Warning: Permanently added '[localhost]:36173' (ED25519) to the list of known hosts. syzkaller login: [ 81.615276][ T1029] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 81.618512][ T1029] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 81.671332][ T1042] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 81.674430][ T1042] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 executing program [ 82.217660][ T5094] loop0: detected capacity change from 0 to 32768 [ 82.272645][ T5094] JBD2: Ignoring recovery information on journal [ 82.319705][ T5094] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode. [ 82.334592][ T5097] syz-executor622[5097]: segfault at ffffffffffffffe0 ip 00007f27cd76b711 sp ffffffffffffffe0 error 5 in syz-executor622013674[40711,7f27cd734000+81000] likely on CPU 0 (core 0, socket 0) executing program [ 82.359994][ T5097] Code: c4 28 c3 e8 01 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f [ 82.412345][ T5097] [ 82.413335][ T5097] ====================================================== [ 82.416027][ T5097] WARNING: possible circular locking dependency detected [ 82.418787][ T5097] 6.11.0-rc3-syzkaller-00066-g1fb918967b56 #0 Not tainted [ 82.422322][ T5097] ------------------------------------------------------ [ 82.424988][ T5097] syz-executor622/5097 is trying to acquire lock: [ 82.427601][ T5097] ffff88803ec0bf60 (&oi->ip_alloc_sem){+.+.}-{3:3}, at: ocfs2_try_remove_refcount_tree+0xb6/0x330 [ 82.431906][ T5097] [ 82.431906][ T5097] but task is already holding lock: [ 82.434827][ T5097] ffff88803ec0bff8 (&oi->ip_xattr_sem){++++}-{3:3}, at: ocfs2_try_remove_refcount_tree+0xa5/0x330 [ 82.438908][ T5097] [ 82.438908][ T5097] which lock already depends on the new lock. [ 82.438908][ T5097] [ 82.442690][ T5097] [ 82.442690][ T5097] the existing dependency chain (in reverse order) is: [ 82.445733][ T5097] [ 82.445733][ T5097] -> #4 (&oi->ip_xattr_sem){++++}-{3:3}: [ 82.448626][ T5097] lock_acquire+0x1ed/0x550 [ 82.450587][ T5097] down_read+0xb1/0xa40 [ 82.452412][ T5097] ocfs2_init_acl+0x397/0x930 [ 82.454376][ T5097] ocfs2_mknod+0x1c05/0x2b40 [ 82.456307][ T5097] ocfs2_create+0x1ab/0x480 [ 82.458252][ T5097] path_openat+0x1a9a/0x3470 [ 82.460278][ T5097] do_filp_open+0x235/0x490 [ 82.462255][ T5097] filp_open+0x261/0x2d0 [ 82.464210][ T5097] do_coredump+0x2259/0x2a30 [ 82.466438][ T5097] get_signal+0x13fa/0x1740 [ 82.468186][ T5097] arch_do_signal_or_restart+0x96/0x860 [ 82.470272][ T5097] irqentry_exit_to_user_mode+0x79/0x280 [ 82.472448][ T5097] exc_page_fault+0x590/0x8c0 [ 82.474201][ T5097] asm_exc_page_fault+0x26/0x30 [ 82.475967][ T5097] [ 82.475967][ T5097] -> #3 (jbd2_handle){.+.