[[0;32m  OK  [0m] Reached target Multi-User System.
[[0;32m  OK  [0m] Reached target Graphical Interface.
         Starting Update UTMP about System Runlevel Changes...
[[0;32m  OK  [0m] Started Update UTMP about System Runlevel Changes.
         Starting Load/Save RF Kill Switch Status...

Debian GNU/Linux 9 syzkaller ttyS0

Warning: Permanently added '10.128.0.242' (ECDSA) to the list of known hosts.
executing program
syzkaller login: [  636.829948][ T1173] INFO: task syz-executor787:6840 can't die for more than 143 seconds.
[  636.838429][ T1173] task:syz-executor787 state:D stack:26864 pid: 6840 ppid:  6833 flags:0x00000004
[  636.849624][ T1173] Call Trace:
[  636.853468][ T1173]  __schedule+0x8e5/0x21e0
[  636.857887][ T1173]  ? io_schedule_timeout+0x140/0x140
[  636.864097][ T1173]  schedule+0xd0/0x2a0
[  636.868196][ T1173]  schedule_timeout+0x1d8/0x250
[  636.873875][ T1173]  ? usleep_range+0x170/0x170
[  636.878595][ T1173]  ? lock_downgrade+0x830/0x830
[  636.884363][ T1173]  ? do_raw_spin_lock+0x120/0x2b0
[  636.889441][ T1173]  ? _raw_spin_unlock_irq+0x1f/0x80
[  636.895388][ T1173]  ? lockdep_hardirqs_on_prepare+0x354/0x530
[  636.901924][ T1173]  ? trace_hardirqs_on+0x5f/0x220
[  636.906966][ T1173]  wait_for_completion_timeout+0x15e/0x270
[  636.913681][ T1173]  ? wait_for_completion_io+0x260/0x260
[  636.919335][ T1173]  ? usb_submit_urb+0xb56/0x1320
[  636.925162][ T1173]  ? lockdep_init_map_waits+0x173/0x8a0
[  636.931327][ T1173]  usb_start_wait_urb+0x144/0x2b0
[  636.936355][ T1173]  ? usb_api_blocking_completion+0xa0/0xa0
[  636.942908][ T1173]  ? memset+0x20/0x40
[  636.946888][ T1173]  usb_bulk_msg+0x226/0x550
[  636.952172][ T1173]  do_proc_bulk+0x39b/0x710
[  636.956668][ T1173]  ? do_proc_control+0x930/0x930
[  636.962924][ T1173]  ? __might_fault+0x190/0x1d0
[  636.967684][ T1173]  usbdev_ioctl+0x586/0x3360
[  636.973006][ T1173]  ? processcompl_compat+0x670/0x670
[  636.978295][ T1173]  ? __sanitizer_cov_trace_switch+0x45/0x70
[  636.985008][ T1173]  ? do_vfs_ioctl+0x27d/0x1090
[  636.990266][ T1173]  ? generic_block_fiemap+0x60/0x60
[  636.995484][ T1173]  ? __schedule+0x8ed/0x21e0
[  637.000831][ T1173]  ? __fget_files+0x294/0x400
[  637.005505][ T1173]  ? bpf_lsm_file_ioctl+0x5/0x10
[  637.011260][ T1173]  ? processcompl_compat+0x670/0x670
[  637.016551][ T1173]  __x64_sys_ioctl+0x193/0x200
[  637.022102][ T1173]  do_syscall_64+0x2d/0x70
[  637.026512][ T1173]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  637.033184][ T1173] RIP: 0033:0x449659
[  637.037064][ T1173] Code: Bad RIP value.
[  637.041837][ T1173] RSP: 002b:00007f02ac79cdb8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  637.050806][ T1173] RAX: ffffffffffffffda RBX: 00000000006dac28 RCX: 0000000000449659
[  637.058793][ T1173] RDX: 0000000020000000 RSI: 00000000c0185502 RDI: 0000000000000003
[  637.067590][ T1173] RBP: 00000000006dac20 R08: 0000000000000000 R09: 0000000000000000
[  637.076069][ T1173] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006dac2c
[  637.084567][ T1173] R13: 00007ffe8f1fe93f R14: 00007f02ac79d9c0 R15: 20c49ba5e353f7cf
[  637.093202][ T1173] INFO: task syz-executor787:6840 blocked for more than 143 seconds.
