ext4: Unknown parameter 'no'
watchdog: BUG: soft lockup - CPU#0 stuck for 26s! [syz-executor.5:9521]
Modules linked in:
irq event stamp: 4319567
hardirqs last  enabled at (4319566): [<ffffffff8482356b>] irqentry_exit+0x3b/0x90
hardirqs last disabled at (4319567): [<ffffffff84821f2f>] sysvec_apic_timer_interrupt+0xf/0x80
softirqs last  enabled at (4288174): [<ffffffff811a7dec>] handle_softirqs+0x50c/0x770
softirqs last disabled at (4288177): [<ffffffff811a87f4>] irq_exit_rcu+0x94/0xc0
CPU: 0 UID: 0 PID: 9521 Comm: syz-executor.5 Not tainted 6.12.0-rc3-next-20241016 #1
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
RIP: 0010:lock_acquire+0x0/0xc0
Code: fe ff ff 48 c7 c7 b4 34 3f 86 e8 fb 33 5b 00 e9 65 ff ff ff 66 0f 1f 44 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <f3> 0f 1e fa 41 57 41 56 41 89 ce 41 55 41 89 d5 41 54 41 89 f4 55
RSP: 0018:ffff88806ce09860 EFLAGS: 00000246
RAX: 0000000000000301 RBX: dffffc0000000000 RCX: 0000000000000000
RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff8880160816d0
RBP: ffff8880160816b8 R08: 0000000000000001 R09: 0000000000000000
R10: 0000000000000080 R11: 00000000000c2f81 R12: 0000000000000001
R13: ffff88806ce09b88 R14: ffff88803d9e0000 R15: ffff88806ce09d78
FS:  00007faa558da700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000555586e5a098 CR3: 0000000009866000 CR4: 0000000000350ef0
Call Trace:
 <IRQ>
 _raw_spin_lock_bh+0x33/0x40
 ieee80211_rx_handlers+0xc9/0x9100
 ieee80211_prepare_and_rx_handle+0x1f7f/0x5d50
 ieee80211_rx_for_interface+0x10e/0x200
 ieee80211_rx_list+0x1e54/0x2cf0
 ieee80211_rx_napi+0xdc/0x3b0
 ieee80211_handle_queued_frames+0xd9/0x130
 tasklet_action_common+0x235/0x3b0
 handle_softirqs+0x1b1/0x770
 irq_exit_rcu+0x94/0xc0
 sysvec_apic_timer_interrupt+0x70/0x80
 </IRQ>
 <TASK>
 asm_sysvec_apic_timer_interrupt+0x1a/0x20
RIP: 0010:qlist_free_all+0x25/0x160
Code: 90 90 90 90 90 48 8b 07 48 85 c0 0f 84 41 01 00 00 41 57 41 56 41 55 49 89 fd 41 54 49 89 f4 55 53 eb 3e 48 63 95 c0 00 00 00 <48> 8b 18 48 89 ef 48 29 d0 48 89 c6 49 89 c6 e8 e7 f0 ff ff 49 89
RSP: 0018:ffff88801916fdb0 EFLAGS: 00000246
RAX: ffff888015cde8a0 RBX: ffff888015cde8a0 RCX: ffffea0000573780
RDX: 0000000000000000 RSI: ffff888008fec3c0 RDI: 0000000000080000
RBP: ffff888008fec3c0 R08: ffff888018c2cb40 R09: 00000000000c0008
R10: ffffea0000630b00 R11: 00000000000007e0 R12: 0000000000000000
R13: ffff88801916fde8 R14: ffff888018c2cb40 R15: ffff888018c2cb40
 kasan_quarantine_reduce+0x19c/0x230
 __kasan_slab_alloc+0x49/0x70
 kmem_cache_alloc_noprof+0x13d/0x3d0
 getname_flags.part.0+0x48/0x550
 getname_flags+0x95/0xe0
 __x64_sys_mkdirat+0x77/0xb0
 do_syscall_64+0xbf/0x1d0
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7faa58385b19
Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007faa558da188 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
RAX: ffffffffffffffda RBX: 00007faa58499020 RCX: 00007faa58385b19
RDX: 00000000000001ff RSI: 00000000200001c0 RDI: ffffffffffffff9c
RBP: 00007faa583dff6d R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ffc629b911f R14: 00007faa558da300 R15: 0000000000022000
 </TASK>
Sending NMI from CPU 0 to CPUs 1:
NMI backtrace for cpu 1 skipped: idling at default_idle+0x1e/0x30
hpet: Lost 1 RTC interrupts
9pnet: Could not find request transport: fd5ª³’$4í†+zåAø^åð€@WÌŽ"€Ül@æq£ô™Í¸ß¡GªÇ‡Bëë*À}æ
loop0: detected capacity change from 0 to 40
