[....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[ 20.247345] random: sshd: uninitialized urandom read (32 bytes read) [?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 25.573039] random: sshd: uninitialized urandom read (32 bytes read) [ 26.112954] random: sshd: uninitialized urandom read (32 bytes read) [ 26.829644] random: sshd: uninitialized urandom read (32 bytes read) [ 26.993524] random: sshd: uninitialized urandom read (32 bytes read) Warning: Permanently added '10.128.0.21' (ECDSA) to the list of known hosts. [ 32.508399] random: sshd: uninitialized urandom read (32 bytes read) [ 33.541741] [ 33.543364] ===================================================== [ 33.549575] WARNING: HARDIRQ-safe -> HARDIRQ-unsafe lock order detected [ 33.556299] 4.17.0-rc2+ #17 Not tainted [ 33.560251] ----------------------------------------------------- [ 33.566459] syz-executor862/4516 [HC0[0]:SC0[0]:HE0:SE1] is trying to acquire: [ 33.573797] (ptrval) (fs_reclaim){+.+.}, at: fs_reclaim_acquire.part.82+0x0/0x30 [ 33.582017] [ 33.582017] and this task is already holding: [ 33.587972] (ptrval) (&(&dev->event_lock)->rlock){-...}, at: input_inject_event+0xe0/0x3ed [ 33.597061] which would create a new lock dependency: [ 33.602220] (&(&dev->event_lock)->rlock){-...} -> (fs_reclaim){+.+.} [ 33.608784] [ 33.608784] but this new dependency connects a HARDIRQ-irq-safe lock: [ 33.616813] (&(&dev->event_lock)->rlock){-...} [ 33.616821] [ 33.616821] ... which became HARDIRQ-irq-safe at: [ 33.627765] lock_acquire+0x1dc/0x520 [ 33.631631] _raw_spin_lock_irqsave+0x96/0xc0 [ 33.636187] input_event+0x67/0xa0 [ 33.639791] psmouse_report_standard_buttons+0x31/0x90 [ 33.645137] psmouse_process_byte+0x1ef/0x710 [ 33.649696] psmouse_handle_byte+0x4a/0x570 [ 33.654087] psmouse_interrupt+0x38a/0x1420 [ 33.658467] serio_interrupt+0x98/0x160 [ 33.662505] i8042_interrupt+0x385/0x5e0 [ 33.666634] __handle_irq_event_percpu+0x1c0/0xad0 [ 33.671639] handle_irq_event_percpu+0x98/0x1c0 [ 33.676374] handle_irq_event+0xa7/0x135 [ 33.680501] handle_edge_irq+0x20f/0x870 [ 33.684623] handle_irq+0x18c/0x2e7 [ 33.688311] do_IRQ+0x78/0x190 [ 33.691571] ret_from_intr+0x0/0x1e [ 33.695262] _raw_spin_unlock_irqrestore+0xa1/0xc0 [ 33.700253] i8042_command+0x3f/0x50 [ 33.704029] i8042_aux_write+0xd6/0x110 [ 33.708066] ps2_do_sendbyte+0x306/0x6b0 [ 33.712187] ps2_sendbyte+0x51/0xa0 [ 33.715877] cypress_send_ext_cmd+0x1d1/0x8b0 [ 33.720434] cypress_detect+0x78/0x1f0 [ 33.724384] psmouse_do_detect+0xad/0x110 [ 33.728592] psmouse_try_protocol+0x15d/0x2b0 [ 33.733147] psmouse_extensions+0x41f/0x830 [ 33.737530] psmouse_switch_protocol+0x53d/0x740 [ 33.742347] psmouse_connect+0x51e/0xc10 [ 