[  637.101934][ T1173]       Not tainted 5.9.0-rc2-next-20200828-syzkaller #0
[  637.108962][ T1173] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  637.118464][ T1173] task:syz-executor787 state:D stack:26864 pid: 6840 ppid:  6833 flags:0x00000004
[  637.128251][ T1173] Call Trace:
[  637.132015][ T1173]  __schedule+0x8e5/0x21e0
[  637.136433][ T1173]  ? io_schedule_timeout+0x140/0x140
[  637.142667][ T1173]  schedule+0xd0/0x2a0
[  637.146753][ T1173]  schedule_timeout+0x1d8/0x250
[  637.152333][ T1173]  ? usleep_range+0x170/0x170
[  637.157042][ T1173]  ? lock_downgrade+0x830/0x830
[  637.162762][ T1173]  ? do_raw_spin_lock+0x120/0x2b0
[  637.167791][ T1173]  ? _raw_spin_unlock_irq+0x1f/0x80
[  637.173845][ T1173]  ? lockdep_hardirqs_on_prepare+0x354/0x530
[  637.180360][ T1173]  ? trace_hardirqs_on+0x5f/0x220
[  637.185386][ T1173]  wait_for_completion_timeout+0x15e/0x270
[  637.192032][ T1173]  ? wait_for_completion_io+0x260/0x260
[  637.197580][ T1173]  ? usb_submit_urb+0xb56/0x1320
[  637.203972][ T1173]  ? lockdep_init_map_waits+0x173/0x8a0
[  637.209539][ T1173]  usb_start_wait_urb+0x144/0x2b0
[  637.215383][ T1173]  ? usb_api_blocking_completion+0xa0/0xa0
[  637.221705][ T1173]  ? memset+0x20/0x40
[  637.225704][ T1173]  usb_bulk_msg+0x226/0x550
[  637.231096][ T1173]  do_proc_bulk+0x39b/0x710
[  637.235614][ T1173]  ? do_proc_control+0x930/0x930
[  637.241384][ T1173]  ? __might_fault+0x190/0x1d0
[  637.246147][ T1173]  usbdev_ioctl+0x586/0x3360
[  637.251584][ T1173]  ? processcompl_compat+0x670/0x670
[  637.256892][ T1173]  ? __sanitizer_cov_trace_switch+0x45/0x70
[  637.263623][ T1173]  ? do_vfs_ioctl+0x27d/0x1090
[  637.268405][ T1173]  ? generic_block_fiemap+0x60/0x60
[  637.274407][ T1173]  ? __schedule+0x8ed/0x21e0
[  637.279003][ T1173]  ? __fget_files+0x294/0x400
[  637.284516][ T1173]  ? bpf_lsm_file_ioctl+0x5/0x10
[  637.289451][ T1173]  ? processcompl_compat+0x670/0x670
[  637.295531][ T1173]  __x64_sys_ioctl+0x193/0x200
[  637.300808][ T1173]  do_syscall_64+0x2d/0x70
[  637.305235][ T1173]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  637.311901][ T1173] RIP: 0033:0x449659
[  637.315785][ T1173] Code: Bad RIP value.
