BUG: sleeping function called from invalid context at mm/slab.h:421 in_atomic(): 1, irqs_disabled(): 0, pid: 11579, name: udevd INFO: lockdep is turned off. Preemption disabled at: [] __do_softirq+0x189/0xad8 kernel/softirq.c:269 CPU: 1 PID: 11579 Comm: udevd Not tainted 4.19.0-rc6+ #267 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x1c4/0x2b4 lib/dump_stack.c:113 ___might_sleep.cold.82+0x1ba/0x1f3 kernel/sched/core.c:6143 __might_sleep+0x95/0x190 kernel/sched/core.c:6096 slab_pre_alloc_hook mm/slab.h:421 [inline] slab_alloc mm/slab.c:3378 [inline] kmem_cache_alloc_trace+0x2cd/0x750 mm/slab.c:3618 kmalloc include/linux/slab.h:513 [inline] kzalloc include/linux/slab.h:707 [inline] kobject_uevent_env+0x2f3/0x101e lib/kobject_uevent.c:514 kobject_uevent+0x1f/0x24 lib/kobject_uevent.c:636 kobject_cleanup lib/kobject.c:649 [inline] kobject_release lib/kobject.c:691 [inline] kref_put include/linux/kref.h:70 [inline] kobject_put.cold.9+0x170/0x2e4 lib/kobject.c:708 put_device+0x20/0x30 drivers/base/core.c:2024 delete_partition_rcu_cb+0x147/0x1b0 block/partition-generic.c:259 __rcu_reclaim kernel/rcu/rcu.h:236 [inline] rcu_do_batch kernel/rcu/tree.c:2576 [inline] invoke_rcu_callbacks kernel/rcu/tree.c:2880 [inline] __rcu_process_callbacks kernel/rcu/tree.c:2847 [inline] rcu_process_callbacks+0xf23/0x2670 kernel/rcu/tree.c:2864 __do_softirq+0x30b/0xad8 kernel/softirq.c:292 invoke_softirq kernel/softirq.c:372 [inline] irq_exit+0x17f/0x1c0 kernel/softirq.c:412 exiting_irq arch/x86/include/asm/apic.h:536 [inline] smp_apic_timer_interrupt+0x1cb/0x760 arch/x86/kernel/apic/apic.c:1056 apic_timer_interrupt+0xf/0x20 arch/x86/entry/entry_64.S:864 RIP: 0033:0x7f3b020e6283 Code: 6d 58 48 81 c5 00 02 00 00 64 49 89 6d 00 e9 b5 fb ff ff 00 00 00 00 66 0f ef c9 89 f9 49 89 f8 48 83 e7 f0 31 f9 66 0f 74 0f <66> 0f d7 d1 d3 ea d3 e2 21 d2 75 71 66 0f ef c9 66 66 66 66 2e 0f RSP: 002b:00007ffea3542458 EFLAGS: 00000206 ORIG_RAX: ffffffffffffff13 RAX: 0000000000000004 RBX: 0000000000000400 RCX: 0000000000000003 RDX: 0000000001e1d7f3 RSI: 0000000000000400 RDI: 0000000001e1d7f0 RBP: 0000000001e1c550 R08: 0000000001e1d7f3 R09: 0000000000000000 R10: 7269762f73656369 R11: 00007f3b02120c10 R12: 0000000001e1d7f3 R13: 00007ffea3542498 R14: 0000000001e03250 R15: 0000000001e08e10 input:  as /devices/virtual/input/input8 input:  as /devices/virtual/input/input9 Option ' ' to dns_resolver key: bad/missing value netlink: 20 bytes leftover after parsing attributes in process `syz-executor2'. netlink: 20 bytes leftover after parsing attributes in process `syz-executor2'. FAT-fs (loop2): bogus number of reserved sectors FAT-fs (loop2): Can't find a valid FAT filesystem FAT-fs (loop2): bogus number of reserved sectors FAT-fs (loop2): Can't find a valid FAT filesystem Unknown ioctl 21519 ntfs: (device loop1): parse_options(): Unrecognized mount option show_sys_filpªŠ4æ ½'d>18446744073709551615. ntfs: (device loop1): parse_options(): Unrecognized mount option p€. Unknown ioctl 21519 Unknown ioctl 21519 ntfs: (device loop1): parse_options(): Unrecognized mount option show_sys_filpªŠ4æ ½'d>18446744073709551615. ntfs: (device loop1): parse_options(): Unrecognized mount option p€. sched: DL replenish lagged too much IPVS: ftp: loaded support on port[0] = 21 device lo entered promiscuous mode device lo left promiscuous mode device lo entered promiscuous mode IPVS: ftp: loaded support on port[0] = 21 *** Guest State *** CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 CR3 = 0x0000000000000000 RSP = 0x0000000000000000 RIP = 0x000000000000fff0 RFLAGS=0x00000002 