[ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 syzkaller login: [ 29.242256] audit: type=1400 audit(1585350101.257:8): avc: denied { execmem } for pid=5990 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 29.533648] IPVS: ftp: loaded support on port[0] = 21 [ 30.691958] can: request_module (can-proto-0) failed. [ 30.701667] can: request_module (can-proto-0) failed. [ 30.726434] audit: type=1400 audit(1585350102.749:9): avc: denied { create } for pid=5967 comm="syz-fuzzer" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=dccp_socket permissive=1 Warning: Permanently added '10.128.0.101' (ECDSA) to the list of known hosts. 2020/03/27 23:01:50 parsed 1 programs 2020/03/27 23:01:51 executed programs: 0 [ 39.013228] audit: type=1400 audit(1585350111.035:10): avc: denied { execmem } for pid=6110 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 39.067232] IPVS: ftp: loaded support on port[0] = 21 [ 39.744064] IPVS: ftp: loaded support on port[0] = 21 [ 39.808583] chnl_net:caif_netlink_parms(): no params data found [ 39.851541] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.858788] bridge0: port 1(bridge_slave_0) entered disabled state [ 39.866651] device bridge_slave_0 entered promiscuous mode [ 39.873911] IPVS: ftp: loaded support on port[0] = 21 [ 39.873992] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.885838] bridge0: port 2(bridge_slave_1) entered disabled state [ 39.892760] device bridge_slave_1 entered promiscuous mode [ 39.909838] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 39.923950] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 39.951448] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 39.959210] team0: Port device team_slave_0 added [ 39.966621] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 39.973615] team0: Port device team_slave_1 added [ 39.980810] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 40.031340] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 40.054137] chnl_net:caif_netlink_parms(): no params data found [ 40.087354] device hsr_slave_0 entered promiscuous mode [ 40.125095] device hsr_slave_1 entered promiscuous mode [ 40.185440] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 40.199935] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 40.208550] IPVS: ftp: loaded support on port[0] = 21 [ 40.262557] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.269025] bridge0: port 2(bridge_slave_1) entered forwarding state [ 40.275954] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.282315] bridge0: port 1(bridge_slave_0) entered forwarding state [ 40.291861] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.299241] bridge0: port 1(bridge_slave_0) entered disabled state [ 40.306844] device bridge_slave_0 entered promiscuous mode [ 40.315205] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.321541] bridge0: port 2(bridge_slave_1) entered disabled state [ 40.328885] device bridge_slave_1 entered promiscuous mode [ 40.348787] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 40.359783] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 40.368734] chnl_net:caif_netlink_parms(): no params data found [ 40.421174] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.428178] bridge0: port 1(bridge_slave_0) entered disabled state [ 40.435458] device bridge_slave_0 entered promiscuous mode [ 40.442713] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 40.449879] team0: Port device team_slave_0 added [ 40.460807] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.467921] bridge0: port 2(bridge_slave_1) entered disabled state [ 40.476072] device bridge_slave_1 entered promiscuous mode [ 40.486133] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 40.493525] team0: Port device team_slave_1 added [ 40.494309] IPVS: ftp: loaded support on port[0] = 21 [ 40.507979] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 40.515413] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 40.534462] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 40.545484] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 40.569959] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 40.577481] team0: Port device team_slave_0 added [ 40.624258] chnl_net:caif_netlink_parms(): no params data found [ 40.645195] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 40.652194] team0: Port device team_slave_1 added [ 40.707736] device hsr_slave_0 entered promiscuous mode [ 40.745003] device hsr_slave_1 entered promiscuous mode [ 40.785039] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 40.796685] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 40.806779] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 40.814381] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready [ 40.820920] 8021q: adding VLAN 0 to HW filter on device bond0 [ 40.839912] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 40.849612] bridge0: port 1(bridge_slave_0) entered disabled state [ 40.857042] bridge0: port 2(bridge_slave_1) entered disabled state [ 40.863793] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 40.891987] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.898947] bridge0: port 1(bridge_slave_0) entered disabled state [ 40.906109] device bridge_slave_0 entered promiscuous mode [ 40.918844] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 40.933709] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.940793] bridge0: port 2(bridge_slave_1) entered disabled state [ 40.947997] device bridge_slave_1 entered promiscuous mode [ 40.959813] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 40.967527] IPVS: ftp: loaded support on port[0] = 21 [ 41.007405] device hsr_slave_0 entered promiscuous mode [ 41.044735] device hsr_slave_1 entered promiscuous mode [ 41.085205] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 41.105364] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 41.113801] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 41.129484] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 41.137142] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 41.143938] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 41.153941] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 41.160955] 8021q: adding VLAN 0 to HW filter on device team0 [ 41.169902] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 41.183755] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 41.191447] team0: Port device team_slave_0 added [ 41.197406] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 41.204743] team0: Port device team_slave_1 added [ 41.211751] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 41.219223] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 41.227285] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 41.234978] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 41.242415] bridge0: port 1(bridge_slave_0) entered blocking state [ 41.248892] bridge0: port 1(bridge_slave_0) entered forwarding state [ 41.257734] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 41.312862] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 41.326803] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 41.335002] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 41.342637] bridge0: port 2(bridge_slave_1) entered blocking state [ 41.349026] bridge0: port 2(bridge_slave_1) entered