[ 37.294084][ T26] audit: type=1800 audit(1549724029.441:26): pid=7619 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0 [ 37.327999][ T26] audit: type=1800 audit(1549724029.441:27): pid=7619 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [ 37.360427][ T26] audit: type=1800 audit(1549724029.441:28): pid=7619 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="ssh" dev="sda1" ino=2417 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. [ 37.906614][ T26] audit: type=1800 audit(1549724030.081:29): pid=7619 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0 Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.221' (ECDSA) to the list of known hosts. syzkaller login: [ 229.100123][ T7772] IPVS: ftp: loaded support on port[0] = 21 [ 229.156285][ T7772] chnl_net:caif_netlink_parms(): no params data found [ 229.189402][ T7772] bridge0: port 1(bridge_slave_0) entered blocking state [ 229.196871][ T7772] bridge0: port 1(bridge_slave_0) entered disabled state [ 229.204592][ T7772] device bridge_slave_0 entered promiscuous mode [ 229.212570][ T7772] bridge0: port 2(bridge_slave_1) entered blocking state [ 229.219621][ T7772] bridge0: port 2(bridge_slave_1) entered disabled state [ 229.227478][ T7772] device bridge_slave_1 entered promiscuous mode [ 229.244406][ T7772] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 229.254095][ T7772] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 229.272217][ T7772] team0: Port device team_slave_0 added [ 229.278948][ T7772] team0: Port device team_slave_1 added [ 229.352887][ T7772] device hsr_slave_0 entered promiscuous mode [ 229.420550][ T7772] device hsr_slave_1 entered promiscuous mode [ 229.497871][ T7772] bridge0: port 2(bridge_slave_1) entered blocking state [ 229.505068][ T7772] bridge0: port 2(bridge_slave_1) entered forwarding state [ 229.512684][ T7772] bridge0: port 1(bridge_slave_0) entered blocking state [ 229.519729][ T7772] bridge0: port 1(bridge_slave_0) entered forwarding state [ 229.548961][ T7772] 8021q: adding VLAN 0 to HW filter on device bond0 [ 229.564326][ T2985] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 229.574310][ T2985] bridge0: port 1(bridge_slave_0) entered disabled state [ 229.582524][ T2985] bridge0: port 2(bridge_slave_1) entered disabled state [ 229.590391][ T2985] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 229.601172][ T7772] 8021q: adding VLAN 0 to HW filter on device team0 [ 229.612355][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 229.620993][ T17] bridge0: port 1(bridge_slave_0) entered blocking state [ 229.628042][ T17] bridge0: port 1(bridge_slave_0) entered forwarding state [ 229.636009][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 229.644424][ T17] bridge0: port 2(bridge_slave_1) entered blocking state [ 229.651505][ T17] bridge0: port 2(bridge_slave_1) entered forwarding state [ 229.672229][ T2985] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 229.680864][ T2985] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 229.689274][ T2985] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready executing program [ 229.697560][ T2985] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 229.707196][ T7772] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 229.716077][ T2985] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 229.734534][ T7772] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 229.820478][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 229.826278][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 229.940414][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 229.946165][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 230.060453][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 230.066238][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 230.181361][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 230.187144][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 232.260527][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 232.266404][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 236.420523][ C0] net_ratelimit: 2 callbacks suppressed [ 236.420532][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 236.431902][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 238.500498][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 238.506279][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 240.580724][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 240.586563][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 242.660507][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 242.666338][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 244.740550][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 244.746408][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 246.820506][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 246.826306][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 248.900526][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 248.906408][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 250.980522][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 250.986379][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 253.060511][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 253.066378][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 255.140489][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 255.146270][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 257.220825][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 257.226658][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 259.300441][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 259.306233][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 261.380514][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 261.386351][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 263.460482][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 