[  113.402969][   T27] audit: type=1800 audit(1581376905.918:35): pid=10754 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[  113.452949][   T27] audit: type=1800 audit(1581376905.918:36): pid=10754 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="startpar" name="ssh" dev="sda1" ino=2417 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
Starting mcstransd: 
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting file context maintaining daemon: restorecond[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.37' (ECDSA) to the list of known hosts.
syzkaller login: [  255.297789][   T27] kauditd_printk_skb: 5 callbacks suppressed
[  255.297808][   T27] audit: type=1400 audit(1581377047.878:42): avc:  denied  { map } for  pid=10947 comm="syz-executor690" path="/root/syz-executor690821771" dev="sda1" ino=1426 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1
[  255.326193][T10948] IPVS: ftp: loaded support on port[0] = 21
[  255.385805][T10948] chnl_net:caif_netlink_parms(): no params data found
[  255.426763][T10948] bridge0: port 1(bridge_slave_0) entered blocking state
[  255.434565][T10948] bridge0: port 1(bridge_slave_0) entered disabled state
[  255.442471][T10948] device bridge_slave_0 entered promiscuous mode
[  255.452284][T10948] bridge0: port 2(bridge_slave_1) entered blocking state
[  255.459635][T10948] bridge0: port 2(bridge_slave_1) entered disabled state
[  255.467574][T10948] device bridge_slave_1 entered promiscuous mode
[  255.487160][T10948] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  255.499071][T10948] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  255.521223][T10948] team0: Port device team_slave_0 added
[  255.529871][T10948] team0: Port device team_slave_1 added
[  255.546169][T10948] batman_adv: batadv0: Adding interface: batadv_slave_0
[  255.553265][T10948] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  255.579305][T10948] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  255.592649][T10948] batman_adv: batadv0: Adding interface: batadv_slave_1
[  255.599729][T10948] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  255.625690][T10948] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  255.705610][T10948] device hsr_slave_0 entered promiscuous mode
[  255.773233][T10948] device hsr_slave_1 entered promiscuous mode
[  255.917669][   T27] audit: type=1400 audit(1581377048.498:43): avc:  denied  { create } for  pid=10948 comm="syz-executor690" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1
[  255.944938][   T27] audit: type=1400 audit(1581377048.528:44): avc:  denied  { write } for  pid=10948 comm="syz-executor690" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1
[  255.947079][T10948] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  255.971420][   T27] audit: type=1400 audit(1581377048.528:45): avc:  denied  { read } for  pid=10948 comm="syz-executor690" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1
[  256.017042][T10948] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  256.075547][T10948] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  256.115878][T10948] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  256.179976][T10948] bridge0: port 2(bridge_slave_1) entered blocking state
[  256.187161][T10948] bridge0: port 2(bridge_slave_1) entered forwarding state
[  256.195262][T10948] bridge0: port 1(bridge_slave_0) entered blocking state
[  256.202397][T10948] bridge0: port 1(bridge_slave_0) entered forwarding state
[  256.259623][T10948] 8021q: adding VLAN 0 to HW filter on device bond0
[  256.275875][ T3111] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  256.287504][ T3111] bridge0: port 1(bridge_slave_0) entered disabled state
