capability: warning: `syz-executor.1' uses deprecated v2 capabilities in a way that may be insecure
Unsupported ieee802154 address type: 0
Unsupported ieee802154 address type: 0
watchdog: BUG: soft lockup - CPU#1 stuck for 22s! [syz-executor.1:3937]
Modules linked in:
irq event stamp: 5093783
hardirqs last  enabled at (5093782): [<ffffffff84000d02>] asm_sysvec_apic_timer_interrupt+0x12/0x20 arch/x86/include/asm/idtentry.h:635
hardirqs last disabled at (5093783): [<ffffffff83e7a19b>] sysvec_apic_timer_interrupt+0xb/0xa0 arch/x86/kernel/apic/apic.c:1106
softirqs last  enabled at (5093140): [<ffffffff84001092>] asm_call_irq_on_stack+0x12/0x20
softirqs last disabled at (5093143): [<ffffffff84001092>] asm_call_irq_on_stack+0x12/0x20
CPU: 1 PID: 3937 Comm: syz-executor.1 Not tainted 5.10.238 #1
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
RIP: 0010:__sanitizer_cov_trace_const_cmp4+0x4/0x20 kernel/kcov.c:284
Code: 84 00 00 00 00 00 48 8b 0c 24 0f b7 d6 0f b7 f7 bf 03 00 00 00 e9 cc fe ff ff 66 66 2e 0f 1f 84 00 00 00 00 00 90 48 8b 0c 24 <89> f2 89 fe bf 05 00 00 00 e9 ae fe ff ff 66 66 2e 0f 1f 84 00 00
RSP: 0018:ffff88806cf09a38 EFLAGS: 00000246
RAX: 0000000000000007 RBX: ffff8880378e9688 RCX: ffffffff81f301ab
RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
RBP: 0000000000000001 R08: 0000000000000000 R09: ffffffff8686e6a7
R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000001
R13: ffff8880378e8d00 R14: ffff8880378e9688 R15: ffff88800dbe7d00
FS:  00007fd7222aa700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000000000000010c CR3: 00000000496ee000 CR4: 0000000000350ee0
Call Trace:
 <IRQ>
 lockdep_rht_mutex_is_held+0x4b/0xa0 lib/rhashtable.c:49
 __rhashtable_lookup+0x509/0x7d0 include/linux/rhashtable.h:594
 rhltable_lookup include/linux/rhashtable.h:688 [inline]
 sta_info_hash_lookup net/mac80211/sta_info.c:162 [inline]
 sta_info_get_bss+0x12d/0x470 net/mac80211/sta_info.c:199
 __ieee80211_rx_handle_packet net/mac80211/rx.c:4725 [inline]
 ieee80211_rx_list+0xdb0/0x2370 net/mac80211/rx.c:4846
 ieee80211_rx_napi+0xdc/0x3c0 net/mac80211/rx.c:4867
 ieee80211_rx include/net/mac80211.h:4502 [inline]
 ieee80211_tasklet_handler+0xd3/0x130 net/mac80211/main.c:237
 tasklet_action_common.constprop.0+0x244/0x2f0 kernel/softirq.c:560
 __do_softirq+0x1b8/0x7c9 kernel/softirq.c:298
 asm_call_irq_on_stack+0x12/0x20
 </IRQ>
 __run_on_irqstack arch/x86/include/asm/irq_stack.h:26 [inline]
 run_on_irqstack_cond arch/x86/include/asm/irq_stack.h:77 [inline]
 do_softirq_own_stack+0x80/0xa0 arch/x86/kernel/irq_64.c:77
 invoke_softirq kernel/softirq.c:393 [inline]
 __irq_exit_rcu kernel/softirq.c:423 [inline]
 irq_exit_rcu+0x114/0x1b0 kernel/softirq.c:435
 sysvec_apic_timer_interrupt+0x43/0xa0 arch/x86/kernel/apic/apic.c:1106
 asm_sysvec_apic_timer_interrupt+0x12/0x20 arch/x86/include/asm/idtentry.h:635
RIP: 0010:compound_head include/linux/page-flags.h:188 [inline]
RIP: 0010:virt_to_head_page include/linux/mm.h:862 [inline]
RIP: 0010:qlink_to_cache mm/kasan/quarantine.c:130 [inline]
RIP: 0010:qlist_free_all+0x91/0xe0 mm/kasan/quarantine.c:167
Code: 75 cc 48 89 f0 4c 01 e8 72 5a 4c 89 f2 48 2b 15 d5 21 5c 03 48 01 d0 48 c1 e8 0c 48 c1 e0 06 48 03 05 b3 21 5c 03 48 8b 50 08 <48> 8d 4a ff 83 e2 01 48 0f 45 c1 48 8b 78 18 eb 93 49 c7 44 24 08