263.466259][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 265.540492][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 265.546360][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 267.620488][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 267.626271][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 269.700515][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 269.706365][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 271.780490][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 271.786280][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 273.860486][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 273.866332][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 275.940493][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 275.946272][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 278.020455][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 278.026248][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 280.100517][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 280.106400][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 282.180529][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 282.186354][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 284.260490][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 284.266323][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 286.340550][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 286.346473][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 288.420532][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 288.426425][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 290.500783][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 290.506590][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 292.580473][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 292.586257][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 294.660508][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 294.666343][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 296.740535][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 296.746363][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 298.820628][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 298.826409][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 300.900502][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 300.906351][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 302.980478][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 302.986282][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 305.060484][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 305.066259][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 307.140491][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 307.146305][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 309.220515][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 309.226343][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 311.300447][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 311.306229][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 313.380498][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 313.386344][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 315.460461][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 315.466243][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 317.540534][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 317.546373][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 319.620491][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 319.626314][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 321.700520][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 321.706371][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 323.780470][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 323.786263][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 325.860478][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 325.866278][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 327.940505][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 327.946353][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 330.020470][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 330.026308][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 332.100543][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 332.106403][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 334.180497][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 334.186281][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 336.260545][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 336.266400][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 338.340481][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 338.346259][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 340.420456][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 340.426273][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 342.500500][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 342.506342][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 344.580459][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 344.586235][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 346.660439][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 346.666249][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 348.740424][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 348.746218][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 350.820499][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 350.826399][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 352.900480][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 352.906299][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 354.980517][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 354.986339][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 357.060465][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 