[ 43.928327] audit: type=1800 audit(1565649874.518:30): pid=7620 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2490 res=0 Starting mcstransd: [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 47.934892] kauditd_printk_skb: 4 callbacks suppressed [ 47.934907] audit: type=1400 audit(1565649878.568:35): avc: denied { map } for pid=7795 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 Warning: Permanently added '10.128.0.19' (ECDSA) to the list of known hosts. executing program executing program executing program executing program executing program executing program [ 643.053614] audit: type=1400 audit(1565650473.688:36): avc: denied { map } for pid=7807 comm="syz-executor112" path="/root/syz-executor112477409" dev="sda1" ino=1426 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 [ 643.486049] ISOFS: Unable to identify CD-ROM format. executing program [ 643.597377] print_req_error: I/O error, dev loop3, sector 64 [ 643.604722] isofs_fill_super: bread failed, dev=loop3, iso_blknum=16, block=32 [ 643.614677] print_req_error: I/O error, dev loop3, sector 64 [ 643.620808] isofs_fill_super: bread failed, dev=loop3, iso_blknum=16, block=32 executing program executing program [ 643.677295] print_req_error: I/O error, dev loop3, sector 64 [ 643.685416] isofs_fill_super: bread failed, dev=loop3, iso_blknum=16, block=32 [ 643.700837] print_req_error: I/O error, dev loop3, sector 64 [ 643.708249] isofs_fill_super: bread failed, dev=loop3, iso_blknum=16, block=32 executing program executing program [ 643.735480] print_req_error: I/O error, dev loop3, sector 64 [ 643.741393] isofs_fill_super: bread failed, dev=loop3, iso_blknum=16, block=32 [ 643.755643] print_req_error: I/O error, dev loop3, sector 64 [ 643.761574] isofs_fill_super: bread failed, dev=loop3, iso_blknum=16, block=32 executing program executing program executing program [ 644.214399] ISOFS: Unable to identify CD-ROM format. [ 644.223748] ISOFS: Unable to identify CD-ROM format. [ 644.247604] ISOFS: Unable to identify CD-ROM format. executing program executing program executing program executing program [ 644.293628] ISOFS: Unable to identify CD-ROM format. [ 644.301974] ISOFS: Unable to identify CD-ROM format. [ 644.308420] ISOFS: Unable to identify CD-ROM format. executing program [ 644.345118] print_req_error: I/O error, dev loop3, sector 64 [ 644.351380] isofs_fill_super: bread failed, dev=loop3, iso_blknum=16, block=32 executing program [ 644.740037] ISOFS: Unable to identify CD-ROM format. executing program executing program [ 644.787445] ISOFS: Unable to identify CD-ROM format. [ 644.813465] ISOFS: Unable to identify CD-ROM format. [ 644.819411] ISOFS: Unable to identify CD-ROM format. [ 644.856896] ISOFS: Unable to identify CD-ROM format. executing program [ 644.884585] ISOFS: Unable to identify CD-ROM format. executing program executing program [ 644.916882] ISOFS: Unable to identify CD-ROM format. executing program executing program [ 645.286384] ISOFS: Unable to identify CD-ROM format. executing program [ 645.345677] ISOFS: Unable to identify CD-ROM format. [ 645.399497] ISOFS: Unable to identify CD-ROM format. executing program [ 645.437406] ISOFS: Unable to identify CD-ROM format. executing program [ 645.485524] ISOFS: Unable to identify CD-ROM format. executing program [ 645.518515] ISOFS: