program: syz_mount_image$udf(&(0x7f0000001080), &(0x7f00000010c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x200c9a, &(0x7f0000000e40)=ANY=[@ANYBLOB='iocharset=iso8859-1,nostrict,uid=forget,anchor=0000000000000145,gid=', @ANYRESDEC=0x0, @ANYBLOB=',dmode=00000000000000000002004,undelete,partition=00000000000000000001,unhide,\x00'], 0x1, 0xc43, &(0x7f00000001c0)="$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") syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000340)={[{@nogrpid}, {@resuid}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@errors_continue}, {@nombcache}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$eJzs289rHFUcAPDvzCat/WViqT+aVo1WMfgjadJae/CiKHhQEPRQjzFJS+y2kSaCLUGjSD1Kwbt4FPwLPOlF1JPgVe9SKJJLq6eV2Z1Jdje7aZJustX9fGCS92be8t53Z97ue/N2AuhZw9mfJGJ/RPweEQO1bGOB4dq/W8uLU38vL04lUam89VdSLXdzeXGqKFq8bl+R6YtIP0viSIt65y9fOT9ZLs9cyvNjCxfeH5u/fOW52QuT52bOzVycOH365InxF05NPN+ROLO4bg59NHf08GvvXHtj6sy1d3/+Ninib4qjQ4bXO/hkpdLh6rrrQF066etiQ9iUUq2bRn+1/w9EKVZP3kC8+mlXGwdsq0qlUnmg/eGlCvA/lkS3WwB0R/FFn81/i22Hhh53hRsv1SZAWdy38q12pC/SvEx/0/y2k4Yj4szSP19lW2zPfQgAgAbfZ+OfZ1uN/9Kovy90b76GMhgR90XEwYg4FRGHIuL+iGrZByPioU3W37xIsnb8k17fUmAblI3/XszXthrHf8XoLwZLee5ANf7+5OxseeZ4/p6MRP/uLD++Th0/vPLbF+2O1Y//si2rvxgL5u243re78TXTkwuTdxJzvRufRAz1tYo/WVkJSCLicEQMbbGO2ae/Odru2O3jX0cH1pkqX0c8VTv/S9EUfyFZf31y7J4ozxwfK66KtX759eqb7eq/o/g7IDv/e1te/yvxDyb167Xzm6/j6h+ft53TbPX635W83bDvw8mFhUvjEbuS12uNrt8/0VRuYrV8Fv/Isdb9/2CsvhNHIiK7iB+OiEci4tG87Y9FxOMRcWyd+H96+Yn3th7/9srin97U+V9N7IrmPa0TpfM/ftdQ6eBm4s/O/8lqaiTfs5HPv420a2tXMwAAAPz3pBGxP5J0dCWdpqOjtd/wH4q9aXlufuGZs3MfXJyuPSMwGP1pcadroO5+6Hg+rS/yE035E/l94y9Le6r50am58nS3g4cet69N/8/8Wep264Bt53kt6F36P/Qu/R96l/4PvatF/9/TjXYAO6/V9//HXWgHsPOa+r9lP+gh5v/Qu/R/6F36P/Sk+T1x+4fkJSTWJCK9K5ohsU2Jbn8yAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAdMa/AQAA//9QOObV") r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x381, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x5032}) sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[], 0x14}}, 0x0) setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(0xffffffffffffffff, 0x84, 0x85, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x27c0}, 0x90) io_setup(0xbf, &(0x7f0000000100)=0x0) pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x23, &(0x7f0000000140)={&(0x7f0000000000)=@newqdisc={0x44, 0x24, 0x0, 0x0, 0x0, {}, [@qdisc_kind_options=@q_codel={{0xa}, {0x14, 0x2, [@TCA_CODEL_INTERVAL={0x8, 0x3, 0x6}, @TCA_CODEL_ECN={0x8, 0x4, 0x1}]}}]}, 0x44}}, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="4800000010001fff752b056800080000faff8141", @ANYRES32=0x0, @ANYBLOB="67a9fde500000000280012800a00010076786c616e"], 0x3}}, 0x0) r4 = socket$inet_udp(0x2, 0x2, 