

Debian GNU/Linux 9 syzkaller ttyS0

syzkaller login: [   32.651291] audit: type=1400 audit(1587478832.761:8): avc:  denied  { execmem } for  pid=6221 comm="syz-executor0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
[   32.666447] IPVS: ftp: loaded support on port[0] = 21
[   32.952538] tipc: TX() has been purged, node left!
[   63.272235] can: request_module (can-proto-0) failed.
[   63.281222] can: request_module (can-proto-0) failed.
[   63.308230] audit: type=1400 audit(1587478863.429:9): avc:  denied  { create } for  pid=6203 comm="syz-fuzzer" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=dccp_socket permissive=1
Warning: Permanently added '10.128.15.193' (ECDSA) to the list of known hosts.
2020/04/21 14:21:12 parsed 1 programs
2020/04/21 14:21:13 executed programs: 0
[   73.647702] audit: type=1400 audit(1587478873.770:10): avc:  denied  { execmem } for  pid=6336 comm="syz-executor3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
[   73.687171] IPVS: ftp: loaded support on port[0] = 21
[   73.702596] IPVS: ftp: loaded support on port[0] = 21
[   73.722767] IPVS: ftp: loaded support on port[0] = 21
[   73.730206] IPVS: ftp: loaded support on port[0] = 21
[   73.735678] IPVS: ftp: loaded support on port[0] = 21
[   73.755133] IPVS: ftp: loaded support on port[0] = 21
[   75.011018] bridge0: port 1(bridge_slave_0) entered blocking state
[   75.026210] bridge0: port 1(bridge_slave_0) entered disabled state
[   75.033559] device bridge_slave_0 entered promiscuous mode
[   75.048865] bridge0: port 1(bridge_slave_0) entered blocking state
[   75.057046] bridge0: port 1(bridge_slave_0) entered disabled state
[   75.064771] device bridge_slave_0 entered promiscuous mode
[   75.073166] bridge0: port 1(bridge_slave_0) entered blocking state
[   75.081320] bridge0: port 1(bridge_slave_0) entered disabled state
[   75.089015] device bridge_slave_0 entered promiscuous mode
[   75.107185] bridge0: port 1(bridge_slave_0) entered blocking state
[   75.118921] bridge0: port 1(bridge_slave_0) entered disabled state
[   75.127751] device bridge_slave_0 entered promiscuous mode
[   75.135335] bridge0: port 1(bridge_slave_0) entered blocking state
[   75.141710] bridge0: port 1(bridge_slave_0) entered disabled state
[   75.150489] device bridge_slave_0 entered promiscuous mode
[   75.158845] bridge0: port 2(bridge_slave_1) entered blocking state
[   75.165516] bridge0: port 2(bridge_slave_1) entered disabled state
[   75.174911] device bridge_slave_1 entered promiscuous mode
[   75.191240] bridge0: port 2(bridge_slave_1) entered blocking state
[   75.200423] bridge0: port 2(bridge_slave_1) entered disabled state
[   75.210440] device bridge_slave_1 entered promiscuous mode
[   75.217447] bridge0: port 2(bridge_slave_1) entered blocking state
[   75.225832] bridge0: port 2(bridge_slave_1) entered disabled state
[   75.232892] device bridge_slave_1 entered promiscuous mode
[   75.241544] bridge0: port 2(bridge_slave_1) entered blocking state
[   75.248257] bridge0: port 2(bridge_slave_1) entered disabled state
[   75.256509] device bridge_slave_1 entered promiscuous mode
[   75.271530] bridge0: port 2(bridge_slave_1) entered blocking state
[   75.283332] bridge0: port 2(bridge_slave_1) entered disabled state
[   75.296911] device bridge_slave_1 entered promiscuous mode
[   75.323867] bridge0: port 1(bridge_slave_0) entered blocking state
[   75.333867] bridge0: port 1(bridge_slave_0) entered disabled state
[   75.350671] device bridge_slave_0 entered promiscuous mode
[   75.384802] bridge0: port 2(bridge_slave_1) entered blocking state
[   75.392836] bridge0: port 2(bridge_slave_1) entered disabled state
[   75.418390] device bridge_slave_1 entered promiscuous mode
[   75.495852] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   75.521770] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   75.556964] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   75.568902] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   75.581956] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   75.599214] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   75.621419] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   75.675138] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   75.687064] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   75.698741] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   75.715774] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   75.730489] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   75.752010] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   75.762005] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   75.785921] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   75.817860] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   75.831114] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   75.855812] team0: Port device team_slave_0 added
[   75.865549] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   75.879260] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   75.912238] team0: Port device team_slave_1 added
[   75.924809] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   75.945685] team0: Port device team_slave_0 added
[   75.959341] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   75.977552] team0: Port device team_slave_0 added
[   75.985975] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   76.016828] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   76.028585] team0: Port device team_slave_1 added
[   76.054491] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   76.063454] team0: Port device team_slave_1 added
[   76.078957] team0: Port device team_slave_0 added
[   76.112324] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   76.134862] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   76.153912] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   76.162489] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   76.186772] team0: Port device team_slave_1 added
[   76.206864] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   76.218204] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   76.234341] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   76.247405] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   76.257868] team0: Port device team_slave_0 added
[   76.268499] team0: Port device team_slave_0 added
[   76.289905] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   76.313542] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   76.332137] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   76.340339] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   76.348963] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   76.357325] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   76.365386] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   76.379172] team0: Port device team_slave_1 added
[   76.387667] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   76.401154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   76.410308] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   76.424679] team0: Port device team_slave_1 added
[   76.440963] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   76.467547] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   76.478989] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   76.499551] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   76.519472] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   76.529632] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   76.544135] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   76.560725] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   76.578962] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   76.598309] ip (7560) used greatest stack depth: 23280 bytes left
[   76.621362] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   76.629834] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   76.646013] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   76.663774] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   76.673487] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   76.698343] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   76.721297] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   76.900038] ip (7629) used greatest stack depth: 22752 bytes left
[   76.973649] bridge0: port 2(bridge_slave_1) entered blocking state
[   76.980151] bridge0: port 2(bridge_slave_1) entered forwarding state
[   76.987389] bridge0: port 1(bridge_slave_0) entered blocking state
[   76.993802] bridge0: port 1(bridge_slave_0) entered forwarding state
[   77.013429] bridge0: port 2(bridge_slave_1) entered blocking state
[   77.020127] bridge0: port 2(bridge_slave_1) entered forwarding state
[   77.027220] bridge0: port 1(bridge_slave_0) entered blocking state
[   77.033636] bridge0: port 1(bridge_slave_0) entered forwarding state
[   77.094737] bridge0: port 2(bridge_slave_1) entered blocking state
[   77.101115] bridge0: port 2(bridge_slave_1) entered forwarding state
[   77.107802] bridge0: port 1(bridge_slave_0) entered blocking state
[   77.114278] bridge0: port 1(bridge_slave_0) entered forwarding state
[   77.148397] bridge0: port 2(bridge_slave_1) entered blocking state
[   77.154853] bridge0: port 2(bridge_slave_1) entered forwarding state
[   77.161524] bridge0: port 1(bridge_slave_0) entered blocking state
[   77.171491] bridge0: port 1(bridge_slave_0) entered forwarding state
[   77.202025] bridge0: port 2(bridge_slave_1) entered blocking state
[   77.209602] bridge0: port 2(bridge_slave_1) entered forwarding state
[   77.216355] bridge0: port 1(bridge_slave_0) entered blocking state
[   77.223427] bridge0: port 1(bridge_slave_0) entered forwarding state
[   77.409395] bridge0: port 2(bridge_slave_1) entered blocking state
[   77.416185] bridge0: port 2(bridge_slave_1) entered forwarding state
[   77.422820] bridge0: port 1(bridge_slave_0) entered blocking state
[   77.429403] bridge0: port 1(bridge_slave_0) entered forwarding state
[   77.704797] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   77.720123] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   77.728463] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   77.736481] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   77.747418] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   77.755029] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   79.080706] 8021q: adding VLAN 0 to HW filter on device bond0
[   79.098834] 8021q: adding VLAN 0 to HW filter on device bond0
[   79.201813] 8021q: adding VLAN 0 to HW filter on device bond0
[   79.238943] 8021q: adding VLAN 0 to HW filter on device bond0
[   79.318684] 8021q: adding VLAN 0 to HW filter on device bond0
[   79.407986] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   79.419520] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   79.444186] 8021q: adding VLAN 0 to HW filter on device bond0
[   79.460942] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   79.484137] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   79.576259] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   79.588281] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   79.604903] 8021q: adding VLAN 0 to HW filter on device team0
[   79.658344] 8021q: adding VLAN 0 to HW filter on device team0
[   79.707168] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   79.716426] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   79.735350] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   79.742348] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   79.783188] 8021q: adding VLAN 0 to HW filter on device team0
[   79.888473] 8021q: adding VLAN 0 to HW filter on device team0
[   79.898548] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   79.911069] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   79.965642] 8021q: adding VLAN 0 to HW filter on device team0
[   80.071218] 8021q: adding VLAN 0 to HW filter on device team0
2020/04/21 14:21:20 executed programs: 6
[  248.162275] INFO: task syz-executor4:10107 blocked for more than 143 seconds.