Unable to identify CD-ROM format. executing program [ 645.593154] ISOFS: Unable to identify CD-ROM format. executing program executing program [ 645.736568] print_req_error: I/O error, dev loop3, sector 64 [ 645.747317] isofs_fill_super: bread failed, dev=loop3, iso_blknum=16, block=32 executing program [ 645.835368] ISOFS: Unable to identify CD-ROM format. [ 645.893767] ISOFS: Unable to identify CD-ROM format. executing program executing program [ 646.014349] ISOFS: Unable to identify CD-ROM format. [ 646.073651] ISOFS: Unable to identify CD-ROM format. executing program executing program [ 646.122970] ISOFS: Unable to identify CD-ROM format. [ 646.128773] ISOFS: Unable to identify CD-ROM format. executing program executing program [ 646.204277] ISOFS: Unable to identify CD-ROM format. [ 646.236065] ISOFS: Unable to identify CD-ROM format. executing program [ 646.264781] ISOFS: Unable to identify CD-ROM format. [ 646.270596] ISOFS: Unable to identify CD-ROM format. executing program executing program executing program executing program [ 646.555285] print_req_error: I/O error, dev loop3, sector 64 [ 646.561253] isofs_fill_super: bread failed, dev=loop3, iso_blknum=16, block=32 [ 646.576034] print_req_error: I/O error, dev loop3, sector 64 [ 646.582011] isofs_fill_super: bread failed, dev=loop3, iso_blknum=16, block=32 [ 646.591734] isofs_fill_super: bread failed, dev=loop3, iso_blknum=16, block=32 executing program executing program [ 798.112761] INFO: task syz-executor112:8024 blocked for more than 140 seconds. [ 798.120416] Not tainted 4.19.66 #40 [ 798.125238] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 798.133729] syz-executor112 D28216 8024 7812 0x00000004 [ 798.139416] Call Trace: [ 798.142176] __schedule+0x866/0x1dc0 [ 798.151460] ? __mutex_lock+0x721/0x1300 [ 798.156021] ? pci_mmcfg_check_reserved+0x170/0x170 [ 798.161175] ? kasan_check_read+0x11/0x20 [ 798.165850] schedule+0x92/0x1c0 [ 798.169248] schedule_preempt_disabled+0x13/0x20 [ 798.174585] __mutex_lock+0x726/0x1300 [ 798.178576] ? __blkdev_get+0x19b/0x1660 [ 798.183093] ? mutex_trylock+0x1e0/0x1e0 [ 798.187245] ? lock_downgrade+0x810/0x810 [ 798.191466] ? get_gendisk+0x88/0x380 [ 798.195897] mutex_lock_nested+0x16/0x20 [ 798.200075] ? mutex_lock_nested+0x16/0x20 [ 798.204791] __blkdev_get+0x19b/0x1660 [ 798.208711] ? blkdev_get_block+0xc0/0xc0 [ 798.213397] ? kasan_check_read+0x11/0x20 [ 798.217638] ? do_raw_spin_unlock+0x57/0x270 [ 798.222076] blkdev_get+0x484/0x990 [ 798.226256] ? bd_may_claim+0xd0/0xd0 [ 798.230110] ? lookup_bdev.part.0+0x10e/0x1b0 [ 798.235095] ? blkdev_open+0x290/0x290 [ 798.239106] blkdev_get_by_path+0xaf/0x130 [ 798.243972] mount_bdev+0x5d/0x3c0 [ 798.247578] ? isofs_bread+0xe0/0xe0 [ 798.251312] isofs_mount+0x35/0x40 [ 798.255516] mount_fs+0xa8/0x31f [ 798.258986] vfs_kern_mount.part.0+0x6f/0x410 [ 798.263932] do_mount+0x53e/0x2bc0 [ 798.267501] ? copy_mount_string+0x40/0x40 [ 798.271835] ? _copy_from_user+0xdd/0x150 [ 798.276907] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 798.282845] ? copy_mount_options+0x280/0x3a0 [ 798.287370] ksys_mount+0xdb/0x150 [ 798.290928] __x64_sys_mount+0xbe/0x150 [ 798.295507] do_syscall_64+0xfd/0x620 [ 798.299436] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 798.305072] RIP: 0033:0x441a19 [ 798.308304] Code: 73 75 70 