[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   65.799835][   T26] audit: type=1800 audit(1575341143.823:25): pid=8588 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0
[   65.827128][   T26] audit: type=1800 audit(1575341143.823:26): pid=8588 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0
[   65.873832][   T26] audit: type=1800 audit(1575341143.823:27): pid=8588 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.221' (ECDSA) to the list of known hosts.
executing program
executing program
executing program
executing program
executing program
executing program
syzkaller login: [  532.546884][ T1105] INFO: task syz-executor823:8749 blocked for more than 143 seconds.
[  532.546905][ T1105]       Not tainted 5.4.0-syzkaller #0
[  532.546910][ T1105] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  532.546918][ T1105] syz-executor823 D28160  8749   8748 0x00000004
[  532.546943][ T1105] Call Trace:
[  532.547015][ T1105]  __schedule+0x934/0x1f90
[  532.547036][ T1105]  ? __sched_text_start+0x8/0x8
[  532.547055][ T1105]  ? lock_downgrade+0x920/0x920
[  532.547130][ T1105]  ? rwlock_bug.part.0+0x90/0x90
[  532.547149][ T1105]  schedule+0xdc/0x2b0
[  532.547166][ T1105]  schedule_preempt_disabled+0x13/0x20
[  532.547180][ T1105]  __mutex_lock+0x7ab/0x13c0
[  532.547234][ T1105]  ? fb_open+0xd7/0x450
[  532.547253][ T1105]  ? mutex_trylock+0x2f0/0x2f0
[  532.547270][ T1105]  ? __mutex_unlock_slowpath+0xf0/0x6a0
[  532.547321][ T1105]  ? chrdev_open+0xca/0x6b0
[  532.547351][ T1105]  mutex_lock_nested+0x16/0x20
[  532.547364][ T1105]  ? mutex_lock_nested+0x16/0x20
[  532.547377][ T1105]  fb_open+0xd7/0x450
[  532.547393][ T1105]  ? get_fb_info.part.0+0x80/0x80
[  532.547408][ T1105]  chrdev_open+0x245/0x6b0
[  532.547427][ T1105]  ? cdev_put.part.0+0x50/0x50
[  532.547468][ T1105]  ? security_file_open+0x87/0x300
[  532.547504][ T1105]  do_dentry_open+0x4e6/0x1380
[  532.547534][ T1105]  ? __kasan_check_read+0x11/0x20
[  532.547550][ T1105]  ? cdev_put.part.0+0x50/0x50
[  532.547568][ T1105]  ? chown_common+0x5c0/0x5c0
[  532.547582][ T1105]  ? inode_permission+0xb4/0x520
[  532.547599][ T1105]  vfs_open+0xa0/0xd0
[  532.547615][ T1105]  path_openat+0x10e4/0x4710
[  532.547627][ T1105]  ? save_stack+0x23/0x90
[  532.547639][ T1105]  ? __kasan_kmalloc.constprop.0+0xcf/0xe0
[  532.547652][ T1105]  ? kasan_slab_alloc+0xf/0x20
[  532.547683][ T1105]  ? kmem_cache_alloc+0x121/0x710
[  532.547697][ T1105]  ? getname_flags+0xd6/0x5b0
[  532.547710][ T1105]  ? getname+0x1a/0x20
[  532.547738][ T1105]  ? path_lookupat.isra.0+0x8d0/0x8d0
[  532.547750][ T1105]  ? __lock_acquire+0x16f2/0x4a00
[  532.547803][ T1105]  ? __alloc_fd+0x487/0x620
[  532.547824][ T1105]  do_filp_open+0x1a1/0x280
[  532.547841][ T1105]  ? may_open_dev+0x100/0x100
[  532.547869][ T1105]  ? do_raw_spin_unlock+0x178/0x270
[  532.547902][ T1105]  do_sys_open+0x3fe/0x5d0
[  532.547918][ T1105]  ? filp_open+0x80/0x80
[  532.547954][ T1105]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  532.547969][ T1105]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  532.547984][ T1105]  ? do_syscall_64+0x26/0x790
[  532.547999][ T1105]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  532.548013][ T1105]  ? do_syscall_64+0x26/0x790
[  532.548031][ T1105]  __x64_sys_openat+0x9d/0x100
[  532.548048][ T1105]  do_syscall_64+0xfa/0x790
[  532.548072][ T1105]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  532.548084][ T1105] RIP: 0033:0x441419
[  532.548110][ T1105] Code: Bad RIP value.