357.066250][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 359.140515][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 359.146367][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 361.220494][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 361.226317][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 363.300488][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 363.306269][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 365.380469][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 365.386288][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 367.460521][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 367.466377][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 369.540468][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 369.546246][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 371.620497][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 371.626358][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 373.700476][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 373.706258][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 375.780451][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 375.786275][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 377.860531][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 377.866380][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 379.940455][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 379.946266][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 382.020432][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 382.020533][ T1040] INFO: task syz-executor064:7772 blocked for more than 140 seconds. [ 382.026260][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 382.036540][ T1040] Not tainted 5.0.0-rc5-next-20190208 #31 [ 382.046670][ T1040] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 382.056573][ T1040] syz-executor064 D24000 7772 7771 0x80000002 [ 382.068294][ T1040] Call Trace: [ 382.072829][ T1040] __schedule+0x817/0x1cc0 [ 382.077252][ T1040] ? __mutex_lock+0x721/0x1310 [ 382.082323][ T1040] ? __sched_text_start+0x8/0x8 [ 382.087187][ T1040] schedule+0x92/0x180 [ 382.092548][ T1040] schedule_preempt_disabled+0x13/0x20 [ 382.098012][ T1040] __mutex_lock+0x726/0x1310 [ 382.102901][ T1040] ? vhost_net_stop_vq+0x2d/0x120 [ 382.107945][ T1040] ? mutex_trylock+0x1e0/0x1e0 [ 382.114081][ T1040] ? trace_hardirqs_on+0x67/0x230 [ 382.119112][ T1040] ? kasan_check_read+0x11/0x20 [ 382.124265][ T1040] ? kasan_check_write+0x14/0x20 [ 382.129213][ T1040] ? __mutex_unlock_slowpath+0xf8/0x6b0 [ 382.136007][ T1040] ? wait_for_completion+0x440/0x440 [ 382.141597][ T1040] mutex_lock_nested+0x16/0x20 [ 382.146369][ T1040] ? mutex_lock_nested+0x16/0x20 [ 382.152560][ T1040] vhost_net_stop_vq+0x2d/0x120 [ 382.157418][ T1040] ? handle_rx_kick+0x50/0x50 [ 382.162418][ T1040] vhost_net_release+0x5d/0x260 [ 382.167288][ T1040] __fput+0x2df/0x8d0 [ 382.172616][ T1040] ____fput+0x16/0x20 [ 382.176608][ T1040] task_work_run+0x14a/0x1c0 [ 382.181508][ T1040] do_exit+0x90a/0x2fa0 [ 382.185934][ T1040] ? find_held_lock+0x35/0x130 [ 382.191997][ T1040] ? do_group_exit+0x2e9/0x370 [ 382.196770][ T1040] ? mm_update_next_owner+0x660/0x660 [ 382.202478][ T1040] ? _raw_spin_unlock_irq+0x28/0x90 [ 382.207683][ T1040] ? do_group_exit+0x2e9/0x370 [ 382.213690][ T1040] ? _raw_spin_unlock_irq+0x28/0x90 [ 382.218899][ T1040] ? lockdep_hardirqs_on+0x418/0x5d0 [ 382.224853][ T1040] ? trace_hardirqs_on+0x67/0x230 [ 382.229885][ T1040] ? kasan_check_read+0x11/0x20 [ 382.236177][ T1040] do_group_exit+0x135/0x370 [ 382.241084][ T1040] __x64_sys_exit_group+0x44/0x50 [ 382.246123][ T1040] do_syscall_64+0x103/0x610 [ 382.252024][ T1040] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 382.257924][ T1040] RIP: 0033:0x445b08 [ 382.262119][ T1040] Code: 74 6f 20 73 65 74 20 75 6e 73 75 70 70 6f 72 74 65 64 20 70 72 6f 74 6f 63 6f 6c 20 76 65 72 73 69 6f 6e 20 25 64 20 2d 20 63 <68> 61 6e 67 65 64 20 74 6f 20 30 2e 0a 00 00 00 6e 6f 20 6c 6f 6e [ 382.282969][ T1040] RSP: 002b:00007fffde3d5708 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 382.291673][ T1040] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 0000000000445b08 [ 382.299652][ T1040] RDX: 0000000000000001 RSI: 000000000000003c RDI: 0000000000000001 [ 382.308864][ T1040] RBP: 00000000004cddf0 R08: 00000000000000e7 R09: ffffffffffffffd0 [ 382.317123][ T1040] R10: 00007fffde3d5760 R11: 0000000000000246 R12: 0000000000000001 [ 382.326313][ T1040] R13: 00000000006e1780 R14: 0000000000000000 R15: 000000000000002d [ 382.334592][ T1040] [ 382.334592][ T1040] Showing all locks held in the system: [ 382.343556][ T1040] 1 lock held by khungtaskd/1040: [ 382.348578][ T1040] #0: 0000000087f0a950 (rcu_read_lock){....}, at: debug_show_all_locks+0x5f/0x27e [ 382.358219][ T1040] 1 lock held by rsyslogd/7657: [ 382.364294][ T1040] #0: 000000007ae755ba (&f->f_pos_lock){+.+.}, at: __fdget_pos+0xee/0x110 [ 382.373282][ T1040] 2 locks held by getty/7747: [ 382.377953][ T1040] #0: 000000004d811253 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 382.388228][ T1040] #1: 000000009a61c84d (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b70 [ 382.398279][ T1040] 2 locks held by getty/7748: [ 382.404185][ T1040] #0: 000000003c33e71a (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 382.413402][ T1040] #1: 00000000862e9a3f (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b70 [ 382.424270][ T1040] 2 locks held by getty/7749: [ 382.428945][ T1040] #0: 00000000bc0388dc (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 382.438182][ T1040] #1: 00000000e0c5ab51 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b70 [ 382.448999][ T1040] 2 locks held by getty/7750: [ 382.453941][ T1040] #0: 000000007f1ca3d1 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 382.464122][ T1040] #1: 00000000de2dcc38 