vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) 8<--- cut here --- Unable to handle kernel NULL pointer dereference at virtual address 00000604 pgd = 89104c00 [00000604] *pgd=8922e003, *pmd=fe7b5003 Internal error: Oops: 207 [#1] PREEMPT SMP ARM Dumping ftrace buffer: (ftrace buffer empty) Modules linked in: CPU: 0 PID: 18380 Comm: syz-executor.0 Not tainted 5.12.0-rc2-syzkaller #0 Hardware name: ARM-Versatile Express PC is at __lock_acquire+0x4e8/0x3318 kernel/locking/lockdep.c:4770 LR is at debug_locks+0x0/0x4 pc : [<802bc480>] lr : [<838233f0>] psr: 20000093 sp : 88f11bd0 ip : 88f10000 fp : 88f11cac r10: 00000080 r9 : 845c8000 r8 : 00000001 r7 : 00000000 r6 : 836bb680 r5 : 00000604 r4 : 00000000 r3 : 838455e8 r2 : 00000000 r1 : 00000000 r0 : 00000604 Flags: nzCv IRQs off FIQs on Mode SVC_32 ISA ARM Segment user Control: 30c5387d Table: 89104c00 DAC: fffffffd Process syz-executor.0 (pid: 18380, stack limit = 0x88f10210) Stack: (0x88f11bd0 to 0x88f12000) 1bc0: 88f11c0c 88f11be0 845c8708 00000004 1be0: 8390e944 e6e5e17a 88f11c18 845c8000 836bb680 00000000 88f11c14 88f11c08 1c00: 845c8728 00000005 8390e944 836bb680 88f11c2c 838233f0 8213603c 845c86e8 1c20: 00000003 845c8000 00000000 00000006 82137d5c 845c8000 88f11c6c 88f11c48 1c40: 836bb438 8213f048 845c8000 00000000 88f11c6c 88f11c60 8213603c 82135eec 1c60: 88f11c94 88f11c70 821350fc 8213602c 845c8708 00000004 8390e944 e6e5e17a 1c80: 88f10000 88f11cb0 836bb680 836bb680 00000000 00000000 60000093 00000080 1ca0: 88f11d24 88f11cb0 802bfea0 802bbfa4 00000001 00000080 00000000 80286768 1cc0: 00000000 00000000 00000000 00000000 88f11d24 88f11ce0 802b9518 802e80ec 1ce0: 8020d140 8020e34c 00000000 8213ee08 60000093 e6e5e17a 000005f4 00000604 1d00: 00000000 00000000 00000000 00000001 00000000 80286768 88f11d64 88f11d28 1d20: 802c0238 802bfdbc 00000001 00000000 80286768 869f3010 88f11d64 000005f4 1d40: 80286768 a0000013 869f3010 000005f4 84671048 845ae368 88f11d94 88f11d68 1d60: 8213edf0 802c01d8 00000001 00000000 80286768 82137984 84670000 00000000 1d80: 00000000 00000003 88f11dec 88f11d98 80286768 8213eda8 821350fc 8213602c 1da0: 88f11e00 803850f4 00000000 00000001 60000093 869f3010 000093f4 e6e5e17a 1dc0: 80385128 84671040 84670000 845ae350 869f3010 869f2c00 84671048 845ae368 1de0: 88f11dfc 88f11df0 80286fc8 80286718 88f11e6c 88f11e00 812008bc 80286fbc 1e00: 82a5e3c0 88f11e34 8213b238 00000000 00000007 00000005 00000013 87da6700 1e20: 00000006 00000009 00000000 00000001 00000000 00000005 82134f14 e6e5e17a 1e40: 00000001 812003d8 80ab7b18 89038a80 888d0a10 88f11f08 89038a80 00000000 1e60: 88f11e84 88f11e70 80ab7b34 812003e4 00000007 80ab7b18 88f11ea4 88f11e88 1e80: 805bcbbc 80ab7b24 00000000 00000000 888d0a00 888d0a10 88f11ed4 88f11ea8 1ea0: 805bbc90 805bcb80 00000000 00000000 00000000 84748500 00000000 88f10000 1ec0: 88f11f68 00000007 88f11f64 88f11ed8 804dae18 805bbb74 00000007 83ac794f 1ee0: 84748500 8292ae68 76f75b90 00000007 00000005 00000000 00000000 88f11ef0 1f00: 00000000 e6e5e17a 84748500 00000000 00000000 00000000 00000000 00000000 1f20: 00000000 00000000 00000000 00000000 8213baa4 e6e5e17a 805045a0 84748503 1f40: 84748500 00000000 00000000 80200224 88f10000 00000004 88f11f94 