[  248.169701]       Not tainted 5.7.0-rc2-syzkaller #0
[  248.177562] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  248.186381] syz-executor4   D26296 10107   6343 0x00004004
[  248.192787] Call Trace:
[  248.195398]  __schedule+0x85b/0x1960
[  248.200168]  ? __sched_text_start+0x8/0x8
[  248.205749]  schedule+0xc3/0x2b0
[  248.209139]  schedule_preempt_disabled+0x13/0x20
[  248.215018]  __mutex_lock+0x8b5/0x1410
[  248.218933]  ? ctrl_getfamily+0x2c0/0x400
[  248.224504]  ? mutex_lock_io_nested+0x1280/0x1280
[  248.229375]  ? ___might_sleep+0x16b/0x2b0
[  248.234653]  ? down_read_killable+0x470/0x470
[  248.239178]  mutex_lock_nested+0x16/0x20
[  248.244473]  ? mutex_lock_nested+0x16/0x20
[  248.248989]  ctrl_getfamily+0x2c0/0x400
[  248.254007]  genl_rcv_msg+0x5e1/0x10f0
[  248.257985]  ? genl_family_rcv_msg_attrs_parse+0x2f0/0x2f0
[  248.264789]  ? mark_held_locks+0x130/0x130
[  248.269061]  ? lock_release+0x960/0x960
[  248.274119]  netlink_rcv_skb+0x13f/0x380
[  248.278200]  ? genl_family_rcv_msg_attrs_parse+0x2f0/0x2f0
[  248.284963]  ? netlink_ack+0x9a0/0x9a0
[  248.288879]  ? netlink_deliver_tap+0x178/0xac0
[  248.294511]  ? __kasan_check_read+0x11/0x20
[  248.298860]  genl_rcv+0x23/0x40
[  248.304146]  netlink_unicast+0x479/0x6c0
[  248.308466]  ? netlink_attachskb+0x740/0x740
[  248.314040]  ? _copy_from_iter_full+0x18a/0x780
[  248.318829]  netlink_sendmsg+0x7ab/0xd50
[  248.324844]  ? netlink_unicast+0x6c0/0x6c0
[  248.329115]  ? selinux_socket_sendmsg+0x31/0x40
[  248.334929]  ? netlink_unicast+0x6c0/0x6c0
[  248.339255]  sock_sendmsg+0xe6/0x110
[  248.344141]  ____sys_sendmsg+0x609/0x980
[  248.348234]  ? copy_msghdr_from_user+0xa4/0xf0
[  248.353829]  ? kernel_sendmsg+0x30/0x30
[  248.357945]  ? find_held_lock+0x36/0x1d0
[  248.363106]  ___sys_sendmsg+0xe4/0x160
[  248.367011]  ? sendmsg_copy_msghdr+0x30/0x30
[  248.371546]  ? __kasan_check_read+0x11/0x20
[  248.377251]  ? __fget_files+0x289/0x3f0
[  248.381345]  ? ksys_dup3+0x2e0/0x2e0
[  248.386266]  ? __fget_light+0x1b1/0x230
[  248.390271]  ? __fdget+0xe/0x10
[  248.394580]  __sys_sendmsg+0xd9/0x180
[  248.398670]  ? __sys_sendmsg_sock+0xa0/0xa0
[  248.404213]  ? __fd_install+0x174/0x4b0
[  248.408382]  ? fd_install+0x47/0x60
[  248.413174]  ? entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  248.419538]  __x64_sys_sendmsg+0x73/0xb0
[  248.424935]  do_syscall_64+0xd0/0x630
[  248.428885]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  248.436221] RIP: 0033:0x411231
[  248.439505] Code: Bad RIP value.
[  248.443930] RSP: 002b:00007fda5b2a69c0 EFLAGS: 00000293 ORIG_RAX: 000000000000002e
[  248.451798] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 0000000000411231
[  248.460214] RDX: 0000000000000000 RSI: 00007fda5b2a6a00 RDI: 0000000000000007
[  248.468412] RBP: 0000000000000007 R08: 00007fda5b2a69d0 R09: 000000000072bf00
[  248.476562] R10: 0000000000000000 R11: 0000000000000293 R12: 00007fda5b2a6a40
[  248.484578] R13: 00000000004cc538 R14: 00000000004d9a08 R15: 00000000ffffffff
[  248.492764] INFO: task syz-executor3:10103 blocked for more than 143 seconds.
[  248.500556]       Not tainted 5.7.0-rc2-syzkaller #0
[  248.506697] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  248.515649] syz-executor3   D26296 10103   6339 0x00004004
[  248.521907] Call Trace:
[  248.526277]  __schedule+0x85b/0x1960
[  248.530123]  ? __sched_text_start+0x8/0x8
[  248.535868]  schedule+0xc3/0x2b0
[  248.539462]  schedule_preempt_disabled+0x13/0x20
[  248.546167]  __mutex_lock+0x8b5/0x1410
[  248.550081]  ? ctrl_getfamily+0x2c0/0x400
[  248.555794]  ? mutex_lock_io_nested+0x1280/0x1280
[  248.560896]  ? ___might_sleep+0x16b/0x2b0
[  248.567507]  ? down_read_killable+0x470/0x470
[  248.573152]  mutex_lock_nested+0x16/0x20
[  248.577574]  ? mutex_lock_nested+0x16/0x20
[  248.583152]  ctrl_getfamily+0x2c0/0x400
[  248.587319]  genl_rcv_msg+0x5e1/0x10f0
[  248.593442]  ? genl_family_rcv_msg_attrs_parse+0x2f0/0x2f0
[  248.599098]  ? mark_held_locks+0x130/0x130
[  248.604393]  ? lock_release+0x960/0x960
[  248.608518]  netlink_rcv_skb+0x13f/0x380
[  248.614090]  ? genl_family_rcv_msg_attrs_parse+0x2f0/0x2f0
[  248.619863]  ? netlink_ack+0x9a0/0x9a0
[  248.625043]  ? netlink_deliver_tap+0x178/0xac0
[  248.629742]  ? __kasan_check_read+0x11/0x20
[  248.635307]  genl_rcv+0x23/0x40
[  248.638606]  netlink_unicast+0x479/0x6c0
[  248.643858]  ? netlink_attachskb+0x740/0x740
[  248.648291]  ? _copy_from_iter_full+0x18a/0x780
[  248.653983]  netlink_sendmsg+0x7ab/0xd50
[  248.659586]  ? netlink_unicast+0x6c0/0x6c0
[  248.665202]  ? selinux_socket_sendmsg+0x31/0x40
[  248.669897]  ? netlink_unicast+0x6c0/0x6c0
[  248.676375]  sock_sendmsg+0xe6/0x110
[  248.680213]  ____sys_sendmsg+0x609/0x980
[  248.685441]  ? copy_msghdr_from_user+0xa4/0xf0
[  248.690363]  ? kernel_sendmsg+0x30/0x30
[  248.697039]  ? find_held_lock+0x36/0x1d0
[  248.701287]  ___sys_sendmsg+0xe4/0x160
[  248.706438]  ? sendmsg_copy_msghdr+0x30/0x30
[  248.711841]  ? __kasan_check_read+0x11/0x20
[  248.718308]  ? __fget_files+0x289/0x3f0
[  248.723452]  ? ksys_dup3+0x2e0/0x2e0
[  248.727544]  ? __fget_light+0x1b1/0x230
[  248.731540]  ? __fdget+0xe/0x10
[  248.736190]  __sys_sendmsg+0xd9/0x180
[  248.740012]  ? __sys_sendmsg_sock+0xa0/0xa0
[  248.745852]  ? __fd_install+0x174/0x4b0
[  248.749996]  ? fd_install+0x47/0x60
[  248.754611]  ? entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  248.760786]  __x64_sys_sendmsg+0x73/0xb0
[  248.766281]  do_syscall_64+0xd0/0x630
[  248.770220]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  248.776657] RIP: 0033:0x411231
[  248.779962] Code: Bad RIP value.
[  248.784274] RSP: 002b:00007fe74039c9c0 EFLAGS: 00000293 ORIG_RAX: 000000000000002e
[  248.793390] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 0000000000411231
[  248.800732] RDX: 0000000000000000 RSI: 00007fe74039ca00 RDI: 0000000000000007
[  248.809731] RBP: 0000000000000007 R08: 00007fe74039c9d0 R09: 000000000072bf00
[  248.817871] R10: 0000000000000000 R11: 0000000000000293 R12: 00007fe74039ca40
[  248.826937] R13: 00000000004cc538 R14: 00000000004d9a08 R15: 00000000ffffffff
[  248.835183] INFO: task syz-executor2:10109 blocked for more than 144 seconds.