+}-{0:0}: [ 82.478404][ T5097] lock_acquire+0x1ed/0x550 [ 82.480133][ T5097] start_this_handle+0x1eb4/0x2110 [ 82.482056][ T5097] jbd2__journal_start+0x2da/0x5d0 [ 82.483987][ T5097] jbd2_journal_start+0x29/0x40 [ 82.485856][ T5097] ocfs2_start_trans+0x3c9/0x700 [ 82.487901][ T5097] ocfs2_mknod+0x150c/0x2b40 [ 82.489775][ T5097] ocfs2_create+0x1ab/0x480 [ 82.491552][ T5097] path_openat+0x1a9a/0x3470 [ 82.493291][ T5097] do_filp_open+0x235/0x490 [ 82.495174][ T5097] filp_open+0x261/0x2d0 [ 82.496922][ T5097] do_coredump+0x2259/0x2a30 [ 82.498945][ T5097] get_signal+0x13fa/0x1740 [ 82.500851][ T5097] arch_do_signal_or_restart+0x96/0x860 [ 82.503109][ T5097] irqentry_exit_to_user_mode+0x79/0x280 [ 82.505273][ T5097] exc_page_fault+0x590/0x8c0 [ 82.507262][ T5097] asm_exc_page_fault+0x26/0x30 [ 82.509336][ T5097] [ 82.509336][ T5097] -> #2 (&journal->j_trans_barrier){.+.+}-{3:3}: [ 82.512529][ T5097] lock_acquire+0x1ed/0x550 [ 82.514461][ T5097] down_read+0xb1/0xa40 [ 82.516218][ T5097] ocfs2_start_trans+0x3be/0x700 [ 82.518639][ T5097] ocfs2_mknod+0x150c/0x2b40 [ 82.520618][ T5097] ocfs2_create+0x1ab/0x480 [ 82.522486][ T5097] path_openat+0x1a9a/0x3470 [ 82.524443][ T5097] do_filp_open+0x235/0x490 [ 82.526186][ T5097] filp_open+0x261/0x2d0 [ 82.527999][ T5097] do_coredump+0x2259/0x2a30 [ 82.529922][ T5097] get_signal+0x13fa/0x1740 [ 82.531535][ T5097] arch_do_signal_or_restart+0x96/0x860 [ 82.533825][ T5097] irqentry_exit_to_user_mode+0x79/0x280 [ 82.536137][ T5097] exc_page_fault+0x590/0x8c0 [ 82.538062][ T5097] asm_exc_page_fault+0x26/0x30 [ 82.540039][ T5097] [ 82.540039][ T5097] -> #1 (sb_internal#2){.+.+}-{0:0}: [ 82.542846][ T5097] lock_acquire+0x1ed/0x550 [ 82.544709][ T5097] ocfs2_start_trans+0x2b9/0x700 [ 82.546894][ T5097] ocfs2_truncate_file+0x68c/0x1560 [ 82.549088][ T5097] ocfs2_setattr+0x1217/0x1f50 [ 82.551034][ T5097] notify_change+0xb9d/0xe70 [ 82.553040][ T5097] do_truncate+0x220/0x310 [ 82.554964][ T5097] do_coredump+0x2702/0x2a30 [ 82.556866][ T5097] get_signal+0x13fa/0x1740 [ 82.558469][ T5097] arch_do_signal_or_restart+0x96/0x860 [ 82.560763][ T5097] irqentry_exit_to_user_mode+0x79/0x280 [ 82.562865][ T5097] exc_page_fault+0x590/0x8c0 [ 82.564577][ T5097] asm_exc_page_fault+0x26/0x30 [ 82.566476][ T5097] [ 82.566476][ T5097] -> #0 (&oi->ip_alloc_sem){+.+.}-{3:3}: [ 82.569265][ T5097] validate_chain+0x18e0/0x5900 [ 82.571430][ T5097] __lock_acquire+0x137a/0x2040 [ 82.573570][ T5097] lock_acquire+0x1ed/0x550 [ 82.575391][ T5097] down_write+0x99/0x220 [ 82.577104][ T5097] ocfs2_try_remove_refcount_tree+0xb6/0x330 [ 82.579126][ T5097] ocfs2_truncate_file+0xe08/0x1560 [ 82.581183][ T5097] ocfs2_setattr+0x1217/0x1f50 [ 82.582979][ T5097] notify_change+0xb9d/0xe70 [ 82.584734][ T5097] do_truncate+0x220/0x310 [ 82.586350][ T5097] do_coredump+0x2702/0x2a30 [ 82.587844][ T5097] get_signal+0x13fa/0x1740 [ 82.589475][ T5097] arch_do_signal_or_restart+0x96/0x860 [ 82.591627][ T5097] irqentry_exit_to_user_mode+0x79/0x280 [ 82.593801][ T5097] exc_page_fault+0x590/0x8c0 [ 82.595644][ T5097] asm_exc_page_fault+0x26/0x30 [ 82.597448][ T5097] [ 82.597448][ T5097] other info that might help us debug this: [ 82.597448][ T5097] [ 82.601273][ T5097] Chain exists of: [ 82.601273][ T5097] &oi->ip_alloc_sem --> jbd2_handle --> &oi->ip_xattr_sem [ 82.601273][ T5097] [ 82.606386][ T5097] Possible unsafe locking