program: syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1000040, &(0x7f0000000180)={[{@barrier}, {@nodioread_nolock}, {@jqfmt_vfsv0}, {@barrier}, {@auto_da_alloc}, {@nodioread_nolock}]}, 0x1, 0x59c, &(0x7f0000001840)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x8) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x8802, 0x81) r2 = socket(0x10, 0x3, 0x0) r3 = socket(0x10, 0x803, 0x0) r4 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r4) getsockname$packet(r4, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route_sched(r2, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0xfffffffc, 0x25dfdbfb, {0x0, 0x0, 0x0, r5, {}, {0xffff, 0xffff}, {0xf}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{}, 0x5, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x14}}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000012c0)=@newtfilter={0x48, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {}, {0xc}}, [@filter_kind_options=@f_flower={{0xb}, {0x18, 0x2, [@TCA_FLOWER_KEY_ENC_IPV6_DST={0x14, 0x21, @ipv4={'\x00', '\xff\xff', @loopback}}]}}]}, 0x48}}, 0x0) syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000240)='./bus\x00', 0x8008, &(0x7f0000000100)=ANY=[@ANYRES64=0x0], 0xf, 0xab, &(0x7f0000010140)="$eJzs1zGKwkAYBeB/s7CbdptFsLBO4x08ilhqI1aK4A3Ei3gVj5DewiKtiCOYiIidRQT5vmLgzWPgtbM7brubIiKtIlLRme7T3Wy+GA8n9Rl8pCwifiMij4jeX50Pg7r7avqyWo7K6vv58c+69b0AAMDrsug/5nNqLk7NL/Aa/m993vI+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgHe7BAAA//+dfyiL") mknodat(0xffffffffffffff9c, &(0x7f0000000140)='./file4\x00', 0x40, 0x0) open(&(0x7f00000005c0)='./bus\x00', 0x66842, 0x19) mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0) r6 = open(&(0x7f0000000000)='./bus\x00', 0x8000, 0xa0) ioctl$LOOP_SET_STATUS64(r6, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x8005, 0x0, 0x0, 0x12, 0xd, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x204]}) linkat(0xffffffffffffff9c, &(0x7f0000000000)='./file4\x00', 0xffffffffffffff9c, &(0x7f00000006c0)='./file5\x00', 0x0) ioctl$FIBMAP(r1, 0x1, &(0x7f0000000080)=0x8) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6}]}) socket$nl_generic(0x10, 0x3, 0x10) pwrite64(r1, &(0x7f0000000140)='2', 0xfdef, 0xc00) [ 83.862865][ T45] Bluetooth: hci0: command tx timeout [ 83.977986][ T5325] loop0: detected capacity change from 0 to 1024 [ 83.996498][ T5325] ======================================================= [ 83.996498][ T5325] WARNING: The mand mount option has been deprecated and [ 83.996498][ T5325] and is ignored by this kernel. Remove the mand [ 83.996498][ T5325] option from the mount to silence this warning. [ 83.996498][ T5325] ======================================================= [ 84.110339][ T5325] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 84.133423][ T5325] ext4 filesystem being mounted at /0/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 84.186764][ T24] audit: type=1800 audit(1775696306.602:2): pid=5325 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.0" name="bus" dev="loop0" ino=19 