[  248.843214]       Not tainted 5.7.0-rc2-syzkaller #0
[  248.848562] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  248.857568] syz-executor2   D26296 10109   6341 0x00000004
[  248.863899] Call Trace:
[  248.866505]  __schedule+0x85b/0x1960
[  248.871434]  ? __sched_text_start+0x8/0x8
[  248.877009]  schedule+0xc3/0x2b0
[  248.880405]  schedule_preempt_disabled+0x13/0x20
[  248.886213]  __mutex_lock+0x8b5/0x1410
[  248.890137]  ? genl_rcv_msg+0x66e/0x10f0
[  248.895350]  ? mutex_lock_io_nested+0x1280/0x1280
[  248.900612]  ? __lock_acquire+0xd26/0x3bf0
[  248.906609]  ? __kasan_check_read+0x11/0x20
[  248.910949]  ? __kasan_check_read+0x11/0x20
[  248.916766]  ? hlock_class+0x52/0x120
[  248.920727]  mutex_lock_nested+0x16/0x20
[  248.927284]  ? mutex_lock_nested+0x16/0x20
[  248.931625]  genl_rcv_msg+0x66e/0x10f0
[  248.936698]  ? genl_family_rcv_msg_attrs_parse+0x2f0/0x2f0
[  248.943057]  ? mark_held_locks+0x130/0x130
[  248.948401]  ? lock_acquire+0x209/0x9e0
[  248.955024]  ? genl_rcv+0x14/0x40
[  248.958774]  ? lock_release+0x960/0x960
[  248.964059]  netlink_rcv_skb+0x13f/0x380
[  248.968227]  ? genl_family_rcv_msg_attrs_parse+0x2f0/0x2f0
[  248.975614]  ? netlink_ack+0x9a0/0x9a0
[  248.979533]  ? netlink_deliver_tap+0x178/0xac0
[  248.985202]  ? __kasan_check_read+0x11/0x20
[  248.989948]  genl_rcv+0x23/0x40
[  248.994279]  netlink_unicast+0x479/0x6c0
[  248.998364]  ? netlink_attachskb+0x740/0x740
[  249.008997]  ? _copy_from_iter_full+0x18a/0x780
[  249.014397]  netlink_sendmsg+0x7ab/0xd50
[  249.018700]  ? netlink_unicast+0x6c0/0x6c0
[  249.024048]  ? selinux_socket_sendmsg+0x31/0x40
[  249.028973]  ? netlink_unicast+0x6c0/0x6c0
[  249.034201]  sock_sendmsg+0xe6/0x110
[  249.038190]  ____sys_sendmsg+0x609/0x980
[  249.043470]  ? copy_msghdr_from_user+0xa4/0xf0
[  249.048239]  ? kernel_sendmsg+0x30/0x30
[  249.053166]  ? find_held_lock+0x36/0x1d0
[  249.057590]  ___sys_sendmsg+0xe4/0x160
[  249.061483]  ? sendmsg_copy_msghdr+0x30/0x30
[  249.067431]  ? __kasan_check_read+0x11/0x20
[  249.072713]  ? __fget_files+0x289/0x3f0
[  249.076889]  ? ksys_dup3+0x2e0/0x2e0
[  249.080704]  ? __fget_light+0x1b1/0x230
[  249.086968]  ? __fdget+0xe/0x10
[  249.090458]  __sys_sendmsg+0xd9/0x180
[  249.095398]  ? __sys_sendmsg_sock+0xa0/0xa0
[  249.099746]  ? __fd_install+0x174/0x4b0
[  249.105023]  ? fd_install+0x47/0x60
[  249.108838]  ? entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  249.116376]  __x64_sys_sendmsg+0x73/0xb0
[  249.120471]  do_syscall_64+0xd0/0x630
[  249.127711]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  249.133845] RIP: 0033:0x411231
[  249.137218] Code: Bad RIP value.
[  249.140745] RSP: 002b:00007ff4d0b049c0 EFLAGS: 00000293 ORIG_RAX: 000000000000002e
[  249.149884] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 0000000000411231
[  249.159078] RDX: 0000000000000000 RSI: 00007ff4d0b04a00 RDI: 0000000000000007
[  249.167522] RBP: 0000000000000007 R08: 00007ff4d0b049d0 R09: 000000000072bf00
[  249.175702] R10: 0000000000000000 R11: 0000000000000293 R12: 00007ff4d0b04a40
[  249.184245] R13: 00000000004cc538 R14: 00000000004d9a08 R15: 00000000ffffffff
[  249.193453] INFO: task syz-executor2:10130 blocked for more than 144 seconds.
[  249.200920]       Not tainted 5.7.0-rc2-syzkaller #0
[  249.207245] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  249.217116] syz-executor2   D28400 10130   6341 0x00000004
[  249.223814] Call Trace:
[  249.226608]  __schedule+0x85b/0x1960
[  249.230422]  ? __sched_text_start+0x8/0x8
[  249.236128]  schedule+0xc3/0x2b0
[  249.239520]  schedule_preempt_disabled+0x13/0x20
[  249.245295]  __mutex_lock+0x8b5/0x1410
[  249.249897]  ? genl_rcv_msg+0x66e/0x10f0
[  249.256016]  ? mutex_lock_io_nested+0x1280/0x1280
[  249.260991]  ? __lock_acquire+0xd26/0x3bf0
[  249.266224]  ? __kasan_check_read+0x11/0x20
[  249.270564]  ? __kasan_check_read+0x11/0x20
[  249.275977]  ? hlock_class+0x52/0x120
[  249.279985]  mutex_lock_nested+0x16/0x20
[  249.285034]  ? mutex_lock_nested+0x16/0x20
[  249.289370]  genl_rcv_msg+0x66e/0x10f0
[  249.294220]  ? genl_family_rcv_msg_attrs_parse+0x2f0/0x2f0
[  249.299954]  ? mark_held_locks+0x130/0x130
[  249.305541]  ? lock_acquire+0x209/0x9e0
[  249.309529]  ? genl_rcv+0x14/0x40
[  249.314040]  ? lock_release+0x960/0x960
[  249.318476]  netlink_rcv_skb+0x13f/0x380
[  249.323531]  ? genl_family_rcv_msg_attrs_parse+0x2f0/0x2f0
[  249.329914]  ? netlink_ack+0x9a0/0x9a0
[  249.335462]  ? netlink_deliver_tap+0x178/0xac0
[  249.340671]  ? __kasan_check_read+0x11/0x20
[  249.347072]  genl_rcv+0x23/0x40
[  249.359663]  netlink_unicast+0x479/0x6c0
[  249.364730]  ? netlink_attachskb+0x740/0x740
[  249.370016]  ? _copy_from_iter_full+0x18a/0x780
[  249.376188]  netlink_sendmsg+0x7ab/0xd50
[  249.383742]  ? netlink_unicast+0x6c0/0x6c0
[  249.388381]  ? selinux_socket_sendmsg+0x31/0x40
[  249.394492]  ? netlink_unicast+0x6c0/0x6c0
[  249.398934]  sock_sendmsg+0xe6/0x110
[  249.403788]  ____sys_sendmsg+0x609/0x980
[  249.407874]  ? copy_msghdr_from_user+0xa4/0xf0
[  249.413411]  ? kernel_sendmsg+0x30/0x30
[  249.417545]  ? find_held_lock+0x36/0x1d0
[  249.421620]  ___sys_sendmsg+0xe4/0x160
[  249.427377]  ? sendmsg_copy_msghdr+0x30/0x30
[  249.433231]  ? __kasan_check_read+0x11/0x20
[  249.437937]  ? __fget_files+0x289/0x3f0
[  249.443056]  ? ksys_dup3+0x2e0/0x2e0
[  249.447232]  ? __fget_light+0x1b1/0x230
[  249.451210]  ? __fdget+0xe/0x10
[  249.456900]  __sys_sendmsg+0xd9/0x180
[  249.460852]  ? __sys_sendmsg_sock+0xa0/0xa0
[  249.466982]  ? __fd_install+0x174/0x4b0
[  249.471405]  ? fd_install+0x47/0x60
[  249.477130]  ? entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  249.483330]  __x64_sys_sendmsg+0x73/0xb0
[  249.487516]  do_syscall_64+0xd0/0x630
[  249.491322]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  249.498099] RIP: 0033:0x411231
[  249.503888] Code: Bad RIP value.
