syzkaller login: [ 91.693927][ T785] cfg80211: failed to load regulatory.db
Warning: Permanently added '[localhost]:17222' (ED25519) to the list of known hosts.
executing program
[ 132.030755][ T5110] loop0: detected capacity change from 0 to 128
[ 132.065235][ T5110] VFS: Found a Xenix FS (block size = 1024) on device loop0
[ 132.088571][ T5110] syz-executor267: attempt to access beyond end of device
[ 132.088571][ T5110] loop0: rw=0, sector=6491536, nr_sectors = 2 limit=128
[ 132.102691][ T5110] Buffer I/O error on dev loop0, logical block 3245768, async page read
[ 132.105980][ T5110] syz-executor267: attempt to access beyond end of device
[ 132.105980][ T5110] loop0: rw=0, sector=17666806, nr_sectors = 2 limit=128
[ 132.111080][ T5110] Buffer I/O error on dev loop0, logical block 8833403, async page read
[ 132.129225][ T5110] syz-executor267: attempt to access beyond end of device
[ 132.129225][ T5110] loop0: rw=0, sector=26539618, nr_sectors = 2 limit=128
[ 132.140545][ T5110] Buffer I/O error on dev loop0, logical block 13269809, async page read
[ 132.143944][ T5110] syz-executor267: attempt to access beyond end of device
[ 132.143944][ T5110] loop0: rw=0, sector=16147212, nr_sectors = 2 limit=128
[ 132.148797][ T5110] Buffer I/O error on dev loop0, logical block 8073606, async page read
[ 132.162342][ T5110] syz-executor267: attempt to access beyond end of device
[ 132.162342][ T5110] loop0: rw=0, sector=6491542, nr_sectors = 2 limit=128
[ 132.167763][ T5110] Buffer I/O error on dev loop0, logical block 3245771, async page read
[ 132.171045][ T5110] syz-executor267: attempt to access beyond end of device
[ 132.171045][ T5110] loop0: rw=0, sector=17668342, nr_sectors = 2 limit=128
[ 132.193207][ T5110] Buffer I/O error on dev loop0, logical block 8834171, async page read
[ 132.196463][ T5110] syz-executor267: attempt to access beyond end of device
[ 132.196463][ T5110] loop0: rw=0, sector=26932834, nr_sectors = 2 limit=128
[ 132.213222][ T5110] Buffer I/O error on dev loop0, logical block 13466417, async page read
[ 132.216468][ T5110] syz-executor267: attempt to access beyond end of device
[ 132.216468][ T5110] loop0: rw=0, sector=16147212, nr_sectors = 2 limit=128
[ 132.227818][ T5110] Buffer I/O error on dev loop0, logical block 8073606, async page read
[ 132.238033][ T5110] syz-executor267: attempt to access beyond end of device
[ 132.238033][ T5110] loop0: rw=0, sector=6491548, nr_sectors = 2 limit=128
[ 132.248974][ T5110] Buffer I/O error on dev loop0, logical block 3245774, async page read
[ 132.253844][ T5110] syz-executor267: attempt to access beyond end of device
[ 132.253844][ T5110] loop0: rw=0, sector=17669878, nr_sectors = 2 limit=128
[ 132.271116][ T5110] Buffer I/O error on dev loop0, logical block 8834939, async page read
[ 224.026226][ T5110] ------------[ cut here ]------------
[ 224.028230][ T5110] WARNING: CPU: 0 PID: 5110 at fs/inode.c:391 inc_nlink+0x127/0x150
[ 224.030963][ T5110] Modules linked in:
[ 224.032489][ T5110] CPU: 0 UID: 0 PID: 5110 Comm: syz-executor267 Not tainted 6.11.0-syzkaller-07341-gbaeb9a7d8b60 #0
[ 224.037271][ T5110] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 224.041179][ T5110] RIP: 0010:inc_nlink+0x127/0x150
[ 224.043202][ T5110] Code: ff e9 35 ff ff ff 44 89 e9 80 e1 07 80 c1 03 38 c1 0f 8c 47 ff ff ff 4c 89 ef e8 54 9a e6 ff e9 3a ff ff ff e8 1a 11 7f ff 90 <0f> 0b 90 e9 7b ff ff ff 44 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 49
[ 224.050469][ T5110] RSP: 0018:ffffc90002e3fd30 EFLAGS: 00010293
[ 224.052880][ T5110] RAX: ffffffff8215ae06 RBX: 1ffff110082ea810 RCX: ffff888000b7c880
[ 224.055944][ T5110] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 224.059116][ T5110] RBP: 0000000000000000 R08: ffffffff8215ad80 R09: 1ffff1100359a3a0
[ 224.062311][ T5110] R10: dffffc0000000000 R11: ffffffff82c44840 R12: dffffc0000000000
[ 224.065780][ T5110] R13: ffff888041754080 R14: ffff888041754038 R15: 0000000000000000
[ 224.069299][ T5110] FS: 0000555581a91380(0000) GS:ffff88801fe00000(0000) knlGS:0000000000000000
[ 224.073303][ T5110] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 224.076199][ T5110] CR2: 00007f379ca2596e CR3: 000000001f874000 CR4: 0000000000350ef0