[  256.295948][ T3111] bridge0: port 2(bridge_slave_1) entered disabled state
[  256.305508][ T3111] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[  256.318854][T10948] 8021q: adding VLAN 0 to HW filter on device team0
[  256.332152][ T3111] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  256.341250][ T3111] bridge0: port 1(bridge_slave_0) entered blocking state
[  256.348416][ T3111] bridge0: port 1(bridge_slave_0) entered forwarding state
[  256.361472][ T2868] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  256.370149][ T2868] bridge0: port 2(bridge_slave_1) entered blocking state
[  256.377313][ T2868] bridge0: port 2(bridge_slave_1) entered forwarding state
[  256.389401][ T3111] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  256.403259][ T2868] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  256.424588][ T2832] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  256.435314][ T2832] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  256.443882][ T2832] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  256.452363][ T2832] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  256.461145][ T2832] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  256.469528][ T2832] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  256.486733][ T2832] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  256.494619][ T2832] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  256.504646][ T2832] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  256.515145][T10948] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  256.537810][ T2832] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  256.545456][ T2832] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  256.561630][T10948] 8021q: adding VLAN 0 to HW filter on device batadv0
[  256.584416][ T3111] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  256.593611][ T3111] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  256.615118][ T2832] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  256.625042][ T2832] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  256.633652][ T2832] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  256.641271][ T2832] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  256.651994][T10948] device veth0_vlan entered promiscuous mode
[  256.666297][T10948] device veth1_vlan entered promiscuous mode
[  256.691859][ T3111] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  256.700298][ T3111] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  256.708400][ T3111] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  256.716800][ T3111] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  256.728616][T10948] device veth0_macvtap entered promiscuous mode
[  256.739679][T10948] device veth1_macvtap entered promiscuous mode
[  256.760032][T10948] batman_adv: batadv0: Interface activated: batadv_slave_0
[  256.767619][ T2832] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  256.775979][ T2832] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  256.784388][ T2832] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  256.793093][ T2832] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  256.805965][T10948] batman_adv: batadv0: Interface activated: batadv_slave_1
[  256.814642][ T2903] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  256.824977][ T2903] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
executing program
[  257.076589][    C0] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  285.955604][    T0] NOHZ: local_softirq_pending 08
[  326.914798][    T0] NOHZ: local_softirq_pending 08
[  388.353786][    T0] NOHZ: local_softirq_pending 08