[  532.548118][ T1105] RSP: 002b:00007fffaaef6f78 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  532.548132][ T1105] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441419
[  532.548141][ T1105] RDX: 0000000000000000 RSI: 0000000020000840 RDI: ffffffffffffff9c
[  532.548150][ T1105] RBP: 00000000006cb018 R08: 0000000000000004 R09: 00000000004002c8
[  532.548158][ T1105] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000402190
[  532.548167][ T1105] R13: 0000000000402220 R14: 0000000000000000 R15: 0000000000000000
[  532.548193][ T1105] INFO: task syz-executor823:8750 blocked for more than 143 seconds.
[  532.548201][ T1105]       Not tainted 5.4.0-syzkaller #0
[  532.548207][ T1105] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  532.548214][ T1105] syz-executor823 D28160  8750   8747 0x00000004
[  532.548251][ T1105] Call Trace:
[  532.548269][ T1105]  __schedule+0x934/0x1f90
[  532.548289][ T1105]  ? __sched_text_start+0x8/0x8
[  532.548301][ T1105]  ? lock_downgrade+0x920/0x920
[  532.548316][ T1105]  ? rwlock_bug.part.0+0x90/0x90
[  532.548335][ T1105]  schedule+0xdc/0x2b0
[  532.548352][ T1105]  schedule_preempt_disabled+0x13/0x20
[  532.548365][ T1105]  __mutex_lock+0x7ab/0x13c0
[  532.548381][ T1105]  ? fb_open+0xd7/0x450
[  532.548399][ T1105]  ? mutex_trylock+0x2f0/0x2f0
[  532.548415][ T1105]  ? __mutex_unlock_slowpath+0xf0/0x6a0
[  532.548430][ T1105]  ? chrdev_open+0xca/0x6b0
[  532.548463][ T1105]  mutex_lock_nested+0x16/0x20
[  532.548476][ T1105]  ? mutex_lock_nested+0x16/0x20
[  532.548488][ T1105]  fb_open+0xd7/0x450
[  532.548504][ T1105]  ? get_fb_info.part.0+0x80/0x80
[  532.548518][ T1105]  chrdev_open+0x245/0x6b0
[  532.548537][ T1105]  ? cdev_put.part.0+0x50/0x50
[  532.548554][ T1105]  ? security_file_open+0x87/0x300
[  532.548572][ T1105]  do_dentry_open+0x4e6/0x1380
[  532.548584][ T1105]  ? __kasan_check_read+0x11/0x20
[  532.548601][ T1105]  ? cdev_put.part.0+0x50/0x50
[  532.548620][ T1105]  ? chown_common+0x5c0/0x5c0
[  532.548636][ T1105]  ? inode_permission+0xb4/0x520
[  532.548654][ T1105]  vfs_open+0xa0/0xd0
[  532.548670][ T1105]  path_openat+0x10e4/0x4710
[  532.548681][ T1105]  ? save_stack+0x23/0x90
[  532.548694][ T1105]  ? __kasan_kmalloc.constprop.0+0xcf/0xe0
[  532.548706][ T1105]  ? kasan_slab_alloc+0xf/0x20
[  532.548720][ T1105]  ? kmem_cache_alloc+0x121/0x710
[  532.548734][ T1105]  ? getname_flags+0xd6/0x5b0
[  532.548747][ T1105]  ? getname+0x1a/0x20
[  532.548775][ T1105]  ? path_lookupat.isra.0+0x8d0/0x8d0
[  532.548787][ T1105]  ? __lock_acquire+0x16f2/0x4a00
[  532.548807][ T1105]  ? __alloc_fd+0x487/0x620
[  532.548827][ T1105]  do_filp_open+0x1a1/0x280
[  532.548844][ T1105]  ? may_open_dev+0x100/0x100
[  532.548871][ T1105]  ? do_raw_spin_unlock+0x178/0x270
[  532.548902][ T1105]  do_sys_open+0x3fe/0x5d0
[  532.548919][ T1105]  ? filp_open+0x80/0x80
[  532.548936][ T1105]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  532.548951][ T1105]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  532.548965][ T1105]  ? do_syscall_64+0x26/0x790
[  532.548980][ T1105]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  532.548993][ T1105]  ? do_syscall_64+0x26/0x790
[  532.549011][ T1105]  __x64_sys_openat+0x9d/0x100
[  532.549028][ T1105]  do_syscall_64+0xfa/0x790
[  532.549047][ T1105]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  532.549057][ T1105] RIP: 0033:0x441419
[  532.549075][ T1105] Code: Bad RIP value.