33.746473] serio_connect_driver+0x4f/0x70 [ 33.750862] serio_driver_probe+0x47/0x60 [ 33.755073] driver_probe_device+0x69b/0x960 [ 33.759556] __driver_attach+0x1b2/0x1f0 [ 33.763690] bus_for_each_dev+0x151/0x1d0 [ 33.767901] driver_attach+0x3d/0x50 [ 33.771680] serio_handle_event+0x70a/0xb20 [ 33.776064] process_one_work+0xc1e/0x1b50 [ 33.780358] worker_thread+0x1cc/0x1440 [ 33.784398] kthread+0x345/0x410 [ 33.787827] ret_from_fork+0x3a/0x50 [ 33.791601] [ 33.791601] to a HARDIRQ-irq-unsafe lock: [ 33.797200] (fs_reclaim){+.+.} [ 33.797209] [ 33.797209] ... which became HARDIRQ-irq-unsafe at: [ 33.806919] ... [ 33.806934] lock_acquire+0x1dc/0x520 [ 33.812655] fs_reclaim_acquire.part.82+0x24/0x30 [ 33.817561] fs_reclaim_acquire+0x14/0x20 [ 33.821774] kmem_cache_alloc_node_trace+0x39/0x770 [ 33.826854] alloc_worker+0xbd/0x2e0 [ 33.830632] init_rescuer.part.25+0x1f/0x190 [ 33.835114] workqueue_init+0x51f/0x7d0 [ 33.839151] kernel_init_freeable+0x2ad/0x58e [ 33.843715] kernel_init+0x11/0x1b3 [ 33.847405] ret_from_fork+0x3a/0x50 [ 33.851175] [ 33.851175] other info that might help us debug this: [ 33.851175] [ 33.859292] Possible interrupt unsafe locking scenario: [ 33.859292] [ 33.866191] CPU0 CPU1 [ 33.870829] ---- ---- [ 33.875465] lock(fs_reclaim); [ 33.878721] local_irq_disable(); [ 33.884751] lock(&(&dev->event_lock)->rlock); [ 33.891919] lock(fs_reclaim); [ 33.897695] [ 33.900424] lock(&(&dev->event_lock)->rlock); [ 33.905239] [ 33.905239] *** DEADLOCK *** [ 33.905239] [ 33.911276] 3 locks held by syz-executor862/4516: [ 33.916090] #0: (ptrval) (&evdev->mutex){+.+.}, at: evdev_ioctl_handler+0x82/0x1a0 [ 33.924576] #1: (ptrval) (&(&dev->event_lock)->rlock){-...}, at: input_inject_event+0xe0/0x3ed [ 33.934092] #2: (ptrval) (rcu_read_lock){....}, at: input_inject_event+0xc5/0x3ed [ 33.942480] [ 33.942480] the dependencies between HARDIRQ-irq-safe lock and the holding lock: [ 33.951470] -> (&(&dev->event_lock)->rlock){-...} ops: 12141 { [ 33.957421] IN-HARDIRQ-W at: [ 33.960688] lock_acquire+0x1dc/0x520 [ 33.966118] _raw_spin_lock_irqsave+0x96/0xc0 [ 33.972242] input_event+0x67/0xa0 [ 33.977410] psmouse_report_standard_buttons+0x31/0x90 [ 33.984311] psmouse_process_byte+0x1ef/0x710 [ 33.990434] psmouse_handle_byte+0x4a/0x570 [ 33.996392] psmouse_interrupt+0x38a/0x1420 [ 34.002347] serio_interrupt+0x98/0x160 [ 34.007945] i8042_interrupt+0x385/0x5e0 [ 34.013634] __handle_irq_event_percpu+0x1c0/0xad0 [ 34.020188] handle_irq_event_percpu+0x98/0x1c0 [ 34.026481] handle_irq_event+0xa7/0x135 [ 34.032177] handle_edge_irq+0x20f/0x870 [ 34.037862] handle_irq+0x18c/0x2e7 [ 34.043119] do_IRQ+0x78/0x190 [ 34.047936] ret_from_intr+0x0/0x1e [ 34.053191] _raw_spin_unlock_irqrestore+0xa1/0xc0 [ 34.059746] i8042_command+0x3f/0x50 [ 34.065088] i8042_aux_write+0xd6/0x110 [ 34.070861] ps2_do_sendbyte+0x306/0x6b0 [ 34.076547] ps2_sendbyte+0x51/0xa0 [ 34.081799] cypress_send_ext_cmd+0x1d1/0x8b0 [ 34.087917] cypress_detect+0x78/0x1f0 [ 34.093452] psmouse_do_detect+0xad/0x110 [ 34.099226] psmouse_try_protocol+0x15d/0x2b0 [ 34.105353] psmouse_extensions+0x41f/0x830 [ 34.111299] psmouse_switch_protocol+0x53d/0x740 [ 34.117681] psmouse_connect+0x51e/0xc10 [ 34.123371] serio_connect_driver+0x4f/0x70 [ 34.129668] serio_driver_probe+0x47/0x60 [ 34.135453] driver_probe_device+0x69b/0x960 [ 34.141487] __driver_attach+0x1b2/0x1f0 [ 34.147176] bus_for_each_dev+0x151/0x1d0 [ 34.152952] driver_attach+0x3d/0x50 [ 34.158292] serio_handle_event+0x70a/0xb20 [ 34.164240] process_one_work+0xc1e/0x1b50 [ 34.170099] worker_thread+0x1cc/0x1440 [ 34.175701] kthread+0x345/0x410 [ 34.180696] ret_from_fork+0x3a/0x50 [ 34.186031] INITIAL USE at: [ 34.189209] lock_acquire+0x1dc/0x520 [ 34.194548] _raw_spin_lock_irqsave+0x96/0xc0 [ 34.200582] input_inject_event+0xe0/0x3ed [ 34.206352] input_leds_brightness_set+0x81/0xb0 [ 34.212648] led_set_brightness_nopm+0x4c/0xe0 [ 34.218765] led_set_brightness+0x113/0x220 [ 34.224626] led_trigger_event+0x77/0xd0 [ 34.230227] kbd_led_trigger_activate+0xed/0x120 [ 34.236528] led_trigger_set+0x668/0x930 [ 34.242127] led_trigger_set_default+0x10a/0x180 [ 34.248422] of_led_classdev_register+0x485/0x640 [ 34.254804] input_leds_connect+0x410/0x7c0 [ 34.260667] input_attach_handler+0x1b1/0x210 [ 34.266709] input_register_device.cold.22+0xe8/0x297 [ 34.273439] atkbd_connect+0x6fe/0x930 [ 34.278869] serio_connect_driver+0x4f/0x70 [ 34.284728] serio_driver_probe+0x47/0x60 [ 34.290416] driver_probe_device+0x69b/0x960 [ 34.296362] __driver_attach+0x1b2/0x1f0 [ 34.301960] bus_for_each_dev+0x151/0x1d0 [ 34.307655] driver_attach+0x3d/0x50 [ 34.312909] serio_handle_event+0x70a/0xb20 [ 34.318774] process_one_work+0xc1e/0x1b50 [ 34.324548] worker_thread+0x1cc/0x1440 [ 34.330062] kthread+0x345/0x410 [ 34.334970] ret_from_fork+0x3a/0x50 [ 34.340222] } [ 34.342011] ... key at: [] __key.33441+0x0/0x40 [ 34.348743] ... acquired at: [ 34.351838] lock_acquire+0x1dc/0x520 [ 34.355793] fs_reclaim_acquire.part.82+0x24/0x30 [ 34.360788] fs_reclaim_acquire+0x14/0x20 [ 34.365089] __kmalloc+0x45/0x760 [ 34.368694] crng_reseed+0x427/0x920 [ 34.372561] credit_entropy_bits+0x98d/0xa30 [ 34.377117] add_timer_randomness+0x26b/0x320 [ 34.381759] add_input_randomness+0xce/0x3e0 [ 34.386321] input_handle_event+0xb3/0x1210 [ 34.390790] input_inject_event+0x367/0x3ed [ 34.395261] evdev_do_ioctl+0x467/0x21c0 [ 34.399476] evdev_ioctl_handler+0x144/0x1a0 [ 34.404034] evdev_ioctl+0x27/0x2e [ 34.407727] do_vfs_ioctl+0x1cf/0x16a0 [ 34.411765] ksys_ioctl+0xa9/0xd0 [ 34.415365] __x64_sys_ioctl+0x73/0xb0 [ 34.419419] do_syscall_64+0x1b1/0x800 [ 34.423454] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 34.428787] [ 34.430386] [ 34.430386] the dependencies between the lock to be acquired [ 34.430390] and HARDIRQ-irq-unsafe lock: [ 34.441756] -> (fs_reclaim){+.