__sys_sendmsg+0xf3/0x1c0 net/socket.c:2565 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x63/0xcd RIP: 0033:0x7f660ef20163 ================================ WARNING: inconsistent lock state 6.0.0-rc4-syzkaller-00055-g6690986da1e2 #0 Not tainted -------------------------------- inconsistent {SOFTIRQ-ON-W} -> {IN-SOFTIRQ-W} usage. udevd/1178 [HC0[0]:SC1[1]:HE0:SE0] takes: ffffffff87b85898 (vmap_area_lock){+.?.}-{2:2}, at: spin_lock include/linux/spinlock.h:349 [inline] ffffffff87b85898 (vmap_area_lock){+.?.}-{2:2}, at: find_vmap_area+0x1c/0x130 mm/vmalloc.c:1836 {SOFTIRQ-ON-W} state was registered at: lock_acquire kernel/locking/lockdep.c:5666 [inline] lock_acquire+0x1ab/0x570 kernel/locking/lockdep.c:5631 __raw_spin_lock include/linux/spinlock_api_smp.h:133 [inline] _raw_spin_lock+0x2a/0x40 kernel/locking/spinlock.c:154 spin_lock include/linux/spinlock.h:349 [inline] alloc_vmap_area+0xa0b/0x1d50 mm/vmalloc.c:1617 __get_vm_area_node+0x142/0x3f0 mm/vmalloc.c:2484 get_vm_area_caller+0x43/0x50 mm/vmalloc.c:2537 __ioremap_caller.constprop.0+0x292/0x600 arch/x86/mm/ioremap.c:280 acpi_os_ioremap include/acpi/acpi_io.h:13 [inline] acpi_map drivers/acpi/osl.c:296 [inline] acpi_os_map_iomem+0x463/0x550 drivers/acpi/osl.c:355 acpi_tb_acquire_table+0xd8/0x209 drivers/acpi/acpica/tbdata.c:142 acpi_tb_validate_table drivers/acpi/acpica/tbdata.c:317 [inline] acpi_tb_validate_table+0x50/0x8c drivers/acpi/acpica/tbdata.c:308 acpi_tb_verify_temp_table+0x84/0x674 drivers/acpi/acpica/tbdata.c:504 acpi_reallocate_root_table+0x374/0x3e0 drivers/acpi/acpica/tbxface.c:180 acpi_early_init+0x13a/0x438 drivers/acpi/bus.c:1214 start_kernel+0x3cf/0x48f init/main.c:1099 secondary_startup_64_no_verify+0xce/0xdb irq event stamp: 384217 hardirqs last enabled at (384216): [] __raw_spin_unlock_irq include/linux/spinlock_api_smp.h:159 [inline] hardirqs last enabled at (384216): [] _raw_spin_unlock_irq+0x1f/0x40 kernel/locking/spinlock.c:202 hardirqs last disabled at (384217): [] __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:108 [inline] hardirqs last disabled at (384217): [] _raw_spin_lock_irqsave+0x4e/0x50 kernel/locking/spinlock.c:162 softirqs last enabled at (382020): [] invoke_softirq kernel/softirq.c:445 [inline] softirqs last enabled at (382020): [] __irq_exit_rcu+0x113/0x170 kernel/softirq.c:650 softirqs last disabled at (384213): [] invoke_softirq kernel/softirq.c:445 [inline] softirqs last disabled at (384213): [] __irq_exit_rcu+0x113/0x170 kernel/softirq.c:650 other info that might help us debug this: Possible unsafe locking scenario: CPU0 ---- lock(vmap_area_lock); lock(vmap_area_lock); *** DEADLOCK *** 6 locks held by udevd/1178: #0: ffffffff87a950a0 (rcu_read_lock){....}-{1:2}, at: sock_def_readable+0x0/0x4e0 net/core/sock.c:2235 #1: ffffc90000007d70 ((&dum_hcd->timer)){+.-.}-{0:0}, at: lockdep_copy_map include/linux/lockdep.h:31 [inline] #1: ffffc90000007d70 ((&dum_hcd->timer)){+.-.}-{0:0}, at: call_timer_fn+0xd5/0x6b0 kernel/time/timer.c:1464 #2: ffff888111c79230 (&dev->event_lock){-.-.}-{2:2}, at: input_event drivers/input/input.c:430 [inline] #2: ffff888111c79230 (&dev->event_lock){-.-.}-{2:2}, at: input_event+0x6c/0xa0 drivers/input/input.c:423 #3: ffffffff87a950a0 (rcu_read_lock){....}-{1:2}, at: input_pass_values.part.0+0x0/0x710 drivers/input/input.c:858 #4: ffffffff87eb97f8 (kbd_event_lock){..-.}-{2:2}, at: spin_lock include/linux/spinlock.h:349 [inline] #4: ffffffff87eb97f8 (kbd_event_lock){..-.}-{2:2}, at: kbd_event+0x86/0x1790 drivers/tty/vt/keyboard.c:1537 #5: ffffffff87a950a0 (rcu_read_lock){....}-{1:2}, at: show_state_filter+0x0/0x300 kernel/sched/core.c:8832 stack backtrace: CPU: 0 PID: 1178 Comm: udevd Not tainted 6.0.0-rc4-syzkaller-00055-g6690986da1e2 #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 Call Trace: __dump_stack lib/dump_stack.c:88 [inline] dump_stack_lvl+0xcd/0x134 lib/dump_stack.c:106 print_usage_bug kernel/locking/lockdep.c:3961 [inline] valid_state kernel/locking/lockdep.c:3973 [inline] mark_lock_irq kernel/locking/lockdep.c:4176 [inline] mark_lock.part.0.cold+0x18/0xd8 kernel/locking/lockdep.c:4632 mark_lock kernel/locking/lockdep.c:4596 [inline] mark_usage kernel/locking/lockdep.c:4527 [inline] __lock_acquire+0x11d9/0x56d0 kernel/locking/lockdep.c:5007 lock_acquire kernel/locking/lockdep.c:5666 [inline] lock_acquire+0x1ab/0x570 kernel/locking/lockdep.c:5631 __raw_spin_lock include/linux/spinlock_api_smp.h:133 [inline] _raw_spin_lock+0x2a/0x40 kernel/locking/spinlock.c:154 spin_lock include/linux/spinlock.h:349 [inline] find_vmap_area+0x1c/0x130 mm/vmalloc.c:1836 check_heap_object mm/usercopy.c:176 [inline] __check_object_size mm/usercopy.c:250 [inline] __check_object_size+0x1f8/0x700 mm/usercopy.c:212 check_object_size include/linux/thread_info.h:199 [inline] __copy_from_user_inatomic include/linux/uaccess.h:62 [inline] copy_from_user_nmi arch/x86/lib/usercopy.c:47 [inline] copy_from_user_nmi+0xcb/0x130 arch/x86/lib/usercopy.c:31 copy_code arch/x86/kernel/dumpstack.c:91 [inline] show_opcodes+0x59/0xb0 arch/x86/kernel/dumpstack.c:121 show_iret_regs+0xd/0x33 arch/x86/kernel/dumpstack.c:149 __show_regs+0x1e/0x60 arch/x86/kernel/process_64.c:74 show_trace_log_lvl+0x25b/0x2ba arch/x86/kernel/dumpstack.c:292 sched_show_task kernel/sched/core.c:8870 [inline] sched_show_task+0x44c/0x5c0 kernel/sched/core.c:8844 show_state_filter+0x13e/0x300 kernel/sched/core.c:8915 k_spec drivers/tty/vt/keyboard.c:667 [inline] k_spec+0xe1/0x130 drivers/tty/vt/keyboard.c:656 kbd_keycode drivers/tty/vt/keyboard.c:1524 [inline] kbd_event+0xcdd/0x1790 drivers/tty/vt/keyboard.c:1543 input_to_handler+0x3b9/0x4c0 drivers/input/input.c:130 input_pass_values.part.0+0x230/0x710 drivers/input/input.c:159 input_pass_values drivers/input/input.c:146 [inline] input_event_dispose+0x5cf/0x730 drivers/input/input.c:374 input_handle_event+0x112/0xda0 drivers/input/input.c:402 input_event drivers/input/input.c:431 [inline] input_event+0x7f/0xa0 drivers/input/input.c:423 input_sync include/linux/input.h:450 [inline] hidinput_report_event+0xae/0x100 drivers/hid/hid-input.c:1655 hid_report_raw_event+0x3e6/0x1280 drivers/hid/hid-core.c:2005 hid_input_report+0x360/0x4c0 drivers/hid/hid-core.c:2065 hid_irq_in+0x50e/0x690 drivers/hid/usbhid/hid-core.c:284 __usb_hcd_giveback_urb+0x2b0/0x5c0 drivers/usb/core/hcd.c:1671 usb_hcd_giveback_urb+0x380/0x430 drivers/usb/core/hcd.c:1754 dummy_timer+0x11ff/0x32c0 drivers/usb/gadget/udc/dummy_hcd.c:1988 call_timer_fn+0x1a0/0x6b0 kernel/time/timer.c:1474 expire_timers kernel/time/timer.c:1519 [inline] __run_timers.part.0+0x674/0xa80 kernel/time/timer.c:1790 __run_timers kernel/time/timer.c:1768 [inline] run_timer_softirq+0xb3/0x1d0 kernel/time/timer.c:1803 __do_softirq+0x1c0/0x9a9 kernel/softirq.c:571 invoke_softirq kernel/softirq.c:445 [inline] __irq_exit_rcu+0x113/0x170 kernel/softirq.c:650 irq_exit_rcu+0x5/0x20 kernel/softirq.c:662 sysvec_apic_timer_interrupt+0x8e/0xc0 arch/x86/kernel/apic/apic.c:1106 asm_sysvec_apic_timer_interrupt+0x16/0x20 arch/x86/include/asm/idtentry.h:649 RIP: 0010:__raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:152 [inline] RIP: 0010:_raw_spin_unlock_irqrestore+0x38/0x70 kernel/locking/spinlock.c:194 Code: 74 24 10 e8 ca 22 34 