[ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... Starting Load/Save RF Kill Switch Status... [ OK ] Started Load/Save RF Kill Switch Status. [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.239' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 731.599972] autofs4:pid:8142:autofs_fill_super: called with bogus options executing program [ 736.602139] autofs4:pid:8145:autofs_fill_super: called with bogus options executing program [ 741.602409] autofs4:pid:8147:autofs_fill_super: called with bogus options executing program [ 746.604106] autofs4:pid:8150:autofs_fill_super: called with bogus options executing program executing program executing program executing program executing program [ 751.607066] autofs4:pid:8151:autofs_fill_super: called with bogus options [ 751.619707] autofs4:pid:8153:autofs_fill_super: called with bogus options [ 751.631954] autofs4:pid:8155:autofs_fill_super: called with bogus options [ 751.643386] autofs4:pid:8157:autofs_fill_super: called with bogus options executing program [ 751.654884] autofs4:pid:8159:autofs_fill_super: called with bogus options [ 751.667107] autofs4:pid:8162:autofs_fill_super: called with bogus options [ 1004.414028] INFO: task syz-executor571:8154 blocked for more than 140 seconds. [ 1004.421532] Not tainted 4.19.172-syzkaller #0 [ 1004.426640] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1004.434703] syz-executor571 D30456 8154 1 0x00000000 [ 1004.440342] Call Trace: [ 1004.442936] __schedule+0x887/0x2040 [ 1004.446728] ? io_schedule_timeout+0x140/0x140 [ 1004.451354] ? lock_downgrade+0x720/0x720 [ 1004.455601] ? __mutex_lock+0x458/0x1260 [ 1004.459780] schedule+0x8d/0x1b0 [ 1004.463156] schedule_preempt_disabled+0xf/0x20 [ 1004.467920] __mutex_lock+0x647/0x1260 [ 1004.471845] ? __se_sys_acct+0x8c/0x930 [ 1004.475929] ? __mutex_add_waiter+0x160/0x160 [ 1004.480458] ? __sanitizer_cov_trace_switch+0x4b/0x80 [ 1004.485818] ? __phys_addr+0x9a/0x110 [ 1004.489669] ? __check_object_size+0x17b/0x3e0 [ 1004.494339] ? getname_flags+0x25b/0x590 [ 1004.498418] __se_sys_acct+0x8c/0x930 [ 1004.502205] do_syscall_64+0xf9/0x620 [ 1004.506073] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1004.511283] RIP: 0033:0x43fc09 [ 1004.514707] Code: Bad RIP value. [ 1004.518077] RSP: 002b:00007ffd384ee478 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3 [ 1004.525889] RAX: ffffffffffffffda RBX: 0030656c69662f2e RCX: 000000000043fc09 [ 1004.533181] RDX: ffffffffffffffc0 RSI: 0000000000000000 RDI: 00000000200001c0 [ 1004.540544] RBP: 0000000000000000 R08: 00007ffd384ee618 R09: 00007ffd384ee618 [ 1004.547928] R10: 00007ffd384ee618 R11: 0000000000000246 R12: 00007ffd384ee48c [ 1004.555292] R13: 431bde82d7b634db R14: 00000000004ad018 R15: 0000000000400488 [ 1004.562626] INFO: task syz-executor571:8156 blocked for more than 140 seconds. [ 