[  408.844384][    T0] NOHZ: local_softirq_pending 08
[  413.953165][ T1122] INFO: task syz-executor690:10948 blocked for more than 143 seconds.
[  413.961578][ T1122]       Not tainted 5.6.0-rc1-syzkaller #0
[  413.967468][ T1122] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  413.976206][ T1122] syz-executor690 D23784 10948  10947 0x00004000
[  413.982529][ T1122] Call Trace:
[  413.985966][ T1122]  __schedule+0x934/0x1f90
[  413.990409][ T1122]  ? __sched_text_start+0x8/0x8
[  413.995404][ T1122]  ? __lock_acquire+0x29c9/0x4a00
[  414.000442][ T1122]  schedule+0xdc/0x2b0
[  414.004670][ T1122]  schedule_timeout+0x717/0xc50
[  414.009601][ T1122]  ? __kasan_check_read+0x11/0x20
[  414.014716][ T1122]  ? usleep_range+0x170/0x170
[  414.019410][ T1122]  ? mark_held_locks+0xa4/0xf0
[  414.024876][ T1122]  ? _raw_spin_unlock_irq+0x23/0x80
[  414.030069][ T1122]  ? wait_for_completion+0x294/0x440
[  414.035530][ T1122]  ? _raw_spin_unlock_irq+0x23/0x80
[  414.040734][ T1122]  ? lockdep_hardirqs_on+0x421/0x5e0
[  414.046158][ T1122]  ? trace_hardirqs_on+0x67/0x240
[  414.051251][ T1122]  wait_for_completion+0x29c/0x440
[  414.056454][ T1122]  ? wait_for_completion_interruptible+0x470/0x470
[  414.063094][ T1122]  ? wake_up_q+0x140/0x140
[  414.067557][ T1122]  ? __rcu_read_unlock+0x26e/0x700
[  414.072687][ T1122]  __flush_work+0x4fe/0xa50
[  414.077501][ T1122]  ? queue_delayed_work_on+0x210/0x210
[  414.083024][ T1122]  ? init_pwq+0x360/0x360
[  414.087372][ T1122]  ? __cancel_work_timer+0xc4/0x540
[  414.092598][ T1122]  ? __cancel_work_timer+0x1e0/0x540
[  414.097955][ T1122]  ? cancel_delayed_work_sync+0x1b/0x20
[  414.103538][ T1122]  ? __cancel_work_timer+0x1e0/0x540
[  414.108806][ T1122]  ? lockdep_hardirqs_on+0x421/0x5e0
[  414.114194][ T1122]  ? trace_hardirqs_on+0x67/0x240
[  414.119224][ T1122]  __cancel_work_timer+0x3d9/0x540
[  414.124388][ T1122]  ? mod_delayed_work_on+0x200/0x200
[  414.129739][ T1122]  ? debug_object_active_state+0x28a/0x350
[  414.135642][ T1122]  ? mark_held_locks+0xf0/0xf0
[  414.140411][ T1122]  cancel_delayed_work_sync+0x1b/0x20
[  414.145950][ T1122]  tls_sw_cancel_work_tx+0x68/0x80
[  414.151070][ T1122]  tls_sk_proto_close+0x4d2/0xb70
[  414.156778][ T1122]  ? lock_acquire+0x190/0x410
[  414.161459][ T1122]  ? wait_on_pending_writer+0x420/0x420
[  414.167094][ T1122]  ? ip_mc_drop_socket+0x211/0x270
[  414.172219][ T1122]  ? down_write+0xdf/0x150
[  414.176746][ T1122]  inet_release+0xed/0x200
[  414.181255][ T1122]  inet6_release+0x53/0x80
[  414.185858][ T1122]  __sock_release+0xce/0x280
[  414.190463][ T1122]  sock_close+0x1e/0x30
[  414.194750][ T1122]  __fput+0x2ff/0x890
[  414.198733][ T1122]  ? __sock_release+0x280/0x280
[  414.203659][ T1122]  ____fput+0x16/0x20
[  414.207649][ T1122]  task_work_run+0x145/0x1c0
[  414.212290][ T1122]  exit_to_usermode_loop+0x316/0x380
[  414.217676][ T1122]  do_syscall_64+0x676/0x790
[  414.222273][ T1122]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  414.228225][ T1122] RIP: 0033:0x402ac0
[  414.232124][ T1122] Code: 89 c3 0f 1f 84 00 00 00 00 00 ba 01 00 00 00 48 89 ee bf ff ff ff ff e8 f6 f7 ff ff 85 c0 74 2a 83 3b 0a 74 25 48 8b 15 0e 5e <20> 00 48 85 d2 74 d9 3b 42 08 74 24 48 8b 92 c0 00 00 00 48 85 d2
[  414.251849][ T1122] RSP: 002b:00007ffd6e2a8358 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[  414.260454][ T1122] RAX: 0000000000000000 RBX: 0000000000000005 RCX: 0000000000402ac0
[  414.268541][ T1122] RDX: 00000000000000d8 RSI: 00000000200005c0 RDI: 0000000000000004
[  414.276572][ T1122] RBP: 0000000000000000 R08: 0000000000000000 R09: 00000000000000d8
[  414.285225][ T1122] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  414.293266][ T1122] R13: 0000000000403cf0 R14: 0000000000000000 R15: 0000000000000000