forwarding state [ 41.358667] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 41.427959] device hsr_slave_0 entered promiscuous mode [ 41.475661] device hsr_slave_1 entered promiscuous mode [ 41.526185] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 41.533353] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 41.540318] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 41.560422] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 41.577435] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 41.588035] chnl_net:caif_netlink_parms(): no params data found [ 41.604011] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 41.619554] 8021q: adding VLAN 0 to HW filter on device bond0 [ 41.628547] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 41.639113] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 41.647406] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 41.657955] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 41.666237] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 41.674404] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 41.689388] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 41.699306] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 41.708135] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 41.716320] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 41.723759] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 41.730957] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 41.747954] bridge0: port 1(bridge_slave_0) entered blocking state [ 41.754717] bridge0: port 1(bridge_slave_0) entered disabled state [ 41.761543] device bridge_slave_0 entered promiscuous mode [ 41.769425] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 41.787446] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 41.794926] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 41.802386] bridge0: port 2(bridge_slave_1) entered blocking state [ 41.809315] bridge0: port 2(bridge_slave_1) entered disabled state [ 41.817255] device bridge_slave_1 entered promiscuous mode [ 41.832612] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 41.893004] chnl_net:caif_netlink_parms(): no params data found [ 41.904722] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 41.910798] 8021q: adding VLAN 0 to HW filter on device team0 [ 41.921160] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 41.929394] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 41.938182] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 41.947650] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 41.953651] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 41.967382] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 41.977603] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 42.011651] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 42.020282] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 42.029011] bridge0: port 1(bridge_slave_0) entered blocking state [ 42.035396] bridge0: port 1(bridge_slave_0) entered forwarding state [ 42.045858] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 42.054005] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 42.061153] team0: Port device team_slave_0 added [ 42.072643] 8021q: adding VLAN 0 to HW filter on device bond0 [ 42.084139] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 42.090601] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 42.098992] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 42.107080] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 42.115020] bridge0: port 2(bridge_slave_1) entered blocking state [ 42.121351] bridge0: port 2(bridge_slave_1) entered forwarding state [ 42.129369] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 42.136702] team0: Port device team_slave_1 added [ 42.142001] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 42.149674] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 42.157605] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 42.165311] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 42.189476] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 42.196545] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 42.203246] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 42.213738] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 42.233026] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 42.239383] 8021q: adding VLAN 0 to HW filter on device team0 [ 42.247257] bridge0: port 1(bridge_slave_0) entered blocking state [ 42.253595] bridge0: port 1(bridge_slave_0) entered disabled state [ 42.261025] device bridge_slave_0 entered promiscuous mode [ 42.269544] bridge0: port 2(bridge_slave_1) entered blocking state [ 42.277231] bridge0: port 2(bridge_slave_1) entered disabled state [ 42.284686] device bridge_slave_1 entered promiscuous mode [ 42.326023] device hsr_slave_0 entered promiscuous mode [ 42.364044] device hsr_slave_1 entered promiscuous mode [ 42.404442] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 42.411447] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 42.429953] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 42.440494] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 42.454888] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 42.462519] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 42.470495] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 42.478162] bridge0: port 1(bridge_slave_0) entered blocking state [ 42.484550] bridge0: port 1(bridge_slave_0) entered forwarding state [ 42.492157] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 42.500898] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 42.512608] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 42.521333] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 42.531691] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 42.539637] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 42.547699] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 42.555800] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 42.563296] bridge0: port 2(bridge_slave_1) entered blocking state [ 42.569699] bridge0: port 2(bridge_slave_1) entered forwarding state [ 42.577643] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 42.587473] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 42.595487] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 42.605161] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 42.617287] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 42.627868] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 42.641867] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 42.650257] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 42.658100] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 42.666051] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 42.673357] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 42.682749] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 42.693671] 8021q: adding VLAN 0 to HW filter on device bond0 [ 42.704687] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 42.719434] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 42.727738] team0: Port device team_slave_0 added [ 42.732821] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 42.742941] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 