======================================================== WARNING: possible irq lock inversion dependency detected 6.8.0-syzkaller-08951-gfe46a7dd189e #0 Not tainted -------------------------------------------------------- syz-executor.1/5831 just changed the state of lock: ffff888029bcd910 (&group->lock#2){..-.}-{2:2}, at: _snd_pcm_stream_lock_irqsave+0xa0/0xd0 sound/core/pcm_native.c:170 but this lock took another, SOFTIRQ-unsafe lock in the past: (&timer->lock){+.+.}-{2:2} and interrupts could create inverse lock ordering between them. other info that might help us debug this: Possible interrupt unsafe locking scenario: CPU0 CPU1 ---- ---- lock(&timer->lock ); local_irq_disable(); lock(&group->lock#2); lock(&timer->lock); lock(&group->lock#2); *** DEADLOCK *** 6 locks held by syz-executor.1/5831: #0: ffff88802f130420 (sb_writers#5){.+.+}-{0:0}, at: do_rmdir+0x1e4/0x410 fs/namei.c:4252 #1: ffff888061024a00 (&type->i_mutex_dir_key#3/1){+.+.}-{3:3}, at: inode_lock_nested include/linux/fs.h:828 [inline] #1: ffff888061024a00 (&type->i_mutex_dir_key#3/1){+.+.}-{3:3}, at: do_rmdir+0x235/0x410 fs/namei.c:4256 #2: ffff88802f130610 (sb_internal){.+.+}-{0:0}, at: evict+0x2ed/0x6c0 fs/inode.c:667 #3: ffff88802f134950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x1125/0x1620 fs/jbd2/transaction.c:463 #4: ffff88807a32a088 (&ei->i_data_sem){++++}-{3:3}, at: ext4_truncate+0xd6f/0x13a0 fs/ext4/inode.c:4141 #5: ffff88807a32a560 (&ei->i_raw_lock){+.+.}-{2:2}, at: spin_lock include/linux/spinlock.h:351 [inline] #5: ffff88807a32a560 (&ei->i_raw_lock){+.+.}-{2:2}, at: ext4_do_update_inode fs/ext4/inode.c:5062 [inline] #5: ffff88807a32a560 (&ei->i_raw_lock){+.+.}-{2:2}, at: ext4_mark_iloc_dirty+0x1c4/0x1b90 fs/ext4/inode.c:5709 the shortest dependencies between 2nd lock and 1st lock: -> (&timer->lock){+.+.}-{2:2} { HARDIRQ-ON-W at: lock_acquire kernel/locking/lockdep.c:5754 [inline] lock_acquire+0x1b1/0x540 kernel/locking/lockdep.c:5719 __raw_spin_lock include/linux/spinlock_api_smp.h:133 [inline] _raw_spin_lock+0x2e/0x40 kernel/locking/spinlock.c:154 spin_lock include/linux/spinlock.h:351 [inline] class_spinlock_constructor include/linux/spinlock.h:561 [inline] snd_timer_close_locked+0x65/0xbd0 sound/core/timer.c:412 snd_timer_close+0x8b/0xf0 sound/core/timer.c:464 snd_seq_timer_close+0xa4/0x100 sound/core/seq/seq_timer.c:302 queue_delete+0x49/0xa0 sound/core/seq/seq_queue.c:126 snd_seq_queue_delete+0x45/0x60 sound/core/seq/seq_queue.c:188 snd_seq_kernel_client_ctl+0x107/0x1c0 sound/core/seq/seq_clientmgr.c:2526 delete_seq_queue.isra.0+0xc8/0x150 sound/core/seq/oss/seq_oss_init.c:371 odev_release+0x52/0x80 sound/core/seq/oss/seq_oss.c:144 __fput+0x270/0xb80 fs/file_table.c:422 task_work_run+0x14e/0x250 kernel/task_work.c:180 exit_task_work include/linux/task_work.h:38 [inline] do_exit+0xa7d/0x2be0 kernel/exit.c:878 do_group_exit+0xd3/0x2a0 kernel/exit.c:1027 get_signal+0x2390/0x2760 kernel/signal.c:2907 arch_do_signal_or_restart+0x90/0x7e0 arch/x86/kernel/signal.c:310 exit_to_user_mode_loop kernel/entry/common.c:105 [inline] exit_to_user_mode_prepare include/linux/entry-common.h:328 [inline] __syscall_exit_to_user_mode_work kernel/entry/common.c:201 [inline] syscall_exit_to_user_mode+0x14a/0x2a0 kernel/entry/common.c:212 do_syscall_64+0xe2/0x260 arch/x86/entry/common.c:89 entry_SYSCALL_64_after_hwframe+0x6d/0x75 SOFTIRQ-ON-W at: lock_acquire kernel/locking/lockdep.c:5754 [inline] lock_acquire+0x1b1/0x540 kernel/locking/lockdep.c:5719 __raw_spin_lock include/linux/spinlock_api_smp.h:133 [inline] _raw_spin_lock+0x2e/0x40 kernel/locking/spinlock.c:154 spin_lock include/linux/spinlock.h:351 [inline] class_spinlock_constructor include/linux/spinlock.h:561 [inline] snd_timer_close_locked+0x65/0xbd0 sound/core/timer.c:412 snd_timer_close+0x8b/0xf0 sound/core/timer.c:464 snd_seq_timer_close+0xa4/0x100 sound/core/seq/seq_timer.c:302 queue_delete+0x49/0xa0 sound/core/seq/seq_queue.c:126 snd_seq_queue_delete+0x45/0x60 sound/core/seq/seq_queue.c:188 snd_seq_kernel_client_ctl+0x107/0x1c0 sound/core/seq/seq_clientmgr.c:2526 delete_seq_queue.isra.0+0xc8/0x150 sound/core/seq/oss/seq_oss_init.c:371 odev_release+0x52/0x80 sound/core/seq/oss/seq_oss.c:144 __fput+0x270/0xb80 fs/file_table.c:422 task_work_run+0x14e/0x250 kernel/task_work.c:180 exit_task_work include/linux/task_work.h:38 [inline] do_exit+0xa7d/0x2be0 kernel/exit.c:878 do_group_exit+0xd3/0x2a0 kernel/exit.c:1027 get_signal+0x2390/0x2760 kernel/signal.c:2907 arch_do_signal_or_restart+0x90/0x7e0 arch/x86/kernel/signal.c:310 exit_to_user_mode_loop kernel/entry/common.c:105 [inline] exit_to_user_mode_prepare include/linux/entry-common.h:328 [inline] __syscall_exit_to_user_mode_work kernel/entry/common.c:201 [inline] syscall_exit_to_user_mode+0x14a/0x2a0 kernel/entry/common.c:212 do_syscall_64+0xe2/0x260 arch/x86/entry/common.c:89 entry_SYSCALL_64_after_hwframe+0x6d/0x75 INITIAL USE at: lock_acquire kernel/locking/lockdep.c:5754 [inline] lock_acquire+0x1b1/0x540 kernel/locking/lockdep.c:5719 __raw_spin_lock include/linux/spinlock_api_smp.h:133 [inline] _raw_spin_lock+0x2e/0x40 kernel/locking/spinlock.c:154 spin_lock include/linux/spinlock.h:351 [inline] class_spinlock_constructor include/linux/spinlock.h:561 [inline] snd_timer_close_locked+0x65/0xbd0 sound/core/timer.c:412 snd_timer_close+0x8b/0xf0 sound/core/timer.c:464 