[ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 syzkaller login: [ 30.009630] audit: type=1400 audit(1587944068.927:8): avc: denied { execmem } for pid=5976 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 30.269663] IPVS: ftp: loaded support on port[0] = 21 [ 31.439867] can: request_module (can-proto-0) failed. [ 31.450388] can: request_module (can-proto-0) failed. [ 31.478255] audit: type=1400 audit(1587944070.399:9): avc: denied { create } for pid=5952 comm="syz-fuzzer" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=dccp_socket permissive=1 Warning: Permanently added '10.128.10.26' (ECDSA) to the list of known hosts. 2020/04/26 23:34:38 parsed 1 programs 2020/04/26 23:34:38 executed programs: 0 [ 40.060672] audit: type=1400 audit(1587944078.982:10): avc: denied { execmem } for pid=6098 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 40.344921] IPVS: ftp: loaded support on port[0] = 21 [ 41.133857] IPVS: ftp: loaded support on port[0] = 21 [ 41.177749] chnl_net:caif_netlink_parms(): no params data found [ 41.233220] bridge0: port 1(bridge_slave_0) entered blocking state [ 41.241016] bridge0: port 1(bridge_slave_0) entered disabled state [ 41.249165] device bridge_slave_0 entered promiscuous mode [ 41.261970] IPVS: ftp: loaded support on port[0] = 21 [ 41.264424] bridge0: port 2(bridge_slave_1) entered blocking state [ 41.273904] bridge0: port 2(bridge_slave_1) entered disabled state [ 41.281534] device bridge_slave_1 entered promiscuous mode [ 41.317363] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 41.330662] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 41.393387] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 41.401075] team0: Port device team_slave_0 added [ 41.410914] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 41.418670] team0: Port device team_slave_1 added [ 41.425204] chnl_net:caif_netlink_parms(): no params data found [ 41.434647] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 41.442008] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 41.451236] IPVS: ftp: loaded support on port[0] = 21 [ 41.516118] device hsr_slave_0 entered promiscuous mode [ 41.553835] device hsr_slave_1 entered promiscuous mode [ 41.605206] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 41.626258] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 41.656349] bridge0: port 1(bridge_slave_0) entered blocking state [ 41.662707] bridge0: port 1(bridge_slave_0) entered disabled state [ 41.670564] device bridge_slave_0 entered promiscuous mode [ 41.678408] bridge0: port 2(bridge_slave_1) entered blocking state [ 41.684803] bridge0: port 2(bridge_slave_1) entered disabled state [ 41.691794] device bridge_slave_1 entered promiscuous mode [ 41.745773] chnl_net:caif_netlink_parms(): no params data found [ 41.770610] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 41.781994] bridge0: port 2(bridge_slave_1) entered blocking state [ 41.788750] bridge0: port 2(bridge_slave_1) entered forwarding state [ 41.795904] bridge0: port 1(bridge_slave_0) entered blocking state [ 41.802321] bridge0: port 1(bridge_slave_0) entered forwarding state [ 41.803468] IPVS: ftp: loaded support on port[0] = 21 [ 41.827548] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 41.848011] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 41.855365] team0: Port device team_slave_0 added [ 41.864449] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 41.871591] team0: Port device team_slave_1 added [ 41.907473] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 41.915026] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 41.927792] bridge0: port 1(bridge_slave_0) entered blocking state [ 41.935440] bridge0: port 1(bridge_slave_0) entered disabled state [ 41.942361] device bridge_slave_0 entered promiscuous mode [ 41.952101] bridge0: port 2(bridge_slave_1) entered blocking state [ 41.958867] bridge0: port 2(bridge_slave_1) entered disabled state [ 41.965894] device bridge_slave_1 entered promiscuous mode [ 42.048177] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 42.055963] chnl_net:caif_netlink_parms(): no params data found [ 42.116740] device hsr_slave_0 entered promiscuous mode [ 42.163864] device hsr_slave_1 entered promiscuous mode [ 42.206624] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 42.215410] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 42.232378] bridge0: port 1(bridge_slave_0) entered disabled state [ 42.249988] bridge0: port 2(bridge_slave_1) entered disabled state [ 42.261230] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 42.271731] 8021q: adding VLAN 0 to HW filter on device bond0 [ 42.297515] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 42.307435] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 42.315021] team0: Port device team_slave_0 added [ 42.339056] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 42.347873] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 42.354062] IPVS: ftp: loaded support on port[0] = 21 [ 42.355380] team0: Port device team_slave_1 added [ 42.367812] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 42.376750] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 42.384793] bridge0: port 1(bridge_slave_0) entered blocking state [ 42.391128] bridge0: port 1(bridge_slave_0) entered disabled state [ 42.399344] device bridge_slave_0 entered promiscuous mode [ 42.406534] bridge0: port 2(bridge_slave_1) entered blocking state [ 42.412868] bridge0: port 2(bridge_slave_1) entered disabled state [ 42.421285] device bridge_slave_1 entered promiscuous mode [ 42.435118] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 42.442986] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 42.457867] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 42.464064] 8021q: adding VLAN 0 to HW filter on device team0 [ 42.487740] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 42.546096] device hsr_slave_0 entered promiscuous mode [ 42.583730] device hsr_slave_1 entered promiscuous mode [ 42.634084] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 42.641415] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 42.654153] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 42.672777] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 42.680423] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 42.688888] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 42.697375] bridge0: port 1(bridge_slave_0) entered blocking state [ 42.703803] bridge0: port 1(bridge_slave_0) entered forwarding state [ 42.715391] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 42.776241] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 42.799115] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 42.806377] team0: Port device team_slave_0 added [ 42.811783] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 42.819825] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 42.828529] bridge0: port 2(bridge_slave_1) entered blocking state [ 42.834954] bridge0: port 2(bridge_slave_1) entered forwarding state [ 42.850750] chnl_net:caif_netlink_parms(): no params data found [ 42.872634] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 42.880319] team0: Port device team_slave_1 added [ 42.886405] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 42.895101] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 42.902756] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 