42.774055] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 42.781100] team0: Port device team_slave_1 added [ 42.789250] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 42.801345] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 42.810783] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 42.819537] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 42.826972] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 42.836832] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 42.844516] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 42.851754] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 42.860197] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 42.890211] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 42.897775] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 42.905627] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 42.914549] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 42.920535] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 42.930947] 8021q: adding VLAN 0 to HW filter on device bond0 [ 42.946965] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 42.954271] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 42.961252] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 42.970166] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 42.980871] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 42.990134] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 42.997934] 8021q: adding VLAN 0 to HW filter on device team0 [ 43.036709] device hsr_slave_0 entered promiscuous mode [ 43.063680] device hsr_slave_1 entered promiscuous mode [ 43.115656] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 43.127285] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 43.135878] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 43.143730] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 43.149853] 8021q: adding VLAN 0 to HW filter on device team0 [ 43.157158] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 43.164857] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 43.172179] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 43.179996] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 43.187819] bridge0: port 1(bridge_slave_0) entered blocking state [ 43.194231] bridge0: port 1(bridge_slave_0) entered forwarding state [ 43.201327] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 43.208224] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 43.215350] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 43.223484] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 43.230375] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 43.237651] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 43.245124] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 43.254793] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 43.261492] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 43.272820] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 43.281861] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 43.290317] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 43.301301] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 43.312320] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 43.324037] bridge0: port 2(bridge_slave_1) entered blocking state [ 43.330383] bridge0: port 2(bridge_slave_1) entered forwarding state [ 43.341098] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 43.349478] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 43.365130] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 43.372503] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 43.380752] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 43.388945] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 43.396829] bridge0: port 1(bridge_slave_0) entered blocking state [ 43.403155] bridge0: port 1(bridge_slave_0) entered forwarding state [ 43.412371] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 43.423221] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 43.432240] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 43.446275] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 43.453979] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 43.463093] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 43.471589] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 43.480201] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 43.488630] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 43.497634] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 43.505589] bridge0: port 2(bridge_slave_1) entered blocking state [ 43.511967] bridge0: port 2(bridge_slave_1) entered forwarding state [ 43.520193] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 43.535596] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 43.549038] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 43.562815] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 43.572983] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 43.583788] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 43.591417] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 43.601088] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 43.608574] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 43.619151] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 43.626883] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 43.640606] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 43.648788] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 43.659430] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 43.667278] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 43.677495] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 43.684089] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 43.692431] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 43.707263] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 43.715228] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 43.722654] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 43.744949] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 43.756067] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 43.762865] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 43.771688] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 43.779827] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 43.787537] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 43.799987] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 43.815204] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 43.828586] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 43.837603] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 43.848966] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 43.861921] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 43.877878] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 43.901130] 8021q: adding VLAN 0 to HW filter on device bond0 [ 43.911283] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 43.919733] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 43.929302] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 43.938964] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 43.947861] 8021q: adding VLAN 0 to HW filter on device team0 [ 43.957680] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 