snd_seq_timer_close+0xa4/0x100 sound/core/seq/seq_timer.c:302 queue_delete+0x49/0xa0 sound/core/seq/seq_queue.c:126 snd_seq_queue_delete+0x45/0x60 sound/core/seq/seq_queue.c:188 snd_seq_kernel_client_ctl+0x107/0x1c0 sound/core/seq/seq_clientmgr.c:2526 delete_seq_queue.isra.0+0xc8/0x150 sound/core/seq/oss/seq_oss_init.c:371 odev_release+0x52/0x80 sound/core/seq/oss/seq_oss.c:144 __fput+0x270/0xb80 fs/file_table.c:422 task_work_run+0x14e/0x250 kernel/task_work.c:180 exit_task_work include/linux/task_work.h:38 [inline] do_exit+0xa7d/0x2be0 kernel/exit.c:878 do_group_exit+0xd3/0x2a0 kernel/exit.c:1027 get_signal+0x2390/0x2760 kernel/signal.c:2907 arch_do_signal_or_restart+0x90/0x7e0 arch/x86/kernel/signal.c:310 exit_to_user_mode_loop kernel/entry/common.c:105 [inline] exit_to_user_mode_prepare include/linux/entry-common.h:328 [inline] __syscall_exit_to_user_mode_work kernel/entry/common.c:201 [inline] syscall_exit_to_user_mode+0x14a/0x2a0 kernel/entry/common.c:212 do_syscall_64+0xe2/0x260 arch/x86/entry/common.c:89 entry_SYSCALL_64_after_hwframe+0x6d/0x75 } ... key at: [] __key.6+0x0/0x40 ... acquired at: __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:110 [inline] _raw_spin_lock_irqsave+0x3a/0x60 kernel/locking/spinlock.c:162 class_spinlock_irqsave_constructor include/linux/spinlock.h:574 [inline] snd_timer_notify+0x111/0x3e0 sound/core/timer.c:1040 snd_pcm_timer_notify sound/core/pcm_native.c:622 [inline] snd_pcm_post_start+0x272/0x350 sound/core/pcm_native.c:1459 snd_pcm_action_single+0x10a/0x150 sound/core/pcm_native.c:1289 snd_pcm_action+0x70/0x90 sound/core/pcm_native.c:1370 snd_pcm_action_lock_irq+0xa1/0x1a0 sound/core/pcm_native.c:1383 snd_pcm_start_lock_irq sound/core/pcm_native.c:1485 [inline] snd_pcm_kernel_ioctl+0x10f/0x2d0 sound/core/pcm_native.c:3440 snd_pcm_oss_set_trigger.isra.0+0x35f/0x6b0 sound/core/oss/pcm_oss.c:2134 snd_pcm_oss_poll+0x9a0/0xb80 sound/core/oss/pcm_oss.c:2863 vfs_poll include/linux/poll.h:84 [inline] __io_arm_poll_handler+0x484/0xea0 io_uring/poll.c:622 io_poll_add+0x170/0x2a0 io_uring/poll.c:983 io_issue_sqe+0x177/0xdd0 io_uring/io_uring.c:1897 io_queue_sqe io_uring/io_uring.c:2106 [inline] io_submit_sqe io_uring/io_uring.c:2365 [inline] io_submit_sqes+0x975/0x1d80 io_uring/io_uring.c:2480 __do_sys_io_uring_enter+0x71d/0x1120 io_uring/io_uring.c:3656 do_syscall_x64 arch/x86/entry/common.c:52 [inline] do_syscall_64+0xd2/0x260 arch/x86/entry/common.c:83 entry_SYSCALL_64_after_hwframe+0x6d/0x75 -> (&group->lock#2){..-.