[25307]     0 25307    17684     8239      25       4        0             0 syz-executor3
[25341]     0 25341    17647    12736      31       3        0             0 syz-executor2
[25760]     0 25760    17651     8235      25       4        0             0 syz-executor3
[25848]     0 25848    17684     8236      25       4        0          1000 syz-executor0
INFO: task syz-executor2:31573 blocked for more than 140 seconds.
      Not tainted 4.14.90+ #29
[25882]     0 25882    17618     8201      24       3        0          1000 syz-executor0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
syz-executor2   D29784 31573   1841 0x00000004
[25889]     0 25889    17618     8201      24       3        0          1000 syz-executor0
Call Trace:
 schedule+0x7f/0x1b0 kernel/sched/core.c:3490
[25935]     0 25935    17585     8234      26       4        0          1000 syz-executor4
 __lock_sock+0x11d/0x210 net/core/sock.c:2237
[26139]     0 26139    17618     8203      25       3        0             0 syz-executor2
[26149]     0 26149    17684     8207      25       3        0             0 syz-executor2
[26484]     0 26484    17651     8219      25       4        0             0 syz-executor2
[26530]     0 26530    17651     8219      25       4        0             0 syz-executor2
[26544]     0 26544    17684     8241      26       4        0          1000 syz-executor4
 lock_sock_nested+0xe3/0x100 net/core/sock.c:2758
[26670]     0 26670    17585     8190      23       3        0             0 syz-executor3
 lock_sock include/net/sock.h:1452 [inline]
 packet_setsockopt+0x70a/0x2680 net/packet/af_packet.c:3794
[26672]     0 26672    17585     8200      24       3        0             0 syz-executor3
[26879]     0 26879    17618     8234      25       4        0             0 syz-executor2
[27033]     0 27033    17651     8235      25       4        0             0 syz-executor2
[27102]     0 27102    17585     8199      24       3        0          1000 syz-executor0
[27103]     0 27103    17585     8232      25       4        0          1000 syz-executor0
 SYSC_setsockopt net/socket.c:1864 [inline]
 SyS_setsockopt+0x132/0x220 net/socket.c:1843
[27127]     0 27127    17585     8223      23       3        0          1000 syz-executor4
[27177]     0 27177    17618     8204      25       3        0             0 syz-executor3
[27232]     0 27232    17717     9255      25       3        0             0 syz-executor3
[27326]     0 27326    17585     8201      25       3        0             0 syz-executor2
[27365]     0 27365    17680    12707      31       3        0             0 syz-executor2
 do_syscall_64+0x19b/0x4b0 arch/x86/entry/common.c:289
 entry_SYSCALL_64_after_hwframe+0x42/0xb7
RIP: 0033:0x457669
[27735]     0 27735    17618    12328      32       4        0             0 syz-executor2
RSP: 002b:00007f8fc8e9dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[27810]     0 27810    17585     8190      23       3        0          1000 syz-executor0
RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000457669
RDX: 0000000000000009 RSI: 0000000000000107 RDI: 0000000000000003
[28074]     0 28074    17585     8200      25       3        0             0 syz-executor3
RBP: 000000000072bfa0 R08: 0000000000000004 R09: 0000000000000000
[28085]     0 28085    17618     8202      25       3        0             0 syz-executor3
R10: 0000000020000080 R11: 0000000000000246 R12: 00007f8fc8e9e6d4
[28207]     0 28207    17651     8235      25       4        0             0 syz-executor2
R13: 00000000004c4ea4 R14: 00000000004d8f58 R15: 00000000ffffffff
INFO: task syz-executor2:31585 blocked for more than 140 seconds.