[  532.549083][ T1105] RSP: 002b:00007fffaaef6f78 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  532.549096][ T1105] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441419
[  532.549105][ T1105] RDX: 0000000000000000 RSI: 0000000020000840 RDI: ffffffffffffff9c
[  532.549114][ T1105] RBP: 00000000006cb018 R08: 0000000000000004 R09: 00000000004002c8
[  532.549122][ T1105] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000402190
[  532.549131][ T1105] R13: 0000000000402220 R14: 0000000000000000 R15: 0000000000000000
[  532.549157][ T1105] INFO: task syz-executor823:8751 blocked for more than 143 seconds.
[  532.549165][ T1105]       Not tainted 5.4.0-syzkaller #0
[  532.549170][ T1105] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  532.549176][ T1105] syz-executor823 D28160  8751   8745 0x00004004
[  532.549197][ T1105] Call Trace:
[  532.549214][ T1105]  __schedule+0x934/0x1f90
[  532.549234][ T1105]  ? __sched_text_start+0x8/0x8
[  532.549246][ T1105]  ? lock_downgrade+0x920/0x920
[  532.549260][ T1105]  ? rwlock_bug.part.0+0x90/0x90
[  532.549280][ T1105]  schedule+0xdc/0x2b0
[  532.549297][ T1105]  schedule_preempt_disabled+0x13/0x20
[  532.549311][ T1105]  __mutex_lock+0x7ab/0x13c0
[  532.549326][ T1105]  ? fb_open+0xd7/0x450
[  532.549344][ T1105]  ? mutex_trylock+0x2f0/0x2f0
[  532.549361][ T1105]  ? __mutex_unlock_slowpath+0xf0/0x6a0
[  532.549376][ T1105]  ? chrdev_open+0xca/0x6b0
[  532.549406][ T1105]  mutex_lock_nested+0x16/0x20
[  532.549419][ T1105]  ? mutex_lock_nested+0x16/0x20
[  532.549432][ T1105]  fb_open+0xd7/0x450
[  532.549448][ T1105]  ? get_fb_info.part.0+0x80/0x80
[  532.549479][ T1105]  chrdev_open+0x245/0x6b0
[  532.549498][ T1105]  ? cdev_put.part.0+0x50/0x50
[  532.549514][ T1105]  ? security_file_open+0x87/0x300
[  532.549533][ T1105]  do_dentry_open+0x4e6/0x1380
[  532.549545][ T1105]  ? __kasan_check_read+0x11/0x20
[  532.549561][ T1105]  ? cdev_put.part.0+0x50/0x50
[  532.549579][ T1105]  ? chown_common+0x5c0/0x5c0
[  532.549596][ T1105]  ? inode_permission+0xb4/0x520
[  532.549614][ T1105]  vfs_open+0xa0/0xd0
[  532.549629][ T1105]  path_openat+0x10e4/0x4710
[  532.549641][ T1105]  ? save_stack+0x23/0x90
[  532.549654][ T1105]  ? __kasan_kmalloc.constprop.0+0xcf/0xe0
[  532.549666][ T1105]  ? kasan_slab_alloc+0xf/0x20
[  532.549680][ T1105]  ? kmem_cache_alloc+0x121/0x710
[  532.549694][ T1105]  ? getname_flags+0xd6/0x5b0
[  532.549707][ T1105]  ? getname+0x1a/0x20
[  532.549735][ T1105]  ? path_lookupat.isra.0+0x8d0/0x8d0
[  532.549746][ T1105]  ? __lock_acquire+0x16f2/0x4a00
[  532.549767][ T1105]  ? __alloc_fd+0x487/0x620
[  532.549788][ T1105]  do_filp_open+0x1a1/0x280
[  532.549804][ T1105]  ? may_open_dev+0x100/0x100
[  532.549832][ T1105]  ? do_raw_spin_unlock+0x178/0x270
[  532.549863][ T1105]  do_sys_open+0x3fe/0x5d0
[  532.549880][ T1105]  ? filp_open+0x80/0x80
[  532.549897][ T1105]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  532.549912][ T1105]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  532.549926][ T1105]  ? do_syscall_64+0x26/0x790
[  532.549941][ T1105]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  532.549954][ T1105]  ? do_syscall_64+0x26/0x790
[  532.549972][ T1105]  __x64_sys_openat+0x9d/0x100
[  532.549989][ T1105]  do_syscall_64+0xfa/0x790
[  532.550008][ T1105]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  532.550018][ T1105] RIP: 0033:0x441419
[  532.550032][ T1105] Code: Bad RIP value.
