[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
Starting mcstransd: 
[....] Starting file context maintaining daemon: restorecond[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   48.271374] kauditd_printk_skb: 4 callbacks suppressed
[   48.271388] audit: type=1400 audit(1579550684.623:35): avc:  denied  { map } for  pid=8087 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1
[  784.991418] audit: type=1400 audit(1579551421.343:36): avc:  denied  { map } for  pid=8095 comm="sh" path="/bin/dash" dev="sda1" ino=1473 scontext=system_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1
Warning: Permanently added '10.128.1.35' (ECDSA) to the list of known hosts.
executing program
executing program
executing program
executing program
executing program
executing program
[  806.269448] audit: type=1400 audit(1579551442.623:37): avc:  denied  { map } for  pid=8102 comm="syz-executor156" path="/root/syz-executor156249550" dev="sda1" ino=2233 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1
[  812.274374] xt_CT: You must specify a L4 protocol and not use inversions on it
[  812.274379] xt_CT: You must specify a L4 protocol and not use inversions on it
[  812.276062] xt_CT: You must specify a L4 protocol and not use inversions on it
[  812.282541] xt_CT: You must specify a L4 protocol and not use inversions on it
[  812.289281] xt_CT: You must specify a L4 protocol and not use inversions on it
[  812.292749] xt_CT: You must specify a L4 protocol and not use inversions on it
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
[  812.297394] xt_CT: You must specify a L4 protocol and not use inversions on it
[  812.312072] xt_CT: You must specify a L4 protocol and not use inversions on it
[  812.316401] xt_CT: You must specify a L4 protocol and not use inversions on it
[  812.337646] xt_CT: You must specify a L4 protocol and not use inversions on it
[  962.754952] INFO: task khugepaged:1089 blocked for more than 140 seconds.
[  962.762207]       Not tainted 4.19.97-syzkaller #0
[  962.768045] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  962.776243] khugepaged      D26144  1089      2 0x80000000
[  962.782008] Call Trace:
[  962.784744]  __schedule+0x866/0x1dc0
[  962.788722]  ? firmware_map_remove+0x1a7/0x1a7
[  962.793429]  ? mark_held_locks+0x100/0x100
[  962.797894]  schedule+0x92/0x1c0
[  962.801282]  schedule_timeout+0x8c8/0xfc0
[  962.805634]  ? wait_for_completion+0x294/0x440
[  962.810848]  ? find_held_lock+0x35/0x130
[  962.815274]  ? usleep_range+0x170/0x170
[  962.819281]  ? mark_held_locks+0xb1/0x100
[  962.823460]  ? _raw_spin_unlock_irq+0x28/0x90
[  962.828227]  ? wait_for_completion+0x294/0x440
[  962.832820]  ? _raw_spin_unlock_irq+0x28/0x90
[  962.837566]  ? lockdep_hardirqs_on+0x415/0x5d0
[  962.842276]  ? trace_hardirqs_on+0x67/0x220
[  962.846813]  wait_for_completion+0x29c/0x440
[  962.851424]  ? wait_for_completion_interruptible+0x4b0/0x4b0
[  962.857547]  ? wake_up_q+0x100/0x100
[  962.861392]  __flush_work+0x49f/0x870
[  962.865422]  ? insert_work+0x3a0/0x3a0
[  962.869332]  ? lock_downgrade+0x880/0x880
[  962.873619]  ? flush_workqueue_prep_pwqs+0x590/0x590
[  962.878994]  ? lockdep_hardirqs_on+0x415/0x5d0
[  962.883598]  ? trace_hardirqs_on+0x67/0x220
[  962.888220]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  962.893882]  ? find_next_bit+0x107/0x130
[  962.898204]  flush_work+0x18/0x20
[  962.901750]  drain_all_pages+0x3a6/0x570
[  962.906059]  __alloc_pages_slowpath+0xa8b/0x2870
[  962.911910]  ? warn_alloc+0x110/0x110
[  962.915933]  ? fs_reclaim_acquire+0x20/0x20
[  962.920284]  ? __isolate_free_page+0x4c0/0x4c0
[  962.925138]  ? __might_sleep+0x95/0x190
[  962.929243]  __alloc_pages_nodemask+0x617/0x750
[  962.933934]  ? find_held_lock+0x35/0x130
[  962.938254]  ? __alloc_pages_slowpath+0x2870/0x2870
[  962.943304]  ? lock_downgrade+0x880/0x880
[  962.947674]  ? _raw_spin_unlock_irq+0x5e/0x90
[  962.952325]  khugepaged_alloc_page+0x95/0x190
[  962.957065]  collapse_huge_page+0x121/0x3d10
[  962.961634]  ? firmware_map_remove+0x1a7/0x1a7
[  962.966449]  ? khugepaged+0x2e76/0x3f20
[  962.970453]  ? __collapse_huge_page_swapin+0xe70/0xe70
[  962.976013]  ? preempt_schedule+0x4b/0x60
[  962.980233]  ? ___preempt_schedule+0x16/0x18
[  962.984662]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  962.990561]  ? khugepaged_find_target_node+0x142/0x180
[  962.996160]  khugepaged+0x2e9a/0x3f20
[  963.000011]  ? collapse_huge_page+0x3d10/0x3d10
[  963.004987]  ? lockdep_hardirqs_on+0x415/0x5d0
[  963.009593]  ? trace_hardirqs_on+0x67/0x220
[  963.014103]  ? finish_wait+0x260/0x260
[  963.018238]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  963.023354]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  963.029278]  ? __kthread_parkme+0xfb/0x1b0
[  963.033599]  kthread+0x354/0x420
[  963.037176]  ? collapse_huge_page+0x3d10/0x3d10
[  963.041863]  ? kthread_cancel_delayed_work_sync+0x20/0x20
[  963.047718]  ret_from_fork+0x24/0x30
[  963.051587] INFO: task syz-executor156:8113 blocked for more than 140 seconds.
