[[0;32m  OK  [0m] Reached target Graphical Interface.
         Starting Update UTMP about System Runlevel Changes...
         Starting Load/Save RF Kill Switch Status...
[[0;32m  OK  [0m] Started Update UTMP about System Runlevel Changes.
[[0;32m  OK  [0m] Started Load/Save RF Kill Switch Status.

Debian GNU/Linux 9 syzkaller ttyS0

Warning: Permanently added '10.128.1.46' (ECDSA) to the list of known hosts.
syzkaller login: [  488.873961][   T35] audit: type=1400 audit(1613483497.799:8): avc:  denied  { execmem } for  pid=8439 comm="syz-executor177" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
[  488.913866][ T8440] IPVS: ftp: loaded support on port[0] = 21
executing program
[  489.013507][ T8449] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  489.037160][ T8449] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
executing program
[  489.073576][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  489.106049][ T8449] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  489.131028][ T8449] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  489.140395][ T3896] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  721.520659][ T1649] INFO: task kworker/1:0:19 blocked for more than 143 seconds.
[  721.528527][ T1649]       Not tainted 5.11.0-syzkaller #0
[  721.539698][ T1649] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  721.549745][ T1649] task:kworker/1:0     state:D stack:26712 pid:   19 ppid:     2 flags:0x00004000
[  721.560413][ T1649] Workqueue: events disconnect_work
[  721.565977][ T1649] Call Trace:
[  721.569354][ T1649]  __schedule+0x90c/0x21a0
[  721.576227][ T1649]  ? io_schedule_timeout+0x140/0x140
[  721.583176][ T1649]  ? _raw_spin_unlock_irq+0x1f/0x40
[  721.588642][ T1649]  ? lockdep_hardirqs_on+0x79/0x100
[  721.595903][ T1649]  schedule+0xcf/0x270
[  721.600049][ T1649]  schedule_preempt_disabled+0xf/0x20
[  721.607682][ T1649]  __mutex_lock+0x81a/0x1110
[  721.613924][ T1649]  ? disconnect_work+0x18/0x200
[  721.618962][ T1649]  ? mutex_lock_io_nested+0xf60/0xf60
[  721.627977][ T1649]  ? lock_downgrade+0x6d0/0x6d0
[  721.635796][ T1649]  disconnect_work+0x18/0x200
[  721.642064][ T1649]  process_one_work+0x98d/0x15f0
[  721.647161][ T1649]  ? pwq_dec_nr_in_flight+0x320/0x320
[  721.654472][ T1649]  ? rwlock_bug.part.0+0x90/0x90
[  721.659521][ T1649]  ? _raw_spin_lock_irq+0x41/0x50
[  721.666663][ T1649]  worker_thread+0x64c/0x1120
[  721.673057][ T1649]  ? process_one_work+0x15f0/0x15f0
[  721.678348][ T1649]  kthread+0x3b1/0x4a0
[  721.684697][ T1649]  ? kthread_create_worker_on_cpu+0xf0/0xf0
[  721.692004][ T1649]  ret_from_fork+0x1f/0x30
[  721.696748][ T1649] INFO: task kworker/0:2:2992 blocked for more than 143 seconds.
