[17029]     0 17029    17601     8231      25       4        0             0 syz-executor1
[17035]     0 17035    17601     8231      25       4        0             0 syz-executor1
[17040]     0 17040    17601     8231      25       4        0             0 syz-executor1
[17044]     0 17044    17601     8231      25       4        0             0 syz-executor1
[17052]     0 17052    17601     8231      25       4        0             0 syz-executor1
INFO: task syz-executor3:23094 blocked for more than 140 seconds.
      Not tainted 4.14.90+ #29
[17062]     0 17062    17601     8231      25       4        0             0 syz-executor1
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
syz-executor3   D28840 23094   1852 0x00000004
[17125]     0 17125    17651    12692      31       3        0             0 syz-executor5
Call Trace:
[17161]     0 17161    17684    11218      29       3        0             0 syz-executor5
[17198]     0 17198    17651    12692      31       3        0             0 syz-executor5
 schedule+0x7f/0x1b0 kernel/sched/core.c:3490
[17317]     0 17317    17601     8230      25       4        0             0 syz-executor2
 __lock_sock+0x11d/0x210 net/core/sock.c:2237
[17333]     0 17333    17601     8230      25       4        0             0 syz-executor2
 lock_sock_nested+0xe3/0x100 net/core/sock.c:2758
 lock_sock include/net/sock.h:1452 [inline]
 packet_setsockopt+0x4d8/0x2680 net/packet/af_packet.c:3671
[17442]     0 17442    17601     8201      25       3        0          1000 syz-executor4
[17450]     0 17450    17667     8205      25       3        0          1000 syz-executor4
[17477]     0 17477    17601     8199      24       3        0          1000 syz-executor0
 SYSC_setsockopt net/socket.c:1864 [inline]
 SyS_setsockopt+0x132/0x220 net/socket.c:1843
[17508]     0 17508    17601     8197      24       3        0             0 syz-executor2
[17522]     0 17522    17601     8197      24       3        0             0 syz-executor2
 do_syscall_64+0x19b/0x4b0 arch/x86/entry/common.c:289
 entry_SYSCALL_64_after_hwframe+0x42/0xb7
[17598]     0 17598    17667     8234      25       4        0             0 syz-executor2
RIP: 0033:0x4579b9
RSP: 002b:00007f3fa3aadc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[17706]     0 17706    17601     8190      23       3        0             0 syz-executor5
[17711]     0 17711    17634     8201      24       3        0             0 syz-executor5
[17825]     0 17825    15650     8239      25       4        0             0 syz-executor5
RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000004579b9
RDX: 0000000000000005 RSI: 0000000000000107 RDI: 0000000000000003
RBP: 000000000073bfa0 R08: 0000000000000000 R09: 0000000000000000
[17995]     0 17995    17601     8230      25       4        0             0 syz-executor2
[18079]     0 18079    17634     8234      25       4        0             0 syz-executor5
R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3fa3aae6d4
R13: 00000000004c579c R14: 00000000004da020 R15: 00000000ffffffff
INFO: task syz-executor5:23124 blocked for more than 140 seconds.
[18084]     0 18084    17634     8234      25       4        0             0 syz-executor5
      Not tainted 4.14.90+ #29
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[18448]     0 18448    17601     8198      24       3        0             0 syz-executor1
[18466]     0 18466    17601     8198      24       3        0             0 syz-executor1
syz-executor5   D29432 23124   1850 0x00000004
Call Trace:
[18481]     0 18481    17601     8198      24       3        0             0 syz-executor1
[18515]     0 18515    17601     8231      25       4        0             0 syz-executor1
 schedule+0x7f/0x1b0 kernel/sched/core.c:3490