42.937368] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 42.946652] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 43.012884] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 43.026231] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 43.036869] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 43.075822] device hsr_slave_0 entered promiscuous mode [ 43.103822] device hsr_slave_1 entered promiscuous mode [ 43.155912] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 43.164724] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 43.172502] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 43.181966] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 43.202190] chnl_net:caif_netlink_parms(): no params data found [ 43.216396] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 43.233207] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 43.240069] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 43.250373] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 43.260736] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 43.268516] bridge0: port 1(bridge_slave_0) entered blocking state [ 43.275335] bridge0: port 1(bridge_slave_0) entered disabled state [ 43.283939] device bridge_slave_0 entered promiscuous mode [ 43.291021] bridge0: port 2(bridge_slave_1) entered blocking state [ 43.301332] bridge0: port 2(bridge_slave_1) entered disabled state [ 43.309469] device bridge_slave_1 entered promiscuous mode [ 43.321528] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 43.329862] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 43.347147] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 43.367667] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 43.375856] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 43.391861] 8021q: adding VLAN 0 to HW filter on device bond0 [ 43.404363] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 43.410369] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 43.427615] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 43.440576] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 43.451698] 8021q: adding VLAN 0 to HW filter on device bond0 [ 43.464783] bridge0: port 1(bridge_slave_0) entered blocking state [ 43.471454] bridge0: port 1(bridge_slave_0) entered disabled state [ 43.480524] device bridge_slave_0 entered promiscuous mode [ 43.488096] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 43.498618] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 43.509829] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 43.517381] bridge0: port 2(bridge_slave_1) entered blocking state [ 43.524392] bridge0: port 2(bridge_slave_1) entered disabled state [ 43.531297] device bridge_slave_1 entered promiscuous mode [ 43.553015] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 43.568155] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 43.575679] team0: Port device team_slave_0 added [ 43.595486] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 43.607180] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 43.614474] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 43.621567] team0: Port device team_slave_1 added [ 43.631642] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 43.642029] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 43.649417] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 43.657806] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 43.666922] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 43.672997] 8021q: adding VLAN 0 to HW filter on device team0 [ 43.680388] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 43.689364] 8021q: adding VLAN 0 to HW filter on device team0 [ 43.696917] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 43.705797] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 43.716667] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 43.723642] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 43.732578] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 43.749168] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 43.757594] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 43.772156] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 43.780305] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 43.789003] bridge0: port 1(bridge_slave_0) entered blocking state [ 43.795445] bridge0: port 1(bridge_slave_0) entered forwarding state [ 43.803557] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 43.811382] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 43.819094] bridge0: port 1(bridge_slave_0) entered blocking state [ 43.825506] bridge0: port 1(bridge_slave_0) entered forwarding state [ 43.834449] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 43.843833] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 43.854114] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 43.863986] 8021q: adding VLAN 0 to HW filter on device bond0 [ 43.886028] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 43.894394] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 43.901568] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 43.912601] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 43.939787] bridge0: port 2(bridge_slave_1) entered blocking state [ 43.946278] bridge0: port 2(bridge_slave_1) entered forwarding state [ 43.953388] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 43.961066] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 43.969632] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 43.977359] bridge0: port 2(bridge_slave_1) entered blocking state [ 43.983784] bridge0: port 2(bridge_slave_1) entered forwarding state [ 43.993555] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 44.001826] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 44.011738] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 44.020120] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 44.028266] team0: Port device team_slave_0 added [ 44.075656] device hsr_slave_0 entered promiscuous mode [ 44.113406] device hsr_slave_1 entered promiscuous mode [ 44.153959] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 44.161110] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 44.168958] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 44.178488] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 44.187346] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 44.195437] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 44.204142] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 44.212735] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 44.223209] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 44.231618] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 44.239470] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 44.247070] team0: Port device team_slave_1 added [ 44.259602] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 44.268972] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 44.276680] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 44.287315] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 44.295357] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 44.304130] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 44.311738] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 44.319744] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 44.329024] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 