[  721.707464][ T1649]       Not tainted 5.11.0-syzkaller #0
[  721.715355][ T1649] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  721.725555][ T1649] task:kworker/0:2     state:D stack:26200 pid: 2992 ppid:     2 flags:0x00004000
[  721.736256][ T1649] Workqueue: ipv6_addrconf addrconf_dad_work
[  721.743769][ T1649] Call Trace:
[  721.747424][ T1649]  __schedule+0x90c/0x21a0
[  721.755384][ T1649]  ? io_schedule_timeout+0x140/0x140
[  721.762703][ T1649]  ? _raw_spin_unlock_irq+0x1f/0x40
[  721.768094][ T1649]  ? lockdep_hardirqs_on+0x79/0x100
[  721.775787][ T1649]  schedule+0xcf/0x270
[  721.782205][ T1649]  schedule_preempt_disabled+0xf/0x20
[  721.787666][ T1649]  __mutex_lock+0x81a/0x1110
[  721.796261][ T1649]  ? addrconf_dad_work+0xa3/0x1280
[  721.803153][ T1649]  ? mutex_lock_io_nested+0xf60/0xf60
[  721.809061][ T1649]  ? debug_object_deactivate+0x264/0x300
[  721.816677][ T1649]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[  721.824787][ T1649]  addrconf_dad_work+0xa3/0x1280
[  721.829800][ T1649]  ? addrconf_dad_completed+0xc60/0xc60
[  721.837286][ T1649]  process_one_work+0x98d/0x15f0
[  721.843616][ T1649]  ? pwq_dec_nr_in_flight+0x320/0x320
[  721.849061][ T1649]  ? try_to_del_timer_sync+0xbf/0x110
[  721.856715][ T1649]  worker_thread+0x64c/0x1120
[  721.863165][ T1649]  ? process_one_work+0x15f0/0x15f0
[  721.868549][ T1649]  kthread+0x3b1/0x4a0
[  721.876648][ T1649]  ? kthread_create_worker_on_cpu+0xf0/0xf0
[  721.885292][ T1649]  ret_from_fork+0x1f/0x30
[  721.890031][ T1649] INFO: task kworker/0:3:3896 blocked for more than 143 seconds.
[  721.900021][ T1649]       Not tainted 5.11.0-syzkaller #0
[  721.906920][ T1649] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  721.917562][ T1649] task:kworker/0:3     state:D stack:27192 pid: 3896 ppid:     2 flags:0x00004000
[  721.928763][ T1649] Workqueue: events linkwatch_event
[  721.935464][ T1649] Call Trace:
[  721.938890][ T1649]  __schedule+0x90c/0x21a0
[  721.945202][ T1649]  ? io_schedule_timeout+0x140/0x140
[  721.952072][ T1649]  ? _raw_spin_unlock_irq+0x1f/0x40
[  721.957345][ T1649]  ? lockdep_hardirqs_on+0x79/0x100
[  721.964414][ T1649]  schedule+0xcf/0x270
[  721.968674][ T1649]  schedule_preempt_disabled+0xf/0x20
[  721.976013][ T1649]  __mutex_lock+0x81a/0x1110
[  721.982272][ T1649]  ? linkwatch_event+0xb/0x60
[  721.987126][ T1649]  ? mutex_lock_io_nested+0xf60/0xf60
[  721.995007][ T1649]  ? lock_release+0x710/0x710
[  722.002998][ T1649]  linkwatch_event+0xb/0x60
[  722.007913][ T1649]  process_one_work+0x98d/0x15f0
[  722.016961][ T1649]  ? pwq_dec_nr_in_flight+0x320/0x320
[  722.023713][ T1649]  ? rwlock_bug.part.0+0x90/0x90
[  722.028741][ T1649]  ? _raw_spin_lock_irq+0x41/0x50
[  722.035720][ T1649]  worker_thread+0x64c/0x1120
[  722.042034][ T1649]  ? __kthread_parkme+0x13f/0x1e0
[  722.047454][ T1649]  ? process_one_work+0x15f0/0x15f0
[  722.055135][ T1649]  kthread+0x3b1/0x4a0
[  722.059909][ T1649]  ? kthread_create_worker_on_cpu+0xf0/0xf0
[  722.068520][ T1649]  ret_from_fork+0x1f/0x30
[  722.074625][ T1649] INFO: task kworker/1:1:8463 blocked for more than 143 seconds.