res=0 errno=0 [ 84.221654][ T5325] loop0: detected capacity change from 1024 to 0 [ 84.232233][ T5325] EXT4-fs error (device loop0): __ext4_find_entry:1615: inode #2: comm syz.0.0: reading directory lblock 0 [ 84.245893][ T5325] Buffer I/O error on dev loop0, logical block 1, lost sync page write [ 84.250075][ T5325] EXT4-fs (loop0): I/O error while writing superblock [ 84.256557][ T5325] EXT4-fs error (device loop0): ext4_get_inode_loc:4935: inode #15: block 6: comm syz.0.0: unable to read itable block [ 84.265340][ T5325] Buffer I/O error on dev loop0, logical block 1, lost sync page write [ 84.270811][ T5325] EXT4-fs (loop0): I/O error while writing superblock [ 84.274364][ T5325] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6291: IO failure [ 84.278647][ T5325] Buffer I/O error on dev loop0, logical block 1, lost sync page write [ 84.284620][ T5325] EXT4-fs (loop0): I/O error while writing superblock [ 84.287463][ T5325] EXT4-fs error (device loop0): __ext4_ext_dirty:207: inode #15: comm syz.0.0: mark_inode_dirty error [ 84.293605][ T5325] Buffer I/O error on dev loop0, logical block 1, lost sync page write [ 84.297770][ T5325] EXT4-fs (loop0): I/O error while writing superblock [ 84.303027][ T5325] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 5 [ 84.310848][ T24] audit: type=1326 audit(1775696306.722:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5324 comm="syz.0.0" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb25219c819 code=0x0 [ 84.319981][ T5325] EXT4-fs (loop0): This should not happen!! Data will be lost [ 84.319981][ T5325] [ 84.331221][ T5330] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 112: padding at end of block bitmap is not set [ 84.338613][ T5330] Buffer I/O error on dev loop0, logical block 1, lost sync page write [ 84.343309][ T5330] EXT4-fs (loop0): I/O error while writing superblock [ 84.360648][ T5324] ------------[ cut here ]------------ [ 84.363404][ T5324] warn && !folio_test_uptodate(folio) [ 84.363417][ T5324] WARNING: mm/page-writeback.c:2687 at __folio_mark_dirty+0x202/0xe40, CPU#0: syz.0.0/5324 [ 84.369930][ T5324] Modules linked in: [ 84.372482][ T5324] CPU: 0 UID: 0 PID: 5324 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) [ 84.377174][ T5324] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 84.381393][ T5324] RIP: 0010:__folio_mark_dirty+0x202/0xe40 [ 84.384415][ T5324] Code: 3c 20 00 74 08 48 89 df e8 8b 49 2c 00 4c 8b 33 4c 89 f6 48 83 e6 08 31 ff e8 0a 6e c0 ff 49 83 e6 08 75 20 e8 1f 69 c0 ff 90 <0f> 0b 90 eb 1a e8 14 69 c0 ff 48 8b 2c 24 e9 56 07 00 00 e8 06 69 [ 84.394969][ T5324] RSP: 0000:ffffc9000dda7970 EFLAGS: 00010093 [ 84.397708][ T5324] RAX: ffffffff82056671 RBX: ffffea000046a440 RCX: ffff8880363b8000 [ 84.401037][ T5324] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 84.404672][ T5324] RBP: ffff888038665178 R08: ffffea000046a447 R09: 1ffffd400008d488 [ 84.408657][ T5324] R10: dffffc0000000000 R11: fffff9400008d489 