44.336266] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 44.348917] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 44.357035] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 44.365661] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 44.376881] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 44.386544] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 44.397268] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 44.408269] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 44.414989] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 44.430258] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 44.438074] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 44.447882] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 44.456244] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 44.464340] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 44.471721] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 44.479340] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 44.489677] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 44.506450] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 44.515330] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 44.528890] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 44.577188] device hsr_slave_0 entered promiscuous mode [ 44.623273] device hsr_slave_1 entered promiscuous mode [ 44.663806] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 44.671872] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 44.683205] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 44.689279] 8021q: adding VLAN 0 to HW filter on device team0 [ 44.696245] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 44.703939] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 44.713213] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 44.719310] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 44.732424] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 44.745966] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 44.757781] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 44.774150] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 44.786337] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 44.795017] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.801356] bridge0: port 1(bridge_slave_0) entered forwarding state [ 44.814335] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 44.822826] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 44.835881] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 44.843115] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 44.850867] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 44.858794] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.865218] bridge0: port 2(bridge_slave_1) entered forwarding state [ 44.872742] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 44.883127] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 44.890412] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 44.910904] 8021q: adding VLAN 0 to HW filter on device bond0 [ 44.917446] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 44.928328] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 44.941940] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 44.951562] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 44.959918] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 44.976673] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 44.985304] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 44.992346] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 45.003509] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 45.012099] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 45.020925] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 45.038364] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 45.049023] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 45.058676] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 45.070404] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 45.082153] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 45.091786] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 45.100025] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 45.107589] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 45.116109] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 45.126382] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 45.132461] 8021q: adding VLAN 0 to HW filter on device team0 [ 45.142156] 8021q: adding VLAN 0 to HW filter on device bond0 [ 45.150215] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 45.162243] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 45.177939] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 45.187843] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 45.198602] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 45.207721] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 45.216376] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.222791] bridge0: port 1(bridge_slave_0) entered forwarding state [ 45.237783] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 45.250901] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 45.270781] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 45.282461] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 45.294799] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 45.304170] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 45.314830] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.321352] bridge0: port 2(bridge_slave_1) entered forwarding state [ 45.329639] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 45.337158] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 45.355608] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 45.364084] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 45.397491] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 45.406761] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 45.413291] 8021q: adding VLAN 0 to HW filter on device team0 [ 45.419664] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 45.428062] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 45.442260] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 45.454703] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 45.463084] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 45.470706] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 45.479988] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 45.490511] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 45.498936] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.505352] bridge0: port 1(bridge_slave_0) entered forwarding state [ 45.518298] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 45.527998] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 45.536081] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 45.543910] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 45.550945] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 45.559244] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 45.567869] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 45.576398] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 45.586123] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 45.598440] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 45.606723] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 