[  963.059207]       Not tainted 4.19.97-syzkaller #0
[  963.064246] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  963.072543] syz-executor156 D27648  8113   8105 0x00000004
[  963.078416] Call Trace:
[  963.081022]  __schedule+0x866/0x1dc0
[  963.084766]  ? firmware_map_remove+0x1a7/0x1a7
[  963.089580]  ? mark_held_locks+0x100/0x100
[  963.093827]  ? mark_held_locks+0x100/0x100
[  963.098288]  schedule+0x92/0x1c0
[  963.101669]  schedule_timeout+0x8c8/0xfc0
[  963.106002]  ? wait_for_completion+0x294/0x440
[  963.110598]  ? find_held_lock+0x35/0x130
[  963.114675]  ? usleep_range+0x170/0x170
[  963.118933]  ? mark_held_locks+0xb1/0x100
[  963.123219]  ? _raw_spin_unlock_irq+0x28/0x90
[  963.127922]  ? wait_for_completion+0x294/0x440
[  963.132658]  ? _raw_spin_unlock_irq+0x28/0x90
[  963.137373]  ? lockdep_hardirqs_on+0x415/0x5d0
[  963.141981]  ? trace_hardirqs_on+0x67/0x220
[  963.146582]  wait_for_completion+0x29c/0x440
[  963.151045]  ? wait_for_completion_interruptible+0x4b0/0x4b0
[  963.157068]  ? wake_up_q+0x100/0x100
[  963.160928]  ? lockdep_hardirqs_on+0x415/0x5d0
[  963.165737]  ? trace_hardirqs_on+0x67/0x220
[  963.170327]  __flush_work+0x49f/0x870
[  963.174161]  ? insert_work+0x3a0/0x3a0
[  963.178316]  ? flush_workqueue_prep_pwqs+0x590/0x590
[  963.183461]  ? __cancel_work_timer+0x1d3/0x520
[  963.188270]  ? cancel_delayed_work_sync+0x1b/0x20
[  963.193140]  ? __cancel_work_timer+0x1d3/0x520
[  963.197935]  ? lockdep_hardirqs_on+0x415/0x5d0
[  963.202539]  ? trace_hardirqs_on+0x67/0x220
[  963.207108]  __cancel_work_timer+0x3bf/0x520
[  963.211536]  ? try_to_grab_pending+0x710/0x710
[  963.216345]  ? kasan_check_write+0x14/0x20
[  963.220709]  ? xt_ct_tg_check_v1+0x7c/0xa0
[  963.225145]  ? xt_ct_tg_check_v2+0xa0/0xa0
[  963.229405]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  963.235329]  cancel_delayed_work_sync+0x1b/0x20
[  963.240073]  htable_put+0x15f/0x220
[  963.243841]  ? hashlimit_mt_destroy_v2+0x70/0x70
[  963.248959]  hashlimit_mt_destroy_v1+0x50/0x70
[  963.253620]  cleanup_match+0xde/0x170
[  963.257617]  ? icmp_checkentry+0xa0/0xa0
[  963.261699]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  963.267548]  find_check_entry.isra.0+0x454/0x920
[  963.272325]  ? ipt_do_table+0x1b30/0x1b30
[  963.276699]  ? lockdep_hardirqs_on+0x415/0x5d0
[  963.281366]  ? kvfree+0x61/0x70
[  963.285046]  translate_table+0xcb4/0x17d0
[  963.289233]  ? alloc_counters.isra.0+0x680/0x680
[  963.294003]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  963.301773]  ? _copy_from_user+0xdd/0x150
[  963.306085]  do_ipt_set_ctl+0x2ef/0x492
[  963.310088]  ? compat_do_ipt_set_ctl+0x160/0x160
[  963.315065]  ? mutex_unlock+0xd/0x10
[  963.318877]  ? nf_sockopt_find.constprop.0+0x226/0x290
[  963.324178]  nf_setsockopt+0x77/0xd0
[  963.328263]  ip_setsockopt+0xdf/0x100
[  963.332100]  tcp_setsockopt+0x8f/0xe0
[  963.336177]  sock_common_setsockopt+0x94/0xd0
[  963.340891]  __sys_setsockopt+0x17a/0x280
[  963.345250]  ? kernel_accept+0x310/0x310
[  963.349390]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  963.354189]  ? do_syscall_64+0x26/0x620
[  963.358386]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  963.363759]  ? do_syscall_64+0x26/0x620
[  963.368091]  __x64_sys_setsockopt+0xbe/0x150
[  963.372530]  do_syscall_64+0xfd/0x620
[  963.376538]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  963.381965] RIP: 0033:0x441279
[  963.385349] Code: 2e 0a 43 68 65 63 6b 20 65 72 72 6f 72 20 6c 6f 67 20 66 6f 72 20 64 65 74 61 69 6c 73 2c 20 66 69 78 20 65 72 72 6f 72 73 20 <61> 6e 64 20 72 65 73 74 61 72 74 2e 20 41 73 20 61 20 6c 61 73 74
[  963.404479] RSP: 002b:00007ffd952a71c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  963.412384] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441279
[  963.419807] RDX: 0000000000000040 RSI: 0004000000000000 RDI: 0000000000000003
[  963.427217] RBP: 00000000006cc018 R08: 0000000000000509 R09: 00000000004002c8
[  963.434515] R10: 00000000200002c0 R11: 0000000000000246 R12: 0000000000401ff0
[  963.442029] R13: 0000000000402080 R14: 0000000000000000 R15: 0000000000000000
[  963.449808] INFO: task syz-executor156:8130 blocked for more than 140 seconds.
