rsyslogd/7791: [ 528.964539] 2 locks held by getty/7913: [ 528.968505] #0: 000000005274481b (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 528.976779] #1: 000000002f7f9ffb (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b70 [ 528.985751] 2 locks held by getty/7914: [ 528.989705] #0: 000000002ce50d72 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 528.997985] #1: 0000000092af2ede (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b70 [ 529.006871] 2 locks held by getty/7915: [ 529.010825] #0: 0000000055bd61bc (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 529.019090] #1: 00000000a373e729 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b70 [ 529.027992] 2 locks held by getty/7916: [ 529.031945] #0: 00000000cc6be82e (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 529.040231] #1: 000000007c6abcb3 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b70 [ 529.049127] 2 locks held by getty/7917: [ 529.053153] #0: 00000000b1af6aef (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 529.061413] #1: 00000000e681d9f9 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b70 [ 529.070329] 2 locks held by getty/7918: [ 529.074321] #0: 00000000fe3aed4b (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 529.082601] #1: 000000003fcd29a8 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b70 [ 529.091503] 2 locks held by getty/7919: [ 529.095512] #0: 000000008ef0a1f4 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 529.103778] #1: 0000000030beef78 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b70 [ 529.112651] [ 529.114317] ============================================= [ 529.114317] [ 529.121314] NMI backtrace for cpu 1 [ 529.125043] CPU: 1 PID: 1081 Comm: khungtaskd Not tainted 4.19.104-syzkaller #0 [ 529.132536] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 529.141877] Call Trace: [ 529.144517] dump_stack+0x197/0x210 [ 529.148158] nmi_cpu_backtrace.cold+0x63/0xa4 [ 529.152640] ? lapic_can_unplug_cpu.cold+0x47/0x47 [ 529.157561] nmi_trigger_cpumask_backtrace+0x1b0/0x1f8 [ 529.162833] arch_trigger_cpumask_backtrace+0x14/0x20 [ 529.168012] watchdog+0x9df/0xee0 [ 529.171517] kthread+0x354/0x420 [ 529.174913] ? reset_hung_task_detector+0x30/0x30 [ 529.179740] ? kthread_cancel_delayed_work_sync+0x20/0x20 [ 529.185269] ret_from_fork+0x24/0x30 [ 529.189068] Sending NMI from CPU 1 to CPUs 0: [ 529.193652] NMI backtrace for cpu 0 skipped: idling at native_safe_halt+0xe/0x10 [ 529.194610] Kernel panic - not syncing: hung_task: blocked tasks [ 529.207329] CPU: 1 PID: 1081 Comm: khungtaskd Not tainted 4.19.104-syzkaller #0 [ 529.214762] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 529.224099] Call Trace: [ 529.226675] dump_stack+0x197/0x210 [ 529.230287] panic+0x26a/0x50e [ 529.233466] ? __warn_printk+0xf3/0xf3 [ 529.237382] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 529.242383] ? printk_safe_flush+0xf2/0x140 [ 529.246690] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 529.252212] ? lapic_can_unplug_cpu.cold+0x47/0x47 [ 529.257157] ? nmi_trigger_cpumask_backtrace+0x16e/0x1f8 [ 529.262592] ? nmi_trigger_cpumask_backtrace+0x165/0x1f8 [ 529.268024] watchdog+0x9f0/0xee0 [ 529.271469] kthread+0x354/0x420 [ 529.274817] ? reset_hung_task_detector+0x30/0x30 [ 529.279693] ? kthread_cancel_delayed_work_sync+0x20/0x20 [ 529.285214] ret_from_fork+0x24/0x30 [ 529.290316] Kernel Offset: disabled [ 529.293949] Rebooting in 86400 seconds..