}-{2:2} { IN-SOFTIRQ-W at: lock_acquire kernel/locking/lockdep.c:5754 [inline] lock_acquire+0x1b1/0x540 kernel/locking/lockdep.c:5719 __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:110 [inline] _raw_spin_lock_irqsave+0x3a/0x60 kernel/locking/spinlock.c:162 _snd_pcm_stream_lock_irqsave+0xa0/0xd0 sound/core/pcm_native.c:170 class_pcm_stream_lock_irqsave_constructor include/sound/pcm.h:669 [inline] snd_pcm_period_elapsed+0x20/0x50 sound/core/pcm_lib.c:1904 dummy_hrtimer_callback+0x9d/0x1c0 sound/drivers/dummy.c:385 __run_hrtimer kernel/time/hrtimer.c:1692 [inline] __hrtimer_run_queues+0x20c/0xc20 kernel/time/hrtimer.c:1756 hrtimer_run_softirq+0x17d/0x350 kernel/time/hrtimer.c:1773 __do_softirq+0x218/0x8de kernel/softirq.c:554 invoke_softirq kernel/softirq.c:428 [inline] __irq_exit_rcu kernel/softirq.c:633 [inline] irq_exit_rcu+0xb9/0x120 kernel/softirq.c:645 instr_sysvec_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1043 [inline] sysvec_apic_timer_interrupt+0x95/0xb0 arch/x86/kernel/apic/apic.c:1043 asm_sysvec_apic_timer_interrupt+0x1a/0x20 arch/x86/include/asm/idtentry.h:702 check_kcov_mode kernel/kcov.c:173 [inline] __sanitizer_cov_trace_pc+0x18/0x60 kernel/kcov.c:207 ext4_chksum fs/ext4/ext4.h:2478 [inline] ext4_inode_csum+0x352/0x910 fs/ext4/inode.c:64 ext4_inode_csum_set fs/ext4/inode.c:115 [inline] ext4_inode_csum_set+0x16d/0x360 fs/ext4/inode.c:105 ext4_fill_raw_inode+0x1156/0x1d20 fs/ext4/inode.c:4322 ext4_do_update_inode fs/ext4/inode.c:5079 [inline] ext4_mark_iloc_dirty+0x558/0x1b90 fs/ext4/inode.c:5709 __ext4_mark_inode_dirty+0x253/0x860 fs/ext4/inode.c:5913 __ext4_ext_dirty+0x1a8/0x220 fs/ext4/extents.c:202 ext4_ext_remove_space+0x2aca/0x4430 fs/ext4/extents.c:3038 ext4_ext_truncate+0x240/0x2f0 fs/ext4/extents.c:4440 ext4_truncate+0xdd5/0x13a0 fs/ext4/inode.c:4146 ext4_evict_inode+0x8bd/0x1a30 fs/ext4/inode.c:258 evict+0x2ed/0x6c0 fs/inode.c:667 iput_final fs/inode.c:1741 [inline] iput.part.0+0x573/0x7c0 fs/inode.c:1767 iput+0x5c/0x80 fs/inode.c:1757 d_delete_notify include/linux/fsnotify.h:307 [inline] vfs_rmdir fs/namei.c:4222 [inline] vfs_rmdir+0x45a/0x660 fs/namei.c:4186 do_rmdir+0x3a2/0x410 fs/namei.c:4268 __do_sys_unlinkat fs/namei.c:4444 [inline] __se_sys_unlinkat fs/namei.c:4438 [inline] __x64_sys_unlinkat+0xf3/0x130 fs/namei.c:4438 do_syscall_x64 arch/x86/entry/common.c:52 [inline] do_syscall_64+0xd2/0x260 arch/x86/entry/common.c:83 entry_SYSCALL_64_after_hwframe+0x6d/0x75 INITIAL USE at: lock_acquire kernel/locking/lockdep.c:5754 [inline] lock_acquire+0x1b1/0x540 kernel/locking/lockdep.c:5719 __raw_spin_lock_irq include/linux/spinlock_api_smp.h:119 [inline] _raw_spin_lock_irq+0x36/0x50 kernel/locking/spinlock.c:170 spin_lock_irq include/linux/spinlock.h:376 [inline] snd_pcm_group_lock_irq sound/core/pcm_native.c:97 [inline] snd_pcm_stream_lock_irq sound/core/pcm_native.c:136 [inline] class_pcm_stream_lock_irq_constructor include/sound/pcm.h:666 [inline] snd_pcm_status64+0x9ae/0x15f0 sound/core/pcm_native.c:1008 snd_pcm_status_user32+0x13a/0x2e0 sound/core/pcm_native.c:1119 snd_pcm_common_ioctl+0x1c36/0x3140 sound/core/pcm_native.c:3322 snd_pcm_ioctl+0x84/0xc0 sound/core/pcm_native.c:3399 vfs_ioctl fs/ioctl.c:51 [inline] __do_sys_ioctl fs/ioctl.c:904 [inline] __se_sys_ioctl fs/ioctl.c:890 [inline] __x64_sys_ioctl+0x193/0x220 fs/ioctl.c:890 do_syscall_x64 arch/x86/entry/common.c:52 [inline] do_syscall_64+0xd2/0x260 arch/x86/entry/common.c:83 entry_SYSCALL_64_after_hwframe+0x6d/0x75 } ... key at: [] __key.5+0x0/0x40 ... acquired at: mark_usage kernel/locking/lockdep.c:4567 [inline] __lock_acquire+0x13d4/0x3b30 kernel/locking/lockdep.c:5091 lock_acquire kernel/locking/lockdep.c:5754 [inline] lock_acquire+0x1b1/0x540 kernel/locking/lockdep.c:5719 __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:110 [inline] _raw_spin_lock_irqsave+0x3a/0x60 kernel/locking/spinlock.c:162 _snd_pcm_stream_lock_irqsave+0xa0/0xd0 sound/core/pcm_native.c:170 class_pcm_stream_lock_irqsave_constructor include/sound/pcm.h:669 [inline] snd_pcm_period_elapsed+0x20/0x50 sound/core/pcm_lib.c:1904 dummy_hrtimer_callback+0x9d/0x1c0 sound/drivers/dummy.c:385 __run_hrtimer kernel/time/hrtimer.c:1692 [inline] __hrtimer_run_queues+0x20c/0xc20 kernel/time/hrtimer.c:1756 hrtimer_run_softirq+0x17d/0x350 kernel/time/hrtimer.c:1773 __do_softirq+0x218/0x8de kernel/softirq.c:554 invoke_softirq kernel/softirq.c:428 [inline] __irq_exit_rcu kernel/softirq.c:633 [inline] irq_exit_rcu+0xb9/0x120 kernel/softirq.c:645 instr_sysvec_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1043 [inline] sysvec_apic_timer_interrupt+0x95/0xb0 arch/x86/kernel/apic/apic.c:1043 asm_sysvec_apic_timer_interrupt+0x1a/0x20 arch/x86/include/asm/idtentry.h:702 check_kcov_mode kernel/kcov.c:173 [inline] __sanitizer_cov_trace_pc+0x18/0x60 kernel/kcov.c:207 ext4_chksum fs/ext4/ext4.h:2478 [inline] ext4_inode_csum+0x352/0x910 fs/ext4/inode.c:64 ext4_inode_csum_set fs/ext4/inode.c:115 [inline] ext4_inode_csum_set+0x16d/0x360 fs/ext4/inode.c:105 ext4_fill_raw_inode+0x1156/0x1d20 fs/ext4/inode.c:4322 ext4_do_update_inode fs/ext4/inode.c:5079 [inline] ext4_mark_iloc_dirty+0x558/0x1b90 fs/ext4/inode.c:5709 __ext4_mark_inode_dirty+0x253/0x860 fs/ext4/inode.c:5913 __ext4_ext_dirty+0x1a8/0x220 fs/ext4/extents.c:202 ext4_ext_remove_space+0x2aca/0x4430 fs/ext4/extents.c:3038 ext4_ext_truncate+0x240/0x2f0 fs/ext4/extents.c:4440 ext4_truncate+0xdd5/0x13a0 fs/ext4/inode.c:4146 ext4_evict_inode+0x8bd/0x1a30 fs/ext4/inode.c:258 evict+0x2ed/0x6c0 fs/inode.c:667 iput_final