[  532.550040][ T1105] RSP: 002b:00007fffaaef6f78 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  532.550053][ T1105] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441419
[  532.550062][ T1105] RDX: 0000000000000000 RSI: 0000000020000840 RDI: ffffffffffffff9c
[  532.550075][ T1105] RBP: 00000000006cb018 R08: 0000000000000004 R09: 00000000004002c8
[  532.550083][ T1105] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000402190
[  532.550092][ T1105] R13: 0000000000402220 R14: 0000000000000000 R15: 0000000000000000
[  532.550118][ T1105] INFO: task syz-executor823:8752 blocked for more than 143 seconds.
[  532.550126][ T1105]       Not tainted 5.4.0-syzkaller #0
[  532.550131][ T1105] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  532.550137][ T1105] syz-executor823 D27992  8752   8743 0x00004004
[  532.550159][ T1105] Call Trace:
[  532.550175][ T1105]  __schedule+0x934/0x1f90
[  532.550195][ T1105]  ? __sched_text_start+0x8/0x8
[  532.550207][ T1105]  ? lock_downgrade+0x920/0x920
[  532.550222][ T1105]  ? rwlock_bug.part.0+0x90/0x90
[  532.550242][ T1105]  schedule+0xdc/0x2b0
[  532.550259][ T1105]  schedule_preempt_disabled+0x13/0x20
[  532.550272][ T1105]  __mutex_lock+0x7ab/0x13c0
[  532.550287][ T1105]  ? fb_open+0xd7/0x450
[  532.550305][ T1105]  ? mutex_trylock+0x2f0/0x2f0
[  532.550322][ T1105]  ? __mutex_unlock_slowpath+0xf0/0x6a0
[  532.550338][ T1105]  ? chrdev_open+0xca/0x6b0
[  532.550367][ T1105]  mutex_lock_nested+0x16/0x20
[  532.550380][ T1105]  ? mutex_lock_nested+0x16/0x20
[  532.550392][ T1105]  fb_open+0xd7/0x450
[  532.550408][ T1105]  ? get_fb_info.part.0+0x80/0x80
[  532.550423][ T1105]  chrdev_open+0x245/0x6b0
[  532.550441][ T1105]  ? cdev_put.part.0+0x50/0x50
[  532.550458][ T1105]  ? security_file_open+0x87/0x300
[  532.550477][ T1105]  do_dentry_open+0x4e6/0x1380
[  532.550489][ T1105]  ? __kasan_check_read+0x11/0x20
[  532.550505][ T1105]  ? cdev_put.part.0+0x50/0x50
[  532.550524][ T1105]  ? chown_common+0x5c0/0x5c0
[  532.550540][ T1105]  ? inode_permission+0xb4/0x520
[  532.550558][ T1105]  vfs_open+0xa0/0xd0
[  532.550574][ T1105]  path_openat+0x10e4/0x4710
[  532.550585][ T1105]  ? save_stack+0x23/0x90
[  532.550598][ T1105]  ? __kasan_kmalloc.constprop.0+0xcf/0xe0
[  532.550610][ T1105]  ? kasan_slab_alloc+0xf/0x20
[  532.550624][ T1105]  ? kmem_cache_alloc+0x121/0x710
[  532.550638][ T1105]  ? getname_flags+0xd6/0x5b0
[  532.550650][ T1105]  ? getname+0x1a/0x20
[  532.550679][ T1105]  ? path_lookupat.isra.0+0x8d0/0x8d0
[  532.550708][ T1105]  ? __lock_acquire+0x16f2/0x4a00
[  532.550729][ T1105]  ? __alloc_fd+0x487/0x620
[  532.550748][ T1105]  do_filp_open+0x1a1/0x280
[  532.550765][ T1105]  ? may_open_dev+0x100/0x100
[  532.550792][ T1105]  ? do_raw_spin_unlock+0x178/0x270
[  532.550823][ T1105]  do_sys_open+0x3fe/0x5d0
[  532.550840][ T1105]  ? filp_open+0x80/0x80
[  532.550857][ T1105]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  532.550871][ T1105]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  532.550886][ T1105]  ? do_syscall_64+0x26/0x790
[  532.550900][ T1105]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  532.550914][ T1105]  ? do_syscall_64+0x26/0x790
[  532.550931][ T1105]  __x64_sys_openat+0x9d/0x100
[  532.550948][ T1105]  do_syscall_64+0xfa/0x790
[  532.550967][ T1105]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  532.550977][ T1105] RIP: 0033:0x441419
[  532.550991][ T1105] Code: Bad RIP value.