0x0) close(r4) socket$nl_route(0x10, 0x3, 0x0) write$char_usb(0xffffffffffffffff, &(0x7f0000000040)="e2", 0x1068) write$binfmt_misc(r3, &(0x7f0000000000), 0xfffffecc) splice(r2, 0x0, r4, 0x0, 0x4ffe6, 0x0) io_submit(r1, 0x1, &(0x7f00000001c0)=[&(0x7f00000000c0)={0x20000000, 0x0, 0x7, 0x8, 0x0, r0, &(0x7f0000000080)='\x00\x00', 0x2}]) setrlimit(0x1, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = open(&(0x7f0000000080)='./bus\x00', 0x143142, 0x0) r6 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r6, 0x84, 0xb, &(0x7f0000000000), &(0x7f0000000040)=0x4) pwrite64(r5, &(0x7f0000000300)='_', 0x1, 0x10000000005) mount$nfs(&(0x7f0000000100)='..@', 0x0, 0x0, 0x0, 0x0) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)={{0x14}, [], {0x14}}, 0x28}}, 0x0) mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) mount(&(0x7f0000000180)=@sr0, &(0x7f0000000f00)='./file2\x00', &(0x7f0000000f40)='befs\x00', 0x20000, &(0x7f0000000f80)='-}]\x10-\x00') mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./bus\x00', 0x23) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpu.stat\x00', 0x275a, 0x0) [ 85.194681][ T4709] Bluetooth: hci0: command tx timeout [ 85.287101][ T5368] loop0: detected capacity change from 0 to 2048 [ 85.319848][ T5368] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 85.413822][ T5369] netlink: 4 bytes leftover after parsing attributes in process `syz.0.0'. [ 85.426980][ T5369] ------------[ cut here ]------------ [ 85.429575][ T5369] WARNING: CPU: 0 PID: 5369 at fs/udf/inode.c:2088 __udf_add_aext+0x524/0x6d0 [ 85.433229][ T5369] Modules linked in: [ 85.435385][ T5369] CPU: 0 UID: 0 PID: 5369 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) [ 85.439333][ T5369] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 85.443740][ T5369] RIP: 0010:__udf_add_aext+0x524/0x6d0 [ 85.446445][ T5369] Code: b6 eb fe 49 8b 3e 4c 89 e6 e8 88 67 0e ff 31 c0 48 83 c4 28 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc e8 1d ba 86 fe 90 <0f> 0b 90 e9 14 fc ff ff e8 0f ba 86 fe 90 0f 0b 90 e9 66 fd ff ff [ 85.454696][ T5369] RSP: 0018:ffffc9000d3ef248 EFLAGS: 00010283 [ 85.457385][ T5369] RAX: ffffffff83391083 RBX: dffffc0000000000 RCX: 0000000000100000 [ 85.460738][ T5369] RDX: ffffc9000e99b000 RSI: 0000000000015fb9 RDI: 0000000000015fba [ 85.464114][ T5369] RBP: 1ffff92001a7dee5 R08: ffff88801ca50000 R09: 0000000000000002 [ 85.467508][ T5369] R10: 0000000000000001 R11: 0000000000000002 R12: 00000000000001d0 [ 85.471112][ T5369] R13: 0000000000000000 R14: ffffc9000d3ef720 R15: ffffc9000d3ef728 [ 85.475339][ T5369] FS: 00007fe272db36c0(0000) GS:ffff88808d007000(0000) knlGS:0000000000000000 [ 85.479665][ T5369] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 