scenario: [ 82.606386][ T5097] [ 82.609115][ T5097] CPU0 CPU1 [ 82.610761][ T5097] ---- ---- [ 82.612374][ T5097] lock(&oi->ip_xattr_sem); [ 82.613964][ T5097] lock(jbd2_handle); [ 82.616186][ T5097] lock(&oi->ip_xattr_sem); [ 82.618629][ T5097] lock(&oi->ip_alloc_sem); [ 82.620270][ T5097] [ 82.620270][ T5097] *** DEADLOCK *** [ 82.620270][ T5097] [ 82.623324][ T5097] 2 locks held by syz-executor622/5097: [ 82.625357][ T5097] #0: ffff88803ec0c2c0 (&sb->s_type->i_mutex_key#17){+.+.}-{3:3}, at: do_truncate+0x20c/0x310 [ 82.629283][ T5097] #1: ffff88803ec0bff8 (&oi->ip_xattr_sem){++++}-{3:3}, at: ocfs2_try_remove_refcount_tree+0xa5/0x330 [ 82.633294][ T5097] [ 82.633294][ T5097] stack backtrace: [ 82.635247][ T5097] CPU: 0 UID: 0 PID: 5097 Comm: syz-executor622 Not tainted 6.11.0-rc3-syzkaller-00066-g1fb918967b56 #0 [ 82.639569][ T5097] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 82.643716][ T5097] Call Trace: [ 82.645081][ T5097] [ 82.646340][ T5097] dump_stack_lvl+0x241/0x360 [ 82.648062][ T5097] ? __pfx_dump_stack_lvl+0x10/0x10 [ 82.650093][ T5097] ? print_circular_bug+0x130/0x1a0 [ 82.651846][ T5097] check_noncircular+0x36a/0x4a0 [ 82.653677][ T5097] ? __pfx_check_noncircular+0x10/0x10 [ 82.655672][ T5097] ? lockdep_lock+0x123/0x2b0 [ 82.657618][ T5097] validate_chain+0x18e0/0x5900 [ 82.659564][ T5097] ? __pfx_validate_chain+0x10/0x10 [ 82.661542][ T5097] ? stack_trace_save+0x118/0x1d0 [ 82.663374][ T5097] ? __pfx_stack_trace_save+0x10/0x10 [ 82.665204][ T5097] ? lockdep_unlock+0x16a/0x300 [ 82.666949][ T5097] ? mark_lock+0x9a/0x350 [ 82.668330][ T5097] __lock_acquire+0x137a/0x2040 [ 82.670109][ T5097] lock_acquire+0x1ed/0x550 [ 82.671642][ T5097] ? ocfs2_try_remove_refcount_tree+0xb6/0x330 [ 82.673805][ T5097] ? __pfx_lock_acquire+0x10/0x10 [ 82.675487][ T5097] ? __pfx___might_resched+0x10/0x10 [ 82.677069][ T5097] ? ocfs2_truncate_file+0xd32/0x1560 [ 82.678954][ T5097] ? __pfx_lock_release+0x10/0x10 [ 82.680897][ T5097] down_write+0x99/0x220 [ 82.682576][ T5097] ? ocfs2_try_remove_refcount_tree+0xb6/0x330 [ 82.684976][ T5097] ? __pfx_down_write+0x10/0x10 [ 82.686855][ T5097] ocfs2_try_remove_refcount_tree+0xb6/0x330 [ 82.688964][ T5097] ? __pfx_ocfs2_try_remove_refcount_tree+0x10/0x10 [ 82.691223][ T5097] ocfs2_truncate_file+0xe08/0x1560 [ 82.692955][ T5097] ? ocfs2_inode_lock_tracker+0x45a/0x760 [ 82.695088][ T5097] ? __pfx_ocfs2_truncate_file+0x10/0x10 [ 82.697072][ T5097] ? do_raw_spin_unlock+0x58/0x8b0 [ 82.699014][ T5097] ? __asan_memset+0x23/0x50 [ 82.700759][ T5097] ? _raw_spin_unlock+0x28/0x50 [ 82.702543][ T5097] ? ocfs2_inode_lock_tracker+0x45a/0x760 [ 82.704694][ T5097] ? __pfx_ocfs2_inode_lock_tracker+0x10/0x10 [ 82.706992][ T5097] ? ocfs2_rw_lock+0x13e/0x260 [ 82.708496][ T5097] ? __pfx_ocfs2_rw_lock+0x10/0x10 [ 82.710317][ T5097] ? setattr_prepare+0x1f5/0xb20 [ 82.712047][ T5097] ? inode_newsize_ok+0x11a/0x1c0 [ 82.713826][ T5097] ocfs2_setattr+0x1217/0x1f50 [ 82.715481][ T5097] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 