70 6f 72 74 65 64 20 69 6e 20 63 6f 6d 70 61 74 69 62 69 6c 69 74 79 20 6d 6f 64 65 73 20 30 20 74 6f 20 32 20 2d 20 <69> 67 6e 6f 72 65 64 0a 00 00 00 00 00 00 00 57 41 52 4e 49 4e 47 [ 798.327836] RSP: 002b:00007ffca4599708 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 798.335957] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441a19 [ 798.343662] RDX: 00000000200000c0 RSI: 0000000020000180 RDI: 0000000020001e00 [ 798.351052] RBP: 000000000009dbed R08: 0000000000000000 R09: 00000000004027c0 [ 798.358942] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000402730 [ 798.366736] R13: 00000000004027c0 R14: 0000000000000000 R15: 0000000000000000 [ 798.374536] INFO: task syz-executor112:8025 blocked for more than 140 seconds. [ 798.381919] Not tainted 4.19.66 #40 [ 798.386529] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 798.395052] syz-executor112 D28152 8025 7811 0x00000004 [ 798.400710] Call Trace: [ 798.403716] __schedule+0x866/0x1dc0 [ 798.407459] ? pci_mmcfg_check_reserved+0x170/0x170 [ 798.412942] ? rwsem_down_read_failed+0x1e3/0x3c0 [ 798.417815] ? _raw_spin_unlock_irq+0x28/0x90 [ 798.422326] ? lockdep_hardirqs_on+0x415/0x5d0 [ 798.427685] schedule+0x92/0x1c0 [ 798.431081] rwsem_down_read_failed+0x21b/0x3c0 [ 798.436299] ? rwsem_down_write_failed_killable+0xe30/0xe30 [ 798.442115] ? __lock_is_held+0xb6/0x140 [ 798.446787] call_rwsem_down_read_failed+0x18/0x30 [ 798.451749] down_read+0x49/0xb0 [ 798.455520] ? __get_super.part.0+0x203/0x2e0 [ 798.460033] __get_super.part.0+0x203/0x2e0 [ 798.464854] get_super+0x2e/0x50 [ 798.468245] fsync_bdev+0x19/0xd0 [ 798.471712] invalidate_partition+0x36/0x60 [ 798.476644] rescan_partitions+0xef/0xa20 [ 798.480822] ? __lock_is_held+0xb6/0x140 [ 798.485370] __blkdev_reread_part+0x1a2/0x230 [ 798.489896] blkdev_reread_part+0x27/0x40 [ 798.494587] loop_reread_partitions+0x1c/0x40 [ 798.499107] loop_set_status+0xe54/0x1370 [ 798.503954] loop_set_status64+0xc2/0x120 [ 798.508476] ? loop_set_status_old+0x330/0x330 [ 798.513856] ? avc_has_extended_perms+0xa78/0x10f0 [ 798.518826] lo_ioctl+0x432/0x20e0 [ 798.522386] ? lo_rw_aio_complete+0x350/0x350 [ 798.527456] blkdev_ioctl+0xc38/0x1ab6 [ 798.531368] ? blkpg_ioctl+0xa90/0xa90 [ 798.535759] ? find_held_lock+0x35/0x130 [ 798.539930] ? debug_check_no_obj_freed+0x200/0x464 [ 798.545505] block_ioctl+0xee/0x130 [ 798.549185] ? blkdev_fallocate+0x410/0x410 [ 798.553966] do_vfs_ioctl+0xd5f/0x1380 [ 798.557956] ? selinux_file_ioctl+0x46f/0x5e0 [ 798.562984] ? selinux_file_ioctl+0x125/0x5e0 [ 798.567509] ? ioctl_preallocate+0x210/0x210 [ 798.571938] ? selinux_file_mprotect+0x620/0x620 [ 798.577296] ? putname+0xef/0x130 [ 798.580783] ? kmem_cache_free+0x222/0x260 [ 798.585546] ? putname+0xf4/0x130 [ 798.589038] ? do_sys_open+0x31d/0x550 [ 798.593401] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 798.598975] ? security_file_ioctl+0x8d/0xc0 [ 798.603895] ksys_ioctl+0xab/0xd0 [ 798.607376] __x64_sys_ioctl+0x73/0xb0 [ 798.611282] do_syscall_64+0xfd/0x620 [ 798.615594] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 798.620802] RIP: 0033:0x441927 [ 798.624388] Code: 65 61 64 6d 69 6e 69 6d 75 6d 6d 65 73 73 61 67 65 73 00 61 63 74 69 6f 6e 65 78 65 63 6f 6e 6c 79 77 68 65 6e 70 72 65 76 69 <6f> 75 73 69 73 73 75 73 70 65 6e 64 65 64 00 00 00 64 65 62 75 67 [ 798.643905] RSP: 