fb 48 89 ef e8 52 a4 34 fb 81 e3 00 02 00 00 75 25 9c 58 f6 c4 02 75 2d 48 85 db 74 01 fb bf 01 00 00 00 33 01 2a fb 65 8b 05 3c 72 0c 7a 85 c0 74 0a 5b 5d c3 e8 90 7d RSP: 0018:ffffc90002d2f820 EFLAGS: 00000206 RAX: 0000000000000002 RBX: 0000000000000200 RCX: 1ffffffff11bce41 RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000001 RBP: ffff888121135680 R08: 0000000000000001 R09: 0000000000000001 R10: ffffed1024226ad0 R11: ffff8881f6937b00 R12: 0000000000000001 R13: 0000000000000010 R14: 0000000000000001 R15: 0000000000000246 spin_unlock_irqrestore include/linux/spinlock.h:404 [inline] __wake_up_common_lock+0xde/0x130 kernel/sched/wait.c:139 sock_def_readable+0xec/0x4e0 net/core/sock.c:3221 __netlink_sendskb net/netlink/af_netlink.c:1266 [inline] netlink_sendskb net/netlink/af_netlink.c:1272 [inline] netlink_unicast+0x6e6/0x7f0 net/netlink/af_netlink.c:1360 netlink_sendmsg+0x917/0xe10 net/netlink/af_netlink.c:1921 sock_sendmsg_nosec net/socket.c:714 [inline] sock_sendmsg+0xcf/0x120 net/socket.c:734 ____sys_sendmsg+0x6eb/0x810 net/socket.c:2482 ___sys_sendmsg+0x110/0x1b0 net/socket.c:2536 __sys_sendmsg+0xf3/0x1c0 net/socket.c:2565 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x63/0xcd RIP: 0033:0x7f660ef20163 Code: 64 89 02 48 c7 c0 ff ff ff ff eb b7 66 2e 0f 1f 84 00 00 00 00 00 90 64 8b 04 25 18 00 00 00 85 c0 75 14 b8 2e 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 55 c3 0f 1f 40 00 48 83 ec 28 89 54 24 1c 48 RSP: 002b:00007ffc49395fe8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e RAX: ffffffffffffffda RBX: 00005643ff2b2db0 RCX: 00007f660ef20163 RDX: 0000000000000000 RSI: 00007ffc49395ff8 RDI: 0000000000000004 RBP: 00005643ff2d5530 R08: 0000000000000001 R09: 00005643ff2e9500 R10: 0000000000000100 R11: 0000000000000246 R12: 0000000000000000 R13: 00000000000000ab R14: 0000000000000000 R15: 0000000000000000 Code: 64 89 02 48 c7 c0 ff ff ff ff eb b7 66 2e 0f 1f 84 00 00 00 00 00 90 64 8b 04 25 18 00 00 00 85 c0 75 14 b8 2e 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 55 c3 0f 1f 40 00 48 83 ec 28 89 54 24 1c 48 RSP: 002b:00007ffc49395fe8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e RAX: ffffffffffffffda RBX: 00005643ff2b2db0 RCX: 00007f660ef20163 RDX: 0000000000000000 RSI: 00007ffc49395ff8 RDI: 0000000000000004 RBP: 00005643ff2d5530 R08: 0000000000000001 R09: 00005643ff2e9500 R10: 0000000000000100 R11: 0000000000000246 R12: 0000000000000000 R13: 00000000000000ab R14: 0000000000000000 R15: 0000000000000000 task:dbus-daemon state:S stack:28720 pid: 1201 ppid: 1 flags:0x00000000 Call Trace: context_switch kernel/sched/core.c:5182 [inline] __schedule+0x93f/0x26f0 kernel/sched/core.c:6494 schedule+0xda/0x1b0 kernel/sched/core.c:6570 schedule_hrtimeout_range_clock+0x343/0x390 kernel/time/hrtimer.c:2296 ep_poll fs/eventpoll.c:1878 [inline] do_epoll_wait+0x12ba/0x1950 fs/eventpoll.c:2256 __do_sys_epoll_wait fs/eventpoll.c:2268 [inline] __se_sys_epoll_wait fs/eventpoll.c:2263 [inline] __x64_sys_epoll_wait+0x158/0x270 fs/eventpoll.c:2263 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x63/0xcd RIP: 0033:0x7fed31017e46 RSP: 002b:00007ffc43ec9dc8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e8 RAX: ffffffffffffffda RBX: 00007ffc43ec9dd8 RCX: 00007fed31017e46 RDX: 0000000000000040 RSI: 00007ffc43ec9dd8 RDI: 0000000000000003 RBP: 00007ffc43eca168 R08: 000000000000000b R09: 00007ffc43fdb080 R10: 00000000ffffffff R11: 0000000000000246 R12: 0000000000000000 R13: 0000000000000001 R14: 00007ffc43eca168 R15: 00007ffc43eca40c task:dhcpcd state:S stack:27200 pid: 1214 ppid: 1 flags:0x00000000 Call Trace: context_switch kernel/sched/core.c:5182 [inline] __schedule+0x93f/0x26f0 kernel/sched/core.c:6494 schedule+0xda/0x1b0 kernel/sched/core.c:6570 schedule_hrtimeout_range_clock+0x195/0x390 kernel/time/hrtimer.c:2305 poll_schedule_timeout.constprop.0+0xb9/0x190 fs/select.c:244 do_poll fs/select.c:965 [inline] do_sys_poll+0x897/0xea0 fs/select.c:1015 __do_sys_ppoll fs/select.c:1121 [inline] __se_sys_ppoll fs/select.c:1101 [inline] __x64_sys_ppoll+0x210/0x280 fs/select.c:1101 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x63/0xcd RIP: 0033:0x7f65bd3229fb RSP: 002b:00007ffde7f313d0 EFLAGS: 00000246 ORIG_RAX: 000000000000010f RAX: ffffffffffffffda RBX: 000055737ecfee20 RCX: 00007f65bd3229fb RDX: 00007ffde7f313f0 RSI: 0000000000000004 RDI: 000055737ed1c1f0 RBP: 00007ffde7f31710 R08: 0000000000000008 R09: 00007ffde7f43080 R10: 00007ffde7f31710 R11: 0000000000000246 R12: 00007ffde7f313f0 R13: 000055737cf3f610 R14: 0000000000000000 R15: 0000000000000000 task:dhcpcd state:S stack:24160 pid: 1215 ppid: 1214 flags:0x00000000 Call Trace: context_switch kernel/sched/core.c:5182 [inline] __schedule+0x93f/0x26f0 kernel/sched/core.c:6494 schedule+0xda/0x1b0 kernel/sched/core.c:6570 schedule_hrtimeout_range_clock+0x343/0x390 kernel/time/hrtimer.c:2296 poll_schedule_timeout.constprop.0+0xb9/0x190 fs/select.c:244 do_poll fs/select.c:965 [inline] do_sys_poll+0x897/0xea0 fs/select.c:1015 __do_sys_ppoll fs/select.c:1121 [inline] __se_sys_ppoll fs/select.c:1101 [inline] __x64_sys_ppoll+0x210/0x280 fs/select.c:1101 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x63/0xcd RIP: 0033:0x7f65bd3229fb RSP: 002b:00007ffde7f313d0 EFLAGS: 00000246 ORIG_RAX: 000000000000010f RAX: ffffffffffffffda RBX: 000055737ecfee20 RCX: 00007f65bd3229fb RDX: 0000000000000000 RSI: 0000000000000003 RDI: 000055737ecfee00 RBP: 00007ffde7f31710 R08: 0000000000000008 R09: 00007ffde7f21288 R10: 00007ffde7f31710 R11: 0000000000000246 R12: 0000000000000000 R13: 000055737cf3f610 R14: 0000000000000003 R15: 0000000000000000 task:dhcpcd state:S stack:28288 pid: 1216 ppid: 1214 flags:0x00000000 Call Trace: context_switch kernel/sched/core.c:5182 [inline] __schedule+0x93f/0x26f0 kernel/sched/core.c:6494 schedule+0xda/0x1b0 kernel/sched/core.c:6570 schedule_hrtimeout_range_clock+0x343/0x390 kernel/time/hrtimer.c:2296 poll_schedule_timeout.constprop.0+0xb9/0x190 fs/select.c:244 do_poll fs/select.c:965 [inline] do_sys_poll+0x897/0xea0 fs/select.c:1015 __do_sys_ppoll fs/select.c:1121 [inline] __se_sys_ppoll fs/select.c:1101 [inline] __x64_sys_ppoll+0x210/0x280 fs/select.c:1101 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x63/0xcd RIP: 0033:0x7f65bd3229fb RSP: 002b:00007ffde7f313d0 EFLAGS: 00000246 ORIG_RAX: 000000000000010f RAX: ffffffffffffffda RBX: 000055737ecfee20 RCX: 00007f65bd3229fb RDX: 0000000000000000 RSI: 0000000000000004 RDI: 000055737ed08650 RBP: 00007ffde7f31710 R08: 0000000000000008 R09: 00007f65bd3eea60 R10: 00007ffde7f31710 R11: 0000000000000246 R12: 0000000000000000 R13: 000055737cf3f610 R14: 0000000000000003 R15: 0000000000000000 task:dhcpcd state:S stack:28288 pid: 1217 ppid: 1214 flags:0x00000000 Call Trace: context_switch kernel/sched/core.c:5182 [inline] __schedule+0x93f/0x26f0 kernel/sched/core.c:6494 schedule+0xda/0x1b0 kernel/sched/core.c:6570 schedule_hrtimeout_range_clock+0x343/0x390 kernel/time/hrtimer.c:2296 poll_schedule_timeout.constprop.0+0xb9/0x190 fs/select.c:244 do_poll fs/select.c:965 [inline] do_sys_poll+0x897/0xea0 fs/select.c:1015 __do_sys_ppoll fs/select.c:1121 [inline] __se_sys_ppoll fs/select.c:1101 [inline] __x64_sys_ppoll+0x210/0x280 fs/select.c:1101 