43.965205] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 43.972668] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 43.986432] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 43.996377] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 44.007034] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 44.015841] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.022199] bridge0: port 1(bridge_slave_0) entered forwarding state [ 44.029967] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 44.039500] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 44.053207] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 44.061368] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 44.069677] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.076105] bridge0: port 2(bridge_slave_1) entered forwarding state [ 44.084979] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 44.094562] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 44.101660] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 44.109738] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 44.122662] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 44.130663] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 44.147081] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 44.164296] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 44.185208] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 44.198158] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 44.207592] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 44.216160] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 44.224412] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 44.231792] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 44.246897] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 44.254068] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 44.261785] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 44.271914] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 44.288197] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 44.307422] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 44.318418] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 284.571742] INFO: task syz-executor.2:6989 blocked for more than 140 seconds. [ 284.579239] Not tainted 4.14.174-syzkaller #0 [ 284.586518] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 284.594559] syz-executor.2 D27568 6989 6114 0x00000004 [ 284.600228] Call Trace: [ 284.602954] __schedule+0x780/0x1d20 [ 284.606663] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 284.611789] ? pci_mmcfg_check_reserved+0x120/0x120 [ 284.617187] ? autoremove_wake_function+0x160/0x160 [ 284.622244] schedule+0x7f/0x1b0 [ 284.625605] request_wait_answer+0x2e3/0x600 [ 284.630010] ? fuse_copy_one+0x110/0x110 [ 284.634096] ? lock_downgrade+0x7f0/0x7f0 [ 284.638235] ? finish_wait+0x290/0x290 [ 284.642271] ? do_raw_spin_unlock+0x16a/0x250 [ 284.646757] __fuse_request_send+0xff/0x190 [ 284.651099] fuse_request_send+0x48/0x60 [ 284.655156] fuse_simple_request+0x2b4/0x610 [ 284.659555] fuse_lookup_name+0x238/0x570 [ 284.663737] ? fuse_create+0x10/0x10 [ 284.667441] ? mutex_lock_nested+0x16/0x20 [ 284.671700] fuse_lookup+0xe4/0x380 [ 284.675420] ? fuse_lookup_name+0x570/0x570 [ 284.679739] lookup_slow+0x20f/0x3f0 [ 284.683492] ? vfs_unlink+0x450/0x450 [ 284.687287] ? debug_lockdep_rcu_enabled+0x77/0x90 [ 284.692253] ? fuse_allow_current_process.part.29+0x13/0x240 [ 284.698055] walk_component+0x680/0x21a0 [ 284.702152] ? __inode_permission+0xae/0x2a0 [ 284.706547] ? path_init+0x17d0/0x17d0 [ 284.710407] ? link_path_walk+0x161/0x1540 [ 284.714658] ? path_init+0xf9e/0x17d0 [ 284.718462] ? walk_component+0x21a0/0x21a0 [ 284.722818] ? save_stack_trace+0x16/0x20 [ 284.726950] ? save_stack+0x43/0xd0 [ 284.730606] path_lookupat.isra.40+0x17f/0x810 [ 284.735175] ? path_parentat.isra.37+0x130/0x130 [ 284.739927] ? find_held_lock+0x36/0x1d0 [ 284.744018] filename_lookup.part.53+0x15b/0x340 [ 284.748781] ? filename_parentat.isra.51.part.52+0x3e0/0x3e0 [ 284.754616] ? __check_object_size+0x1b0/0x224 [ 284.759196] ? strncpy_from_user+0x80/0x260 [ 284.763549] ? getname_flags+0xf6/0x520 [ 284.767516] user_path_at_empty+0x39/0x40 [ 284.771692] vfs_statx+0xb6/0x130 [ 284.775188] ? vfs_statx_fd+0x90/0x90 [ 284.778988] ? kasan_check_read+0x11/0x20 [ 284.783174] ? _copy_to_user+0x91/0xb0 [ 284.787048] ? SyS_fstat+0x10/0x10 [ 284.790616] SYSC_newstat+0x7d/0xc0 [ 284.794232] ? cp_new_stat+0x590/0x590 [ 284.798099] ? SyS_clock_gettime+0x115/0x160 [ 284.802540] ? SyS_clock_settime+0x1a0/0x1a0 [ 284.806950] ? do_syscall_64+0x4c/0x5b0 [ 284.810946] ? trace_hardirqs_on_caller+0x40c/0x580 [ 284.816004] SyS_newstat+0x9/0x10 [ 284.819435] do_syscall_64+0x1c7/0x5b0 [ 284.823355] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 284.828191] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 284.833401] RIP: 0033:0x459519 [ 284.836577] RSP: 002b:00007f41bb269c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000004 [ 284.844325] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 0000000000459519 [ 284.851622] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000580 [ 284.858881] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 284.866168] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f41bb26a6d4 [ 284.873466] R13: 00000000004e585b R14: 00000000004deb88 R15: 00000000ffffffff [ 284.880794] INFO: task syz-executor.2:6994 blocked for more than 140 seconds. [ 284.888053] Not tainted 4.14.174-syzkaller #0 [ 284.893238] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 284.901262] syz-executor.2 D28768 6994 6114 0x00000004 [ 284.906882] Call Trace: [ 284.909459] __schedule+0x780/0x1d20 [ 284.913222] ? pci_mmcfg_check_reserved+0x120/0x120 [ 284.918231] ? mark_held_locks+0xc7/0x130 [ 284.922419] ? _raw_spin_unlock_irq+0x27/0x80 [ 284.926902] schedule+0x7f/0x1b0 [ 284.930302] rwsem_down_write_failed+0x54f/0xb50 [ 284.935082] ? rwsem_down_read_failed+0x390/0x390 [ 284.939917] ? trace_hardirqs_off+0x10/0x10 [ 284.944286] ? find_held_lock+0x36/0x1d0 [ 284.948347] ? __lock_is_held+0xb5/0x140 [ 284.952447] call_rwsem_down_write_failed+0x17/0x30 [ 284.957455] ? call_rwsem_down_write_failed+0x17/0x30 [ 284.962689] down_write+0x53/0x90 [ 284.966130] ? fuse_reverse_inval_entry+0x92/0x5c0 [ 284.971161] fuse_reverse_inval_entry+0x92/0x5c0 [ 284.975915] ? lock_acquire+0x173/0x400 [ 284.979865] ? fuse_update_attributes+0xb0/0xb0 [ 284.984564] fuse_dev_do_write+0xe58/0x2310 [ 284.988891] ? futex_wait+0x28d/0x520 [ 284.992719] ? vfio_msi_set_vector_signal+0x80/0x970 [ 284.997818] ? fuse_dev_read+0x190/0x190 [ 285.001932] ? futex_lock_pi_atomic+0x1f0/0x1f0 [ 285.006599] ? fuse_dev_do_read.isra.28+0x11fa/0x1d90 [ 285.011828] ? futex_wake+0x10d/0x560 [ 285.015648] ? memset+0x31/0x40 [ 285.018907] fuse_dev_write+0x11a/0x180 [ 285.022919] ? fuse_dev_splice_write+0x9f0/0x9f0 [ 285.027729] __vfs_write+0x413/0x840 [ 285.031475] ? kernel_read+0x130/0x130 [ 285.035355] ? selinux_file_permission+0x31f/0x3e0 [ 285.040280] ? rw_verify_area+0xb8/0x2b0 [ 285.044389] vfs_write+0x150/0x4f0 [ 285.047938] SyS_write+0x100/0x250 [ 285.052026] ? SyS_read+0x250/0x250 [ 285.055821] ? do_syscall_64+0x4c/0x5b0 [ 285.059776] ? SyS_read+0x250/0x250 [ 285.063458] do_syscall_64+0x1c7/0x5b0 [ 285.067335] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 