002b:00007ffca45994c8 EFLAGS: 00000202 ORIG_RAX: 0000000000000010 [ 798.651765] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441927 [ 798.659568] RDX: 00007ffca4599560 RSI: 0000000000004c04 RDI: 0000000000000004 [ 798.667335] RBP: 0000000000000003 R08: 0000000000000000 R09: 000000000000000a [ 798.675170] R10: 0000000000000075 R11: 0000000000000202 R12: 0000000000402730 [ 798.682911] R13: 0000000000000004 R14: 0000000000000000 R15: 0000000000000000 [ 798.690230] INFO: task syz-executor112:8030 blocked for more than 140 seconds. [ 798.698057] Not tainted 4.19.66 #40 [ 798.702213] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 798.710667] syz-executor112 D28120 8030 7813 0x00000004 [ 798.716689] Call Trace: [ 798.719304] __schedule+0x866/0x1dc0 [ 798.723360] ? pci_mmcfg_check_reserved+0x170/0x170 [ 798.728399] ? lock_downgrade+0x810/0x810 [ 798.732948] schedule+0x92/0x1c0 [ 798.736333] blkdev_get+0x414/0x990 [ 798.739984] ? bd_may_claim+0xd0/0xd0 [ 798.744366] ? finish_wait+0x260/0x260 [ 798.748304] blkdev_get_by_path+0xaf/0x130 [ 798.752986] mount_bdev+0x5d/0x3c0 [ 798.756548] ? isofs_bread+0xe0/0xe0 [ 798.760273] isofs_mount+0x35/0x40 [ 798.764271] mount_fs+0xa8/0x31f [ 798.767671] vfs_kern_mount.part.0+0x6f/0x410 [ 798.772183] do_mount+0x53e/0x2bc0 [ 798.776226] ? copy_mount_string+0x40/0x40 [ 798.780489] ? _copy_from_user+0xdd/0x150 [ 798.785153] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 798.790718] ? copy_mount_options+0x280/0x3a0 [ 798.795709] ksys_mount+0xdb/0x150 [ 798.799279] __x64_sys_mount+0xbe/0x150 [ 798.803708] do_syscall_64+0xfd/0x620 [ 798.807538] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 798.813157] RIP: 0033:0x441a19 [ 798.816396] Code: 73 75 70 70 6f 72 74 65 64 20 69 6e 20 63 6f 6d 70 61 74 69 62 69 6c 69 74 79 20 6d 6f 64 65 73 20 30 20 74 6f 20 32 20 2d 20 <69> 67 6e 6f 72 65 64 0a 00 00 00 00 00 00 00 57 41 52 4e 49 4e 47 [ 798.835936] RSP: 002b:00007ffca4599708 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 798.844140] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441a19 [ 798.851522] RDX: 00000000200000c0 RSI: 0000000020000180 RDI: 0000000020001e00 [ 798.859353] RBP: 000000000009dbef R08: 0000000000000000 R09: 00000000004027c0 [ 798.867170] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000402730 [ 798.874897] R13: 00000000004027c0 R14: 0000000000000000 R15: 0000000000000000 [ 798.882228] INFO: task syz-executor112:8035 blocked for more than 140 seconds. [ 798.890503] Not tainted 4.19.66 #40 [ 798.894999] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 798.903399] syz-executor112 D28216 8035 7810 0x00000004 [ 798.909079] Call Trace: [ 798.911699] __schedule+0x866/0x1dc0 [ 798.915973] ? pci_mmcfg_check_reserved+0x170/0x170 [ 798.921025] ? lock_downgrade+0x810/0x810 [ 798.925632] schedule+0x92/0x1c0 [ 798.929023] blkdev_get+0x414/0x990 [ 798.933227] ? bd_may_claim+0xd0/0xd0 [ 798.937063] ? finish_wait+0x260/0x260 [ 798.940980] blkdev_get_by_path+0xaf/0x130 [ 798.945854] mount_bdev+0x5d/0x3c0 [ 798.949434] ? isofs_bread+0xe0/0xe0 [ 798.953623] isofs_mount+0x35/0x40 [ 798.957201] mount_fs+0xa8/0x31f [ 798.960590] vfs_kern_mount.part.0+0x6f/0x410 [ 798.965730] do_mount+0x53e/0x2bc0 [ 798.969304] ? copy_mount_string+0x40/0x40 [ 798.974039] ? _copy_from_user+0xdd/0x150 [ 