fs/inode.c:1741 [inline] iput.part.0+0x573/0x7c0 fs/inode.c:1767 iput+0x5c/0x80 fs/inode.c:1757 d_delete_notify include/linux/fsnotify.h:307 [inline] vfs_rmdir fs/namei.c:4222 [inline] vfs_rmdir+0x45a/0x660 fs/namei.c:4186 do_rmdir+0x3a2/0x410 fs/namei.c:4268 __do_sys_unlinkat fs/namei.c:4444 [inline] __se_sys_unlinkat fs/namei.c:4438 [inline] __x64_sys_unlinkat+0xf3/0x130 fs/namei.c:4438 do_syscall_x64 arch/x86/entry/common.c:52 [inline] do_syscall_64+0xd2/0x260 arch/x86/entry/common.c:83 entry_SYSCALL_64_after_hwframe+0x6d/0x75 stack backtrace: CPU: 1 PID: 5831 Comm: syz-executor.1 Not tainted 6.8.0-syzkaller-08951-gfe46a7dd189e #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 Call Trace: __dump_stack lib/dump_stack.c:88 [inline] dump_stack_lvl+0x116/0x1f0 lib/dump_stack.c:114 print_irq_inversion_bug.part.0+0x3e9/0x5a0 kernel/locking/lockdep.c:4080 print_irq_inversion_bug kernel/locking/lockdep.c:4033 [inline] check_usage_forwards kernel/locking/lockdep.c:4111 [inline] mark_lock_irq kernel/locking/lockdep.c:4243 [inline] mark_lock+0x574/0xc60 kernel/locking/lockdep.c:4678 mark_usage kernel/locking/lockdep.c:4567 [inline] __lock_acquire+0x13d4/0x3b30 kernel/locking/lockdep.c:5091 lock_acquire kernel/locking/lockdep.c:5754 [inline] lock_acquire+0x1b1/0x540 kernel/locking/lockdep.c:5719 __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:110 [inline] _raw_spin_lock_irqsave+0x3a/0x60 kernel/locking/spinlock.c:162 _snd_pcm_stream_lock_irqsave+0xa0/0xd0 sound/core/pcm_native.c:170 class_pcm_stream_lock_irqsave_constructor include/sound/pcm.h:669 [inline] snd_pcm_period_elapsed+0x20/0x50 sound/core/pcm_lib.c:1904 dummy_hrtimer_callback+0x9d/0x1c0 sound/drivers/dummy.c:385 __run_hrtimer kernel/time/hrtimer.c:1692 [inline] __hrtimer_run_queues+0x20c/0xc20 kernel/time/hrtimer.c:1756 hrtimer_run_softirq+0x17d/0x350 kernel/time/hrtimer.c:1773 __do_softirq+0x218/0x8de kernel/softirq.c:554 invoke_softirq kernel/softirq.c:428 [inline] __irq_exit_rcu kernel/softirq.c:633 [inline] irq_exit_rcu+0xb9/0x120 kernel/softirq.c:645 instr_sysvec_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1043 [inline] sysvec_apic_timer_interrupt+0x95/0xb0 arch/x86/kernel/apic/apic.c:1043 asm_sysvec_apic_timer_interrupt+0x1a/0x20 arch/x86/include/asm/idtentry.h:702 RIP: 0010:__sanitizer_cov_trace_pc+0x18/0x60 kernel/kcov.c:203 Code: 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 65 48 8b 15 04 db 76 7e 65 8b 05 05 db 76 7e a9 00 01 ff 00 <48> 8b 34 24 74 0f f6 c4 01 74 35 8b 82 14 16 00 00 85 c0 74 2b 8b RSP: 0018:ffffc90003c5f558 EFLAGS: 00000246 RAX: 0000000080000001 RBX: ffffc90003c5f5d8 RCX: ffffffff8242b5e4 RDX: ffff888021c25a00 RSI: 