[  637.320594][ T1173] RSP: 002b:00007f02ac79cdb8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  637.329007][ T1173] RAX: ffffffffffffffda RBX: 00000000006dac28 RCX: 0000000000449659
[  637.337789][ T1173] RDX: 0000000020000000 RSI: 00000000c0185502 RDI: 0000000000000003
[  637.346268][ T1173] RBP: 00000000006dac20 R08: 0000000000000000 R09: 0000000000000000
[  637.354888][ T1173] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006dac2c
[  637.363398][ T1173] R13: 00007ffe8f1fe93f R14: 00007f02ac79d9c0 R15: 20c49ba5e353f7cf
[  637.372053][ T1173] 
[  637.372053][ T1173] Showing all locks held in the system:
[  637.380393][ T1173] 1 lock held by khungtaskd/1173:
[  637.385404][ T1173]  #0: ffffffff89c67640 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x53/0x260
[  637.396093][ T1173] 1 lock held by in:imklog/6531:
[  637.401615][ T1173]  #0: ffff888098a9c130 (&f->f_pos_lock){+.+.}-{3:3}, at: __fdget_pos+0xe9/0x100
[  637.411377][ T1173] 
[  637.413722][ T1173] =============================================
[  637.413722][ T1173] 
[  637.423755][ T1173] NMI backtrace for cpu 0
[  637.428080][ T1173] CPU: 0 PID: 1173 Comm: khungtaskd Not tainted 5.9.0-rc2-next-20200828-syzkaller #0
[  637.437521][ T1173] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  637.447563][ T1173] Call Trace:
[  637.450840][ T1173]  dump_stack+0x18f/0x20d
[  637.455154][ T1173]  nmi_cpu_backtrace.cold+0x44/0xd7
[  637.460364][ T1173]  ? lapic_can_unplug_cpu.cold+0x38/0x38
[  637.465978][ T1173]  nmi_trigger_cpumask_backtrace+0x1b3/0x223
[  637.471965][ T1173]  watchdog+0xd89/0xf30
[  637.476129][ T1173]  ? trace_sched_process_hang+0x2e0/0x2e0
[  637.481839][ T1173]  kthread+0x3b5/0x4a0
[  637.485913][ T1173]  ? __kthread_bind_mask+0xc0/0xc0
[  637.491018][ T1173]  ? __kthread_bind_mask+0xc0/0xc0
[  637.496118][ T1173]  ret_from_fork+0x1f/0x30
[  637.500714][ T1173] Sending NMI from CPU 0 to CPUs 1:
[  637.506395][    C1] NMI backtrace for cpu 1
[  637.506403][    C1] CPU: 1 PID: 3891 Comm: systemd-journal Not tainted 5.9.0-rc2-next-20200828-syzkaller #0
[  637.506410][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  637.506415][    C1] RIP: 0010:__lock_acquire+0x1750/0x5640
[  637.506427][    C1] Code: 74 5d 49 bd 00 00 00 00 00 fc ff df 48 8b 54 24 08 eb 06 49 83 ec 08 74 46 49 8d 7c 24 18 48 89 f8 48 c1 e8 03 42 80 3c 28 00 <0f> 85 43 2a 00 00 49 8b 44 24 18 48 39 c2 0f 84 26 f5 ff ff 49 8d
[  637.506432][    C1] RSP: 0018:ffffc90004807b00 EFLAGS: 00000046
[  637.506442][    C1] RAX: 1ffffffff1806a53 RBX: 0000000000003fe4 RCX: ffffffff815a153b
[  637.506448][    C1] RDX: 62386d250e98b09e RSI: 0000000000000008 RDI: ffffffff8c035298
[  637.506453][    C1] RBP: ffff888093da49f0 R08: 0000000000000000 R09: ffffffff8c6a59f7
[  637.506459][    C1] R10: fffffbfff18d4b3e R11: 0000000000000000 R12: ffffffff8c035280
[  637.506465][    C1] R13: dffffc0000000000 R14: ffff888093da4100 R15: 0000000000000001
[  637.506472][    C1] FS:  00007ff896ba08c0(0000) GS:ffff8880ae700000(0000) knlGS:0000000000000000
[  637.506477][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  637.506483][    C1] CR2: 00007ff893f44000 CR3: 000000009398b000 CR4: 00000000001506e0