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x63/0xcd RIP: 0033:0x7f65bd3229fb RSP: 002b:00007ffde7f313d0 EFLAGS: 00000246 ORIG_RAX: 000000000000010f RAX: ffffffffffffffda RBX: 000055737ecfee20 RCX: 00007f65bd3229fb RDX: 0000000000000000 RSI: 0000000000000005 RDI: 000055737ed08650 RBP: 00007ffde7f31710 R08: 0000000000000008 R09: 00007f65bd3eea60 R10: 00007ffde7f31710 R11: 0000000000000246 R12: 0000000000000000 R13: 000055737cf3f610 R14: 0000000000000003 R15: 0000000000000000 task:sshd state:S stack:26344 pid: 1235 ppid: 1 flags:0x00000000 Call Trace: context_switch kernel/sched/core.c:5182 [inline] __schedule+0x93f/0x26f0 kernel/sched/core.c:6494 schedule+0xda/0x1b0 kernel/sched/core.c:6570 schedule_hrtimeout_range_clock+0x343/0x390 kernel/time/hrtimer.c:2296 poll_schedule_timeout.constprop.0+0xb9/0x190 fs/select.c:244 do_select+0x119c/0x16a0 fs/select.c:607 core_sys_select+0x3c2/0x9c0 fs/select.c:681 do_pselect.constprop.0+0x17b/0x1c0 fs/select.c:763 __do_sys_pselect6 fs/select.c:804 [inline] __se_sys_pselect6 fs/select.c:795 [inline] __x64_sys_pselect6+0x17f/0x230 fs/select.c:795 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x63/0xcd RIP: 0033:0x7f83e5f68d83 RSP: 002b:00007ffd5dd98370 EFLAGS: 00000246 ORIG_RAX: 000000000000010e RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f83e5f68d83 RDX: 0000000000000000 RSI: 000055e1a56fcb90 RDI: 0000000000000007 RBP: 00007ffd5dd98558 R08: 0000000000000000 R09: 00007ffd5dd983b0 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000064 R13: 000055e1a56fcb90 R14: 000000000000018c R15: 000055e1a489de85 task:getty state:S stack:24432 pid: 1237 ppid: 1 flags:0x00000000 Call Trace: context_switch kernel/sched/core.c:5182 [inline] __schedule+0x93f/0x26f0 kernel/sched/core.c:6494 schedule+0xda/0x1b0 kernel/sched/core.c:6570 schedule_timeout+0x1db/0x2a0 kernel/time/timer.c:1911 wait_woken+0x18b/0x1f0 kernel/sched/wait.c:459 n_tty_read+0x1051/0x13e0 drivers/tty/n_tty.c:2243 iterate_tty_read drivers/tty/tty_io.c:858 [inline] tty_read+0x33a/0x5d0 drivers/tty/tty_io.c:933 call_read_iter include/linux/fs.h:2181 [inline] new_sync_read fs/read_write.c:389 [inline] vfs_read+0x67d/0x930 fs/read_write.c:470 ksys_read+0x127/0x250 fs/read_write.c:607 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x63/0xcd RIP: 0033:0x7fb0c456d8fe RSP: 002b:00007ffc3ec82838 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 RAX: ffffffffffffffda RBX: 000055b3df19e910 RCX: 00007fb0c456d8fe RDX: 0000000000000001 RSI: 00007ffc3ec82850 RDI: 0000000000000000 RBP: 000055b3df19e970 R08: 0000000000000007 R09: 000055b3df19fcd0 R10: 0000000000000063 R11: 0000000000000246 R12: 000055b3df19e9ac R13: 00007ffc3ec82850 R14: 0000000000000000 R15: 000055b3df19e9ac task:dhcpcd state:S stack:27648 pid: 1239 ppid: 1215 flags:0x00000000 Call Trace: context_switch kernel/sched/core.c:5182 [inline] __schedule+0x93f/0x26f0 kernel/sched/core.c:6494 schedule+0xda/0x1b0 kernel/sched/core.c:6570 schedule_hrtimeout_range_clock+0x343/0x390 kernel/time/hrtimer.c:2296 poll_schedule_timeout.constprop.0+0xb9/0x190 fs/select.c:244 do_poll fs/select.c:965 [inline] do_sys_poll+0x897/0xea0 fs/select.c:1015 __do_sys_ppoll fs/select.c:1121 [inline] __se_sys_ppoll fs/select.c:1101 [inline] __x64_sys_ppoll+0x210/0x280 fs/select.c:1101 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x63/0xcd RIP: 0033:0x7f65bd3229fb RSP: 002b:00007ffde7f313d0 EFLAGS: 00000246 ORIG_RAX: 000000000000010f RAX: ffffffffffffffda RBX: 000055737ecfee20 RCX: 00007f65bd3229fb RDX: 0000000000000000 RSI: 0000000000000002 RDI: 000055737ed09cc0 RBP: 00007ffde7f31710 R08: 0000000000000008 R09: 00000000800a0142 R10: 00007ffde7f31710 R11: 0000000000000246 R12: 0000000000000000 R13: 000055737cf3f610 R14: 0000000000000003 R15: 0000000000000000 task:sshd state:S stack:27768 pid: 1847 ppid: 1235 flags:0x00004000 Call Trace: context_switch kernel/sched/core.c:5182 [inline] __schedule+0x93f/0x26f0 kernel/sched/core.c:6494 schedule+0xda/0x1b0 kernel/sched/core.c:6570 schedule_hrtimeout_range_clock+0x195/0x390 kernel/time/hrtimer.c:2305 poll_schedule_timeout.constprop.0+0xb9/0x190 fs/select.c:244 do_select+0x119c/0x16a0 fs/select.c:607 core_sys_select+0x3c2/0x9c0 fs/select.c:681 do_pselect.constprop.0+0x17b/0x1c0 fs/select.c:763 __do_sys_pselect6 fs/select.c:804 [inline] __se_sys_pselect6 fs/select.c:795 [inline] __x64_sys_pselect6+0x17f/0x230 fs/select.c:795 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x63/0xcd RIP: 0033:0x7f05adee1d83 RSP: 002b:00007ffc2ce671a0 EFLAGS: 00000246 ORIG_RAX: 000000000000010e RAX: ffffffffffffffda RBX: 00000000000668a0 RCX: 00007f05adee1d83 RDX: 000056335647a8d0 RSI: 000056335647a750 RDI: 000000000000000a RBP: 0000563356478030 R08: 00007ffc2ce671d0 R09: 00007ffc2ce671e0 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 R13: 0000000000000001 R14: 00007ffc2ce67258 R15: 00007ffc2ce672d8 task:syz-execprog state:S stack:26368 pid: 1849 ppid: 1847 flags:0x00000000 Call Trace: context_switch kernel/sched/core.c:5182 [inline] __schedule+0x93f/0x26f0 kernel/sched/core.c:6494 schedule+0xda/0x1b0 kernel/sched/core.c:6570 freezable_schedule include/linux/freezer.h:172 [inline] futex_wait_queue+0x144/0x3b0 kernel/futex/waitwake.c:355 futex_wait+0x28e/0x680 kernel/futex/waitwake.c:656 do_futex+0x1af/0x300 kernel/futex/syscalls.c:106 __do_sys_futex kernel/futex/syscalls.c:183 [inline] __se_sys_futex kernel/futex/syscalls.c:164 [inline] __x64_sys_futex+0x1b0/0x4a0 kernel/futex/syscalls.c:164 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x63/0xcd RIP: 0033:0x463023 RSP: 002b:00007ffc37571638 EFLAGS: 00000286 ORIG_RAX: 00000000000000ca RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000463023 RDX: 0000000000000000 RSI: 0000000000000080 RDI: 000000000147dd30 RBP: 00007ffc37571680 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000286 R12: 000000000043b640 R13: 0000000000000000 R14: 000000000147d800 R15: 00007f207665077b task:syz-execprog state:S stack:28288 pid: 1850 ppid: 1847 flags:0x00000000 Call Trace: context_switch kernel/sched/core.c:5182 [inline] __schedule+0x93f/0x26f0 kernel/sched/core.c:6494 schedule+0xda/0x1b0 kernel/sched/core.c:6570 freezable_schedule include/linux/freezer.h:172 [inline] futex_wait_queue+0x144/0x3b0 kernel/futex/waitwake.c:355 futex_wait+0x28e/0x680 kernel/futex/waitwake.c:656 do_futex+0x1af/0x300 kernel/futex/syscalls.c:106 __do_sys_futex kernel/futex/syscalls.c:183 [inline] __se_sys_futex kernel/futex/syscalls.c:164 [inline] __x64_sys_futex+0x1b0/0x4a0 kernel/futex/syscalls.c:164 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x63/0xcd RIP: 0033:0x463023 RSP: 002b:000000c00003fe78 EFLAGS: 00000206 ORIG_RAX: 00000000000000ca RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000463023 RDX: 0000000000000000 RSI: 0000000000000080 RDI: 000000000147e0f8 RBP: 000000c00003fec0 R08: 0000000000000000 R09: 0000000000000000 R10: 000000c00003feb0 R11: 0000000000000206 R12: 000000c00003feb0 R13: 000000c0001a8c00 R14: 000000c0000004e0 R15: 00007f207665dbd0 task:syz-execprog state:S stack:24512 pid: 1851 ppid: 1847 flags:0x00000000 Call Trace: context_switch kernel/sched/core.c:5182 [inline] __schedule+0x93f/0x26f0 kernel/sched/core.c:6494 schedule+0xda/0x1b0 