RSP: 0018:ffff888049777628 EFLAGS: 00000282
RAX: ffffea000072f680 RBX: 0000000000000000 RCX: ffffea000036f500
RDX: ffffea0000381f80 RSI: ffff88801cbdad80 RDI: 0000000000000000
RBP: dffffc0000000000 R08: 0000000000000011 R09: ffffffff816cd901
R10: ffff88800e2f2d80 R11: 0000000000000001 R12: ffff888049777660
R13: 0000000080000000 R14: ffffffff80000000 R15: ffff88801cbdad80
 quarantine_reduce+0x184/0x210 mm/kasan/quarantine.c:267
 __kasan_kmalloc.constprop.0+0xa2/0xd0 mm/kasan/common.c:442
 slab_post_alloc_hook mm/slab.h:532 [inline]
 slab_alloc_node mm/slub.c:2896 [inline]
 slab_alloc mm/slub.c:2904 [inline]
 __kmalloc+0x150/0x390 mm/slub.c:3967
 kmalloc include/linux/slab.h:557 [inline]
 kzalloc include/linux/slab.h:664 [inline]
 __register_sysctl_table+0x112/0x1090 fs/proc/proc_sysctl.c:1319
 netfilter_log_sysctl_init net/netfilter/nf_log.c:501 [inline]
 nf_log_net_init+0x101/0x370 net/netfilter/nf_log.c:550
 ops_init+0xbb/0x6b0 net/core/net_namespace.c:156
 setup_net+0x2f4/0x900 net/core/net_namespace.c:348
 copy_net_ns+0x2c0/0x5d0 net/core/net_namespace.c:518
 create_new_namespaces+0x3f6/0xb20 kernel/nsproxy.c:110
 copy_namespaces+0x3fb/0x4f0 kernel/nsproxy.c:179
 copy_process+0x393a/0x78b0 kernel/fork.c:2214
 kernel_clone+0xe7/0x980 kernel/fork.c:2582
 __do_sys_clone3+0x1e5/0x320 kernel/fork.c:2857
 do_syscall_64+0x33/0x40 arch/x86/entry/common.c:46
 entry_SYSCALL_64_after_hwframe+0x67/0xd1
RIP: 0033:0x7fd724d34b19
Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007fd7222aa188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
RAX: ffffffffffffffda RBX: 00007fd724e47f60 RCX: 00007fd724d34b19
RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200001c0
RBP: 00007fd724d8ef6d R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ffcbaa0f6ef R14: 00007fd7222aa300 R15: 0000000000022000
Sending NMI from CPU 1 to CPUs 0:
NMI backtrace for cpu 0 skipped: idling at native_safe_halt arch/x86/include/asm/irqflags.h:60 [inline]
NMI backtrace for cpu 0 skipped: idling at arch_safe_halt arch/x86/include/asm/irqflags.h:103 [inline]
NMI backtrace for cpu 0 skipped: idling at default_idle+0xe/0x20 arch/x86/kernel/process.c:711
----------------
Code disassembly (best guess):
   0:	84 00                	test   %al,(%rax)
   2:	00 00                	add    %al,(%rax)
   4:	00 00                	add    %al,(%rax)
   6:	48 8b 0c 24          	mov    (%rsp),%rcx
   a:	0f b7 d6             	movzwl %si,%edx
   d:	0f b7 f7             	movzwl %di,%esi
  10:	bf 03 00 00 00       	mov    $0x3,%edi
  15:	e9 cc fe ff ff       	jmpq   0xfffffee6
  1a:	66 66 2e 0f 1f 84 00 	data16 nopw %cs:0x0(%rax,%rax,1)
  21:	00 00 00 00
  25:	90                   	nop
  26:	48 8b 0c 24          	mov    (%rsp),%rcx
* 2a:	89 f2                	mov    %esi,%edx <-- trapping instruction
  2c:	89 fe                	mov    %edi,%esi
  2e:	bf 05 00 00 00       	mov    $0x5,%edi
  33:	e9 ae fe ff ff       	jmpq   0xfffffee6
  38:	66                   	data16
  39:	66                   	data16
  3a:	2e                   	cs
  3b:	0f                   	.byte 0xf
  3c:	1f                   	(bad)
  3d:	84 00                	test   %al,(%rax)