[  249.507576] RSP: 002b:00007ff4d0ae39c0 EFLAGS: 00000293 ORIG_RAX: 000000000000002e
[  249.516612] RAX: ffffffffffffffda RBX: 00007ff4d0ae3a58 RCX: 0000000000411231
[  249.526258] RDX: 0000000000000000 RSI: 00007ff4d0ae3a00 RDI: 0000000000000008
[  249.534722] RBP: 0000000000000008 R08: 000000000000000b R09: 0000000000000000
[  249.544028] R10: 0000000000000000 R11: 0000000000000293 R12: 00007ff4d0ae3a40
[  249.552218] R13: 00000000004cc510 R14: 00000000004d99f0 R15: 00000000ffffffff
[  249.559842] INFO: task syz-executor0:10120 blocked for more than 144 seconds.
[  249.568663]       Not tainted 5.7.0-rc2-syzkaller #0
[  249.574324] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  249.584248] syz-executor0   D27560 10120   6345 0x00004004
[  249.589906] Call Trace:
[  249.592805]  __schedule+0x85b/0x1960
[  249.596549]  ? __sched_text_start+0x8/0x8
[  249.600978]  schedule+0xc3/0x2b0
[  249.605920]  schedule_preempt_disabled+0x13/0x20
[  249.610806]  __mutex_lock+0x8b5/0x1410
[  249.615148]  ? ctrl_getfamily+0x2c0/0x400
[  249.619441]  ? mutex_lock_io_nested+0x1280/0x1280
[  249.624634]  ? ___might_sleep+0x16b/0x2b0
[  249.630023]  ? down_read_killable+0x470/0x470
[  249.635616]  mutex_lock_nested+0x16/0x20
[  249.639704]  ? mutex_lock_nested+0x16/0x20
[  249.644287]  ctrl_getfamily+0x2c0/0x400
[  249.648555]  genl_rcv_msg+0x5e1/0x10f0
[  249.652873]  ? genl_family_rcv_msg_attrs_parse+0x2f0/0x2f0
[  249.658645]  ? mark_held_locks+0x130/0x130
[  249.663237]  ? lock_release+0x960/0x960
[  249.667238]  netlink_rcv_skb+0x13f/0x380
[  249.671435]  ? genl_family_rcv_msg_attrs_parse+0x2f0/0x2f0
[  249.678132]  ? netlink_ack+0x9a0/0x9a0
[  249.682749]  ? netlink_deliver_tap+0x178/0xac0
[  249.687348]  ? __kasan_check_read+0x11/0x20
[  249.692292]  genl_rcv+0x23/0x40
[  249.695910]  netlink_unicast+0x479/0x6c0
[  249.700248]  ? netlink_attachskb+0x740/0x740
[  249.705652]  ? _copy_from_iter_full+0x18a/0x780
[  249.710515]  netlink_sendmsg+0x7ab/0xd50
[  249.715162]  ? netlink_unicast+0x6c0/0x6c0
[  249.719658]  ? selinux_socket_sendmsg+0x31/0x40
[  249.725082]  ? netlink_unicast+0x6c0/0x6c0
[  249.729436]  sock_sendmsg+0xe6/0x110
[  249.734566]  ____sys_sendmsg+0x609/0x980
[  249.738986]  ? copy_msghdr_from_user+0xa4/0xf0
[  249.744623]  ? kernel_sendmsg+0x30/0x30
[  249.750638]  ? find_held_lock+0x36/0x1d0
[  249.755740]  ___sys_sendmsg+0xe4/0x160
[  249.759655]  ? sendmsg_copy_msghdr+0x30/0x30
[  249.764668]  ? __kasan_check_read+0x11/0x20
[  249.769025]  ? __fget_files+0x289/0x3f0
[  249.773602]  ? ksys_dup3+0x2e0/0x2e0
[  249.777360]  ? __fget_light+0x1b1/0x230
[  249.781684]  ? __fdget+0xe/0x10
[  249.785490]  __sys_sendmsg+0xd9/0x180
[  249.789528]  ? __sys_sendmsg_sock+0xa0/0xa0
[  249.794599]  ? __fd_install+0x174/0x4b0
[  249.798792]  ? fd_install+0x47/0x60
[  249.803353]  ? entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  249.808747]  __x64_sys_sendmsg+0x73/0xb0
[  249.813163]  do_syscall_64+0xd0/0x630
[  249.817343]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  249.822877] RIP: 0033:0x411231
[  249.826124] Code: Bad RIP value.
[  249.829579] RSP: 002b:00007f44ff7c29c0 EFLAGS: 00000293 ORIG_RAX: 000000000000002e
[  249.837637] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 0000000000411231
[  249.845928] RDX: 0000000000000000 RSI: 00007f44ff7c2a00 RDI: 0000000000000005
[  249.855359] RBP: 0000000000000005 R08: 00007f44ff7c29d0 R09: 000000000072bf00
[  249.865064] R10: ffffffffffffffff R11: 0000000000000293 R12: 00007f44ff7c2a40
[  249.876431] R13: 00000000004cc538 R14: 00000000004d9a08 R15: 00000000ffffffff
[  249.885152] INFO: task syz-executor0:10135 blocked for more than 145 seconds.
[  249.895935]       Not tainted 5.7.0-rc2-syzkaller #0
[  249.903316] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  249.913034] syz-executor0   D28400 10135   6345 0x00000004
[  249.919444] Call Trace:
[  249.922612]  __schedule+0x85b/0x1960
[  249.926513]  ? __sched_text_start+0x8/0x8
[  249.930690]  schedule+0xc3/0x2b0
[  249.934501]  schedule_preempt_disabled+0x13/0x20
[  249.939956]  __mutex_lock+0x8b5/0x1410
[  249.944371]  ? genl_rcv_msg+0x66e/0x10f0
[  249.948477]  ? mutex_lock_io_nested+0x1280/0x1280
[  249.954098]  ? __lock_acquire+0xd26/0x3bf0
[  249.958593]  ? __kasan_check_read+0x11/0x20
[  249.963379]  ? __kasan_check_read+0x11/0x20
[  249.967835]  ? hlock_class+0x52/0x120
[  249.971648]  mutex_lock_nested+0x16/0x20
[  249.976086]  ? mutex_lock_nested+0x16/0x20
[  249.980339]  genl_rcv_msg+0x66e/0x10f0
[  249.984559]  ? genl_family_rcv_msg_attrs_parse+0x2f0/0x2f0
[  249.990301]  ? mark_held_locks+0x130/0x130
[  249.995918]  ? lock_acquire+0x209/0x9e0
[  250.000171]  ? genl_rcv+0x14/0x40
[  250.005948]  ? lock_release+0x960/0x960
[  250.009951]  netlink_rcv_skb+0x13f/0x380
[  250.014768]  ? genl_family_rcv_msg_attrs_parse+0x2f0/0x2f0
[  250.020704]  ? netlink_ack+0x9a0/0x9a0
[  250.025134]  ? netlink_deliver_tap+0x178/0xac0
[  250.029860]  ? __kasan_check_read+0x11/0x20
[  250.034588]  genl_rcv+0x23/0x40
[  250.038164]  netlink_unicast+0x479/0x6c0
[  250.042796]  ? netlink_attachskb+0x740/0x740
[  250.047234]  ? _copy_from_iter_full+0x18a/0x780
[  250.052324]  netlink_sendmsg+0x7ab/0xd50
[  250.057586]  ? netlink_unicast+0x6c0/0x6c0
[  250.062284]  ? selinux_socket_sendmsg+0x31/0x40
[  250.067276]  ? netlink_unicast+0x6c0/0x6c0
[  250.071707]  sock_sendmsg+0xe6/0x110
[  250.076067]  ____sys_sendmsg+0x609/0x980
[  250.080641]  ? copy_msghdr_from_user+0xa4/0xf0
[  250.085700]  ? kernel_sendmsg+0x30/0x30
[  250.089702]  ? find_held_lock+0x36/0x1d0
[  250.094124]  ___sys_sendmsg+0xe4/0x160
[  250.098753]  ? sendmsg_copy_msghdr+0x30/0x30
[  250.103681]  ? __kasan_check_read+0x11/0x20
[  250.108132]  ? __fget_files+0x289/0x3f0
[  250.112434]  ? ksys_dup3+0x2e0/0x2e0
[  250.116293]  ? __fget_light+0x1b1/0x230
[  250.120283]  ? __fdget+0xe/0x10
[  250.124845]  __sys_sendmsg+0xd9/0x180
[  250.128681]  ? __sys_sendmsg_sock+0xa0/0xa0
[  250.133327]  ? __fd_install+0x174/0x4b0
[  250.138100]  ? fd_install+0x47/0x60
[  250.141744]  ? entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  250.147927]  __x64_sys_sendmsg+0x73/0xb0
[  250.152367]  do_syscall_64+0xd0/0x630
[  250.156563]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  250.162188] RIP: 0033:0x411231
[  250.165498] Code: Bad RIP value.