 __lock_sock+0x11d/0x210 net/core/sock.c:2237
[18520]     0 18520    17601     8231      25       4        0             0 syz-executor1
 lock_sock_nested+0xe3/0x100 net/core/sock.c:2758
[18528]     0 18528    17601     8231      25       4        0             0 syz-executor1
[18536]     0 18536    17601     8231      25       4        0             0 syz-executor1
 lock_sock include/net/sock.h:1452 [inline]
 packet_setsockopt+0x4d8/0x2680 net/packet/af_packet.c:3671
[18544]     0 18544    17601     8231      25       4        0             0 syz-executor1
 SYSC_setsockopt net/socket.c:1864 [inline]
 SyS_setsockopt+0x132/0x220 net/socket.c:1843
[18587]     0 18587    17601     8197      23       3        0             0 syz-executor5
[18592]     0 18592    17601     8231      25       4        0             0 syz-executor1
 do_syscall_64+0x19b/0x4b0 arch/x86/entry/common.c:289
[18717]     0 18717    17601     8197      24       3        0             0 syz-executor2
 entry_SYSCALL_64_after_hwframe+0x42/0xb7
RIP: 0033:0x4579b9
RSP: 002b:00007f369dc73c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[18720]     0 18720    17667     8219      25       4        0             0 syz-executor5
[18772]     0 18772    17667     8234      25       4        0             0 syz-executor2
RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000004579b9
RDX: 0000000000000005 RSI: 0000000000000107 RDI: 0000000000000003
[18825]     0 18825    17667     8235      25       4        0             0 syz-executor5
[18906]     0 18906    17601     8191      24       3        0             0 syz-executor5
RBP: 000000000073c040 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 00007f369dc746d4
[18916]     0 18916    17667     8236      26       4        0             0 syz-executor5
R13: 00000000004c579c R14: 00000000004da020 R15: 00000000ffffffff

Showing all locks held in the system:
[18920]     0 18920    17601     8190      23       3        0             0 syz-executor5
[18926]     0 18926    17634     8201      24       3        0             0 syz-executor5
1 lock held by khungtaskd/23:
 #0:  (tasklist_lock){.+.+}, at: [<ffffffffb6404837>] debug_show_all_locks+0x74/0x20f kernel/locking/lockdep.c:4541
2 locks held by getty/1761:
 #0:  (&tty->ldisc_sem){++++}, at: [<ffffffffb6f40c20>] tty_ldisc_ref_wait+0x20/0x80 drivers/tty/tty_ldisc.c:275
 #1:  (&ldata->atomic_read_lock){+.+.}, at: [<ffffffffb6f3c07f>] n_tty_read+0x1ff/0x1700 drivers/tty/n_tty.c:2156
2 locks held by syz-fuzzer/1780:
 #0:  (&mm->mmap_sem){++++}, at: [<ffffffffb62b573d>] __do_page_fault+0x26d/0xb60 arch/x86/mm/fault.c:1354
 #1:  (&ei->i_mmap_sem){++++}, at: [<ffffffffb6964e65>] ext4_filemap_fault+0x75/0xb0 fs/ext4/inode.c:6178
2 locks held by kworker/u4:4/1868:
 #0:  ("events_unbound"){+.+.}, at: [<ffffffffb6329534>] process_one_work+0x784/0x1670 kernel/workqueue.c:2085
 #1:  ((&sub_info->work)){+.+.}, at: [<ffffffffb632956c>] process_one_work+0x7bc/0x1670 kernel/workqueue.c:2089
1 lock held by syz-executor0/6082:
 #0:  (oom_lock){+.+.}, at: [<ffffffffb66e53d5>] exit_mmap+0x345/0x420 mm/mmap.c:3039
1 lock held by syz-executor4/14131:
 #0:  (&sig->cred_guard_mutex){+.+.}, at: [<ffffffffb677382e>] prepare_bprm_creds+0x4e/0x110 fs/exec.c:1389

=============================================

[18935]     0 18935    17601     8232      26       4        0             0 syz-executor5
[19365]     0 19365    17601     8197      24       3        0             0 syz-executor2
[19445]     0 19445    17601     8230      25       4        0             0 syz-executor2
[19550]     0 19550    17601     8198      24       3        0             0 syz-executor2
[19563]     0 19563    17601     8198      24       3        0             0 syz-executor2
[19637]     0 19637    17667     8236      25       4        0             0 syz-executor2
[19654]     0 19654    17601     8232      25       4        0             0 syz-executor2