45.614779] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.621242] bridge0: port 2(bridge_slave_1) entered forwarding state [ 45.637017] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 45.650562] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 45.657910] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 45.666325] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 45.677590] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 45.690287] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 45.712157] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 45.738608] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 45.752527] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 45.767475] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 45.777832] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 45.786151] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 45.796141] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 45.805180] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 45.812094] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 45.820290] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 45.829804] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 45.840677] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 45.850642] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 45.858816] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 45.869278] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 45.879952] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 45.887960] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 45.899149] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 45.905545] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 45.915139] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 45.930781] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 45.954454] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 284.568653] INFO: task syz-executor.5:6973 blocked for more than 140 seconds. [ 284.576216] Not tainted 4.14.177-syzkaller #0 [ 284.582537] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 284.591013] syz-executor.5 D27568 6973 6105 0x00000004 [ 284.596689] Call Trace: [ 284.599928] __schedule+0x780/0x1d20 [ 284.603662] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 284.609577] ? pci_mmcfg_check_reserved+0x120/0x120 [ 284.614624] ? autoremove_wake_function+0x160/0x160 [ 284.620245] schedule+0x7f/0x1b0 [ 284.623619] request_wait_answer+0x2e3/0x600 [ 284.628721] ? fuse_copy_one+0x110/0x110 [ 284.632810] ? lock_downgrade+0x7f0/0x7f0 [ 284.636954] ? finish_wait+0x290/0x290 [ 284.641668] ? do_raw_spin_unlock+0x16a/0x250 [ 284.646229] __fuse_request_send+0xff/0x190 [ 284.651205] fuse_request_send+0x48/0x60 [ 284.655258] fuse_simple_request+0x2b4/0x610 [ 284.660266] fuse_lookup_name+0x238/0x570 [ 284.664443] ? fuse_create+0x10/0x10 [ 284.668727] ? mutex_lock_nested+0x16/0x20 [ 284.672964] fuse_lookup+0xe4/0x380 [ 284.676567] ? fuse_lookup_name+0x570/0x570 [ 284.681677] lookup_slow+0x20f/0x3f0 [ 284.685410] ? vfs_unlink+0x450/0x450 [ 284.689938] ? debug_lockdep_rcu_enabled+0x77/0x90 [ 284.694975] ? fuse_allow_current_process.part.29+0x13/0x240 [ 284.700936] walk_component+0x680/0x21a0 [ 284.704998] ? __inode_permission+0xae/0x2a0 [ 284.709477] ? path_init+0x17d0/0x17d0 [ 284.713345] ? link_path_walk+0x161/0x1540 [ 284.717557] ? path_init+0xf9e/0x17d0 [ 284.721455] ? walk_component+0x21a0/0x21a0 [ 284.725953] ? save_stack_trace+0x16/0x20 [ 284.730265] ? save_stack+0x43/0xd0 [ 284.733889] path_lookupat.isra.40+0x17f/0x810 [ 284.738572] ? path_parentat.isra.37+0x130/0x130 [ 284.743356] ? find_held_lock+0x36/0x1d0 [ 284.747434] filename_lookup.part.53+0x15b/0x340 [ 284.752278] ? filename_parentat.isra.51.part.52+0x3e0/0x3e0 [ 284.758237] ? __check_object_size+0x1b0/0x224 [ 284.762868] ? strncpy_from_user+0x80/0x260 [ 284.767181] ? getname_flags+0xf6/0x520 [ 284.771244] user_path_at_empty+0x39/0x40 [ 284.775390] vfs_statx+0xb6/0x130 [ 284.779036] ? vfs_statx_fd+0x90/0x90 [ 284.782832] ? kasan_check_read+0x11/0x20 [ 284.787014] ? _copy_to_user+0x91/0xb0 [ 284.790982] ? SyS_fstat+0x10/0x10 [ 284.794547] SYSC_newstat+0x7d/0xc0 [ 284.798254] ? cp_new_stat+0x590/0x590 [ 284.802133] ? SyS_clock_gettime+0x115/0x160 [ 284.806515] ? SyS_clock_settime+0x1a0/0x1a0 [ 284.811043] ? do_syscall_64+0x4c/0x5b0 [ 284.815018] ? trace_hardirqs_on_caller+0x40c/0x580 [ 284.820118] SyS_newstat+0x9/0x10 [ 284.823564] do_syscall_64+0x1c7/0x5b0 [ 284.827429] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 284.832330] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 284.837512] RIP: 0033:0x459519 [ 284.840783] RSP: 002b:00007f8a99cf8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000004 [ 284.848566] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 0000000000459519 [ 284.855841] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000580 [ 284.863202] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 284.870533] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8a99cf96d4 [ 284.877788] R13: 00000000004e585b R14: 00000000004deb88 R15: 00000000ffffffff [ 284.885177] INFO: task syz-executor.5:6977 blocked for more than 140 seconds. [ 284.892510] Not tainted 4.14.177-syzkaller #0 [ 284.897506] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 284.905873] syz-executor.5 D29120 6977 6105 0x00000004 [ 284.911600] Call Trace: [ 284.914184] __schedule+0x780/0x1d20 [ 284.917955] ? pci_mmcfg_check_reserved+0x120/0x120 [ 284.922966] ? mark_held_locks+0xc7/0x130 [ 284.927093] ? _raw_spin_unlock_irq+0x27/0x80 [ 284.931688] schedule+0x7f/0x1b0 [ 284.935049] rwsem_down_write_failed+0x54f/0xb50 [ 284.939846] ? rwsem_down_read_failed+0x390/0x390 [ 284.944714] ? avc_has_perm_noaudit+0x400/0x400 [ 284.949583] ? trace_hardirqs_off+0x10/0x10 [ 284.953903] ? find_held_lock+0x36/0x1d0 [ 284.958133] call_rwsem_down_write_failed+0x17/0x30 [ 284.963158] ? call_rwsem_down_write_failed+0x17/0x30 [ 284.968957] down_write+0x53/0x90 [ 284.972420] ? lock_mount+0x82/0x290 [ 284.976132] lock_mount+0x82/0x290 [ 284.979739] do_add_mount+0x22/0x310 [ 284.983470] do_mount+0x12cf/0x26a0 [ 284.987078] ? __might_fault+0xf1/0x1b0 [ 284.991121] ? copy_mount_string+0x20/0x20 [ 284.995353] ? kasan_check_write+0x14/0x20 [ 284.999638] ? _copy_from_user+0x9c/0xd0 [ 285.003691] ? memdup_user+0x4a/0x80 [ 285.007388] SyS_mount+0xb8/0xd0 [ 285.010807] ? copy_mnt_ns+0xae0/0xae0 [ 285.014786] do_syscall_64+0x1c7/0x5b0 [ 285.018735] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 285.023585] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 285.028857] RIP: 0033:0x459519 [ 285.032038] RSP: 002b:00007f8a99cd7c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 285.039910] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000459519 [ 285.047185] RDX: 0000000020000000 RSI: 0000000020000180 RDI: 0000000000000000 [ 285.054658] RBP: 000000000075bfc8 R08: 0000000000000000 R09: 0000000000000000 [ 285.062049] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f8a99cd86d4 [ 285.069500] R13: 00000000004c595e R14: 00000000004d9fe0 R15: 00000000ffffffff [ 285.076796] INFO: task syz-executor.5:6978 blocked for more than 140 seconds. [ 285.084231] Not tainted 4.14.177-syzkaller #0 [ 285.089326] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 285.097322] syz-executor.5 D28768 6978 6105 0x00000004 [ 285.103055] Call Trace: [ 285.105644] __schedule+0x780/0x1d20 [ 285.109431] ? pci_mmcfg_check_reserved+0x120/0x120 [ 285.114443] ? mark_held_locks+0xc7/0x130 [ 285.118661] ? _raw_spin_unlock_irq+0x27/0x80 [ 285.123235] schedule+0x7f/0x1b0 [ 285.126600] rwsem_down_write_failed+0x54f/0xb50 [ 285.131570] ? rwsem_down_read_failed+0x390/0x390 [ 285.136420] ? trace_hardirqs_off+0x10/0x10 [ 285.140796] ? find_held_lock+0x36/0x1d0 [ 285.144860] ? __lock_is_held+0xb5/0x140 [ 285.148990] call_rwsem_down_write_failed+0x17/0x30 [ 285.154017] ? call_rwsem_down_write_failed+0x17/0x30 [ 285.159272] down_write+0x53/0x90 [ 285.162725] ? fuse_reverse_inval_entry+0x92/0x5c0 [ 285.167642] fuse_reverse_inval_entry+0x92/0x5c0 [ 285.172487] ? lock_acquire+0x1f1/0x400 [ 285.176459] ? fuse_update_attributes+0xb0/0xb0 [ 285.181175] fuse_dev_do_write+0xe58/0x2310 [ 285.185496] ? fuse_dev_read+0x190/0x190 [ 285.189609] ? wake_up_q+0x9c/0xe0 [ 285.193144] ? get_futex_key+0xd30/0xd30 [ 285.197189] ? memset+0x31/0x40 [ 285.200526] fuse_dev_write+0x11a/0x180 [ 285.204490] ? fuse_dev_splice_write+0x9f0/0x9f0 [ 285.209316] __vfs_write+0x413/0x840 [ 285.213021] ? kernel_read+0x130/0x130 [ 285.216909] ? selinux_file_permission+0x31f/0x3e0 [ 285.221901] ? rw_verify_area+0xb8/0x2b0 [ 285.225984] vfs_write+0x150/0x4f0 [ 285.229572] SyS_write+0x100/0x250 [ 285.233105] ? SyS_read+0x250/0x250 [ 285.236797] ? do_syscall_64+0x4c/0x5b0 [ 285.240815] ? SyS_read+0x250/0x250 [ 285.244435] do_syscall_64+0x1c7/0x5b0 [ 285.248391] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 285.253227] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 285.258467] RIP: 0033:0x459519 [ 285.261644] RSP: 002b:00007f8a99cb6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 285.269435] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000459519 [ 285.276704] RDX: 000000000000002e RSI: 0000000020000000 RDI: 0000000000000003 [ 285.284028] RBP: 000000000075c070 R08: 0000000000000000 R09: 0000000000000000 [ 285.291382] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8a99cb76d4 [ 285.298750] R13: 00000000004c8d0e R14: 00000000004dfc50 R15: 00000000ffffffff [ 285.306089] INFO: task syz-executor.5:6991 blocked for more than 140 seconds. [ 285.313462] Not tainted 4.14.177-syzkaller #0 [ 285.318535] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 285.326508] syz-executor.5 D27936 6991 6105 0x00000004 [ 285.332193] Call Trace: [ 285.334783] __schedule+0x780/0x1d20 [ 285.338545] ? pci_mmcfg_check_reserved+0x120/0x120 [ 285.343573] ? mark_held_locks+0xc7/0x130 [ 285.347890] ? _raw_spin_unlock_irq+0x27/0x80 [ 285.352383] schedule+0x7f/0x1b0 [ 285.355734] rwsem_down_write_failed+0x54f/0xb50 [ 285.360548] ? rwsem_down_read_failed+0x390/0x390 [ 285.365395] call_rwsem_down_write_failed+0x17/0x30 [ 285.370519] ? call_rwsem_down_write_failed+0x17/0x30 [ 285.375705] down_write+0x53/0x90 [ 285.379226] ? lock_mount+0x82/0x290 [ 285.382950] lock_mount+0x82/0x290 [ 285.386497] do_add_mount+0x22/0x310 [ 285.390291] do_mount+0x12cf/0x26a0 [ 285.393920] ? copy_mount_string+0x20/0x20 [ 285.398230] ? rcu_read_lock_sched_held+0x108/0x120 [ 285.403422] ? kmem_cache_alloc_trace+0x63e/0x7a0 [ 285.408359] ? kasan_check_write+0x14/0x20 [ 285.412647] ? copy_mount_options+0x55/0x270 [ 285.417060] SyS_mount+0xb8/0xd0 [ 285.420660] ? copy_mnt_ns+0xae0/0xae0 [ 285.424560] do_syscall_64+0x1c7/0x5b0 [ 285.428534] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 285.433373] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 285.438624] RIP: 0033:0x459519 [ 285.441847] RSP: 002b:00007f8a99c95c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 285.449715] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000459519 [ 285.456979] RDX: 0000000020000240 RSI: 0000000020000200 RDI: 0000000000000000 [ 285.464329] RBP: 000000000075c118 R08: 0000000020000400 R09: 0000000000000000 [ 285.471707] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8a99c966d4 [ 285.479053] R13: 00000000004c5932 R14: 00000000004da0a0 R15: 00000000ffffffff [ 285.486360] INFO: task syz-executor.5:6992 blocked for more than 140 seconds. [ 285.493730] Not tainted 4.14.177-syzkaller #0 [ 285.498812] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 285.506783] syz-executor.5 D28920 6992 6105 0x00000004 [ 285.512462] Call Trace: [ 285.515046] __schedule+0x780/0x1d20 [ 285.518797] ? pci_mmcfg_check_reserved+0x120/0x120 [ 285.523807] ? mark_held_locks+0xc7/0x130 [ 285.528177] ? _raw_spin_unlock_irq+0x27/0x80 [ 285.532760] ? rwsem_down_read_failed+0x1fc/0x390 [ 285.537584] ? rwsem_down_read_failed+0x1fc/0x390 [ 285.542500] schedule+0x7f/0x1b0 [ 285.545859] rwsem_down_read_failed+0x1fc/0x390 [ 285.550593] ? rwsem_down_write_failed_killable+0xd80/0xd80 [ 285.556298] ? trace_hardirqs_off+0x10/0x10 [ 285.560696] ? find_held_lock+0x36/0x1d0 [ 285.564780] call_rwsem_down_read_failed+0x18/0x30 [ 285.569773] down_read+0x49/0xb0 [ 285.573132] ? lookup_slow+0x123/0x3f0 [ 285.576994] lookup_slow+0x123/0x3f0 [ 285.580788] ? vfs_unlink+0x450/0x450 [ 285.584586] ? debug_lockdep_rcu_enabled+0x77/0x90 [ 285.589564] ? fuse_allow_current_process.part.29+0x13/0x240 [ 285.595378] walk_component+0x680/0x21a0 [ 285.599502] ? __inode_permission+0xae/0x2a0 [ 285.603918] ? path_init+0x17d0/0x17d0 [ 285.607874] ? link_path_walk+0x161/0x1540 [ 285.612103] ? path_init+0xf9e/0x17d0 [ 285.615882] ? walk_component+0x21a0/0x21a0 [ 285.620278] ? save_stack_trace+0x16/0x20 [ 285.624417] ? save_stack+0x43/0xd0 [ 285.628126] path_lookupat.isra.40+0x17f/0x810 [ 285.632715] ? path_parentat.isra.37+0x130/0x130 [ 285.637464] ? find_held_lock+0x36/0x1d0 [ 285.641585] filename_lookup.part.53+0x15b/0x340 [ 285.646344] ? filename_parentat.isra.51.part.52+0x3e0/0x3e0 [ 285.652217] ? __check_object_size+0x1b0/0x224 [ 285.656891] ? strncpy_from_user+0x80/0x260 [ 285.661279] ? getname_flags+0xf6/0x520 [ 285.665259] user_path_at_empty+0x39/0x40 [ 285.669459] vfs_statx+0xb6/0x130 [ 285.672906] ? vfs_statx_fd+0x90/0x90 [ 285.676688] ? kasan_check_read+0x11/0x20 [ 285.680902] ? _copy_to_user+0x91/0xb0 [ 285.684798] ? SyS_fstat+0x10/0x10 [ 285.688478] SYSC_newstat+0x7d/0xc0 [ 285.692095] ? cp_new_stat+0x590/0x590 [ 285.695980] ? SyS_clock_gettime+0x115/0x160 [ 285.700449] ? SyS_clock_settime+0x1a0/0x1a0 [ 285.704848] ? do_syscall_64+0x4c/0x5b0 [ 285.708876] ? trace_hardirqs_on_caller+0x40c/0x580 [ 285.713896] SyS_newstat+0x9/0x10 [ 285.717341] do_syscall_64+0x1c7/0x5b0 [ 285.721286] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 285.726126] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 285.731652] RIP: 0033:0x459519 [ 285.734848] RSP: 002b:00007f8a99c74c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000004 [ 285.742611] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 0000000000459519 [ 285.749936] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000580 [ 285.757365] RBP: 000000000075c1c0 R08: 0000000000000000 R09: 0000000000000000 [ 285.764842] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8a99c756d4 [ 285.772778] R13: 00000000004e585b R14: 00000000004deb88 R15: 00000000ffffffff [ 285.780463] INFO: task syz-executor.1:7010 blocked for more than 140 seconds. [ 285.787732] Not tainted 4.14.177-syzkaller #0 [ 285.792840] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 285.800869] syz-executor.1 D27520 7010 6103 0x00000004 [ 285.806488] Call Trace: [ 285.809129] __schedule+0x780/0x1d20 [ 285.814313] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 