INFO: task syz-executor.5:16333 blocked for more than 143 seconds. Tainted: G W 5.14.0-rc1-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:syz-executor.5 state:D stack:28760 pid:16333 ppid: 2021 flags:0x00004004 Call Trace: context_switch kernel/sched/core.c:4683 [inline] __schedule+0x93a/0x26f0 kernel/sched/core.c:5940 schedule+0xd3/0x270 kernel/sched/core.c:6019 schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:6078 __mutex_lock_common kernel/locking/mutex.c:1036 [inline] __mutex_lock+0x7b6/0x10a0 kernel/locking/mutex.c:1104 __unix_dgram_recvmsg+0x226/0xb60 net/unix/af_unix.c:2119 unix_dgram_bpf_recvmsg+0x630/0xd10 net/unix/unix_bpf.c:71 unix_dgram_recvmsg+0xa0/0xf0 net/unix/af_unix.c:2215 sock_recvmsg_nosec net/socket.c:943 [inline] sock_recvmsg net/socket.c:961 [inline] sock_recvmsg net/socket.c:957 [inline] ____sys_recvmsg+0x2c4/0x600 net/socket.c:2611 ___sys_recvmsg+0x127/0x200 net/socket.c:2653 __sys_recvmsg+0xe2/0x1a0 net/socket.c:2683 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x44/0xae RIP: 0033:0x4665e9 RSP: 002b:00007f162c668188 EFLAGS: 00000246 ORIG_RAX: 000000000000002f RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 RDX: 0000000000000000 RSI: 0000000020011280 RDI: 0000000000000005 RBP: 00000000004bfcc4 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 000000000056bf80 R13: 00007ffe3c27a88f R14: 00007f162c668300 R15: 0000000000022000 INFO: task syz-executor.5:16385 blocked for more than 143 seconds. Tainted: G W 5.14.0-rc1-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:syz-executor.5 state:D stack:29600 pid:16385 ppid: 2021 flags:0x00004004 Call Trace: context_switch kernel/sched/core.c:4683 [inline] __schedule+0x93a/0x26f0 kernel/sched/core.c:5940 schedule+0xd3/0x270 kernel/sched/core.c:6019 schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:6078 __mutex_lock_common kernel/locking/mutex.c:1036 [inline] __mutex_lock+0x7b6/0x10a0 kernel/locking/mutex.c:1104 __unix_dgram_recvmsg+0x226/0xb60 net/unix/af_unix.c:2119 unix_dgram_bpf_recvmsg+0x630/0xd10 net/unix/unix_bpf.c:71 unix_dgram_recvmsg+0xa0/0xf0 net/unix/af_unix.c:2215 sock_recvmsg_nosec net/socket.c:943 [inline] sock_recvmsg net/socket.c:961 [inline] sock_recvmsg net/socket.c:957 [inline] ____sys_recvmsg+0x2c4/0x600 net/socket.c:2611 ___sys_recvmsg+0x127/0x200 net/socket.c:2653 __sys_recvmsg+0xe2/0x1a0 net/socket.c:2683 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x44/0xae RIP: 0033:0x4665e9 RSP: 002b:00007f162c626188 EFLAGS: 00000246 ORIG_RAX: 000000000000002f RAX: ffffffffffffffda RBX: 000000000056c0f0 RCX: 00000000004665e9 RDX: 0000000000000000 RSI: 0000000020011280 RDI: 0000000000000005 RBP: 00000000004bfcc4 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 000000000056c0f0 R13: 00007ffe3c27a88f R14: 00007f162c626300 R15: 0000000000022000 INFO: lockdep is turned off. NMI backtrace for cpu 0 CPU: 0 PID: 1653 Comm: khungtaskd Tainted: G W 5.14.0-rc1-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:88 [inline] dump_stack_lvl+0xcd/0x134 lib/dump_stack.c:105 nmi_cpu_backtrace.cold+0x44/0xd7 lib/nmi_backtrace.c:105 nmi_trigger_cpumask_backtrace+0x1b3/0x230 lib/nmi_backtrace.c:62 trigger_all_cpu_backtrace include/linux/nmi.h:146 [inline] check_hung_uninterruptible_tasks kernel/hung_task.c:210 [inline] watchdog+0xd0a/0xfc0 kernel/hung_task.c:295 kthread+0x3e5/0x4d0 kernel/kthread.c:319 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:295 Sending NMI from CPU 0 to CPUs 1: NMI backtrace for cpu 1 CPU: 1 PID: 20095 Comm: kworker/u4:4 Tainted: G W 5.14.0-rc1-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Workqueue: phy327 ieee80211_iface_work RIP: 0010:__unwind_start+0x2/0x800 arch/x86/kernel/unwind_orc.c:626 Code: ff 48 89 4c 24 28 4c 89 44 24 20 e8 08 7c 88 00 48 8b 4c 24 28 4c 8b 44 24 20 e9 08 ee ff ff 66 0f 1f 84 00 00 00 00 00 41 57 <49> 89 ff 41 56 41 55 4d 8d 6f 28 41 54 49 89 d4 ba 60 00 00 00 55 RSP: 0018:ffffc90001e6f138 EFLAGS: 00000246 RAX: ffff888025ce9c40 RBX: ffffffff8163f8d0 RCX: ffffc90001e6f1d0 RDX: 0000000000000000 RSI: ffff888025ce9c40 RDI: ffffc90001e6f148 RBP: ffffc90001e6f1d0 R08: 0000000000000a20 R09: ffffed1006b2f9d5 R10: fffff520003cdf22 R11: 0000000000000000 R12: ffffc90001e6f200 R13: 0000000000000000 R14: ffff888025ce9c40 R15: ffff88802154d248 FS: 0000000000000000(0000) GS:ffff8880b9d00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00007f850a9ab000 CR3: 000000000b68e000 CR4: 00000000001506e0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 Call Trace: unwind_start arch/x86/include/asm/unwind.h:60 [inline] arch_stack_walk+0x5c/0xe0 arch/x86/kernel/stacktrace.c:24 stack_trace_save+0x8c/0xc0 kernel/stacktrace.c:121 kasan_save_stack+0x1b/0x40 mm/kasan/common.c:38 kasan_set_track mm/kasan/common.c:46 [inline] set_alloc_info mm/kasan/common.c:434 [inline] ____kasan_kmalloc mm/kasan/common.c:513 [inline] ____kasan_kmalloc mm/kasan/common.c:472 [inline] __kasan_kmalloc+0x9b/0xd0 mm/kasan/common.c:522 kmalloc include/linux/slab.h:596 [inline] ieee802_11_parse_elems_crc+0x121/0xfe0 net/mac80211/util.c:1465 ieee802_11_parse_elems net/mac80211/ieee80211_i.h:2186 [inline] ieee80211_rx_mgmt_probe_beacon+0x17f/0x17c0 net/mac80211/ibss.c:1612 ieee80211_ibss_rx_queued_mgmt+0xd30/0x1610 net/mac80211/ibss.c:1642 ieee80211_iface_process_skb net/mac80211/iface.c:1426 [inline] ieee80211_iface_work+0x7f7/0xa40 net/mac80211/iface.c:1462 process_one_work+0x98d/0x1630 kernel/workqueue.c:2276 worker_thread+0x658/0x11f0 kernel/workqueue.c:2422 kthread+0x3e5/0x4d0 kernel/kthread.c:319 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:295