[ 224.079527][ T5110] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 224.082799][ T5110] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 224.085620][ T5110] Call Trace:
[ 224.086981][ T5110]
[ 224.088125][ T5110] ? __warn+0x168/0x4e0
[ 224.089727][ T5110] ? inc_nlink+0x127/0x150
[ 224.091246][ T5110] ? report_bug+0x2b3/0x500
[ 224.092931][ T5110] ? inc_nlink+0x127/0x150
[ 224.094299][ T5110] ? handle_bug+0x60/0x90
[ 224.095623][ T5110] ? exc_invalid_op+0x1a/0x50
[ 224.097086][ T5110] ? asm_exc_invalid_op+0x1a/0x20
[ 224.098815][ T5110] ? __pfx_sysv_mkdir+0x10/0x10
[ 224.101316][ T5110] ? inc_nlink+0xa0/0x150
[ 224.102638][ T5110] ? inc_nlink+0x126/0x150
[ 224.103905][ T5110] ? inc_nlink+0x127/0x150
[ 224.105311][ T5110] sysv_mkdir+0x21/0x130
[ 224.106654][ T5110] vfs_mkdir+0x2f9/0x4f0
[ 224.108046][ T5110] do_mkdirat+0x264/0x3a0
[ 224.109465][ T5110] ? __check_object_size+0x49c/0x900
[ 224.111446][ T5110] ? __might_fault+0xc6/0x120
[ 224.113414][ T5110] ? __pfx_do_mkdirat+0x10/0x10
[ 224.115154][ T5110] ? getname_flags+0x1e3/0x540
[ 224.116850][ T5110] __x64_sys_mkdirat+0x87/0xa0
[ 224.118640][ T5110] do_syscall_64+0xf3/0x230
[ 224.120253][ T5110] ? clear_bhb_loop+0x35/0x90
[ 224.122059][ T5110] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 224.124202][ T5110] RIP: 0033:0x7f5830239569
[ 224.125850][ T5110] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 224.132792][ T5110] RSP: 002b:00007fff9b9375d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[ 224.135844][ T5110] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f5830239569
[ 224.138879][ T5110] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000004
[ 224.142010][ T5110] RBP: 00007f58302b65f0 R08: 0000555581a924c0 R09: 0000555581a924c0
[ 224.145318][ T5110] R10: 0000000000009e7f R11: 0000000000000246 R12: 00007fff9b937600
[ 224.148235][ T5110] R13: 00007fff9b937828 R14: 431bde82d7b634db R15: 00007f583028203b
[ 224.150900][ T5110]
[ 224.151902][ T5110] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 224.154352][ T5110] CPU: 0 UID: 0 PID: 5110 Comm: syz-executor267 Not tainted 6.11.0-syzkaller-07341-gbaeb9a7d8b60 #0
[ 224.157845][ T5110] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 224.161612][ T5110] Call Trace:
[ 224.162834][ T5110]
[ 224.163817][ T5110] dump_stack_lvl+0x241/0x360
[ 224.165482][ T5110] ? __pfx_dump_stack_lvl+0x10/0x10
[ 224.167285][ T5110] ? __pfx__printk+0x10/0x10
[ 224.169021][ T5110] ? _printk+0xd5/0x120
[ 224.170579][ T5110] ? __init_begin+0x41000/0x41000
[ 224.172462][ T5110] ? vscnprintf+0x5d/0x90
[ 224.174079][ T5110] panic+0x349/0x880
[ 224.175450][ T5110] ? __warn+0x177/0x4e0
[ 224.176901][ T5110] ? __pfx_panic+0x10/0x10
[ 224.178464][ T5110] ? show_trace_log_lvl+0x3b2/0x410
[ 224.180198][ T5110] __warn+0x34b/0x4e0
[ 224.181553][ T5110] ? inc_nlink+0x127/0x150
[ 224.183129][ T5110] report_bug+0x2b3/0x500
[ 224.184634][ T5110] ? inc_nlink+0x127/0x150
[ 224.186129][ T5110] handle_bug+0x60/0x90
[ 224.187429][ T5110] exc_invalid_op+0x1a/0x50
[ 224.188870][ T5110] asm_exc_invalid_op+0x1a/0x20
[ 224.190481][ T5110] RIP: 0010:inc_nlink+0x127/0x150
[ 224.192401][ T5110] Code: ff e9 35 ff ff ff 44 89 e9 80 e1 07 80 c1 03 38 c1 0f 8c 47 ff ff ff 4c 89 ef e8 54 9a e6 ff e9 3a ff ff ff e8 1a 11 7f ff 90 <0f> 0b 90 e9 7b ff ff ff 44 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 49
[ 224.199386][ T5110] RSP: 0018:ffffc90002e3fd30 EFLAGS: 00010293
[ 224.201944][ T5110] RAX: ffffffff8215ae06 RBX: 1ffff110082ea810 RCX: ffff888000b7c880
[ 224.205059][ T5110] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 224.208289][ T5110] RBP: 0000000000000000 R08: ffffffff8215ad80 R09: 1ffff1100359a3a0
[ 224.211735][ T5110] R10: dffffc0000000000 R11: ffffffff82c44840 R12: dffffc0000000000
[ 224.214961][ T5110] R13: ffff888041754080 R14: ffff888041754038 R15: 0000000000000000
[ 224.217732][ T5110] ? __pfx_sysv_mkdir+0x10/0x10
[ 224.219556][ T5110] ? inc_nlink+0xa0/0x150
[ 224.221151][ T5110] ? inc_nlink+0x126/0x150
[ 224.222746][ T5110] sysv_mkdir+0x21/0x130
[ 224.224186][ T5110] vfs_mkdir+0x2f9/0x4f0
[ 224.225623][ T5110] do_mkdirat+0x264/0x3a0