[  532.550999][ T1105] RSP: 002b:00007fffaaef6f78 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  532.551012][ T1105] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441419
[  532.551021][ T1105] RDX: 0000000000000000 RSI: 0000000020000840 RDI: ffffffffffffff9c
[  532.551029][ T1105] RBP: 00000000006cb018 R08: 0000000000000004 R09: 00000000004002c8
[  532.551038][ T1105] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000402190
[  532.551046][ T1105] R13: 0000000000402220 R14: 0000000000000000 R15: 0000000000000000
[  532.551076][ T1105] INFO: task syz-executor823:8753 blocked for more than 143 seconds.
[  532.551084][ T1105]       Not tainted 5.4.0-syzkaller #0
[  532.551089][ T1105] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  532.551096][ T1105] syz-executor823 D28160  8753   8746 0x00000004
[  532.551117][ T1105] Call Trace:
[  532.551134][ T1105]  __schedule+0x934/0x1f90
[  532.551154][ T1105]  ? __sched_text_start+0x8/0x8
[  532.551165][ T1105]  ? lock_downgrade+0x920/0x920
[  532.551180][ T1105]  ? rwlock_bug.part.0+0x90/0x90
[  532.551200][ T1105]  schedule+0xdc/0x2b0
[  532.551217][ T1105]  schedule_preempt_disabled+0x13/0x20
[  532.551230][ T1105]  __mutex_lock+0x7ab/0x13c0
[  532.551246][ T1105]  ? fb_open+0xd7/0x450
[  532.551264][ T1105]  ? mutex_trylock+0x2f0/0x2f0
[  532.551281][ T1105]  ? __mutex_unlock_slowpath+0xf0/0x6a0
[  532.551296][ T1105]  ? chrdev_open+0xca/0x6b0
[  532.551326][ T1105]  mutex_lock_nested+0x16/0x20
[  532.551339][ T1105]  ? mutex_lock_nested+0x16/0x20
[  532.551351][ T1105]  fb_open+0xd7/0x450
[  532.551367][ T1105]  ? get_fb_info.part.0+0x80/0x80
[  532.551381][ T1105]  chrdev_open+0x245/0x6b0
[  532.551400][ T1105]  ? cdev_put.part.0+0x50/0x50
[  532.551417][ T1105]  ? security_file_open+0x87/0x300
[  532.551436][ T1105]  do_dentry_open+0x4e6/0x1380
[  532.551448][ T1105]  ? __kasan_check_read+0x11/0x20
[  532.551464][ T1105]  ? cdev_put.part.0+0x50/0x50
[  532.551483][ T1105]  ? chown_common+0x5c0/0x5c0
[  532.551499][ T1105]  ? inode_permission+0xb4/0x520
[  532.551517][ T1105]  vfs_open+0xa0/0xd0
[  532.551533][ T1105]  path_openat+0x10e4/0x4710
[  532.551544][ T1105]  ? save_stack+0x23/0x90
[  532.551557][ T1105]  ? __kasan_kmalloc.constprop.0+0xcf/0xe0
[  532.551568][ T1105]  ? kasan_slab_alloc+0xf/0x20
[  532.551582][ T1105]  ? kmem_cache_alloc+0x121/0x710
[  532.551596][ T1105]  ? getname_flags+0xd6/0x5b0
[  532.551609][ T1105]  ? getname+0x1a/0x20
[  532.551637][ T1105]  ? path_lookupat.isra.0+0x8d0/0x8d0
[  532.551648][ T1105]  ? __lock_acquire+0x16f2/0x4a00
[  532.551669][ T1105]  ? __alloc_fd+0x487/0x620
[  532.551689][ T1105]  do_filp_open+0x1a1/0x280
[  532.551706][ T1105]  ? may_open_dev+0x100/0x100
[  532.551734][ T1105]  ? do_raw_spin_unlock+0x178/0x270
[  532.551766][ T1105]  do_sys_open+0x3fe/0x5d0
[  532.551782][ T1105]  ? filp_open+0x80/0x80
[  532.551799][ T1105]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  532.551814][ T1105]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  532.551828][ T1105]  ? do_syscall_64+0x26/0x790
[  532.551843][ T1105]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  532.551857][ T1105]  ? do_syscall_64+0x26/0x790
[  532.551874][ T1105]  __x64_sys_openat+0x9d/0x100
[  532.551892][ T1105]  do_syscall_64+0xfa/0x790
[  532.551911][ T1105]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  532.551920][ T1105] RIP: 0033:0x441419
[  532.551949][ T1105] Code: Bad RIP value.