kernel/sched/core.c:6570 freezable_schedule include/linux/freezer.h:172 [inline] futex_wait_queue+0x144/0x3b0 kernel/futex/waitwake.c:355 futex_wait+0x28e/0x680 kernel/futex/waitwake.c:656 do_futex+0x1af/0x300 kernel/futex/syscalls.c:106 __do_sys_futex kernel/futex/syscalls.c:183 [inline] __se_sys_futex kernel/futex/syscalls.c:164 [inline] __x64_sys_futex+0x1b0/0x4a0 kernel/futex/syscalls.c:164 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x63/0xcd RIP: 0033:0x463023 RSP: 002b:000000c000041d78 EFLAGS: 00000286 ORIG_RAX: 00000000000000ca RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000463023 RDX: 0000000000000000 RSI: 0000000000000080 RDI: 000000c000030550 RBP: 000000c000041dc0 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000286 R12: 000000c000041e30 R13: 0000000000000000 R14: 000000c000000820 R15: 00000000008e0840 task:syz-execprog state:S stack:28848 pid: 1852 ppid: 1847 flags:0x00000000 Call Trace: context_switch kernel/sched/core.c:5182 [inline] __schedule+0x93f/0x26f0 kernel/sched/core.c:6494 schedule+0xda/0x1b0 kernel/sched/core.c:6570 freezable_schedule include/linux/freezer.h:172 [inline] futex_wait_queue+0x144/0x3b0 kernel/futex/waitwake.c:355 futex_wait+0x28e/0x680 kernel/futex/waitwake.c:656 do_futex+0x1af/0x300 kernel/futex/syscalls.c:106 __do_sys_futex kernel/futex/syscalls.c:183 [inline] __se_sys_futex kernel/futex/syscalls.c:164 [inline] __x64_sys_futex+0x1b0/0x4a0 kernel/futex/syscalls.c:164 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x63/0xcd RIP: 0033:0x463023 RSP: 002b:000000c00019e6d0 EFLAGS: 00000286 ORIG_RAX: 00000000000000ca RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000463023 RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00000000014acae0 RBP: 000000c00019e718 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000286 R12: 000000c00003bed8 R13: 0000000000000000 R14: 000000c0001f6b60 R15: 00007f207665db68 task:syz-execprog state:S stack:24328 pid: 1853 ppid: 1847 flags:0x00000000 Call Trace: context_switch kernel/sched/core.c:5182 [inline] __schedule+0x93f/0x26f0 kernel/sched/core.c:6494 schedule+0xda/0x1b0 kernel/sched/core.c:6570 schedule_hrtimeout_range_clock+0x195/0x390 kernel/time/hrtimer.c:2305 ep_poll fs/eventpoll.c:1878 [inline] do_epoll_wait+0x12ba/0x1950 fs/eventpoll.c:2256 do_compat_epoll_pwait.part.0+0x29/0x1d0 fs/eventpoll.c:2290 do_epoll_pwait fs/eventpoll.c:2297 [inline] __do_sys_epoll_pwait fs/eventpoll.c:2303 [inline] __se_sys_epoll_pwait fs/eventpoll.c:2297 [inline] __x64_sys_epoll_pwait+0x1cf/0x310 fs/eventpoll.c:2297 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x63/0xcd RIP: 0033:0x463240 RSP: 002b:000000c0001117e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000119 RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 0000000000463240 RDX: 0000000000000080 RSI: 000000c000111840 RDI: 0000000000000003 RBP: 000000c000111e40 R08: 0000000000000000 R09: 000000153bc0604a R10: 00000000000003e7 R11: 0000000000000246 R12: 000000c000111870 R13: 0000000000000004 R14: 000000c000092ea0 R15: 00000022c3a9b0ed task:syz-execprog state:S stack:24512 pid: 1854 ppid: 1847 flags:0x00000000 Call Trace: context_switch kernel/sched/core.c:5182 [inline] __schedule+0x93f/0x26f0 kernel/sched/core.c:6494 schedule+0xda/0x1b0 kernel/sched/core.c:6570 freezable_schedule include/linux/freezer.h:172 [inline] futex_wait_queue+0x144/0x3b0 kernel/futex/waitwake.c:355 futex_wait+0x28e/0x680 kernel/futex/waitwake.c:656 do_futex+0x1af/0x300 kernel/futex/syscalls.c:106 __do_sys_futex kernel/futex/syscalls.c:183 [inline] __se_sys_futex kernel/futex/syscalls.c:164 [inline] __x64_sys_futex+0x1b0/0x4a0 kernel/futex/syscalls.c:164 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x63/0xcd RIP: 0033:0x463023 RSP: 002b:000000c00003dd78 EFLAGS: 00000286 ORIG_RAX: 00000000000000ca RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000463023 RDX: 0000000000000000 RSI: 0000000000000080 RDI: 000000c000102550 RBP: 000000c00003ddc0 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000286 R12: 000000c00003de30 R13: 0000000000000000 R14: 000000c0000931e0 R15: 00000000008e0840 task:syz-execprog state:S stack:28848 pid: 1856 ppid: 1847 flags:0x00000000 Call Trace: context_switch kernel/sched/core.c:5182 [inline] __schedule+0x93f/0x26f0 kernel/sched/core.c:6494 schedule+0xda/0x1b0 kernel/sched/core.c:6570 freezable_schedule include/linux/freezer.h:172 [inline] futex_wait_queue+0x144/0x3b0 kernel/futex/waitwake.c:355 futex_wait+0x28e/0x680 kernel/futex/waitwake.c:656 do_futex+0x1af/0x300 kernel/futex/syscalls.c:106 __do_sys_futex kernel/futex/syscalls.c:183 [inline] __se_sys_futex kernel/futex/syscalls.c:164 [inline] __x64_sys_futex+0x1b0/0x4a0 kernel/futex/syscalls.c:164 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x63/0xcd RIP: 0033:0x463023 RSP: 002b:000000c00010fee8 EFLAGS: 00000286 ORIG_RAX: 00000000000000ca RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000463023 RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00000000014ac9d8 RBP: 000000c00010ff30 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000286 R12: 0000000000463660 R13: 000000c0001a8800 R14: 000000c0001f69c0 R15: 00007f207665db5b task:syz-execprog state:S stack:24512 pid: 1857 ppid: 1847 flags:0x00000000 Call Trace: context_switch kernel/sched/core.c:5182 [inline] __schedule+0x93f/0x26f0 kernel/sched/core.c:6494 schedule+0xda/0x1b0 kernel/sched/core.c:6570 freezable_schedule include/linux/freezer.h:172 [inline] futex_wait_queue+0x144/0x3b0 kernel/futex/waitwake.c:355 futex_wait+0x28e/0x680 kernel/futex/waitwake.c:656 do_futex+0x1af/0x300 kernel/futex/syscalls.c:106 __do_sys_futex kernel/futex/syscalls.c:183 [inline] __se_sys_futex kernel/futex/syscalls.c:164 [inline] __x64_sys_futex+0x1b0/0x4a0 kernel/futex/syscalls.c:164 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x63/0xcd RIP: 0033:0x463023 RSP: 002b:000000c00010deb0 EFLAGS: 00000286 ORIG_RAX: 00000000000000ca RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000463023 RDX: 0000000000000000 RSI: 0000000000000080 RDI: 000000c00027c150 RBP: 000000c00010def8 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000286 R12: 000000000043ce60 R13: 0000000000000001 R14: 000000c0000921a0 R15: ffffffffffffffff task:syz-execprog state:S stack:24512 pid: 1858 ppid: 1847 flags:0x00000000 Call Trace: context_switch kernel/sched/core.c:5182 [inline] __schedule+0x93f/0x26f0 kernel/sched/core.c:6494 schedule+0xda/0x1b0 kernel/sched/core.c:6570 freezable_schedule include/linux/freezer.h:172 [inline] futex_wait_queue+0x144/0x3b0 kernel/futex/waitwake.c:355 futex_wait+0x28e/0x680 kernel/futex/waitwake.c:656 do_futex+0x1af/0x300 kernel/futex/syscalls.c:106 __do_sys_futex kernel/futex/syscalls.c:183 [inline] __se_sys_futex kernel/futex/syscalls.c:164 [inline] __x64_sys_futex+0x1b0/0x4a0 kernel/futex/syscalls.c:164 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x63/0xcd RIP: 0033:0x463023 RSP: 002b:000000c0001b7d78 EFLAGS: 00000286 ORIG_RAX: 00000000000000ca RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000463023 RDX: 0000000000000000 RSI: 0000000000000080 RDI: 000000c0001a8150 RBP: 000000c0001b7dc0 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000286 R12: 000000c00001e000 R13: 