BUG: sleeping function called from invalid context at kernel/locking/mutex.c:908
in_atomic(): 1, irqs_disabled(): 0, pid: 31637, name: blkid
3 locks held by blkid/31637:
 #0: 000000002e585620 (&(ptlock_ptr(page))->rlock#2){+.+.}, at: spin_lock include/linux/spinlock.h:329 [inline]
 #0: 000000002e585620 (&(ptlock_ptr(page))->rlock#2){+.+.}, at: zap_pte_range mm/memory.c:1299 [inline]
 #0: 000000002e585620 (&(ptlock_ptr(page))->rlock#2){+.+.}, at: zap_pmd_range mm/memory.c:1440 [inline]
 #0: 000000002e585620 (&(ptlock_ptr(page))->rlock#2){+.+.}, at: zap_pud_range mm/memory.c:1469 [inline]
 #0: 000000002e585620 (&(ptlock_ptr(page))->rlock#2){+.+.}, at: zap_p4d_range mm/memory.c:1490 [inline]
 #0: 000000002e585620 (&(ptlock_ptr(page))->rlock#2){+.+.}, at: unmap_page_range+0x8a9/0x1fb0 mm/memory.c:1511
 #1: 000000002c86312f (rcu_read_lock){....}, at: lock_page_memcg+0x0/0x240 include/linux/cgroup.h:482
 #2: 0000000030502281 ((&sp->resync_t)){+.-.}, at: lockdep_copy_map include/linux/lockdep.h:168 [inline]
 #2: 0000000030502281 ((&sp->resync_t)){+.-.}, at: call_timer_fn+0xda/0x720 kernel/time/timer.c:1316
Preemption disabled at:
[<ffffffff819540c9>] spin_lock include/linux/spinlock.h:329 [inline]
[<ffffffff819540c9>] zap_pte_range mm/memory.c:1299 [inline]
[<ffffffff819540c9>] zap_pmd_range mm/memory.c:1440 [inline]
[<ffffffff819540c9>] zap_pud_range mm/memory.c:1469 [inline]
[<ffffffff819540c9>] zap_p4d_range mm/memory.c:1490 [inline]
[<ffffffff819540c9>] unmap_page_range+0x8a9/0x1fb0 mm/memory.c:1511
CPU: 0 PID: 31637 Comm: blkid Not tainted 4.19.101-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 <IRQ>
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x197/0x210 lib/dump_stack.c:118
 ___might_sleep.cold+0x1bd/0x1f6 kernel/sched/core.c:6192
 __might_sleep+0x95/0x190 kernel/sched/core.c:6145
 __mutex_lock_common kernel/locking/mutex.c:908 [inline]
 __mutex_lock+0xc8/0x1300 kernel/locking/mutex.c:1072
 mutex_lock_nested+0x16/0x20 kernel/locking/mutex.c:1087
 tpk_write+0x5d/0x340 drivers/char/ttyprintk.c:123
 resync_tnc+0x1b6/0x320 drivers/net/hamradio/6pack.c:522
 call_timer_fn+0x18d/0x720 kernel/time/timer.c:1326
 expire_timers kernel/time/timer.c:1363 [inline]
 __run_timers kernel/time/timer.c:1684 [inline]
 __run_timers kernel/time/timer.c:1652 [inline]
 run_timer_softirq+0x64f/0x16a0 kernel/time/timer.c:1697
 __do_softirq+0x25c/0x921 kernel/softirq.c:292
 invoke_softirq kernel/softirq.c:372 [inline]
 irq_exit+0x180/0x1d0 kernel/softirq.c:412
 exiting_irq arch/x86/include/asm/apic.h:536 [inline]