[  250.169179] RSP: 002b:00007f44ff7a19c0 EFLAGS: 00000293 ORIG_RAX: 000000000000002e
[  250.178115] RAX: ffffffffffffffda RBX: 00007f44ff7a1a58 RCX: 0000000000411231
[  250.189443] RDX: 0000000000000000 RSI: 00007f44ff7a1a00 RDI: 0000000000000006
[  250.197409] RBP: 0000000000000006 R08: 000000000000000b R09: 0000000000000000
[  250.206021] R10: 0000000000000000 R11: 0000000000000293 R12: 00007f44ff7a1a40
[  250.215339] R13: 00000000004cc510 R14: 00000000004d99f0 R15: 00000000ffffffff
[  250.224344] INFO: task syz-executor0:10142 blocked for more than 145 seconds.
[  250.233489]       Not tainted 5.7.0-rc2-syzkaller #0
[  250.243486] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  250.253701] syz-executor0   D26800 10142   6345 0x00004004
[  250.259859] Call Trace:
[  250.263235]  __schedule+0x85b/0x1960
[  250.269877]  ? __sched_text_start+0x8/0x8
[  250.274924]  schedule+0xc3/0x2b0
[  250.279439]  schedule_preempt_disabled+0x13/0x20
[  250.285414]  __mutex_lock+0x8b5/0x1410
[  250.290591]  ? genl_rcv_msg+0x66e/0x10f0
[  250.295786]  ? mutex_lock_io_nested+0x1280/0x1280
[  250.306707]  ? __lock_acquire+0xd26/0x3bf0
[  250.312390]  ? __kasan_check_read+0x11/0x20
[  250.316919]  ? __kasan_check_read+0x11/0x20
[  250.321333]  ? hlock_class+0x52/0x120
[  250.325987]  mutex_lock_nested+0x16/0x20
[  250.330075]  ? mutex_lock_nested+0x16/0x20
[  250.334649]  genl_rcv_msg+0x66e/0x10f0
[  250.338856]  ? genl_family_rcv_msg_attrs_parse+0x2f0/0x2f0
[  250.344843]  ? mark_held_locks+0x130/0x130
[  250.349326]  ? lock_acquire+0x209/0x9e0
[  250.354404]  ? genl_rcv+0x14/0x40
[  250.357908]  ? lock_release+0x960/0x960
[  250.362605]  netlink_rcv_skb+0x13f/0x380
[  250.366698]  ? genl_family_rcv_msg_attrs_parse+0x2f0/0x2f0
[  250.374050]  ? netlink_ack+0x9a0/0x9a0
[  250.378054]  ? netlink_deliver_tap+0x178/0xac0
[  250.384407]  ? __kasan_check_read+0x11/0x20
[  250.389017]  genl_rcv+0x23/0x40
[  250.392870]  netlink_unicast+0x479/0x6c0
[  250.397569]  ? netlink_attachskb+0x740/0x740
[  250.402419]  ? _copy_from_iter_full+0x18a/0x780
[  250.407266]  netlink_sendmsg+0x7ab/0xd50
[  250.411335]  ? netlink_unicast+0x6c0/0x6c0
[  250.416215]  ? selinux_socket_sendmsg+0x31/0x40
[  250.421430]  ? netlink_unicast+0x6c0/0x6c0
[  250.426164]  sock_sendmsg+0xe6/0x110
[  250.430087]  ____sys_sendmsg+0x609/0x980
[  250.435396]  ? copy_msghdr_from_user+0xa4/0xf0
[  250.440612]  ? kernel_sendmsg+0x30/0x30
[  250.446182]  ? find_held_lock+0x36/0x1d0
[  250.451036]  ___sys_sendmsg+0xe4/0x160
[  250.455543]  ? sendmsg_copy_msghdr+0x30/0x30
[  250.460074]  ? __kasan_check_read+0x11/0x20
[  250.464840]  ? __fget_files+0x289/0x3f0
[  250.469006]  ? ksys_dup3+0x2e0/0x2e0
[  250.473373]  ? __fget_light+0x1b1/0x230
[  250.477671]  ? __fdget+0xe/0x10
[  250.480987]  __sys_sendmsg+0xd9/0x180
[  250.485440]  ? __sys_sendmsg_sock+0xa0/0xa0
[  250.489785]  ? __fd_install+0x174/0x4b0
[  250.494124]  ? fd_install+0x47/0x60
[  250.497783]  ? entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  250.503909]  __x64_sys_sendmsg+0x73/0xb0
[  250.508477]  do_syscall_64+0xd0/0x630
[  250.513772]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  250.519335] RIP: 0033:0x411231
[  250.522945] Code: Bad RIP value.
[  250.527908] RSP: 002b:00007f44ff7809c0 EFLAGS: 00000293 ORIG_RAX: 000000000000002e
[  250.536060] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 0000000000411231
[  250.543920] RDX: 0000000000000000 RSI: 00007f44ff780a00 RDI: 0000000000000009
[  250.551356] RBP: 0000000000000009 R08: 00007f44ff7809d0 R09: 000000000072c040
[  250.559246] R10: 0000000000000000 R11: 0000000000000293 R12: 00007f44ff780a40
[  250.567509] R13: 00000000004cc538 R14: 00000000004d9a08 R15: 00000000ffffffff
[  250.575206] INFO: task syz-executor0:10145 blocked for more than 145 seconds.
[  250.582992]       Not tainted 5.7.0-rc2-syzkaller #0
[  250.588106] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  250.596681] syz-executor0   D28400 10145   6345 0x00000004
[  250.602880] Call Trace:
[  250.605498]  __schedule+0x85b/0x1960
[  250.609325]  ? __sched_text_start+0x8/0x8
[  250.613780]  schedule+0xc3/0x2b0
[  250.617173]  schedule_preempt_disabled+0x13/0x20
[  250.622269]  __mutex_lock+0x8b5/0x1410
[  250.626613]  ? genl_rcv_msg+0x66e/0x10f0
[  250.631029]  ? mutex_lock_io_nested+0x1280/0x1280
[  250.636423]  ? __lock_acquire+0xd26/0x3bf0
[  250.640950]  ? __kasan_check_read+0x11/0x20
[  250.647070]  ? __kasan_check_read+0x11/0x20
[  250.652197]  ? hlock_class+0x52/0x120
[  250.656218]  mutex_lock_nested+0x16/0x20
[  250.660392]  ? mutex_lock_nested+0x16/0x20
[  250.664993]  genl_rcv_msg+0x66e/0x10f0
[  250.669288]  ? genl_family_rcv_msg_attrs_parse+0x2f0/0x2f0
[  250.675375]  ? mark_held_locks+0x130/0x130
[  250.679750]  ? lock_acquire+0x209/0x9e0
[  250.684160]  ? genl_rcv+0x14/0x40
[  250.687661]  ? lock_release+0x960/0x960
[  250.693113]  netlink_rcv_skb+0x13f/0x380
[  250.697515]  ? genl_family_rcv_msg_attrs_parse+0x2f0/0x2f0
[  250.704229]  ? netlink_ack+0x9a0/0x9a0
[  250.708373]  ? netlink_deliver_tap+0x178/0xac0
[  250.713543]  ? __kasan_check_read+0x11/0x20
[  250.718031]  genl_rcv+0x23/0x40
[  250.721408]  netlink_unicast+0x479/0x6c0
[  250.726097]  ? netlink_attachskb+0x740/0x740
[  250.731267]  ? _copy_from_iter_full+0x18a/0x780
[  250.736803]  netlink_sendmsg+0x7ab/0xd50
[  250.741038]  ? netlink_unicast+0x6c0/0x6c0
[  250.745820]  ? selinux_socket_sendmsg+0x31/0x40
[  250.750900]  ? netlink_unicast+0x6c0/0x6c0
[  250.755592]  sock_sendmsg+0xe6/0x110
[  250.759514]  ____sys_sendmsg+0x609/0x980
[  250.764315]  ? copy_msghdr_from_user+0xa4/0xf0
[  250.769475]  ? kernel_sendmsg+0x30/0x30
[  250.775722]  ? find_held_lock+0x36/0x1d0
[  250.779831]  ___sys_sendmsg+0xe4/0x160
[  250.784054]  ? sendmsg_copy_msghdr+0x30/0x30
[  250.788569]  ? __kasan_check_read+0x11/0x20
[  250.793284]  ? __fget_files+0x289/0x3f0
[  250.797299]  ? ksys_dup3+0x2e0/0x2e0
[  250.801031]  ? __fget_light+0x1b1/0x230
[  250.805558]  ? __fdget+0xe/0x10
[  250.808890]  __sys_sendmsg+0xd9/0x180
[  250.813194]  ? __sys_sendmsg_sock+0xa0/0xa0
[  250.817794]  ? __fd_install+0x174/0x4b0
[  250.822237]  ? fd_install+0x47/0x60
[  250.825956]  ? entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  250.831333]  __x64_sys_sendmsg+0x73/0xb0
[  250.836603]  do_syscall_64+0xd0/0x630
[  250.840679]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  250.846586] RIP: 0033:0x411231
[  250.849951] Code: Bad RIP value.