0000000000000004 R14: 000000c0001f6ea0 R15: 00007f207665dc33 task:syz-execprog state:S stack:24512 pid: 1859 ppid: 1847 flags:0x00000000 Call Trace: context_switch kernel/sched/core.c:5182 [inline] __schedule+0x93f/0x26f0 kernel/sched/core.c:6494 schedule+0xda/0x1b0 kernel/sched/core.c:6570 freezable_schedule include/linux/freezer.h:172 [inline] futex_wait_queue+0x144/0x3b0 kernel/futex/waitwake.c:355 futex_wait+0x28e/0x680 kernel/futex/waitwake.c:656 do_futex+0x1af/0x300 kernel/futex/syscalls.c:106 __do_sys_futex kernel/futex/syscalls.c:183 [inline] __se_sys_futex kernel/futex/syscalls.c:164 [inline] __x64_sys_futex+0x1b0/0x4a0 kernel/futex/syscalls.c:164 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x63/0xcd RIP: 0033:0x463023 RSP: 002b:000000c0001b9eb0 EFLAGS: 00000286 ORIG_RAX: 00000000000000ca RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000463023 RDX: 0000000000000000 RSI: 0000000000000080 RDI: 000000c0001a8550 RBP: 000000c0001b9ef8 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000286 R12: 000000000043ce60 R13: 0000000000000001 R14: 000000c0001f71e0 R15: ffffffffffffffff task:syz-execprog state:S stack:29536 pid: 1860 ppid: 1847 flags:0x00000000 Call Trace: context_switch kernel/sched/core.c:5182 [inline] __schedule+0x93f/0x26f0 kernel/sched/core.c:6494 schedule+0xda/0x1b0 kernel/sched/core.c:6570 freezable_schedule include/linux/freezer.h:172 [inline] futex_wait_queue+0x144/0x3b0 kernel/futex/waitwake.c:355 futex_wait+0x28e/0x680 kernel/futex/waitwake.c:656 do_futex+0x1af/0x300 kernel/futex/syscalls.c:106 __do_sys_futex kernel/futex/syscalls.c:183 [inline] __se_sys_futex kernel/futex/syscalls.c:164 [inline] __x64_sys_futex+0x1b0/0x4a0 kernel/futex/syscalls.c:164 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x63/0xcd RIP: 0033:0x463023 RSP: 002b:000000c000113d78 EFLAGS: 00000286 ORIG_RAX: 00000000000000ca RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000463023 RDX: 0000000000000000 RSI: 0000000000000080 RDI: 000000c00027c550 RBP: 000000c000113dc0 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000286 R12: 000000c000113e30 R13: 0000000000000000 R14: 000000c000093520 R15: 0000000000001018 task:syz-execprog state:S stack:30392 pid: 1861 ppid: 1847 flags:0x00000000 Call Trace: context_switch kernel/sched/core.c:5182 [inline] __schedule+0x93f/0x26f0 kernel/sched/core.c:6494 schedule+0xda/0x1b0 kernel/sched/core.c:6570 freezable_schedule include/linux/freezer.h:172 [inline] futex_wait_queue+0x144/0x3b0 kernel/futex/waitwake.c:355 futex_wait+0x28e/0x680 kernel/futex/waitwake.c:656 do_futex+0x1af/0x300 kernel/futex/syscalls.c:106 __do_sys_futex kernel/futex/syscalls.c:183 [inline] __se_sys_futex kernel/futex/syscalls.c:164 [inline] __x64_sys_futex+0x1b0/0x4a0 kernel/futex/syscalls.c:164 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x63/0xcd RIP: 0033:0x463023 RSP: 002b:000000c0001b3e40 EFLAGS: 00000286 ORIG_RAX: 00000000000000ca RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000463023 RDX: 0000000000000000 RSI: 0000000000000080 RDI: 000000c0001a8950 RBP: 000000c0001b3e88 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000286 R12: 000000000043b640 R13: 000000c0001a8800 R14: 000000c0001f7520 R15: 00007f207665db5b task:syz-execprog state:S stack:29544 pid: 1862 ppid: 1847 flags:0x00000000 Call Trace: context_switch kernel/sched/core.c:5182 [inline] __schedule+0x93f/0x26f0 kernel/sched/core.c:6494 schedule+0xda/0x1b0 kernel/sched/core.c:6570 freezable_schedule include/linux/freezer.h:172 [inline] futex_wait_queue+0x144/0x3b0 kernel/futex/waitwake.c:355 futex_wait+0x28e/0x680 kernel/futex/waitwake.c:656 do_futex+0x1af/0x300 kernel/futex/syscalls.c:106 __do_sys_futex kernel/futex/syscalls.c:183 [inline] __se_sys_futex kernel/futex/syscalls.c:164 [inline] __x64_sys_futex+0x1b0/0x4a0 kernel/futex/syscalls.c:164 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x63/0xcd RIP: 0033:0x463023 RSP: 002b:000000c0001b5d78 EFLAGS: 00000286 ORIG_RAX: 00000000000000ca RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000463023 RDX: 0000000000000000 RSI: 0000000000000080 RDI: 000000c0001a8d50 RBP: 000000c0001b5dc0 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000286 R12: 000000c000020800 R13: 0000000000000080 R14: 000000c0001f7860 R15: 0000000000001018 task:syz-executor.3 state:S stack:27944 pid: 1863 ppid: 1853 flags:0x00000000 Call Trace: context_switch kernel/sched/core.c:5182 [inline] __schedule+0x93f/0x26f0 kernel/sched/core.c:6494 schedule+0xda/0x1b0 kernel/sched/core.c:6570 do_wait+0x6f4/0xce0 kernel/exit.c:1537 kernel_wait4+0x14c/0x260 kernel/exit.c:1681 __do_sys_wait4+0x13f/0x150 kernel/exit.c:1709 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x63/0xcd RIP: 0033:0x463ce6 RSP: 002b:00007ffd99621228 EFLAGS: 00000246 ORIG_RAX: 000000000000003d RAX: ffffffffffffffda RBX: 000000000000074a RCX: 0000000000463ce6 RDX: 0000000040000000 RSI: 00007ffd9962123c RDI: 00000000ffffffff RBP: 00007ffd9962123c R08: 0000000000000000 R09: 0000000001eb0400 R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd99621280 R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000400538 task:syz-executor.2 state:S stack:27944 pid: 1864 ppid: 1853 flags:0x00000000 Call Trace: context_switch kernel/sched/core.c:5182 [inline] __schedule+0x93f/0x26f0 kernel/sched/core.c:6494 schedule+0xda/0x1b0 kernel/sched/core.c:6570 do_wait+0x6f4/0xce0 kernel/exit.c:1537 kernel_wait4+0x14c/0x260 kernel/exit.c:1681 __do_sys_wait4+0x13f/0x150 kernel/exit.c:1709 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x63/0xcd RIP: 0033:0x463ce6 RSP: 002b:00007ffcf0166338 EFLAGS: 00000246 ORIG_RAX: 000000000000003d RAX: ffffffffffffffda RBX: 000000000000074c RCX: 0000000000463ce6 RDX: 0000000040000000 RSI: 00007ffcf016634c RDI: 00000000ffffffff RBP: 00007ffcf016634c R08: 0000000000000000 R09: 0000000002f60400 R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffcf0166390 R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000400538 task:syz-executor.4 state:S stack:27944 pid: 1865 ppid: 1853 flags:0x00000000 Call Trace: context_switch kernel/sched/core.c:5182 [inline] __schedule+0x93f/0x26f0 kernel/sched/core.c:6494 schedule+0xda/0x1b0 kernel/sched/core.c:6570 do_wait+0x6f4/0xce0 kernel/exit.c:1537 kernel_wait4+0x14c/0x260 kernel/exit.c:1681 __do_sys_wait4+0x13f/0x150 kernel/exit.c:1709 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x63/0xcd RIP: 0033:0x463ce6 RSP: 002b:00007fff0594e6f8 EFLAGS: 00000246 ORIG_RAX: 000000000000003d RAX: ffffffffffffffda RBX: 0000000000000753 RCX: 0000000000463ce6 RDX: 0000000040000000 RSI: 00007fff0594e70c RDI: 00000000ffffffff RBP: 00007fff0594e70c R08: 0000000000000000 R09: 00000000019ac400 R10: 0000000000000000 R11: 0000000000000246 R12: 00007fff0594e750 R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000400538 task:syz-executor.3 state:R running task stack:24880 pid: 1866 ppid: 1863 flags:0x00000000 Call Trace: context_switch kernel/sched/core.c:5182 [inline] __schedule+0x93f/0x26f0 kernel/sched/core.c:6494 schedule+0xda/0x1b0 kernel/sched/core.c:6570 freezable_schedule include/linux/freezer.h:172 [inline] do_nanosleep+0x197/0x690 kernel/time/hrtimer.c:2044 hrtimer_nanosleep+0x1f9/0x4a0 kernel/time/hrtimer.c:2097 