Warning: Permanently added '10.128.1.19' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 532.537014] kauditd_printk_skb: 2 callbacks suppressed [ 532.537029] audit: type=1400 audit(1571331055.318:36): avc: denied { map } for pid=7587 comm="syz-executor836" path="/root/syz-executor836664410" dev="sda1" ino=1426 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 [ 689.330841] INFO: task cron:7488 blocked for more than 140 seconds. [ 689.337572] Not tainted 4.19.79 #0 [ 689.341788] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 689.350019] cron D25112 7488 1 0x00000000 [ 689.355823] Call Trace: [ 689.358597] __schedule+0x866/0x1dc0 [ 689.362420] ? __mutex_lock+0x721/0x1300 [ 689.366697] ? pci_mmcfg_check_reserved+0x170/0x170 [ 689.372221] ? kasan_check_read+0x11/0x20 [ 689.376409] schedule+0x92/0x1c0 [ 689.379767] schedule_preempt_disabled+0x13/0x20 [ 689.384625] __mutex_lock+0x726/0x1300 [ 689.388572] ? fuse_lock_inode+0xba/0xf0 [ 689.392812] ? mutex_trylock+0x1e0/0x1e0 [ 689.396979] ? d_alloc_parallel+0x7b0/0x1bb0 [ 689.401574] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 689.407150] ? kasan_check_read+0x11/0x20 [ 689.411389] mutex_lock_nested+0x16/0x20 [ 689.415676] ? mark_held_locks+0x100/0x100 [ 689.419912] ? mutex_lock_nested+0x16/0x20 [ 689.424306] fuse_lock_inode+0xba/0xf0 [ 689.428332] fuse_lookup+0x8e/0x3e0 [ 689.432076] ? fuse_lookup_name+0x670/0x670 [ 689.436436] ? __d_lookup_rcu+0x6b0/0x6b0 [ 689.440999] ? lockref_get_not_dead+0x70/0x90 [ 689.445518] ? __lockdep_init_map+0x10c/0x5b0 [ 689.450193] ? __lockdep_init_map+0x10c/0x5b0 [ 689.454792] __lookup_slow+0x279/0x500 [ 689.458690] ? vfs_unlink+0x500/0x500 [ 689.462595] ? kasan_check_read+0x11/0x20 [ 689.466872] lookup_slow+0x58/0x80 [ 689.470402] walk_component+0x747/0x2000 [ 689.474635] ? selinux_capable+0x40/0x40 [ 689.478710] ? path_init+0x18f0/0x18f0 [ 689.482688] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 689.488279] ? security_inode_permission+0xcb/0x100 [ 689.493377] ? inode_permission+0xb4/0x560 [ 689.497620] link_path_walk.part.0+0x980/0x1330 [ 689.502380] ? walk_component+0x2000/0x2000 [ 689.506720] ? save_stack+0x45/0xd0 [ 689.510560] ? kasan_kmalloc+0xce/0xf0 [ 689.514571] ? kasan_slab_alloc+0xf/0x20 [ 689.519012] ? kmem_cache_alloc+0x12e/0x700 [ 689.523438] ? getname_flags+0xd6/0x5b0 [ 689.527495] ? __do_sys_newstat+0x30/0x130 [ 689.531947] path_lookupat.isra.0+0xe3/0x8d0 [ 689.536384] ? path_parentat.isra.0+0x160/0x160 [ 689.541218] ? cache_grow_end+0xa4/0x190 [ 689.545410] ? find_held_lock+0x35/0x130 [ 689.549577] ? cache_grow_end+0xa4/0x190 [ 689.554162] filename_lookup+0x1b0/0x410 [ 689.558312] ? filename_parentat.isra.0+0x410/0x410 [ 689.563496] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 689.569178] ? __phys_addr_symbol+0x30/0x70 [ 689.573587] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 689.578692] ? __check_object_size+0x3d/0x42a [ 689.583422] ? strncpy_from_user+0x21b/0x2d0 [ 689.587986] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 689.593653] ? getname_flags+0x277/0x5b0 [ 689.597736] ? lock_downgrade+0x880/0x880 [ 689.602268] user_path_at_empty+0x43/0x50 [ 689.606448] vfs_statx+0x129/0x200 [ 689.609991] ? vfs_statx_fd+0xc0/0xc0 [ 689.613899] __do_sys_newstat+0xa4/0x130 [ 689.618130] ? cp_new_stat+0x5f0/0x5f0 [ 689.622161] ? bad_area_nosemaphore+0x34/0x40 [ 689.626706] ? __do_page_fault+0x484/0xe90 [ 689.631081] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 689.636721] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 689.641639] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 689.646488] ? do_syscall_64+0x26/0x620 [ 689.650527] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 689.656236] ? do_syscall_64+0x26/0x620 [ 689.660273] ? lockdep_hardirqs_on+0x415/0x5d0 [ 689.664983] __x64_sys_newstat+0x54/0x80 [ 689.669248] do_syscall_64+0xfd/0x620 [ 689.673181] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 689.678397] RIP: 0033:0x7fb032194c65 [ 689.682269] Code: Bad RIP value. [ 689.685648] RSP: 002b:00007ffc2e6dcbd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000004 [ 689.693502] RAX: ffffffffffffffda RBX: 00007fb032212aa4 RCX: 00007fb032194c65 [ 689.701161] RDX: 00007ffc2e6dcc20 RSI: 00007ffc2e6dcc20 RDI: 00007fb032212aa4 [ 689.708779] RBP: 00007ffc2e6dcd20 R08: 0000000000b70710 R09: 0000000000000000 [ 689.716450] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000 [ 689.723856] R13: 0000000000000001 R14: 000000000000002f R15: 0000000000000000 [ 689.731299] INFO: task syz-executor836:7587 blocked for more than 140 seconds. [ 689.738675] Not tainted 4.19.79 #0 [ 689.742842] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 689.750939] syz-executor836 D27704 7587 7585 0x00000000 [ 689.756745] Call Trace: [ 689.759349] __schedule+0x866/0x1dc0 [ 689.763746] ? __mutex_lock+0x721/0x1300 [ 689.767865] ? pci_mmcfg_check_reserved+0x170/0x170 [ 689.774177] ? kasan_check_read+0x11/0x20 [ 689.778403] schedule+0x92/0x1c0 [ 689.781970] schedule_preempt_disabled+0x13/0x20 [ 689.786861] __mutex_lock+0x726/0x1300 [ 689.790847] ? fuse_lock_inode+0xba/0xf0 [ 689.794930] ? mutex_trylock+0x1e0/0x1e0 [ 689.799032] ? d_alloc_parallel+0x7b0/0x1bb0 [ 689.803614] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 689.809184] ? kasan_check_read+0x11/0x20 [ 689.813585] mutex_lock_nested+0x16/0x20 [ 689.818556] ? mark_held_locks+0x100/0x100 [ 689.822932] ? mutex_lock_nested+0x16/0x20 [ 689.827187] fuse_lock_inode+0xba/0xf0 [ 689.831199] fuse_lookup+0x8e/0x3e0 [ 689.834852] ? fuse_lookup_name+0x670/0x670 [ 689.839297] ? __d_lookup_rcu+0x6b0/0x6b0 [ 689.843540] ? lockref_get_not_dead+0x70/0x90 [ 689.848057] ? __lockdep_init_map+0x10c/0x5b0 [ 689.852646] ? __lockdep_init_map+0x10c/0x5b0 [ 689.857178] __lookup_slow+0x279/0x500 [ 689.861158] ? vfs_unlink+0x500/0x500 [ 689.865314] ? kasan_check_read+0x11/0x20 [ 689.869472] lookup_slow+0x58/0x80 [ 689.873177] walk_component+0x747/0x2000 [ 689.877254] ? selinux_capable+0x40/0x40 [ 689.881499] ? path_init+0x18f0/0x18f0 [ 689.885443] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 689.891052] ? security_inode_permission+0xcb/0x100 [ 689.896168] ? inode_permission+0xb4/0x560 [ 689.900408] link_path_walk.part.0+0x980/0x1330 [ 689.905493] ? walk_component+0x2000/0x2000 [ 689.909867] path_openat+0x1f9/0x45e0 [ 689.914032] ? __lock_acquire+0x6ee/0x49c0 [ 689.918290] ? getname+0x1a/0x20 [ 689.921787] ? do_sys_open+0x2c9/0x550 [ 