[  963.457331]       Not tainted 4.19.97-syzkaller #0
[  963.462260] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  963.470398] syz-executor156 D28216  8130   8107 0x00000004
[  963.476170] Call Trace:
[  963.478774]  __schedule+0x866/0x1dc0
[  963.482494]  ? __mutex_lock+0x721/0x1300
[  963.486885]  ? firmware_map_remove+0x1a7/0x1a7
[  963.491477]  ? kasan_check_read+0x11/0x20
[  963.495783]  schedule+0x92/0x1c0
[  963.499187]  schedule_preempt_disabled+0x13/0x20
[  963.503955]  __mutex_lock+0x726/0x1300
[  963.508015]  ? hashlimit_mt_check_common.isra.0+0x341/0x1500
[  963.514264]  ? mutex_trylock+0x1e0/0x1e0
[  963.518510]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  963.523533]  ? find_next_bit+0x107/0x130
[  963.527814]  ? pcpu_alloc+0xf95/0x12b0
[  963.531763]  ? pcpu_alloc+0xf95/0x12b0
[  963.536214]  mutex_lock_nested+0x16/0x20
[  963.540307]  ? mutex_lock_nested+0x16/0x20
[  963.544557]  hashlimit_mt_check_common.isra.0+0x341/0x1500
[  963.550440]  hashlimit_mt_check_v1+0x325/0x3ab
[  963.555271]  ? hashlimit_mt_check_v2+0x3b0/0x3b0
[  963.560061]  ? mutex_trylock+0x1e0/0x1e0
[  963.564137]  ? hashlimit_mt_check_v2+0x3b0/0x3b0
[  963.569237]  xt_check_match+0x280/0x690
[  963.573239]  ? xt_check_target+0x6a0/0x6a0
[  963.577721]  ? mutex_unlock+0xd/0x10
[  963.581566]  ? xt_find_match+0x73/0x280
[  963.585762]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  963.591452]  find_check_entry.isra.0+0x32f/0x920
[  963.596449]  ? ipt_do_table+0x1b30/0x1b30
[  963.600616]  ? lockdep_hardirqs_on+0x415/0x5d0
[  963.605412]  ? trace_hardirqs_on+0x67/0x220
[  963.609753]  ? kvfree+0x61/0x70
[  963.613059]  translate_table+0xcb4/0x17d0
[  963.617565]  ? alloc_counters.isra.0+0x680/0x680
[  963.622354]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  963.628109]  ? _copy_from_user+0xdd/0x150
[  963.632279]  do_ipt_set_ctl+0x2ef/0x492
[  963.636475]  ? compat_do_ipt_set_ctl+0x160/0x160
[  963.641418]  ? mutex_unlock+0xd/0x10
[  963.645337]  ? nf_sockopt_find.constprop.0+0x226/0x290
[  963.650779]  nf_setsockopt+0x77/0xd0
[  963.654516]  ip_setsockopt+0xdf/0x100
[  963.658739]  tcp_setsockopt+0x8f/0xe0
[  963.662644]  sock_common_setsockopt+0x94/0xd0
[  963.667333]  __sys_setsockopt+0x17a/0x280
[  963.671666]  ? kernel_accept+0x310/0x310
[  963.675964]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  963.680746]  ? do_syscall_64+0x26/0x620
[  963.685106]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  963.690505]  ? do_syscall_64+0x26/0x620
[  963.694515]  __x64_sys_setsockopt+0xbe/0x150
[  963.699213]  do_syscall_64+0xfd/0x620
[  963.703156]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  963.708567] RIP: 0033:0x441279
[  963.711776] Code: 2e 0a 43 68 65 63 6b 20 65 72 72 6f 72 20 6c 6f 67 20 66 6f 72 20 64 65 74 61 69 6c 73 2c 20 66 69 78 20 65 72 72 6f 72 73 20 <61> 6e 64 20 72 65 73 74 61 72 74 2e 20 41 73 20 61 20 6c 61 73 74
[  963.731249] RSP: 002b:00007ffd952a71c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  963.739129] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441279
[  963.746555] RDX: 0000000000000040 RSI: 0004000000000000 RDI: 0000000000000003
[  963.753840] RBP: 00000000000c6524 R08: 0000000000000509 R09: 00000000004002c8
[  963.761325] R10: 00000000200002c0 R11: 0000000000000246 R12: 0000000000401ff0
[  963.768754] R13: 0000000000402080 R14: 0000000000000000 R15: 0000000000000000
[  963.776349] INFO: task syz-executor156:8131 blocked for more than 140 seconds.
