[ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.1.41' (ECDSA) to the list of known hosts. executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program syzkaller login: [ 1403.416533][ T27] INFO: task kworker/u4:1:6564 blocked for more than 143 seconds. [ 1403.424661][ T27] Not tainted 5.15.0-rc7-syzkaller #0 [ 1403.435351][ T27] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1403.444957][ T27] task:kworker/u4:1 state:D stack:28336 pid: 6564 ppid: 2 flags:0x00004000 [ 1403.455182][ T27] Workqueue: events_unbound io_ring_exit_work [ 1403.462643][ T27] Call Trace: [ 1403.465938][ T27] __schedule+0xb44/0x5960 [ 1403.471981][ T27] ? __lock_acquire+0x162f/0x54a0 [ 1403.478043][ T27] ? mark_lock+0xef/0x17b0 [ 1403.482480][ T27] ? mark_lock+0xef/0x17b0 [ 1403.488185][ T27] ? io_schedule_timeout+0x140/0x140 [ 1403.493493][ T27] ? lock_chain_count+0x20/0x20 [ 1403.499789][ T27] schedule+0xd3/0x270 [ 1403.503879][ T27] schedule_timeout+0x1db/0x2a0 [ 1403.510051][ T27] ? usleep_range+0x170/0x170 [ 1403.514745][ T27] ? wait_for_completion+0x16e/0x280 [ 1403.521359][ T27] ? mark_held_locks+0x9f/0xe0 [ 1403.526148][ T27] ? rwlock_bug.part.0+0x90/0x90 [ 1403.532500][ T27] ? _raw_spin_unlock_irq+0x1f/0x40 [ 1403.538635][ T27] wait_for_completion+0x176/0x280 [ 1403.543774][ T27] ? bit_wait_io_timeout+0x160/0x160 [ 1403.550480][ T27] ? task_work_add+0xa4/0x190 [ 1403.555227][ T27] io_ring_exit_work+0x4bb/0x19a0 [ 1403.561601][ T27] ? io_uring_try_cancel_requests+0xc30/0xc30 [ 1403.568998][ T27] ? io_uring_del_tctx_node+0x350/0x350 [ 1403.574592][ T27] process_one_work+0x9bf/0x16b0 [ 1403.580915][ T27] ? pwq_dec_nr_in_flight+0x2a0/0x2a0 [ 1403.587229][ T27] ? rwlock_bug.part.0+0x90/0x90 [ 1403.592189][ T27] ? _raw_spin_lock_irq+0x41/0x50 [ 1403.598592][ T27] worker_thread+0x658/0x11f0 [ 1403.603303][ T27] ? process_one_work+0x16b0/0x16b0 [ 1403.609810][ T27] kthread+0x3e5/0x4d0 [ 1403.613964][ T27] ? set_kthread_struct+0x130/0x130 [ 1403.620542][ T27] ret_from_fork+0x1f/0x30 [ 1403.625139][ T27] [ 1403.625139][ T27] Showing all locks held in the system: [ 1403.634197][ T27] 1 lock held by khungtaskd/27: [ 1403.639924][ T27] #0: ffffffff8b981b20 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x53/0x260 [ 1403.650994][ T27] 1 lock held by in:imklog/6233: [ 1403.655942][ T27] #0: ffff888019a89770 (&f->f_pos_lock){+.+.}-{3:3}, at: __fdget_pos+0xe9/0x100 [ 1403.667571][ T27] 2 locks held by kworker/u4:1/6564: [ 1403.672869][ T27] #0: ffff888010c69138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x8a3/0x16b0 [ 1403.685857][ T27] #1: ffffc90002c4fdb0 ((work_completion)(&ctx->exit_work)){+.+.