+.} ops: 1066443 { [ 34.446495] HARDIRQ-ON-W at: [ 34.449756] lock_acquire+0x1dc/0x520 [ 34.455191] fs_reclaim_acquire.part.82+0x24/0x30 [ 34.461658] fs_reclaim_acquire+0x14/0x20 [ 34.467431] kmem_cache_alloc_node_trace+0x39/0x770 [ 34.474072] alloc_worker+0xbd/0x2e0 [ 34.479409] init_rescuer.part.25+0x1f/0x190 [ 34.485442] workqueue_init+0x51f/0x7d0 [ 34.491051] kernel_init_freeable+0x2ad/0x58e [ 34.497173] kernel_init+0x11/0x1b3 [ 34.502423] ret_from_fork+0x3a/0x50 [ 34.507756] SOFTIRQ-ON-W at: [ 34.511020] lock_acquire+0x1dc/0x520 [ 34.516452] fs_reclaim_acquire.part.82+0x24/0x30 [ 34.522919] fs_reclaim_acquire+0x14/0x20 [ 34.528693] kmem_cache_alloc_node_trace+0x39/0x770 [ 34.535334] alloc_worker+0xbd/0x2e0 [ 34.540678] init_rescuer.part.25+0x1f/0x190 [ 34.546715] workqueue_init+0x51f/0x7d0 [ 34.552317] kernel_init_freeable+0x2ad/0x58e [ 34.558437] kernel_init+0x11/0x1b3 [ 34.563689] ret_from_fork+0x3a/0x50 [ 34.569025] INITIAL USE at: [ 34.572198] lock_acquire+0x1dc/0x520 [ 34.577536] fs_reclaim_acquire.part.82+0x24/0x30 [ 34.583917] fs_reclaim_acquire+0x14/0x20 [ 34.589604] kmem_cache_alloc_node_trace+0x39/0x770 [ 34.596166] alloc_worker+0xbd/0x2e0 [ 34.601422] init_rescuer.part.25+0x1f/0x190 [ 34.607372] workqueue_init+0x51f/0x7d0 [ 34.612885] kernel_init_freeable+0x2ad/0x58e [ 34.618918] kernel_init+0x11/0x1b3 [ 34.624083] ret_from_fork+0x3a/0x50 [ 34.629329] } [ 34.631117] ... key at: [] __fs_reclaim_map+0x0/0x40 [ 34.638272] ... acquired at: [ 34.641362] lock_acquire+0x1dc/0x520 [ 34.645314] fs_reclaim_acquire.part.82+0x24/0x30 [ 34.650669] fs_reclaim_acquire+0x14/0x20 [ 34.654975] __kmalloc+0x45/0x760 [ 34.658581] crng_reseed+0x427/0x920 [ 34.662443] credit_entropy_bits+0x98d/0xa30 [ 34.666999] add_timer_randomness+0x26b/0x320 [ 34.671651] add_input_randomness+0xce/0x3e0 [ 34.676215] input_handle_event+0xb3/0x1210 [ 34.680685] input_inject_event+0x367/0x3ed [ 34.685157] evdev_do_ioctl+0x467/0x21c0 [ 34.689376] evdev_ioctl_handler+0x144/0x1a0 [ 34.693936] evdev_ioctl+0x27/0x2e [ 34.697633] do_vfs_ioctl+0x1cf/0x16a0 [ 34.701672] ksys_ioctl+0xa9/0xd0 [ 34.705275] __x64_sys_ioctl+0x73/0xb0 [ 34.709319] do_syscall_64+0x1b1/0x800 [ 34.713359] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 34.718694] [ 34.720298] [ 34.720298] stack backtrace: [ 34.724777] CPU: 1 PID: 4516 