INIT: Id "3" respawning too fast: disabled for 5 minutes
INIT: Id "6" respawning too fast: disabled for 5 minutes
INIT: Id "4" respawning too fast: disabled for 5 minutes
INIT: Id "2" respawning too fast: disabled for 5 minutes
INIT: Id "5" respawning too fast: disabled for 5 minutes
[  851.111170] random: sshd: uninitialized urandom read (32 bytes read)
Warning: Permanently added '10.128.0.20' (ECDSA) to the list of known hosts.
[  856.544266] random: sshd: uninitialized urandom read (32 bytes read)
executing program
[  856.644190] audit: type=1400 audit(1571028764.873:7): avc:  denied  { map } for  pid=1909 comm="syz-executor432" path="/root/syz-executor432687371" dev="sda1" ino=16481 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1
INIT: Id "1" respawning too fast: disabled for 5 minutes
INIT: Id "3" respawning too fast: disabled for 5 minutes
INIT: Id "2" respawning too fast: disabled for 5 minutes
INIT: Id "6" respawning too fast: disabled for 5 minutes
INIT: Id "4" respawning too fast: disabled for 5 minutes
INIT: Id "5" respawning too fast: disabled for 5 minutes
[ 1144.790110] INFO: task kworker/0:1:22 blocked for more than 140 seconds.
[ 1144.797182]       Not tainted 4.14.149+ #0
[ 1144.802879] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1144.810985] kworker/0:1     D27344    22      2 0x80000000
[ 1144.816856] Workqueue: ipv6_addrconf addrconf_verify_work
[ 1144.822810] Call Trace:
[ 1144.825565]  ? __schedule+0x88c/0x1f80
[ 1144.829729]  ? __sched_text_start+0x8/0x8
[ 1144.834470]  ? lock_downgrade+0x630/0x630
[ 1144.838662]  ? lock_acquire+0x12b/0x360
[ 1144.843060]  ? __mutex_lock+0x2dc/0x13e0
[ 1144.847147]  schedule+0x92/0x1c0
[ 1144.850938]  schedule_preempt_disabled+0x13/0x20
[ 1144.855801]  __mutex_lock+0x595/0x13e0
[ 1144.860542]  ? addrconf_verify_work+0xa/0x20
[ 1144.865070]  ? __ww_mutex_wakeup_for_backoff+0x210/0x210
[ 1144.870963]  ? debug_object_deactivate+0x1e4/0x360
[ 1144.876179]  ? lock_acquire+0x12b/0x360
[ 1144.880488]  ? check_preemption_disabled+0x35/0x1f0
[ 1144.885697]  ? addrconf_verify_work+0xa/0x20
[ 1144.890437]  addrconf_verify_work+0xa/0x20
[ 1144.894763]  process_one_work+0x7f1/0x1580
[ 1144.899102]  ? pwq_dec_nr_in_flight+0x2c0/0x2c0
[ 1144.904158]  worker_thread+0xdd/0xdf0
[ 1144.908000]  ? process_one_work+0x1580/0x1580
[ 1144.912971]  kthread+0x31f/0x430
[ 1144.916360]  ? kthread_create_on_node+0xf0/0xf0
[ 1144.921412]  ret_from_fork+0x3a/0x50
[ 1144.925170] 
[ 1144.925170] Showing all locks held in the system:
[ 1144.931843] 3 locks held by kworker/0:1/22:
[ 1144.936221]  #0:  ("%s"("ipv6_addrconf")){+.+.}, at: [<        (ptrval)>] process_one_work+0x6ff/0x1580
[ 1144.945856]  #1:  ((addr_chk_work).work){+.+.}, at: [<        (ptrval)>] process_one_work+0x735/0x1580