0000000000000000 RDI: 0000000000000005 RBP: ffff88807a32a0b0 R08: 0000000000000005 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000005 R12: ffff88807a329e00 R13: ffff88802f132000 R14: 0000000000000000 R15: ffff88802f132748 ext4_chksum fs/ext4/ext4.h:2478 [inline] ext4_inode_csum+0x352/0x910 fs/ext4/inode.c:64 ext4_inode_csum_set fs/ext4/inode.c:115 [inline] ext4_inode_csum_set+0x16d/0x360 fs/ext4/inode.c:105 ext4_fill_raw_inode+0x1156/0x1d20 fs/ext4/inode.c:4322 ext4_do_update_inode fs/ext4/inode.c:5079 [inline] ext4_mark_iloc_dirty+0x558/0x1b90 fs/ext4/inode.c:5709 __ext4_mark_inode_dirty+0x253/0x860 fs/ext4/inode.c:5913 __ext4_ext_dirty+0x1a8/0x220 fs/ext4/extents.c:202 ext4_ext_remove_space+0x2aca/0x4430 fs/ext4/extents.c:3038 ext4_ext_truncate+0x240/0x2f0 fs/ext4/extents.c:4440 ext4_truncate+0xdd5/0x13a0 fs/ext4/inode.c:4146 ext4_evict_inode+0x8bd/0x1a30 fs/ext4/inode.c:258 evict+0x2ed/0x6c0 fs/inode.c:667 iput_final fs/inode.c:1741 [inline] iput.part.0+0x573/0x7c0 fs/inode.c:1767 iput+0x5c/0x80 fs/inode.c:1757 d_delete_notify include/linux/fsnotify.h:307 [inline] vfs_rmdir fs/namei.c:4222 [inline] vfs_rmdir+0x45a/0x660 fs/namei.c:4186 do_rmdir+0x3a2/0x410 fs/namei.c:4268 __do_sys_unlinkat fs/namei.c:4444 [inline] __se_sys_unlinkat fs/namei.c:4438 [inline] __x64_sys_unlinkat+0xf3/0x130 fs/namei.c:4438 do_syscall_x64 arch/x86/entry/common.c:52 [inline] do_syscall_64+0xd2/0x260 arch/x86/entry/common.c:83 entry_SYSCALL_64_after_hwframe+0x6d/0x75 RIP: 0033:0x7f798187d647 Code: 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 07 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007fff643acfb8 EFLAGS: 00000207 ORIG_RAX: 0000000000000107 RAX: ffffffffffffffda RBX: 0000000000000065 RCX: 00007f798187d647 RDX: 0000000000000200 RSI: 00007fff643ae160 RDI: 00000000ffffff9c RBP: 00007f79818c93b9 R08: 000055556388a99b R09: 0000000000000000 R10: 0000000000001000 R11: 0000000000000207 R12: 00007fff643ae160 R13: 00007f79818c93b9 R14: 0000000000037e35 R15: 0000000000000001 ---------------- Code disassembly (best guess): 0: 00 00 add %al,(%rax) 2: 90 nop 3: 90 nop 4: 90 nop 5: 90 nop 6: 90 nop 7: 90 nop 8: 90 nop 9: 90 nop a: 90 nop b: 90 nop c: 90 nop d: 90 nop e: 90 nop f: 90 nop 10: 90 nop 11: 90 nop 12: f3 0f 1e fa endbr64 16: 65 48 8b 15 04 db 76 mov %gs:0x7e76db04(%rip),%rdx # 0x7e76db22 1d: 7e 1e: 65 8b 05 05 db 76 7e mov %gs:0x7e76db05(%rip),%eax # 0x7e76db2a 25: a9 00 01 ff 00 test $0xff0100,%eax * 2a: 48 8b 34 24 mov (%rsp),%rsi <-- trapping instruction 2e: 74 0f je 0x3f 30: f6 c4 01 test $0x1,%ah 33: 74 35 je 0x6a 35: 8b 82 14 16 00 00 mov 0x1614(%rdx),%eax 3b: 85 c0 test %eax,%eax 3d: 74 2b je 0x6a 3f: 8b .byte 0x8b