[28365]     0 28365    17585     8232      25       4        0             0 syz-executor3
      Not tainted 4.14.90+ #29
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[28426]     0 28426    17618     8235      26       4        0          1000 syz-executor0
[28475]     0 28475    17618     8237      26       4        0          1000 syz-executor4
syz-executor2   D29784 31585   1841 0x00000004
Call Trace:
[28562]     0 28562    17684     8238      25       4        0          1000 syz-executor0
[28596]     0 28596    17618     8233      25       4        0             0 syz-executor3
 schedule+0x7f/0x1b0 kernel/sched/core.c:3490
 __lock_sock+0x11d/0x210 net/core/sock.c:2237
[28603]     0 28603    17618     8233      25       4        0             0 syz-executor3
 lock_sock_nested+0xe3/0x100 net/core/sock.c:2758
 lock_sock include/net/sock.h:1452 [inline]
 packet_setsockopt+0x70a/0x2680 net/packet/af_packet.c:3794
[28818]     0 28818    17585     8231      25       4        0          1000 syz-executor1
[29232]     0 29232    17684     8242      25       4        0          1000 syz-executor4
[29318]     0 29318    17618     8201      24       3        0          1000 syz-executor1
 SYSC_setsockopt net/socket.c:1864 [inline]
 SyS_setsockopt+0x132/0x220 net/socket.c:1843
[29326]     0 29326    17618     8201      24       3        0          1000 syz-executor1
[29362]     0 29362    17684     8221      25       4        0             0 syz-executor3
 do_syscall_64+0x19b/0x4b0 arch/x86/entry/common.c:289
[29411]     0 29411    17684     8221      25       4        0             0 syz-executor3
 entry_SYSCALL_64_after_hwframe+0x42/0xb7
RIP: 0033:0x457669
RSP: 002b:00007f8fc8e5bc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[29473]     0 29473    17585     8199      24       3        0          1000 syz-executor0
[29474]     0 29474    17651     8398      26       4        0          1000 syz-executor4
RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000457669
[29518]     0 29518    17651     8203      24       3        0          1000 syz-executor0
RDX: 0000000000000009 RSI: 0000000000000107 RDI: 0000000000000004
RBP: 000000000072c0e0 R08: 0000000000000004 R09: 0000000000000000
[29520]     0 29520    17684     8237      25       4        0          1000 syz-executor0
R10: 0000000020000080 R11: 0000000000000246 R12: 00007f8fc8e5c6d4
[29533]     0 29533    17618     8233      25       4        0             0 syz-executor2
R13: 00000000004c4ea4 R14: 00000000004d8f58 R15: 00000000ffffffff
[29540]     0 29540    17618     8233      25       4        0             0 syz-executor2

Showing all locks held in the system:
1 lock held by khungtaskd/23:
 #0:  (tasklist_lock){.+.?}, at: [<ffffffffab004837>] debug_show_all_locks+0x74/0x20f kernel/locking/lockdep.c:4541
2 locks held by getty/1754:
 #0:  (&tty->ldisc_sem){++++}, at: [<ffffffffabb40c20>] tty_ldisc_ref_wait+0x20/0x80 drivers/tty/tty_ldisc.c:275
 #1:  (&ldata->atomic_read_lock){+.+.}, at: [<ffffffffabb3c07f>] n_tty_read+0x1ff/0x1700 drivers/tty/n_tty.c:2156
2 locks held by syz-fuzzer/1782:
 #0:  (&mm->mmap_sem){++++}, at: [<ffffffffaaeb573d>] __do_page_fault+0x26d/0xb60 arch/x86/mm/fault.c:1354
 #1:  (&ei->i_mmap_sem){++++}, at: [<ffffffffab564e65>] ext4_filemap_fault+0x75/0xb0 fs/ext4/inode.c:6178
2 locks held by syz-fuzzer/7190:
 #0:  (&mm->mmap_sem){++++}, at: [<ffffffffaaeb573d>] __do_page_fault+0x26d/0xb60 arch/x86/mm/fault.c:1354
[29586]     0 29586    17618     8237      27       4        0          1000 syz-executor4
 #1:  (&ei->i_mmap_sem){++++}, at: [<ffffffffab564e65>] ext4_filemap_fault+0x75/0xb0 fs/ext4/inode.c:6178
2 locks held by kworker/u4:41/22949:
 #0:  ("events_unbound"){+.+.}, at: [<ffffffffaaf29534>] process_one_work+0x784/0x1670 kernel/workqueue.c:2085
 #1:  ((&sub_info->work)){+.+.}, at: [<ffffffffaaf2956c>] process_one_work+0x7bc/0x1670 kernel/workqueue.c:2089

=============================================

[29955]     0 29955    17585     8190      23       3        0             0 syz-executor0
[29997]     0 29997    17684     8206      24       3        0             0 syz-executor0
[30074]     0 30074    17651     8235      25       4        0             0 syz-executor3
[30139]     0 30139    17585     8199      24       3        0             0 syz-executor3
[30150]     0 30150    17618     8234      25       4        0          1000 syz-executor4