798.978254] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 798.984315] ? copy_mount_options+0x280/0x3a0 [ 798.988933] ksys_mount+0xdb/0x150 [ 798.993121] __x64_sys_mount+0xbe/0x150 [ 798.997132] do_syscall_64+0xfd/0x620 [ 799.000952] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 799.006696] RIP: 0033:0x441a19 [ 799.009908] Code: 73 75 70 70 6f 72 74 65 64 20 69 6e 20 63 6f 6d 70 61 74 69 62 69 6c 69 74 79 20 6d 6f 64 65 73 20 30 20 74 6f 20 32 20 2d 20 <69> 67 6e 6f 72 65 64 0a 00 00 00 00 00 00 00 57 41 52 4e 49 4e 47 [ 799.029383] RSP: 002b:00007ffca4599708 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 799.037641] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441a19 [ 799.045500] RDX: 00000000200000c0 RSI: 0000000020000180 RDI: 0000000020001e00 [ 799.053279] RBP: 000000000009dc37 R08: 0000000000000000 R09: 00000000004027c0 [ 799.060753] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000402730 [ 799.068603] R13: 00000000004027c0 R14: 0000000000000000 R15: 0000000000000000 [ 799.076382] INFO: task syz-executor112:8038 blocked for more than 140 seconds. [ 799.084250] Not tainted 4.19.66 #40 [ 799.088433] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 799.096877] syz-executor112 D28216 8038 7808 0x00000004 [ 799.103000] Call Trace: [ 799.105624] __schedule+0x866/0x1dc0 [ 799.109361] ? pci_mmcfg_check_reserved+0x170/0x170 [ 799.114910] ? lock_downgrade+0x810/0x810 [ 799.119213] schedule+0x92/0x1c0 [ 799.123125] blkdev_get+0x414/0x990 [ 799.126786] ? bd_may_claim+0xd0/0xd0 [ 799.130600] ? finish_wait+0x260/0x260 [ 799.135017] blkdev_get_by_path+0xaf/0x130 [ 799.139285] mount_bdev+0x5d/0x3c0 [ 799.143265] ? isofs_bread+0xe0/0xe0 [ 799.147003] isofs_mount+0x35/0x40 [ 799.150658] mount_fs+0xa8/0x31f [ 799.154508] vfs_kern_mount.part.0+0x6f/0x410 [ 799.159032] do_mount+0x53e/0x2bc0 [ 799.163029] ? copy_mount_string+0x40/0x40 [ 799.167310] ? _copy_from_user+0xdd/0x150 [ 799.171490] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 799.177560] ? copy_mount_options+0x280/0x3a0 [ 799.182100] ksys_mount+0xdb/0x150 [ 799.186152] __x64_sys_mount+0xbe/0x150 [ 799.190185] do_syscall_64+0xfd/0x620 [ 799.194541] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 799.199758] RIP: 0033:0x441a19 [ 799.203405] Code: 73 75 70 70 6f 72 74 65 64 20 69 6e 20 63 6f 6d 70 61 74 69 62 69 6c 69 74 79 20 6d 6f 64 65 73 20 30 20 74 6f 20 32 20 2d 20 <69> 67 6e 6f 72 65 64 0a 00 00 00 00 00 00 00 57 41 52 4e 49 4e 47 [ 799.223037] RSP: 002b:00007ffca4599708 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 799.230779] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441a19 [ 799.239172] RDX: 00000000200000c0 RSI: 0000000020000180 RDI: 0000000020001e00 [ 799.248015] RBP: 000000000009dcd0 R08: 0000000000000000 R09: 00000000004027c0 [ 799.255709] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000402730 [ 799.263427] R13: 00000000004027c0 R14: 0000000000000000 R15: 0000000000000000 [ 799.270812] [ 799.270812] Showing all locks held in the system: [ 799.277690] 1 lock held by khungtaskd/1042: [ 799.282026] #0: 0000000001be9a56 (rcu_read_lock){....}, at: debug_show_all_locks+0x5f/0x27e [ 799.291235] 1 lock held by rsyslogd/7658: [ 799.295754] #0: 00000000d342bd00 (&f->f_pos_lock){+.+.