 smp_apic_timer_interrupt+0x13b/0x550 arch/x86/kernel/apic/apic.c:1094
 apic_timer_interrupt+0xf/0x20 arch/x86/entry/entry_64.S:893
 </IRQ>
RIP: 0010:__sanitizer_cov_trace_pc+0x4b/0x50 kernel/kcov.c:111
Code: 90 d0 12 00 00 83 fa 02 75 20 48 8b 88 d8 12 00 00 8b 80 d4 12 00 00 48 8b 11 48 83 c2 01 48 39 d0 76 07 48 89 34 d1 48 89 11 <5d> c3 0f 1f 00 65 4c 8b 04 25 40 ee 01 00 65 8b 05 10 e2 96 7e a9
RSP: 0018:ffff888086857910 EFLAGS: 00000293 ORIG_RAX: ffffffffffffff13
RAX: ffff888054708100 RBX: 0000000000023980 RCX: 1ffffffff1278af8
RDX: 0000000000000000 RSI: ffffffff8369f279 RDI: ffff88805470897c
RBP: ffff888086857910 R08: ffff888054708100 R09: fffff940005ffeff
R10: fffff940005ffefe R11: ffffea0002fff7f3 R12: ffffea0002fff7c0
R13: ffffea0002fff7c8 R14: 0000000000000000 R15: ffffea0002fff788
 debug_smp_processor_id+0x9/0x20 lib/smp_processor_id.c:56
 rcu_dynticks_curr_cpu_in_eqs+0x17/0xb0 kernel/rcu/tree.c:348
 rcu_is_watching+0x10/0x30 kernel/rcu/tree.c:1025
 rcu_read_unlock include/linux/rcupdate.h:677 [inline]
 __unlock_page_memcg+0x78/0x100 mm/memcontrol.c:1953
 unlock_page_memcg+0x2c/0x40 mm/memcontrol.c:1962
 page_remove_file_rmap mm/rmap.c:1249 [inline]
 page_remove_rmap+0x57b/0x12c0 mm/rmap.c:1300
 zap_pte_range mm/memory.c:1338 [inline]
 zap_pmd_range mm/memory.c:1440 [inline]
 zap_pud_range mm/memory.c:1469 [inline]
 zap_p4d_range mm/memory.c:1490 [inline]
 unmap_page_range+0xda2/0x1fb0 mm/memory.c:1511
 unmap_single_vma+0x19d/0x300 mm/memory.c:1556
 unmap_vmas+0xae/0x180 mm/memory.c:1586
 exit_mmap+0x2c2/0x530 mm/mmap.c:3091
 __mmput kernel/fork.c:1015 [inline]
 mmput+0x15f/0x4c0 kernel/fork.c:1036
 exit_mm kernel/exit.c:546 [inline]
 do_exit+0xb1e/0x30d0 kernel/exit.c:867
 do_group_exit+0x135/0x370 kernel/exit.c:983
 __do_sys_exit_group kernel/exit.c:994 [inline]
 __se_sys_exit_group kernel/exit.c:992 [inline]
 __x64_sys_exit_group+0x44/0x50 kernel/exit.c:992
 do_syscall_64+0xfd/0x620 arch/x86/entry/common.c:293
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x7f8d96e251e8
Code: Bad RIP value.
RSP: 002b:00007ffedf762ed8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f8d96e251e8
RDX: 0000000000000002 RSI: 000000000000003c RDI: 0000000000000002
RBP: 00007f8d970fa840 R08: 00000000000000e7 R09: ffffffffffffffa8
R10: 00007f8d97100740 R11: 0000000000000246 R12: 00007f8d970fa840
R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000000000

================================
WARNING: inconsistent lock state
4.19.101-syzkaller #0 Tainted: G        W        
--------------------------------
inconsistent {SOFTIRQ-ON-W} -> {IN-SOFTIRQ-W} usage.