DR7 = 0x0000000000000400 Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 GDTR: limit=0x0000ffff, base=0x0000000000000000 LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 IDTR: limit=0x0000ffff, base=0x0000000000000000 TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 EFER = 0x0000000000000000 PAT = 0x0007040600070406 DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 Interruptibility = 00000001 ActivityState = 00000000 *** Host State *** RIP = 0xffffffff812108be RSP = 0xffff8801847bf350 CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 FSBase=00007f4c763c8700 GSBase=ffff8801dae00000 TRBase=fffffe0000034000 GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 CR0=0000000080050033 CR3=000000018273f000 CR4=00000000001426f0 Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87c013a0 EFER = 0x0000000000000d01 PAT = 0x0407050600070106 *** Control State *** PinBased=0000003f CPUBased=b5986dfe SecondaryExec=000000c2 EntryControls=0000d1ff ExitControls=002fefff ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 reason=80000021 qualification=0000000000000000 IDTVectoring: info=00000000 errcode=00000000 TSC Offset = 0xfffffe9014cb861f EPT pointer = 0x000000018f7ec01e *** Guest State *** CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 CR3 = 0x0000000000000000 RSP = 0x0000000000000000 RIP = 0x000000000000fff0 RFLAGS=0x00000002 DR7 = 0x0000000000000400 Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 GDTR: limit=0x0000ffff, base=0x0000000000000000 LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 IDTR: limit=0x0000ffff, base=0x0000000000000000 TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 EFER = 0x0000000000000000 PAT = 0x0007040600070406 DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 Interruptibility = 00000001 ActivityState = 00000000 *** Host State *** RIP = 0xffffffff812108be RSP = 0xffff88018ede7350 CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 FSBase=00007f4c763a7700 GSBase=ffff8801daf00000 TRBase=fffffe0000003000 GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 CR0=0000000080050033 CR3=000000018273f000 CR4=00000000001426e0 Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87c013a0 EFER = 0x0000000000000d01 PAT = 0x0407050600070106 *** Control State *** PinBased=0000003f CPUBased=b5986dfe SecondaryExec=000000c2 EntryControls=0000d1ff ExitControls=002fefff ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 reason=80000021 qualification=0000000000000000 IDTVectoring: info=00000000 errcode=00000000 TSC Offset = 0xfffffe9014cb861f EPT pointer = 0x000000018f7ec01e netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. audit: type=1800 audit(1538693779.951:42): pid=16308 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor1" name="file0" dev="sda1" ino=16550 res=0 audit: type=1800 audit(1538693779.971:43): pid=16313 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor1" name="file0" dev="sda1" ino=16550 res=0 audit: type=1800 audit(1538693780.221:44): pid=16348 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor2" name="file0" dev="sda1" ino=16550 res=0 audit: type=1804 audit(1538693780.261:45): pid=16348 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor2" name="/root/syzkaller-testdir815717614/syzkaller.Tejxl1/206/file0" dev="sda1" ino=16550 res=1 audit: type=1800 audit(1538693780.261:46): pid=16348 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor2" name="file0" dev="sda1" ino=16550 res=0 misc userio: Can't change port type on an already running userio instance QAT: Invalid ioctl IPVS: ftp: loaded support on port[0] = 21