[  532.551957][ T1105] RSP: 002b:00007fffaaef6f78 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  532.551969][ T1105] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441419
[  532.551978][ T1105] RDX: 0000000000000000 RSI: 0000000020000840 RDI: ffffffffffffff9c
[  532.551987][ T1105] RBP: 00000000006cb018 R08: 0000000000000004 R09: 00000000004002c8
[  532.551995][ T1105] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000402190
[  532.552004][ T1105] R13: 0000000000402220 R14: 0000000000000000 R15: 0000000000000000
[  532.552026][ T1105] 
[  532.552026][ T1105] Showing all locks held in the system:
[  532.552041][ T1105] 1 lock held by khungtaskd/1105:
[  532.552046][ T1105]  #0: ffffffff897a4240 (rcu_read_lock){....}, at: debug_show_all_locks+0x5f/0x279
[  532.552108][ T1105] 1 lock held by rsyslogd/8626:
[  532.552113][ T1105]  #0: ffff888099d3e860 (&f->f_pos_lock){+.+.}, at: __fdget_pos+0xee/0x110
[  532.552142][ T1105] 2 locks held by getty/8716:
[  532.552147][ T1105]  #0: ffff888090469090 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[  532.552173][ T1105]  #1: ffffc9000178b2e0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1c10
[  532.552225][ T1105] 2 locks held by getty/8717:
[  532.552229][ T1105]  #0: ffff888096224090 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[  532.552255][ T1105]  #1: ffffc900017eb2e0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1c10
[  532.552284][ T1105] 2 locks held by getty/8718:
[  532.552288][ T1105]  #0: ffff888095f16090 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[  532.552313][ T1105]  #1: ffffc9000174b2e0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1c10
[  532.552343][ T1105] 2 locks held by getty/8719:
[  532.552348][ T1105]  #0: ffff8880a7b99090 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[  532.552373][ T1105]  #1: ffffc900017bb2e0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1c10
[  532.552402][ T1105] 2 locks held by getty/8720:
[  532.552407][ T1105]  #0: ffff8880a8021090 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[  532.552432][ T1105]  #1: ffffc9000177b2e0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1c10
[  532.552461][ T1105] 2 locks held by getty/8721:
[  532.552466][ T1105]  #0: ffff8880a8ac3090 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[  532.552491][ T1105]  #1: ffffc900017db2e0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1c10
[  532.552521][ T1105] 2 locks held by getty/8722:
[  532.552526][ T1105]  #0: ffff8880a7a59090 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[  532.552551][ T1105]  #1: ffffc9000172b2e0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1c10
[  532.552581][ T1105] 2 locks held by syz-executor823/8744:
[  532.552591][ T1105] 1 lock held by syz-executor823/8749:
[  532.552595][ T1105]  #0: ffff8880a3d59070 (&fb_info->lock){+.+.}, at: fb_open+0xd7/0x450
[  532.552624][ T1105] 1 lock held by syz-executor823/8750:
[  532.552628][ T1105]  #0: ffff8880a3d59070 (&fb_info->lock){+.+.}, at: fb_open+0xd7/0x450
[  532.552656][ T1105] 1 lock held by syz-executor823/8751:
[  532.552661][ T1105]  #0: ffff8880a3d59070 (&fb_info->lock){+.+.}, at: fb_open+0xd7/0x450
[  532.552689][ T1105] 1 lock held by syz-executor823/8752:
[  532.552694][ T1105]  #0: ffff8880a3d59070 (&fb_info->lock){+.+.}, at: fb_open+0xd7/0x450
[  532.552722][ T1105] 1 lock held by syz-executor823/8753:
[  532.552726][ T1105]  #0: ffff8880a3d59070 (&fb_info->lock){+.+.}, at: fb_open+0xd7/0x450