[  250.853781] RSP: 002b:00007f44ff75f9c0 EFLAGS: 00000293 ORIG_RAX: 000000000000002e
[  250.863021] RAX: ffffffffffffffda RBX: 00007f44ff75fa58 RCX: 0000000000411231
[  250.870581] RDX: 0000000000000000 RSI: 00007f44ff75fa00 RDI: 000000000000000a
[  250.878773] RBP: 000000000000000a R08: 000000000000000b R09: 0000000000000000
[  250.886660] R10: 0000000000000000 R11: 0000000000000293 R12: 00007f44ff75fa40
[  250.894424] R13: 00000000004cc510 R14: 00000000004d99f0 R15: 00000000ffffffff
[  250.903130] INFO: task syz-executor1:10122 blocked for more than 146 seconds.
[  250.910586]       Not tainted 5.7.0-rc2-syzkaller #0
[  250.916079] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  250.924829] syz-executor1   D28400 10122   6350 0x00000004
[  250.930914] Call Trace:
[  250.933993]  __schedule+0x85b/0x1960
[  250.937829]  ? __sched_text_start+0x8/0x8
[  250.942668]  schedule+0xc3/0x2b0
[  250.946352]  schedule_preempt_disabled+0x13/0x20
[  250.952044]  __mutex_lock+0x8b5/0x1410
[  250.956179]  ? genl_rcv_msg+0x66e/0x10f0
[  250.960254]  ? mutex_lock_io_nested+0x1280/0x1280
[  250.965530]  ? __lock_acquire+0xd26/0x3bf0
[  250.969805]  ? __kasan_check_read+0x11/0x20
[  250.974573]  ? __kasan_check_read+0x11/0x20
[  250.979101]  ? hlock_class+0x52/0x120
[  250.984196]  mutex_lock_nested+0x16/0x20
[  250.988444]  ? mutex_lock_nested+0x16/0x20
[  250.993217]  genl_rcv_msg+0x66e/0x10f0
[  250.997932]  ? genl_family_rcv_msg_attrs_parse+0x2f0/0x2f0
[  251.004387]  ? mark_held_locks+0x130/0x130
[  251.008675]  ? lock_acquire+0x209/0x9e0
[  251.013403]  ? genl_rcv+0x14/0x40
[  251.016885]  ? lock_release+0x960/0x960
[  251.021025]  netlink_rcv_skb+0x13f/0x380
[  251.025493]  ? genl_family_rcv_msg_attrs_parse+0x2f0/0x2f0
[  251.031467]  ? netlink_ack+0x9a0/0x9a0
[  251.036780]  ? netlink_deliver_tap+0x178/0xac0
[  251.041388]  ? __kasan_check_read+0x11/0x20
[  251.046148]  genl_rcv+0x23/0x40
[  251.049635]  netlink_unicast+0x479/0x6c0
[  251.054219]  ? netlink_attachskb+0x740/0x740
[  251.059376]  ? _copy_from_iter_full+0x18a/0x780
[  251.066219]  netlink_sendmsg+0x7ab/0xd50
[  251.070394]  ? netlink_unicast+0x6c0/0x6c0
[  251.075190]  ? selinux_socket_sendmsg+0x31/0x40
[  251.080026]  ? netlink_unicast+0x6c0/0x6c0
[  251.084688]  sock_sendmsg+0xe6/0x110
[  251.088805]  ____sys_sendmsg+0x609/0x980
[  251.093318]  ? copy_msghdr_from_user+0xa4/0xf0
[  251.098026]  ? kernel_sendmsg+0x30/0x30
[  251.102716]  ? find_held_lock+0x36/0x1d0
[  251.106821]  ___sys_sendmsg+0xe4/0x160
[  251.111068]  ? sendmsg_copy_msghdr+0x30/0x30
[  251.116064]  ? __kasan_check_read+0x11/0x20
[  251.121292]  ? __fget_files+0x289/0x3f0
[  251.126047]  ? ksys_dup3+0x2e0/0x2e0
[  251.130327]  ? __fget_light+0x1b1/0x230
[  251.135634]  ? __fdget+0xe/0x10
[  251.139152]  __sys_sendmsg+0xd9/0x180
[  251.143730]  ? __sys_sendmsg_sock+0xa0/0xa0
[  251.148625]  ? __fd_install+0x174/0x4b0
[  251.153088]  ? fd_install+0x47/0x60
[  251.157151]  ? entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  251.164495]  __x64_sys_sendmsg+0x73/0xb0
[  251.169735]  do_syscall_64+0xd0/0x630
[  251.174299]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  251.180020] RIP: 0033:0x411231
[  251.184400] Code: Bad RIP value.
[  251.189035] RSP: 002b:00007f3da883a9c0 EFLAGS: 00000293 ORIG_RAX: 000000000000002e
[  251.197731] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 0000000000411231
[  251.207204] RDX: 0000000000000000 RSI: 00007f3da883aa00 RDI: 0000000000000005
[  251.215565] RBP: 0000000000000005 R08: 00007f3da883a9d0 R09: 000000000072bf00
[  251.223569] R10: 0000000000000000 R11: 0000000000000293 R12: 00007f3da883aa40
[  251.231115] R13: 00000000004cc538 R14: 00000000004d9a08 R15: 00000000ffffffff
[  251.238978] INFO: task syz-executor1:10137 blocked for more than 146 seconds.
[  251.247048]       Not tainted 5.7.0-rc2-syzkaller #0
[  251.252404] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  251.260836] syz-executor1   D28400 10137   6350 0x00000004
[  251.267308] Call Trace:
[  251.270444]  __schedule+0x85b/0x1960
[  251.274772]  ? __sched_text_start+0x8/0x8
[  251.279191]  schedule+0xc3/0x2b0
[  251.283141]  schedule_preempt_disabled+0x13/0x20
[  251.288099]  __mutex_lock+0x8b5/0x1410
[  251.293725]  ? genl_rcv_msg+0x66e/0x10f0
[  251.299993]  ? mutex_lock_io_nested+0x1280/0x1280
[  251.305895]  ? __lock_acquire+0xd26/0x3bf0
[  251.310164]  ? __kasan_check_read+0x11/0x20
[  251.314960]  ? __kasan_check_read+0x11/0x20
[  251.319640]  ? hlock_class+0x52/0x120
[  251.323931]  mutex_lock_nested+0x16/0x20
[  251.328189]  ? mutex_lock_nested+0x16/0x20
[  251.332750]  genl_rcv_msg+0x66e/0x10f0
[  251.337092]  ? genl_family_rcv_msg_attrs_parse+0x2f0/0x2f0
[  251.343314]  ? mark_held_locks+0x130/0x130
[  251.347732]  ? lock_acquire+0x209/0x9e0
[  251.352036]  ? genl_rcv+0x14/0x40
[  251.355598]  ? lock_release+0x960/0x960
[  251.359587]  netlink_rcv_skb+0x13f/0x380
[  251.364007]  ? genl_family_rcv_msg_attrs_parse+0x2f0/0x2f0
[  251.369878]  ? netlink_ack+0x9a0/0x9a0
[  251.374166]  ? netlink_deliver_tap+0x178/0xac0
[  251.378930]  ? __kasan_check_read+0x11/0x20
[  251.383727]  genl_rcv+0x23/0x40
[  251.387375]  netlink_unicast+0x479/0x6c0
[  251.391566]  ? netlink_attachskb+0x740/0x740
[  251.397141]  ? _copy_from_iter_full+0x18a/0x780
[  251.402751]  netlink_sendmsg+0x7ab/0xd50
[  251.407415]  ? netlink_unicast+0x6c0/0x6c0
[  251.411981]  ? selinux_socket_sendmsg+0x31/0x40
[  251.417113]  ? netlink_unicast+0x6c0/0x6c0
[  251.421539]  sock_sendmsg+0xe6/0x110
[  251.426691]  ____sys_sendmsg+0x609/0x980
[  251.431092]  ? copy_msghdr_from_user+0xa4/0xf0
[  251.436159]  ? kernel_sendmsg+0x30/0x30
[  251.440240]  ? find_held_lock+0x36/0x1d0
[  251.445591]  ___sys_sendmsg+0xe4/0x160
[  251.449700]  ? sendmsg_copy_msghdr+0x30/0x30
[  251.454536]  ? __kasan_check_read+0x11/0x20
[  251.459143]  ? __fget_files+0x289/0x3f0
[  251.464084]  ? ksys_dup3+0x2e0/0x2e0
[  251.467846]  ? __fget_light+0x1b1/0x230
[  251.472567]  ? __fdget+0xe/0x10
[  251.476331]  __sys_sendmsg+0xd9/0x180
[  251.480235]  ? __sys_sendmsg_sock+0xa0/0xa0
[  251.484901]  ? rcu_read_lock_sched_held+0x9c/0xd0
[  251.489776]  ? rcu_read_lock_any_held.part.10+0x50/0x50
[  251.495565]  ? fd_install+0x47/0x60
[  251.499227]  ? entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  251.504939]  __x64_sys_sendmsg+0x73/0xb0
[  251.509041]  do_syscall_64+0xd0/0x630
[  251.513322]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  251.518739] RIP: 0033:0x411231
[  251.522395] Code: Bad RIP value.