[ 1144.955970]  #2:  (rtnl_mutex){+.+.}, at: [<        (ptrval)>] addrconf_verify_work+0xa/0x20
[ 1144.964799] 1 lock held by khungtaskd/23:
[ 1144.968953]  #0:  (tasklist_lock){.+.+}, at: [<        (ptrval)>] debug_show_all_locks+0x7c/0x21a
[ 1144.978658] 2 locks held by getty/1756:
[ 1144.982657]  #0:  (&tty->ldisc_sem){++++}, at: [<        (ptrval)>] tty_ldisc_ref_wait+0x22/0x80
[ 1144.991827]  #1:  (&ldata->atomic_read_lock){+.+.}, at: [<        (ptrval)>] n_tty_read+0x1f7/0x1700
[ 1145.001169] 
[ 1145.002797] =============================================
[ 1145.002797] 
[ 1145.011858] NMI backtrace for cpu 1
[ 1145.015609] CPU: 1 PID: 23 Comm: khungtaskd Not tainted 4.14.149+ #0
[ 1145.022198] Call Trace:
[ 1145.024960]  dump_stack+0xca/0x134
[ 1145.028558]  ? irq_force_complete_move+0x281/0x2e5
[ 1145.033517]  nmi_cpu_backtrace.cold+0x47/0x86
[ 1145.038142]  ? irq_force_complete_move.cold+0x7b/0x7b
[ 1145.043621]  nmi_trigger_cpumask_backtrace+0x119/0x147
[ 1145.049005]  watchdog+0x629/0xbe0
[ 1145.052572]  ? reset_hung_task_detector+0x30/0x30
[ 1145.057427]  kthread+0x31f/0x430
[ 1145.060796]  ? kthread_create_on_node+0xf0/0xf0
[ 1145.065472]  ret_from_fork+0x3a/0x50
[ 1145.069319] Sending NMI from CPU 1 to CPUs 0:
[ 1145.074822] NMI backtrace for cpu 0
[ 1145.074826] CPU: 0 PID: 1910 Comm: syz-executor432 Not tainted 4.14.149+ #0
[ 1145.074829] task:         (ptrval) task.stack:         (ptrval)
[ 1145.074831] RIP: 0010:unwind_next_frame+0x101/0x1810
[ 1145.074833] RSP: 0018:ffff8881c9e070b0 EFLAGS: 00000246
[ 1145.074838] RAX: ffff8881c9e071d0 RBX: ffff8881c9e07180 RCX: 0000000000000000
[ 1145.074841] RDX: ffff8881c9e071d0 RSI: 0000000000000000 RDI: ffff8881cb619128
[ 1145.074843] RBP: 1ffff110393c0e1d R08: 0000000000000001 R09: ffff8881c9e07a58
[ 1145.074846] R10: ffff8881c9e071b5 R11: 000000000001c033 R12: 0000000000000000
[ 1145.074849] R13: ffff8881c9e071b8 R14: ffff8881cb618000 R15: 0000000000000001
[ 1145.074852] FS:  0000000000c91880(0000) GS:ffff8881dba00000(0000) knlGS:0000000000000000
[ 1145.074855] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1145.074858] CR2: 0000000000abe000 CR3: 00000001caefa002 CR4: 00000000001606b0
[ 1145.074860] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1145.074863] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1145.074865] Call Trace:
[ 1145.074867]  ? netlink_sendmsg+0x66a/0xbe0
[ 1145.074869]  ? deref_stack_reg+0xe0/0xe0
[ 1145.074871]  ? lock_downgrade+0x630/0x630
[ 1145.074873]  ? lock_acquire+0x12b/0x360
[ 1145.074875]  ? __free_insn_slot+0x490/0x490
[ 1145.074877]  __save_stack_trace+0x7a/0xf0
[ 1145.074879]  ? sock_sendmsg+0xb7/0x100
[ 1145.074881]  __kasan_kmalloc.part.0+0x53/0xc0
[ 1145.074883]  ? __kasan_kmalloc.part.0+0x53/0xc0
[ 1145.074885]  ? __kmalloc_track_caller+0x10d/0x390
[ 1145.074887]  ? __kmalloc_reserve.isra.0+0x2d/0xc0
