[ 11.951264] usb 1-1: new high-speed USB device number 2 using xhci_hcd [ 12.078302] usb 1-1: Using ep0 maxpacket: 16 [ 12.080698] usb 1-1: string descriptor 0 read error: -22 [ 12.081917] usb 1-1: New USB device found, idVendor=046d, idProduct=0a44, bcdDevice= 1.27 [ 12.083734] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=0 [ 12.090675] usb 1-1: current rate 16732531 is different from the runtime rate 48000 [ 12.092985] usb 1-1: current rate 11254477 is different from the runtime rate 48000 [ 12.105244] BUG: KASAN: use-after-free in tick_sched_handle+0x51/0x90 [ 12.106010] Read of size 8 at addr ffff88815a1a9ed0 by task kworker/3:2/4772 [ 12.106841] [ 12.107023] CPU: 3 PID: 4772 Comm: kworker/3:2 Not tainted 5.3.0-rc4+ #35 [ 12.107841] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.11.0-0-g63451fca13-prebuilt.qemu-project.org 04/01/2014 [ 12.109200] Workqueue: usb_hub_wq hub_event [ 12.109734] Call Trace: [ 12.110023] [ 12.110266] dump_stack+0x5b/0x8b [ 12.110665] ? tick_sched_handle+0x51/0x90 [ 12.111163] print_address_description+0x6e/0x390 [ 12.111749] ? tick_sched_handle+0x51/0x90 [ 12.112221] ? tick_sched_handle+0x51/0x90 [ 12.112732] __kasan_report+0x149/0x18d [ 12.113175] ? tick_sched_handle+0x51/0x90 [ 12.113681] kasan_report+0xe/0x20 [ 12.114076] tick_sched_handle+0x51/0x90 [ 12.114529] tick_sched_timer+0x32/0x90 [ 12.115007] __hrtimer_run_queues+0x1f5/0x450 [ 12.115514] ? tick_sched_do_timer+0x80/0x80 [ 12.116041] ? enqueue_hrtimer+0x100/0x100 [ 12.116514] ? kvm_clock_get_cycles+0xd/0x10 [ 12.117038] ? ktime_get_update_offsets_now+0xa4/0x160 [ 12.117659] hrtimer_interrupt+0x192/0x350 [ 12.118133] smp_apic_timer_interrupt+0x83/0x1c0 [ 12.118696] apic_timer_interrupt+0xf/0x20 [ 12.119174] WARNING: can't dereference registers at 00000000394dde74 for ip apic_timer_interrupt+0xf/0x20 [ 12.119175] [ 12.120550] [ 12.120751] Allocated by task 1511944392: [ 12.121216] BUG: unable to handle page fault for address: ffffffff8712da08 [ 12.122029] #PF: supervisor read access in kernel mode [ 12.122649] #PF: error_code(0x0000) - not-present page [ 12.123239] PGD 4212067 P4D 4212067 PUD 4213063 PMD 0 [ 12.123860] Thread overran stack, or stack corrupted [ 12.124534] Oops: 0000 [#1] SMP KASAN PTI [ 12.125009] CPU: 3 PID: 4772 Comm: kworker/3:2 Not tainted 5.3.0-rc4+ #35 [ 12.125816] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.11.0-0-g63451fca13-prebuilt.qemu-project.org 04/01/2014 [ 12.127172] Workqueue: usb_hub_wq hub_event [ 12.127689] RIP: 0010:stack_depot_fetch+0x10/0x30 [ 12.128227] Code: ff 48 8b 73 18 48 89 ef 5b 5d e9 4b bb bd ff 0f 0b 90 90 90 90 90 90 90 90 90 89 f8 c1 ef 11 25 ff ff 1f 00 81 e7 f0 3f 00 00 <48> 03 3c c5 00 96 16 86 48 8d 47 18 48 89 06 8b 