[  637.506489][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  637.506494][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  637.506498][    C1] Call Trace:
[  637.506503][    C1]  ? lockdep_hardirqs_on_prepare+0x530/0x530
[  637.506508][    C1]  ? lockdep_hardirqs_on_prepare+0x530/0x530
[  637.506512][    C1]  ? lock_acquire+0x1f1/0xad0
[  637.506516][    C1]  lock_acquire+0x1f1/0xad0
[  637.506520][    C1]  ? __alloc_fd+0x34/0x600
[  637.506525][    C1]  ? lock_release+0x8e0/0x8e0
[  637.506529][    C1]  ? __virt_addr_valid+0x1fe/0x2b0
[  637.506533][    C1]  ? __phys_addr+0x9a/0x110
[  637.506538][    C1]  ? __phys_addr_symbol+0x2c/0x70
[  637.506542][    C1]  ? __check_object_size+0x171/0x3e4
[  637.506546][    C1]  _raw_spin_lock+0x2a/0x40
[  637.506550][    C1]  ? __alloc_fd+0x34/0x600
[  637.506554][    C1]  __alloc_fd+0x34/0x600
[  637.506559][    C1]  ? getname_flags.part.0+0x1dd/0x4f0
[  637.506563][    C1]  do_sys_openat2+0x134/0x420
[  637.506567][    C1]  ? seccomp_notify_ioctl+0xd90/0xd90
[  637.506572][    C1]  ? strncpy_from_user+0x2bf/0x3e0
[  637.506576][    C1]  ? build_open_flags+0x650/0x650
[  637.506580][    C1]  ? getname_flags.part.0+0x1dd/0x4f0
[  637.506584][    C1]  __x64_sys_open+0x119/0x1c0
[  637.506589][    C1]  ? do_sys_open+0x140/0x140
[  637.506593][    C1]  ? __secure_computing+0x104/0x360
[  637.506597][    C1]  do_syscall_64+0x2d/0x70
[  637.506602][    C1]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  637.506606][    C1] RIP: 0033:0x7ff896130840
[  637.506618][    C1] Code: 73 01 c3 48 8b 0d 68 77 20 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 83 3d 89 bb 20 00 00 75 10 b8 02 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 1e f6 ff ff 48 89 04 24
[  637.506622][    C1] RSP: 002b:00007fffa7dee6b8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[  637.506632][    C1] RAX: ffffffffffffffda RBX: 00007fffa7dee9c0 RCX: 00007ff896130840
[  637.506638][    C1] RDX: 00000000000001a0 RSI: 0000000000080042 RDI: 0000560b7f41acd0
[  637.506644][    C1] RBP: 000000000000000d R08: 000000000000ffc0 R09: 00000000ffffffff
[  637.506650][    C1] R10: 0000000000000069 R11: 0000000000000246 R12: 00000000ffffffff
[  637.506656][    C1] R13: 0000560b7f40f040 R14: 00007fffa7dee980 R15: 0000560b7f41aaf0
[  637.506935][ T1173] Kernel panic - not syncing: hung_task: blocked tasks
[  637.842695][ T1173] CPU: 0 PID: 1173 Comm: khungtaskd Not tainted 5.9.0-rc2-next-20200828-syzkaller #0
[  637.852131][ T1173] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  637.862171][ T1173] Call Trace:
[  637.865451][ T1173]  dump_stack+0x18f/0x20d
[  637.869780][ T1173]  panic+0x2e3/0x75c
[  637.873726][ T1173]  ? __warn_printk+0xf3/0xf3
[  637.878307][ T1173]  ? lapic_can_unplug_cpu.cold+0x38/0x38
[  637.883958][ T1173]  ? preempt_schedule_thunk+0x16/0x18
[  637.889313][ T1173]  ? watchdog.cold+0x22d/0x24b
[  637.894072][ T1173]  ? watchdog+0xc59/0xf30
[  637.898383][ T1173]  watchdog.cold+0x23e/0x24b
[  637.902978][ T1173]  ? trace_sched_process_hang+0x2e0/0x2e0
[  637.908695][ T1173]  kthread+0x3b5/0x4a0
[  637.912756][ T1173]  ? __kthread_bind_mask+0xc0/0xc0
[  637.917855][ T1173]  ? __kthread_bind_mask+0xc0/0xc0
[  637.922973][ T1173]  ret_from_fork+0x1f/0x30
[  637.928618][ T1173] Kernel Offset: disabled
[  637.932960][ T1173] Rebooting in 86400 seconds..