85.482466][ T5369] CR2: 0000000600000000 CR3: 000000004302a000 CR4: 0000000000352ef0 [ 85.485943][ T5369] Call Trace: [ 85.487447][ T5369] [ 85.488689][ T5369] udf_setup_indirect_aext+0x609/0x800 [ 85.491080][ T5369] ? __udf_add_aext+0x508/0x6d0 [ 85.493102][ T5369] udf_do_extend_file+0x870/0x1180 [ 85.495449][ T5369] ? udf_get_filelongad+0x6e/0x1b0 [ 85.497600][ T5369] ? __pfx_udf_do_extend_file+0x10/0x10 [ 85.499991][ T5369] udf_map_block+0xff2/0x45f0 [ 85.501929][ T5369] ? __pfx_hlock_conflict+0x10/0x10 [ 85.504148][ T5369] ? check_path+0x21/0x40 [ 85.506019][ T5369] ? __pfx_udf_map_block+0x10/0x10 [ 85.508348][ T5369] ? validate_chain+0x897/0x2140 [ 85.510473][ T5369] ? do_raw_spin_lock+0x121/0x290 [ 85.512659][ T5369] ? do_raw_spin_unlock+0x4d/0x240 [ 85.514984][ T5369] __udf_get_block+0x52/0x250 [ 85.516975][ T5369] ? create_empty_buffers+0x465/0x530 [ 85.519298][ T5369] __block_write_begin_int+0x6b2/0x1900 [ 85.521896][ T5369] ? folio_add_lru+0x1b2/0x3d0 [ 85.523843][ T5369] ? __pfx_udf_get_block+0x10/0x10 [ 85.526346][ T5369] ? __pfx___block_write_begin_int+0x10/0x10 [ 85.528902][ T5369] ? __pfx_udf_get_block+0x10/0x10 [ 85.531080][ T5369] block_write_begin+0x8a/0x120 [ 85.533192][ T5369] ? udf_write_begin+0x92/0x270 [ 85.535468][ T5369] udf_write_begin+0x115/0x270 [ 85.537587][ T5369] generic_perform_write+0x2c2/0x900 [ 85.539896][ T5369] ? __pfx_generic_perform_write+0x10/0x10 [ 85.542376][ T5369] ? file_update_time+0x2da/0x490 [ 85.544674][ T5369] ? __generic_file_write_iter+0xf9/0x230 [ 85.547106][ T5369] ? udf_file_write_iter+0x2c4/0x6c0 [ 85.549398][ T5369] udf_file_write_iter+0x2d5/0x6c0 [ 85.551719][ T5369] vfs_write+0x5c6/0xb30 [ 85.553473][ T5369] ? __pfx_udf_file_write_iter+0x10/0x10 [ 85.556413][ T5369] ? __pfx_vfs_write+0x10/0x10 [ 85.558938][ T5369] ? __fget_files+0x2a/0x420 [ 85.561416][ T5369] __x64_sys_pwrite64+0x193/0x220 [ 85.564099][ T5369] ? __pfx___x64_sys_pwrite64+0x10/0x10 [ 85.567273][ T5369] ? rcu_is_watching+0x15/0xb0 [ 85.569836][ T5369] ? do_syscall_64+0xbe/0x3b0 [ 85.576063][ T5369] do_syscall_64+0xfa/0x3b0 [ 85.577951][ T5369] ? lockdep_hardirqs_on+0x9c/0x150 [ 85.580137][ T5369] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 85.582807][ T5369] ? clear_bhb_loop+0x60/0xb0 [ 85.585083][ T5369] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 85.587709][ T5369] RIP: 0033:0x7fe271f8eec9 [ 85.589691][ T5369] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 85.598281][ T5369] RSP: 002b:00007fe272db3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000012 [ 85.601984][ T5369] RAX: ffffffffffffffda RBX: 00007fe2721e6090 RCX: 00007fe271f8eec9 [ 85.606312][ T5369] RDX: 0000000000000001 