9pnet: Could not find request transport: fd5ª³’$4í†+zåAø^åð€@WÌŽ"€Ül@æq£ô™Í¸ß¡GªÇ‡Bëë*À}æ
loop0: detected capacity change from 0 to 40
loop1: detected capacity change from 0 to 40
9pnet: Could not find request transport: fd5ª³’$4í†+zåAø^åð€@WÌŽ"€Ül@æq£ô™Í¸ß¡GªÇ‡Bëë*À}æ
9pnet: Could not find request transport: fd5ª³’$4í†+zåAø^åð€@WÌŽ"€Ül@æq£ô™Í¸ß¡GªÇ‡Bëë*À}æ
loop1: detected capacity change from 0 to 40
syz-executor.1: attempt to access beyond end of device
loop1: rw=2049, sector=40, nr_sectors = 4 limit=40
Buffer I/O error on dev loop1, logical block 10, lost async page write
loop0: detected capacity change from 0 to 40
vfat: Unknown parameter './file0'
loop1: detected capacity change from 0 to 40
syz-executor.1: attempt to access beyond end of device
loop1: rw=2049, sector=40, nr_sectors = 4 limit=40
Buffer I/O error on dev loop1, logical block 10, lost async page write
syz-executor.1: attempt to access beyond end of device
loop1: rw=0, sector=28, nr_sectors = 16 limit=40
netlink: 'syz-executor.5': attribute type 1 has an invalid length.
netlink: 'syz-executor.5': attribute type 1 has an invalid length.
netlink: 'syz-executor.5': attribute type 1 has an invalid length.
netlink: 'syz-executor.5': attribute type 1 has an invalid length.
netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
audit: type=1400 audit(2000000152.858:17): avc:  denied  { read } for  pid=9819 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
netlink: 20 bytes leftover after parsing attributes in process `syz-executor.1'.
netlink: 20 bytes leftover after parsing attributes in process `syz-executor.1'.
netlink: 20 bytes leftover after parsing attributes in process `syz-executor.1'.
netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
netlink: 20 bytes leftover after parsing attributes in process `syz-executor.1'.
netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
netlink: 20 bytes leftover after parsing attributes in process `syz-executor.1'.
netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
mac80211_hwsim hwsim13 wlan1: entered allmulticast mode
mac80211_hwsim hwsim13 wlan1: left allmulticast mode
mac80211_hwsim hwsim13 wlan1: entered allmulticast mode
mac80211_hwsim hwsim13 wlan1: left allmulticast mode
----------------
Code disassembly (best guess), 3 bytes skipped:
   0:	48 c7 c7 b4 34 3f 86 	mov    $0xffffffff863f34b4,%rdi
   7:	e8 fb 33 5b 00       	callq  0x5b3407
   c:	e9 65 ff ff ff       	jmpq   0xffffff76
  11:	66 0f 1f 44 00 00    	nopw   0x0(%rax,%rax,1)
  17:	90                   	nop
  18:	90                   	nop
  19:	90                   	nop
  1a:	90                   	nop
  1b:	90                   	nop
  1c:	90                   	nop
  1d:	90                   	nop
  1e:	90                   	nop
  1f:	90                   	nop
  20:	90                   	nop
  21:	90                   	nop
  22:	90                   	nop
  23:	90                   	nop
  24:	90                   	nop
  25:	90                   	nop
  26:	90                   	nop
* 27:	f3 0f 1e fa          	endbr64 <-- trapping instruction
  2b:	41 57                	push   %r15
  2d:	41 56                	push   %r14
  2f:	41 89 ce             	mov    %ecx,%r14d
  32:	41 55                	push   %r13
  34:	41 89 d5             	mov    %edx,%r13d
  37:	41 54                	push   %r12
  39:	41 89 f4             	mov    %esi,%r12d
  3c:	55                   	push   %rbp