[30151]     0 30151    17618     8202      25       3        0             0 syz-executor3
[30331]     0 30331    17717     8239      32       4        0             0 syz-executor3
[30367]     0 30367    17717     8239      32       4        0             0 syz-executor3
[30386]     0 30386    17651     8219      25       4        0             0 syz-executor2
[30391]     0 30391    17585     8231      25       4        0             0 syz-executor3
[30436]     0 30436    17585     8200      25       3        0          1000 syz-executor1
[30440]     0 30440    17618     8203      25       3        0          1000 syz-executor1
[30442]     0 30442    17651     8219      25       4        0             0 syz-executor2
NMI backtrace for cpu 1
CPU: 1 PID: 23 Comm: khungtaskd Not tainted 4.14.90+ #29
Call Trace:
 __dump_stack lib/dump_stack.c:17 [inline]
 dump_stack+0xb9/0x11b lib/dump_stack.c:53
 nmi_cpu_backtrace.cold.0+0x47/0x85 lib/nmi_backtrace.c:101
 nmi_trigger_cpumask_backtrace+0x121/0x146 lib/nmi_backtrace.c:62
 trigger_all_cpu_backtrace include/linux/nmi.h:140 [inline]
 check_hung_uninterruptible_tasks kernel/hung_task.c:196 [inline]
 watchdog+0x574/0xa70 kernel/hung_task.c:252
 kthread+0x348/0x420 kernel/kthread.c:232
 ret_from_fork+0x3a/0x50 arch/x86/entry/entry_64.S:402
Sending NMI from CPU 1 to CPUs 0:
NMI backtrace for cpu 0
CPU: 0 PID: 31567 Comm: syz-executor2 Not tainted 4.14.90+ #29
task: ffff888041b7af00 task.stack: ffff888005520000
RIP: 0010:queued_spin_lock include/asm-generic/qspinlock.h:88 [inline]
RIP: 0010:do_raw_spin_lock+0xb2/0x1c0 kernel/locking/spinlock_debug.c:113
RSP: 0018:ffff888005526d90 EFLAGS: 00000046
RAX: 0000000000000000 RBX: ffff88819e2ea2d0 RCX: 0000000000000000
RDX: 0000000000000001 RSI: ffff888041b7b758 RDI: ffff88819e2ea2d4
RBP: ffff88819e2ea2e0 R08: 0000000000005576 R09: ffffffffae2f7390
R10: ffff888041b7b758 R11: 0000000000000001 R12: ffff88819e2ea2d8
R13: ffff88819e2ea2d0 R14: dead000000000100 R15: 0000000000000001
FS:  00007f8fc8ebf700(0000) GS:ffff8881db800000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00000000004328d3 CR3: 00000000a9678001 CR4: 00000000001606b0
DR0: 0000000020000000 DR1: 0000000020000000 DR2: 0000000020000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000600
Call Trace:
 __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:117 [inline]
 _raw_spin_lock_irqsave+0x49/0x50 kernel/locking/spinlock.c:160
 __remove_mapping+0x9f/0x570 mm/vmscan.c:680
 shrink_page_list+0x1540/0x31d0 mm/vmscan.c:1311
 shrink_inactive_list+0x3b9/0xee0 mm/vmscan.c:1816
 shrink_list mm/vmscan.c:2175 [inline]
 shrink_node_memcg+0x5e8/0x12e0 mm/vmscan.c:2438
 shrink_node+0x301/0xbf0 mm/vmscan.c:2630
 shrink_zones mm/vmscan.c:2812 [inline]
 do_try_to_free_pages+0x349/0xde0 mm/vmscan.c:2874
 try_to_free_pages+0x204/0x6b0 mm/vmscan.c:3080
 __perform_reclaim mm/page_alloc.c:3593 [inline]
 __alloc_pages_direct_reclaim mm/page_alloc.c:3614 [inline]
 __alloc_pages_slowpath mm/page_alloc.c:4001 [inline]
 __alloc_pages_nodemask+0xa8a/0x2180 mm/page_alloc.c:4210
 __alloc_pages include/linux/gfp.h:461 [inline]
 __alloc_pages_node include/linux/gfp.h:474 [inline]
 alloc_pages_node include/linux/gfp.h:488 [inline]
 __vmalloc_area_node mm/vmalloc.c:1702 [inline]
 __vmalloc_node_range+0x283/0x680 mm/vmalloc.c:1760
 __vmalloc_node mm/vmalloc.c:1805 [inline]
 __vmalloc_node_flags mm/vmalloc.c:1819 [inline]
 vzalloc+0x63/0x80 mm/vmalloc.c:1858
 alloc_one_pg_vec_page net/packet/af_packet.c:4211 [inline]
 alloc_pg_vec net/packet/af_packet.c:4236 [inline]
 packet_set_ring+0xa11/0x1700 net/packet/af_packet.c:4320
 packet_setsockopt+0x588/0x2680 net/packet/af_packet.c:3688
 SYSC_setsockopt net/socket.c:1864 [inline]
 SyS_setsockopt+0x132/0x220 net/socket.c:1843
 do_syscall_64+0x19b/0x4b0 arch/x86/entry/common.c:289
 entry_SYSCALL_64_after_hwframe+0x42/0xb7
RIP: 0033:0x457669
RSP: 002b:00007f8fc8ebec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000457669
RDX: 0000000000000005 RSI: 0000000000000107 RDI: 0000000000000003
RBP: 000000000072bf00 R08: 000000000000018f R09: 0000000000000000
R10: 0000000020000040 R11: 0000000000000246 R12: 00007f8fc8ebf6d4
R13: 00000000004c4eba R14: 00000000004d8f70 R15: 00000000ffffffff
Code: 48 c1 ea 03 0f b6 04 02 84 c0 74 08 3c 03 0f 8e e7 00 00 00 65 8b 05 1e 9d 00 55 39 43 08 74 6b 31 c0 ba 01 00 00 00 f0 0f b1 13 <85> c0 75 79 65 44 8b 2d 02 9d 00 55 48 b8 00 00 00 00 00 fc ff 
[30491]     0 30491    17651     8239      25       4        0          1000 syz-executor1