88f11f68 1f60: 804db070 804dabc4 00000000 00000000 836c4d1c e6e5e17a 00000009 76f76b90 1f80: 00000007 00000004 88f11fa4 88f11f98 804db104 804db014 00000000 88f11fa8 1fa0: 80200060 804db100 00000009 76f76b90 00000009 76f75b90 00000007 00000000 1fc0: 00000009 76f76b90 00000007 00000004 76f75b90 76f766d0 7e93c914 76f7620c 1fe0: 00000000 76f75b70 00028b34 00028e98 80000010 00000009 00000000 00000000 Backtrace: [<802bbf98>] (__lock_acquire) from [<802bfea0>] (lock_acquire.part.0+0xf0/0x41c kernel/locking/lockdep.c:5510) r10:00000080 r9:60000093 r8:00000000 r7:00000000 r6:836bb680 r5:836bb680 r4:88f11cb0 [<802bfdb0>] (lock_acquire.part.0) from [<802c0238>] (lock_acquire+0x6c/0x74 kernel/locking/lockdep.c:5483) r10:80286768 r9:00000000 r8:00000001 r7:00000000 r6:00000000 r5:00000000 r4:00000604 [<802c01cc>] (lock_acquire) from [<8213edf0>] (__raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:110 [inline]) [<802c01cc>] (lock_acquire) from [<8213edf0>] (_raw_spin_lock_irqsave+0x54/0x70 kernel/locking/spinlock.c:159) r10:845ae368 r9:84671048 r8:000005f4 r7:869f3010 r6:a0000013 r5:80286768 r4:000005f4 [<8213ed9c>] (_raw_spin_lock_irqsave) from [<80286768>] (try_to_wake_up+0x5c/0x8a4 kernel/sched/core.c:3347) r6:00000003 r5:00000000 r4:00000000 [<8028670c>] (try_to_wake_up) from [<80286fc8>] (wake_up_process+0x18/0x1c kernel/sched/core.c:3535) r10:845ae368 r9:84671048 r8:869f2c00 r7:869f3010 r6:845ae350 r5:84670000 r4:84671040 [<80286fb0>] (wake_up_process) from [<812008bc>] (attach_store+0x4e4/0x504 drivers/usb/usbip/vhci_sysfs.c:422) [<812003d8>] (attach_store) from [<80ab7b34>] (dev_attr_store+0x1c/0x28 drivers/base/core.c:1989) r10:00000000 r9:89038a80 r8:88f11f08 r7:888d0a10 r6:89038a80 r5:80ab7b18 r4:812003d8 [<80ab7b18>] (dev_attr_store) from [<805bcbbc>] (sysfs_kf_write+0x48/0x54 fs/sysfs/file.c:139) r5:80ab7b18 r4:00000007 [<805bcb74>] (sysfs_kf_write) from [<805bbc90>] (kernfs_fop_write_iter+0x128/0x1ec fs/kernfs/file.c:296) r7:888d0a10 r6:888d0a00 r5:00000000 r4:00000000 [<805bbb68>] (kernfs_fop_write_iter) from [<804dae18>] (call_write_iter include/linux/fs.h:1977 [inline]) [<805bbb68>] (kernfs_fop_write_iter) from [<804dae18>] (new_sync_write fs/read_write.c:518 [inline]) [<805bbb68>] (kernfs_fop_write_iter) from [<804dae18>] (vfs_write+0x260/0x350 fs/read_write.c:605) r9:00000007 r8:88f11f68 r7:88f10000 r6:00000000 r5:84748500 r4:00000000 [<804dabb8>] (vfs_write) from [<804db070>] (ksys_write+0x68/0xec fs/read_write.c:658) r10:00000004 r9:88f10000 r8:80200224 r7:00000000 r6:00000000 r5:84748500 r4:84748503 [<804db008>] (ksys_write) from [<804db104>] (__do_sys_write fs/read_write.c:670 [inline]) [<804db008>] (ksys_write) from [<804db104>] (sys_write+0x10/0x14 fs/read_write.c:667) r7:00000004 r6:00000007 r5:76f76b90 r4:00000009 [<804db0f4>] (sys_write) from [<80200060>] (ret_fast_syscall+0x0/0x2c arch/arm/mm/proc-v7.S:64) Exception stack(0x88f11fa8 to 0x88f11ff0) 1fa0: 00000009 76f76b90 00000009 76f75b90 00000007 00000000 1fc0: 00000009 76f76b90 00000007 00000004 76f75b90 76f766d0 7e93c914 76f7620c 1fe0: 00000000 76f75b70 00028b34 00028e98 Code: 850b308c 93a03001 950b308c ea00008e (e5902000) ---[ end trace 847b9c8f205f4b54 ]---