common_nsleep+0xa2/0xc0 kernel/time/posix-timers.c:1236 __do_sys_clock_nanosleep kernel/time/posix-timers.c:1276 [inline] __se_sys_clock_nanosleep kernel/time/posix-timers.c:1254 [inline] __x64_sys_clock_nanosleep+0x2f4/0x430 kernel/time/posix-timers.c:1254 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x63/0xcd RIP: 0033:0x489f5a RSP: 002b:00007ffd99620fd0 EFLAGS: 00000246 ORIG_RAX: 00000000000000e6 RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 0000000000489f5a RDX: 00007ffd99621010 RSI: 0000000000000000 RDI: 0000000000000000 RBP: 00007ffd9962108c R08: 000000000000005a R09: 00007ffd997c4080 R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd996210f0 R13: 00000000000160d0 R14: 0000000000015b6e R15: 0000000000000004 task:syz-executor.1 state:S stack:27944 pid: 1867 ppid: 1858 flags:0x00000000 Call Trace: context_switch kernel/sched/core.c:5182 [inline] __schedule+0x93f/0x26f0 kernel/sched/core.c:6494 schedule+0xda/0x1b0 kernel/sched/core.c:6570 do_wait+0x6f4/0xce0 kernel/exit.c:1537 kernel_wait4+0x14c/0x260 kernel/exit.c:1681 __do_sys_wait4+0x13f/0x150 kernel/exit.c:1709 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x63/0xcd RIP: 0033:0x463ce6 RSP: 002b:00007ffde37594f8 EFLAGS: 00000246 ORIG_RAX: 000000000000003d RAX: ffffffffffffffda RBX: 0000000000000752 RCX: 0000000000463ce6 RDX: 0000000040000000 RSI: 00007ffde375950c RDI: 00000000ffffffff RBP: 00007ffde375950c R08: 0000000000000000 R09: 0000000002111400 R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffde3759550 R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000400538 task:syz-executor.2 state:R running task stack:25288 pid: 1868 ppid: 1864 flags:0x00000000 Call Trace: context_switch kernel/sched/core.c:5182 [inline] __schedule+0x93f/0x26f0 kernel/sched/core.c:6494 schedule+0xda/0x1b0 kernel/sched/core.c:6570 freezable_schedule include/linux/freezer.h:172 [inline] do_nanosleep+0x197/0x690 kernel/time/hrtimer.c:2044 hrtimer_nanosleep+0x1f9/0x4a0 kernel/time/hrtimer.c:2097 common_nsleep+0xa2/0xc0 kernel/time/posix-timers.c:1236 __do_sys_clock_nanosleep kernel/time/posix-timers.c:1276 [inline] __se_sys_clock_nanosleep kernel/time/posix-timers.c:1254 [inline] __x64_sys_clock_nanosleep+0x2f4/0x430 kernel/time/posix-timers.c:1254 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x63/0xcd RIP: 0033:0x489f5a RSP: 002b:00007ffcf01660e0 EFLAGS: 00000246 ORIG_RAX: 00000000000000e6 RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 0000000000489f5a RDX: 00007ffcf0166120 RSI: 0000000000000000 RDI: 0000000000000000 RBP: 00007ffcf016619c R08: 000000000000005a R09: 00007ffcf01ed080 R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffcf0166200 R13: 00000000000161c2 R14: 0000000000015bcb R15: 0000000000000004 task:syz-executor.0 state:S stack:27944 pid: 1870 ppid: 1858 flags:0x00000000 Call Trace: context_switch kernel/sched/core.c:5182 [inline] __schedule+0x93f/0x26f0 kernel/sched/core.c:6494 schedule+0xda/0x1b0 kernel/sched/core.c:6570 do_wait+0x6f4/0xce0 kernel/exit.c:1537 kernel_wait4+0x14c/0x260 kernel/exit.c:1681 __do_sys_wait4+0x13f/0x150 kernel/exit.c:1709 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x63/0xcd RIP: 0033:0x463ce6 RSP: 002b:00007fff6be4c958 EFLAGS: 00000246 ORIG_RAX: 000000000000003d RAX: ffffffffffffffda RBX: 0000000000000756 RCX: 0000000000463ce6 RDX: 0000000040000000 RSI: 00007fff6be4c96c RDI: 00000000ffffffff RBP: 00007fff6be4c96c R08: 0000000000000000 R09: 0000000002096400 R10: 0000000000000000 R11: 0000000000000246 R12: 00007fff6be4c9b0 R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000400538 task:syz-executor.5 state:S stack:27856 pid: 1871 ppid: 1858 flags:0x00000000 Call Trace: context_switch kernel/sched/core.c:5182 [inline] __schedule+0x93f/0x26f0 kernel/sched/core.c:6494 schedule+0xda/0x1b0 kernel/sched/core.c:6570 do_wait+0x6f4/0xce0 kernel/exit.c:1537 kernel_wait4+0x14c/0x260 kernel/exit.c:1681 __do_sys_wait4+0x13f/0x150 kernel/exit.c:1709 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x63/0xcd RIP: 0033:0x463ce6 RSP: 002b:00007ffd42832108 EFLAGS: 00000246 ORIG_RAX: 000000000000003d RAX: ffffffffffffffda RBX: 0000000000000755 RCX: 0000000000463ce6 RDX: 0000000040000000 RSI: 00007ffd4283211c RDI: 00000000ffffffff RBP: 00007ffd4283211c R08: 0000000000000000 R09: 0000000002b07400 R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd42832160 R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000400538 task:syz-executor.1 state:R running task stack:24880 pid: 1874 ppid: 1867 flags:0x00000000 Call Trace: context_switch kernel/sched/core.c:5182 [inline] __schedule+0x93f/0x26f0 kernel/sched/core.c:6494 schedule+0xda/0x1b0 kernel/sched/core.c:6570 freezable_schedule include/linux/freezer.h:172 [inline] do_nanosleep+0x197/0x690 kernel/time/hrtimer.c:2044 hrtimer_nanosleep+0x1f9/0x4a0 kernel/time/hrtimer.c:2097 common_nsleep+0xa2/0xc0 kernel/time/posix-timers.c:1236 __do_sys_clock_nanosleep kernel/time/posix-timers.c:1276 [inline] __se_sys_clock_nanosleep kernel/time/posix-timers.c:1254 [inline] __x64_sys_clock_nanosleep+0x2f4/0x430 kernel/time/posix-timers.c:1254 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x63/0xcd RIP: 0033:0x489f5a RSP: 002b:00007ffde37592a0 EFLAGS: 00000246 ORIG_RAX: 00000000000000e6 RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 0000000000489f5a RDX: 00007ffde37592e0 RSI: 0000000000000000 RDI: 0000000000000000 RBP: 00007ffde375935c R08: 000000000000005a R09: 00007ffde3767080 R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffde37593c0 R13: 00000000000161c2 R14: 0000000000015c54 R15: 0000000000000004 task:syz-executor.4 state:R running task stack:25728 pid: 1875 ppid: 1865 flags:0x00000000 Call Trace: context_switch kernel/sched/core.c:5182 [inline] __schedule+0x93f/0x26f0 kernel/sched/core.c:6494 schedule+0xda/0x1b0 kernel/sched/core.c:6570 freezable_schedule include/linux/freezer.h:172 [inline] do_nanosleep+0x197/0x690 kernel/time/hrtimer.c:2044 hrtimer_nanosleep+0x1f9/0x4a0 kernel/time/hrtimer.c:2097 common_nsleep+0xa2/0xc0 kernel/time/posix-timers.c:1236 __do_sys_clock_nanosleep kernel/time/posix-timers.c:1276 [inline] __se_sys_clock_nanosleep kernel/time/posix-timers.c:1254 [inline] __x64_sys_clock_nanosleep+0x2f4/0x430 kernel/time/posix-timers.c:1254 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x63/0xcd RIP: 0033:0x489f5a RSP: 002b:00007fff0594e4a0 EFLAGS: 00000246 ORIG_RAX: 00000000000000e6 RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 0000000000489f5a RDX: 00007fff0594e4e0 RSI: 0000000000000000 RDI: 0000000000000000 RBP: 00007fff0594e55c R08: 000000000000005a R09: 00007fff059a2080 R10: 0000000000000000 R11: 0000000000000246 R12: 00007fff0594e5c0 R13: 00000000000161c2 R14: 0000000000015cb1 R15: 0000000000000002 task:syz-executor.5 state:R running task stack:25728 pid: 1877 ppid: 1871 flags:0x00000000 Call Trace: context_switch kernel/sched/core.c:5182 [inline] __schedule+0x93f/0x26f0 kernel/sched/core.c:6494 schedule+0xda/0x1b0 kernel/sched/core.c:6570 freezable_schedule include/linux/freezer.h:172 [inline] do_nanosleep+0x197/0x690 kernel/time/hrtimer.c:2044 hrtimer_nanosleep+0x1f9/0x4a0 kernel/time/hrtimer.c:2097 common_nsleep+0xa2/0xc0 kernel/time/posix-timers.c:1236 __do_sys_clock_nanosleep