285.072239] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 285.077441] RIP: 0033:0x459519 [ 285.080678] RSP: 002b:00007f41bb248c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 285.088379] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000459519 [ 285.095743] RDX: 000000000000002e RSI: 0000000020000000 RDI: 0000000000000003 [ 285.103075] RBP: 000000000075bfc8 R08: 0000000000000000 R09: 0000000000000000 [ 285.110357] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f41bb2496d4 [ 285.117777] R13: 00000000004c8d0e R14: 00000000004dfc50 R15: 00000000ffffffff [ 285.125112] INFO: task syz-executor.2:6999 blocked for more than 140 seconds. [ 285.132501] Not tainted 4.14.174-syzkaller #0 [ 285.137516] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 285.145567] syz-executor.2 D28912 6999 6114 0x00000004 [ 285.151233] Call Trace: [ 285.153811] __schedule+0x780/0x1d20 [ 285.157563] ? pci_mmcfg_check_reserved+0x120/0x120 [ 285.162630] ? mark_held_locks+0xc7/0x130 [ 285.166769] ? _raw_spin_unlock_irq+0x27/0x80 [ 285.171311] schedule+0x7f/0x1b0 [ 285.174669] rwsem_down_write_failed+0x54f/0xb50 [ 285.179406] ? rwsem_down_read_failed+0x390/0x390 [ 285.184310] ? avc_has_perm_noaudit+0x400/0x400 [ 285.188976] ? trace_hardirqs_off+0x10/0x10 [ 285.193347] ? find_held_lock+0x36/0x1d0 [ 285.197418] call_rwsem_down_write_failed+0x17/0x30 [ 285.202478] ? call_rwsem_down_write_failed+0x17/0x30 [ 285.207672] down_write+0x53/0x90 [ 285.211161] ? lock_mount+0x82/0x290 [ 285.214871] lock_mount+0x82/0x290 [ 285.218414] do_add_mount+0x22/0x310 [ 285.222180] do_mount+0x12cf/0x26a0 [ 285.225818] ? __might_fault+0xf1/0x1b0 [ 285.229821] ? copy_mount_string+0x20/0x20 [ 285.234104] ? kasan_check_write+0x14/0x20 [ 285.238335] ? _copy_from_user+0x9c/0xd0 [ 285.242436] ? memdup_user+0x4a/0x80 [ 285.246141] SyS_mount+0xb8/0xd0 [ 285.249487] ? copy_mnt_ns+0xae0/0xae0 [ 285.253402] do_syscall_64+0x1c7/0x5b0 [ 285.257278] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 285.262164] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 285.267339] RIP: 0033:0x459519 [ 285.270549] RSP: 002b:00007f41bb227c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 285.278256] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000459519 [ 285.285565] RDX: 0000000020000000 RSI: 0000000020000180 RDI: 0000000000000000 [ 285.292886] RBP: 000000000075c070 R08: 0000000000000000 R09: 0000000000000000 [ 285.300141] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f41bb2286d4 [ 285.307442] R13: 00000000004c595e R14: 00000000004d9fe0 R15: 00000000ffffffff [ 285.314781] INFO: task syz-executor.2:7024 blocked for more than 140 seconds. [ 285.322116] Not tainted 4.14.174-syzkaller #0 [ 285.327135] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 285.335125] syz-executor.2 D28144 7024 6114 0x00000004 [ 285.340802] Call Trace: [ 285.343391] __schedule+0x780/0x1d20 [ 285.347092] ? pci_mmcfg_check_reserved+0x120/0x120 [ 285.352130] ? mark_held_locks+0xc7/0x130 [ 285.356821] ? _raw_spin_unlock_irq+0x27/0x80 [ 285.361355] schedule+0x7f/0x1b0 [ 285.364714] rwsem_down_write_failed+0x54f/0xb50 [ 285.369457] ? rwsem_down_read_failed+0x390/0x390 [ 285.374508] call_rwsem_down_write_failed+0x17/0x30 [ 285.379523] ? call_rwsem_down_write_failed+0x17/0x30 [ 285.384748] down_write+0x53/0x90 [ 285.388192] ? lock_mount+0x82/0x290 [ 285.391930] lock_mount+0x82/0x290 [ 285.395516] do_add_mount+0x22/0x310 [ 285.399248] do_mount+0x12cf/0x26a0 [ 285.402919] ? copy_mount_string+0x20/0x20 [ 285.407185] ? rcu_read_lock_sched_held+0x108/0x120 [ 285.412248] ? kmem_cache_alloc_trace+0x63e/0x7a0 [ 285.417082] ? kasan_check_write+0x14/0x20 [ 285.421358] ? copy_mount_options+0x55/0x270 [ 285.425816] SyS_mount+0xb8/0xd0 [ 285.429179] ? copy_mnt_ns+0xae0/0xae0 [ 285.433112] do_syscall_64+0x1c7/0x5b0 [ 285.436989] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 285.441870] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 285.447053] RIP: 0033:0x459519 [ 285.450221] RSP: 002b:00007f41bb206c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 285.457978] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000459519 [ 285.465309] RDX: 0000000020000240 RSI: 0000000020000200 RDI: 0000000000000000 [ 285.472622] RBP: 000000000075c118 R08: 0000000020000400 R09: 0000000000000000 [ 285.480003] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f41bb2076d4 [ 285.487422] R13: 00000000004c5932 R14: 00000000004da0a0 R15: 00000000ffffffff [ 285.494776] INFO: task syz-executor.2:7025 blocked for more than 140 seconds. [ 285.502089] Not tainted 4.14.174-syzkaller #0 [ 285.507086] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 285.515071] syz-executor.2 D28920 7025 6114 0x00000004 [ 285.520751] Call Trace: [ 285.523336] __schedule+0x780/0x1d20 [ 285.527048] ? pci_mmcfg_check_reserved+0x120/0x120 [ 285.532190] ? mark_held_locks+0xc7/0x130 [ 285.536365] ? _raw_spin_unlock_irq+0x27/0x80 [ 285.540916] ? rwsem_down_read_failed+0x1fc/0x390 [ 285.545751] ? rwsem_down_read_failed+0x1fc/0x390 [ 285.550636] schedule+0x7f/0x1b0 [ 285.554009] rwsem_down_read_failed+0x1fc/0x390 [ 285.558653] ? rwsem_down_write_failed_killable+0xd80/0xd80 [ 285.564394] ? trace_hardirqs_off+0x10/0x10 [ 285.568726] ? find_held_lock+0x36/0x1d0 [ 285.572832] call_rwsem_down_read_failed+0x18/0x30 [ 285.577751] down_read+0x49/0xb0 [ 285.581150] ? lookup_slow+0x123/0x3f0 [ 285.585029] lookup_slow+0x123/0x3f0 [ 285.588747] ? vfs_unlink+0x450/0x450 [ 285.592586] ? debug_lockdep_rcu_enabled+0x77/0x90 [ 285.597520] ? fuse_allow_current_process.part.29+0x13/0x240 [ 285.603383] walk_component+0x680/0x21a0 [ 285.607450] ? __inode_permission+0xae/0x2a0 [ 285.611945] ? path_init+0x17d0/0x17d0 [ 285.615838] ? link_path_walk+0x161/0x1540 [ 285.620130] ? path_init+0xf9e/0x17d0 [ 285.623958] ? walk_component+0x21a0/0x21a0 [ 285.628266] ? save_stack_trace+0x16/0x20 [ 285.632439] ? save_stack+0x43/0xd0 [ 285.636054] path_lookupat.isra.40+0x17f/0x810 [ 285.640668] ? path_parentat.isra.37+0x130/0x130 [ 285.645413] ? find_held_lock+0x36/0x1d0 [ 285.649452] filename_lookup.part.53+0x15b/0x340 [ 285.654227] ? filename_parentat.isra.51.part.52+0x3e0/0x3e0 [ 285.660024] ? __check_object_size+0x1b0/0x224 [ 285.664639] ? strncpy_from_user+0x80/0x260 [ 285.668960] ? getname_flags+0xf6/0x520 [ 285.673055] user_path_at_empty+0x39/0x40 [ 285.677192] vfs_statx+0xb6/0x130 [ 285.680675] ? vfs_statx_fd+0x90/0x90 [ 285.684470] ? kasan_check_read+0x11/0x20 [ 285.688597] ? _copy_to_user+0x91/0xb0 [ 285.692507] ? SyS_fstat+0x10/0x10 [ 285.696042] SYSC_newstat+0x7d/0xc0 [ 285.699643] ? cp_new_stat+0x590/0x590 [ 285.703572] ? SyS_clock_gettime+0x115/0x160 [ 285.707966] ? SyS_clock_settime+0x1a0/0x1a0 [ 285.712397] ? do_syscall_64+0x4c/0x5b0 [ 285.716377] ? trace_hardirqs_on_caller+0x40c/0x580 [ 285.721442] SyS_newstat+0x9/0x10 [ 285.724882] do_syscall_64+0x1c7/0x5b0 [ 285.728742] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 285.733610] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 285.738796] RIP: 0033:0x459519 [ 285.742039] RSP: 002b:00007f41bb1e5c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000004 [ 285.749736] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 0000000000459519 [ 285.757115] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000580 [ 285.764412] RBP: 