blkid/31637 [HC0[0]:SC1[1]:HE1:SE0] takes:
0000000010af05b0 (&tpk_port.port_write_mutex){+.?.}, at: tpk_write+0x5d/0x340 drivers/char/ttyprintk.c:123
{SOFTIRQ-ON-W} state was registered at:
  lock_acquire+0x16f/0x3f0 kernel/locking/lockdep.c:3903
  __mutex_lock_common kernel/locking/mutex.c:925 [inline]
  __mutex_lock+0xf7/0x1300 kernel/locking/mutex.c:1072
  mutex_lock_nested+0x16/0x20 kernel/locking/mutex.c:1087
  tpk_close+0x50/0x95 drivers/char/ttyprintk.c:104
  tty_release+0x3ba/0xe90 drivers/tty/tty_io.c:1678
  __fput+0x2dd/0x8b0 fs/file_table.c:278
  ____fput+0x16/0x20 fs/file_table.c:309
  task_work_run+0x145/0x1c0 kernel/task_work.c:113
  tracehook_notify_resume include/linux/tracehook.h:193 [inline]
  exit_to_usermode_loop+0x273/0x2c0 arch/x86/entry/common.c:167
  prepare_exit_to_usermode arch/x86/entry/common.c:198 [inline]
  syscall_return_slowpath arch/x86/entry/common.c:271 [inline]
  do_syscall_64+0x53d/0x620 arch/x86/entry/common.c:296
  entry_SYSCALL_64_after_hwframe+0x49/0xbe
irq event stamp: 2548
hardirqs last  enabled at (2548): [<ffffffff81006693>] trace_hardirqs_on_thunk+0x1a/0x1c
hardirqs last disabled at (2547): [<ffffffff810066af>] trace_hardirqs_off_thunk+0x1a/0x1c
softirqs last  enabled at (0): [<ffffffff813dfa42>] copy_process.part.0+0x15b2/0x7a60 kernel/fork.c:1840
softirqs last disabled at (2367): [<ffffffff81403860>] invoke_softirq kernel/softirq.c:372 [inline]
softirqs last disabled at (2367): [<ffffffff81403860>] irq_exit+0x180/0x1d0 kernel/softirq.c:412

other info that might help us debug this:
 Possible unsafe locking scenario:

       CPU0
       ----
  lock(&tpk_port.port_write_mutex);
  <Interrupt>
    lock(&tpk_port.port_write_mutex);

 *** DEADLOCK ***

3 locks held by blkid/31637:
 #0: 000000002e585620 (&(ptlock_ptr(page))->rlock#2){+.+.}, at: spin_lock include/linux/spinlock.h:329 [inline]
 #0: 000000002e585620 (&(ptlock_ptr(page))->rlock#2){+.+.}, at: zap_pte_range mm/memory.c:1299 [inline]
 #0: 000000002e585620 (&(ptlock_ptr(page))->rlock#2){+.+.}, at: zap_pmd_range mm/memory.c:1440 [inline]
 #0: 000000002e585620 (&(ptlock_ptr(page))->rlock#2){+.+.}, at: zap_pud_range mm/memory.c:1469 [inline]
 #0: 000000002e585620 (&(ptlock_ptr(page))->rlock#2){+.+.}, at: zap_p4d_range mm/memory.c:1490 [inline]
 #0: 000000002e585620 (&(ptlock_ptr(page))->rlock#2){+.+.}, at: unmap_page_range+0x8a9/0x1fb0 mm/memory.c:1511
 #1: 000000002c86312f (rcu_read_lock){....}, at: lock_page_memcg+0x0/0x240 include/linux/cgroup.h:482
 #2: 0000000030502281 ((&sp->resync_t)){+.-.}, at: lockdep_copy_map include/linux/lockdep.h:168 [inline]
 #2: 0000000030502281 ((&sp->resync_t)){+.-.}, at: call_timer_fn+0xda/0x720 kernel/time/timer.c:1316

stack backtrace:
CPU: 0 PID: 31637 Comm: blkid Tainted: G        W         4.19.101-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 <IRQ>
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x197/0x210 lib/dump_stack.c:118
 print_usage_bug.cold+0x330/0x42a kernel/locking/lockdep.c:2540
 valid_state kernel/locking/lockdep.c:2553 [inline]
 mark_lock_irq kernel/locking/lockdep.c:2747 [inline]
 mark_lock+0xd1b/0x1370 kernel/locking/lockdep.c:3127
 mark_irqflags kernel/locking/lockdep.c:3005 [inline]
 __lock_acquire+0xc62/0x49c0 kernel/locking/lockdep.c:3368
 lock_acquire+0x16f/0x3f0 kernel/locking/lockdep.c:3903