[  963.783752]       Not tainted 4.19.97-syzkaller #0
[  963.788968] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  963.797186] syz-executor156 D28216  8131   8104 0x00000004
[  963.802833] Call Trace:
[  963.805919]  __schedule+0x866/0x1dc0
[  963.809786]  ? __mutex_lock+0x721/0x1300
[  963.813883]  ? firmware_map_remove+0x1a7/0x1a7
[  963.818889]  ? kasan_check_read+0x11/0x20
[  963.823061]  schedule+0x92/0x1c0
[  963.826754]  schedule_preempt_disabled+0x13/0x20
[  963.831535]  __mutex_lock+0x726/0x1300
[  963.835740]  ? hashlimit_mt_check_common.isra.0+0x341/0x1500
[  963.841571]  ? mutex_trylock+0x1e0/0x1e0
[  963.845961]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  963.850985]  ? find_next_bit+0x107/0x130
[  963.855350]  ? pcpu_alloc+0xf95/0x12b0
[  963.859250]  ? pcpu_alloc+0xf95/0x12b0
[  963.863160]  mutex_lock_nested+0x16/0x20
[  963.867704]  ? mutex_lock_nested+0x16/0x20
[  963.871954]  hashlimit_mt_check_common.isra.0+0x341/0x1500
[  963.877904]  hashlimit_mt_check_v1+0x325/0x3ab
[  963.882504]  ? hashlimit_mt_check_v2+0x3b0/0x3b0
[  963.887652]  ? mutex_trylock+0x1e0/0x1e0
[  963.891729]  ? hashlimit_mt_check_v2+0x3b0/0x3b0
[  963.896798]  xt_check_match+0x280/0x690
[  963.900783]  ? xt_check_target+0x6a0/0x6a0
[  963.905325]  ? mutex_unlock+0xd/0x10
[  963.909058]  ? xt_find_match+0x73/0x280
[  963.913062]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  963.919027]  find_check_entry.isra.0+0x32f/0x920
[  963.923807]  ? ipt_do_table+0x1b30/0x1b30
[  963.928310]  ? lockdep_hardirqs_on+0x415/0x5d0
[  963.932905]  ? trace_hardirqs_on+0x67/0x220
[  963.937612]  ? kvfree+0x61/0x70
[  963.940910]  translate_table+0xcb4/0x17d0
[  963.945359]  ? alloc_counters.isra.0+0x680/0x680
[  963.950128]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  963.955950]  ? _copy_from_user+0xdd/0x150
[  963.960110]  do_ipt_set_ctl+0x2ef/0x492
[  963.964122]  ? compat_do_ipt_set_ctl+0x160/0x160
[  963.969327]  ? mutex_unlock+0xd/0x10
[  963.973061]  ? nf_sockopt_find.constprop.0+0x226/0x290
[  963.978820]  nf_setsockopt+0x77/0xd0
[  963.982818]  ip_setsockopt+0xdf/0x100
[  963.987149]  tcp_setsockopt+0x8f/0xe0
[  963.990983]  sock_common_setsockopt+0x94/0xd0
[  963.995866]  __sys_setsockopt+0x17a/0x280
[  964.000038]  ? kernel_accept+0x310/0x310
[  964.004213]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  964.009424]  ? do_syscall_64+0x26/0x620
[  964.013423]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  964.019191]  ? do_syscall_64+0x26/0x620
[  964.023182]  __x64_sys_setsockopt+0xbe/0x150
[  964.028097]  do_syscall_64+0xfd/0x620
[  964.031920]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  964.037685] RIP: 0033:0x441279
[  964.041032] Code: 2e 0a 43 68 65 63 6b 20 65 72 72 6f 72 20 6c 6f 67 20 66 6f 72 20 64 65 74 61 69 6c 73 2c 20 66 69 78 20 65 72 72 6f 72 73 20 <61> 6e 64 20 72 65 73 74 61 72 74 2e 20 41 73 20 61 20 6c 61 73 74
[  964.060445] RSP: 002b:00007ffd952a71c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  964.068548] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441279
[  964.076358] RDX: 0000000000000040 RSI: 0004000000000000 RDI: 0000000000000003
[  964.083644] RBP: 00000000000c6526 R08: 0000000000000509 R09: 00000000004002c8
[  964.091360] R10: 00000000200002c0 R11: 0000000000000246 R12: 0000000000401ff0
[  964.099030] R13: 0000000000402080 R14: 0000000000000000 R15: 0000000000000000
[  964.106674] INFO: task syz-executor156:8133 blocked for more than 140 seconds.