[19844]     0 19844    17667     8236      26       4        0             0 syz-executor2
[19929]     0 19929    17601     8191      24       3        0          1000 syz-executor0
[19968]     0 19968    17733     8207      24       3        0          1000 syz-executor0
[20277]     0 20277    17667     8219      25       4        0          1000 syz-executor0
NMI backtrace for cpu 0
CPU: 0 PID: 23 Comm: khungtaskd Not tainted 4.14.90+ #29
Call Trace:
 __dump_stack lib/dump_stack.c:17 [inline]
 dump_stack+0xb9/0x11b lib/dump_stack.c:53
 nmi_cpu_backtrace.cold.0+0x47/0x85 lib/nmi_backtrace.c:101
[20295]     0 20295    17667     8219      25       4        0          1000 syz-executor0
 nmi_trigger_cpumask_backtrace+0x121/0x146 lib/nmi_backtrace.c:62
 trigger_all_cpu_backtrace include/linux/nmi.h:140 [inline]
 check_hung_uninterruptible_tasks kernel/hung_task.c:196 [inline]
 watchdog+0x574/0xa70 kernel/hung_task.c:252
 kthread+0x348/0x420 kernel/kthread.c:232
 ret_from_fork+0x3a/0x50 arch/x86/entry/entry_64.S:402
[20469]     0 20469    17667     8220      25       4        0             0 syz-executor1
Sending NMI from CPU 0 to CPUs 1:
NMI backtrace for cpu 1
CPU: 1 PID: 1846 Comm: syz-executor1 Not tainted 4.14.90+ #29
task: ffff8881cba90000 task.stack: ffff8881a40c8000
RIP: 0010:__sanitizer_cov_trace_pc+0x28/0x60 kernel/kcov.c:93
RSP: 0000:ffff8881a40cf120 EFLAGS: 00000097
RAX: ffff8881cba90000 RBX: ffffffffb80acc00 RCX: 1ffff1103b52ba50
RDX: 0000000000000000 RSI: 0000000000000002 RDI: ffffffffb80acc00
RBP: 0000000000000020 R08: 0000000000000001 R09: 0000000000000000
R10: ffff8881cba908a8 R11: 0000000000000001 R12: 0000000000000002
R13: ffffffffb8a25380 R14: 0000000000000001 R15: 000000000002eac0
FS:  0000000000bee940(0000) GS:ffff8881dbb00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000000000046e34d CR3: 00000001a40be001 CR4: 00000000001606a0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000600
Call Trace:
 __this_cpu_preempt_check+0x9/0x20 lib/smp_processor_id.c:63
 __mod_node_page_state+0x4c/0xd0 mm/vmstat.c:272
 __update_lru_size include/linux/mm_inline.h:32 [inline]
 update_lru_size include/linux/mm_inline.h:41 [inline]
 add_page_to_lru_list include/linux/mm_inline.h:50 [inline]
 putback_inactive_pages+0x3e2/0xd10 mm/vmscan.c:1714
 shrink_inactive_list+0x4c9/0xee0 mm/vmscan.c:1833
 shrink_list mm/vmscan.c:2175 [inline]
 shrink_node_memcg+0x5e8/0x12e0 mm/vmscan.c:2438
 shrink_node+0x301/0xbf0 mm/vmscan.c:2630
 shrink_zones mm/vmscan.c:2812 [inline]
 do_try_to_free_pages+0x349/0xde0 mm/vmscan.c:2874
 try_to_free_pages+0x204/0x6b0 mm/vmscan.c:3080
 __perform_reclaim mm/page_alloc.c:3593 [inline]
 __alloc_pages_direct_reclaim mm/page_alloc.c:3614 [inline]
 __alloc_pages_slowpath mm/page_alloc.c:4001 [inline]
 __alloc_pages_nodemask+0xa8a/0x2180 mm/page_alloc.c:4210
 __alloc_pages include/linux/gfp.h:461 [inline]
 __alloc_pages_node include/linux/gfp.h:474 [inline]
 alloc_pages_node include/linux/gfp.h:488 [inline]
 __page_cache_alloc include/linux/pagemap.h:226 [inline]
 page_cache_read mm/filemap.c:2286 [inline]
 filemap_fault+0xcdd/0x14a0 mm/filemap.c:2470
 ext4_filemap_fault+0x7d/0xb0 fs/ext4/inode.c:6179
 __do_fault+0x80/0x210 mm/memory.c:3194
 do_read_fault mm/memory.c:3604 [inline]
 do_fault mm/memory.c:3730 [inline]
 handle_pte_fault mm/memory.c:3960 [inline]
 __handle_mm_fault+0x991/0x25f0 mm/memory.c:4084
 handle_mm_fault+0x2f2/0x6eb mm/memory.c:4121
 __do_page_fault+0x45d/0xb60 arch/x86/mm/fault.c:1425
 page_fault+0x42/0x50 arch/x86/entry/entry_64.S:1104
RIP: 8f2334a8:0x4bc9c3
RSP: 8f233330:00007ffc8f233320 EFLAGS: 004bc9c3
Code: 90 90 90 65 48 8b 04 25 c0 de 01 00 48 85 c0 74 1a 65 8b 15 3b f5 b0 49 81 e2 00 01 1f 00 75 0b 8b 90 a8 11 00 00 83 fa 01 74 01 <c3> 48 c7 c2 00 00 00 81 48 81 ea 00 00 20 b6 48 03 14 24 48 8b