FAT-fs (loop4): Directory bread(block 9) failed FAT-fs (loop3): Unrecognized mount option "xߚ*S۝}V) Dt~njsjR::r@;y  -" or missing value Bluetooth: hci4: command 0x0406 tx timeout watchdog: BUG: soft lockup - CPU#0 stuck for 22s! [syz-executor.0:4984] Modules linked in: irq event stamp: 9662827 hardirqs last enabled at (9662826): [] asm_sysvec_apic_timer_interrupt+0x12/0x20 arch/x86/include/asm/idtentry.h:635 hardirqs last disabled at (9662827): [] sysvec_apic_timer_interrupt+0xb/0xa0 arch/x86/kernel/apic/apic.c:1095 softirqs last enabled at (9661684): [] asm_call_irq_on_stack+0x12/0x20 softirqs last disabled at (9661687): [] asm_call_irq_on_stack+0x12/0x20 CPU: 0 PID: 4984 Comm: syz-executor.0 Not tainted 5.10.148 #1 Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 RIP: 0010:lock_is_held_type+0xd2/0x110 kernel/locking/lockdep.c:5609 Code: 31 c0 41 f6 47 22 03 0f 95 c0 45 31 c0 44 39 f0 41 0f 94 c0 b8 ff ff ff ff 65 0f c1 05 87 60 22 7c 83 f8 01 75 27 ff 34 24 9d <48> 83 c4 08 44 89 c0 5b 5d 41 5c 41 5d 41 5e 41 5f e9 a8 20 40 00 RSP: 0018:ffff88806ce09898 EFLAGS: 00000246 RAX: 0000000000000001 RBX: 0000000000000002 RCX: 0000000000000001 RDX: 0000000000000000 RSI: ffffffff84ff80a0 RDI: ffff88800cb28900 RBP: ffffffff84ff80a0 R08: 0000000000000001 R09: ffff8880449f8d5f R10: 0000000000000000 R11: 0000000000000001 R12: ffff88800cb28000 R13: ffff88800cb288b0 R14: 00000000ffffffff R15: ffff88800cb28900 FS: 00007f816169e700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 0000564497bc2ff8 CR3: 00000000460ec000 CR4: 0000000000350ef0 Call Trace: ieee80211_rx_get_bigtk+0xd2/0x440 net/mac80211/rx.c:1883 ieee80211_rx_h_decrypt net/mac80211/rx.c:2019 [inline] ieee80211_rx_handlers+0x35ea/0xa250 net/mac80211/rx.c:3865 ieee80211_invoke_rx_handlers net/mac80211/rx.c:3917 [inline] ieee80211_prepare_and_rx_handle+0x17d4/0x5850 net/mac80211/rx.c:4604 __ieee80211_rx_handle_packet net/mac80211/rx.c:4665 [inline] ieee80211_rx_list+0xdd0/0x2350 net/mac80211/rx.c:4845 ieee80211_rx_napi+0xdd/0x380 net/mac80211/rx.c:4866 ieee80211_rx include/net/mac80211.h:4502 [inline] ieee80211_tasklet_handler+0xd3/0x130 net/mac80211/main.c:235 tasklet_action_common.constprop.0+0x244/0x2f0 kernel/softirq.c:560 __do_softirq+0x1b8/0x86b kernel/softirq.c:298 asm_call_irq_on_stack+0x12/0x20 __run_on_irqstack arch/x86/include/asm/irq_stack.h:26 [inline] run_on_irqstack_cond arch/x86/include/asm/irq_stack.h:77 [inline] do_softirq_own_stack+0x80/0xa0 arch/x86/kernel/irq_64.c:77 invoke_softirq kernel/softirq.c:393 [inline] __irq_exit_rcu kernel/softirq.c:423 [inline] irq_exit_rcu+0x114/0x1b0 kernel/softirq.c:435 sysvec_apic_timer_interrupt+0x43/0xa0 arch/x86/kernel/apic/apic.c:1095 asm_sysvec_apic_timer_interrupt+0x12/0x20 arch/x86/include/asm/idtentry.h:635 RIP: 0010:mem_cgroup_lruvec include/linux/memcontrol.h:488 [inline] RIP: 0010:mod_objcg_state mm/slab.h:312 [inline] RIP: 0010:memcg_slab_free_hook mm/slab.h:383 [inline] RIP: 0010:memcg_slab_free_hook mm/slab.h:351 [inline] RIP: 0010:do_slab_free mm/slub.c:3105 [inline] RIP: 