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b70 [ 382.473954][ T1040] 2 locks held by getty/7751: [ 382.478630][ T1040] #0: 0000000012a9bf7b (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 382.488840][ T1040] #1: 0000000052377aab (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b70 [ 382.498683][ T1040] 2 locks held by getty/7752: [ 382.504628][ T1040] #0: 000000006e2a8fac (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 382.513952][ T1040] #1: 00000000d1f05f1e (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b70 [ 382.524860][ T1040] 2 locks held by getty/7753: [ 382.529556][ T1040] #0: 0000000084e04e31 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 382.538860][ T1040] #1: 00000000d7ea60d4 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b70 [ 382.549663][ T1040] 1 lock held by syz-executor064/7772: [ 382.555431][ T1040] #0: 00000000b2affcc5 (&vq->mutex){+.+.}, at: vhost_net_stop_vq+0x2d/0x120 [ 382.565447][ T1040] 1 lock held by vhost-7777/7778: [ 382.570747][ T1040] [ 382.573082][ T1040] ============================================= [ 382.573082][ T1040] [ 382.582821][ T1040] NMI backtrace for cpu 1 [ 382.587159][ T1040] CPU: 1 PID: 1040 Comm: khungtaskd Not tainted 5.0.0-rc5-next-20190208 #31 [ 382.596166][ T1040] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 382.606210][ T1040] Call Trace: [ 382.609501][ T1040] dump_stack+0x172/0x1f0 [ 382.613850][ T1040] nmi_cpu_backtrace.cold+0x63/0xa4 [ 382.619051][ T1040] ? lapic_can_unplug_cpu.cold+0x38/0x38 [ 382.624680][ T1040] nmi_trigger_cpumask_backtrace+0x1be/0x236 [ 382.630662][ T1040] arch_trigger_cpumask_backtrace+0x14/0x20 [ 382.636552][ T1040] watchdog+0x9df/0xee0 [ 382.640717][ T1040] kthread+0x357/0x430 [ 382.644811][ T1040] ? reset_hung_task_detector+0x30/0x30 [ 382.650380][ T1040] ? kthread_cancel_delayed_work_sync+0x20/0x20 [ 382.656621][ T1040] ret_from_fork+0x3a/0x50 [ 382.661125][ T1040] Sending NMI from CPU 1 to CPUs 0: [ 382.666911][ C0] NMI backtrace for cpu 0 [ 382.666918][ C0] CPU: 0 PID: 7778 Comm: vhost-7777 Not tainted 5.0.0-rc5-next-20190208 #31 [ 382.666924][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 382.666929][ C0] RIP: 0010:__sanitizer_cov_trace_cmp8+0x1/0x20 [ 382.666955][ C0] Code: ff 5d c3 66 0f 1f 44 00 00 55 89 f2 89 fe bf 04 00 00 00 48 89 e5 48 8b 4d 08 e8 3a ff ff ff 5d c3 0f 1f 84 00 00 00 00 00 55 <48> 89 f2 48 89 fe bf 06 00 00 00 48 89 e5 48 8b 4d 08 e8 18 ff ff [ 382.666959][ C0] RSP: 0018:ffff888015837a98 EFLAGS: 00000246 [ 382.666967][ C0] RAX: 1ffff1100e76ae17 RBX: ffff888073b57080 RCX: ffffffff853f6095 [ 382.666972][ C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 382.666998][ C0] RBP: ffff888015837b30 R08: ffff88802173a0c0 R09: ffffed100aabc087 [ 382.667003][ C0] R10: ffff888015837b68 R11: ffff8880555e0437 R12: 0000000000000000 [ 382.667008][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: dffffc0000000000 [ 382.667029][ C0] FS: 0000000000000000(0000) GS:ffff8880ae800000(0000) knlGS:0000000000000000 [ 382.667034][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 382.667039][ C0] CR2: ffffffffff600400 CR3: 000000004e130000 CR4: 00000000001406f0 [ 382.667045][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 382.667065][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 382.667069][ C0] Call Trace: [ 382.667073][ C0] ? iotlb_access_ok+0x3fc/0x540 [ 382.667077][ C0] vq_iotlb_prefetch+0x114/0x230 [ 382.667080][ C0] handle_rx+0x149/0x1900 [ 382.667084][ C0] ? finish_task_switch+0x146/0x790 [ 382.667088][ C0] ? find_held_lock+0x35/0x130 [ 382.667092][ C0] ? finish_task_switch+0x146/0x790 [ 382.667096][ C0] ? _raw_spin_unlock_irq+0x28/0x90 [ 382.667101][ C0] ? finish_task_switch+0x146/0x790 [ 382.667105][ C0] ? _raw_spin_unlock_irq+0x28/0x90 [ 382.667109][ C0] ? lockdep_hardirqs_on+0x418/0x5d0 [ 382.667113][ C0] ? vhost_net_open+0x8e0/0x8e0 [ 382.667117][ C0] ? trace_hardirqs_on+0x67/0x230 [ 382.667121][ C0] ? cache_grow_begin.cold+0x2d/0x31 [ 382.667125][ C0] ? _raw_spin_unlock_irq+0x5e/0x90 [ 382.667130][ C0] ? smpboot_register_percpu_thread+0x370/0x390 [ 382.667134][ C0] ? __switch_to_asm+0x34/0x70 [ 382.667138][ C0] ? __switch_to_asm+0x40/0x70 [ 382.667141][ C0] ? __schedule+0x81f/0x1cc0 [ 382.667146][ C0] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 382.667150][ C0] handle_rx_net+0x19/0x20 [ 382.667153][ C0] vhost_worker+0x2a2/0x4a0 [ 382.667157][ C0] ? vhost_flush_work+0x20/0x20 [ 382.667162][ C0] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 382.667166][ C0] ? __kthread_parkme+0xfb/0x1b0 [ 382.667169][ C0] kthread+0x357/0x430 [ 382.667173][ C0] ? vhost_flush_work+0x20/0x20 [ 382.667178][ C0] ? kthread_cancel_delayed_work_sync+0x20/0x20 [ 382.667182][ C0] ret_from_fork+0x3a/0x50 [ 382.671159][ T1040] Kernel panic - not syncing: hung_task: blocked tasks [ 382.951965][ T1040] CPU: 1 PID: 1040 Comm: khungtaskd Not tainted 5.0.0-rc5-next-20190208 #31 [ 382.960628][ T1040] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 382.970671][ T1040] Call Trace: [ 382.973967][ T1040] dump_stack+0x172/0x1f0 [ 382.978343][ T1040] panic+0x2cb/0x65c [ 382.982235][ T1040] ? __warn_printk+0xf3/0xf3 [ 382.986828][ T1040] ? lapic_can_unplug_cpu.cold+0x38/0x38 [ 382.992483][ T1040] ? ___preempt_schedule+0x16/0x18 [ 382.997613][ T1040] ? nmi_trigger_cpumask_backtrace+0x19e/0x236 [ 383.003765][ T1040] ? nmi_trigger_cpumask_backtrace+0x1fa/0x236 [ 383.009912][ T1040] ? nmi_trigger_cpumask_backtrace+0x204/0x236 [ 383.016063][ T1040] ? nmi_trigger_cpumask_backtrace+0x19e/0x236 [ 383.022217][ T1040] watchdog+0x9f0/0xee0 [ 383.026378][ T1040] kthread+0x357/0x430 [ 383.030444][ T1040] ? reset_hung_task_detector+0x30/0x30 [ 383.036265][ T1040] ? kthread_cancel_delayed_work_sync+0x20/0x20 [ 383.042511][ T1040] ret_from_fork+0x3a/0x50 [ 383.048055][ T1040] Kernel Offset: disabled [ 383.052378][ T1040] Rebooting in 86400 seconds..