[  722.083654][ T1649]       Not tainted 5.11.0-syzkaller #0
[  722.089242][ T1649] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  722.099775][ T1649] task:kworker/1:1     state:D stack:28672 pid: 8463 ppid:     2 flags:0x00004000
[  722.110556][ T1649] Workqueue: ipv6_addrconf addrconf_dad_work
[  722.116966][ T1649] Call Trace:
[  722.120300][ T1649]  __schedule+0x90c/0x21a0
[  722.127384][ T1649]  ? io_schedule_timeout+0x140/0x140
[  722.135290][ T1649]  ? _raw_spin_unlock_irq+0x1f/0x40
[  722.142975][ T1649]  ? lockdep_hardirqs_on+0x79/0x100
[  722.148262][ T1649]  schedule+0xcf/0x270
[  722.154166][ T1649]  schedule_preempt_disabled+0xf/0x20
[  722.159619][ T1649]  __mutex_lock+0x81a/0x1110
[  722.166147][ T1649]  ? addrconf_dad_work+0xa3/0x1280
[  722.172648][ T1649]  ? mutex_lock_io_nested+0xf60/0xf60
[  722.178088][ T1649]  ? debug_object_deactivate+0x264/0x300
[  722.185692][ T1649]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[  722.193114][ T1649]  addrconf_dad_work+0xa3/0x1280
[  722.198130][ T1649]  ? do_raw_spin_lock+0x120/0x2b0
[  722.205077][ T1649]  ? addrconf_dad_completed+0xc60/0xc60
[  722.211991][ T1649]  process_one_work+0x98d/0x15f0
[  722.217276][ T1649]  ? pwq_dec_nr_in_flight+0x320/0x320
[  722.224688][ T1649]  ? rwlock_bug.part.0+0x90/0x90
[  722.229693][ T1649]  ? _raw_spin_lock_irq+0x41/0x50
[  722.236769][ T1649]  worker_thread+0x64c/0x1120
[  722.242941][ T1649]  ? __kthread_parkme+0x13f/0x1e0
[  722.248040][ T1649]  ? process_one_work+0x15f0/0x15f0
[  722.255320][ T1649]  kthread+0x3b1/0x4a0
[  722.259489][ T1649]  ? kthread_create_worker_on_cpu+0xf0/0xf0
[  722.267262][ T1649]  ret_from_fork+0x1f/0x30
[  722.274307][ T1649] 
[  722.274307][ T1649] Showing all locks held in the system:
[  722.284336][ T1649] 3 locks held by kworker/1:0/19:
[  722.289414][ T1649]  #0: ffff888010c63d38 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x871/0x15f0
[  722.302591][ T1649]  #1: ffffc90000dafda8 (cfg80211_disconnect_work){+.+.}-{0:0}, at: process_one_work+0x8a5/0x15f0
[  722.314872][ T1649]  #2: ffffffff8d45bce8 (rtnl_mutex){+.+.}-{3:3}, at: disconnect_work+0x18/0x200
[  722.325914][ T1649] 1 lock held by khungtaskd/1649:
[  722.332509][ T1649]  #0: ffffffff8bd73da0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x53/0x260
[  722.343797][ T1649] 3 locks held by kworker/0:2/2992:
[  722.349128][ T1649]  #0: ffff888147ba1938 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_one_work+0x871/0x15f0
[  722.362176][ T1649]  #1: ffffc90001887da8 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_one_work+0x8a5/0x15f0
[  722.377270][ T1649]  #2: ffffffff8d45bce8 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_dad_work+0xa3/0x1280
[  722.388873][ T1649] 3 locks held by kworker/0:3/3896:
[  722.395380][ T1649]  #0: ffff888010c63d38 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x871/0x15f0
[  722.408558][ T1649]  #1: ffffc90002dffda8 ((linkwatch_work).work){+.+.}-{0:0}, at: process_one_work+0x8a5/0x15f0
[  722.420834][ T1649]  #2: ffffffff8d45bce8 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xb/0x60
[  722.430036][ T1649] 1 lock held by in:imklog/8133:
[  722.436964][ T1649]  #0: ffff88802319a8b0 (&f->f_pos_lock){+.+.}-{3:3}, at: __fdget_pos+0xe9/0x100
[  722.447648][ T1649] 3 locks held by kworker/1:1/8463:
[  722.454154][ T1649]  #0: ffff888147ba1938 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_one_work+0x871/0x15f0
[  722.466539][ T1649]  #1: ffffc9000170fda8 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_one_work+0x8a5/0x15f0
[  722.480183][ T1649]  #2: ffffffff8d45bce8 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_dad_work+0xa3/0x1280
[  722.491266][ T1649] 3 locks held by syz-executor177/8483:
[  722.496998][ T1649] 
[  722.499342][ T1649] =============================================
[  722.499342][ T1649] 
[  722.510164][ T1649] NMI backtrace for cpu 0
[  722.514626][ T1649] CPU: 0 PID: 1649 Comm: khungtaskd Not tainted 5.11.0-syzkaller #0
[  722.522635][ T1649] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  722.532800][ T1649] Call Trace:
[  722.536111][ T1649]  dump_stack+0x107/0x163
[  722.540576][ T1649]  nmi_cpu_backtrace.cold+0x44/0xd7
[  722.545826][ T1649]  ? lapic_can_unplug_cpu+0x80/0x80
[  722.551513][ T1649]  nmi_trigger_cpumask_backtrace+0x1b3/0x230
[  722.557648][ T1649]  watchdog+0xd43/0xfa0
[  722.562016][ T1649]  ? reset_hung_task_detector+0x30/0x30
[  722.567618][ T1649]  kthread+0x3b1/0x4a0
[  722.571751][ T1649]  ? kthread_create_worker_on_cpu+0xf0/0xf0
[  722.577694][ T1649]  ret_from_fork+0x1f/0x30
[  722.582503][ T1649] Sending NMI from CPU 0 to CPUs 1:
[  722.588707][    C1] NMI backtrace for cpu 1
[  722.588720][    C1] CPU: 1 PID: 4863 Comm: systemd-journal Not tainted 5.11.0-syzkaller #0
[  722.588730][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  722.588740][    C1] RIP: 0010:debug_lockdep_rcu_enabled+0x23/0x30
[  722.588752][    C1] Code: cc cc cc cc cc cc cc 8b 05 de 1e a8 04 85 c0 74 21 8b 05 ac 4f a8 04 85 c0 74 17 65 48 8b 04 25 00 f0 01 00 8b 80 84 09 00 00 <85> c0 0f 94 c0 0f b6 c0 c3 cc cc cc cc 55 53 48 c7 c3 40 5b 03 00
[  722.588769][    C1] RSP: 0018:ffffc900013a7940 EFLAGS: 00000202
[  722.588785][    C1] RAX: 0000000000000000 RBX: 1ffff92000274f2b RCX: ffffffff8158d5c8
[  722.588794][    C1] RDX: 0000000000000001 RSI: 0000000000000008 RDI: ffffffff8da3b448
[  722.588804][    C1] RBP: 0000000000000000 R08: 0000000000000000 R09: ffffffff8da3b44f
[  722.588814][    C1] R10: fffffbfff1b47689 R11: 0000000000000001 R12: 0000000000000002
[  722.588823][    C1] R13: ffffffff8bd73da0 R14: 0000000000000000 R15: 0000000000000000
[  722.588833][    C1] FS:  00007fd32adca8c0(0000) GS:ffff8880b9d00000(0000) knlGS:0000000000000000
[  722.588843][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  722.588852][    C1] CR2: 00007fd3281b7000 CR3: 0000000014e8a000 CR4: 00000000001506e0
[  722.588861][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  722.588871][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  722.588879][    C1] Call Trace:
[  722.588884][    C1]  lock_acquire+0x57d/0x720
[  722.588891][    C1]  ? lock_release+0x710/0x710
[  722.588897][    C1]  ? arch_stack_walk+0x5c/0xe0
[  722.588904][    C1]  ? unwind_next_frame+0xe3b/0x1f90
[  722.588911][    C1]  ? entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  722.588918][    C1]  is_bpf_text_address+0x36/0x160
[  722.588925][    C1]  ? __bpf_address_lookup+0x290/0x290
[  722.588990][    C1]  kernel_text_address+0xbd/0xf0
[  722.589001][    C1]  __kernel_text_address+0x9/0x30
[  722.589008][    C1]  unwind_get_return_address+0x51/0x90