Comm: syz-executor862 Not tainted 4.17.0-rc2+ #17 [ 34.732110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 34.741436] Call Trace: [ 34.744010] dump_stack+0x1b9/0x294 [ 34.747620] ? dump_stack_print_info.cold.2+0x52/0x52 [ 34.752798] ? print_shortest_lock_dependencies.cold.55+0x1af/0x22a [ 34.759184] ? vprintk_func+0x81/0xe7 [ 34.762972] check_usage.cold.58+0x6d5/0xac7 [ 34.767370] ? check_usage_forwards+0x3a0/0x3a0 [ 34.772019] ? __bfs+0xa8/0x790 [ 34.775292] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 34.780461] ? lockdep_on+0x50/0x50 [ 34.784076] ? lock_pin_lock+0x350/0x350 [ 34.788126] ? unwind_get_return_address+0x61/0xa0 [ 34.793038] __lock_acquire+0x2417/0x5140 [ 34.797168] ? __lock_acquire+0x2417/0x5140 [ 34.801493] ? debug_check_no_locks_freed+0x310/0x310 [ 34.806662] ? debug_check_no_locks_freed+0x310/0x310 [ 34.811834] ? lock_downgrade+0x8e0/0x8e0 [ 34.815961] ? sha_transform+0x26/0x4449 [ 34.820018] ? kasan_check_read+0x11/0x20 [ 34.824152] ? do_raw_spin_unlock+0x9e/0x2e0 [ 34.828553] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 34.833114] ? memset+0x31/0x40 [ 34.836370] ? memzero_explicit+0xe/0x10 [ 34.840407] ? graph_lock+0x170/0x170 [ 34.844183] ? crng_fast_load+0x3b0/0x3b0 [ 34.848309] lock_acquire+0x1dc/0x520 [ 34.852088] ? bad_range+0x160/0x160 [ 34.855787] ? lock_release+0xa10/0xa10 [ 34.859739] ? lock_downgrade+0x8e0/0x8e0 [ 34.863860] ? lock_release+0xa10/0xa10 [ 34.867810] ? lock_downgrade+0x8e0/0x8e0 [ 34.871938] fs_reclaim_acquire.part.82+0x24/0x30 [ 34.876762] ? bad_range+0x160/0x160 [ 34.880458] fs_reclaim_acquire+0x14/0x20 [ 34.884585] __kmalloc+0x45/0x760 [ 34.888022] ? trace_hardirqs_off+0xd/0x10 [ 34.892241] ? _raw_write_unlock_irqrestore+0x63/0xc0 [ 34.897407] ? crng_reseed+0x427/0x920 [ 34.901273] crng_reseed+0x427/0x920 [ 34.904963] ? _extract_entropy.constprop.32+0x150/0x150 [ 34.910389] ? find_held_lock+0x36/0x1c0 [ 34.914424] ? __lock_is_held+0xb5/0x140 [ 34.918462] credit_entropy_bits+0x98d/0xa30 [ 34.922848] ? add_timer_randomness+0x26b/0x320 [ 34.927495] ? crng_reseed+0x920/0x920 [ 34.931362] ? _raw_spin_unlock_irqrestore+0x63/0xc0 [ 34.936443] ? mix_pool_bytes+0xf7/0x410 [ 34.940479] ? add_timer_randomness+0x12f/0x320 [ 34.945125] ? __bpf_trace_random_read+0x40/0x40 [ 34.949868] ? debug_check_no_locks_freed+0x310/0x310 [ 34.955040] ? print_usage_bug+0xc0/0xc0 [ 34.959081] add_timer_randomness+0x26b/0x320 [ 34.963553] ? credit_entropy_bits+0xa30/0xa30 [ 34.968118] ? print_usage_bug+0xc0/0xc0 [ 34.972157] add_input_randomness+0xce/0x3e0 [ 34.976544] ? add_timer_randomness+0x320/0x320 [ 34.981190] ? lock_acquire+0x1dc/0x520 [ 34.985145] ? input_inject_event+0xc5/0x3ed [ 