[  251.525858] RSP: 002b:00007f3da88199c0 EFLAGS: 00000293 ORIG_RAX: 000000000000002e
[  251.534020] RAX: ffffffffffffffda RBX: 00007f3da8819a58 RCX: 0000000000411231
[  251.541520] RDX: 0000000000000000 RSI: 00007f3da8819a00 RDI: 0000000000000006
[  251.549456] RBP: 0000000000000006 R08: 000000000000000b R09: 0000000000000000
[  251.558266] R10: ffffffffffffffff R11: 0000000000000293 R12: 00007f3da8819a40
[  251.565843] R13: 00000000004cc510 R14: 00000000004d99f0 R15: 00000000ffffffff
[  251.573667] 
[  251.573667] Showing all locks held in the system:
[  251.580594] 1 lock held by khungtaskd/1063:
[  251.585321]  #0: ffffffff885b6880 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x5b/0x275
[  251.595160] 1 lock held by in:imklog/5954:
[  251.599517]  #0: ffff8881d13c8db0 (&f->f_pos_lock){+.+.}-{3:3}, at: __fdget_pos+0xa9/0xc0
[  251.608517] 2 locks held by syz-executor4/10107:
[  251.613693]  #0: ffffffff88ffe770 (cb_lock){++++}-{3:3}, at: ctrl_getfamily+0x2b2/0x400
[  251.622701]  #1: ffffffff88ffe828 (genl_mutex){+.+.}-{3:3}, at: ctrl_getfamily+0x2c0/0x400
[  251.631150] 2 locks held by syz-executor3/10103:
[  251.637048]  #0: ffffffff88ffe770 (cb_lock){++++}-{3:3}, at: ctrl_getfamily+0x2b2/0x400
[  251.645934]  #1: ffffffff88ffe828 (genl_mutex){+.+.}-{3:3}, at: ctrl_getfamily+0x2c0/0x400
[  251.654909] 3 locks held by syz-executor3/10121:
[  251.659715] 2 locks held by syz-executor2/10109:
[  251.665311]  #0: ffffffff88ffe770 (cb_lock){++++}-{3:3}, at: genl_rcv+0x14/0x40
[  251.673553]  #1: ffffffff88ffe828 (genl_mutex){+.+.}-{3:3}, at: genl_rcv_msg+0x66e/0x10f0
[  251.683619] 2 locks held by syz-executor2/10130:
[  251.688654]  #0: ffffffff88ffe770 (cb_lock){++++}-{3:3}, at: genl_rcv+0x14/0x40
[  251.697628]  #1: ffffffff88ffe828 (genl_mutex){+.+.}-{3:3}, at: genl_rcv_msg+0x66e/0x10f0
[  251.706739] 2 locks held by syz-executor0/10120:
[  251.712246]  #0: ffffffff88ffe770 (cb_lock){++++}-{3:3}, at: ctrl_getfamily+0x2b2/0x400
[  251.720720]  #1: ffffffff88ffe828 (genl_mutex){+.+.}-{3:3}, at: ctrl_getfamily+0x2c0/0x400
[  251.730520] 2 locks held by syz-executor0/10135:
[  251.736109]  #0: ffffffff88ffe770 (cb_lock){++++}-{3:3}, at: genl_rcv+0x14/0x40
[  251.745474]  #1: ffffffff88ffe828 (genl_mutex){+.+.}-{3:3}, at: genl_rcv_msg+0x66e/0x10f0
[  251.754610] 2 locks held by syz-executor0/10142:
[  251.759593]  #0: ffffffff88ffe770 (cb_lock){++++}-{3:3}, at: genl_rcv+0x14/0x40
[  251.769618]  #1: ffffffff88ffe828 (genl_mutex){+.+.}-{3:3}, at: genl_rcv_msg+0x66e/0x10f0
[  251.779052] 2 locks held by syz-executor0/10145:
[  251.784860]  #0: ffffffff88ffe770 (cb_lock){++++}-{3:3}, at: genl_rcv+0x14/0x40
[  251.793000]  #1: ffffffff88ffe828 (genl_mutex){+.+.}-{3:3}, at: genl_rcv_msg+0x66e/0x10f0
[  251.802359] 2 locks held by syz-executor1/10122:
[  251.807219]  #0: ffffffff88ffe770 (cb_lock){++++}-{3:3}, at: genl_rcv+0x14/0x40
[  251.816770]  #1: ffffffff88ffe828 (genl_mutex){+.+.}-{3:3}, at: genl_rcv_msg+0x66e/0x10f0
[  251.826073] 2 locks held by syz-executor1/10137:
[  251.831093]  #0: ffffffff88ffe770 (cb_lock){++++}-{3:3}, at: genl_rcv+0x14/0x40
[  251.839822]  #1: ffffffff88ffe828 (genl_mutex){+.+.}-{3:3}, at: genl_rcv_msg+0x66e/0x10f0
[  251.849041] 2 locks held by syz-executor1/10143:
[  251.854787]  #0: ffffffff88ffe770 (cb_lock){++++}-{3:3}, at: genl_rcv+0x14/0x40
[  251.863201]  #1: ffffffff88ffe828 (genl_mutex){+.+.}-{3:3}, at: genl_rcv_msg+0x66e/0x10f0
[  251.873449] 2 locks held by syz-executor1/10146:
[  251.879251]  #0: ffffffff88ffe770 (cb_lock){++++}-{3:3}, at: genl_rcv+0x14/0x40
[  251.887958]  #1: ffffffff88ffe828 (genl_mutex){+.+.}-{3:3}, at: genl_rcv_msg+0x66e/0x10f0
[  251.897251] 2 locks held by syz-executor5/10131:
[  251.903358]  #0: ffffffff88ffe770 (cb_lock){++++}-{3:3}, at: genl_rcv+0x14/0x40
[  251.911037]  #1: ffffffff88ffe828 (genl_mutex){+.+.}-{3:3}, at: genl_rcv_msg+0x66e/0x10f0
[  251.924019] 2 locks held by syz-executor5/10139:
[  251.928975]  #0: ffffffff88ffe770 (cb_lock){++++}-{3:3}, at: genl_rcv+0x14/0x40
[  251.938035]  #1: ffffffff88ffe828 (genl_mutex){+.+.}-{3:3}, at: genl_rcv_msg+0x66e/0x10f0
[  251.948315] 2 locks held by syz-executor5/10144:
[  251.954088]  #0: ffffffff88ffe770 (cb_lock){++++}-{3:3}, at: genl_rcv+0x14/0x40
[  251.962492]  #1: ffffffff88ffe828 (genl_mutex){+.+.}-{3:3}, at: genl_rcv_msg+0x66e/0x10f0
[  251.971124] 2 locks held by syz-executor5/10149:
[  251.976930]  #0: ffffffff88ffe770 (cb_lock){++++}-{3:3}, at: genl_rcv+0x14/0x40
[  251.985276]  #1: ffffffff88ffe828 (genl_mutex){+.+.}-{3:3}, at: genl_rcv_msg+0x66e/0x10f0
[  251.994437] 
[  251.996083] =============================================
[  251.996083] 
[  252.004874] NMI backtrace for cpu 0
[  252.008613] CPU: 0 PID: 1063 Comm: khungtaskd Not tainted 5.7.0-rc2-syzkaller #0
[  252.017125] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  252.026581] Call Trace:
[  252.029177]  dump_stack+0x12d/0x187
[  252.033031]  nmi_cpu_backtrace.cold.7+0x4b/0x84
[  252.037838]  ? lapic_can_unplug_cpu.cold.30+0x3f/0x3f
[  252.043053]  nmi_trigger_cpumask_backtrace+0x18b/0x1b7
[  252.048787]  arch_trigger_cpumask_backtrace+0x14/0x20
[  252.054426]  watchdog+0x611/0xc50
[  252.058160]  kthread+0x357/0x420
[  252.061706]  ? hungtask_pm_notify+0x40/0x40
[  252.066488]  ? kthread_mod_delayed_work+0x190/0x190
[  252.071510]  ret_from_fork+0x3a/0x50
[  252.075651] Sending NMI from CPU 0 to CPUs 1:
[  252.080854] NMI backtrace for cpu 1
[  252.080856] CPU: 1 PID: 10121 Comm: syz-executor3 Not tainted 5.7.0-rc2-syzkaller #0
[  252.080858] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  252.080860] RIP: 0010:match_held_lock+0x12/0x5b0
[  252.080863] Code: 28 4e 00 e9 f3 fe ff ff e8 bb 28 4e 00 eb a7 66 0f 1f 84 00 00 00 00 00 48 b8 00 00 00 00 00 fc ff df 55 48 89 e5 41 57 41 56 <41> 55 41 54 49 89 fc 48 83 c7 10 48 89 fa 53 48 c1 ea 03 48 83 ec
[  252.080864] RSP: 0018:ffff8881ba0d6b48 EFLAGS: 00000006