kernel/time/posix-timers.c:1276 [inline] __se_sys_clock_nanosleep kernel/time/posix-timers.c:1254 [inline] __x64_sys_clock_nanosleep+0x2f4/0x430 kernel/time/posix-timers.c:1254 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x63/0xcd RIP: 0033:0x489f5a RSP: 002b:00007ffd42831eb0 EFLAGS: 00000246 ORIG_RAX: 00000000000000e6 RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 0000000000489f5a RDX: 00007ffd42831ef0 RSI: 0000000000000000 RDI: 0000000000000000 RBP: 00007ffd42831f6c R08: 000000000000005a R09: 00007ffd429f8080 R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd42831fd0 R13: 00000000000161c2 R14: 0000000000015bea R15: 0000000000000004 task:syz-executor.0 state:R running task stack:25440 pid: 1878 ppid: 1870 flags:0x00000000 Call Trace: context_switch kernel/sched/core.c:5182 [inline] __schedule+0x93f/0x26f0 kernel/sched/core.c:6494 schedule+0xda/0x1b0 kernel/sched/core.c:6570 freezable_schedule include/linux/freezer.h:172 [inline] do_nanosleep+0x197/0x690 kernel/time/hrtimer.c:2044 hrtimer_nanosleep+0x1f9/0x4a0 kernel/time/hrtimer.c:2097 common_nsleep+0xa2/0xc0 kernel/time/posix-timers.c:1236 __do_sys_clock_nanosleep kernel/time/posix-timers.c:1276 [inline] __se_sys_clock_nanosleep kernel/time/posix-timers.c:1254 [inline] __x64_sys_clock_nanosleep+0x2f4/0x430 kernel/time/posix-timers.c:1254 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x63/0xcd RIP: 0033:0x489f5a RSP: 002b:00007fff6be4c700 EFLAGS: 00000246 ORIG_RAX: 00000000000000e6 RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 0000000000489f5a RDX: 00007fff6be4c740 RSI: 0000000000000000 RDI: 0000000000000000 RBP: 00007fff6be4c7bc R08: 000000000000005a R09: 00007fff6bf19080 R10: 0000000000000000 R11: 0000000000000246 R12: 00007fff6be4c820 R13: 00000000000161a2 R14: 0000000000015ce2 R15: 0000000000000002 task:kworker/u4:4 state:I stack:25848 pid: 1879 ppid: 2 flags:0x00004000 Workqueue: 0x0 (events_unbound) Call Trace: context_switch kernel/sched/core.c:5182 [inline] __schedule+0x93f/0x26f0 kernel/sched/core.c:6494 schedule+0xda/0x1b0 kernel/sched/core.c:6570 worker_thread+0x15c/0x1080 kernel/workqueue.c:2457 kthread+0x2ea/0x3a0 kernel/kthread.c:376 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:306 task:kworker/u4:5 state:I stack:27720 pid: 1882 ppid: 2 flags:0x00004000 Workqueue: 0x0 (events_unbound) Call Trace: context_switch kernel/sched/core.c:5182 [inline] __schedule+0x93f/0x26f0 kernel/sched/core.c:6494 schedule+0xda/0x1b0 kernel/sched/core.c:6570 worker_thread+0x15c/0x1080 kernel/workqueue.c:2457 kthread+0x2ea/0x3a0 kernel/kthread.c:376 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:306 task:kworker/u4:6 state:I stack:26144 pid: 1886 ppid: 2 flags:0x00004000 Workqueue: 0x0 (events_unbound) Call Trace: context_switch kernel/sched/core.c:5182 [inline] __schedule+0x93f/0x26f0 kernel/sched/core.c:6494 schedule+0xda/0x1b0 kernel/sched/core.c:6570 worker_thread+0x15c/0x1080 kernel/workqueue.c:2457 kthread+0x2ea/0x3a0 kernel/kthread.c:376 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:306 task:kworker/u4:7 state:I stack:24080 pid: 1948 ppid: 2 flags:0x00004000 Workqueue: 0x0 (flush-8:0) Call Trace: context_switch kernel/sched/core.c:5182 [inline] __schedule+0x93f/0x26f0 kernel/sched/core.c:6494 schedule+0xda/0x1b0 kernel/sched/core.c:6570 worker_thread+0x15c/0x1080 kernel/workqueue.c:2457 kthread+0x2ea/0x3a0 kernel/kthread.c:376 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:306 task:kworker/u4:8 state:I stack:30952 pid: 3689 ppid: 2 flags:0x00004000 Call Trace: context_switch kernel/sched/core.c:5182 [inline] __schedule+0x93f/0x26f0 kernel/sched/core.c:6494 schedule+0xda/0x1b0 kernel/sched/core.c:6570 worker_thread+0x15c/0x1080 kernel/workqueue.c:2457 kthread+0x2ea/0x3a0 kernel/kthread.c:376 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:306 task:syz-executor.3 state:S stack:28704 pid: 4545 ppid: 1866 flags:0x00000000 Call Trace: context_switch kernel/sched/core.c:5182 [inline] __schedule+0x93f/0x26f0 kernel/sched/core.c:6494 schedule+0xda/0x1b0 kernel/sched/core.c:6570 freezable_schedule include/linux/freezer.h:172 [inline] futex_wait_queue+0x144/0x3b0 kernel/futex/waitwake.c:355 futex_wait+0x28e/0x680 kernel/futex/waitwake.c:656 do_futex+0x1af/0x300 kernel/futex/syscalls.c:106 __do_sys_futex kernel/futex/syscalls.c:183 [inline] __se_sys_futex kernel/futex/syscalls.c:164 [inline] __x64_sys_futex+0x1b0/0x4a0 kernel/futex/syscalls.c:164 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x63/0xcd RIP: 0033:0x465889 RSP: 002b:00007ffd99620e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca RAX: ffffffffffffffda RBX: 0000000000000159 RCX: 0000000000465889 RDX: 0000000000000000 RSI: 0000000000000080 RDI: 000000000055bf0c RBP: 00000000000160cf R08: 00007ffd997c4080 R09: 0000000000000000 R10: 00007ffd99620f40 R11: 0000000000000246 R12: 00000000000003e8 R13: 000000000055bf0c R14: 000000000055bf00 R15: 000000000055bf00 task:syz-executor.3 state:S stack:28912 pid: 4546 ppid: 1866 flags:0x00000000 Call Trace: context_switch kernel/sched/core.c:5182 [inline] __schedule+0x93f/0x26f0 kernel/sched/core.c:6494 schedule+0xda/0x1b0 kernel/sched/core.c:6570 schedule_timeout+0x1db/0x2a0 kernel/time/timer.c:1911 do_wait_for_common kernel/sched/completion.c:85 [inline] __wait_for_common+0x1be/0x530 kernel/sched/completion.c:106 wait_for_common kernel/sched/completion.c:117 [inline] wait_for_completion_interruptible+0x1b/0x30 kernel/sched/completion.c:206 raw_process_ep_io+0x5ec/0xb10 drivers/usb/gadget/legacy/raw_gadget.c:1071 raw_ioctl_ep_write drivers/usb/gadget/legacy/raw_gadget.c:1099 [inline] raw_ioctl+0x955/0x2740 drivers/usb/gadget/legacy/raw_gadget.c:1271 vfs_ioctl fs/ioctl.c:51 [inline] __do_sys_ioctl fs/ioctl.c:870 [inline] __se_sys_ioctl fs/ioctl.c:856 [inline] __x64_sys_ioctl+0x193/0x200 fs/ioctl.c:856 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x63/0xcd RIP: 0033:0x465647 RSP: 002b:00007f14121b7118 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 RAX: ffffffffffffffda RBX: ffffffffffffff0a RCX: 0000000000465647 RDX: 00007f14121b7140 RSI: 0000000040085507 RDI: 0000000000000003 RBP: 0000000020000380 R08: 0000000000a90020 R09: 0000000000000001 R10: 00000000004078b0 R11: 0000000000000246 R12: 0000000000000003 R13: 0000000000000000 R14: 00007f14121b8300 R15: 0000000000022000 task:udevd state:R running task stack:27952 pid: 4548 ppid: 1178 flags:0x00000000 Call Trace: context_switch kernel/sched/core.c:5182 [inline] __schedule+0x93f/0x26f0 kernel/sched/core.c:6494 schedule+0xda/0x1b0 kernel/sched/core.c:6570 schedule_hrtimeout_range_clock+0x343/0x390 kernel/time/hrtimer.c:2296 ep_poll fs/eventpoll.c:1878 [inline] do_epoll_wait+0x12ba/0x1950 fs/eventpoll.c:2256 __do_sys_epoll_wait fs/eventpoll.c:2268 [inline] __se_sys_epoll_wait fs/eventpoll.c:2263 [inline] __x64_sys_epoll_wait+0x158/0x270 fs/eventpoll.c:2263 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x63/0xcd RIP: 0033:0x7f660ef1ee46 RSP: 002b:00007ffc49395ef8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e8 RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f660ef1ee46 RDX: 0000000000000004 RSI: 00007ffc49395f38 RDI: 0000000000000004 RBP: 00005643ff2d8190 R08: 0000000000000007 R09: 