}-{0:0}, at: process_one_work+0x8d7/0x16b0 [ 1403.698327][ T27] 1 lock held by syz-executor675/6715: [ 1403.703839][ T27] [ 1403.706163][ T27] ============================================= [ 1403.706163][ T27] [ 1403.716514][ T27] NMI backtrace for cpu 1 [ 1403.720852][ T27] CPU: 1 PID: 27 Comm: khungtaskd Not tainted 5.15.0-rc7-syzkaller #0 [ 1403.729018][ T27] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1403.739080][ T27] Call Trace: [ 1403.742367][ T27] dump_stack_lvl+0xcd/0x134 [ 1403.747037][ T27] nmi_cpu_backtrace.cold+0x47/0x144 [ 1403.752334][ T27] ? lapic_can_unplug_cpu+0x80/0x80 [ 1403.757594][ T27] nmi_trigger_cpumask_backtrace+0x1ae/0x220 [ 1403.763628][ T27] watchdog+0xc1d/0xf50 [ 1403.767831][ T27] ? reset_hung_task_detector+0x30/0x30 [ 1403.773398][ T27] kthread+0x3e5/0x4d0 [ 1403.777483][ T27] ? set_kthread_struct+0x130/0x130 [ 1403.782722][ T27] ret_from_fork+0x1f/0x30 [ 1403.787357][ T27] Sending NMI from CPU 1 to CPUs 0: [ 1403.792575][ C0] NMI backtrace for cpu 0 [ 1403.792585][ C0] CPU: 0 PID: 6715 Comm: syz-executor675 Not tainted 5.15.0-rc7-syzkaller #0 [ 1403.792606][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1403.792616][ C0] RIP: 0010:deref_stack_reg+0x90/0x150 [ 1403.792676][ C0] Code: 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 94 00 00 00 49 39 ed 49 8b 44 24 10 77 13 48 39 e8 76 0e <48> 8d 55 08 48 39 d0 72 05 49 39 d5 72 3b 49 8d 7c 24 28 48 b8 00 [ 1403.792694][ C0] RSP: 0018:ffffc90002f7f6e0 EFLAGS: 00000216 [ 1403.792710][ C0] RAX: ffffc90002f80000 RBX: ffffc90002f7f830 RCX: ffffffff8df7bced [ 1403.792723][ C0] RDX: 1ffff920005efeff RSI: ffffc90002f7fcd8 RDI: ffffc90002f7f7f8 [ 1403.792737][ C0] RBP: ffffc90002f7fcd8 R08: ffffffff8df7bce8 R09: 0000000000000001 [ 1403.792750][ C0] R10: fffff520005eff08 R11: 0000000000086089 R12: ffffc90002f7f7e8 [ 1403.792763][ C0] R13: ffffc90002f78000 R14: ffffc90002f7f7e8 R15: ffffffff8df7bcec [ 1403.792776][ C0] FS: 00007f04867ea700(0000) GS:ffff8880b9c00000(0000) knlGS:0000000000000000 [ 1403.792795][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1403.792816][ C0] CR2: 0000000020000244 CR3: 0000000033f83000 CR4: 00000000003506f0 [ 1403.792828][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1403.792839][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1403.792851][ C0] Call Trace: [ 1403.792858][ C0] unwind_next_frame+0xcc3/0x1ce0 [ 1403.792877][ C0] ? io_issue_sqe+0x3289/0x7180 [ 1403.792901][ C0] ? deref_stack_reg+0x150/0x150 [ 1403.792919][ C0] ? __unwind_start+0x51b/0x800 [ 1403.792937][ C0] ? create_prof_cpu_mask+0x20/0x20 [ 1403.792998][ C0] arch_stack_walk+0x7d/0xe0 [ 1403.793025][ C0] ? io_issue_sqe+0x3289/0x7180 [ 1403.793048][ C0] stack_trace_save+0x8c/0xc0 [ 1403.793069][ C0] ? stack_trace_consume_entry+0x160/0x160 [ 1403.793096][ C0] kasan_save_stack+0x1b/0x40 [ 1403.793135][ C0] ? kasan_save_stack+0x1b/0x40 [ 1403.793153][ C0] ? __kasan_kmalloc+0xa4/0xd0 [ 1403.793170][ C0] ? io_issue_sqe+0x3289/0x7180 [ 1403.793190][ C0] ? __io_queue_sqe+0x90/0xb30 [ 1403.793211][ C0] ? io_req_task_submit+0xbf/0x1b0 [ 1403.793232][ C0] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1403.793255][ C0] ? syscall_exit_to_user_mode+0x19/0x60 [ 1403.793291][ C0] ? do_syscall_64+0x42/0xb0 [ 1403.793308][ C0] ? entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1403.793339][ C0] ? find_held_lock+0x2d/0x110 [ 1403.793360][ C0] ? kmem_cache_alloc_trace+0x42/0x3c0 [ 1403.793410][ C0] ? rcu_read_lock_sched_held+0x3a/0x70 [ 1403.793449][ C0] __kasan_kmalloc+0xa4/0xd0 [ 1403.793468][ C0] io_issue_sqe+0x3289/0x7180 [ 1403.793495][ C0] ? io_connect+0x6a0/0x6a0 [ 1403.793515][ C0] ? mark_lock+0xef/0x17b0 [ 1403.793536][ C0] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1403.793559][ C0] ? lock_chain_count+0x20/0x20 [ 1403.793583][ C0] __io_queue_sqe+0x90/0xb30 [ 1403.793606][ C0] ? io_timeout_prep+0x8b0/0x8b0 [ 1403.793628][ C0] ? mark_held_locks+0x9f/0xe0 [ 1403.793648][ C0] ? rwlock_bug.part.0+0x90/0x90 [ 1403.793672][ C0] io_req_task_submit+0xbf/0x1b0 [ 1403.793695][ C0] tctx_task_work+0x189/0x6c0 [ 1403.793717][ C0] ? io_fallback_req_func+0x3e0/0x3e0 [ 1403.793737][ C0] ? rwlock_bug.part.0+0x90/0x90 [ 1403.793760][ C0] ? _raw_spin_unlock_irq+0x1f/0x40 [ 1403.793784][ C0] task_work_run+0xdd/0x1a0 [ 1403.793811][ C0] exit_to_user_mode_prepare+0x256/0x290 [ 1403.793834][ C0] syscall_exit_to_user_mode+0x19/0x60 [ 1403.793856][ C0] do_syscall_64+0x42/0xb0 [ 1403.793873][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1403.793898][ C0] RIP: 0033:0x7f0486840ac9 [ 1403.793919][ C0] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 61 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1403.793937][ C0] RSP: 002b:00007f04867ea2f8 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1403.793955][ C0] RAX: 00000000000002ff RBX: 00007f04868c23e8 RCX: 00007f0486840ac9 [ 1403.793968][ C0] RDX: 0000000000000000 RSI: 00000000000002ff RDI: 0000000000000003 [ 1403.793979][ C0] RBP: 00007f04868c23e0 R08: 0000000000000000 R09: 0000000000000000 [ 1403.793991][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f04868c23ec [ 1403.794003][ C0] R13: 0000000000000003 R14: 00007f04867ea400 R15: 0000000000022000 [ 1404.215258][ T27] Kernel panic - not syncing: hung_task: blocked tasks [ 1404.222112][ T27] CPU: 1 PID: 27 Comm: khungtaskd Not tainted 5.15.0-rc7-syzkaller #0 [ 1404.230280][ T27] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1404.240339][ T27] Call Trace: [ 1404.243627][ T27] dump_stack_lvl+0xcd/0x134 [ 1404.248232][ T27] panic+0x2b0/0x6dd [ 1404.252140][ T27] ? __warn_printk+0xf3/0xf3 [ 1404.256741][ T27] ? lapic_can_unplug_cpu+0x80/0x80 [ 1404.261954][ T27] ? preempt_schedule_thunk+0x16/0x18 [ 1404.267335][ T27] ? nmi_trigger_cpumask_backtrace+0x191/0x220 [ 1404.273503][ T27] ? watchdog.cold+0x130/0x158 [ 1404.278319][ T27] watchdog.cold+0x141/0x158 [ 1404.282924][ T27] ? reset_hung_task_detector+0x30/0x30 [ 1404.288484][ T27] kthread+0x3e5/0x4d0 [ 1404.292565][ T27] ? set_kthread_struct+0x130/0x130 [ 1404.297775][ T27] ret_from_fork+0x1f/0x30 [ 1404.302614][ T27] Kernel Offset: disabled [ 1404.306933][ T27] Rebooting in 86400 seconds..