[  252.080868] RAX: dffffc0000000000 RBX: ffffed103b06a540 RCX: ffff8881d8352a08
[  252.080869] RDX: 1ffff1103b06a540 RSI: ffffffff885b6880 RDI: ffff8881d8352a08
[  252.080871] RBP: ffff8881ba0d6b58 R08: ffffed103b627064 R09: ffffed103b627064
[  252.080873] R10: ffff8881db13831b R11: ffffed103b627063 R12: ffff8881d8352a00
[  252.080874] R13: ffff8881d8352140 R14: 0000000000000000 R15: ffff8881d8352a08
[  252.080876] FS:  00007fe74037c700(0000) GS:ffff8881db100000(0000) knlGS:0000000000000000
[  252.080878] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  252.080879] CR2: 00007fa98a8b4000 CR3: 00000001b954f000 CR4: 00000000001406e0
[  252.080881] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  252.080882] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  252.080884] Call Trace:
[  252.080885]  lock_is_held_type+0x1b1/0x350
[  252.080886]  rcu_read_lock_held+0x9c/0xb0
[  252.080888]  ? rcu_read_lock_held_common+0x120/0x120
[  252.080889]  ? __kasan_check_read+0x11/0x20
[  252.080890]  ? rcu_dynticks_curr_cpu_in_eqs+0x54/0xb0
[  252.080892]  tipc_sk_lookup+0x59d/0x8c0
[  252.080893]  ? __nla_validate_parse+0xa1/0x1d80
[  252.080894]  ? tipc_getname+0x5e0/0x5e0
[  252.080896]  ? nla_memcpy+0xa0/0xa0
[  252.080897]  ? mark_lock+0xbf/0x630
[  252.080898]  tipc_nl_publ_dump+0x2df/0xca0
[  252.080900]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  252.080901]  ? trace_hardirqs_on_caller+0x28/0x1a0
[  252.080902]  ? tipc_nl_sk_dump+0x20/0x20
[  252.080904]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  252.080905]  ? preempt_schedule_irq+0xc8/0x120
[  252.080906]  ? tipc_nl_sk_dump+0x20/0x20
[  252.080908]  __tipc_nl_compat_dumpit.isra.11+0x32a/0xc10
[  252.080909]  ? tipc_nl_compat_link_stat_dump+0x2080/0x2080
[  252.080911]  ? kasan_kmalloc+0x9/0x10
[  252.080912]  ? __nla_put+0x20/0x30
[  252.080913]  tipc_nl_compat_sk_dump+0x4ed/0x990
[  252.080915]  ? __tipc_nl_compat_dumpit.isra.11+0xc10/0xc10
[  252.080916]  ? tipc_nl_sk_dump+0x20/0x20
[  252.080917]  ? tipc_tlv_sprintf+0x2c0/0x2c0
[  252.080918]  ? memset+0x39/0x40
[  252.080920]  ? __nla_validate_parse+0xa1/0x1d80
[  252.080921]  __tipc_nl_compat_dumpit.isra.11+0x44f/0xc10
[  252.080923]  ? tipc_nl_compat_link_stat_dump+0x2080/0x2080
[  252.080924]  ? kasan_kmalloc+0x9/0x10
[  252.080925]  tipc_nl_compat_dumpit+0x1e6/0x4c0
[  252.080927]  tipc_nl_compat_recv+0x45a/0xa70
[  252.080928]  ? mutex_lock_io_nested+0x1280/0x1280
[  252.080929]  ? tipc_nl_compat_doit+0x550/0x550
[  252.080931]  ? __lock_acquire+0xd26/0x3bf0
[  252.080932]  ? tipc_dump_start+0x90/0x90
[  252.080933]  ? __tipc_nl_compat_dumpit.isra.11+0xc10/0xc10
[  252.080935]  ? __kasan_check_read+0x11/0x20
[  252.080936]  ? mark_lock+0xbf/0x630
[  252.080937]  genl_rcv_msg+0x5e1/0x10f0
[  252.080939]  ? genl_family_rcv_msg_attrs_parse+0x2f0/0x2f0
[  252.080940]  ? mark_held_locks+0x130/0x130
[  252.080941]  ? lock_release+0x960/0x960
[  252.080943]  netlink_rcv_skb+0x13f/0x380
[  252.080944]  ? genl_family_rcv_msg_attrs_parse+0x2f0/0x2f0
[  252.080945]  ? netlink_ack+0x9a0/0x9a0
[  252.080947]  ? netlink_deliver_tap+0x178/0xac0
[  252.080948]  ? __kasan_check_read+0x11/0x20
[  252.080949]  genl_rcv+0x23/0x40
[  252.080950]  netlink_unicast+0x479/0x6c0
[  252.080952]  ? netlink_attachskb+0x740/0x740
[  252.080953]  ? _copy_from_iter_full+0x18a/0x780
[  252.080954]  netlink_sendmsg+0x7ab/0xd50
[  252.080956]  ? netlink_unicast+0x6c0/0x6c0
[  252.080957]  ? selinux_socket_sendmsg+0x31/0x40
[  252.080958]  ? netlink_unicast+0x6c0/0x6c0
[  252.080959]  sock_sendmsg+0xe6/0x110
[  252.080961]  ____sys_sendmsg+0x609/0x980
[  252.080962]  ? copy_msghdr_from_user+0xa4/0xf0
[  252.080963]  ? kernel_sendmsg+0x30/0x30
[  252.080965]  ? find_held_lock+0x36/0x1d0
[  252.080966]  ___sys_sendmsg+0xe4/0x160
[  252.080967]  ? sendmsg_copy_msghdr+0x30/0x30
[  252.080969]  ? __kasan_check_read+0x11/0x20
[  252.080970]  ? __fget_files+0x289/0x3f0
[  252.080971]  ? ksys_dup3+0x2e0/0x2e0
[  252.080972]  ? __might_fault+0xf1/0x1b0
[  252.080974]  ? __fget_light+0x1b1/0x230
[  252.080975]  ? __fdget+0xe/0x10
[  252.080976]  __sys_sendmsg+0xd9/0x180
[  252.080977]  ? __sys_sendmsg_sock+0xa0/0xa0
[  252.080979]  ? __kasan_check_read+0x11/0x20
[  252.080980]  ? _copy_to_user+0xc1/0xe0
[  252.080981]  ? put_timespec64+0xa9/0x100
[  252.080982]  ? nsecs_to_jiffies+0x20/0x20
[  252.080984]  ? entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  252.080985]  __x64_sys_sendmsg+0x73/0xb0
[  252.080986]  do_syscall_64+0xd0/0x630
[  252.080988]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  252.080989] RIP: 0033:0x4577a9
[  252.080992] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  252.080994] RSP: 002b:00007fe74037bc78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  252.080997] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000004577a9
[  252.080999] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000005
[  252.081000] RBP: 000000000072bfa0 R08: 0000000000000000 R09: 0000000000000000
[  252.081002] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fe74037c6d4
[  252.081004] R13: 00000000004c4211 R14: 00000000004d70f8 R15: 00000000ffffffff
[  252.101569] Kernel panic - not syncing: hung_task: blocked tasks
[  252.636463] CPU: 0 PID: 1063 Comm: khungtaskd Not tainted 5.7.0-rc2-syzkaller #0
[  252.644089] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  252.654139] Call Trace:
[  252.656843]  dump_stack+0x12d/0x187
[  252.660565]  panic+0x22a/0x4f5
[  252.664106]  ? add_taint.cold.7+0x11/0x11
[  252.668430]  ? preempt_schedule_thunk+0x16/0x18
[  252.673459]  watchdog+0x622/0xc50
[  252.676926]  kthread+0x357/0x420
[  252.686812]  ? hungtask_pm_notify+0x40/0x40
[  252.691200]  ? kthread_mod_delayed_work+0x190/0x190
[  252.696337]  ret_from_fork+0x3a/0x50
[  252.702035] Kernel Offset: disabled
[  252.705824] Rebooting in 86400 seconds..