RSI: 0000200000000300 RDI: 0000000000000008 [ 85.609788][ T5369] RBP: 00007fe272011f91 R08: 0000000000000000 R09: 0000000000000000 [ 85.613240][ T5369] R10: 0000010000000005 R11: 0000000000000246 R12: 0000000000000000 [ 85.617022][ T5369] R13: 00007fe2721e6128 R14: 00007fe2721e6090 R15: 00007ffd8b478528 [ 85.620564][ T5369] [ 85.621865][ T5369] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 85.624996][ T5369] CPU: 0 UID: 0 PID: 5369 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) [ 85.628712][ T5369] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 85.633268][ T5369] Call Trace: [ 85.634750][ T5369] [ 85.636082][ T5369] dump_stack_lvl+0x99/0x250 [ 85.638068][ T5369] ? __asan_memcpy+0x40/0x70 [ 85.640158][ T5369] ? __pfx_dump_stack_lvl+0x10/0x10 [ 85.642466][ T5369] ? __pfx__printk+0x10/0x10 [ 85.644352][ T5369] vpanic+0x281/0x750 [ 85.646079][ T5369] ? __pfx__printk+0x10/0x10 [ 85.648068][ T5369] ? __pfx_vpanic+0x10/0x10 [ 85.650120][ T5369] ? is_bpf_text_address+0x26/0x2b0 [ 85.652380][ T5369] panic+0xb9/0xc0 [ 85.653935][ T5369] ? __pfx_panic+0x10/0x10 [ 85.655907][ T5369] __warn+0x31b/0x4b0 [ 85.657748][ T5369] ? __udf_add_aext+0x524/0x6d0 [ 85.659996][ T5369] ? __udf_add_aext+0x524/0x6d0 [ 85.662137][ T5369] report_bug+0x2be/0x4f0 [ 85.664139][ T5369] ? __udf_add_aext+0x524/0x6d0 [ 85.666306][ T5369] ? __udf_add_aext+0x524/0x6d0 [ 85.668497][ T5369] ? __udf_add_aext+0x526/0x6d0 [ 85.670732][ T5369] handle_bug+0x84/0x160 [ 85.672666][ T5369] exc_invalid_op+0x1a/0x50 [ 85.674691][ T5369] asm_exc_invalid_op+0x1a/0x20 [ 85.676865][ T5369] RIP: 0010:__udf_add_aext+0x524/0x6d0 [ 85.679271][ T5369] Code: b6 eb fe 49 8b 3e 4c 89 e6 e8 88 67 0e ff 31 c0 48 83 c4 28 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc e8 1d ba 86 fe 90 <0f> 0b 90 e9 14 fc ff ff e8 0f ba 86 fe 90 0f 0b 90 e9 66 fd ff ff [ 85.687422][ T5369] RSP: 0018:ffffc9000d3ef248 EFLAGS: 00010283 [ 85.689947][ T5369] RAX: ffffffff83391083 RBX: dffffc0000000000 RCX: 0000000000100000 [ 85.693046][ T5369] RDX: ffffc9000e99b000 RSI: 0000000000015fb9 RDI: 0000000000015fba [ 85.696246][ T5369] RBP: 1ffff92001a7dee5 R08: ffff88801ca50000 R09: 0000000000000002 [ 85.699564][ T5369] R10: 0000000000000001 R11: 0000000000000002 R12: 00000000000001d0 [ 85.702949][ T5369] R13: 0000000000000000 R14: ffffc9000d3ef720 R15: ffffc9000d3ef728 [ 85.706438][ T5369] ? __udf_add_aext+0x523/0x6d0 [ 85.708603][ T5369] ? __udf_add_aext+0x523/0x6d0 [ 85.710832][ T5369] udf_setup_indirect_aext+0x609/0x800 [ 85.713067][ T5369] ? __udf_add_aext+0x508/0x6d0 [ 85.715194][ T5369] udf_do_extend_file+0x870/0x1180 [ 85.717389][ T5369] ? udf_get_filelongad+0x6e/0x1b0 [ 85.719688][ T5369] ? __pfx_udf_do_extend_file+0x10/0x10 [ 85.722040][ T5369] udf_map_block+0xff2/0x45f0 [ 85.724068][ T5369] ? __pfx_hlock_conflict+0x10/0x10 [ 85.726242][ T5369] ? check_path+0x21/0x40 [ 85.728035][ T5369] ? __pfx_udf_map_block+0x10/0x10 [ 85.730377][ T5369] ? validate_chain+0x897/0x2140 [ 85.732666][ T5369] ? do_raw_spin_lock+0x121/0x290 [ 85.734938][ T5369] ? do_raw_spin_unlock+0x4d/0x240 [ 85.737220][ T5369] __udf_get_block+0x52/0x250 [ 85.739312][ T5369] ? create_empty_buffers+0x465/0x530 [ 85.741348][ T5369] __block_write_begin_int+0x6b2/0x1900 [ 85.743954][ T5369] ? folio_add_lru+0x1b2/0x3d0 [ 85.746228][ T5369] ? __pfx_udf_get_block+0x10/0x10 [ 85.748582][ T5369] ? __pfx___block_write_begin_int+0x10/0x10 [ 85.751577][ T5369] ? __pfx_udf_get_block+0x10/0x10 [ 85.753808][ T5369] block_write_begin+0x8a/0x120 [ 85.755916][ T5369] ? udf_write_begin+0x92/0x270 [ 85.757990][ T5369] udf_write_begin+0x115/0x270 [ 85.760183][ T5369] generic_perform_write+0x2c2/0x900 [ 85.762613][ T5369] ? __pfx_generic_perform_write+0x10/0x10 [ 85.765334][ T5369] ? file_update_time+0x2da/0x490 [ 85.767590][ T5369] ? __generic_file_write_iter+0xf9/0x230 [ 85.770134][ T5369] ? udf_file_write_iter+0x2c4/0x6c0 [ 85.772482][ T5369] udf_file_write_iter+0x2d5/0x6c0 [ 85.774801][ T5369] vfs_write+0x5c6/0xb30 [ 85.776629][ T5369] ? __pfx_udf_file_write_iter+0x10/0x10 [ 85.778864][ T5369] ? __pfx_vfs_write+0x10/0x10 [ 85.780924][ T5369] ? __fget_files+0x2a/0x420 [ 85.782922][ T5369] __x64_sys_pwrite64+0x193/0x220 [ 85.785106][ T5369] ? __pfx___x64_sys_pwrite64+0x10/0x10 [ 85.787510][ T5369] ? rcu_is_watching+0x15/0xb0 [ 85.789800][ T5369] ? do_syscall_64+0xbe/0x3b0 [ 85.791854][ T5369] do_syscall_64+0xfa/0x3b0 [ 85.793996][ T5369] ? lockdep_hardirqs_on+0x9c/0x150 [ 85.796181][ T5369] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 85.798747][ T5369] ? clear_bhb_loop+0x60/0xb0 [ 85.800724][ T5369] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 85.803052][ T5369] RIP: 0033:0x7fe271f8eec9 [ 85.804657][ T5369] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 85.812676][ T5369] RSP: 002b:00007fe272db3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000012 [ 85.816149][ T5369] RAX: ffffffffffffffda RBX: 00007fe2721e6090 RCX: 00007fe271f8eec9 [ 85.819422][ T5369] RDX: 0000000000000001 RSI: 0000200000000300 RDI: 0000000000000008 [ 85.822541][ T5369] RBP: 00007fe272011f91 R08: 0000000000000000 R09: 0000000000000000 [ 85.825497][ T5369] R10: 0000010000000005 R11: 0000000000000246 R12: 0000000000000000 [ 85.828193][ T5369] R13: 00007fe2721e6128 R14: 00007fe2721e6090 R15: 00007ffd8b478528 [ 85.830845][ T5369] [ 85.832271][ T5369] Kernel Offset: disabled [ 85.833694][ T5369] Rebooting in 86400 seconds..