ip6_tunnel: ip6tnl2 xmit: Local address not yet configured!
INFO: task syz-executor.4:20561 blocked for more than 140 seconds.
      Not tainted 4.9.155+ #27
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
syz-executor.4  D25768 20561      1 0x00000004
 ffff8801a29d0000 ffff8801d3f14780 ffff8801db721000 ffff8801d2302f80
 ffff8801db721018 ffff88017f9175b0 ffffffff82806806 dffffc0000000000
 ffff88017f917588 ffffffff81207081 00ffffff8281290b ffff8801db7218f0
Call Trace:
 [<ffffffff82807d92>] schedule+0x92/0x1c0 kernel/sched/core.c:3553
 [<ffffffff82812aa8>] rwsem_down_read_failed+0x258/0x3e0 kernel/locking/rwsem-xadd.c:260
 [<ffffffff81b78ff8>] call_rwsem_down_read_failed+0x18/0x30 arch/x86/lib/rwsem.S:94
 [<ffffffff828108a2>] __down_read arch/x86/include/asm/rwsem.h:65 [inline]
 [<ffffffff828108a2>] down_read+0x52/0xb0 kernel/locking/rwsem.c:24
 [<ffffffff8152c8b0>] inode_lock_shared include/linux/fs.h:778 [inline]
 [<ffffffff8152c8b0>] lookup_slow+0x160/0x480 fs/namei.c:1686
 [<ffffffff8153bc0e>] walk_component+0x71e/0xce0 fs/namei.c:1825
 [<ffffffff8153ca67>] link_path_walk+0x897/0x1200 fs/namei.c:2161
 [<ffffffff8153e16e>] path_openat+0x18e/0x2f60 fs/namei.c:3580
 [<ffffffff81543d21>] do_filp_open+0x1a1/0x280 fs/namei.c:3615
 [<ffffffff815080c0>] do_sys_open+0x2f0/0x610 fs/open.c:1072
 [<ffffffff8150840d>] SYSC_open fs/open.c:1090 [inline]
 [<ffffffff8150840d>] SyS_open+0x2d/0x40 fs/open.c:1085
 [<ffffffff810056bd>] do_syscall_64+0x1ad/0x570 arch/x86/entry/common.c:285
 [<ffffffff82816a93>] entry_SYSCALL_64_after_swapgs+0x5d/0xdb

Showing all locks held in the system:
2 locks held by khungtaskd/24:
 #0:  (rcu_read_lock){......}, at: [<ffffffff8131bbab>] check_hung_uninterruptible_tasks kernel/hung_task.c:168 [inline]
 #0:  (rcu_read_lock){......}, at: [<ffffffff8131bbab>] watchdog+0x11b/0xa40 kernel/hung_task.c:239
 #1:  (tasklist_lock){.+.+..}, at: [<ffffffff813fea8f>] debug_show_all_locks+0x7f/0x21f kernel/locking/lockdep.c:4336
2 locks held by getty/2038:
 #0:  (&tty->ldisc_sem){++++++}, at: [<ffffffff82814b83>] ldsem_down_read+0x33/0x40 drivers/tty/tty_ldsem.c:377
 #1:  (&ldata->atomic_read_lock){+.+.+.}, at: [<ffffffff81d3982e>] n_tty_read+0x1fe/0x1820 drivers/tty/n_tty.c:2156
1 lock held by syz-executor.4/20561:
 #0:  (&type->i_mutex_dir_key#7){++++++}, at: [<ffffffff8152c8b0>] inode_lock_shared include/linux/fs.h:778 [inline]
 #0:  (&type->i_mutex_dir_key#7){++++++}, at: [<ffffffff8152c8b0>] lookup_slow+0x160/0x480 fs/namei.c:1686
1 lock held by syz-executor.4/20713:
 #0:  (&type->i_mutex_dir_key#7){++++++}, at: [<ffffffff8152c8b0>] inode_lock_shared include/linux/fs.h:778 [inline]