34.989536] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 34.994706] input_handle_event+0xb3/0x1210 [ 34.999007] input_inject_event+0x367/0x3ed [ 35.003311] ? input_event+0xa0/0xa0 [ 35.007007] ? __might_sleep+0x95/0x190 [ 35.010965] evdev_do_ioctl+0x467/0x21c0 [ 35.015019] ? lock_downgrade+0x8e0/0x8e0 [ 35.019149] ? str_to_user+0x90/0x90 [ 35.022843] ? kasan_check_read+0x11/0x20 [ 35.026990] ? rcu_is_watching+0x85/0x140 [ 35.031137] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 35.036324] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 35.041513] ? __kernel_text_address+0xd/0x40 [ 35.045990] ? is_bpf_text_address+0xd7/0x170 [ 35.050469] ? kernel_text_address+0x79/0xf0 [ 35.054872] ? __unwind_start+0x166/0x330 [ 35.059013] ? __kernel_text_address+0xd/0x40 [ 35.063496] ? unwind_get_return_address+0x61/0xa0 [ 35.068402] ? __save_stack_trace+0x7e/0xd0 [ 35.072710] ? save_stack+0xa9/0xd0 [ 35.076314] ? save_stack+0x43/0xd0 [ 35.079918] ? __kasan_slab_free+0x11a/0x170 [ 35.084307] ? kasan_slab_free+0xe/0x10 [ 35.088267] ? kmem_cache_free+0x86/0x2d0 [ 35.092394] ? putname+0xf2/0x130 [ 35.095822] ? do_sys_open+0x554/0x740 [ 35.099686] ? __x64_sys_open+0x7e/0xc0 [ 35.103642] ? do_syscall_64+0x1b1/0x800 [ 35.107681] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 35.113029] ? kasan_check_read+0x11/0x20 [ 35.117159] ? do_raw_spin_unlock+0x9e/0x2e0 [ 35.121544] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 35.126103] ? kasan_check_write+0x14/0x20 [ 35.130325] evdev_ioctl_handler+0x144/0x1a0 [ 35.134718] evdev_ioctl+0x27/0x2e [ 35.138234] ? evdev_ioctl_compat+0x30/0x30 [ 35.142540] do_vfs_ioctl+0x1cf/0x16a0 [ 35.146405] ? rcu_pm_notify+0xc0/0xc0 [ 35.150279] ? ioctl_preallocate+0x2e0/0x2e0 [ 35.154669] ? fget_raw+0x20/0x20 [ 35.158096] ? putname+0xf2/0x130 [ 35.161527] ? rcu_read_lock_sched_held+0x108/0x120 [ 35.166518] ? kmem_cache_free+0x25c/0x2d0 [ 35.170729] ? putname+0xf7/0x130 [ 35.174160] ? security_file_ioctl+0x94/0xc0 [ 35.178550] ksys_ioctl+0xa9/0xd0 [ 35.181982] __x64_sys_ioctl+0x73/0xb0 [ 35.185847] do_syscall_64+0x1b1/0x800 [ 35.189709] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 35.194527] ? syscall_return_slowpath+0x5c0/0x5c0 [ 35.199433] ? syscall_return_slowpath+0x30f/0x5c0 [ 35.204337] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 35.209680] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 35.214498] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 35.219662] RIP: 0033:0x443e09 [ 35.222828] RSP: 002b:00007ffd01f4cc18 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 35.230513] RAX: ffffffffffffffda RBX: 746e6576652f7475 RCX: 0000000000443e09 [ 35.237756] RDX: 0000000020000000 RSI: 0000000040084503 RDI: 00000000000003ff [ 