1004.570088] Not tainted 4.19.172-syzkaller #0 [ 1004.575378] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1004.583442] syz-executor571 D30456 8156 1 0x00000000 [ 1004.589175] Call Trace: [ 1004.591775] __schedule+0x887/0x2040 [ 1004.595592] ? io_schedule_timeout+0x140/0x140 [ 1004.600179] ? lock_downgrade+0x720/0x720 [ 1004.604410] ? __mutex_lock+0x458/0x1260 [ 1004.608589] schedule+0x8d/0x1b0 [ 1004.611955] schedule_preempt_disabled+0xf/0x20 [ 1004.616735] __mutex_lock+0x647/0x1260 [ 1004.620680] ? __se_sys_acct+0x8c/0x930 [ 1004.624727] ? __mutex_add_waiter+0x160/0x160 [ 1004.629281] ? __sanitizer_cov_trace_switch+0x4b/0x80 [ 1004.634581] ? __phys_addr+0x9a/0x110 [ 1004.638397] ? __check_object_size+0x17b/0x3e0 [ 1004.642983] ? getname_flags+0x25b/0x590 [ 1004.647121] __se_sys_acct+0x8c/0x930 [ 1004.652002] do_syscall_64+0xf9/0x620 [ 1004.655910] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1004.661110] RIP: 0033:0x43fc09 [ 1004.664369] Code: Bad RIP value. [ 1004.667745] RSP: 002b:00007ffd384ee478 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3 [ 1004.675570] RAX: ffffffffffffffda RBX: 0030656c69662f2e RCX: 000000000043fc09 [ 1004.682880] RDX: ffffffffffffffc0 RSI: 0000000000000000 RDI: 00000000200001c0 [ 1004.690257] RBP: 0000000000000000 R08: 00007ffd384ee618 R09: 00007ffd384ee618 [ 1004.697765] R10: 00007ffd384ee618 R11: 0000000000000246 R12: 00007ffd384ee48c [ 1004.705139] R13: 431bde82d7b634db R14: 00000000004ad018 R15: 0000000000400488 [ 1004.712452] INFO: task syz-executor571:8158 blocked for more than 140 seconds. [ 1004.719936] Not tainted 4.19.172-syzkaller #0 [ 1004.725159] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1004.733121] syz-executor571 D30336 8158 1 0x00000000 [ 1004.738903] Call Trace: [ 1004.741505] __schedule+0x887/0x2040 [ 1004.745276] ? io_schedule_timeout+0x140/0x140 [ 1004.749869] ? lock_downgrade+0x720/0x720 [ 1004.754126] ? __mutex_lock+0x458/0x1260 [ 1004.758377] schedule+0x8d/0x1b0 [ 1004.761754] schedule_preempt_disabled+0xf/0x20 [ 1004.766520] __mutex_lock+0x647/0x1260 [ 1004.770425] ? __se_sys_acct+0x8c/0x930 [ 1004.774492] ? __mutex_add_waiter+0x160/0x160 [ 1004.779093] ? __sanitizer_cov_trace_switch+0x4b/0x80 [ 1004.784374] ? __phys_addr+0x9a/0x110 [ 1004.788190] ? __check_object_size+0x17b/0x3e0 [ 1004.792765] ? getname_flags+0x25b/0x590 [ 1004.796978] __se_sys_acct+0x8c/0x930 [ 1004.800904] do_syscall_64+0xf9/0x620 [ 1004.804792] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1004.810083] RIP: 0033:0x43fc09 [ 1004.813279] Code: Bad RIP value. [ 1004.816725] RSP: 002b:00007ffd384ee478 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3 [ 1004.824538] RAX: ffffffffffffffda RBX: 0030656c69662f2e RCX: 000000000043fc09 [ 1004.831830] RDX: ffffffffffffffc0 RSI: 0000000000000000 RDI: 00000000200001c0 [ 1004.839195] RBP: 0000000000000000 