[ 1145.074888]  ? pskb_expand_head+0x11e/0xc10
[ 1145.074890]  ? netlink_trim+0x1f6/0x270
[ 1145.074892]  ? netlink_broadcast_filtered+0x5f/0xa00
[ 1145.074894]  ? netlink_broadcast+0x35/0x40
[ 1145.074896]  ? rtnetlink_send+0xcb/0x100
[ 1145.074897]  ? tc_ctl_action+0x420/0x526
[ 1145.074899]  ? rtnetlink_rcv_msg+0x3d3/0xb40
[ 1145.074901]  ? netlink_rcv_skb+0x137/0x3a0
[ 1145.074903]  ? netlink_unicast+0x478/0x650
[ 1145.074905]  ? netlink_sendmsg+0x66a/0xbe0
[ 1145.074907]  ? sock_sendmsg+0xb7/0x100
[ 1145.074908]  ? __kasan_kmalloc.part.0+0x53/0xc0
[ 1145.074910]  ? kmem_cache_alloc+0xee/0x360
[ 1145.074912]  ? skb_clone+0x124/0x370
[ 1145.074913]  ? netlink_trim+0x1be/0x270
[ 1145.074916]  ? netlink_broadcast_filtered+0x5f/0xa00
[ 1145.074917]  ? netlink_broadcast+0x35/0x40
[ 1145.074919]  ? rtnetlink_send+0xcb/0x100
[ 1145.074921]  ? tc_ctl_action+0x420/0x526
[ 1145.074923]  ? rtnetlink_rcv_msg+0x3d3/0xb40
[ 1145.074924]  ? netlink_rcv_skb+0x137/0x3a0
[ 1145.074926]  ? ___slab_alloc.constprop.0+0x234/0x4e0
[ 1145.074929]  ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
[ 1145.074930]  ? tc_ctl_action+0x347/0x526
[ 1145.074933]  ? pskb_expand_head+0x11e/0xc10
[ 1145.074935]  ? netlink_rcv_skb+0x137/0x3a0
[ 1145.074937]  ? netlink_unicast+0x478/0x650
[ 1145.074938]  ? netlink_sendmsg+0x66a/0xbe0
[ 1145.074940]  ? ___sys_sendmsg+0x752/0x890
[ 1145.074942]  ? mark_held_locks+0xa6/0xf0
[ 1145.074944]  ? SyS_sendmsg+0x27/0x40
[ 1145.074946]  ? __slab_alloc.isra.0.constprop.0+0x76/0x90
[ 1145.074948]  ? kasan_unpoison_shadow+0x30/0x40
[ 1145.074950]  ? __kasan_kmalloc.constprop.0+0x76/0xc0
[ 1145.074952]  __kmalloc_track_caller+0x10d/0x390
[ 1145.074954]  ? pskb_expand_head+0x11e/0xc10
[ 1145.074956]  __kmalloc_reserve.isra.0+0x2d/0xc0
[ 1145.074957]  pskb_expand_head+0x11e/0xc10
[ 1145.074959]  ? kmem_cache_alloc+0x2c0/0x360
[ 1145.074961]  netlink_trim+0x1f6/0x270
[ 1145.074963]  netlink_broadcast_filtered+0x5f/0xa00
[ 1145.074964]  ? refcount_inc_not_zero+0xf5/0x170
[ 1145.074966]  ? refcount_add_not_zero+0x1a0/0x1a0
[ 1145.074968]  ? tcf_action_dump+0x1b6/0x2d0
[ 1145.074970]  netlink_broadcast+0x35/0x40
[ 1145.074972]  rtnetlink_send+0xcb/0x100
[ 1145.074973]  tc_ctl_action+0x420/0x526
[ 1145.074975]  ? tca_action_gd+0x7f0/0x7f0
[ 1145.074977]  ? lock_acquire+0x12b/0x360
[ 1145.074979]  ? check_preemption_disabled+0x35/0x1f0
[ 1145.074981]  ? check_preemption_disabled+0x35/0x1f0
[ 1145.074982]  ? tca_action_gd+0x7f0/0x7f0
[ 1145.074984]  rtnetlink_rcv_msg+0x3d3/0xb40
[ 1145.074986]  ? rtnl_calcit.isra.0+0x3d0/0x3d0
[ 1145.074988]  ? __netlink_lookup+0x348/0x600
[ 1145.074990]  ? lock_downgrade+0x630/0x630
[ 1145.074991]  netlink_rcv_skb+0x137/0x3a0
[ 1145.074993]  ? rtnl_calcit.isra.0+0x3d0/0x3d0
[ 1145.074995]  ? netlink_ack+0x980/0x980
[ 1145.074997]  ? netlink_deliver_tap+0x9f/0x8a0