[  532.552750][ T1105] 
[  532.552755][ T1105] =============================================
[  532.552755][ T1105] 
[  532.552762][ T1105] NMI backtrace for cpu 1
[  532.552776][ T1105] CPU: 1 PID: 1105 Comm: khungtaskd Not tainted 5.4.0-syzkaller #0
[  532.552784][ T1105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  532.552788][ T1105] Call Trace:
[  532.552840][ T1105]  dump_stack+0x197/0x210
[  532.552859][ T1105]  nmi_cpu_backtrace.cold+0x70/0xb2
[  532.552892][ T1105]  ? vprintk_func+0x86/0x189
[  532.552930][ T1105]  ? lapic_can_unplug_cpu.cold+0x3a/0x3a
[  532.552944][ T1105]  nmi_trigger_cpumask_backtrace+0x23b/0x28b
[  532.552978][ T1105]  arch_trigger_cpumask_backtrace+0x14/0x20
[  532.553010][ T1105]  watchdog+0xb11/0x10c0
[  532.553059][ T1105]  kthread+0x361/0x430
[  532.553077][ T1105]  ? reset_hung_task_detector+0x30/0x30
[  532.553089][ T1105]  ? kthread_mod_delayed_work+0x1f0/0x1f0
[  532.553106][ T1105]  ret_from_fork+0x24/0x30
[  532.553130][ T1105] Sending NMI from CPU 1 to CPUs 0:
[  532.553839][    C0] NMI backtrace for cpu 0
[  532.553845][    C0] CPU: 0 PID: 8744 Comm: syz-executor823 Not tainted 5.4.0-syzkaller #0
[  532.553850][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  532.553854][    C0] RIP: 0010:__sanitizer_cov_trace_pc+0x20/0x50
[  532.553863][    C0] Code: ff cc cc cc cc cc cc cc cc cc 55 48 89 e5 65 48 8b 04 25 c0 1e 02 00 65 8b 15 f4 23 8d 7e 81 e2 00 01 1f 00 48 8b 75 08 75 2b <8b> 90 80 13 00 00 83 fa 02 75 20 48 8b 88 88 13 00 00 8b 80 84 13
[  532.553867][    C0] RSP: 0018:ffffc90001e072c8 EFLAGS: 00000246
[  532.553874][    C0] RAX: ffff8880a5382000 RBX: 0000000000000000 RCX: ffffffff83b3479d
[  532.553878][    C0] RDX: 0000000000000000 RSI: ffffffff83b34766 RDI: 0000000000000005
[  532.553883][    C0] RBP: ffffc90001e072c8 R08: ffff8880a5382000 R09: 0000000000000040
[  532.553887][    C0] R10: ffffed10147a952b R11: ffff8880a3d4a95f R12: 0000000000000050
[  532.553892][    C0] R13: 0000000000000048 R14: ffff8880000a0000 R15: ffff8880000a0040
[  532.553897][    C0] FS:  0000000000cbb880(0000) GS:ffff8880ae800000(0000) knlGS:0000000000000000
[  532.553901][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  532.553905][    C0] CR2: ffffffffff600400 CR3: 0000000098fe3000 CR4: 00000000001406f0
[  532.553910][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  532.553914][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  532.553917][    C0] Call Trace:
[  532.553920][    C0]  bitfill_aligned+0x106/0x210
[  532.553923][    C0]  cfb_fillrect+0x423/0x7c0
[  532.553926][    C0]  ? cfb_fillrect+0x7c0/0x7c0
[  532.553929][    C0]  vga16fb_fillrect+0x6ce/0x19b0
[  532.553932][    C0]  bit_clear_margins+0x30b/0x530
[  532.553935][    C0]  ? bit_bmove+0x270/0x270
[  532.553939][    C0]  ? efifb_probe.cold+0x181f/0x181f
[  532.553942][    C0]  fbcon_clear_margins+0x1e9/0x250
[  532.553945][    C0]  fbcon_switch+0xd7f/0x17f0
[  532.553948][    C0]  ? fbcon_set_def_font+0x360/0x360
[  532.553951][    C0]  ? fbcon_cursor+0x48c/0x660
[  532.553955][    C0]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  532.553958][    C0]  ? fbcon_set_origin+0x2b/0x50
[  532.553962][    C0]  ? fbcon_scrolldelta+0x1220/0x1220
[  532.553966][    C0]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  532.553969][    C0]  redraw_screen+0x2b6/0x7d0
[  532.553972][    C0]  ? efifb_probe.cold+0x181f/0x181f
[  532.553975][    C0]  ? respond_string+0x2c0/0x2c0
