program:
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', 0x0, &(0x7f0000000240)={[{@nouser_xattr}]}, 0x1, 0x174, &(0x7f0000000000)="$eJzsmD9PwkAYxp9rESJxcMZBE0lEI6UtalxMJPEDmOCfsEGkErSIQgdh85MYv4CLu/GjKJMLo3NN2wNOouKgJsbnN7z3vNe317u3ydOkIIT8W3pPL48XvcaKDmAGaSTk/LM+qtGU+tVssTl3vZ28K9+WdlL3/fH1BADf//rzYwAeCjo8mfv+27vTctyDNtT70LAs9SEEDKnL0HAgtQOBktQnim4G9YZxXHcd46jpVgNhBsEKgh2E/Pj++lcCVWV/Qrne7nRPK67rtH5QTOpfv6BhS9mf+r4GvTGV/lnQYEmdh0BR6k0kBr2JWqKcPxUbra//8vkpKCj+mhj5k38jsKT4U0zxj5zXOM+1O91svVGpOTXnzLbzG+aaaa7budCIoviJ/02H/pRU1p/6oDYu4riseF7LiuIwt6P4nuPGQ//TkFmMciHnVMLvwaxYCIaMLnNCCCGEEEIIIYQQQgj5duYhwr+gE7B3w+rXAAAA//9nP3XZ") (fail_nth: 99)
[ 75.966228][ T4530] Bluetooth: hci0: command tx timeout
[ 76.327326][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[ 76.330150][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[ 76.952911][ T5102] loop0: detected capacity change from 0 to 16
[ 76.979982][ T5102] FAULT_INJECTION: forcing a failure.
[ 76.979982][ T5102] name failslab, interval 1, probability 0, space 0, times 1
[ 76.984217][ T5102] CPU: 0 UID: 0 PID: 5102 Comm: syz.0.0 Not tainted 6.11.0-rc3-syzkaller-00066-g1fb918967b56 #0
[ 76.988072][ T5102] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 76.991944][ T5102] Call Trace:
[ 76.993176][ T5102]
[ 76.994165][ T5102] dump_stack_lvl+0x241/0x360
[ 76.995927][ T5102] ? __pfx_dump_stack_lvl+0x10/0x10
[ 76.997757][ T5102] ? __pfx__printk+0x10/0x10
[ 76.999418][ T5102] ? kmem_cache_alloc_node_noprof+0x49/0x320
[ 77.001831][ T5102] ? __pfx___might_resched+0x10/0x10
[ 77.003943][ T5102] ? __kasan_kmalloc+0x98/0xb0
[ 77.005749][ T5102] should_fail_ex+0x3b0/0x4e0
[ 77.007537][ T5102] should_failslab+0xac/0x100
[ 77.009341][ T5102] ? alloc_vmap_area+0x24f/0x2400
[ 77.011278][ T5102] kmem_cache_alloc_node_noprof+0x71/0x320
[ 77.013385][ T5102] alloc_vmap_area+0x24f/0x2400
[ 77.015250][ T5102] ? __pfx_alloc_vmap_area+0x10/0x10
[ 77.017090][ T5102] ? __kasan_kmalloc+0x98/0xb0
[ 77.018885][ T5102] ? __kmalloc_cache_node_noprof+0x1d3/0x300
[ 77.020968][ T5102] ? __get_vm_area_node+0x113/0x270
[ 77.023035][ T5102] ? z_erofs_gbuf_growsize+0x262/0x520
[ 77.025166][ T5102] __get_vm_area_node+0x1a9/0x270
[ 77.027143][ T5102] vmap+0x119/0x2b0
[ 77.028609][ T5102] ? z_erofs_gbuf_growsize+0x262/0x520
[ 77.030500][ T5102] z_erofs_gbuf_growsize+0x262/0x520
[ 77.032279][ T5102] z_erofs_parse_cfgs+0x1e6/0x680
[ 77.034225][ T5102] ? __pfx_z_erofs_parse_cfgs+0x10/0x10
[ 77.036315][ T5102] ? kasan_quarantine_put+0xdc/0x230
[ 77.038131][ T5102] ? lockdep_hardirqs_on+0x99/0x150
[ 77.039737][ T5102] ? read_word_at_a_time+0xe/0x20
[ 77.041356][ T5102] ? sized_strscpy+0x8d/0x220
[ 77.042928][ T5102] erofs_fc_fill_super+0x1194/0x1730
[ 77.044826][ T5102] ? __pfx_erofs_fc_fill_super+0x10/0x10
[ 77.047114][ T5102] ? sb_set_blocksize+0x98/0xf0
[ 77.048958][ T5102] ? setup_bdev_super+0x4e6/0x5d0
[ 77.050923][ T5102] get_tree_bdev+0x3f7/0x570
[ 77.052603][ T5102] ? __pfx_erofs_fc_fill_super+0x10/0x10
[ 77.054734][ T5102] ? __pfx_get_tree_bdev+0x10/0x10
[ 77.056662][ T5102] ? apparmor_capable+0x138/0x1b0
[ 77.058581][ T5102] ? bpf_lsm_capable+0x9/0x10
[ 77.060328][ T5102] vfs_get_tree+0x90/0x2a0
[ 77.061945][ T5102] do_new_mount+0x2be/0xb40
[ 77.063668][ T5102] ? __pfx_do_new_mount+0x10/0x10