35.245001] RBP: 706e692f7665642f R08: 00000000004002e0 R09: 00000000004002e0 [ 35.252256] R10: 0000000000000000 R11: 0000000000000246 R12: 0010000000028001 [ 35.259504] R13: 0000000000401b40 R14: 0000000000000000 R15: 0000000000000000 [ 35.266755] BUG: sleeping function called from invalid context at mm/slab.h:421 [ 35.274177] in_atomic(): 1, irqs_disabled(): 1, pid: 4516, name: syz-executor862 [ 35.281680] INFO: lockdep is turned off. [ 35.285712] irq event stamp: 236160 [ 35.289322] hardirqs last enabled at (236159): [] do_syscall_64+0x92/0x800 [ 35.297965] hardirqs last disabled at (236160): [] _raw_spin_lock_irqsave+0x74/0xc0 [ 35.307300] softirqs last enabled at (235836): [] __do_softirq+0x778/0xaf5 [ 35.315943] softirqs last disabled at (235829): [] irq_exit+0x1d1/0x200 [ 35.324238] CPU: 1 PID: 4516 Comm: syz-executor862 Not tainted 4.17.0-rc2+ #17 [ 35.331572] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 35.340903] Call Trace: [ 35.343489] dump_stack+0x1b9/0x294 [ 35.347093] ? dump_stack_print_info.cold.2+0x52/0x52 [ 35.352262] ? fs_reclaim_acquire+0x20/0x20 [ 35.356566] ? irq_exit+0x1d1/0x200 [ 35.360167] ? irq_exit+0x1d1/0x200 [ 35.363772] ___might_sleep.cold.87+0x11f/0x13a [ 35.368422] ? check_same_owner+0x320/0x320 [ 35.372723] ? lock_release+0xa10/0xa10 [ 35.376678] __might_sleep+0x95/0x190 [ 35.380458] __kmalloc+0x2b9/0x760 [ 35.383987] ? trace_hardirqs_off+0xd/0x10 [ 35.388211] ? _raw_write_unlock_irqrestore+0x63/0xc0 [ 35.393390] ? crng_reseed+0x427/0x920 [ 35.397255] crng_reseed+0x427/0x920 [ 35.400950] ? _extract_entropy.constprop.32+0x150/0x150 [ 35.406378] ? find_held_lock+0x36/0x1c0 [ 35.410431] ? __lock_is_held+0xb5/0x140 [ 35.414491] credit_entropy_bits+0x98d/0xa30 [ 35.418883] ? add_timer_randomness+0x26b/0x320 [ 35.423549] ? crng_reseed+0x920/0x920 [ 35.427419] ? _raw_spin_unlock_irqrestore+0x63/0xc0 [ 35.432497] ? mix_pool_bytes+0xf7/0x410 [ 35.436536] ? add_timer_randomness+0x12f/0x320 [ 35.441181] ? __bpf_trace_random_read+0x40/0x40 [ 35.445916] ? debug_check_no_locks_freed+0x310/0x310 [ 35.451084] ? print_usage_bug+0xc0/0xc0 [ 35.455123] add_timer_randomness+0x26b/0x320 [ 35.459597] ? credit_entropy_bits+0xa30/0xa30 [ 35.464160] ? print_usage_bug+0xc0/0xc0 [ 35.468199] add_input_randomness+0xce/0x3e0 [ 35.472587] ? add_timer_randomness+0x320/0x320 [ 35.477237] ? lock_acquire+0x1dc/0x520 [ 35.481195] ? input_inject_event+0xc5/0x3ed [ 35.485588] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 35.490756] input_handle_event+0xb3/0x1210 [ 35.495059] input_inject_event+0x367/0x3ed [ 35.499357] ? input_event+0xa0/0xa0 [ 35.503069] ? __might_sleep+0x95/0x190 [ 35.507036] evdev_do_ioctl+0x467/0x21c0 [ 35.511078] ? lock_downgrade+0x8e0/0x8e0 [ 35.515202] ? str_to_user+0x90/0x90 [ 35.518914] ? kasan_check_read+0x11/0x20 [ 35.523065] ? rcu_is_watching+0x85/0x140 [ 35.527192] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 35.532360] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 35.537529] ? __kernel_text_address+0xd/0x40 [ 35.542007] ? is_bpf_text_address+0xd7/0x170 [ 35.546484] ? kernel_text_address+0x79/0xf0 [ 35.550870] ? __unwind_start+0x166/0x330 [ 35.554993] ? __kernel_text_address+0xd/0x40 [ 35.559469] ? unwind_get_return_address+0x61/0xa0 [ 35.564376] ? __save_stack_trace+0x7e/0xd0 [ 35.568677] ? save_stack+0xa9/0xd0 [ 35.572281] ? save_stack+0x43/0xd0 [ 35.575886] ? __kasan_slab_free+0x11a/0x170 [ 35.580272] ? kasan_slab_free+0xe/0x10 [ 35.584230] ? kmem_cache_free+0x86/0x2d0 [ 35.588364] ? putname+0xf2/0x130 [ 35.591796] ? do_sys_open+0x554/0x740 [ 35.595668] ? __x64_sys_open+0x7e/0xc0 [ 35.599620] ? do_syscall_64+0x1b1/0x800 [ 35.603661] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 35.609007] ? kasan_check_read+0x11/0x20 [ 35.613140] ? do_raw_spin_unlock+0x9e/0x2e0 [ 35.617525] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 35.622095] ? kasan_check_write+0x14/0x20 [ 35.626311] evdev_ioctl_handler+0x144/0x1a0 [ 35.630698] evdev_ioctl+0x27/0x2e [ 35.634218] ? evdev_ioctl_compat+0x30/0x30 [ 35.638519] do_vfs_ioctl+0x1cf/0x16a0 [ 35.642387] ? rcu_pm_notify+0xc0/0xc0 [ 35.646257] ? ioctl_preallocate+0x2e0/0x2e0 [ 35.650645] ? fget_raw+0x20/0x20 [ 35.654093] ? putname+0xf2/0x130 [ 35.657527] ? rcu_read_lock_sched_held+0x108/0x120 [ 35.662526] ? kmem_cache_free+0x25c/0x2d0 [ 35.666740] ? putname+0xf7/0x130 [ 35.670179] ? security_file_ioctl+0x94/0xc0 [ 35.674576] ksys_ioctl+0xa9/0xd0 [ 35.678012] __x64_sys_ioctl+0x73/0xb0 [ 35.681890] do_syscall_64+0x1b1/0x800 [ 35.685759] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 35.690581] ? syscall_return_slowpath+0x5c0/0x5c0 [ 35.695491] ? syscall_return_slowpath+0x30f/0x5c0 [ 35.700401] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 35.705748] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 35.710569] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 35.715735] RIP: 0033:0x443e09 [ 35.718899] RSP: 002b:00007ffd01f4cc18 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 35.726582] RAX: ffffffffffffffda RBX: 746e6576652f7475 RCX: 0000000000443e09 [ 35.733827] RDX: 0000000020000000 RSI: 0000000040084503 RDI: 00000000000003ff [ 35.741074] RBP: 706e692f7665642f R08: 00000000004002e0 R09: 00000000004002e0 [ 35.748320] R10: 0000000000000000 R11: 0000000000000246 R12: 0010000000028001 [ 35.755564] R13: 0000000000401b40 R14: 0000000000000000 R15: 0000000000000000 [ 35.762856] random: crng init done