[  414.301273][ T1122] 
[  414.301273][ T1122] Showing all locks held in the system:
[  414.309094][ T1122] 1 lock held by khungtaskd/1122:
[  414.314145][ T1122]  #0: ffffffff89bac240 (rcu_read_lock){....}, at: debug_show_all_locks+0x5f/0x279
[  414.323551][ T1122] 3 locks held by kworker/0:57/2881:
[  414.328825][ T1122]  #0: ffff8880aa426d28 ((wq_completion)events){+.+.}, at: process_one_work+0x8dd/0x17a0
[  414.338698][ T1122]  #1: ffffc9000963fdc0 ((work_completion)(&(&sw_ctx_tx->tx_work.work)->work)){+.+.}, at: process_one_work+0x917/0x17a0
[  414.351283][ T1122]  #2: ffff88809a2a74d0 (&ctx->tx_lock){+.+.}, at: tx_work_handler+0x12e/0x190
[  414.360320][ T1122] 2 locks held by rsyslogd/10792:
[  414.365389][ T1122]  #0: ffff888092bfcba0 (&f->f_pos_lock){+.+.}, at: __fdget_pos+0xee/0x110
[  414.374112][ T1122]  #1: ffffffff89ba1278 (log_wait.lock){-...}, at: is_bpf_text_address+0x0/0x160
[  414.383392][ T1122] 2 locks held by getty/10914:
[  414.388134][ T1122]  #0: ffff888078d14090 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[  414.397127][ T1122]  #1: ffffc90005aeb2e0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x220/0x1bf0
[  414.406855][ T1122] 2 locks held by getty/10915:
[  414.411613][ T1122]  #0: ffff88809c5df090 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[  414.421288][ T1122]  #1: ffffc90005b5b2e0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x220/0x1bf0
[  414.430965][ T1122] 2 locks held by getty/10916:
[  414.435819][ T1122]  #0: ffff888097895090 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[  414.444874][ T1122]  #1: ffffc90005abb2e0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x220/0x1bf0
[  414.454492][ T1122] 2 locks held by getty/10917:
[  414.459353][ T1122]  #0: ffff88808d8ea090 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[  414.468403][ T1122]  #1: ffffc90005b4b2e0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x220/0x1bf0
[  414.478081][ T1122] 2 locks held by getty/10918:
[  414.482928][ T1122]  #0: ffff888092af3090 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[  414.491898][ T1122]  #1: ffffc90005b2b2e0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x220/0x1bf0
[  414.501771][ T1122] 2 locks held by getty/10919:
[  414.506716][ T1122]  #0: ffff888097fc6090 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[  414.515789][ T1122]  #1: ffffc90005b3b2e0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x220/0x1bf0
[  414.525461][ T1122] 2 locks held by getty/10920:
[  414.530223][ T1122]  #0: ffff8880a4098090 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[  414.539223][ T1122]  #1: ffffc90005a9b2e0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x220/0x1bf0
[  414.549408][ T1122] 1 lock held by syz-executor690/10948:
[  414.555006][ T1122]  #0: ffff88809056c740 (&sb->s_type->i_mutex_key#12){+.+.}, at: __sock_release+0x89/0x280
[  414.565163][ T1122] 
[  414.567506][ T1122] =============================================
[  414.567506][ T1122] 
[  414.575981][ T1122] NMI backtrace for cpu 0
[  414.580316][ T1122] CPU: 0 PID: 1122 Comm: khungtaskd Not tainted 5.6.0-rc1-syzkaller #0
[  414.588533][ T1122] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  414.598569][ T1122] Call Trace:
[  414.601927][ T1122]  dump_stack+0x197/0x210
[  414.606248][ T1122]  nmi_cpu_backtrace.cold+0x70/0xb2
[  414.611474][ T1122]  ? vprintk_func+0x86/0x189
[  414.616096][ T1122]  ? lapic_can_unplug_cpu.cold+0x3a/0x3a
[  414.621779][ T1122]  nmi_trigger_cpumask_backtrace+0x23b/0x28b
[  414.627757][ T1122]  arch_trigger_cpumask_backtrace+0x14/0x20
[  414.633714][ T1122]  watchdog+0xb11/0x10c0