 __mutex_lock_common kernel/locking/mutex.c:925 [inline]
 __mutex_lock+0xf7/0x1300 kernel/locking/mutex.c:1072
 mutex_lock_nested+0x16/0x20 kernel/locking/mutex.c:1087
 tpk_write+0x5d/0x340 drivers/char/ttyprintk.c:123
 resync_tnc+0x1b6/0x320 drivers/net/hamradio/6pack.c:522
 call_timer_fn+0x18d/0x720 kernel/time/timer.c:1326
 expire_timers kernel/time/timer.c:1363 [inline]
 __run_timers kernel/time/timer.c:1684 [inline]
 __run_timers kernel/time/timer.c:1652 [inline]
 run_timer_softirq+0x64f/0x16a0 kernel/time/timer.c:1697
 __do_softirq+0x25c/0x921 kernel/softirq.c:292
 invoke_softirq kernel/softirq.c:372 [inline]
 irq_exit+0x180/0x1d0 kernel/softirq.c:412
 exiting_irq arch/x86/include/asm/apic.h:536 [inline]
 smp_apic_timer_interrupt+0x13b/0x550 arch/x86/kernel/apic/apic.c:1094
 apic_timer_interrupt+0xf/0x20 arch/x86/entry/entry_64.S:893
 </IRQ>
RIP: 0010:__sanitizer_cov_trace_pc+0x4b/0x50 kernel/kcov.c:111
Code: 90 d0 12 00 00 83 fa 02 75 20 48 8b 88 d8 12 00 00 8b 80 d4 12 00 00 48 8b 11 48 83 c2 01 48 39 d0 76 07 48 89 34 d1 48 89 11 <5d> c3 0f 1f 00 65 4c 8b 04 25 40 ee 01 00 65 8b 05 10 e2 96 7e a9
RSP: 0018:ffff888086857910 EFLAGS: 00000293 ORIG_RAX: ffffffffffffff13
RAX: ffff888054708100 RBX: 0000000000023980 RCX: 1ffffffff1278af8
RDX: 0000000000000000 RSI: ffffffff8369f279 RDI: ffff88805470897c
RBP: ffff888086857910 R08: ffff888054708100 R09: fffff940005ffeff
R10: fffff940005ffefe R11: ffffea0002fff7f3 R12: ffffea0002fff7c0
R13: ffffea0002fff7c8 R14: 0000000000000000 R15: ffffea0002fff788
 debug_smp_processor_id+0x9/0x20 lib/smp_processor_id.c:56
 rcu_dynticks_curr_cpu_in_eqs+0x17/0xb0 kernel/rcu/tree.c:348
 rcu_is_watching+0x10/0x30 kernel/rcu/tree.c:1025
 rcu_read_unlock include/linux/rcupdate.h:677 [inline]
 __unlock_page_memcg+0x78/0x100 mm/memcontrol.c:1953
 unlock_page_memcg+0x2c/0x40 mm/memcontrol.c:1962
 page_remove_file_rmap mm/rmap.c:1249 [inline]
 page_remove_rmap+0x57b/0x12c0 mm/rmap.c:1300
 zap_pte_range mm/memory.c:1338 [inline]
 zap_pmd_range mm/memory.c:1440 [inline]
 zap_pud_range mm/memory.c:1469 [inline]
 zap_p4d_range mm/memory.c:1490 [inline]
 unmap_page_range+0xda2/0x1fb0 mm/memory.c:1511
 unmap_single_vma+0x19d/0x300 mm/memory.c:1556
 unmap_vmas+0xae/0x180 mm/memory.c:1586
 exit_mmap+0x2c2/0x530 mm/mmap.c:3091
 __mmput kernel/fork.c:1015 [inline]
 mmput+0x15f/0x4c0 kernel/fork.c:1036
 exit_mm kernel/exit.c:546 [inline]
 do_exit+0xb1e/0x30d0 kernel/exit.c:867
 do_group_exit+0x135/0x370 kernel/exit.c:983
 __do_sys_exit_group kernel/exit.c:994 [inline]
 __se_sys_exit_group kernel/exit.c:992 [inline]
 __x64_sys_exit_group+0x44/0x50 kernel/exit.c:992
 do_syscall_64+0xfd/0x620 arch/x86/entry/common.c:293
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x7f8d96e251e8
Code: Bad RIP value.
RSP: 002b:00007ffedf762ed8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f8d96e251e8
RDX: 0000000000000002 RSI: 000000000000003c RDI: 0000000000000002
RBP: 00007f8d970fa840 R08: 00000000000000e7 R09: ffffffffffffffa8
R10: 00007f8d97100740 R11: 0000000000000246 R12: 00007f8d970fa840
R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000000000
BUG: sleeping function called from invalid context at kernel/locking/mutex.c:908
in_atomic(): 1, irqs_disabled(): 0, pid: 31637, name: blkid
INFO: lockdep is turned off.