[ 77.065471][ T5102] __se_sys_mount+0x2d6/0x3c0
[ 77.067047][ T5102] ? __pfx___se_sys_mount+0x10/0x10
[ 77.068886][ T5102] ? do_syscall_64+0x100/0x230
[ 77.070706][ T5102] ? __x64_sys_mount+0x20/0xc0
[ 77.072536][ T5102] do_syscall_64+0xf3/0x230
[ 77.074184][ T5102] ? clear_bhb_loop+0x35/0x90
[ 77.075886][ T5102] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 77.078001][ T5102] RIP: 0033:0x7fe726b7b0ba
[ 77.079648][ T5102] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 7e 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 77.086339][ T5102] RSP: 002b:00007fe727918e68 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5
[ 77.091023][ T5102] RAX: ffffffffffffffda RBX: 00007fe727918ef0 RCX: 00007fe726b7b0ba
[ 77.093845][ T5102] RDX: 0000000020000180 RSI: 00000000200001c0 RDI: 00007fe727918eb0
[ 77.096491][ T5102] RBP: 0000000020000180 R08: 00007fe727918ef0 R09: 0000000000000000
[ 77.099363][ T5102] R10: 0000000000000000 R11: 0000000000000202 R12: 00000000200001c0
[ 77.102140][ T5102] R13: 00007fe727918eb0 R14: 0000000000000174 R15: 0000000020000240
[ 77.105158][ T5102]
[ 77.285192][ T5102] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN NOPTI
[ 77.289549][ T5102] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
[ 77.292290][ T5102] CPU: 0 UID: 0 PID: 5102 Comm: syz.0.0 Not tainted 6.11.0-rc3-syzkaller-00066-g1fb918967b56 #0
[ 77.295853][ T5102] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 77.299447][ T5102] RIP: 0010:z_erofs_gbuf_growsize+0x45f/0x520
[ 77.301424][ T5102] Code: 57 dc 9e fd 48 8b 1b 48 85 db 74 44 43 80 3c 26 00 74 08 4c 89 ef e8 40 dc 9e fd 48 c1 e5 03 49 03 6d 00 48 89 e8 48 c1 e8 03 <42> 80 3c 20 00 74 08 48 89 ef e8 22 dc 9e fd 48 3b 5d 00 74 18 e8
[ 77.308424][ T5102] RSP: 0018:ffffc90002e4f918 EFLAGS: 00010246
[ 77.310493][ T5102] RAX: 0000000000000000 RBX: ffffea000117ce40 RCX: ffff888020388000
[ 77.313500][ T5102] RDX: ffff888020388000 RSI: 0000000000000001 RDI: 0000000000000000
[ 77.316214][ T5102] RBP: 0000000000000000 R08: ffffffff845bf21b R09: 1ffffffff26e5f27
[ 77.319125][ T5102] R10: dffffc0000000000 R11: fffffbfff26e5f28 R12: dffffc0000000000
[ 77.321929][ T5102] R13: ffff88803267dcc8 R14: 1ffff110064cfb99 R15: 0000000000000000
[ 77.324940][ T5102] FS: 00007fe7279196c0(0000) GS:ffff888020800000(0000) knlGS:0000000000000000
[ 77.328355][ T5102] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 77.330895][ T5102] CR2: 00007fc5da995ed8 CR3: 00000000369c6000 CR4: 0000000000350ef0
[ 77.333957][ T5102] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 77.337084][ T5102] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 77.340359][ T5102] Call Trace:
[ 77.341636][ T5102]
[ 77.342681][ T5102] ? __die_body+0x88/0xe0
[ 77.344270][ T5102] ? die_addr+0x108/0x140
[ 77.345921][ T5102] ? exc_general_protection+0x3dd/0x5d0
[ 77.347990][ T5102] ? asm_exc_general_protection+0x26/0x30
[ 77.350068][ T5102] ? z_erofs_gbuf_growsize+0x3eb/0x520
[ 77.351980][ T5102] ? z_erofs_gbuf_growsize+0x45f/0x520
[ 77.354013][ T5102] ? z_erofs_gbuf_growsize+0x3eb/0x520
[ 77.356106][ T5102] z_erofs_parse_cfgs+0x1e6/0x680
[ 77.358003][ T5102] ? __pfx_z_erofs_parse_cfgs+0x10/0x10
[ 77.359922][ T5102] ? kasan_quarantine_put+0xdc/0x230
[ 77.361691][ T5102] ? lockdep_hardirqs_on+0x99/0x150