[  722.589015][    C1]  ? create_prof_cpu_mask+0x20/0x20
[  722.589021][    C1]  arch_stack_walk+0x93/0xe0
[  722.589028][    C1]  stack_trace_save+0x8c/0xc0
[  722.589034][    C1]  ? stack_trace_consume_entry+0x160/0x160
[  722.589040][    C1]  kasan_save_stack+0x1b/0x40
[  722.589045][    C1]  ? kasan_save_stack+0x1b/0x40
[  722.589049][    C1]  ? ____kasan_kmalloc.constprop.0+0x7f/0xa0
[  722.589053][    C1]  ? kmem_cache_alloc+0x1ab/0x4c0
[  722.589056][    C1]  ? prepare_creds+0x3b/0x730
[  722.589060][    C1]  ? do_faccessat+0x3d7/0x820
[  722.589063][    C1]  ? do_syscall_64+0x2d/0x70
[  722.589067][    C1]  ? entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  722.589071][    C1]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[  722.589075][    C1]  ? __might_fault+0xd3/0x180
[  722.589078][    C1]  ? find_held_lock+0x2d/0x110
[  722.589082][    C1]  ? fs_reclaim_release+0x9c/0xe0
[  722.589085][    C1]  ? unpoison_range+0x3a/0x60
[  722.589088][    C1]  ____kasan_kmalloc.constprop.0+0x7f/0xa0
[  722.589092][    C1]  kmem_cache_alloc+0x1ab/0x4c0
[  722.589096][    C1]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  722.589100][    C1]  prepare_creds+0x3b/0x730
[  722.589103][    C1]  do_faccessat+0x3d7/0x820
[  722.589106][    C1]  ? stream_open+0x60/0x60
[  722.589109][    C1]  ? __secure_computing+0x104/0x360
[  722.589113][    C1]  do_syscall_64+0x2d/0x70
[  722.589116][    C1]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  722.589120][    C1] RIP: 0033:0x7fd32a0859c7
[  722.589126][    C1] Code: 83 c4 08 48 3d 01 f0 ff ff 73 01 c3 48 8b 0d c8 d4 2b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 b8 15 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d a1 d4 2b 00 f7 d8 64 89 01 48
[  722.589136][    C1] RSP: 002b:00007ffdcc94f6e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000015
[  722.589145][    C1] RAX: ffffffffffffffda RBX: 00007ffdcc952600 RCX: 00007fd32a0859c7
[  722.589150][    C1] RDX: 00007fd32aaf6a00 RSI: 0000000000000000 RDI: 000055b9fd33e9a3
[  722.589156][    C1] RBP: 00007ffdcc94f720 R08: 0000000000000000 R09: 0000000000000000
[  722.589161][    C1] R10: 0000000000000069 R11: 0000000000000246 R12: 0000000000000000
[  722.589166][    C1] R13: 0000000000000000 R14: 00007ffdcc952600 R15: 00007ffdcc94fc10
[  722.591050][ T1649] Kernel panic - not syncing: hung_task: blocked tasks
[  723.000417][ T1649] CPU: 0 PID: 1649 Comm: khungtaskd Not tainted 5.11.0-syzkaller #0
[  723.008540][ T1649] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  723.018632][ T1649] Call Trace:
[  723.021974][ T1649]  dump_stack+0x107/0x163
[  723.026386][ T1649]  panic+0x306/0x73d
[  723.030322][ T1649]  ? __warn_printk+0xf3/0xf3
[  723.035081][ T1649]  ? lapic_can_unplug_cpu+0x80/0x80
[  723.040328][ T1649]  ? preempt_schedule_thunk+0x16/0x18
[  723.045775][ T1649]  ? nmi_trigger_cpumask_backtrace+0x196/0x230
[  723.051994][ T1649]  ? watchdog.cold+0x5/0x158
[  723.056895][ T1649]  watchdog.cold+0x16/0x158
[  723.061462][ T1649]  ? reset_hung_task_detector+0x30/0x30
[  723.067075][ T1649]  kthread+0x3b1/0x4a0
[  723.071398][ T1649]  ? kthread_create_worker_on_cpu+0xf0/0xf0
[  723.077335][ T1649]  ret_from_fork+0x1f/0x30
[  723.082466][ T1649] Kernel Offset: disabled
[  723.086903][ T1649] Rebooting in 86400 seconds..