[  964.114160]       Not tainted 4.19.97-syzkaller #0
[  964.119471] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  964.127864] syz-executor156 D28216  8133   8103 0x00000004
[  964.133516] Call Trace:
[  964.136475]  __schedule+0x866/0x1dc0
[  964.140206]  ? __mutex_lock+0x721/0x1300
[  964.144284]  ? firmware_map_remove+0x1a7/0x1a7
[  964.149419]  ? kasan_check_read+0x11/0x20
[  964.153590]  schedule+0x92/0x1c0
[  964.157320]  schedule_preempt_disabled+0x13/0x20
[  964.162175]  __mutex_lock+0x726/0x1300
[  964.166425]  ? hashlimit_mt_check_common.isra.0+0x341/0x1500
[  964.172246]  ? mutex_trylock+0x1e0/0x1e0
[  964.176655]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  964.181708]  ? find_next_bit+0x107/0x130
[  964.186218]  ? pcpu_alloc+0xf95/0x12b0
[  964.190164]  ? pcpu_alloc+0xf95/0x12b0
[  964.194086]  mutex_lock_nested+0x16/0x20
[  964.198601]  ? mutex_lock_nested+0x16/0x20
[  964.202857]  hashlimit_mt_check_common.isra.0+0x341/0x1500
[  964.208880]  hashlimit_mt_check_v1+0x325/0x3ab
[  964.213497]  ? hashlimit_mt_check_v2+0x3b0/0x3b0
[  964.218694]  ? mutex_trylock+0x1e0/0x1e0
[  964.222787]  ? hashlimit_mt_check_v2+0x3b0/0x3b0
[  964.228027]  xt_check_match+0x280/0x690
[  964.232028]  ? xt_check_target+0x6a0/0x6a0
[  964.236679]  ? mutex_unlock+0xd/0x10
[  964.240415]  ? xt_find_match+0x73/0x280
[  964.244414]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  964.250396]  find_check_entry.isra.0+0x32f/0x920
[  964.255541]  ? ipt_do_table+0x1b30/0x1b30
[  964.259724]  ? lockdep_hardirqs_on+0x415/0x5d0
[  964.264341]  ? trace_hardirqs_on+0x67/0x220
[  964.269139]  ? kvfree+0x61/0x70
[  964.272449]  translate_table+0xcb4/0x17d0
[  964.277139]  ? alloc_counters.isra.0+0x680/0x680
[  964.282032]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  964.288136]  ? _copy_from_user+0xdd/0x150
[  964.292312]  do_ipt_set_ctl+0x2ef/0x492
[  964.296729]  ? compat_do_ipt_set_ctl+0x160/0x160
[  964.301521]  ? mutex_unlock+0xd/0x10
[  964.305659]  ? nf_sockopt_find.constprop.0+0x226/0x290
[  964.310965]  nf_setsockopt+0x77/0xd0
[  964.314697]  ip_setsockopt+0xdf/0x100
[  964.318936]  tcp_setsockopt+0x8f/0xe0
[  964.322760]  sock_common_setsockopt+0x94/0xd0
[  964.327684]  __sys_setsockopt+0x17a/0x280
[  964.331848]  ? kernel_accept+0x310/0x310
[  964.336413]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  964.341192]  ? do_syscall_64+0x26/0x620
[  964.345626]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  964.351132]  ? do_syscall_64+0x26/0x620
[  964.355553]  __x64_sys_setsockopt+0xbe/0x150
[  964.359988]  do_syscall_64+0xfd/0x620
[  964.363819]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  964.369435] RIP: 0033:0x441279
[  964.372643] Code: 2e 0a 43 68 65 63 6b 20 65 72 72 6f 72 20 6c 6f 67 20 66 6f 72 20 64 65 74 61 69 6c 73 2c 20 66 69 78 20 65 72 72 6f 72 73 20 <61> 6e 64 20 72 65 73 74 61 72 74 2e 20 41 73 20 61 20 6c 61 73 74
[  964.392163] RSP: 002b:00007ffd952a71c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  964.400329] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441279
[  964.408011] RDX: 0000000000000040 RSI: 0004000000000000 RDI: 0000000000000003
[  964.415666] RBP: 00000000000c64f4 R08: 0000000000000509 R09: 00000000004002c8
[  964.423304] R10: 00000000200002c0 R11: 0000000000000246 R12: 0000000000401ff0
[  964.431007] R13: 0000000000402080 R14: 0000000000000000 R15: 0000000000000000
[  964.438702] INFO: task syz-executor156:8132 blocked for more than 140 seconds.
[  964.446485]       Not tainted 4.19.97-syzkaller #0
[  964.451433] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  964.459862] syz-executor156 D28216  8132   8108 0x00000004
[  964.465877] Call Trace:
[  964.468499]  __schedule+0x866/0x1dc0
[  964.472242]  ? __mutex_lock+0x721/0x1300
[  964.476872]  ? firmware_map_remove+0x1a7/0x1a7
[  964.481488]  ? kasan_check_read+0x11/0x20
[  964.486067]  schedule+0x92/0x1c0
[  964.489478]  schedule_preempt_disabled+0x13/0x20
[  964.494259]  __mutex_lock+0x726/0x1300
[  964.498796]  ? hashlimit_mt_check_common.isra.0+0x341/0x1500
[  964.504633]  ? mutex_trylock+0x1e0/0x1e0
[  964.509142]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  964.514199]  ? find_next_bit+0x107/0x130
[  964.518797]  ? pcpu_alloc+0xf95/0x12b0
[  964.522723]  ? pcpu_alloc+0xf95/0x12b0
[  964.527115]  ? __do_compat_sys_rt_sigtimedwait+0x110/0x1e0
[  964.532776]  mutex_lock_nested+0x16/0x20