82.717581][ T5097] ? __pfx_ocfs2_setattr+0x10/0x10 [ 82.719030][ T5097] ? seqcount_lockdep_reader_access+0x1d7/0x220 [ 82.720791][ T5097] ? ktime_get_coarse_real_ts64+0x10b/0x120 [ 82.722574][ T5097] ? current_time+0x1be/0x2b0 [ 82.724058][ T5097] ? evm_inode_setattr+0x1b2/0x7d0 [ 82.725853][ T5097] ? security_inode_setattr+0xd7/0x120 [ 82.727565][ T5097] ? __pfx_ocfs2_setattr+0x10/0x10 [ 82.729183][ T5097] notify_change+0xb9d/0xe70 [ 82.730901][ T5097] do_truncate+0x220/0x310 [ 82.732855][ T5097] ? __pfx_do_truncate+0x10/0x10 [ 82.734690][ T5097] ? getname_kernel+0x140/0x2f0 [ 82.736498][ T5097] do_coredump+0x2702/0x2a30 [ 82.738155][ T5097] ? __pfx_do_coredump+0x10/0x10 [ 82.739864][ T5097] ? _raw_spin_unlock_irq+0x23/0x50 [ 82.741796][ T5097] ? lockdep_hardirqs_on+0x99/0x150 [ 82.743747][ T5097] get_signal+0x13fa/0x1740 [ 82.745418][ T5097] ? __pfx_get_signal+0x10/0x10 [ 82.746955][ T5097] ? __pfx_force_sig_fault+0x10/0x10 [ 82.748870][ T5097] arch_do_signal_or_restart+0x96/0x860 [ 82.750947][ T5097] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 82.752915][ T5097] ? irqentry_exit_to_user_mode+0x53/0x280 [ 82.755057][ T5097] irqentry_exit_to_user_mode+0x79/0x280 [ 82.757215][ T5097] exc_page_fault+0x590/0x8c0 [ 82.758940][ T5097] asm_exc_page_fault+0x26/0x30 [ 82.760772][ T5097] RIP: 0033:0x7f27cd76b711 [ 82.762402][ T5097] Code: c4 28 c3 e8 01 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f [ 82.769281][ T5097] RSP: 002b:ffffffffffffffe0 EFLAGS: 00010217 [ 82.771460][ T5097] RAX: 0000000000000000 RBX: 0000000000000003 RCX: 00007f27cd76b709 [ 82.774131][ T5097] RDX: 0000000000000000 RSI: ffffffffffffffe0 RDI: 0000000004008011 [ 82.776897][ T5097] RBP: 65756e69746e6f63 R08: 0000000000000000 R09: 0000000000000000 [ 82.779941][ T5097] R10: 0000000000000000 R11: 0000000000000246 R12: 633d73726f727265 [ 82.782486][ T5097] R13: 00007ffd27cfc3fc R14: 00007ffd27cfc440 R15: 00007ffd27cfc430 [ 82.785541][ T5097] [ 83.150046][ T5099] syz-executor622[5099]: segfault at ffffffffffffffe0 ip 00007f27cd76b711 sp ffffffffffffffe0 error 5 in syz-executor622013674[40711,7f27cd734000+81000] likely on CPU 0 (core 0, socket 0) [ 83.157202][ T5099] Code: c4 28 c3 e8 01 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f executing program [ 83.601399][ T5101] syz-executor622[5101]: segfault at ffffffffffffffe0 ip 00007f27cd76b711 sp ffffffffffffffe0 error 5 in syz-executor622013674[40711,7f27cd734000+81000] likely on CPU 0 (core 0, socket 0) [ 83.608355][ T5101] Code: c4 28 c3 e8 01 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f executing program [ 83.640839][ T5097] OCFS2: ERROR (device loop0): int ocfs2_claim_suballoc_bits(struct ocfs2_alloc_context *, handle_t *, u32, u32, struct ocfs2_suballoc_result *): Chain allocator dinode 23 has 4294967295 used bits but only 16777215 total [ 83.676042][ T5097] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 83.706451][ T5097] OCFS2: Returning error to the calling process. [ 83.709015][ T5097] (syz-executor622,5097,0):ocfs2_claim_suballoc_bits:2038 ERROR: status = -5 [ 83.712799][ T5097] (syz-executor622,5097,0):__ocfs2_claim_clusters:2412 ERROR: status = -5 [ 83.716079][ T5097] (syz-executor622,5097,0):__ocfs2_claim_clusters:2420 ERROR: status = -5 [ 83.739666][ T5097] (syz-executor622,5097,0):ocfs2_local_alloc_new_window:1197 ERROR: status = -5 [ 83.743502][ T5097] (syz-executor622,5097,0):ocfs2_local_alloc_new_window:1222 ERROR: status = -5 [ 83.746929][ T5097] (syz-executor622,5097,0):ocfs2_local_alloc_slide_window:1296 ERROR: status = -5 [ 83.769744][ T5097] (syz-executor622,5097,0):ocfs2_local_alloc_slide_window:1315 ERROR: status = -5 [ 83.780074][ T5097] (syz-executor622,5097,0):ocfs2_reserve_local_alloc_bits:672 ERROR: status = -5 [ 83.790355][ T5097] (syz-executor622,5097,0):ocfs2_reserve_local_alloc_bits:710 ERROR: status = -5 [ 83.804076][ T5097] (syz-executor622,5097,0):ocfs2_reserve_clusters_with_limit:1170 ERROR: status = -5 [ 83.807741][ T5097] (syz-executor622,5097,0):ocfs2_reserve_clusters_with_limit:1219 ERROR: status = -5 [ 83.824413][ T5097] (syz-executor622,5097,0):ocfs2_convert_inline_data_to_extents:7080 ERROR: status = -5 [ 83.827702][ T5097] (syz-executor622,5097,0):ocfs2_try_to_write_inline_data:1564 ERROR: status = -5 [ 83.844672][ T5097] (syz-executor622,5097,0):ocfs2_write_begin_nolock:1676 ERROR: status = -5 [ 83.847997][ T5097] (syz-executor622,5097,0):ocfs2_write_begin:1906 ERROR: status = -5 [ 83.866193][ T5097] syz-executor622 (5097) used greatest stack depth: 17712 bytes left [ 84.051169][ T5103] syz-executor622[5103]: segfault at ffffffffffffffe0 ip 00007f27cd76b711 sp ffffffffffffffe0 error 5 in syz-executor622013674[40711,7f27cd734000+81000] likely on CPU 0 (core 0, socket 0) executing program [ 84.076866][ T5103] Code: c4 28 c3 e8 01 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f [ 84.400065][ T5105] syz-executor622[5105]: segfault at ffffffffffffffe0 ip 00007f27cd76b711 sp ffffffffffffffe0 error 5 in syz-executor622013674[40711,7f27cd734000+81000] likely on CPU 0 (core 0, socket 0) [ 84.406454][ T5105] Code: c4 28 c3 e8 01 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f executing program [ 84.730241][ T5107] syz-executor622[5107]: segfault at ffffffffffffffe0 ip 00007f27cd76b711 sp ffffffffffffffe0 error 5 in syz-executor622013674[40711,7f27cd734000+81000] likely on CPU 0 (core 0, socket 0) executing program [ 84.758779][ T5107] Code: c4 28 c3 e8 01 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f [ 85.057492][ T5109] syz-executor622[5109]: segfault at ffffffffffffffe0 ip 00007f27cd76b711 sp ffffffffffffffe0 error 5 in syz-executor622013674[40711,7f27cd734000+81000] likely on CPU 0 (core 0, socket 0) executing program [ 85.086726][ T5109] Code: c4 28 c3 e8 01 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f [ 85.394598][ T5111] syz-executor622[5111]: segfault at ffffffffffffffe0 ip 00007f27cd76b711 sp ffffffffffffffe0 error 5 in syz-executor622013674[40711,7f27cd734000+81000] likely on CPU 0 (core 0, socket 