689.926033] ? path_lookupat.isra.0+0x8d0/0x8d0 [ 689.930806] ? __lock_is_held+0xb6/0x140 [ 689.935287] ? __alloc_fd+0x44d/0x560 [ 689.939139] do_filp_open+0x1a1/0x280 [ 689.943313] ? may_open_dev+0x100/0x100 [ 689.947314] ? kasan_check_read+0x11/0x20 [ 689.951614] ? do_raw_spin_unlock+0x57/0x270 [ 689.956212] ? _raw_spin_unlock+0x2d/0x50 [ 689.960363] ? __alloc_fd+0x44d/0x560 [ 689.964321] do_sys_open+0x3fe/0x550 [ 689.968594] ? filp_open+0x80/0x80 [ 689.972220] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 689.976993] ? do_syscall_64+0x26/0x620 [ 689.981127] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 689.988070] ? do_syscall_64+0x26/0x620 [ 689.992140] __x64_sys_open+0x7e/0xc0 [ 689.996064] do_syscall_64+0xfd/0x620 [ 689.999880] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 690.005183] RIP: 0033:0x444c90 [ 690.008740] Code: 31 c0 e9 45 ff ff ff 0f 1f 00 80 3f 00 0f 84 f7 00 00 00 55 53 b9 02 00 00 00 be 00 08 09 00 89 c8 48 81 ec 98 00 00 00 0f 05 <48> 3d 00 f0 ff ff 48 89 c3 0f 87 e9 00 00 00 85 db 0f 88 2f 01 00 [ 690.027787] RSP: 002b:00007fff109d8780 EFLAGS: 00000202 ORIG_RAX: 0000000000000002 [ 690.035636] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000444c90 [ 690.043013] RDX: 0000000000000000 RSI: 0000000000090800 RDI: 00000000004ae8f6 [ 690.050447] RBP: 0000000000001da8 R08: 0000000000001da3 R09: 0000000001fb1880 [ 690.057782] R10: 0000000000000000 R11: 0000000000000202 R12: 00007fff109d89b0 [ 690.065121] R13: 00000000004075c0 R14: 0000000000000000 R15: 0000000000000000 [ 690.072784] INFO: task syz-executor836:7592 blocked for more than 140 seconds. [ 690.080291] Not tainted 4.19.79 #0 [ 690.084542] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 690.093213] syz-executor836 D27816 7592 7587 0x00000004 [ 690.098996] Call Trace: [ 690.101683] __schedule+0x866/0x1dc0 [ 690.105454] ? __mutex_lock+0x721/0x1300 [ 690.109555] ? pci_mmcfg_check_reserved+0x170/0x170 [ 690.114754] ? kasan_check_read+0x11/0x20 [ 690.118920] schedule+0x92/0x1c0 [ 690.122486] schedule_preempt_disabled+0x13/0x20 [ 690.127257] __mutex_lock+0x726/0x1300 [ 690.131269] ? fuse_lock_inode+0xba/0xf0 [ 690.135390] ? mutex_trylock+0x1e0/0x1e0 [ 690.139781] ? d_alloc_parallel+0x7b0/0x1bb0 [ 690.144378] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 690.150114] ? kasan_check_read+0x11/0x20 [ 690.154550] mutex_lock_nested+0x16/0x20 [ 690.158631] ? mark_held_locks+0x100/0x100 [ 690.163170] ? mutex_lock_nested+0x16/0x20 [ 690.167625] fuse_lock_inode+0xba/0xf0 [ 690.171686] fuse_lookup+0x8e/0x3e0 [ 690.175452] ? fuse_lookup_name+0x670/0x670 [ 690.180022] ? __d_lookup_rcu+0x6b0/0x6b0 [ 690.184343] ? lockref_get_not_dead+0x70/0x90 [ 690.188954] ? __lockdep_init_map+0x10c/0x5b0 [ 690.193618] ? __lockdep_init_map+0x10c/0x5b0 [ 690.198221] __lookup_slow+0x279/0x500 [ 690.202197] ? vfs_unlink+0x500/0x500 [ 690.206127] ? kasan_check_read+0x11/0x20 [ 690.210285] lookup_slow+0x58/0x80 [ 690.214009] walk_component+0x747/0x2000 [ 690.219749] ? selinux_capable+0x40/0x40 [ 690.224214] ? path_init+0x18f0/0x18f0 [ 690.228122] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 690.233863] ? security_inode_permission+0xcb/0x100 [ 690.238934] ? inode_permission+0xb4/0x560 [ 