Preemption disabled at:
[<ffffffff819540c9>] spin_lock include/linux/spinlock.h:329 [inline]
[<ffffffff819540c9>] zap_pte_range mm/memory.c:1299 [inline]
[<ffffffff819540c9>] zap_pmd_range mm/memory.c:1440 [inline]
[<ffffffff819540c9>] zap_pud_range mm/memory.c:1469 [inline]
[<ffffffff819540c9>] zap_p4d_range mm/memory.c:1490 [inline]
[<ffffffff819540c9>] unmap_page_range+0x8a9/0x1fb0 mm/memory.c:1511
CPU: 0 PID: 31637 Comm: blkid Tainted: G        W         4.19.101-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 <IRQ>
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x197/0x210 lib/dump_stack.c:118
 ___might_sleep.cold+0x1bd/0x1f6 kernel/sched/core.c:6192
 __might_sleep+0x95/0x190 kernel/sched/core.c:6145
 __mutex_lock_common kernel/locking/mutex.c:908 [inline]
 __mutex_lock+0xc8/0x1300 kernel/locking/mutex.c:1072
 mutex_lock_nested+0x16/0x20 kernel/locking/mutex.c:1087
 tpk_write+0x5d/0x340 drivers/char/ttyprintk.c:123
 resync_tnc+0x22e/0x320 drivers/net/hamradio/6pack.c:523
 call_timer_fn+0x18d/0x720 kernel/time/timer.c:1326
 expire_timers kernel/time/timer.c:1363 [inline]
 __run_timers kernel/time/timer.c:1684 [inline]
 __run_timers kernel/time/timer.c:1652 [inline]
 run_timer_softirq+0x64f/0x16a0 kernel/time/timer.c:1697
 __do_softirq+0x25c/0x921 kernel/softirq.c:292
 invoke_softirq kernel/softirq.c:372 [inline]
 irq_exit+0x180/0x1d0 kernel/softirq.c:412
 exiting_irq arch/x86/include/asm/apic.h:536 [inline]
 smp_apic_timer_interrupt+0x13b/0x550 arch/x86/kernel/apic/apic.c:1094
 apic_timer_interrupt+0xf/0x20 arch/x86/entry/entry_64.S:893
 </IRQ>
RIP: 0010:__sanitizer_cov_trace_pc+0x4b/0x50 kernel/kcov.c:111
Code: 90 d0 12 00 00 83 fa 02 75 20 48 8b 88 d8 12 00 00 8b 80 d4 12 00 00 48 8b 11 48 83 c2 01 48 39 d0 76 07 48 89 34 d1 48 89 11 <5d> c3 0f 1f 00 65 4c 8b 04 25 40 ee 01 00 65 8b 05 10 e2 96 7e a9
RSP: 0018:ffff888086857910 EFLAGS: 00000293 ORIG_RAX: ffffffffffffff13
RAX: ffff888054708100 RBX: 0000000000023980 RCX: 1ffffffff1278af8
RDX: 0000000000000000 RSI: ffffffff8369f279 RDI: ffff88805470897c
RBP: ffff888086857910 R08: ffff888054708100 R09: fffff940005ffeff
R10: fffff940005ffefe R11: ffffea0002fff7f3 R12: ffffea0002fff7c0
R13: ffffea0002fff7c8 R14: 0000000000000000 R15: ffffea0002fff788
 debug_smp_processor_id+0x9/0x20 lib/smp_processor_id.c:56
 rcu_dynticks_curr_cpu_in_eqs+0x17/0xb0 kernel/rcu/tree.c:348
 rcu_is_watching+0x10/0x30 kernel/rcu/tree.c:1025
 rcu_read_unlock include/linux/rcupdate.h:677 [inline]
 __unlock_page_memcg+0x78/0x100 mm/memcontrol.c:1953
 unlock_page_memcg+0x2c/0x40 mm/memcontrol.c:1962
 page_remove_file_rmap mm/rmap.c:1249 [inline]
 page_remove_rmap+0x57b/0x12c0 mm/rmap.c:1300
 zap_pte_range mm/memory.c:1338 [inline]
 zap_pmd_range mm/memory.c:1440 [inline]
 zap_pud_range mm/memory.c:1469 [inline]
 zap_p4d_range mm/memory.c:1490 [inline]
 unmap_page_range+0xda2/0x1fb0 mm/memory.c:1511
 unmap_single_vma+0x19d/0x300 mm/memory.c:1556
 unmap_vmas+0xae/0x180 mm/memory.c:1586
 exit_mmap+0x2c2/0x530 mm/mmap.c:3091
 __mmput kernel/fork.c:1015 [inline]
 mmput+0x15f/0x4c0 kernel/fork.c:1036
 exit_mm kernel/exit.c:546 [inline]
 do_exit+0xb1e/0x30d0 kernel/exit.c:867
 do_group_exit+0x135/0x370 kernel/exit.c:983
 __do_sys_exit_group kernel/exit.c:994 [inline]
 __se_sys_exit_group kernel/exit.c:992 [inline]
 __x64_sys_exit_group+0x44/0x50 kernel/exit.c:992
 do_syscall_64+0xfd/0x620 arch/x86/entry/common.c:293
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x7f8d96e251e8
Code: Bad RIP value.