000000000075c1c0 R08: 0000000000000000 R09: 0000000000000000 [ 285.771708] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f41bb1e66d4 [ 285.778965] R13: 00000000004e585b R14: 00000000004deb88 R15: 00000000ffffffff [ 285.786280] INFO: task syz-executor.3:7013 blocked for more than 140 seconds. [ 285.793599] Not tainted 4.14.174-syzkaller #0 [ 285.798606] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 285.806589] syz-executor.3 D27552 7013 6115 0x00000004 [ 285.812266] Call Trace: [ 285.814839] __schedule+0x780/0x1d20 [ 285.818526] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 285.823664] ? pci_mmcfg_check_reserved+0x120/0x120 [ 285.828664] ? autoremove_wake_function+0x160/0x160 [ 285.833713] schedule+0x7f/0x1b0 [ 285.837080] request_wait_answer+0x2e3/0x600 [ 285.841527] ? fuse_copy_one+0x110/0x110 [ 285.845585] ? lock_downgrade+0x7f0/0x7f0 [ 285.849730] ? finish_wait+0x290/0x290 [ 285.853694] ? do_raw_spin_unlock+0x16a/0x250 [ 285.858187] __fuse_request_send+0xff/0x190 [ 285.862546] fuse_request_send+0x48/0x60 [ 285.866603] fuse_simple_request+0x2b4/0x610 [ 285.871036] fuse_lookup_name+0x238/0x570 [ 285.875175] ? fuse_create+0x10/0x10 [ 285.878867] ? mutex_lock_nested+0x16/0x20 [ 285.883137] fuse_lookup+0xe4/0x380 [ 285.886771] ? fuse_lookup_name+0x570/0x570 [ 285.891127] lookup_slow+0x20f/0x3f0 [ 285.894832] ? vfs_unlink+0x450/0x450 [ 285.898612] ? debug_lockdep_rcu_enabled+0x77/0x90 [ 285.903577] ? fuse_allow_current_process.part.29+0x13/0x240 [ 285.909362] walk_component+0x680/0x21a0 [ 285.913447] ? __inode_permission+0xae/0x2a0 [ 285.917847] ? path_init+0x17d0/0x17d0 [ 285.921767] ? link_path_walk+0x161/0x1540 [ 285.925990] ? path_init+0xf9e/0x17d0 [ 285.929785] ? walk_component+0x21a0/0x21a0 [ 285.934187] ? save_stack_trace+0x16/0x20 [ 285.938328] ? save_stack+0x43/0xd0 [ 285.941994] path_lookupat.isra.40+0x17f/0x810 [ 285.946565] ? path_parentat.isra.37+0x130/0x130 [ 285.951346] ? find_held_lock+0x36/0x1d0 [ 285.955396] filename_lookup.part.53+0x15b/0x340 [ 285.960127] ? filename_parentat.isra.51.part.52+0x3e0/0x3e0 [ 285.965968] ? __check_object_size+0x1b0/0x224 [ 285.970593] ? strncpy_from_user+0x80/0x260 [ 285.974975] ? getname_flags+0xf6/0x520 [ 285.978928] user_path_at_empty+0x39/0x40 [ 285.983109] vfs_statx+0xb6/0x130 [ 285.986553] ? vfs_statx_fd+0x90/0x90 [ 285.990327] ? kasan_check_read+0x11/0x20 [ 285.994498] ? _copy_to_user+0x91/0xb0 [ 285.998381] ? SyS_fstat+0x10/0x10 [ 286.001959] SYSC_newstat+0x7d/0xc0 [ 286.005585] ? cp_new_stat+0x590/0x590 [ 286.009449] ? SyS_clock_gettime+0x115/0x160 [ 286.014006] ? SyS_clock_settime+0x1a0/0x1a0 [ 286.018429] ? do_syscall_64+0x4c/0x5b0 [ 286.022485] ? trace_hardirqs_on_caller+0x40c/0x580 [ 286.027497] SyS_newstat+0x9/0x10 [ 286.030976] do_syscall_64+0x1c7/0x5b0 [ 286.034860] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 286.039684] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 286.044973] RIP: 0033:0x459519 [ 286.048158] RSP: 002b:00007f95e89fdc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000004 [ 286.055919] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 0000000000459519 [ 286.063260] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000580 [ 286.070577] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 286.077838] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f95e89fe6d4 [ 286.085145] R13: 00000000004e585b R14: 00000000004deb88 R15: 00000000ffffffff [ 286.092503] INFO: task syz-executor.3:7018 blocked for more than 140 seconds. [ 286.099812] Not tainted 4.14.174-syzkaller #0 [ 286.104877] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.113049] syz-executor.3 D29328 7018 6115 0x00000004 [ 286.118671] Call Trace: [ 286.121307] __schedule+0x780/0x1d20 [ 286.125011] ? pci_mmcfg_check_reserved+0x120/0x120 [ 286.130016] ? mark_held_locks+0xc7/0x130 [ 286.134215] ? _raw_spin_unlock_irq+0x27/0x80 [ 286.138700] schedule+0x7f/0x1b0 [ 286.142107] rwsem_down_write_failed+0x54f/0xb50 [ 286.146876] ? rwsem_down_read_failed+0x390/0x390 [ 286.151740] ? avc_has_perm_noaudit+0x400/0x400 [ 286.156409] ? trace_hardirqs_off+0x10/0x10 [ 286.160788] ? find_held_lock+0x36/0x1d0 [ 286.164841] call_rwsem_down_write_failed+0x17/0x30 [ 286.169845] ? call_rwsem_down_write_failed+0x17/0x30 [ 286.175072] down_write+0x53/0x90 [ 286.178520] ? lock_mount+0x82/0x290 [ 286.182278] lock_mount+0x82/0x290 [ 286.185811] do_add_mount+0x22/0x310 [ 286.189500] do_mount+0x12cf/0x26a0 [ 286.193193] ? __might_fault+0xf1/0x1b0 [ 286.197165] ? copy_mount_string+0x20/0x20 [ 286.201450] ? kasan_check_write+0x14/0x20 [ 286.205679] ? _copy_from_user+0x9c/0xd0 [ 286.209803] ? memdup_user+0x4a/0x80 [ 286.213546] SyS_mount+0xb8/0xd0 [ 286.216903] ? copy_mnt_ns+0xae0/0xae0 [ 286.220834] do_syscall_64+0x1c7/0x5b0 [ 286.224801] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 286.229624] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 286.234849] RIP: 0033:0x459519 [ 286.238027] RSP: 002b:00007f95e89dcc78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 286.245766] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000459519 [ 286.253174] RDX: 0000000020000000 RSI: 0000000020000180 RDI: 0000000000000000 [ 286.260493] RBP: 000000000075bfc8 R08: 0000000000000000 R09: 0000000000000000 [ 286.267796] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f95e89dd6d4 [ 286.275103] R13: 00000000004c595e R14: 00000000004d9fe0 R15: 00000000ffffffff [ 286.282450] INFO: task syz-executor.3:7020 blocked for more than 140 seconds. [ 286.289717] Not tainted 4.14.174-syzkaller #0 [ 286.294774] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.303092] syz-executor.3 D29048 7020 6115 0x00000004 [ 286.308782] Call Trace: [ 286.311406] __schedule+0x780/0x1d20 [ 286.315116] ? pci_mmcfg_check_reserved+0x120/0x120 [ 286.320112] ? mark_held_locks+0xc7/0x130 [ 286.324300] ? _raw_spin_unlock_irq+0x27/0x80 [ 286.328856] schedule+0x7f/0x1b0 [ 286.332319] rwsem_down_write_failed+0x54f/0xb50 [ 286.337065] ? rwsem_down_read_failed+0x390/0x390 [ 286.341946] ? trace_hardirqs_off+0x10/0x10 [ 286.346254] ? find_held_lock+0x36/0x1d0 [ 286.350295] ? __lock_is_held+0xb5/0x140 [ 286.354581] call_rwsem_down_write_failed+0x17/0x30 [ 286.359592] ? call_rwsem_down_write_failed+0x17/0x30 [ 286.364814] down_write+0x53/0x90 [ 286.368266] ? fuse_reverse_inval_entry+0x92/0x5c0 [ 286.373237] fuse_reverse_inval_entry+0x92/0x5c0 [ 286.377985] ? lock_acquire+0x173/0x400 [ 286.382006] ? fuse_update_attributes+0xb0/0xb0 [ 286.386670] fuse_dev_do_write+0xe58/0x2310 [ 286.391023] ? try_to_wake_up+0xba/0xf80 [ 286.395079] ? fuse_dev_read+0x190/0x190 [ 286.399113] ? lock_downgrade+0x7f0/0x7f0 [ 286.403319] ? wake_up_q+0x9c/0xe0 [ 286.406850] ? futex_wake+0x10d/0x560 [ 286.410770] ? get_futex_key+0xef0/0xef0 [ 286.414835] ? memset+0x31/0x40 [ 286.418094] fuse_dev_write+0x11a/0x180 [ 286.422105] ? fuse_dev_splice_write+0x9f0/0x9f0 [ 286.426855] __vfs_write+0x413/0x840 [ 286.430593] ? kernel_read+0x130/0x130 [ 286.434477] ? selinux_file_permission+0x31f/0x3e0 [ 286.439404] ? rw_verify_area+0xb8/0x2b0 [ 286.443522] vfs_write+0x150/0x4f0 [ 286.447088] SyS_write+0x100/0x250 [ 286.450704] ? SyS_read+0x250/0x250 [ 286.454327] ? do_syscall_64+0x4c/0x5b0 [ 286.458340] ? SyS_read+0x250/0x250 [ 286.462016] do_syscall_64+0x1c7/0x5b0 [ 286.465891] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 