[ 224.227114][ T5110] ? __check_object_size+0x49c/0x900
[ 224.228940][ T5110] ? __might_fault+0xc6/0x120
[ 224.230539][ T5110] ? __pfx_do_mkdirat+0x10/0x10
[ 224.232173][ T5110] ? getname_flags+0x1e3/0x540
[ 224.233934][ T5110] __x64_sys_mkdirat+0x87/0xa0
[ 224.235441][ T5110] do_syscall_64+0xf3/0x230
[ 224.237154][ T5110] ? clear_bhb_loop+0x35/0x90
[ 224.239040][ T5110] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 224.241157][ T5110] RIP: 0033:0x7f5830239569
[ 224.242597][ T5110] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 224.248949][ T5110] RSP: 002b:00007fff9b9375d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[ 224.251995][ T5110] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f5830239569
[ 224.254857][ T5110] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000004
[ 224.257673][ T5110] RBP: 00007f58302b65f0 R08: 0000555581a924c0 R09: 0000555581a924c0
[ 224.260121][ T5110] R10: 0000000000009e7f R11: 0000000000000246 R12: 00007fff9b937600
[ 224.262631][ T5110] R13: 00007fff9b937828 R14: 431bde82d7b634db R15: 00007f583028203b
[ 224.265179][ T5110]
[ 224.266347][ T5110] Kernel Offset: disabled
[ 224.267877][ T5110] Rebooting in 86400 seconds..
VM DIAGNOSIS:
18:25:11 Registers:
info registers vcpu 0
CPU#0
RAX=0000000000000020 RBX=ffffffff9a6e9a60 RCX=0000000000000000 RDX=00000000000003f8
RSI=0000000000000000 RDI=0000000000000020 RBP=0000000000000000 RSP=ffffc90002e3f450
R8 =ffffffff85440b3b R9 =1ffff110001f5046 R10=dffffc0000000000 R11=ffffffff85440af0
R12=dffffc0000000000 R13=ffffffff9a3e6eb7 R14=0000000000000020 R15=00000000000003f8
RIP=ffffffff85440b6e RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000555581a91380 ffffffff 00c00000
GS =0000 ffff88801fe00000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000001000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=00007f379ca2596e CR3=000000001f874000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000004040003 Opmask01=0000000000000001 Opmask02=00000000ffff3f01 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 b7e7e89c808ff816 a07e8f5799cf0770
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7ee317b6a2fd75dd ce50d103c4a211db
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 45397a49eb9cac2b df65929fc195e792
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 b2eea08720d081ff 91e70e940bc9c312
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000140
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 722d660edd6ccda8 3034430c2be7ab16
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 cc4f8c9915d141c8 b5833b4e0ab78437
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 e35d0765d8d1baaf 29eba7a94dbf5c23
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a90ae6f3d5e995be 75c76f284dc7d399
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 e063b37887535dbf 4221e7b2ba081cde
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 84f2acbbfb8731e8 94599e579befeca2
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6f73616572003663 6974617473006575 6575715f6c6f7274 6e6f63203a732500
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4a56444057001346 4c51445156004050 4050545f494a5751 4b4a46051f560000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000911 0000000000000000 306572673670692f 74656e2f6c617574
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000041 0000000000000000 00306e6170772f74 656e2f307968702f
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 05161b5316153a15 02021b000b1b690c 2b0c020418541117 17021d4f10530a06
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 551f5f5f1e5f3f7f 0e5f5f5f5f7f7d1f 3f5f5f177b7f7757 5f5e5f7f3b570f57
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6464616569207320 7272612036372065 6920666164006120 353700655f696661
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6464612069205f20 6962202036202064 5f2065610a006120 353700205f636561
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 bfbfbfbfbfbfbfbf bfbfbfbfbfbfbfbf bfbfbfbfbfbfbfbf bfbf2b313423342c
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 262821df2e2e33df 3228df3232202b22 df312e232d2435bf 2324353124322431
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020