RSP: 002b:00007ffedf762ed8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f8d96e251e8
RDX: 0000000000000002 RSI: 000000000000003c RDI: 0000000000000002
RBP: 00007f8d970fa840 R08: 00000000000000e7 R09: ffffffffffffffa8
R10: 00007f8d97100740 R11: 0000000000000246 R12: 00007f8d970fa840
R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000000000
SELinux: unrecognized netlink message: protocol=0 nlmsg_type=47 sclass=netlink_route_socket pig=31675 comm=syz-executor.1
SELinux: unrecognized netlink message: protocol=0 nlmsg_type=47 sclass=netlink_route_socket pig=31693 comm=syz-executor.1
set_target_v0_checkentry: 26 callbacks suppressed
Cannot find add_set index 0 as target
Cannot find add_set index 0 as target
Cannot find add_set index 0 as target
Cannot find add_set index 0 as target
Cannot find add_set index 0 as target
Cannot find add_set index 0 as target
Cannot find add_set index 0 as target
Cannot find add_set index 0 as target
Cannot find add_set index 0 as target
Cannot find add_set index 0 as target
audit: type=1800 audit(1580749392.188:200): pid=31959 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op=collect_data cause=failed(directio) comm="syz-executor.1" name="file0" dev="sda1" ino=17090 res=0
BUG: sleeping function called from invalid context at kernel/locking/mutex.c:908
in_atomic(): 1, irqs_disabled(): 0, pid: 11193, name: udevd
INFO: lockdep is turned off.
Preemption disabled at:
[<ffffffff832a6767>] security_sid_to_context_core.isra.0+0x1b7/0x2f0 security/selinux/ss/services.c:1316
CPU: 0 PID: 11193 Comm: udevd Tainted: G        W         4.19.101-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 <IRQ>
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x197/0x210 lib/dump_stack.c:118
 ___might_sleep.cold+0x1bd/0x1f6 kernel/sched/core.c:6192
 __might_sleep+0x95/0x190 kernel/sched/core.c:6145
 __mutex_lock_common kernel/locking/mutex.c:908 [inline]
 __mutex_lock+0xc8/0x1300 kernel/locking/mutex.c:1072
 mutex_lock_nested+0x16/0x20 kernel/locking/mutex.c:1087
 tpk_write+0x5d/0x340 drivers/char/ttyprintk.c:123
 resync_tnc+0x1b6/0x320 drivers/net/hamradio/6pack.c:522
 call_timer_fn+0x18d/0x720 kernel/time/timer.c:1326
 expire_timers kernel/time/timer.c:1363 [inline]
 __run_timers kernel/time/timer.c:1684 [inline]
 __run_timers kernel/time/timer.c:1652 [inline]
 run_timer_softirq+0x64f/0x16a0 kernel/time/timer.c:1697
 __do_softirq+0x25c/0x921 kernel/softirq.c:292
 invoke_softirq kernel/softirq.c:372 [inline]
 irq_exit+0x180/0x1d0 kernel/softirq.c:412
 exiting_irq arch/x86/include/asm/apic.h:536 [inline]
 smp_apic_timer_interrupt+0x13b/0x550 arch/x86/kernel/apic/apic.c:1094
 apic_timer_interrupt+0xf/0x20 arch/x86/entry/entry_64.S:893
 </IRQ>
RIP: 0010:write_comp_data+0x1e/0x70 kernel/kcov.c:122
Code: 48 89 34 d1 48 89 11 5d c3 0f 1f 00 65 4c 8b 04 25 40 ee 01 00 65 8b 05 10 e2 96 7e a9 00 01 1f 00 75 51 41 8b 80 d0 12 00 00 <83> f8 03 75 45 49 8b 80 d8 12 00 00 45 8b 80 d4 12 00 00 4c 8b 08
RSP: 0018:ffff888045a9f550 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13
RAX: 0000000000000000 RBX: 000000000000006c RCX: ffffffff817591b7
RDX: 000000000000006c RSI: 000000000000006c RDI: 0000000000000004