}, at: __fdget_pos+0xee/0x110 [ 799.304145] 2 locks held by getty/7780: [ 799.308132] #0: 0000000076ec786f (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 799.316842] #1: 0000000010fd9cce (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b30 [ 799.327285] 2 locks held by getty/7781: [ 799.331270] #0: 00000000358c9821 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 799.340008] #1: 0000000016dd99b7 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b30 [ 799.350111] 2 locks held by getty/7782: [ 799.354426] #0: 000000008452a2bd (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 799.363100] #1: 0000000052ebfbd0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b30 [ 799.372020] 2 locks held by getty/7783: [ 799.376487] #0: 00000000d3361dd8 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 799.385378] #1: 000000000c7295e0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b30 [ 799.394679] 2 locks held by getty/7784: [ 799.398665] #0: 00000000a0e0a95f (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 799.407415] #1: 0000000029e7dc30 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b30 [ 799.416717] 2 locks held by getty/7785: [ 799.420703] #0: 00000000e539d663 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 799.429551] #1: 00000000ade1580e (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b30 [ 799.438854] 2 locks held by getty/7786: [ 799.443235] #0: 000000005052c9b1 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 799.451527] #1: 000000005cff0744 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b30 [ 799.460968] 1 lock held by syz-executor112/8011: [ 799.466120] 1 lock held by syz-executor112/8024: [ 799.470879] #0: 000000005eb98044 (&bdev->bd_mutex){+.+.}, at: __blkdev_get+0x19b/0x1660 [ 799.479600] 2 locks held by syz-executor112/8025: [ 799.484790] #0: 000000005eb98044 (&bdev->bd_mutex){+.+.}, at: blkdev_reread_part+0x1f/0x40 [ 799.493921] #1: 00000000cfd29f02 (&type->s_umount_key#52){++++}, at: __get_super.part.0+0x203/0x2e0 [ 799.503684] [ 799.505330] ============================================= [ 799.505330] [ 799.512348] NMI backtrace for cpu 0 [ 799.516056] CPU: 0 PID: 1042 Comm: khungtaskd Not tainted 4.19.66 #40 [ 799.522660] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 799.532028] Call Trace: [ 799.534720] dump_stack+0x172/0x1f0 [ 799.538387] nmi_cpu_backtrace.cold+0x63/0xa4 [ 799.543045] ? lapic_can_unplug_cpu.cold+0x45/0x45 [ 799.547992] nmi_trigger_cpumask_backtrace+0x1b0/0x1f8 [ 799.553297] arch_trigger_cpumask_backtrace+0x14/0x20 [ 799.558513] watchdog+0x9df/0xee0 [ 799.562076] kthread+0x354/0x420 [ 799.565470] ? reset_hung_task_detector+0x30/0x30 [ 799.570323] ? kthread_cancel_delayed_work_sync+0x20/0x20 [ 799.575879] ret_from_fork+0x24/0x30 [ 799.579728] Sending NMI from CPU 0 to CPUs 1: [ 799.585014] NMI backtrace for cpu 1 [ 799.585022] CPU: 1 PID: 8011 Comm: syz-executor112 Not tainted 4.19.66 #40 [ 799.585029] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 799.585033] RIP: 0010:pagecache_get_page+0x5c0/0xa40 [ 799.585045] Code: f8 48 c1 e8 03 42 80 3c 30 00 0f 85 32 04 00 00 49 8b 44 24 08 31 ff 48 89 c6 48 89 45 b0 83 e6 01 48 89 75 c0 e8 c0 f9 e5 ff <48> 8b 75 c0 4c 89 e0 48 85 f6 0f 85 ef 02 00 00 48 89 45 c0 e8 07 [ 799.585050] RSP: 0018:ffff88809bed7920 EFLAGS: 00000293 [ 799.585059] RAX: 0000000000000000 RBX: 0000000000000007 RCX: ffffffff81856710 [ 