285.819480] ? pci_mmcfg_check_reserved+0x120/0x120 [ 285.824493] ? autoremove_wake_function+0x160/0x160 [ 285.829574] schedule+0x7f/0x1b0 [ 285.832943] request_wait_answer+0x2e3/0x600 [ 285.837326] ? fuse_copy_one+0x110/0x110 [ 285.841437] ? lock_downgrade+0x7f0/0x7f0 [ 285.845578] ? finish_wait+0x290/0x290 [ 285.849596] ? do_raw_spin_unlock+0x16a/0x250 [ 285.854088] __fuse_request_send+0xff/0x190 [ 285.858464] fuse_request_send+0x48/0x60 [ 285.862513] fuse_simple_request+0x2b4/0x610 [ 285.866924] fuse_lookup_name+0x238/0x570 [ 285.871131] ? fuse_create+0x10/0x10 [ 285.874841] ? mutex_lock_nested+0x16/0x20 [ 285.879111] fuse_lookup+0xe4/0x380 [ 285.882733] ? fuse_lookup_name+0x570/0x570 [ 285.887052] lookup_slow+0x20f/0x3f0 [ 285.890827] ? vfs_unlink+0x450/0x450 [ 285.894636] ? debug_lockdep_rcu_enabled+0x77/0x90 [ 285.899603] ? fuse_allow_current_process.part.29+0x13/0x240 [ 285.905394] walk_component+0x680/0x21a0 [ 285.909524] ? __inode_permission+0xae/0x2a0 [ 285.913924] ? path_init+0x17d0/0x17d0 [ 285.917857] ? link_path_walk+0x161/0x1540 [ 285.922081] ? path_init+0xf9e/0x17d0 [ 285.925876] ? walk_component+0x21a0/0x21a0 [ 285.930273] ? save_stack_trace+0x16/0x20 [ 285.934425] ? save_stack+0x43/0xd0 [ 285.938119] path_lookupat.isra.40+0x17f/0x810 [ 285.942691] ? path_parentat.isra.37+0x130/0x130 [ 285.947442] ? find_held_lock+0x36/0x1d0 [ 285.951562] filename_lookup.part.53+0x15b/0x340 [ 285.956311] ? filename_parentat.isra.51.part.52+0x3e0/0x3e0 [ 285.962156] ? __check_object_size+0x1b0/0x224 [ 285.966744] ? strncpy_from_user+0x80/0x260 [ 285.971134] ? getname_flags+0xf6/0x520 [ 285.975098] user_path_at_empty+0x39/0x40 [ 285.979282] vfs_statx+0xb6/0x130 [ 285.982758] ? vfs_statx_fd+0x90/0x90 [ 285.986674] ? kasan_check_read+0x11/0x20 [ 285.990877] ? _copy_to_user+0x91/0xb0 [ 285.994759] ? SyS_fstat+0x10/0x10 [ 285.998347] SYSC_newstat+0x7d/0xc0 [ 286.001991] ? cp_new_stat+0x590/0x590 [ 286.005858] ? SyS_clock_gettime+0x115/0x160 [ 286.010392] ? SyS_clock_settime+0x1a0/0x1a0 [ 286.014795] ? do_syscall_64+0x4c/0x5b0 [ 286.018807] ? trace_hardirqs_on_caller+0x40c/0x580 [ 286.023833] SyS_newstat+0x9/0x10 [ 286.027278] do_syscall_64+0x1c7/0x5b0 [ 286.031357] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 286.036196] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 286.041429] RIP: 0033:0x459519 [ 286.044607] RSP: 002b:00007fe8a435cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000004 [ 286.052558] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 0000000000459519 [ 286.059884] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000580 [ 286.067144] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 286.074485] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fe8a435d6d4 [ 286.081814] R13: 00000000004e585b R14: 00000000004deb88 R15: 00000000ffffffff [ 286.089177] INFO: task syz-executor.1:7016 blocked for more than 140 seconds. [ 286.096490] Not tainted 4.14.177-syzkaller #0 [ 286.101580] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.109903] syz-executor.1 D29048 7016 6103 0x00000004 [ 286.115523] Call Trace: [ 286.118163] __schedule+0x780/0x1d20 [ 286.121886] ? pci_mmcfg_check_reserved+0x120/0x120 [ 286.126879] ? mark_held_locks+0xc7/0x130 [ 286.131087] ? _raw_spin_unlock_irq+0x27/0x80 [ 286.135584] schedule+0x7f/0x1b0 [ 286.138986] rwsem_down_write_failed+0x54f/0xb50 [ 286.143761] ? rwsem_down_read_failed+0x390/0x390 [ 286.148676] ? trace_hardirqs_off+0x10/0x10 [ 286.152999] ? find_held_lock+0x36/0x1d0 [ 286.157041] ? __lock_is_held+0xb5/0x140 [ 286.161172] call_rwsem_down_write_failed+0x17/0x30 [ 286.166201] ? call_rwsem_down_write_failed+0x17/0x30 [ 286.171514] down_write+0x53/0x90 [ 286.174987] ? fuse_reverse_inval_entry+0x92/0x5c0 [ 286.179980] fuse_reverse_inval_entry+0x92/0x5c0 [ 286.184772] ? lock_acquire+0x173/0x400 [ 286.188805] ? fuse_update_attributes+0xb0/0xb0 [ 286.193476] fuse_dev_do_write+0xe58/0x2310 [ 286.197861] ? futex_wait+0x28d/0x520 [ 286.201751] ? get_futex_key+0x87c/0xd30 [ 286.205812] ? fuse_dev_read+0x190/0x190 [ 286.210353] ? futex_lock_pi_atomic+0x1f0/0x1f0 [ 286.215043] ? fuse_put_request+0x1e/0x2d0 [ 286.219347] ? fuse_dev_do_read.isra.28+0x11fa/0x1d90 [ 286.224545] ? memset+0x31/0x40 [ 286.227894] fuse_dev_write+0x11a/0x180 [ 286.231960] ? fuse_dev_splice_write+0x9f0/0x9f0 [ 286.236756] __vfs_write+0x413/0x840 [ 286.240877] ? kernel_read+0x130/0x130 [ 286.244773] ? selinux_file_permission+0x31f/0x3e0 [ 286.249953] ? rw_verify_area+0xb8/0x2b0 [ 286.254026] vfs_write+0x150/0x4f0 [ 286.257545] SyS_write+0x100/0x250 [ 286.261150] ? SyS_read+0x250/0x250 [ 286.264785] ? do_syscall_64+0x4c/0x5b0 [ 286.268857] ? SyS_read+0x250/0x250 [ 286.272479] do_syscall_64+0x1c7/0x5b0 [ 286.276348] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 286.281239] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 286.286420] RIP: 0033:0x459519 [ 286.289653] RSP: 002b:00007fe8a433bc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 286.297368] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000459519 [ 286.304708] RDX: 000000000000002e RSI: 0000000020000000 RDI: 0000000000000003 [ 286.312053] RBP: 000000000075bfc8 R08: 0000000000000000 R09: 0000000000000000 [ 286.319374] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fe8a433c6d4 [ 286.326635] R13: 00000000004c8d0e R14: 00000000004dfc50 R15: 00000000ffffffff [ 286.334020] INFO: task syz-executor.1:7023 blocked for more than 140 seconds. [ 286.341373] Not tainted 4.14.177-syzkaller #0 [ 286.346375] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.354397] syz-executor.1 D29176 7023 6103 0x00000004 [ 286.360082] Call Trace: [ 286.362687] __schedule+0x780/0x1d20 [ 286.366408] ? pci_mmcfg_check_reserved+0x120/0x120 [ 286.371495] ? mark_held_locks+0xc7/0x130 [ 286.375640] ? _raw_spin_unlock_irq+0x27/0x80 [ 286.380186] schedule+0x7f/0x1b0 [ 286.383547] rwsem_down_write_failed+0x54f/0xb50 [ 286.388367] ? rwsem_down_read_failed+0x390/0x390 [ 286.393199] ? avc_has_perm_noaudit+0x400/0x400 [ 286.397937] ? trace_hardirqs_off+0x10/0x10 [ 286.402251] ? find_held_lock+0x36/0x1d0 [ 286.406322] call_rwsem_down_write_failed+0x17/0x30 [ 286.411420] ? call_rwsem_down_write_failed+0x17/0x30 [ 286.416619] down_write+0x53/0x90 [ 286.420141] ? lock_mount+0x82/0x290 [ 286.423885] lock_mount+0x82/0x290 [ 286.427412] do_add_mount+0x22/0x310 [ 286.431184] do_mount+0x12cf/0x26a0 [ 286.434810] ? __might_fault+0xf1/0x1b0 [ 286.438845] ? copy_mount_string+0x20/0x20 [ 286.443073] ? kasan_check_write+0x14/0x20 [ 286.447287] ? _copy_from_user+0x9c/0xd0 [ 286.451397] ? memdup_user+0x4a/0x80 [ 286.455107] SyS_mount+0xb8/0xd0 [ 286.458534] ? copy_mnt_ns+0xae0/0xae0 [ 286.462425] do_syscall_64+0x1c7/0x5b0 [ 286.466326] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 286.471330] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 286.476521] RIP: 0033:0x459519 [ 286.479750] RSP: 002b:00007fe8a431ac78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 286.487550] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000459519 [ 286.494907] RDX: 0000000020000000 RSI: 0000000020000180 RDI: 0000000000000000 [ 286.502284] RBP: 000000000075c070 R08: 0000000000000000 R09: 0000000000000000 [ 286.509780] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fe8a431b6d4 [ 286.517055] R13: 00000000004c595e R14: 00000000004d9fe0 R15: 00000000ffffffff [ 286.524423] INFO: task syz-executor.1:7049 