BUG: sleeping function called from invalid context at kernel/locking/mutex.c:908
in_atomic(): 1, irqs_disabled(): 0, pid: 10889, name: blkid
1 lock held by blkid/10889:
 #0: 00000000e805c214 ((&toneport->timer)){+.-.}, at: lockdep_copy_map include/linux/lockdep.h:170 [inline]
 #0: 00000000e805c214 ((&toneport->timer)){+.-.}, at: call_timer_fn+0xce/0x5f0 kernel/time/timer.c:1315
CPU: 0 PID: 10889 Comm: blkid Not tainted 5.1.0-rc3-319004-g43151d6 #6
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 <IRQ>
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0xe8/0x16e lib/dump_stack.c:113
 ___might_sleep.cold+0x11c/0x136 kernel/sched/core.c:6190
 __mutex_lock_common kernel/locking/mutex.c:908 [inline]
 __mutex_lock+0xcd/0x12b0 kernel/locking/mutex.c:1072
 line6_pcm_acquire+0x35/0x210 sound/usb/line6/pcm.c:311
 call_timer_fn+0x161/0x5f0 kernel/time/timer.c:1325
 expire_timers kernel/time/timer.c:1362 [inline]
 __run_timers kernel/time/timer.c:1681 [inline]
 __run_timers kernel/time/timer.c:1649 [inline]
 run_timer_softirq+0x58b/0x1400 kernel/time/timer.c:1694
 __do_softirq+0x22a/0x8cd kernel/softirq.c:293
 invoke_softirq kernel/softirq.c:374 [inline]
 irq_exit+0x187/0x1b0 kernel/softirq.c:414
 exiting_irq arch/x86/include/asm/apic.h:536 [inline]
 smp_apic_timer_interrupt+0xfe/0x4a0 arch/x86/kernel/apic/apic.c:1062
 apic_timer_interrupt+0xf/0x20 arch/x86/entry/entry_64.S:807
 </IRQ>
RIP: 0010:orc_find.part.0+0x103/0x310 arch/x86/kernel/unwind_orc.c:155
Code: 48 8d 34 40 48 8d b4 36 1c 04 76 94 83 c2 01 48 81 fe 58 29 6b 95 0f 83 86 01 00 00 89 d7 48 8d 3c 7f 48 8d bc 3f 1c 04 76 94 <48> 81 ff 58 29 6b 95 0f 87 6b 01 00 00 48 8d 3c 85 f4 95 d2 93 44
RSP: 0018:ffff88806bb47778 EFLAGS: 00000297 ORIG_RAX: ffffffffffffff13
RAX: 00000000000268d1 RBX: 000000000000a84b RCX: 0000000000000000
RDX: 00000000000268da RSI: ffffffff94847902 RDI: ffffffff94847938
RBP: 1ffff1100d768f00 R08: ffff88806bb478cd R09: ffffffff94848a70
R10: ffff88806bb478c0 R11: ffff88806bb478e8 R12: ffffffff81a84bcd
R13: 000000000000a84c R14: 00000000000268d1 R15: 00000000000d405d
 orc_find arch/x86/kernel/unwind_orc.c:137 [inline]
 unwind_next_frame+0x1bd/0x1830 arch/x86/kernel/unwind_orc.c:393
 __save_stack_trace+0x7f/0x100 arch/x86/kernel/stacktrace.c:44
 save_stack+0x32/0xa0 mm/kasan/common.c:75
 set_track mm/kasan/common.c:87 [inline]
 __kasan_slab_free+0x130/0x180 mm/kasan/common.c:459
 slab_free_hook mm/slub.c:1429 [inline]
 slab_free_freelist_hook+0x5e/0x140 mm/slub.c:1456
 slab_free mm/slub.c:3003 [inline]
 kmem_cache_free+0x9f/0x2b0 mm/slub.c:3019
 remove_vma+0x13f/0x180 mm/mmap.c:185
 exit_mmap+0x328/0x4d0 mm/mmap.c:3149
 __mmput kernel/fork.c:1046 [inline]
 mmput+0x158/0x4a0 kernel/fork.c:1067
 exit_mm kernel/exit.c:546 [inline]
 do_exit+0x7f0/0x2e10 kernel/exit.c:863
 do_group_exit+0x12a/0x350 kernel/exit.c:980
 __do_sys_exit_group kernel/exit.c:991 [inline]
 __se_sys_exit_group kernel/exit.c:989 [inline]
 __x64_sys_exit_group+0x3f/0x50 kernel/exit.c:989
 do_syscall_64+0xcf/0x4f0 arch/x86/entry/common.c:290
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x7f876bdbe1e8
Code: Bad RIP value.