 #0:  (&type->i_mutex_dir_key#7){++++++}, at: [<ffffffff8152c8b0>] lookup_slow+0x160/0x480 fs/namei.c:1686
2 locks held by syz-executor.4/20714:
 #0:  (&type->i_mutex_dir_key#7){++++++}, at: [<ffffffff8152c8b0>] inode_lock_shared include/linux/fs.h:778 [inline]
 #0:  (&type->i_mutex_dir_key#7){++++++}, at: [<ffffffff8152c8b0>] lookup_slow+0x160/0x480 fs/namei.c:1686
 #1:  (&fi->mutex){+.+.+.}, at: [<ffffffff818928ad>] fuse_lock_inode+0xad/0xe0 fs/fuse/inode.c:364
2 locks held by syz-executor.4/20717:
 #0:  (sb_writers#12){.+.+.+}, at: [<ffffffff81577c8f>] sb_start_write include/linux/fs.h:1575 [inline]
 #0:  (sb_writers#12){.+.+.+}, at: [<ffffffff81577c8f>] mnt_want_write+0x3f/0xb0 fs/namespace.c:391
 #1:  (&type->i_mutex_dir_key#7/1){+.+.+.}, at: [<ffffffff815426f9>] inode_lock_nested include/linux/fs.h:803 [inline]
 #1:  (&type->i_mutex_dir_key#7/1){+.+.+.}, at: [<ffffffff815426f9>] filename_create+0x159/0x460 fs/namei.c:3686

=============================================

NMI backtrace for cpu 1
CPU: 1 PID: 24 Comm: khungtaskd Not tainted 4.9.155+ #27
 ffff8801d9907cd0 ffffffff81b47871 0000000000000001 0000000000000000
 0000000000000001 ffffffff81097301 00000000003ffe71 ffff8801d9907d08
 ffffffff81b52afc 0000000000000001 0000000000000000 0000000000000001
Call Trace:
 [<ffffffff81b47871>] __dump_stack lib/dump_stack.c:15 [inline]
 [<ffffffff81b47871>] dump_stack+0xc1/0x120 lib/dump_stack.c:51
 [<ffffffff81b52afc>] nmi_cpu_backtrace.cold+0x47/0x87 lib/nmi_backtrace.c:99
 [<ffffffff81b52a84>] nmi_trigger_cpumask_backtrace+0x124/0x155 lib/nmi_backtrace.c:60
 [<ffffffff81097494>] arch_trigger_cpumask_backtrace+0x14/0x20 arch/x86/kernel/apic/hw_nmi.c:37
 [<ffffffff8131c087>] trigger_all_cpu_backtrace include/linux/nmi.h:58 [inline]
 [<ffffffff8131c087>] check_hung_task kernel/hung_task.c:125 [inline]
 [<ffffffff8131c087>] check_hung_uninterruptible_tasks kernel/hung_task.c:182 [inline]
 [<ffffffff8131c087>] watchdog+0x5f7/0xa40 kernel/hung_task.c:239
 [<ffffffff81142028>] kthread+0x278/0x310 kernel/kthread.c:211
 [<ffffffff82816c5c>] ret_from_fork+0x5c/0x70 arch/x86/entry/entry_64.S:373
Sending NMI from CPU 1 to CPUs 0:
NMI backtrace for cpu 0
CPU: 0 PID: 20712 Comm: syz-executor.4 Not tainted 4.9.155+ #27
task: ffff8801c7a7af80 task.stack: ffff8801c90b8000
RIP: 0010:[<ffffffff81b63065>] 
c [<ffffffff81b63065>] strlen+0x45/0xa0 lib/string.c:481
RSP: 0018:ffff8801c90bf0b0  EFLAGS: 00000006
RAX: ffffffff82afdf49 RBX: dffffc0000000000 RCX: 0000000000000001
RDX: 0000000000000004 RSI: ffff8801c5275e90 RDI: ffffffff82afdf40
RBP: ffff8801c90bf0c8 R08: 0000000000000282 R09: 0000000000007763