[  964.537244]  ? mutex_lock_nested+0x16/0x20
[  964.541512]  hashlimit_mt_check_common.isra.0+0x341/0x1500
[  964.547589]  hashlimit_mt_check_v1+0x325/0x3ab
[  964.552214]  ? hashlimit_mt_check_v2+0x3b0/0x3b0
[  964.557638]  ? mutex_trylock+0x1e0/0x1e0
[  964.561731]  ? hashlimit_mt_check_v2+0x3b0/0x3b0
[  964.567288]  xt_check_match+0x280/0x690
[  964.571303]  ? xt_check_target+0x6a0/0x6a0
[  964.576075]  ? mutex_unlock+0xd/0x10
[  964.579827]  ? xt_find_match+0x73/0x280
[  964.583830]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  964.589824]  find_check_entry.isra.0+0x32f/0x920
[  964.594622]  ? ipt_do_table+0x1b30/0x1b30
[  964.599280]  ? lockdep_hardirqs_on+0x415/0x5d0
[  964.603904]  ? trace_hardirqs_on+0x67/0x220
[  964.608658]  ? kvfree+0x61/0x70
[  964.611970]  translate_table+0xcb4/0x17d0
[  964.616562]  ? alloc_counters.isra.0+0x680/0x680
[  964.621346]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  964.627310]  ? _copy_from_user+0xdd/0x150
[  964.631485]  do_ipt_set_ctl+0x2ef/0x492
[  964.635914]  ? compat_do_ipt_set_ctl+0x160/0x160
[  964.640712]  ? mutex_unlock+0xd/0x10
[  964.644455]  ? nf_sockopt_find.constprop.0+0x226/0x290
[  964.650443]  nf_setsockopt+0x77/0xd0
[  964.654188]  ip_setsockopt+0xdf/0x100
[  964.658446]  tcp_setsockopt+0x8f/0xe0
[  964.662282]  sock_common_setsockopt+0x94/0xd0
[  964.667197]  __sys_setsockopt+0x17a/0x280
[  964.671373]  ? kernel_accept+0x310/0x310
[  964.675823]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  964.680601]  ? do_syscall_64+0x26/0x620
[  964.684599]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  964.690548]  ? do_syscall_64+0x26/0x620
[  964.694576]  __x64_sys_setsockopt+0xbe/0x150
[  964.699701]  do_syscall_64+0xfd/0x620
[  964.703555]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  964.709523] RIP: 0033:0x441279
[  964.712731] Code: 2e 0a 43 68 65 63 6b 20 65 72 72 6f 72 20 6c 6f 67 20 66 6f 72 20 64 65 74 61 69 6c 73 2c 20 66 69 78 20 65 72 72 6f 72 73 20 <61> 6e 64 20 72 65 73 74 61 72 74 2e 20 41 73 20 61 20 6c 61 73 74
[  964.732206] RSP: 002b:00007ffd952a71c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  964.740346] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441279
[  964.748278] RDX: 0000000000000040 RSI: 0004000000000000 RDI: 0000000000000003
[  964.755973] RBP: 00000000000c652b R08: 0000000000000509 R09: 00000000004002c8
[  964.763261] R10: 00000000200002c0 R11: 0000000000000246 R12: 0000000000401ff0
[  964.771091] R13: 0000000000402080 R14: 0000000000000000 R15: 0000000000000000
[  964.778810] INFO: task syz-executor156:8134 blocked for more than 140 seconds.
[  964.786600]       Not tainted 4.19.97-syzkaller #0
[  964.791551] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  964.799982] syz-executor156 D28104  8134   8106 0x00000004
[  964.806020] Call Trace:
[  964.808640]  __schedule+0x866/0x1dc0
[  964.812362]  ? __mutex_lock+0x721/0x1300
[  964.816989]  ? firmware_map_remove+0x1a7/0x1a7
[  964.821596]  ? kasan_check_read+0x11/0x20
[  964.826155]  schedule+0x92/0x1c0
[  964.829542]  schedule_preempt_disabled+0x13/0x20
[  964.834310]  __mutex_lock+0x726/0x1300
[  964.838790]  ? hashlimit_mt_check_common.isra.0+0x341/0x1500
[  964.844610]  ? mutex_trylock+0x1e0/0x1e0
[  964.849214]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  964.854256]  ? find_next_bit+0x107/0x130
[  964.858762]  ? pcpu_alloc+0xf95/0x12b0
[  964.862690]  ? pcpu_alloc+0xf95/0x12b0
[  964.867020]  mutex_lock_nested+0x16/0x20
[  964.871108]  ? mutex_lock_nested+0x16/0x20
[  964.875742]  hashlimit_mt_check_common.isra.0+0x341/0x1500
[  964.881391]  hashlimit_mt_check_v1+0x325/0x3ab
[  964.886543]  ? hashlimit_mt_check_v2+0x3b0/0x3b0
[  964.891341]  ? mutex_trylock+0x1e0/0x1e0
[  964.895861]  ? hashlimit_mt_check_v2+0x3b0/0x3b0
[  964.900649]  xt_check_match+0x280/0x690
[  964.904638]  ? xt_check_target+0x6a0/0x6a0
[  964.909553]  ? mutex_unlock+0xd/0x10
[  964.913304]  ? xt_find_match+0x73/0x280
[  964.917851]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  964.923522]  find_check_entry.isra.0+0x32f/0x920
[  964.928734]  ? ipt_do_table+0x1b30/0x1b30
[  964.932919]  ? lockdep_hardirqs_on+0x415/0x5d0
[  964.937911]  ? trace_hardirqs_on+0x67/0x220
[  964.942265]  ? kvfree+0x61/0x70
[  964.946014]  translate_table+0xcb4/0x17d0
[  964.950235]  ? alloc_counters.isra.0+0x680/0x680
[  964.955671]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  964.961241]  ? _copy_from_user+0xdd/0x150