RSP: 002b:00007ffc4f03f168 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f876bdbe1e8
RDX: 0000000000000002 RSI: 000000000000003c RDI: 0000000000000002
RBP: 00007f876c093840 R08: 00000000000000e7 R09: ffffffffffffffa8
R10: 00007f876c099740 R11: 0000000000000246 R12: 00007f876c093840
R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000000000
==================================================================
BUG: KASAN: null-ptr-deref in memset include/linux/string.h:337 [inline]
BUG: KASAN: null-ptr-deref in submit_audio_out_urb+0x91e/0x1780 sound/usb/line6/playback.c:246
Write of size 20 at addr 0000000000000010 by task blkid/10889

CPU: 0 PID: 10889 Comm: blkid Tainted: G        W         5.1.0-rc3-319004-g43151d6 #6
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 <IRQ>
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0xe8/0x16e lib/dump_stack.c:113
 kasan_report.cold+0x5/0x3c mm/kasan/report.c:321
 memset+0x20/0x40 mm/kasan/common.c:115
 memset include/linux/string.h:337 [inline]
 submit_audio_out_urb+0x91e/0x1780 sound/usb/line6/playback.c:246
 line6_submit_audio_out_all_urbs+0xce/0x120 sound/usb/line6/playback.c:295
 line6_stream_start+0x15b/0x1f0 sound/usb/line6/pcm.c:199
 line6_pcm_acquire+0x139/0x210 sound/usb/line6/pcm.c:322
 call_timer_fn+0x161/0x5f0 kernel/time/timer.c:1325
 expire_timers kernel/time/timer.c:1362 [inline]
 __run_timers kernel/time/timer.c:1681 [inline]
 __run_timers kernel/time/timer.c:1649 [inline]
 run_timer_softirq+0x58b/0x1400 kernel/time/timer.c:1694
 __do_softirq+0x22a/0x8cd kernel/softirq.c:293
 invoke_softirq kernel/softirq.c:374 [inline]
 irq_exit+0x187/0x1b0 kernel/softirq.c:414
 exiting_irq arch/x86/include/asm/apic.h:536 [inline]
 smp_apic_timer_interrupt+0xfe/0x4a0 arch/x86/kernel/apic/apic.c:1062
 apic_timer_interrupt+0xf/0x20 arch/x86/entry/entry_64.S:807
 </IRQ>
RIP: 0010:orc_find.part.0+0x103/0x310 arch/x86/kernel/unwind_orc.c:155
Code: 48 8d 34 40 48 8d b4 36 1c 04 76 94 83 c2 01 48 81 fe 58 29 6b 95 0f 83 86 01 00 00 89 d7 48 8d 3c 7f 48 8d bc 3f 1c 04 76 94 <48> 81 ff 58 29 6b 95 0f 87 6b 01 00 00 48 8d 3c 85 f4 95 d2 93 44
RSP: 0018:ffff88806bb47778 EFLAGS: 00000297 ORIG_RAX: ffffffffffffff13
RAX: 00000000000268d1 RBX: 000000000000a84b RCX: 0000000000000000
RDX: 00000000000268da RSI: ffffffff94847902 RDI: ffffffff94847938
RBP: 1ffff1100d768f00 R08: ffff88806bb478cd R09: ffffffff94848a70
R10: ffff88806bb478c0 R11: ffff88806bb478e8 R12: ffffffff81a84bcd
R13: 000000000000a84c R14: 00000000000268d1 R15: 00000000000d405d
 orc_find arch/x86/kernel/unwind_orc.c:137 [inline]
 unwind_next_frame+0x1bd/0x1830 arch/x86/kernel/unwind_orc.c:393
 __save_stack_trace+0x7f/0x100 arch/x86/kernel/stacktrace.c:44
 save_stack+0x32/0xa0 mm/kasan/common.c:75
 set_track mm/kasan/common.c:87 [inline]
 __kasan_slab_free+0x130/0x180 mm/kasan/common.c:459
 slab_free_hook mm/slub.c:1429 [inline]
 slab_free_freelist_hook+0x5e/0x140 mm/slub.c:1456
 slab_free mm/slub.c:3003 [inline]
 kmem_cache_free+0x9f/0x2b0 mm/slub.c:3019
 remove_vma+0x13f/0x180 mm/mmap.c:185
 exit_mmap+0x328/0x4d0 mm/mmap.c:3149
 __mmput kernel/fork.c:1046 [inline]
 mmput+0x158/0x4a0 kernel/fork.c:1067
 exit_mm kernel/exit.c:546 [inline]
 do_exit+0x7f0/0x2e10 kernel/exit.c:863
 do_group_exit+0x12a/0x350 kernel/exit.c:980
 __do_sys_exit_group kernel/exit.c:991 [inline]
 __se_sys_exit_group kernel/exit.c:989 [inline]
 __x64_sys_exit_group+0x3f/0x50 kernel/exit.c:989
 do_syscall_64+0xcf/0x4f0 arch/x86/entry/common.c:290
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x7f876bdbe1e8
Code: Bad RIP value.
RSP: 002b:00007ffc4f03f168 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f876bdbe1e8
RDX: 0000000000000002 RSI: 000000000000003c RDI: 0000000000000002
RBP: 00007f876c093840 R08: 00000000000000e7 R09: ffffffffffffffa8
R10: 00007f876c099740 R11: 0000000000000246 R12: 00007f876c093840
R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000000000
==================================================================