286.470888] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 286.476104] RIP: 0033:0x459519 [ 286.479271] RSP: 002b:00007f95e89bbc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 286.487055] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000459519 [ 286.494359] RDX: 000000000000002e RSI: 0000000020000000 RDI: 0000000000000003 [ 286.501671] RBP: 000000000075c070 R08: 0000000000000000 R09: 0000000000000000 [ 286.508927] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f95e89bc6d4 [ 286.516299] R13: 00000000004c8d0e R14: 00000000004dfc50 R15: 00000000ffffffff [ 286.523656] INFO: task syz-executor.3:7071 blocked for more than 140 seconds. [ 286.530980] Not tainted 4.14.174-syzkaller #0 [ 286.535982] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.543970] syz-executor.3 D28304 7071 6115 0x00000006 [ 286.549592] Call Trace: [ 286.552213] __schedule+0x780/0x1d20 [ 286.555923] ? pci_mmcfg_check_reserved+0x120/0x120 [ 286.560974] ? mark_held_locks+0xc7/0x130 [ 286.565115] ? _raw_spin_unlock_irq+0x27/0x80 [ 286.569588] schedule+0x7f/0x1b0 [ 286.572979] rwsem_down_write_failed+0x54f/0xb50 [ 286.577727] ? rwsem_down_read_failed+0x390/0x390 [ 286.582621] call_rwsem_down_write_failed+0x17/0x30 [ 286.587684] ? call_rwsem_down_write_failed+0x17/0x30 [ 286.592912] down_write+0x53/0x90 [ 286.596354] ? lock_mount+0x82/0x290 [ 286.600041] lock_mount+0x82/0x290 [ 286.603620] do_add_mount+0x22/0x310 [ 286.607386] do_mount+0x12cf/0x26a0 [ 286.611035] ? copy_mount_string+0x20/0x20 [ 286.615259] ? rcu_read_lock_sched_held+0x108/0x120 [ 286.620251] ? kmem_cache_alloc_trace+0x63e/0x7a0 [ 286.625121] ? kasan_check_write+0x14/0x20 [ 286.629345] ? copy_mount_options+0x55/0x270 [ 286.633777] SyS_mount+0xb8/0xd0 [ 286.637130] ? copy_mnt_ns+0xae0/0xae0 [ 286.641054] do_syscall_64+0x1c7/0x5b0 [ 286.644925] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 286.649768] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 286.655131] RIP: 0033:0x459519 [ 286.658321] RSP: 002b:00007f95e899ac78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 286.666049] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000459519 [ 286.673346] RDX: 0000000020000240 RSI: 0000000020000200 RDI: 0000000000000000 [ 286.680652] RBP: 000000000075c118 R08: 0000000020000400 R09: 0000000000000000 [ 286.687928] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f95e899b6d4 [ 286.695229] R13: 00000000004c5932 R14: 00000000004da0a0 R15: 00000000ffffffff [ 286.702572] INFO: task syz-executor.3:7072 blocked for more than 140 seconds. [ 286.709829] Not tainted 4.14.174-syzkaller #0 [ 286.714860] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.722882] syz-executor.3 D27920 7072 6115 0x00000004 [ 286.728511] Call Trace: [ 286.731128] __schedule+0x780/0x1d20 [ 286.734830] ? pci_mmcfg_check_reserved+0x120/0x120 [ 286.739820] ? mark_held_locks+0xc7/0x130 [ 286.743993] ? _raw_spin_unlock_irq+0x27/0x80 [ 286.748478] ? rwsem_down_read_failed+0x1fc/0x390 [ 286.753395] ? rwsem_down_read_failed+0x1fc/0x390 [ 286.758228] schedule+0x7f/0x1b0 [ 286.761631] rwsem_down_read_failed+0x1fc/0x390 [ 286.766286] ? rwsem_down_write_failed_killable+0xd80/0xd80 [ 286.772021] ? trace_hardirqs_off+0x10/0x10 [ 286.776334] ? find_held_lock+0x36/0x1d0 [ 286.780425] call_rwsem_down_read_failed+0x18/0x30 [ 286.785343] down_read+0x49/0xb0 [ 286.788688] ? lookup_slow+0x123/0x3f0 [ 286.792662] lookup_slow+0x123/0x3f0 [ 286.796372] ? vfs_unlink+0x450/0x450 [ 286.800166] ? debug_lockdep_rcu_enabled+0x77/0x90 [ 286.805119] ? fuse_allow_current_process.part.29+0x13/0x240 [ 286.810965] walk_component+0x680/0x21a0 [ 286.815016] ? __inode_permission+0xae/0x2a0 [ 286.819411] ? path_init+0x17d0/0x17d0 [ 286.823328] ? link_path_walk+0x161/0x1540 [ 286.827544] ? path_init+0xf9e/0x17d0 [ 286.831367] ? walk_component+0x21a0/0x21a0 [ 286.835688] ? save_stack_trace+0x16/0x20 [ 286.839813] ? save_stack+0x43/0xd0 [ 286.843473] path_lookupat.isra.40+0x17f/0x810 [ 286.848042] ? path_parentat.isra.37+0x130/0x130 [ 286.852824] ? trace_hardirqs_off+0x10/0x10 [ 286.857135] ? find_held_lock+0x36/0x1d0 [ 286.861228] filename_lookup.part.53+0x15b/0x340 [ 286.865973] ? filename_parentat.isra.51.part.52+0x3e0/0x3e0 [ 286.871794] ? __check_object_size+0x1b0/0x224 [ 286.876365] ? strncpy_from_user+0x80/0x260 [ 286.880717] ? find_held_lock+0x36/0x1d0 [ 286.884770] ? getname_flags+0xf6/0x520 [ 286.888912] user_path_at_empty+0x39/0x40 [ 286.893079] vfs_statx+0xb6/0x130 [ 286.896544] ? vfs_statx_fd+0x90/0x90 [ 286.900368] ? kasan_check_read+0x11/0x20 [ 286.904501] ? _copy_to_user+0x91/0xb0 [ 286.908384] ? SyS_fstat+0x10/0x10 [ 286.911963] SYSC_newstat+0x7d/0xc0 [ 286.915589] ? cp_new_stat+0x590/0x590 [ 286.919470] ? SyS_clock_gettime+0x115/0x160 [ 286.923917] ? SyS_clock_settime+0x1a0/0x1a0 [ 286.928330] ? do_syscall_64+0x4c/0x5b0 [ 286.932329] ? trace_hardirqs_on_caller+0x40c/0x580 [ 286.937338] SyS_newstat+0x9/0x10 [ 286.940833] do_syscall_64+0x1c7/0x5b0 [ 286.944757] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 286.949580] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 286.954832] RIP: 0033:0x459519 [ 286.958010] RSP: 002b:00007f95e8979c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000004 [ 286.965820] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 0000000000459519 [ 286.973290] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000580 [ 286.980631] RBP: 000000000075c1c0 R08: 0000000000000000 R09: 0000000000000000 [ 286.987899] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f95e897a6d4 [ 286.995219] R13: 00000000004e585b R14: 00000000004deb88 R15: 00000000ffffffff [ 287.002584] [ 287.002584] Showing all locks held in the system: [ 287.009013] 1 lock held by khungtaskd/1012: [ 287.013495] #0: (tasklist_lock){.+.+}, at: [] debug_show_all_locks+0x79/0x218 [ 287.022737] 1 lock held by in:imklog/5602: [ 287.026959] #0: (&f->f_pos_lock){+.+.}, at: [] __fdget_pos+0x8e/0xc0 [ 287.035250] 2 locks held by syz-executor.2/6989: [ 287.039999] #0: (&type->i_mutex_dir_key#8){++++}, at: [] lookup_slow+0x123/0x3f0 [ 287.049396] #1: (&fi->mutex){+.+.}, at: [] fuse_lock_inode+0x9f/0xd0 [ 287.057758] 2 locks held by syz-executor.2/6994: [ 287.062576] #0: (&fc->killsb){.+.+}, at: [] fuse_dev_do_write+0x1988/0x2310 [ 287.071575] #1: (&type->i_mutex_dir_key#8){++++}, at: [] fuse_reverse_inval_entry+0x92/0x5c0 [ 287.081961] 1 lock held by syz-executor.2/6999: [ 287.086626] #0: (&type->i_mutex_dir_key#8){++++}, at: [] lock_mount+0x82/0x290 [ 287.095796] 1 lock held by syz-executor.2/7024: [ 287.100527] #0: (&type->i_mutex_dir_key#8){++++}, at: [] lock_mount+0x82/0x290 [ 287.109643] 1 lock held by syz-executor.2/7025: [ 287.114481] #0: (&type->i_mutex_dir_key#8){++++}, at: [] lookup_slow+0x123/0x3f0 [ 287.123846] 2 locks held by syz-executor.3/7013: [ 287.128628] #0: (&type->i_mutex_dir_key#8){++++}, at: [] lookup_slow+0x123/0x3f0 [ 287.137968] #1: (&fi->mutex){+.+.}, at: [] fuse_lock_inode+0x9f/0xd0 [ 287.146283] 1 lock held by syz-executor.3/7018: [ 287.150988] #0: (&type->i_mutex_dir_key#8){++++}, at: [] lock_mount+0x82/0x290 [ 287.160101] 2 locks held by syz-executor.3/7020: [ 287.164902] #0: (&fc->killsb){.+.