[  964.965981]  do_ipt_set_ctl+0x2ef/0x492
[  964.969973]  ? compat_do_ipt_set_ctl+0x160/0x160
[  964.974765]  ? mutex_unlock+0xd/0x10
[  964.978935]  ? nf_sockopt_find.constprop.0+0x226/0x290
[  964.984240]  nf_setsockopt+0x77/0xd0
[  964.988395]  ip_setsockopt+0xdf/0x100
[  964.992226]  tcp_setsockopt+0x8f/0xe0
[  964.996437]  sock_common_setsockopt+0x94/0xd0
[  965.001042]  __sys_setsockopt+0x17a/0x280
[  965.005835]  ? kernel_accept+0x310/0x310
[  965.009926]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  965.014701]  ? do_syscall_64+0x26/0x620
[  965.019522]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  965.025393]  ? do_syscall_64+0x26/0x620
[  965.029412]  __x64_sys_setsockopt+0xbe/0x150
[  965.033854]  do_syscall_64+0xfd/0x620
[  965.038065]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  965.043267] RIP: 0033:0x441279
[  965.047059] Code: 2e 0a 43 68 65 63 6b 20 65 72 72 6f 72 20 6c 6f 67 20 66 6f 72 20 64 65 74 61 69 6c 73 2c 20 66 69 78 20 65 72 72 6f 72 73 20 <61> 6e 64 20 72 65 73 74 61 72 74 2e 20 41 73 20 61 20 6c 61 73 74
[  965.066387] RSP: 002b:00007ffd952a71c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  965.074185] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441279
[  965.082469] RDX: 0000000000000040 RSI: 0004000000000000 RDI: 0000000000000003
[  965.090169] RBP: 00000000000c6500 R08: 0000000000000509 R09: 00000000004002c8
[  965.097967] R10: 00000000200002c0 R11: 0000000000000246 R12: 0000000000401ff0
[  965.105571] R13: 0000000000402080 R14: 0000000000000000 R15: 0000000000000000
[  965.112881] 
[  965.112881] Showing all locks held in the system:
[  965.119632] 2 locks held by kworker/0:1/14:
[  965.123975] 1 lock held by khungtaskd/1082:
[  965.128890]  #0: 00000000a845f339 (rcu_read_lock){....}, at: debug_show_all_locks+0x5f/0x27e
[  965.138072] 1 lock held by khugepaged/1089:
[  965.142406]  #0: 0000000010d96bd1 (pcpu_drain_mutex){+.+.}, at: drain_all_pages+0x4d/0x570
[  965.151338] 1 lock held by rsyslogd/7951:
[  965.155957]  #0: 00000000133437e1 (&f->f_pos_lock){+.+.}, at: __fdget_pos+0xee/0x110
[  965.164004] 2 locks held by getty/8073:
[  965.168404]  #0: 00000000bd457769 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[  965.177113]  #1: 000000007bad4db6 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b70
[  965.186540] 2 locks held by getty/8074:
[  965.190523]  #0: 00000000aa42c562 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[  965.199231]  #1: 0000000031afbda2 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b70
[  965.208602] 2 locks held by getty/8075:
[  965.212592]  #0: 00000000f4a5eb02 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[  965.221242]  #1: 000000000cb04ec9 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b70
[  965.230537] 2 locks held by getty/8076:
[  965.234631]  #0: 000000003867d0a6 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[  965.245723]  #1: 000000006e300308 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b70
[  965.254628] 2 locks held by getty/8077:
[  965.259005]  #0: 000000008c23ee3a (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[  965.267867]  #1: 00000000a658c4a4 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b70
[  965.277158] 2 locks held by getty/8078:
[  965.281138]  #0: 00000000b1b964e4 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[  965.289875]  #1: 0000000077595b1e (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b70
[  965.299154] 2 locks held by getty/8079:
[  965.303126]  #0: 000000001795ebea (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[  965.311942]  #1: 00000000aa928426 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b70
[  965.321375] 1 lock held by syz-executor156/8113:
[  965.326449]  #0: 00000000c859c9b1 (hashlimit_mutex){+.+.}, at: htable_put+0x21/0x220
[  965.334376] 1 lock held by syz-executor156/8130:
[  965.339692]  #0: 00000000c859c9b1 (hashlimit_mutex){+.+.}, at: hashlimit_mt_check_common.isra.0+0x341/0x1500
[  965.350169] 1 lock held by syz-executor156/8131:
[  965.355320]  #0: 00000000c859c9b1 (hashlimit_mutex){+.+.}, at: hashlimit_mt_check_common.isra.0+0x341/0x1500
[  965.365760] 1 lock held by syz-executor156/8133:
[  965.370530]  #0: 00000000c859c9b1 (hashlimit_mutex){+.+.}, at: hashlimit_mt_check_common.isra.0+0x341/0x1500
[  965.380964] 1 lock held by syz-executor156/8132:
[  965.386041]  #0: 00000000c859c9b1 (hashlimit_mutex){+.+.}, at: hashlimit_mt_check_common.isra.0+0x341/0x1500
[  965.396581] 1 lock held by syz-executor156/8134:
[  965.401352]  #0: 00000000c859c9b1 (hashlimit_mutex){+.+.}, at: hashlimit_mt_check_common.isra.0+0x341/0x1500
[  965.411825] 
[  965.413475] =============================================
[  965.413475] 
[  965.421026] NMI backtrace for cpu 1
[  965.424681] CPU: 1 PID: 1082 Comm: khungtaskd Not tainted 4.19.97-syzkaller #0
[  965.432056] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  965.441427] Call Trace:
[  965.444217]  dump_stack+0x197/0x210
[  965.448026]  nmi_cpu_backtrace.cold+0x63/0xa4
[  965.452614]  ? lapic_can_unplug_cpu.cold+0x47/0x47
[  965.457561]  nmi_trigger_cpumask_backtrace+0x1b0/0x1f8
[  965.462897]  arch_trigger_cpumask_backtrace+0x14/0x20
[  965.468100]  watchdog+0x9df/0xee0
[  965.471717]  kthread+0x354/0x420
[  965.475203]  ? reset_hung_task_detector+0x30/0x30
[  965.480052]  ? kthread_cancel_delayed_work_sync+0x20/0x20
[  965.485706]  ret_from_fork+0x24/0x30
[  965.489541] Sending NMI from CPU 1 to CPUs 0:
[  965.494688] NMI backtrace for cpu 0
[  965.494695] CPU: 0 PID: 14 Comm: kworker/0:1 Not tainted 4.19.97-syzkaller #0
[  965.494702] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  965.494706] Workqueue: events_power_efficient htable_gc
[  965.494713] RIP: 0010:lockdep_hardirqs_off+0x83/0x2d0
[  965.494726] Code: 00 49 8d bd 7c 08 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 0f b6 14 02 48 89 f8 83 e0 07 83 c0 03 38 d0 7c 08 <84> d2 0f 85 e3 01 00 00 41 8b b5 7c 08 00 00 85 f6 0f 85 16 01 00
[  965.494730] RSP: 0018:ffff8880aa3afc00 EFLAGS: 00000002
[  965.494738] RAX: 0000000000000007 RBX: ffff8880aa3a0380 RCX: 1ffffffff127906c
[  965.494743] RDX: 0000000000000000 RSI: ffffffff81704d39 RDI: ffff8880aa3a0bfc
[  965.494749] RBP: ffff8880aa3afc18 R08: ffff8880aa3a0380 R09: fffff52000bd2c0a
[  965.494754] R10: fffff52000bd2c09 R11: ffffc90005e9604b R12: ffffffff814033ca
[  965.494759] R13: ffff8880aa3a0380 R14: ffffffff814033ca R15: 000000000f4cbc99
[  965.494765] FS:  0000000000000000(0000) GS:ffff8880ae800000(0000) knlGS:0000000000000000
[  965.494774] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  965.494780] CR2: 00000000200002c0 CR3: 0000000099549000 CR4: 00000000001406f0
[  965.494785] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  965.494791] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  965.494793] Call Trace:
[  965.494797]  ? htable_selective_cleanup+0x219/0x330
[  965.494801]  ? _raw_spin_unlock_bh+0x31/0x40
[  965.494804]  trace_hardirqs_off+0x62/0x220
[  965.494808]  ? htable_selective_cleanup+0x219/0x330
[  965.494812]  __local_bh_enable_ip+0x11a/0x270
[  965.494816]  _raw_spin_unlock_bh+0x31/0x40
[  965.494820]  htable_selective_cleanup+0x219/0x330
[  965.494823]  ? select_all+0x10/0x10
[  965.494826]  htable_gc+0x26/0xc0
[  965.494830]  ? rcu_read_lock_sched_held+0x110/0x130
[  965.494834]  process_one_work+0x989/0x1750
[  965.494838]  ? pwq_dec_nr_in_flight+0x320/0x320
[  965.494842]  ? lock_acquire+0x16f/0x3f0
[  965.494846]  ? kasan_check_write+0x14/0x20
[  965.494850]  ? do_raw_spin_lock+0xd7/0x250
[  965.494854]  worker_thread+0x98/0xe40
[  965.494857]  ? trace_hardirqs_on+0x67/0x220
[  965.494860]  kthread+0x354/0x420
[  965.494864]  ? process_one_work+0x1750/0x1750
[  965.494869]  ? kthread_cancel_delayed_work_sync+0x20/0x20
[  965.494872]  ret_from_fork+0x24/0x30
[  965.496563] Kernel panic - not syncing: hung_task: blocked tasks
[  965.722453] CPU: 1 PID: 1082 Comm: khungtaskd Not tainted 4.19.97-syzkaller #0
[  965.729820] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  965.739186] Call Trace:
[  965.741789]  dump_stack+0x197/0x210
[  965.745438]  panic+0x26a/0x50e
[  965.748637]  ? __warn_printk+0xf3/0xf3
[  965.752551]  ? lapic_can_unplug_cpu.cold+0x47/0x47
[  965.757506]  ? ___preempt_schedule+0x16/0x18
[  965.761944]  ? nmi_trigger_cpumask_backtrace+0x165/0x1f8
[  965.767403]  ? nmi_trigger_cpumask_backtrace+0x1c1/0x1f8
[  965.772868]  ? nmi_trigger_cpumask_backtrace+0x1cb/0x1f8
[  965.778329]  ? nmi_trigger_cpumask_backtrace+0x165/0x1f8
[  965.783802]  watchdog+0x9f0/0xee0
[  965.787291]  kthread+0x354/0x420
[  965.790665]  ? reset_hung_task_detector+0x30/0x30
[  965.795872]  ? kthread_cancel_delayed_work_sync+0x20/0x20
[  965.801437]  ret_from_fork+0x24/0x30
[  965.807012] Kernel Offset: disabled
[  965.810655] Rebooting in 86400 seconds..