0) executing program [ 85.423307][ T5111] Code: c4 28 c3 e8 01 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f [ 85.731962][ T5113] syz-executor622[5113]: segfault at ffffffffffffffe0 ip 00007f27cd76b711 sp ffffffffffffffe0 error 5 in syz-executor622013674[40711,7f27cd734000+81000] likely on CPU 0 (core 0, socket 0) [ 85.738274][ T5113] Code: c4 28 c3 e8 01 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f executing program [ 86.033442][ T5115] syz-executor622[5115]: segfault at ffffffffffffffe0 ip 00007f27cd76b711 sp ffffffffffffffe0 error 5 in syz-executor622013674[40711,7f27cd734000+81000] likely on CPU 0 (core 0, socket 0) executing program [ 86.060640][ T5115] Code: c4 28 c3 e8 01 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f executing program executing program [ 86.680475][ T9] cfg80211: failed to load regulatory.db executing program executing program [ 87.466169][ T5126] show_signal_msg: 4 callbacks suppressed [ 87.466224][ T5126] syz-executor622[5126]: segfault at ffffffffffffffe0 ip 00007f27cd76b711 sp ffffffffffffffe0 error 5 in syz-executor622013674[40711,7f27cd734000+81000] likely on CPU 0 (core 0, socket 0) executing program [ 87.499998][ T5126] Code: c4 28 c3 e8 01 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f [ 87.803287][ T5128] syz-executor622[5128]: segfault at ffffffffffffffe0 ip 00007f27cd76b711 sp ffffffffffffffe0 error 5 in syz-executor622013674[40711,7f27cd734000+81000] likely on CPU 0 (core 0, socket 0) executing program [ 87.830164][ T5128] Code: c4 28 c3 e8 01 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f [ 88.142322][ T5130] syz-executor622[5130]: segfault at ffffffffffffffe0 ip 00007f27cd76b711 sp ffffffffffffffe0 error 5 in syz-executor622013674[40711,7f27cd734000+81000] likely on CPU 0 (core 0, socket 0) executing program [ 88.169996][ T5130] Code: c4 28 c3 e8 01 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f [ 88.476340][ T5132] syz-executor622[5132]: segfault at ffffffffffffffe0 ip 00007f27cd76b711 sp ffffffffffffffe0 error 5 in syz-executor622013674[40711,7f27cd734000+81000] likely on CPU 0 (core 0, socket 0) executing program [ 88.505439][ T5132] Code: c4 28 c3 e8 01 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f [ 88.811334][ T5134] syz-executor622[5134]: segfault at ffffffffffffffe0 ip 00007f27cd76b711 sp ffffffffffffffe0 error 5 in syz-executor622013674[40711,7f27cd734000+81000] likely on CPU 0 (core 0, socket 0) [ 88.817931][ T5134] Code: c4 28 c3 e8 01 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f executing program [ 89.106105][ T5136] syz-executor622[5136]: segfault at ffffffffffffffe0 ip 00007f27cd76b711 sp ffffffffffffffe0 error 5 in syz-executor622013674[40711,7f27cd734000+81000] likely on CPU 0 (core 0, socket 0) executing program [ 89.140259][ T5136] Code: c4 28 c3 e8 01 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f [ 89.454190][ T5138] syz-executor622[5138]: segfault at ffffffffffffffe0 ip 00007f27cd76b711 sp ffffffffffffffe0 error 5 in