+}, at: [] fuse_dev_do_write+0x1988/0x2310 [ 287.173814] #1: (&type->i_mutex_dir_key#8){++++}, at: [] fuse_reverse_inval_entry+0x92/0x5c0 [ 287.184271] 1 lock held by syz-executor.3/7071: [ 287.188929] #0: (&type->i_mutex_dir_key#8){++++}, at: [] lock_mount+0x82/0x290 [ 287.198134] 1 lock held by syz-executor.3/7072: [ 287.202865] #0: (&type->i_mutex_dir_key#8){++++}, at: [] lookup_slow+0x123/0x3f0 [ 287.212248] 2 locks held by syz-executor.5/7035: [ 287.217005] #0: (&type->i_mutex_dir_key#8){++++}, at: [] lookup_slow+0x123/0x3f0 [ 287.226339] #1: (&fi->mutex){+.+.}, at: [] fuse_lock_inode+0x9f/0xd0 [ 287.234636] 2 locks held by syz-executor.5/7040: [ 287.239375] #0: (&fc->killsb){.+.+}, at: [] fuse_dev_do_write+0x1988/0x2310 [ 287.248353] #1: (&type->i_mutex_dir_key#8){++++}, at: [] fuse_reverse_inval_entry+0x92/0x5c0 [ 287.258802] 1 lock held by syz-executor.5/7043: [ 287.263552] #0: (&type->i_mutex_dir_key#8){++++}, at: [] lock_mount+0x82/0x290 [ 287.272724] 1 lock held by syz-executor.5/7079: [ 287.277380] #0: (&type->i_mutex_dir_key#8){++++}, at: [] lock_mount+0x82/0x290 [ 287.286536] 1 lock held by syz-executor.5/7080: [ 287.291251] #0: (&type->i_mutex_dir_key#8){++++}, at: [] lookup_slow+0x123/0x3f0 [ 287.300611] 2 locks held by syz-executor.4/7052: [ 287.305463] #0: (&type->i_mutex_dir_key#8){++++}, at: [] lookup_slow+0x123/0x3f0 [ 287.314791] #1: (&fi->mutex){+.+.}, at: [] fuse_lock_inode+0x9f/0xd0 [ 287.323107] 2 locks held by syz-executor.4/7058: [ 287.327847] #0: (&fc->killsb){.+.+}, at: [] fuse_dev_do_write+0x1988/0x2310 [ 287.336856] #1: (&type->i_mutex_dir_key#8){++++}, at: [] fuse_reverse_inval_entry+0x92/0x5c0 [ 287.347252] 1 lock held by syz-executor.4/7060: [ 287.351945] #0: (&type->i_mutex_dir_key#8){++++}, at: [] lock_mount+0x82/0x290 [ 287.361123] 1 lock held by syz-executor.4/7086: [ 287.365782] #0: (&type->i_mutex_dir_key#8){++++}, at: [] lock_mount+0x82/0x290 [ 287.374990] 1 lock held by syz-executor.4/7087: [ 287.379649] #0: (&type->i_mutex_dir_key#8){++++}, at: [] lookup_slow+0x123/0x3f0 [ 287.389001] 2 locks held by syz-executor.0/7061: [ 287.393803] #0: (&type->i_mutex_dir_key#8){++++}, at: [] lookup_slow+0x123/0x3f0 [ 287.403147] #1: (&fi->mutex){+.+.}, at: [] fuse_lock_inode+0x9f/0xd0 [ 287.411479] 2 locks held by syz-executor.0/7070: [ 287.416221] #0: (&fc->killsb){.+.+}, at: [] fuse_dev_do_write+0x1988/0x2310 [ 287.425105] #1: (&type->i_mutex_dir_key#8){++++}, at: [] fuse_reverse_inval_entry+0x92/0x5c0 [ 287.435505] 1 lock held by syz-executor.0/7077: [ 287.440166] #0: (&type->i_mutex_dir_key#8){++++}, at: [] lock_mount+0x82/0x290 [ 287.449442] 1 lock held by syz-executor.0/7094: [ 287.454224] #0: (&type->i_mutex_dir_key#8){++++}, at: [] lock_mount+0x82/0x290 [ 287.463382] 1 lock held by syz-executor.0/7095: [ 287.468034] #0: (&type->i_mutex_dir_key#8){++++}, at: [] lookup_slow+0x123/0x3f0 [ 287.477344] 2 locks held by syz-executor.1/7101: [ 287.482140] #0: (&type->i_mutex_dir_key#8){++++}, at: [] lookup_slow+0x123/0x3f0 [ 287.491457] #1: (&fi->mutex){+.+.}, at: [] fuse_lock_inode+0x9f/0xd0 [ 287.499691] 1 lock held by syz-executor.1/7106: [ 287.504417] #0: (&type->i_mutex_dir_key#8){++++}, at: [] lock_mount+0x82/0x290 [ 287.513584] 2 locks held by syz-executor.1/7107: [ 287.518322] #0: (&fc->killsb){.+.+}, at: [] fuse_dev_do_write+0x1988/0x2310 [ 287.527208] #1: (&type->i_mutex_dir_key#8){++++}, at: [] fuse_reverse_inval_entry+0x92/0x5c0 [ 287.537588] 1 lock held by syz-executor.1/7108: [ 287.542296] #0: (&type->i_mutex_dir_key#8){++++}, at: [] lock_mount+0x82/0x290 [ 287.551461] 1 lock held by syz-executor.1/7109: [ 287.556113] #0: (&type->i_mutex_dir_key#8){++++}, at: [] lookup_slow+0x123/0x3f0 [ 287.565462] [ 287.567082] ============================================= [ 287.567082] [ 287.574621] NMI backtrace for cpu 1 [ 287.578262] CPU: 1 PID: 1012 Comm: khungtaskd Not tainted 4.14.174-syzkaller #0 [ 287.585747] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 287.595088] Call Trace: [ 287.597755] dump_stack+0xf7/0x13b [ 287.601280] nmi_cpu_backtrace.cold.4+0x3e/0x76 [ 287.605933] ? irq_force_complete_move.cold.16+0x64/0x64 [ 287.611374] nmi_trigger_cpumask_backtrace+0xe5/0x119 [ 287.616554] arch_trigger_cpumask_backtrace+0x14/0x20 [ 287.621722] watchdog+0x522/0xb40 [ 287.625153] ? trace_hardirqs_on_caller+0x40c/0x580 [ 287.630147] kthread+0x338/0x400 [ 287.633486] ? hungtask_pm_notify+0x40/0x40 [ 287.637794] ? kthread_create_on_node+0xa0/0xa0 [ 287.642437] ret_from_fork+0x24/0x30 [ 287.646319] Sending NMI from CPU 1 to CPUs 0: [ 287.651094] NMI backtrace for cpu 0 [ 287.651095] CPU: 0 PID: 789 Comm: kworker/u4:3 Not tainted 4.14.174-syzkaller #0 [ 287.651098] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 287.651099] Workqueue: bat_events batadv_nc_worker [ 287.651101] task: ffff8880a8b58180 task.stack: ffff8880a8b60000 [ 287.651102] RIP: 0010:__lock_acquire+0x1e7/0x4500 [ 287.651103] RSP: 0018:ffff8880a8b67a20 EFLAGS: 00000002 [ 287.651106] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 287.651107] RDX: 1ffff11013fb8452 RSI: 0000000000000000 RDI: ffffffff87916980 [ 287.651109] RBP: ffff8880a8b67bf0 R08: 0000000000000001 R09: 0000000000000000 [ 287.651110] R10: 0000000000000001 R11: ffff8880a8b58180 R12: ffff88809fdc2290 [ 287.651111] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000000 [ 287.651113] FS: 0000000000000000(0000) GS:ffff8880aee00000(0000) knlGS:0000000000000000 [ 287.651114] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 287.651116] CR2: 00007f998b478000 CR3: 000000009555b000 CR4: 00000000001406f0 [ 287.651117] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 287.651118] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 287.651119] Call Trace: [ 287.651120] ? trace_hardirqs_on+0x10/0x10 [ 287.651122] ? trace_hardirqs_off+0x10/0x10 [ 287.651123] ? __lock_acquire+0x6a4/0x4500 [ 287.651124] ? find_held_lock+0x36/0x1d0 [ 287.651125] lock_acquire+0x173/0x400 [ 287.651126] ? batadv_nc_purge_paths+0xc0/0x2f0 [ 287.651127] ? batadv_nc_to_purge_nc_path_coding+0x140/0x140 [ 287.651128] _raw_spin_lock_bh+0x31/0x40 [ 287.651129] ? batadv_nc_purge_paths+0xc0/0x2f0 [ 287.651130] batadv_nc_purge_paths+0xc0/0x2f0 [ 287.651131] batadv_nc_worker+0x228/0x630 [ 287.651133] process_one_work+0x79e/0x16c0 [ 287.651134] ? pwq_dec_nr_in_flight+0x2b0/0x2b0 [ 287.651135] worker_thread+0xcc/0xee0 [ 287.651136] kthread+0x338/0x400 [ 287.651137] ? process_one_work+0x16c0/0x16c0 [ 287.651138] ? kthread_create_on_node+0xa0/0xa0 [ 287.651139] ret_from_fork+0x24/0x30 [ 287.651140] Code: 41 5d 41 5e 41 5f 5d c3 48 b8 00 00 00 00 00 fc ff df 4c 89 e2 48 c1 ea 03 80 3c 02 00 0f 85 f2 30 00 00 49 81 3c 24 60 b2 7a 88 <0f> 84 30 ff ff ff 83 fe 01 0f 87 33 ff ff ff 48 b8 00 00 00 00 [ 287.651906] Kernel panic - not syncing: hung_task: blocked tasks [ 287.870310] CPU: 1 PID: 1012 Comm: khungtaskd Not tainted 4.14.174-syzkaller #0 [ 287.877727] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 287.887142] Call Trace: [ 287.889708] dump_stack+0xf7/0x13b [ 287.893227] panic+0x1b0/0x358 [ 287.896390] ? add_taint.cold.5+0x11/0x11 [ 287.900515] watchdog+0x533/0xb40 [ 287.903941] ? trace_hardirqs_on_caller+0x40c/0x580 [ 287.908932] kthread+0x338/0x400 [ 287.912302] ? hungtask_pm_notify+0x40/0x40 [ 287.916605] ? kthread_create_on_node+0xa0/0xa0 [ 287.921348] ret_from_fork+0x24/0x30 [ 287.928077] Kernel Offset: disabled [ 287.931707] Rebooting in 86400 seconds..