47 0c c3 0f 1f 00 [ 12.130392] RSP: 0018:ffff88815b189d68 EFLAGS: 00010006 [ 12.131022] RAX: 00000000001f8881 RBX: ffff88815a1aa100 RCX: ffffffff812150de [ 12.131867] RDX: 0000000000000000 RSI: ffff88815b189d70 RDI: 0000000000003ff0 [ 12.132722] RBP: ffff88815a1a9ed0 R08: ffffed102b633ea3 R09: ffffed102b633ea3 [ 12.133554] R10: 0000000000000001 R11: ffffed102b633ea2 R12: ffff88815a9017c0 [ 12.134375] R13: ffff88815a1a9100 R14: ffff88815a1aa100 R15: ffff88815b1a5b00 [ 12.135209] FS: 0000000000000000(0000) GS:ffff88815b180000(0000) knlGS:0000000000000000 [ 12.136156] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 12.136845] CR2: ffffffff8712da08 CR3: 0000000152f26000 CR4: 00000000000006e0 [ 12.137688] Call Trace: [ 12.137977] [ 12.138218] print_track+0x35/0x6b [ 12.138647] print_address_description+0x335/0x390 [ 12.139200] ? tick_sched_handle+0x51/0x90 [ 12.139706] ? tick_sched_handle+0x51/0x90 [ 12.140177] __kasan_report+0x149/0x18d [ 12.140654] ? tick_sched_handle+0x51/0x90 [ 12.141126] kasan_report+0xe/0x20 [ 12.141557] tick_sched_handle+0x51/0x90 [ 12.142009] tick_sched_timer+0x32/0x90 [ 12.142486] __hrtimer_run_queues+0x1f5/0x450 [ 12.142986] ? tick_sched_do_timer+0x80/0x80 [ 12.143514] ? enqueue_hrtimer+0x100/0x100 [ 12.143986] ? kvm_clock_get_cycles+0xd/0x10 [ 12.144510] ? ktime_get_update_offsets_now+0xa4/0x160 [ 12.145097] hrtimer_interrupt+0x192/0x350 [ 12.145602] smp_apic_timer_interrupt+0x83/0x1c0 [ 12.146133] apic_timer_interrupt+0xf/0x20 [ 12.146637] [ 12.146885] Modules linked in: [ 12.147277] CR2: ffffffff8712da08 [ 12.147662] ---[ end trace 542cd123c33e7da5 ]--- [ 12.148203] RIP: 0010:stack_depot_fetch+0x10/0x30 [ 12.148765] Code: ff 48 8b 73 18 48 89 ef 5b 5d e9 4b bb bd ff 0f 0b 90 90 90 90 90 90 90 90 90 89 f8 c1 ef 11 25 ff ff 1f 00 81 e7 f0 3f 00 00 <48> 03 3c c5 00 96 16 86 48 8d 47 18 48 89 06 8b 47 0c c3 0f 1f 00 [ 12.150932] RSP: 0018:ffff88815b189d68 EFLAGS: 00010006 [ 12.151556] RAX: 00000000001f8881 RBX: ffff88815a1aa100 RCX: ffffffff812150de [ 12.152395] RDX: 0000000000000000 RSI: ffff88815b189d70 RDI: 0000000000003ff0 [ 12.153233] RBP: ffff88815a1a9ed0 R08: ffffed102b633ea3 R09: ffffed102b633ea3 [ 12.154039] R10: 0000000000000001 R11: ffffed102b633ea2 R12: ffff88815a9017c0 [ 12.154973] R13: ffff88815a1a9100 R14: ffff88815a1aa100 R15: ffff88815b1a5b00 [ 12.155830] FS: 0000000000000000(0000) GS:ffff88815b180000(0000) knlGS:0000000000000000 [ 12.156777] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 12.157473] CR2: ffffffff8712da08 CR3: 0000000152f26000 CR4: 00000000000006e0 [ 12.158320] Kernel panic - not syncing: Fatal exception in interrupt [ 12.159210] Kernel Offset: disabled [ 12.159642] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]---