R08: 00007ffd384ee618 R09: 00007ffd384ee618 [ 1004.846546] R10: 00007ffd384ee618 R11: 0000000000000246 R12: 00007ffd384ee48c [ 1004.853905] R13: 431bde82d7b634db R14: 00000000004ad018 R15: 0000000000400488 [ 1004.861920] INFO: task syz-executor571:8160 blocked for more than 140 seconds. [ 1004.869379] Not tainted 4.19.172-syzkaller #0 [ 1004.874467] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1004.882433] syz-executor571 D30456 8160 1 0x00000000 [ 1004.888159] Call Trace: [ 1004.890794] __schedule+0x887/0x2040 [ 1004.894597] ? io_schedule_timeout+0x140/0x140 [ 1004.899198] ? lock_downgrade+0x720/0x720 [ 1004.903345] ? __mutex_lock+0x458/0x1260 [ 1004.907503] schedule+0x8d/0x1b0 [ 1004.910885] schedule_preempt_disabled+0xf/0x20 [ 1004.915723] __mutex_lock+0x647/0x1260 [ 1004.919616] ? __se_sys_acct+0x8c/0x930 [ 1004.923586] ? __mutex_add_waiter+0x160/0x160 [ 1004.928396] ? __sanitizer_cov_trace_switch+0x4b/0x80 [ 1004.934037] ? __phys_addr+0x9a/0x110 [ 1004.937839] ? __check_object_size+0x17b/0x3e0 [ 1004.942412] ? getname_flags+0x25b/0x590 [ 1004.946839] __se_sys_acct+0x8c/0x930 [ 1004.951022] do_syscall_64+0xf9/0x620 [ 1004.954922] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1004.960560] RIP: 0033:0x43fc09 [ 1004.963842] Code: Bad RIP value. [ 1004.967235] RSP: 002b:00007ffd384ee478 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3 [ 1004.975032] RAX: ffffffffffffffda RBX: 0030656c69662f2e RCX: 000000000043fc09 [ 1004.982326] RDX: ffffffffffffffc0 RSI: 0000000000000000 RDI: 00000000200001c0 [ 1004.989677] RBP: 0000000000000000 R08: 00007ffd384ee618 R09: 00007ffd384ee618 [ 1004.997078] R10: 00007ffd384ee618 R11: 0000000000000246 R12: 00007ffd384ee48c [ 1005.004445] R13: 431bde82d7b634db R14: 00000000004ad018 R15: 0000000000400488 [ 1005.011787] INFO: task syz-executor571:8161 blocked for more than 140 seconds. [ 1005.019278] Not tainted 4.19.172-syzkaller #0 [ 1005.024445] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1005.032520] syz-executor571 D28536 8161 8140 0x00000004 [ 1005.038237] Call Trace: [ 1005.040841] __schedule+0x887/0x2040 [ 1005.044628] ? io_schedule_timeout+0x140/0x140 [ 1005.049236] ? lock_downgrade+0x720/0x720 [ 1005.053373] ? __mutex_lock+0x458/0x1260 [ 1005.057629] schedule+0x8d/0x1b0 [ 1005.061009] schedule_preempt_disabled+0xf/0x20 [ 1005.065789] __mutex_lock+0x647/0x1260 [ 1005.069693] ? __se_sys_acct+0x8c/0x930 [ 1005.073673] ? __mutex_add_waiter+0x160/0x160 [ 1005.078249] ? __sanitizer_cov_trace_switch+0x4b/0x80 [ 1005.083465] ? __phys_addr+0x9a/0x110 [ 1005.087345] ? __check_object_size+0x17b/0x3e0 [ 1005.091974] ? getname_flags+0x25b/0x590 [ 1005.096132] __se_sys_acct+0x8c/0x930 [ 1005.099948] do_syscall_64+0xf9/0x620 [ 1005.103741] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1005.109028] RIP: 0033:0x43fc09 [ 1005.112235] Code: Bad RIP value. [ 1005.115663] RSP: 002b:00007ffd384ee478 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3 [ 1005.123370] RAX: ffffffffffffffda RBX: 0030656c69662f2e RCX: 000000000043fc09 [ 1005.130716] RDX: ffffffffffffffc0 RSI: 0000000000000000 RDI: 00000000200001c0 [ 1005.138059] RBP: 0000000000000000 R08: 00007ffd384ee618 R09: 00007ffd384ee618 [ 1005.145547] R10: 00007ffd384ee618 R11: 0000000000000246 R12: 00007ffd384ee48c [ 1005.152833] R13: 431bde82d7b634db R14: 00000000004ad018 R15: 0000000000400488 [ 1005.161860] [ 1005.161860] Showing all locks held in the system: [ 1005.168259] 1 lock held by khungtaskd/1567: [ 1005.172584] #0: 000000008d04c692 (rcu_read_lock){....}, at: debug_show_all_locks+0x53/0x265 [ 1005.181287] 1 lock held by in:imklog/7875: [ 1005.185580] #0: 000000009a905330 (&f->f_pos_lock){+.+.}, at: __fdget_pos+0x26f/0x310 [ 1005.193582] 1 lock held by syz-executor571/8152: [ 1005.198431] #0: 00000000c8c77d8d (acct_on_mutex){+.+.}, at: __se_sys_acct+0x8c/0x930 [ 1005.206490] 1 lock held by syz-executor571/8154: [ 1005.211264] #0: 00000000c8c77d8d (acct_on_mutex){+.+.}, at: __se_sys_acct+0x8c/0x930 [ 1005.219325] 1 lock held by syz-executor571/8156: [ 1005.224154] #0: 00000000c8c77d8d (acct_on_mutex){+.+.}, at: __se_sys_acct+0x8c/0x930 [ 1005.232142] 1 lock held by syz-executor571/8158: [ 1005.236969] #0: 00000000c8c77d8d (acct_on_mutex){+.+.}, at: __se_sys_acct+0x8c/0x930 [ 1005.245047] 1 lock held by syz-executor571/8160: [ 1005.249807] #0: 00000000c8c77d8d (acct_on_mutex){+.+.}, at: __se_sys_acct+0x8c/0x930 [ 1005.257964] 1 lock held by syz-executor571/8161: [ 1005.262879] #0: 00000000c8c77d8d (acct_on_mutex){+.+.}, at: __se_sys_acct+0x8c/0x930 [ 1005.271039] [ 1005.272664] ============================================= [ 1005.272664] [ 1005.281011] NMI backtrace for cpu 0 [ 1005.284723] CPU: 0 PID: 1567 Comm: khungtaskd Not tainted 4.19.172-syzkaller #0 [ 1005.292172] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1005.301520] Call Trace: [ 1005.304124] dump_stack+0x1fc/0x2ef [ 1005.307734] nmi_cpu_backtrace.cold+0x63/0xa2 [ 1005.312393] ? lapic_can_unplug_cpu+0x80/0x80 [ 1005.316885] nmi_trigger_cpumask_backtrace+0x1a6/0x1f0 [ 1005.322167] watchdog+0x991/0xe60 [ 1005.325618] ? reset_hung_task_detector+0x30/0x30 [ 1005.330456] kthread+0x33f/0x460 [ 1005.333828] ? kthread_park+0x180/0x180 [ 1005.337791] ret_from_fork+0x24/0x30 [ 1005.341673] Sending NMI from CPU 0 to CPUs 1: [ 1005.346524] NMI backtrace for cpu 1 [ 1005.346531] CPU: 1 PID: 4690 Comm: systemd-journal Not tainted 4.19.172-syzkaller #0 [ 1005.346538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1005.346542] RIP: 0010:lock_release+0x427/0x8b0 [ 1005.346553] Code: c7 83 84 08 00 00 00 00 00 00 48 c1 e8 03 80 3c 10 00 0f 85 95 03 00 00 48 83 3d 1b 51 a6 08 00 0f 84 cc 01 00 00 48 8b 3c 24 <57> 9d 0f 