0010:___cache_free+0x185/0x340 mm/slub.c:3156 Code: 48 8b 45 10 0f 1f 44 00 00 49 63 95 40 35 00 00 48 85 c0 48 0f 44 05 22 80 fb 03 48 8b bc d0 70 0b 00 00 4c 3b af 80 00 00 00 <0f> 85 c3 00 00 00 9c 41 5d fa 41 f7 c5 00 02 00 00 0f 85 43 01 00 RSP: 0018:ffff88803e68f640 EFLAGS: 00000246 RAX: ffff888009340000 RBX: ffff88800e2cdc00 RCX: 000000003005d541 RDX: 0000000000000000 RSI: 0df4001b1e3e5b0d RDI: ffff88800e880800 RBP: ffff88800d10db00 R08: 0000000000000000 R09: ffffffff86797667 R10: 0000000000000246 R11: 0000000000000001 R12: ffff888007fe3000 R13: ffff88807ffdc000 R14: 0000000000000006 R15: 00000000fffffef8 qlink_free mm/kasan/quarantine.c:151 [inline] qlist_free_all+0x59/0xe0 mm/kasan/quarantine.c:170 quarantine_reduce+0x184/0x210 mm/kasan/quarantine.c:267 __kasan_kmalloc.constprop.0+0xa2/0xd0 mm/kasan/common.c:442 kmalloc include/linux/slab.h:557 [inline] kzalloc include/linux/slab.h:664 [inline] new_dir fs/proc/proc_sysctl.c:955 [inline] get_subdir fs/proc/proc_sysctl.c:1000 [inline] __register_sysctl_table+0x92b/0x1090 fs/proc/proc_sysctl.c:1343 __addrconf_sysctl_register+0x1db/0x3e0 net/ipv6/addrconf.c:6967 addrconf_init_net+0x38f/0x640 net/ipv6/addrconf.c:7078 ops_init net/core/net_namespace.c:152 [inline] setup_net+0x377/0x970 net/core/net_namespace.c:344 copy_net_ns+0x2ca/0x5e0 net/core/net_namespace.c:485 create_new_namespaces+0x3f6/0xb20 kernel/nsproxy.c:110 copy_namespaces+0x39e/0x480 kernel/nsproxy.c:179 copy_process+0x2463/0x66f0 kernel/fork.c:2109 kernel_clone+0xe7/0xa20 kernel/fork.c:2467 __do_sys_clone3+0x1e5/0x320 kernel/fork.c:2742 do_syscall_64+0x33/0x40 arch/x86/entry/common.c:46 entry_SYSCALL_64_after_hwframe+0x61/0xc6 RIP: 0033:0x7f8164128b19 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007f816169e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 RAX: ffffffffffffffda RBX: 00007f816423bf60 RCX: 00007f8164128b19 RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000200 RBP: 00007f8164182f6d R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 00007fff5f09e1df R14: 00007f816169e300 R15: 0000000000022000 Sending NMI from CPU 0 to CPUs 1: NMI backtrace for cpu 1 skipped: idling at native_safe_halt arch/x86/include/asm/irqflags.h:60 [inline] NMI backtrace for cpu 1 skipped: idling at arch_safe_halt arch/x86/include/asm/irqflags.h:103 [inline] NMI backtrace for cpu 1 skipped: idling at default_idle+0xe/0x20 arch/x86/kernel/process.c:689 ---------------- Code disassembly (best guess): 0: 31 c0 xor %eax,%eax 2: 41 f6 47 22 03 testb $0x3,0x22(%r15) 7: 0f 95 c0 setne %al a: 45 31 c0 xor %r8d,%r8d d: 44 39 f0 cmp %r14d,%eax 10: 41 0f 94 c0 sete %r8b 14: b8 ff ff ff ff mov $0xffffffff,%eax 19: 65 0f c1 05 87 60 22 xadd %eax,%gs:0x7c226087(%rip) # 0x7c2260a8 20: 7c 21: 83 f8 01 cmp $0x1,%eax 24: 75 27 jne 0x4d 26: ff 34 24 pushq (%rsp) 29: 9d popfq * 2a: 48 83 c4 08 add $0x8,%rsp <-- trapping instruction 2e: 44 89 c0 mov %r8d,%eax 31: 5b pop %rbx 32: 5d pop %rbp 33: 41 5c pop %r12 35: 41 5d pop %r13 37: 41 5e pop %r14 39: 41 5f pop %r15 3b: e9 a8 20 40 00 jmpq 0x4020e8