RBP: ffff888045a9f558 R08: ffff888095142000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000000 R12: 000000000000006c
R13: dffffc0000000000 R14: 0000000000000000 R15: 0000000000000000
 latch_tree_find include/linux/rbtree_latch.h:209 [inline]
 bpf_prog_kallsyms_find kernel/bpf/core.c:511 [inline]
 bpf_prog_kallsyms_find+0x87/0x2c0 kernel/bpf/core.c:504
 is_bpf_text_address+0x78/0x170 kernel/bpf/core.c:546
 kernel_text_address+0x73/0xf0 kernel/extable.c:152
 __kernel_text_address+0xd/0x40 kernel/extable.c:107
 unwind_get_return_address arch/x86/kernel/unwind_frame.c:18 [inline]
 unwind_get_return_address+0x61/0xa0 arch/x86/kernel/unwind_frame.c:13
 __save_stack_trace+0x99/0x100 arch/x86/kernel/stacktrace.c:45
 save_stack_trace+0x1a/0x20 arch/x86/kernel/stacktrace.c:60
 save_stack+0x45/0xd0 mm/kasan/kasan.c:448
 set_track mm/kasan/kasan.c:460 [inline]
 kasan_kmalloc mm/kasan/kasan.c:553 [inline]
 kasan_kmalloc+0xce/0xf0 mm/kasan/kasan.c:531
 kasan_slab_alloc+0xf/0x20 mm/kasan/kasan.c:490
 slab_post_alloc_hook mm/slab.h:445 [inline]
 slab_alloc mm/slab.c:3397 [inline]
 __do_kmalloc mm/slab.c:3725 [inline]
 __kmalloc+0x146/0x750 mm/slab.c:3736
 kmalloc include/linux/slab.h:520 [inline]
 context_struct_to_string security/selinux/ss/services.c:1253 [inline]
 context_struct_to_string+0x428/0x880 security/selinux/ss/services.c:1223
 security_sid_to_context_core.isra.0+0x226/0x2f0 security/selinux/ss/services.c:1329
 security_sid_to_context_force+0x38/0x50 security/selinux/ss/services.c:1358
 selinux_inode_init_security+0x3b6/0x7a0 security/selinux/hooks.c:3091
 security_inode_init_security security/security.c:487 [inline]
 security_inode_init_security+0x1ad/0x3b0 security/security.c:471
 shmem_symlink+0x10c/0x7b0 mm/shmem.c:3059
 vfs_symlink fs/namei.c:4129 [inline]
 vfs_symlink+0x373/0x5c0 fs/namei.c:4115
 do_symlinkat+0x22b/0x290 fs/namei.c:4156
 __do_sys_symlink fs/namei.c:4175 [inline]
 __se_sys_symlink fs/namei.c:4173 [inline]
 __x64_sys_symlink+0x59/0x80 fs/namei.c:4173
 do_syscall_64+0xfd/0x620 arch/x86/entry/common.c:293
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x7f29c27a3517
Code: 09 01 00 00 0f 05 48 3d 00 f0 ff ff 77 02 f3 c3 48 8b 15 14 39 2b 00 f7 d8 64 89 02 83 c8 ff c3 90 90 90 b8 58 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d f1 38 2b 00 31 d2 48 29 c2 64
RSP: 002b:00007ffdfd596b28 EFLAGS: 00000206 ORIG_RAX: 0000000000000058
RAX: ffffffffffffffda RBX: 0000000001321030 RCX: 00007f29c27a3517
RDX: 0000000000000002 RSI: 00007ffdfd596b50 RDI: 0000000001506aa0
RBP: 000000000132ba10 R08: 00007ffdfd596700 R09: 00007f29c27f8390
R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000002ced
R13: 0000000001371610 R14: 0000000001321030 R15: 000000000000000b
set_target_v0_checkentry: 43 callbacks suppressed
Cannot find add_set index 0 as target
Cannot find add_set index 0 as target
Cannot find add_set index 0 as target
Cannot find add_set index 0 as target
Cannot find add_set index 0 as target
Cannot find add_set index 0 as target
Cannot find add_set index 0 as target
Cannot find add_set index 0 as target
Cannot find add_set index 0 as target
Cannot find add_set index 0 as target