1f 44 00 00 48 b8 00 00 00 00 00 fc ff df 49 c7 04 04 00 [ 1005.346557] RSP: 0000:ffff8880a0fdfdb8 EFLAGS: 00000082 [ 1005.346566] RAX: 1ffffffff13e3041 RBX: ffff8880a0fd6500 RCX: 1ffff110141fadb1 [ 1005.346571] RDX: dffffc0000000000 RSI: 0000000000000001 RDI: 0000000000000286 [ 1005.346576] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1005.346582] R10: 0000000000000000 R11: 0000000000000000 R12: 1ffff110141fbfba [ 1005.346587] R13: 0000000000000000 R14: ffff8880a0fd6500 R15: 0000000000000001 [ 1005.346593] FS: 00007f48ef0468c0(0000) GS:ffff8880ba100000(0000) knlGS:0000000000000000 [ 1005.346598] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1005.346603] CR2: 00007f48ec422000 CR3: 00000000a1be3000 CR4: 00000000001406e0 [ 1005.346608] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1005.346614] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1005.346617] Call Trace: [ 1005.346621] ? lock_downgrade+0x720/0x720 [ 1005.346624] up_read+0x17/0x110 [ 1005.346628] __do_page_fault+0x6d1/0xd60 [ 1005.346632] ? trace_hardirqs_off_caller+0x6e/0x210 [ 1005.346636] ? spurious_fault+0x840/0x840 [ 1005.346641] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1005.346644] ? page_fault+0x8/0x30 [ 1005.346648] page_fault+0x1e/0x30 [ 1005.346652] RIP: 0033:0x7f48ee350120 [ 1005.346662] Code: fe 6f 06 c5 fe 6f 4e 20 c5 fe 6f 56 40 c5 fe 6f 5e 60 c5 fe 6f 64 16 e0 c5 fe 6f 6c 16 c0 c5 fe 6f 74 16 a0 c5 fe 6f 7c 16 80 fe 7f 07 c5 fe 7f 4f 20 c5 fe 7f 57 40 c5 fe 7f 5f 60 c5 fe 7f [ 1005.346667] RSP: 002b:00007ffd1a282428 EFLAGS: 00010202 [ 1005.346675] RAX: 00007f48ec422000 RBX: 0000000000000090 RCX: 000000000025bfc0 [ 1005.346680] RDX: 0000000000000090 RSI: 00007ffd1a2824d0 RDI: 00007f48ec422000 [ 1005.346686] RBP: 0000000000000000 R08: 000000000025c090 R09: 00007ffd1a285560 [ 1005.346691] R10: 000ab8b69130e9db R11: 00007f48ec421fc0 R12: 000055b800ad6e80 [ 1005.346696] R13: 46b2a1da53e3deb0 R14: 00007ffd1a2826c0 R15: 00007ffd1a2824d0 [ 1005.347229] Kernel panic - not syncing: hung_task: blocked tasks [ 1005.573855] CPU: 0 PID: 1567 Comm: khungtaskd Not tainted 4.19.172-syzkaller #0 [ 1005.581287] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1005.590629] Call Trace: [ 1005.593231] dump_stack+0x1fc/0x2ef [ 1005.596849] panic+0x26a/0x50e [ 1005.600041] ? __warn_printk+0xf3/0xf3 [ 1005.604260] ? _raw_spin_unlock_irqrestore+0x79/0xe0 [ 1005.609361] ? cpumask_next+0x3c/0x40 [ 1005.613150] ? printk_safe_flush+0xd6/0x120 [ 1005.617478] ? watchdog+0x991/0xe60 [ 1005.621090] ? nmi_trigger_cpumask_backtrace+0x15e/0x1f0 [ 1005.626528] watchdog+0x9a2/0xe60 [ 1005.629976] ? reset_hung_task_detector+0x30/0x30 [ 1005.634820] kthread+0x33f/0x460 [ 1005.638172] ? kthread_park+0x180/0x180 [ 1005.642161] ret_from_fork+0x24/0x30 [ 1005.646812] Kernel Offset: disabled [ 1005.650432] Rebooting in 86400 seconds..