799.585065] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000007 [ 799.585071] RBP: ffff88809bed7970 R08: ffff8880982505c0 R09: 0000000000000001 [ 799.585077] R10: ffffed1015d24732 R11: ffff8880ae923993 R12: ffffea00021d0400 [ 799.585082] R13: 0000000000620848 R14: dffffc0000000000 R15: ffffea00021d0408 [ 799.585089] FS: 000000000129a940(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000 [ 799.585094] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 799.585099] CR2: ffffffffff600400 CR3: 000000009f758000 CR4: 00000000001406e0 [ 799.585103] Call Trace: [ 799.585107] __getblk_gfp+0x284/0x970 [ 799.585110] __bread_gfp+0x2f/0x300 [ 799.585114] isofs_fill_super+0xb3b/0x29fc [ 799.585118] ? sget_userns+0x208/0xd30 [ 799.585121] ? isofs_bread+0xe0/0xe0 [ 799.585130] ? pointer+0x970/0x970 [ 799.585133] ? up_write+0x1c/0x150 [ 799.585137] ? snprintf+0xbb/0xf0 [ 799.585141] ? vsprintf+0x40/0x40 [ 799.585145] ? wait_for_completion+0x440/0x440 [ 799.585149] ? ns_test_super+0x50/0x50 [ 799.585154] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 799.585158] ? set_blocksize+0x2bf/0x340 [ 799.585162] mount_bdev+0x304/0x3c0 [ 799.585166] ? isofs_bread+0xe0/0xe0 [ 799.585169] isofs_mount+0x35/0x40 [ 799.585173] mount_fs+0xa8/0x31f [ 799.585177] vfs_kern_mount.part.0+0x6f/0x410 [ 799.585181] do_mount+0x53e/0x2bc0 [ 799.585185] ? copy_mount_string+0x40/0x40 [ 799.585189] ? _copy_from_user+0xdd/0x150 [ 799.585194] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 799.585199] ? copy_mount_options+0x280/0x3a0 [ 799.585202] ksys_mount+0xdb/0x150 [ 799.585206] __x64_sys_mount+0xbe/0x150 [ 799.585210] do_syscall_64+0xfd/0x620 [ 799.585215] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 799.585219] RIP: 0033:0x441a19 [ 799.585230] Code: bd 08 fc ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 8b 08 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 799.585235] RSP: 002b:00007ffca4599708 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 799.585245] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441a19 [ 799.585251] RDX: 00000000200000c0 RSI: 0000000020000180 RDI: 0000000020001e00 [ 799.585256] RBP: 000000000009db46 R08: 0000000000000000 R09: 00000000004027c0 [ 799.585262] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000402730 [ 799.585268] R13: 00000000004027c0 R14: 0000000000000000 R15: 0000000000000000 [ 799.587645] Kernel panic - not syncing: hung_task: blocked tasks [ 799.875984] CPU: 0 PID: 1042 Comm: khungtaskd Not tainted 4.19.66 #40 [ 799.882661] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 799.892028] Call Trace: [ 799.894638] dump_stack+0x172/0x1f0 [ 799.898362] panic+0x263/0x507 [ 799.901569] ? __warn_printk+0xf3/0xf3 [ 799.905470] ? lapic_can_unplug_cpu.cold+0x45/0x45 [ 799.910525] ? ___preempt_schedule+0x16/0x18 [ 799.915039] ? nmi_trigger_cpumask_backtrace+0x165/0x1f8 [ 799.920517] ? nmi_trigger_cpumask_backtrace+0x1c1/0x1f8 [ 799.925996] ? nmi_trigger_cpumask_backtrace+0x1cb/0x1f8 [ 799.931465] ? nmi_trigger_cpumask_backtrace+0x165/0x1f8 [ 799.936945] watchdog+0x9f0/0xee0 [ 799.940868] kthread+0x354/0x420 [ 799.944341] ? reset_hung_task_detector+0x30/0x30 [ 799.949218] ? kthread_cancel_delayed_work_sync+0x20/0x20 [ 799.954780] ret_from_fork+0x24/0x30 [ 799.959981] Kernel Offset: disabled [ 799.977454] Rebooting in 86400 seconds..