00005643ff2cc720 R10: 00000000ffffffff R11: 0000000000000246 R12: 00005643ff2d5530 R13: 00007ffc49395f38 R14: 00000000ffffffff R15: 00005643ff2b2910 task:udevd state:S stack:28264 pid: 4551 ppid: 1178 flags:0x00000000 Call Trace: context_switch kernel/sched/core.c:5182 [inline] __schedule+0x93f/0x26f0 kernel/sched/core.c:6494 schedule+0xda/0x1b0 kernel/sched/core.c:6570 schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:6629 __mutex_lock_common kernel/locking/mutex.c:679 [inline] __mutex_lock+0xa44/0x1350 kernel/locking/mutex.c:747 device_lock_interruptible include/linux/device.h:840 [inline] read_descriptors+0x3c/0x2c0 drivers/usb/core/sysfs.c:873 sysfs_kf_bin_read+0x196/0x270 fs/sysfs/file.c:97 kernfs_file_read_iter fs/kernfs/file.c:271 [inline] kernfs_fop_read_iter+0x3dc/0x710 fs/kernfs/file.c:300 call_read_iter include/linux/fs.h:2181 [inline] new_sync_read fs/read_write.c:389 [inline] vfs_read+0x67d/0x930 fs/read_write.c:470 ksys_read+0x127/0x250 fs/read_write.c:607 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x63/0xcd RIP: 0033:0x7f660ef108fe RSP: 002b:00007ffc493803c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f660ef108fe RDX: 0000000000010011 RSI: 00007ffc493803f7 RDI: 0000000000000008 RBP: 00007ffc49390ac8 R08: 00007f660efe0a00 R09: 00005643ff2c85e0 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000008 R13: 0000000000000000 R14: 00007ffc493803f7 R15: 00005643fe69ea7c task:syz-executor.2 state:S stack:28592 pid: 4554 ppid: 1868 flags:0x00000000 Call Trace: context_switch kernel/sched/core.c:5182 [inline] __schedule+0x93f/0x26f0 kernel/sched/core.c:6494 schedule+0xda/0x1b0 kernel/sched/core.c:6570 freezable_schedule include/linux/freezer.h:172 [inline] futex_wait_queue+0x144/0x3b0 kernel/futex/waitwake.c:355 futex_wait+0x28e/0x680 kernel/futex/waitwake.c:656 do_futex+0x1af/0x300 kernel/futex/syscalls.c:106 __do_sys_futex kernel/futex/syscalls.c:183 [inline] __se_sys_futex kernel/futex/syscalls.c:164 [inline] __x64_sys_futex+0x1b0/0x4a0 kernel/futex/syscalls.c:164 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x63/0xcd RIP: 0033:0x465889 RSP: 002b:00007ffcf0165f78 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca RAX: ffffffffffffffda RBX: 0000000000000159 RCX: 0000000000465889 RDX: 0000000000000000 RSI: 0000000000000080 RDI: 000000000055bf0c RBP: 00000000000161c1 R08: 00007ffcf01ed080 R09: 0000000000000000 R10: 00007ffcf0166050 R11: 0000000000000246 R12: 00000000000003e8 R13: 000000000055bf0c R14: 000000000055bf00 R15: 000000000055bf00 task:syz-executor.2 state:S stack:29192 pid: 4556 ppid: 1868 flags:0x00000000 Call Trace: context_switch kernel/sched/core.c:5182 [inline] __schedule+0x93f/0x26f0 kernel/sched/core.c:6494 schedule+0xda/0x1b0 kernel/sched/core.c:6570 schedule_timeout+0x1db/0x2a0 kernel/time/timer.c:1911 do_wait_for_common kernel/sched/completion.c:85 [inline] __wait_for_common+0x1be/0x530 kernel/sched/completion.c:106 wait_for_common kernel/sched/completion.c:117 [inline] wait_for_completion_interruptible+0x1b/0x30 kernel/sched/completion.c:206 raw_process_ep_io+0x5ec/0xb10 drivers/usb/gadget/legacy/raw_gadget.c:1071 raw_ioctl_ep_write drivers/usb/gadget/legacy/raw_gadget.c:1099 [inline] raw_ioctl+0x955/0x2740 drivers/usb/gadget/legacy/raw_gadget.c:1271 vfs_ioctl fs/ioctl.c:51 [inline] __do_sys_ioctl fs/ioctl.c:870 [inline] __se_sys_ioctl fs/ioctl.c:856 [inline] __x64_sys_ioctl+0x193/0x200 fs/ioctl.c:856 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x63/0xcd RIP: 0033:0x465647 RSP: 002b:00007fd38b07f118 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 RAX: ffffffffffffffda RBX: ffffffffffffff0a RCX: 0000000000465647 RDX: 00007fd38b07f140 RSI: 0000000040085507 RDI: 0000000000000003 RBP: 0000000020000380 R08: 0000000000a90020 R09: 0000000000000001 R10: 00000000004078b0 R11: 0000000000000246 R12: 0000000000000003 R13: 0000000000000000 R14: 00007fd38b080300 R15: 0000000000022000 task:syz-executor.5 state:S stack:28264 pid: 4558 ppid: 1877 flags:0x00000000 Call Trace: context_switch kernel/sched/core.c:5182 [inline] __schedule+0x93f/0x26f0 kernel/sched/core.c:6494 schedule+0xda/0x1b0 kernel/sched/core.c:6570 freezable_schedule include/linux/freezer.h:172 [inline] futex_wait_queue+0x144/0x3b0 kernel/futex/waitwake.c:355 futex_wait+0x28e/0x680 kernel/futex/waitwake.c:656 do_futex+0x1af/0x300 kernel/futex/syscalls.c:106 __do_sys_futex kernel/futex/syscalls.c:183 [inline] __se_sys_futex kernel/futex/syscalls.c:164 [inline] __x64_sys_futex+0x1b0/0x4a0 kernel/futex/syscalls.c:164 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x63/0xcd RIP: 0033:0x465889 RSP: 002b:00007ffd42831d48 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca RAX: ffffffffffffffda RBX: 0000000000000159 RCX: 0000000000465889 RDX: 0000000000000000 RSI: 0000000000000080 RDI: 000000000055bf0c RBP: 00000000000161c2 R08: 00007ffd429f8080 R09: 0000000000000000 R10: 00007ffd42831e20 R11: 0000000000000246 R12: 00000000000003e8 R13: 000000000055bf0c R14: 000000000055bf00 R15: 000000000055bf00 task:syz-executor.5 state:S stack:29096 pid: 4560 ppid: 1877 flags:0x00000000 Call Trace: context_switch kernel/sched/core.c:5182 [inline] __schedule+0x93f/0x26f0 kernel/sched/core.c:6494 schedule+0xda/0x1b0 kernel/sched/core.c:6570 schedule_timeout+0x1db/0x2a0 kernel/time/timer.c:1911 do_wait_for_common kernel/sched/completion.c:85 [inline] __wait_for_common+0x1be/0x530 kernel/sched/completion.c:106 wait_for_common kernel/sched/completion.c:117 [inline] wait_for_completion_interruptible+0x1b/0x30 kernel/sched/completion.c:206 raw_process_ep_io+0x5ec/0xb10 drivers/usb/gadget/legacy/raw_gadget.c:1071 raw_ioctl_ep_write drivers/usb/gadget/legacy/raw_gadget.c:1099 [inline] raw_ioctl+0x955/0x2740 drivers/usb/gadget/legacy/raw_gadget.c:1271 vfs_ioctl fs/ioctl.c:51 [inline] __do_sys_ioctl fs/ioctl.c:870 [inline] __se_sys_ioctl fs/ioctl.c:856 [inline] __x64_sys_ioctl+0x193/0x200 fs/ioctl.c:856 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x63/0xcd RIP: 0033:0x465647 RSP: 002b:00007f391b58a118 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 RAX: ffffffffffffffda RBX: ffffffffffffff0a RCX: 0000000000465647 RDX: 00007f391b58a140 RSI: 0000000040085507 RDI: 0000000000000003 RBP: 0000000020000380 R08: 0000000000a90020 R09: 0000000000000001 R10: 00000000004078b0 R11: 0000000000000246 R12: 0000000000000003 R13: 0000000000000000 R14: 00007f391b58b300 R15: 0000000000022000 task:kworker/1:3 state:R running task stack:23392 pid: 4561 ppid: 2 flags:0x00004008 Workqueue: usb_hub_wq hub_event Call Trace: ---------------- Code disassembly (best guess): 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: ca 22 34 lret $0x3422 7: fb sti 8: 48 89 ef mov %rbp,%rdi b: e8 52 a4 34 fb callq 0xfb34a462 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 25 jne 0x3d 18: 9c pushfq 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 2d jne 0x4c 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi * 2a: e8 33 01 2a fb callq 0xfb2a0162 <-- trapping instruction 2f: 65 8b 05 3c 72 0c 7a mov %gs:0x7a0c723c(%rip),%eax # 0x7a0c7272 36: 85 c0 test %eax,%eax 38: 74 0a je 0x44 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: c3 retq 3d: e8 .byte 0xe8 3e: 90 nop 3f: 7d .byte 0x7d