R12: dffffc0000000000 [ 84.412777][ T5324] R13: ffff888038665180 R14: 0000000000000000 R15: 0000000000000001 [ 84.416528][ T5324] FS: 00005555565ab540(0000) GS:ffff88808ca49000(0000) knlGS:0000000000000000 [ 84.420472][ T5324] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 84.423398][ T5324] CR2: 0000200000000140 CR3: 000000001fdc1000 CR4: 0000000000352ef0 [ 84.427621][ T5324] Call Trace: [ 84.429929][ T5324] [ 84.431719][ T5324] block_dirty_folio+0x17a/0x1d0 [ 84.433663][ T5324] fault_dirty_shared_page+0x103/0x540 [ 84.436060][ T5324] do_wp_page+0x1abe/0x5a00 [ 84.438063][ T5324] ? __pfx_do_wp_page+0x10/0x10 [ 84.440354][ T5324] ? do_raw_spin_lock+0x12b/0x2f0 [ 84.443744][ T5324] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 84.447430][ T5324] handle_mm_fault+0x1520/0x3310 [ 84.449790][ T5324] ? handle_mm_fault+0xee/0x3310 [ 84.451882][ T5324] ? __pfx_handle_mm_fault+0x10/0x10 [ 84.454102][ T5324] ? lock_vma_under_rcu+0x45a/0x500 [ 84.456325][ T5324] ? __pfx_do_futex+0x10/0x10 [ 84.458354][ T5324] do_user_addr_fault+0xa73/0x1340 [ 84.460672][ T5324] ? rcu_is_watching+0x15/0xb0 [ 84.462766][ T5324] ? trace_page_fault_user+0x84/0x210 [ 84.465362][ T5324] exc_page_fault+0x6a/0xc0 [ 84.467764][ T5324] asm_exc_page_fault+0x26/0x30 [ 84.470155][ T5324] RIP: 0033:0x7fb25216ce23 [ 84.472061][ T5324] Code: 17 c3 0f 1f 44 00 00 83 fa 10 73 21 83 fa 08 73 36 48 83 ea 04 73 e0 83 fa fd 7c 10 8a 0e 74 0a 0f b7 74 16 02 66 89 74 17 02 <88> 0f c3 c5 fa 6f 06 c5 fa 6f 4c 16 f0 c5 fa 7f 07 c5 fa 7f 4c 17 [ 84.480598][ T5324] RSP: 002b:00007ffe808cf0c8 EFLAGS: 00010246 [ 84.483599][ T5324] RAX: 0000200000000140 RBX: 0000000000000004 RCX: 0000000000000032 [ 84.487458][ T5324] RDX: fffffffffffffffd RSI: 00007fb251bffdb7 RDI: 0000200000000140 [ 84.491174][ T5324] RBP: fffffffffffffffe R08: 00007fb251fff03c R09: 0000000000000002 [ 84.494541][ T5324] R10: 0000000000000001 R11: 0000000000000000 R12: 00007ffe808cf1f0 [ 84.497919][ T5324] R13: 00007fb252415fac R14: 0000000000014750 R15: 00007fb252415fa0 [ 84.502419][ T5324] [ 84.503840][ T5324] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 84.506935][ T5324] CPU: 0 UID: 0 PID: 5324 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) [ 84.510435][ T5324] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 84.515868][ T5324] Call Trace: [ 84.517907][ T5324] [ 84.519348][ T5324] vpanic+0x56c/0xa60 [ 84.521132][ T5324] ? __pfx__printk+0x10/0x10 [ 84.523025][ T5324] ? __pfx_vpanic+0x10/0x10 [ 84.525306][ T5324] ? is_bpf_text_address+0x292/0x2b0 [ 84.527767][ T5324] ? is_bpf_text_address+0x26/0x2b0 [ 84.530422][ T5324] panic+0xc5/0xd0 [ 84.532327][ T5324] ? __pfx_panic+0x10/0x10 [ 84.534701][ T5324] __warn+0x315/0x4f0 [ 84.536662][ T5324] ? __folio_mark_dirty+0x202/0xe40 [ 84.539041][ T5324] ? __folio_mark_dirty+0x202/0xe40 [ 84.541404][ T5324] __report_bug+0x29a/0x540 [ 84.543279][ T5324] ? check_path+0x21/0x40 [ 84.545121][ T5324] ? __folio_mark_dirty+0x202/0xe40 [ 84.547331][ T5324] ? __pfx___report_bug+0x10/0x10 [ 84.550124][ T5324] ? lockdep_unlock+0x5d/0xd0 [ 84.553062][ T5324] ? __lock_acquire+0x146e/0x2cf0 [ 84.555494][ T5324] ? __folio_mark_dirty+0x202/0xe40 [ 84.557690][ T5324] report_bug+0x16a/0x220 [ 84.559688][ T5324] ? __folio_mark_dirty+0x202/0xe40 [ 84.562089][ T5324] ? __folio_mark_dirty+0x204/0xe40 [ 84.564275][ T5324] handle_bug+0x9c/0x200 [ 84.566095][ T5324] exc_invalid_op+0x1a/0x50 [ 84.568368][ T5324] asm_exc_invalid_op+0x1a/0x20 [ 84.570841][ T5324] RIP: 0010:__folio_mark_dirty+0x202/0xe40 [ 84.573703][ T5324] Code: 3c 20 00 74 08 48 89 df e8 8b 49 2c 00 4c 8b 33 4c 89 f6 48 83 e6 08 31 ff e8 0a 6e c0 ff 49 83 e6 08 75 20 e8 1f 69 c0 ff 90 <0f> 0b 90 eb 1a e8 14 69 c0 ff 48 8b 2c 24 e9 56 07 00 00 e8 06 69 [ 84.582752][ T5324] RSP: 0000:ffffc9000dda7970 EFLAGS: 00010093 [ 84.585811][ T5324] RAX: ffffffff82056671 RBX: ffffea000046a440 RCX: ffff8880363b8000 [ 84.589695][ T5324] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 84.593278][ T5324] RBP: ffff888038665178 R08: ffffea000046a447 R09: 1ffffd400008d488 [ 84.596794][ T5324] R10: dffffc0000000000 R11: fffff9400008d489 R12: dffffc0000000000 [ 84.600490][ T5324] R13: ffff888038665180 R14: 0000000000000000 R15: 0000000000000001 [ 84.604863][ T5324] ? __folio_mark_dirty+0x201/0xe40 [ 84.607158][ T5324] block_dirty_folio+0x17a/0x1d0 [ 84.609202][ T5324] fault_dirty_shared_page+0x103/0x540 [ 84.611659][ T5324] do_wp_page+0x1abe/0x5a00 [ 84.613870][ T5324] ? __pfx_do_wp_page+0x10/0x10 [ 84.616495][ T5324] ? do_raw_spin_lock+0x12b/0x2f0 [ 84.619003][ T5324] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 84.621393][ T5324] handle_mm_fault+0x1520/0x3310 [ 84.623592][ T5324] ? handle_mm_fault+0xee/0x3310 [ 84.625955][ T5324] ? __pfx_handle_mm_fault+0x10/0x10 [ 84.628740][ T5324] ? lock_vma_under_rcu+0x45a/0x500 [ 84.631317][ T5324] ? __pfx_do_futex+0x10/0x10 [ 84.633459][ T5324] do_user_addr_fault+0xa73/0x1340 [ 84.635750][ T5324] ? rcu_is_watching+0x15/0xb0 [ 84.638161][ T5324] ? trace_page_fault_user+0x84/0x210 [ 84.641158][ T5324] exc_page_fault+0x6a/0xc0 [ 84.643885][ T5324] asm_exc_page_fault+0x26/0x30 [ 84.647093][ T5324] RIP: 0033:0x7fb25216ce23 [ 84.649327][ T5324] Code: 17 c3 0f 1f 44 00 00 83 fa 10 73 21 83 fa 08 73 36 48 83 ea 04 73 e0 83 fa fd 7c 10 8a 0e 74 0a 0f b7 74 16 02 66 89 74 17 02 <88> 0f c3 c5 fa 6f 06 c5 fa 6f 4c 16 f0 c5 fa 7f 07 c5 fa 7f 4c 17 [ 84.657422][ T5324] RSP: 002b:00007ffe808cf0c8 EFLAGS: 00010246 [ 84.660159][ T5324] RAX: 0000200000000140 RBX: 0000000000000004 RCX: 0000000000000032 [ 84.664144][ T5324] RDX: fffffffffffffffd RSI: 00007fb251bffdb7 RDI: 0000200000000140 [ 84.667851][ T5324] RBP: fffffffffffffffe R08: 00007fb251fff03c R09: 0000000000000002 [ 84.671202][ T5324] R10: 0000000000000001 R11: 0000000000000000 R12: 00007ffe808cf1f0 [ 84.674968][ T5324] R13: 00007fb252415fac R14: 0000000000014750 R15: 00007fb252415fa0 [ 84.678778][ T5324] [ 84.680376][ T5324] Kernel Offset: disabled [ 84.682171][ T5324] Rebooting in 86400 seconds..