blocked for more than 140 seconds. [ 286.531973] Not tainted 4.14.177-syzkaller #0 [ 286.536973] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.544989] syz-executor.1 D27664 7049 6103 0x00000004 [ 286.550727] Call Trace: [ 286.553335] __schedule+0x780/0x1d20 [ 286.557052] ? pci_mmcfg_check_reserved+0x120/0x120 [ 286.562150] ? mark_held_locks+0xc7/0x130 [ 286.566296] ? _raw_spin_unlock_irq+0x27/0x80 [ 286.570860] schedule+0x7f/0x1b0 [ 286.574224] rwsem_down_write_failed+0x54f/0xb50 [ 286.579041] ? rwsem_down_read_failed+0x390/0x390 [ 286.583884] call_rwsem_down_write_failed+0x17/0x30 [ 286.588990] ? call_rwsem_down_write_failed+0x17/0x30 [ 286.594197] down_write+0x53/0x90 [ 286.597631] ? lock_mount+0x82/0x290 [ 286.601473] lock_mount+0x82/0x290 [ 286.605019] do_add_mount+0x22/0x310 [ 286.608795] do_mount+0x12cf/0x26a0 [ 286.612415] ? copy_mount_string+0x20/0x20 [ 286.616628] ? rcu_read_lock_sched_held+0x108/0x120 [ 286.621737] ? kmem_cache_alloc_trace+0x63e/0x7a0 [ 286.626596] ? kasan_check_write+0x14/0x20 [ 286.630910] ? copy_mount_options+0x55/0x270 [ 286.635311] SyS_mount+0xb8/0xd0 [ 286.638728] ? copy_mnt_ns+0xae0/0xae0 [ 286.642605] do_syscall_64+0x1c7/0x5b0 [ 286.646466] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 286.651451] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 286.656647] RIP: 0033:0x459519 [ 286.659874] RSP: 002b:00007fe8a42f9c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 286.667663] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000459519 [ 286.675036] RDX: 0000000020000240 RSI: 0000000020000200 RDI: 0000000000000000 [ 286.682386] RBP: 000000000075c118 R08: 0000000020000400 R09: 0000000000000000 [ 286.689726] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fe8a42fa6d4 [ 286.696988] R13: 00000000004c5932 R14: 00000000004da0a0 R15: 00000000ffffffff [ 286.704326] INFO: task syz-executor.1:7050 blocked for more than 140 seconds. [ 286.711667] Not tainted 4.14.177-syzkaller #0 [ 286.716668] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.724715] syz-executor.1 D28920 7050 6103 0x00000004 [ 286.730427] Call Trace: [ 286.733004] __schedule+0x780/0x1d20 [ 286.736697] ? pci_mmcfg_check_reserved+0x120/0x120 [ 286.741775] ? mark_held_locks+0xc7/0x130 [ 286.746101] ? _raw_spin_unlock_irq+0x27/0x80 [ 286.750692] ? rwsem_down_read_failed+0x1fc/0x390 [ 286.755542] ? rwsem_down_read_failed+0x1fc/0x390 [ 286.760448] schedule+0x7f/0x1b0 [ 286.763838] rwsem_down_read_failed+0x1fc/0x390 [ 286.768582] ? rwsem_down_write_failed_killable+0xd80/0xd80 [ 286.774289] ? trace_hardirqs_off+0x10/0x10 [ 286.778684] ? find_held_lock+0x36/0x1d0 [ 286.782746] call_rwsem_down_read_failed+0x18/0x30 [ 286.787815] down_read+0x49/0xb0 [ 286.791172] ? lookup_slow+0x123/0x3f0 [ 286.795036] lookup_slow+0x123/0x3f0 [ 286.798801] ? vfs_unlink+0x450/0x450 [ 286.802685] ? debug_lockdep_rcu_enabled+0x77/0x90 [ 286.807593] ? fuse_allow_current_process.part.29+0x13/0x240 [ 286.813560] walk_component+0x680/0x21a0 [ 286.817638] ? __inode_permission+0xae/0x2a0 [ 286.822207] ? path_init+0x17d0/0x17d0 [ 286.826097] ? link_path_walk+0x161/0x1540 [ 286.830395] ? path_init+0xf9e/0x17d0 [ 286.834192] ? walk_component+0x21a0/0x21a0 [ 286.838808] ? save_stack_trace+0x16/0x20 [ 286.842946] ? save_stack+0x43/0xd0 [ 286.846556] path_lookupat.isra.40+0x17f/0x810 [ 286.851204] ? path_parentat.isra.37+0x130/0x130 [ 286.856067] ? trace_hardirqs_off+0x10/0x10 [ 286.860438] ? find_held_lock+0x36/0x1d0 [ 286.864497] filename_lookup.part.53+0x15b/0x340 [ 286.869452] ? filename_parentat.isra.51.part.52+0x3e0/0x3e0 [ 286.875374] ? __check_object_size+0x1b0/0x224 [ 286.880025] ? strncpy_from_user+0x80/0x260 [ 286.884367] ? find_held_lock+0x36/0x1d0 [ 286.888561] ? getname_flags+0xf6/0x520 [ 286.892561] user_path_at_empty+0x39/0x40 [ 286.896709] vfs_statx+0xb6/0x130 [ 286.900247] ? vfs_statx_fd+0x90/0x90 [ 286.904139] ? kasan_check_read+0x11/0x20 [ 286.908535] ? _copy_to_user+0x91/0xb0 [ 286.912425] ? SyS_fstat+0x10/0x10 [ 286.915952] SYSC_newstat+0x7d/0xc0 [ 286.919637] ? cp_new_stat+0x590/0x590 [ 286.923526] ? SyS_clock_gettime+0x115/0x160 [ 286.928017] ? SyS_clock_settime+0x1a0/0x1a0 [ 286.932622] ? do_syscall_64+0x4c/0x5b0 [ 286.936600] ? trace_hardirqs_on_caller+0x40c/0x580 [ 286.941679] SyS_newstat+0x9/0x10 [ 286.945328] do_syscall_64+0x1c7/0x5b0 [ 286.949273] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 286.954113] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 286.959719] RIP: 0033:0x459519 [ 286.962896] RSP: 002b:00007fe8a42d8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000004 [ 286.971113] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 0000000000459519 [ 286.978455] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000580 [ 286.985894] RBP: 000000000075c1c0 R08: 0000000000000000 R09: 0000000000000000 [ 286.993240] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fe8a42d96d4 [ 287.000849] R13: 00000000004e585b R14: 00000000004deb88 R15: 00000000ffffffff [ 287.008249] [ 287.008249] Showing all locks held in the system: [ 287.014575] 1 lock held by khungtaskd/1012: [ 287.019026] #0: (tasklist_lock){.+.+}, at: [] debug_show_all_locks+0x79/0x218 [ 287.028177] 1 lock held by in:imklog/5605: [ 287.032393] #0: (&f->f_pos_lock){+.+.}, at: [] __fdget_pos+0x8e/0xc0 [ 287.040714] 2 locks held by syz-executor.5/6973: [ 287.045459] #0: (&type->i_mutex_dir_key#8){++++}, at: [] lookup_slow+0x123/0x3f0 [ 287.054835] #1: (&fi->mutex){+.+.}, at: [] fuse_lock_inode+0x9f/0xd0 [ 287.063266] 1 lock held by syz-executor.5/6977: [ 287.068026] #0: (&type->i_mutex_dir_key#8){++++}, at: [] lock_mount+0x82/0x290 [ 287.077255] 2 locks held by syz-executor.5/6978: [ 287.082067] #0: (&fc->killsb){.+.+}, at: [] fuse_dev_do_write+0x1988/0x2310 [ 287.091039] #1: (&type->i_mutex_dir_key#8){++++}, at: [] fuse_reverse_inval_entry+0x92/0x5c0 [ 287.102149] 1 lock held by syz-executor.5/6991: [ 287.106822] #0: (&type->i_mutex_dir_key#8){++++}, at: [] lock_mount+0x82/0x290 [ 287.116051] 1 lock held by syz-executor.5/6992: [ 287.120799] #0: (&type->i_mutex_dir_key#8){++++}, at: [] lookup_slow+0x123/0x3f0 [ 287.130324] 2 locks held by syz-executor.1/7010: [ 287.135157] #0: (&type->i_mutex_dir_key#8){++++}, at: [] lookup_slow+0x123/0x3f0 [ 287.144504] #1: (&fi->mutex){+.+.}, at: [] fuse_lock_inode+0x9f/0xd0 [ 287.152842] 2 locks held by syz-executor.1/7016: [ 287.157737] #0: (&fc->killsb){.+.+}, at: [] fuse_dev_do_write+0x1988/0x2310 [ 287.166589] #1: (&type->i_mutex_dir_key#8){++++}, at: [] fuse_reverse_inval_entry+0x92/0x5c0 [ 287.177112] 1 lock held by syz-executor.1/7023: [ 287.181852] #0: (&type->i_mutex_dir_key#8){++++}, at: [] lock_mount+0x82/0x290 [ 287.191055] 1 lock held by syz-executor.1/7049: [ 287.195758] #0: (&type->i_mutex_dir_key#8){++++}, at: [] lock_mount+0x82/0x290 [ 287.204995] 1 lock held by syz-executor.1/7050: [ 287.209779] #0: (&type->i_mutex_dir_key#8){++++}, at: [] lookup_slow+0x123/0x3f0 [ 287.219820] 2 locks held by syz-executor.3/7019: [ 287.225188] #0: (&type->i_mutex_dir_key#8){++++}, at: [] lookup_slow+0x123/0x3f0 [ 287.234638] #1: (&fi->mutex){+.+.}, at: [] fuse_lock_inode+0x9f/0xd0 [ 287.243007] 1 lock held by syz-executor.3/7027: [ 287.247729] #0: (&type->i_mutex_dir_key#8){++++}, at: [] lock_mount+0x82/0x290 [ 287.257119] 2 locks held by syz-executor.3/7030: [ 287.262015] #0: (&fc->killsb){.+.