[ 77.363355][ T5102] ? read_word_at_a_time+0xe/0x20
[ 77.365032][ T5102] ? sized_strscpy+0x8d/0x220
[ 77.366574][ T5102] erofs_fc_fill_super+0x1194/0x1730
[ 77.368275][ T5102] ? __pfx_erofs_fc_fill_super+0x10/0x10
[ 77.370300][ T5102] ? sb_set_blocksize+0x98/0xf0
[ 77.371888][ T5102] ? setup_bdev_super+0x4e6/0x5d0
[ 77.373436][ T5102] get_tree_bdev+0x3f7/0x570
[ 77.375025][ T5102] ? __pfx_erofs_fc_fill_super+0x10/0x10
[ 77.376874][ T5102] ? __pfx_get_tree_bdev+0x10/0x10
[ 77.378674][ T5102] ? apparmor_capable+0x138/0x1b0
[ 77.380445][ T5102] ? bpf_lsm_capable+0x9/0x10
[ 77.382134][ T5102] vfs_get_tree+0x90/0x2a0
[ 77.383763][ T5102] do_new_mount+0x2be/0xb40
[ 77.385435][ T5102] ? __pfx_do_new_mount+0x10/0x10
[ 77.387225][ T5102] __se_sys_mount+0x2d6/0x3c0
[ 77.388952][ T5102] ? __pfx___se_sys_mount+0x10/0x10
[ 77.390789][ T5102] ? do_syscall_64+0x100/0x230
[ 77.392620][ T5102] ? __x64_sys_mount+0x20/0xc0
[ 77.394535][ T5102] do_syscall_64+0xf3/0x230
[ 77.396005][ T5102] ? clear_bhb_loop+0x35/0x90
[ 77.397691][ T5102] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 77.399912][ T5102] RIP: 0033:0x7fe726b7b0ba
[ 77.401617][ T5102] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 7e 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 77.408757][ T5102] RSP: 002b:00007fe727918e68 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5
[ 77.411814][ T5102] RAX: ffffffffffffffda RBX: 00007fe727918ef0 RCX: 00007fe726b7b0ba
[ 77.414820][ T5102] RDX: 0000000020000180 RSI: 00000000200001c0 RDI: 00007fe727918eb0
[ 77.417810][ T5102] RBP: 0000000020000180 R08: 00007fe727918ef0 R09: 0000000000000000
[ 77.420736][ T5102] R10: 0000000000000000 R11: 0000000000000202 R12: 00000000200001c0
[ 77.423536][ T5102] R13: 00007fe727918eb0 R14: 0000000000000174 R15: 0000000020000240
[ 77.426550][ T5102]
[ 77.427678][ T5102] Modules linked in:
[ 77.585041][ T5102] ---[ end trace 0000000000000000 ]---
[ 77.587261][ T5102] RIP: 0010:z_erofs_gbuf_growsize+0x45f/0x520
[ 77.589618][ T5102] Code: 57 dc 9e fd 48 8b 1b 48 85 db 74 44 43 80 3c 26 00 74 08 4c 89 ef e8 40 dc 9e fd 48 c1 e5 03 49 03 6d 00 48 89 e8 48 c1 e8 03 <42> 80 3c 20 00 74 08 48 89 ef e8 22 dc 9e fd 48 3b 5d 00 74 18 e8
[ 77.605200][ T5102] RSP: 0018:ffffc90002e4f918 EFLAGS: 00010246
[ 77.615849][ T5102] RAX: 0000000000000000 RBX: ffffea000117ce40 RCX: ffff888020388000
[ 77.618803][ T5102] RDX: ffff888020388000 RSI: 0000000000000001 RDI: 0000000000000000
[ 77.621345][ T5102] RBP: 0000000000000000 R08: ffffffff845bf21b R09: 1ffffffff26e5f27
[ 77.623855][ T5102] R10: dffffc0000000000 R11: fffffbfff26e5f28 R12: dffffc0000000000
[ 77.635220][ T5102] R13: ffff88803267dcc8 R14: 1ffff110064cfb99 R15: 0000000000000000
[ 77.638132][ T5102] FS: 00007fe7279196c0(0000) GS:ffff888020800000(0000) knlGS:0000000000000000
[ 77.645304][ T5102] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 77.647737][ T5102] CR2: 00007fc5da995ed8 CR3: 00000000369c6000 CR4: 0000000000350ef0
[ 77.661649][ T5102] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 77.664502][ T5102] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 77.681873][ T5102] Kernel panic - not syncing: Fatal exception
[ 77.684101][ T5102] Kernel Offset: disabled
[ 77.685711][ T5102] Rebooting in 86400 seconds..