netlink: 804 bytes leftover after parsing attributes in process `syz-executor.1'.
loop7: detected capacity change from 0 to 264192
loop4: detected capacity change from 0 to 264192
watchdog: BUG: soft lockup - CPU#1 stuck for 21s! [syz-executor.4:10150]
Modules linked in:
irq event stamp: 7254373
hardirqs last  enabled at (7254372): [<ffffffff8460144a>] asm_sysvec_apic_timer_interrupt+0x1a/0x20
hardirqs last disabled at (7254373): [<ffffffff8445e23f>] sysvec_apic_timer_interrupt+0xf/0x90
softirqs last  enabled at (7217260): [<ffffffff8118cfdc>] __irq_exit_rcu+0xcc/0x110
softirqs last disabled at (7217263): [<ffffffff8118cfdc>] __irq_exit_rcu+0xcc/0x110
CPU: 1 PID: 10150 Comm: syz-executor.4 Not tainted 6.2.0-rc6-next-20230203 #1
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
RIP: 0010:unwind_next_frame+0x1b5/0x2360
Code: 8d 52 ff 39 d3 0f 83 61 15 00 00 48 ba 00 00 00 00 00 fc ff df 89 d9 48 8d 3c 8d 38 78 4a 86 48 89 fe 48 c1 ee 03 0f b6 34 16 <48> 89 fa 83 e2 07 83 c2 03 40 38 f2 7c 1e 40 84 f6 74 19 48 89 4c
RSP: 0018:ffff88806cf09840 EFLAGS: 00000216
RAX: dffffc0000000000 RBX: 0000000000003870 RCX: 0000000000003870
RDX: dffffc0000000000 RSI: 0000000000000000 RDI: ffffffff864b59f8
RBP: ffff88806cf09910 R08: 0000000000000001 R09: ffff88806cf098f8
R10: 0000000000038001 R11: 0000000000000001 R12: ffff88806cf098f9
R13: ffff88806cf098b8 R14: 0000000000000001 R15: ffffffff8138704a
FS:  0000000000000000(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f82178c04a0 CR3: 00000000158ca000 CR4: 0000000000350ee0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
Call Trace:
 <IRQ>
 arch_stack_walk+0x87/0xf0
 stack_trace_save+0x90/0xd0
 kasan_save_stack+0x22/0x50
 __kasan_record_aux_stack+0x95/0xb0
 __call_rcu_common.constprop.0+0x6a/0xa70
 kmem_cache_free+0xb9/0x510
 kfree_skbmem+0xef/0x1b0
 consume_skb+0xd8/0x170
 mac80211_hwsim_tx_frame+0x1f6/0x2a0
 mac80211_hwsim_beacon_tx+0x567/0xb10
 __iterate_interfaces+0x2d3/0x580
 ieee80211_iterate_active_interfaces_atomic+0x73/0x1c0
 mac80211_hwsim_beacon+0x105/0x200
 __hrtimer_run_queues+0x54b/0xcb0
 hrtimer_run_softirq+0x14c/0x310
 __do_softirq+0x258/0x8a2
 __irq_exit_rcu+0xcc/0x110
 irq_exit_rcu+0x9/0x20
 sysvec_apic_timer_interrupt+0x6e/0x90
 </IRQ>
 <TASK>
 asm_sysvec_apic_timer_interrupt+0x1a/0x20
RIP: 0010:put_cpu_partial+0x107/0x1b0
Code: 39 45 28 75 5e 48 c7 45 28 00 00 00 00 48 c7 c6 32 19 7f 81 48 89 ef e8 87 27 ae ff 48 85 db 74 06 e8 3d 64 d3 ff fb 4d 85 f6 <74> 1e 5b 4c 89 f6 5d 4c 89 e7 41 5c 41 5d 41 5e 41 5f e9 92 fa ff
RSP: 0018:ffff88801c087260 EFLAGS: 00000246
RAX: 00000000006d05d7 RBX: 0000000000000200 RCX: ffffffff812c9dff
RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffff817f1953
RBP: ffff88806cf3dca0 R08: 0000000000000001 R09: ffffffff8769b96f
R10: fffffbfff0ed372d R11: 0000000000000001 R12: ffff88800844f780
R13: ffffea0000701740 R14: 0000000000000000 R15: 0000000000000005
 qlist_free_all+0x6d/0x1a0
 kasan_quarantine_reduce+0x199/0x230
 __kasan_slab_alloc+0x49/0x70
 kmem_cache_alloc+0x172/0x320
 __create_object+0x3c/0xc90
 kmem_cache_alloc+0x204/0x320
 start_this_handle+0x671/0x14d0
 jbd2__journal_start+0x394/0x6b0
 __ext4_journal_start_sb+0x4c2/0x6f0
 ext4_dirty_inode+0xa5/0x130
 __mark_inode_dirty+0x1aa/0xee0
 generic_update_time+0x21b/0x2b0
 file_modified_flags+0x2d4/0x330
 ext4_buffered_write_iter+0xf9/0x460
 ext4_file_write_iter+0x3ff/0x1930
 __kernel_write_iter+0x264/0x7b0
 __kernel_write+0xcb/0x110
 do_acct_process+0xd8a/0x1400
 acct_process+0x40c/0x570
 do_exit+0x1812/0x2800
 do_group_exit+0xd4/0x2a0
 get_signal+0x23c8/0x2450
 arch_do_signal_or_restart+0x79/0x590
 exit_to_user_mode_prepare+0xeb/0x180
 syscall_exit_to_user_mode+0x1d/0x50
 do_syscall_64+0x4c/0x90
 entry_SYSCALL_64_after_hwframe+0x72/0xdc
RIP: 0033:0x7fd68851e8d7
Code: Unable to access opcode bytes at 0x7fd68851e8ad.
RSP: 002b:00007fd685a93f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
RAX: 0000000000000000 RBX: 00007fd688568970 RCX: 00007fd68851e8d7
RDX: 0000000000000006 RSI: 0000000000004c00 RDI: 000000000000000a
RBP: 000000000000000a R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
R13: 0000000000000006 R14: 00000000200003f0 R15: 0000000000000002
 </TASK>
Sending NMI from CPU 1 to CPUs 0:
NMI backtrace for cpu 0 skipped: idling at default_idle+0xf/0x20
I/O error, dev loop4, sector 264064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
----------------
Code disassembly (best guess):
   0:	8d 52 ff             	lea    -0x1(%rdx),%edx
   3:	39 d3                	cmp    %edx,%ebx
   5:	0f 83 61 15 00 00    	jae    0x156c
   b:	48 ba 00 00 00 00 00 	movabs $0xdffffc0000000000,%rdx
  12:	fc ff df
  15:	89 d9                	mov    %ebx,%ecx
  17:	48 8d 3c 8d 38 78 4a 	lea    -0x79b587c8(,%rcx,4),%rdi
  1e:	86
  1f:	48 89 fe             	mov    %rdi,%rsi
  22:	48 c1 ee 03          	shr    $0x3,%rsi
  26:	0f b6 34 16          	movzbl (%rsi,%rdx,1),%esi
* 2a:	48 89 fa             	mov    %rdi,%rdx <-- trapping instruction
  2d:	83 e2 07             	and    $0x7,%edx
  30:	83 c2 03             	add    $0x3,%edx
  33:	40 38 f2             	cmp    %sil,%dl
  36:	7c 1e                	jl     0x56
  38:	40 84 f6             	test   %sil,%sil
  3b:	74 19                	je     0x56
  3d:	48                   	rex.W
  3e:	89                   	.byte 0x89
  3f:	4c                   	rex.WR