+}, at: [] fuse_dev_do_write+0x1988/0x2310 [ 287.270989] #1: (&type->i_mutex_dir_key#8){++++}, at: [] fuse_reverse_inval_entry+0x92/0x5c0 [ 287.281426] 1 lock held by syz-executor.3/7057: [ 287.286095] #0: (&type->i_mutex_dir_key#8){++++}, at: [] lock_mount+0x82/0x290 [ 287.295337] 1 lock held by syz-executor.3/7058: [ 287.300180] #0: (&type->i_mutex_dir_key#8){++++}, at: [] lookup_slow+0x123/0x3f0 [ 287.309631] 2 locks held by syz-executor.2/7034: [ 287.314399] #0: (&type->i_mutex_dir_key#8){++++}, at: [] lookup_slow+0x123/0x3f0 [ 287.323770] #1: (&fi->mutex){+.+.}, at: [] fuse_lock_inode+0x9f/0xd0 [ 287.332092] 1 lock held by syz-executor.2/7039: [ 287.336762] #0: (&type->i_mutex_dir_key#8){++++}, at: [] lock_mount+0x82/0x290 [ 287.345963] 2 locks held by syz-executor.2/7040: [ 287.350779] #0: (&fc->killsb){.+.+}, at: [] fuse_dev_do_write+0x1988/0x2310 [ 287.359698] #1: (&type->i_mutex_dir_key#8){++++}, at: [] fuse_reverse_inval_entry+0x92/0x5c0 [ 287.370273] 1 lock held by syz-executor.2/7065: [ 287.374923] #0: (&type->i_mutex_dir_key#8){++++}, at: [] lock_mount+0x82/0x290 [ 287.384205] 2 locks held by syz-executor.4/7074: [ 287.389038] #0: (&type->i_mutex_dir_key#8){++++}, at: [] lookup_slow+0x123/0x3f0 [ 287.398433] #1: (&fi->mutex){+.+.}, at: [] fuse_lock_inode+0x9f/0xd0 [ 287.408070] 1 lock held by syz-executor.4/7083: [ 287.412753] #0: (&type->i_mutex_dir_key#8){++++}, at: [] lock_mount+0x82/0x290 [ 287.422067] 2 locks held by syz-executor.4/7087: [ 287.426824] #0: (&fc->killsb){.+.+}, at: [] fuse_dev_do_write+0x1988/0x2310 [ 287.435835] #1: (&type->i_mutex_dir_key#8){++++}, at: [] fuse_reverse_inval_entry+0x92/0x5c0 [ 287.446275] 1 lock held by syz-executor.4/7089: [ 287.451087] #0: (&type->i_mutex_dir_key#8){++++}, at: [] lock_mount+0x82/0x290 [ 287.460401] 2 locks held by syz-executor.0/7080: [ 287.465174] #0: (&type->i_mutex_dir_key#8){++++}, at: [] lookup_slow+0x123/0x3f0 [ 287.474584] #1: (&fi->mutex){+.+.}, at: [] fuse_lock_inode+0x9f/0xd0 [ 287.482926] 2 locks held by syz-executor.0/7086: [ 287.487722] #0: (&fc->killsb){.+.+}, at: [] fuse_dev_do_write+0x1988/0x2310 [ 287.496591] #1: (&type->i_mutex_dir_key#8){++++}, at: [] fuse_reverse_inval_entry+0x92/0x5c0 [ 287.507116] 1 lock held by syz-executor.0/7088: [ 287.512484] #0: (&type->i_mutex_dir_key#8){++++}, at: [] lock_mount+0x82/0x290 [ 287.521671] 1 lock held by syz-executor.0/7095: [ 287.526328] #0: (&type->i_mutex_dir_key#8){++++}, at: [] lock_mount+0x82/0x290 [ 287.535513] [ 287.537137] ============================================= [ 287.537137] [ 287.544504] NMI backtrace for cpu 1 [ 287.548211] CPU: 1 PID: 1012 Comm: khungtaskd Not tainted 4.14.177-syzkaller #0 [ 287.555646] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 287.564987] Call Trace: [ 287.567657] dump_stack+0xf7/0x13b [ 287.571240] nmi_cpu_backtrace.cold.4+0x3e/0x76 [ 287.575888] ? irq_force_complete_move.cold.16+0x64/0x64 [ 287.581360] nmi_trigger_cpumask_backtrace+0xe5/0x119 [ 287.586525] arch_trigger_cpumask_backtrace+0x14/0x20 [ 287.591784] watchdog+0x522/0xb40 [ 287.595265] ? trace_hardirqs_on_caller+0x40c/0x580 [ 287.600346] kthread+0x338/0x400 [ 287.603687] ? hungtask_pm_notify+0x40/0x40 [ 287.607998] ? kthread_create_on_node+0xa0/0xa0 [ 287.612642] ret_from_fork+0x24/0x30 [ 287.616583] Sending NMI from CPU 1 to CPUs 0: [ 287.621331] NMI backtrace for cpu 0 [ 287.621333] CPU: 0 PID: 3423 Comm: systemd-journal Not tainted 4.14.177-syzkaller #0 [ 287.621335] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 287.621337] task: ffff888095b3a200 task.stack: ffff888095b40000 [ 287.621338] RIP: 0010:__lock_acquire+0xd7f/0x4500 [ 287.621339] RSP: 0018:ffff888095b47860 EFLAGS: 00000046 [ 287.621342] RAX: dffffc0000000000 RBX: 000000005df7a95e RCX: ffff888095b3aa88 [ 287.621344] RDX: 1ffffffff11cef92 RSI: ffff888095b3aab0 RDI: ffff888095b3aad1 [ 287.621345] RBP: ffff888095b47a28 R08: ffff888095b3aad0 R09: 00000000000044ea [ 287.621347] R10: 0000000000000000 R11: ffff888095b3a200 R12: 00000000caa0bb9b [ 287.621348] R13: 00000000ead2a131 R14: 68318584b5735ccc R15: ffff888095b3aab0 [ 287.621350] FS: 00007fad58da38c0(0000) GS:ffff8880aee00000(0000) knlGS:0000000000000000 [ 287.621351] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 287.621352] CR2: 00007fad56193000 CR3: 0000000095932000 CR4: 00000000001406f0 [ 287.621354] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 287.621355] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 287.621356] Call Trace: [ 287.621357] ? trace_hardirqs_off+0x10/0x10 [ 287.621358] ? __lock_acquire+0x6a4/0x4500 [ 287.621360] ? trace_hardirqs_on+0x10/0x10 [ 287.621361] ? trace_hardirqs_on+0x10/0x10 [ 287.621362] ? trace_hardirqs_off+0x10/0x10 [ 287.621363] lock_acquire+0x173/0x400 [ 287.621364] ? path_init+0x864/0x17d0 [ 287.621365] set_root+0x107/0x4d0 [ 287.621366] ? path_init+0x864/0x17d0 [ 287.621367] path_init+0x864/0x17d0 [ 287.621368] ? kasan_kmalloc+0xc7/0xe0 [ 287.621369] ? kasan_slab_alloc+0x12/0x20 [ 287.621370] ? kmem_cache_alloc+0x12e/0x790 [ 287.621371] ? getname_flags+0xb8/0x520 [ 287.621372] ? SyS_mkdir+0x88/0x230 [ 287.621373] ? do_syscall_64+0x1c7/0x5b0 [ 287.621374] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 287.621376] path_parentat.isra.37+0x16/0x130 [ 287.621377] filename_parentat.isra.51.part.52+0x148/0x3e0 [ 287.621378] ? getname+0x10/0x10 [ 287.621379] ? find_held_lock+0x36/0x1d0 [ 287.621380] ? cache_grow_end.part.33+0x95/0x170 [ 287.621381] ? lock_downgrade+0x7f0/0x7f0 [ 287.621382] filename_create+0xae/0x410 [ 287.621383] ? __check_object_size+0x1b0/0x224 [ 287.621384] ? kern_path_mountpoint+0x40/0x40 [ 287.621385] ? strncpy_from_user+0x80/0x260 [ 287.621386] ? getname_flags+0xf6/0x520 [ 287.621387] SyS_mkdir+0x9b/0x230 [ 287.621389] ? SyS_mkdirat+0x240/0x240 [ 287.621390] ? SyS_mkdirat+0x240/0x240 [ 287.621391] do_syscall_64+0x1c7/0x5b0 [ 287.621392] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 287.621393] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 287.621394] RIP: 0033:0x7fad5805f687 [ 287.621395] RSP: 002b:00007ffdf488b878 EFLAGS: 00000293 ORIG_RAX: 0000000000000053 [ 287.621398] RAX: ffffffffffffffda RBX: 00007ffdf488e8e0 RCX: 00007fad5805f687 [ 287.621399] RDX: 0000000000000000 RSI: 00000000000001ed RDI: 0000556d09fd28c0 [ 287.621400] RBP: 00007ffdf488b8b0 R08: 0000556d08fbb3e5 R09: 0000000000000018 [ 287.621402] R10: 0000000000000069 R11: 0000000000000293 R12: 0000000000000000 [ 287.621403] R13: 0000000000000001 R14: 0000556d09fd28c0 R15: 00007ffdf488bef0 [ 287.621404] Code: af c6 48 c1 e8 31 49 89 c1 48 8d 04 c5 40 55 e5 88 48 89 c2 48 89 44 24 60 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 80 3c 02 00 <0f> 85 47 2a 00 00 4a 8b 1c cd 40 55 e5 88 48 85 db 0f 84 ca 00 [ 287.622182] Kernel panic - not syncing: hung_task: blocked tasks [ 287.948259] CPU: 1 PID: 1012 Comm: khungtaskd Not tainted 4.14.177-syzkaller #0 [ 287.955695] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 287.965136] Call Trace: [ 287.967741] dump_stack+0xf7/0x13b [ 287.971260] panic+0x1b0/0x358 [ 287.974428] ? add_taint.cold.5+0x11/0x11 [ 287.978589] watchdog+0x533/0xb40 [ 287.982033] ? trace_hardirqs_on_caller+0x40c/0x580 [ 287.987026] kthread+0x338/0x400 [ 287.990365] ? hungtask_pm_notify+0x40/0x40 [ 287.994659] ? kthread_create_on_node+0xa0/0xa0 [ 287.999304] ret_from_fork+0x24/0x30 [ 288.004624] Kernel Offset: disabled [ 288.008364] Rebooting in 86400 seconds..