690.243271] link_path_walk.part.0+0x980/0x1330 [ 690.248011] ? walk_component+0x2000/0x2000 [ 690.252547] path_openat+0x1f9/0x45e0 [ 690.256743] ? __lock_acquire+0x6ee/0x49c0 [ 690.261092] ? getname+0x1a/0x20 [ 690.264625] ? do_sys_open+0x2c9/0x550 [ 690.268686] ? path_lookupat.isra.0+0x8d0/0x8d0 [ 690.274546] ? __lock_is_held+0xb6/0x140 [ 690.278745] ? __alloc_fd+0x44d/0x560 [ 690.282787] do_filp_open+0x1a1/0x280 [ 690.286756] ? may_open_dev+0x100/0x100 [ 690.290898] ? kasan_check_read+0x11/0x20 [ 690.295090] ? do_raw_spin_unlock+0x57/0x270 [ 690.299556] ? _raw_spin_unlock+0x2d/0x50 [ 690.303824] ? __alloc_fd+0x44d/0x560 [ 690.308001] do_sys_open+0x3fe/0x550 [ 690.311818] ? filp_open+0x80/0x80 [ 690.315399] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 690.320727] ? do_syscall_64+0x26/0x620 [ 690.324871] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 690.330961] ? do_syscall_64+0x26/0x620 [ 690.334961] __x64_sys_open+0x7e/0xc0 [ 690.339023] do_syscall_64+0xfd/0x620 [ 690.343135] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 690.348458] RIP: 0033:0x405800 [ 690.351718] Code: 01 f0 ff ff 0f 83 d0 18 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 3d 2d c3 2d 00 00 75 14 b8 02 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 a4 18 00 00 c3 48 83 ec 08 e8 0a fc ff ff [ 690.370943] RSP: 002b:00007fff109d8488 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 690.378766] RAX: ffffffffffffffda RBX: 00007fff109d84b4 RCX: 0000000000405800 [ 690.386109] RDX: 00007fff109d84ba RSI: 0000000000080001 RDI: 00000000004ae914 [ 690.393493] RBP: 00007fff109d84b0 R08: 0000000000000000 R09: 0000000000000004 [ 690.401129] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000407530 [ 690.408875] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 690.417134] [ 690.417134] Showing all locks held in the system: [ 690.423539] 2 locks held by init/1: [ 690.427158] #0: 000000000aded856 (&type->i_mutex_dir_key#6){++++}, at: lookup_slow+0x4a/0x80 [ 690.435929] #1: 0000000089b5410d (&fi->mutex){+.+.}, at: fuse_lock_inode+0xba/0xf0 [ 690.444223] 1 lock held by khungtaskd/1037: [ 690.448555] #0: 000000001511d4c4 (rcu_read_lock){....}, at: debug_show_all_locks+0x5f/0x27e [ 690.457709] 1 lock held by rsyslogd/7436: [ 690.461923] #0: 0000000082732f77 (&f->f_pos_lock){+.+.}, at: __fdget_pos+0xee/0x110 [ 690.470082] 2 locks held by cron/7488: [ 690.474305] #0: 000000000aded856 (&type->i_mutex_dir_key#6){++++}, at: lookup_slow+0x4a/0x80 [ 690.483115] #1: 0000000089b5410d (&fi->mutex){+.+.}, at: fuse_lock_inode+0xba/0xf0 [ 690.491036] 2 locks held by getty/7559: [ 690.495144] #0: 00000000a81d4d1b (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 690.504147] #1: 00000000bea97ad6 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b30 [ 690.513500] 2 locks held by getty/7560: [ 690.517563] #0: 00000000cbc19dca (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 690.526573] #1: 000000005f595974 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b30 [ 690.535910] 2 locks held by getty/7561: [ 690.540037] #0: 00000000f29faa95 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 690.548527] #1: 000000008a873cdb (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b30 [ 690.557660] 2 locks held by getty/7562: [ 690.561998] #0: 00000000de76f3b9 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 690.570738] #1: 00000000755b1008 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b30 [ 690.579966] 2 locks held by getty/7563: [ 690.584413] #0: 00000000679a388a (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 690.592844] #1: 0000000058b349ca (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b30 [ 690.602019] 2 locks held by getty/7564: [ 690.606268] #0: 0000000062334e40 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 690.614785] #1: 00000000037e28a2 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b30 [ 690.624746] 2 locks held by getty/7565: [ 690.628898] #0: 0000000008eb0ebd (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 690.637452] #1: 00000000cb6959e7 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b30 [ 690.646763] 2 locks held by syz-executor836/7587: [ 690.652032] #0: 000000000aded856 (&type->i_mutex_dir_key#6){++++}, at: lookup_slow+0x4a/0x80 [ 690.661258] #1: 0000000089b5410d (&fi->mutex){+.+.}, at: fuse_lock_inode+0xba/0xf0 [ 690.669641] 2 locks held by syz-executor836/7592: [ 690.674586] #0: 000000000aded856 (&type->i_mutex_dir_key#6){++++}, at: lookup_slow+0x4a/0x80 [ 690.683856] #1: 0000000089b5410d (&fi->mutex){+.+.}, at: fuse_lock_inode+0xba/0xf0 [ 690.692517] [ 690.694233] ============================================= [ 690.694233] [ 690.701384] NMI backtrace for cpu 1 [ 690.705024] CPU: 1 PID: 1037 Comm: khungtaskd Not tainted 4.19.79 #0 [ 690.711507] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 690.721191] Call Trace: [ 690.724208] dump_stack+0x172/0x1f0 [ 690.728114] nmi_cpu_backtrace.cold+0x63/0xa4 [ 690.733066] ? lapic_can_unplug_cpu.cold+0x47/0x47 [ 690.738130] nmi_trigger_cpumask_backtrace+0x1b0/0x1f8 [ 690.743504] arch_trigger_cpumask_backtrace+0x14/0x20 [ 690.748699] watchdog+0x9df/0xee0 [ 690.752805] kthread+0x354/0x420 [ 690.756352] ? reset_hung_task_detector+0x30/0x30 [ 690.761373] ? kthread_cancel_delayed_work_sync+0x20/0x20 [ 690.767278] ret_from_fork+0x24/0x30 [ 690.771118] Sending NMI from CPU 1 to CPUs 0: [ 690.775798] NMI backtrace for cpu 0 skipped: idling at native_safe_halt+0xe/0x10 [ 690.776634] Kernel panic - not syncing: hung_task: blocked tasks [ 690.789705] CPU: 1 PID: 1037 Comm: khungtaskd Not tainted 4.19.79 #0 [ 690.796186] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 690.805535] Call Trace: [ 690.808846] dump_stack+0x172/0x1f0 [ 690.812585] panic+0x263/0x507 [ 690.816229] ? __warn_printk+0xf3/0xf3 [ 690.820188] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 690.825263] ? printk_safe_flush+0xf2/0x140 [ 690.829582] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 690.835117] ? lapic_can_unplug_cpu.cold+0x47/0x47 [ 690.840174] ? nmi_trigger_cpumask_backtrace+0x16e/0x1f8 [ 690.845625] ? nmi_trigger_cpumask_backtrace+0x165/0x1f8 [ 690.851292] watchdog+0x9f0/0xee0 [ 690.854897] kthread+0x354/0x420 [ 690.858317] ? reset_hung_task_detector+0x30/0x30 [ 690.863243] ? kthread_cancel_delayed_work_sync+0x20/0x20 [ 690.868956] ret_from_fork+0x24/0x30 [ 690.875049] Kernel Offset: disabled [ 690.878751] Rebooting in 86400 seconds..