syz-executor622013674[40711,7f27cd734000+81000] likely on CPU 0 (core 0, socket 0) executing program [ 89.480017][ T5138] Code: c4 28 c3 e8 01 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f [ 89.817151][ T5140] syz-executor622[5140]: segfault at ffffffffffffffe0 ip 00007f27cd76b711 sp ffffffffffffffe0 error 5 in syz-executor622013674[40711,7f27cd734000+81000] likely on CPU 0 (core 0, socket 0) executing program [ 89.839966][ T5140] Code: c4 28 c3 e8 01 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f [ 90.138256][ T5143] syz-executor622[5143]: segfault at ffffffffffffffe0 ip 00007f27cd76b711 sp ffffffffffffffe0 error 5 in syz-executor622013674[40711,7f27cd734000+81000] likely on CPU 0 (core 0, socket 0) executing program [ 90.166660][ T5143] Code: c4 28 c3 e8 01 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f executing program [ 90.471267][ T5145] syz-executor622[5145]: segfault at ffffffffffffffe0 ip 00007f27cd76b711 sp ffffffffffffffe0 error 5 in syz-executor622013674[40711,7f27cd734000+81000] likely on CPU 0 (core 0, socket 0) [ 90.500136][ T5145] Code: c4 28 c3 e8 01 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f executing program executing program executing program executing program executing program executing program VM DIAGNOSIS: 18:02:27 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000072 RBX=ffffffff95254f80 RCX=0000000000000000 RDX=00000000000003f8 RSI=0000000000000000 RDI=0000000000000020 RBP=0000000000000000 RSP=ffffc9000b0862f0 R8 =ffffffff853efc2b R9 =1ffff110031be046 R10=dffffc0000000000 R11=ffffffff853efbe0 R12=dffffc0000000000 R13=0000000000000072 R14=0000000000000072 R15=00000000000003f8 RIP=ffffffff853efc5e RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 ffffffff 00c00000 DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000555593e9a380 ffffffff 00c00000 GS =0000 ffff888020800000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f27c59c0000 CR3=0000000039f1e000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000440401 Opmask01=0000000000000001 Opmask02=00000000fff7ffff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd27cfb9c0 00007ffd27cfb9a0 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd27cfbb00 00007ffd27cfb980 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f27cd7d5b44 00007f27cd7e9240 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd27cfb9c0 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd27cfbb00 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd27cfbb00 00007ffd27cfb980 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd27cfb9c0 00007ffd27cfb9a0 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 12105202a75ac805 81415a44f796fc13 83b10dacdff0071d 691c6fbddbec9c78 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 65723d73726f7272 6500747865003036 36396f7369007265 6c6c616b7a797300 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 40571856574a5757 4000515d40001513 131c4a564c005740 4949444e5f5c5600 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000