[  532.553978][    C0]  ? fbcon_set_palette+0x3c4/0x4a0
[  532.553981][    C0]  fbcon_modechanged+0x5c3/0x790
[  532.553984][    C0]  fbcon_update_vcs+0x42/0x50
[  532.553987][    C0]  fb_set_var+0xb32/0xdd0
[  532.553990][    C0]  ? fb_blank+0x1a0/0x1a0
[  532.553994][    C0]  ? lock_acquire+0x190/0x410
[  532.553997][    C0]  ? __mutex_lock+0x458/0x13c0
[  532.553999][    C0]  ? down+0x50/0x90
[  532.554003][    C0]  ? do_fb_ioctl+0x335/0x7d0
[  532.554005][    C0]  do_fb_ioctl+0x390/0x7d0
[  532.554008][    C0]  ? fb_mmap+0x520/0x520
[  532.554012][    C0]  ? tomoyo_path_number_perm+0x214/0x520
[  532.554015][    C0]  ? find_held_lock+0x35/0x130
[  532.554018][    C0]  ? tomoyo_path_number_perm+0x214/0x520
[  532.554022][    C0]  ? lock_downgrade+0x920/0x920
[  532.554025][    C0]  ? lockdep_hardirqs_on+0x421/0x5e0
[  532.554028][    C0]  ? tomoyo_path_number_perm+0x454/0x520
[  532.554032][    C0]  ? __do_page_fault+0x56a/0xd80
[  532.554034][    C0]  fb_ioctl+0xe6/0x130
[  532.554037][    C0]  ? do_fb_ioctl+0x7d0/0x7d0
[  532.554040][    C0]  do_vfs_ioctl+0xdb6/0x13e0
[  532.554044][    C0]  ? compat_ioctl_preallocate+0x210/0x210
[  532.554047][    C0]  ? __kasan_check_write+0x14/0x20
[  532.554050][    C0]  ? up_read+0x1cd/0x810
[  532.554053][    C0]  ? tomoyo_file_ioctl+0x23/0x30
[  532.554057][    C0]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  532.554079][    C0]  ? security_file_ioctl+0x8d/0xc0
[  532.554082][    C0]  ksys_ioctl+0xab/0xd0
[  532.554085][    C0]  __x64_sys_ioctl+0x73/0xb0
[  532.554088][    C0]  do_syscall_64+0xfa/0x790
[  532.554091][    C0]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  532.554094][    C0] RIP: 0033:0x441419
[  532.554103][    C0] Code: e8 ac e8 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb 08 fc ff c3 66 2e 0f 1f 84 00 00 00 00
[  532.554107][    C0] RSP: 002b:00007fffaaef6f78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  532.554115][    C0] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441419
[  532.554119][    C0] RDX: 0000000020000180 RSI: 0000000000004601 RDI: 0000000000000003
[  532.554124][    C0] RBP: 00000000006cb018 R08: 00000000004002c8 R09: 00000000004002c8
[  532.554128][    C0] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000402190
[  532.554133][    C0] R13: 0000000000402220 R14: 0000000000000000 R15: 0000000000000000
[  532.554148][ T1105] Kernel panic - not syncing: hung_task: blocked tasks
[  532.554159][ T1105] CPU: 1 PID: 1105 Comm: khungtaskd Not tainted 5.4.0-syzkaller #0
[  532.554165][ T1105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  532.554169][ T1105] Call Trace:
[  532.554181][ T1105]  dump_stack+0x197/0x210
[  532.554214][ T1105]  panic+0x2e3/0x75c
[  532.554231][ T1105]  ? add_taint.cold+0x16/0x16
[  532.554247][ T1105]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[  532.554262][ T1105]  ? printk_safe_flush+0xf2/0x140
[  532.554277][ T1105]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  532.554293][ T1105]  ? nmi_trigger_cpumask_backtrace+0x224/0x28b
[  532.554307][ T1105]  ? nmi_trigger_cpumask_backtrace+0x21b/0x28b
[  532.554323][ T1105]  watchdog+0xb22/0x10c0
[  532.554345][ T1105]  kthread+0x361/0x430
[  532.554359][ T1105]  ? reset_hung_task_detector+0x30/0x30
[  532.554373][ T1105]  ? kthread_mod_delayed_work+0x1f0/0x1f0
[  532.554388][ T1105]  ret_from_fork+0x24/0x30
[  532.556084][ T1105] Kernel Offset: disabled
[  535.065825][ T1105] Rebooting in 86400 seconds..