R10: 0000000000000000 R11: 0000000000000001 R12: ffffffff82afdf40
R13: 0000000000000000 R14: ffffffff830bdbc0 R15: ffff8801c90bf198
FS:  00007ff8bd4e6700(0000) GS:ffff8801db600000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007ff9c501e000 CR3: 000000018e9a3000 CR4: 00000000001606b0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
Stack:
 ffffffff81babb7c
c ffff8801c707d7a8
c 1ffff10039217e23
c ffff8801c90bf1c0
c
 ffffffff811ffa81
c ffff8801c7a7b898
c ffff8801c7a7b820
c ffff8801c7a7b8a0
c
 ffff8801c7a7b828
c ffff8801c7a7b830
c ffff8801c5275ea8
c ffffffff83c63498
c
Call Trace:
 [<ffffffff811ffa81>] trace_event_get_offsets_lock include/trace/events/lock.h:38 [inline]
 [<ffffffff811ffa81>] perf_trace_lock+0xe1/0x540 include/trace/events/lock.h:38
 [<ffffffff8120d05a>] trace_lock_release include/trace/events/lock.h:57 [inline]
 [<ffffffff8120d05a>] lock_release+0x92a/0xc30 kernel/locking/lockdep.c:3774
 [<ffffffff8281617f>] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:160 [inline]
 [<ffffffff8281617f>] _raw_spin_unlock_irqrestore+0x1f/0x70 kernel/locking/spinlock.c:191
 [<ffffffff811eeee8>] spin_unlock_irqrestore include/linux/spinlock.h:362 [inline]
 [<ffffffff811eeee8>] prepare_to_wait_event+0x128/0x750 kernel/sched/wait.c:238
 [<ffffffff8185e6b9>] request_wait_answer+0x249/0x820 fs/fuse/dev.c:477
 [<ffffffff818631e9>] __fuse_request_send+0x109/0x1b0 fs/fuse/dev.c:498
 [<ffffffff818632f3>] fuse_request_send+0x63/0x70 fs/fuse/dev.c:511
 [<ffffffff8186ade4>] fuse_simple_request+0x2c4/0x660 fs/fuse/dev.c:569
 [<ffffffff81873750>] fuse_lookup_name+0x260/0x640 fs/fuse/dir.c:369
 [<ffffffff81873c1c>] fuse_lookup+0xec/0x3b0 fs/fuse/dir.c:407
 [<ffffffff8152c99b>] lookup_slow+0x24b/0x480 fs/namei.c:1709
 [<ffffffff8153bc0e>] walk_component+0x71e/0xce0 fs/namei.c:1825
 [<ffffffff8153ca67>] link_path_walk+0x897/0x1200 fs/namei.c:2161
 [<ffffffff8153e16e>] path_openat+0x18e/0x2f60 fs/namei.c:3580
 [<ffffffff81543d21>] do_filp_open+0x1a1/0x280 fs/namei.c:3615
 [<ffffffff815080c0>] do_sys_open+0x2f0/0x610 fs/open.c:1072
 [<ffffffff8150840d>] SYSC_open fs/open.c:1090 [inline]
 [<ffffffff8150840d>] SyS_open+0x2d/0x40 fs/open.c:1085
 [<ffffffff810056bd>] do_syscall_64+0x1ad/0x570 arch/x86/entry/common.c:285
 [<ffffffff82816a93>] entry_SYSCALL_64_after_swapgs+0x5d/0xdb
Code: 
c53 
c48 
c83 
cec 
c08 
c0f 
cb6 
c04 
c02 
c48 
c89 
cfa 
c83 
ce2 
c07 
c38 
cd0 
c7f 
c04 
c84 
cc0 
c75 
c4d 
c41 
c80 
c3c 
c24 
c00 
c74 
c3b 
c48 
cbb 
c00 
c00 
c00 
c00 
c00 
cfc 
cff 
cdf 
c4c 
c89 
ce0 
c<48> 
c83 
cc0 
c01 
c48 
c89 
cc2 
c48 
c89 
cc1 
c48 
cc1 
cea 
c03 
c83 
ce1 
c07 
c0f 
cb6 
c14 
c1a 
c