[ 1145.074998]  netlink_unicast+0x478/0x650
[ 1145.075000]  ? netlink_sendskb+0x60/0x60
[ 1145.075002]  netlink_sendmsg+0x66a/0xbe0
[ 1145.075003]  ? nlmsg_notify+0x170/0x170
[ 1145.075005]  ? move_addr_to_kernel.part.0+0xf0/0xf0
[ 1145.075007]  ? nlmsg_notify+0x170/0x170
[ 1145.075009]  sock_sendmsg+0xb7/0x100
[ 1145.075010]  ___sys_sendmsg+0x752/0x890
[ 1145.075012]  ? trace_hardirqs_on+0x10/0x10
[ 1145.075014]  ? copy_msghdr_from_user+0x3b0/0x3b0
[ 1145.075016]  ? mark_held_locks+0xa6/0xf0
[ 1145.075018]  ? __handle_mm_fault+0xdd0/0x2700
[ 1145.075020]  ? lock_downgrade+0x630/0x630
[ 1145.075021]  ? __lru_cache_add+0x194/0x270
[ 1145.075023]  ? do_raw_spin_unlock+0x50/0x220
[ 1145.075025]  ? _raw_spin_unlock+0x29/0x40
[ 1145.075027]  ? __handle_mm_fault+0x6e4/0x2700
[ 1145.075029]  ? vm_insert_mixed_mkwrite+0x30/0x30
[ 1145.075031]  ? sock_setsockopt+0x176/0x1a80
[ 1145.075032]  ? __fget_light+0x174/0x200
[ 1145.075034]  __sys_sendmsg+0xb6/0x150
[ 1145.075036]  ? SyS_shutdown+0x190/0x190
[ 1145.075037]  ? lock_downgrade+0x630/0x630
[ 1145.075039]  ? __do_page_fault+0x677/0xbb0
[ 1145.075041]  SyS_sendmsg+0x27/0x40
[ 1145.075043]  ? __sys_sendmsg+0x150/0x150
[ 1145.075044]  do_syscall_64+0x19b/0x520
[ 1145.075046]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[ 1145.075048] RIP: 0033:0x441799
[ 1145.075050] RSP: 002b:00007ffc5183eb18 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1145.075055] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441799
[ 1145.075057] RDX: 0000000020000010 RSI: 0000000020001480 RDI: 0000000000000003
[ 1145.075060] RBP: 00000000006cc018 R08: 00000000004002c8 R09: 00000000004002c8
[ 1145.075063] R10: 0000000000000004 R11: 0000000000000246 R12: 00000000004025c0
[ 1145.075065] R13: 0000000000402650 R14: 0000000000000000 R15: 0000000000000000
[ 1145.075066] Code: c1 ea 03 80 3c 02 00 0f 85 08 11 00 00 48 8b 43 38 bf 01 00 00 00 48 89 44 24 08 e8 9a 73 0b 00 48 8d 43 50 48 89 c2 48 89 04 24 <48> b8 00 00 00 00 00 fc ff df 48 c1 ea 03 80 3c 02 00 0f 85 df 
[ 1145.080825] Kernel panic - not syncing: hung_task: blocked tasks
[ 1145.679795] CPU: 1 PID: 23 Comm: khungtaskd Not tainted 4.14.149+ #0
[ 1145.686284] Call Trace:
[ 1145.688876]  dump_stack+0xca/0x134
[ 1145.692458]  panic+0x1ea/0x3d3
[ 1145.695657]  ? add_taint.cold+0x16/0x16
[ 1145.699633]  ? irq_force_complete_move.cold+0x7b/0x7b
[ 1145.704825]  ? ___preempt_schedule+0x16/0x18
[ 1145.709249]  watchdog+0x63a/0xbe0
[ 1145.712721]  ? reset_hung_task_detector+0x30/0x30
[ 1145.717571]  kthread+0x31f/0x430
[ 1145.721032]  ? kthread_create_on_node+0xf0/0xf0
[ 1145.725704]  ret_from_fork+0x3a/0x50
[ 1145.730434] Kernel Offset: 0x11800000 from 0xffffffff81000000 (relocation range: 0xffffffff80000000-0xffffffffbfffffff)
[ 1145.741525] Rebooting in 86400 seconds..