[  414.637958][ T1122]  kthread+0x361/0x430
[  414.642012][ T1122]  ? reset_hung_task_detector+0x30/0x30
[  414.647539][ T1122]  ? kthread_mod_delayed_work+0x1f0/0x1f0
[  414.653242][ T1122]  ret_from_fork+0x24/0x30
[  414.657857][ T1122] Sending NMI from CPU 0 to CPUs 1:
[  414.663524][    C1] NMI backtrace for cpu 1
[  414.663530][    C1] CPU: 1 PID: 2903 Comm: kworker/1:64 Not tainted 5.6.0-rc1-syzkaller #0
[  414.663537][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  414.663541][    C1] Workqueue: events nsim_dev_trap_report_work
[  414.663549][    C1] RIP: 0010:debug_check_no_locks_freed+0x12d/0x290
[  414.663562][    C1] Code: b9 00 00 00 00 00 fc ff df 48 8d 04 80 4d 8d 84 c5 d0 08 00 00 4c 8d 7b f0 48 89 d8 48 c1 e8 03 80 3c 08 00 0f 85 de 00 00 00 <48> 8b 13 48 8d 42 20 49 39 c4 73 55 4d 8d 34 34 4c 39 f2 73 4c e8
[  414.663566][    C1] RSP: 0018:ffffc900096afba8 EFLAGS: 00000046
[  414.663573][    C1] RAX: 1ffff11013d1d9a2 RBX: ffff88809e8ecd10 RCX: dffffc0000000000
[  414.663579][    C1] RDX: ffff8880aa426d28 RSI: 00000000000000e0 RDI: ffff88809e8eccd0
[  414.663584][    C1] RBP: ffffc900096afbe8 R08: ffff88809e8ecd88 R09: fffffbfff16a3385
[  414.663590][    C1] R10: fffffbfff16a3384 R11: ffffffff8b519c27 R12: ffff888092ce3a00
[  414.663595][    C1] R13: ffff88809e8ec440 R14: ffff888092ce3ae0 R15: ffff88809e8ecd00
[  414.663602][    C1] FS:  0000000000000000(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000
[  414.663606][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  414.663611][    C1] CR2: ffffffffff600400 CR3: 000000009c5f9000 CR4: 00000000001406e0
[  414.663617][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  414.663622][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  414.663625][    C1] Call Trace:
[  414.663629][    C1]  ? trace_hardirqs_off+0x62/0x240
[  414.663632][    C1]  kmem_cache_free+0x68/0x320
[  414.663635][    C1]  kfree_skbmem+0xfb/0x1c0
[  414.663639][    C1]  consume_skb+0x103/0x410
[  414.663643][    C1]  nsim_dev_trap_report_work+0x7cb/0xaf0
[  414.663646][    C1]  process_one_work+0xa05/0x17a0
[  414.663650][    C1]  ? mark_held_locks+0xf0/0xf0
[  414.663654][    C1]  ? pwq_dec_nr_in_flight+0x320/0x320
[  414.663657][    C1]  ? lock_acquire+0x190/0x410
[  414.663661][    C1]  worker_thread+0x98/0xe40
[  414.663664][    C1]  kthread+0x361/0x430
[  414.663668][    C1]  ? process_one_work+0x17a0/0x17a0
[  414.663678][    C1]  ? kthread_mod_delayed_work+0x1f0/0x1f0
[  414.663682][    C1]  ret_from_fork+0x24/0x30
[  414.670208][ T1122] Kernel panic - not syncing: hung_task: blocked tasks
[  414.881346][ T1122] CPU: 0 PID: 1122 Comm: khungtaskd Not tainted 5.6.0-rc1-syzkaller #0
[  414.889556][ T1122] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  414.899589][ T1122] Call Trace:
[  414.902894][ T1122]  dump_stack+0x197/0x210
[  414.907317][ T1122]  panic+0x2e3/0x75c
[  414.911201][ T1122]  ? add_taint.cold+0x16/0x16
[  414.915863][ T1122]  ? lapic_can_unplug_cpu.cold+0x3a/0x3a
[  414.921481][ T1122]  ? ___preempt_schedule+0x16/0x18
[  414.926578][ T1122]  ? nmi_trigger_cpumask_backtrace+0x21b/0x28b
[  414.932710][ T1122]  ? nmi_trigger_cpumask_backtrace+0x24c/0x28b
[  414.938845][ T1122]  ? nmi_trigger_cpumask_backtrace+0x256/0x28b
[  414.944979][ T1122]  ? nmi_trigger_cpumask_backtrace+0x21b/0x28b
[  414.951118][ T1122]  watchdog+0xb22/0x10c0
[  414.955354][ T1122]  kthread+0x361/0x430
[  414.959418][ T1122]  ? reset_hung_task_detector+0x30/0x30
[  414.964943][ T1122]  ? kthread_mod_delayed_work+0x1f0/0x1f0
[  414.970660][ T1122]  ret_from_fork+0x24/0x30
[  414.976773][ T1122] Kernel Offset: disabled
[  414.981117][ T1122] Rebooting in 86400 seconds..