x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1100.424016][T28223] loop3: detected capacity change from 264192 to 0 [ 1100.441715][T28225] loop5: detected capacity change from 264192 to 0 [ 1100.475576][T28223] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:26 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x1b00000000000000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1100.598724][T28194] loop1: detected capacity change from 264192 to 0 [ 1100.640415][T28194] FAT-fs (loop1): Unrecognized mount option "" or missing value [ 1100.723552][T28238] loop3: detected capacity change from 264192 to 0 [ 1100.738170][T28194] binder: 28193:28194 unknown command 0 [ 1100.740421][T28238] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1100.748249][T28194] binder: 28193:28194 ioctl c0306201 20000200 returned -22 05:21:26 executing program 1: syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000500)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8596eee78f9c6908506d1de851566d6a77b986d556d4aa30000000100000000bd5e11870a966c2cc4595d7fdc176a09508ce77dfa0a7c77c5f900ff7507f42778e0d367514106f3194a8d484265504c48455a8541699f9826711484570e5a610cc536e443cd28ea69eb03b0493e3a45ea29296be4dcd5bb6c29ad9646d7142fd6a98a3f40b12da8ac8db1c9ba0785168ac4d4771c2842e6c78bf5647c373726d14ff826023ae4fc8d64fc4072c4a6329d23df87fe23f1f19336ea7ea7212b76904d812f", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885c836f702f63672c777594a159e6e20706608586c23d38cee39f1005000000000000007487b76c137941c5e68f1a0051005f06c8b90cb24fb81320fb29d62501126ea75477a742590010ad568d2235330de3f2", @ANYRESDEC, @ANYBLOB="00365fb4a3000000000009000000000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41100, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x7, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r1, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000080)={0x0, 0x0}, &(0x7f00000000c0)=0xc) r3 = socket$netlink(0x10, 0x3, 0x0) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) fchown(0xffffffffffffffff, r2, r4) chown(&(0x7f0000000040)='./file1\x00', 0xee00, r4) r5 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) listxattr(&(0x7f0000000100)='./bus\x00', &(0x7f0000000480)=""/124, 0x7c) 05:21:26 executing program 2: prctl$PR_SET_FPEXC(0xc, 0x0) r0 = syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r1 = creat(&(0x7f0000000140)='./file1\x00', 0x0) syslog(0x0, 0x0, 0x0) sendmsg$NL80211_CMD_DEL_PMKSA(r1, &(0x7f0000001b80)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000001b40)={&(0x7f0000001bc0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="1a022abd7000fddbdf253500000008001f00000004000a0006005050505050500000e66bf58c9cd6"], 0x28}, 0x1, 0x0, 0x0, 0x48000}, 0x4080) ftruncate(r1, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r1, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r1, r3, 0x0, 0x8400fffffffa) r4 = pidfd_getfd(r1, r2, 0x0) ioctl$RTC_PIE_ON(r4, 0x7005) recvmsg(r1, &(0x7f0000000640)={&(0x7f0000000240)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @initdev}}}, 0x80, &(0x7f00000007c0)=[{&(0x7f00000001c0)}, {&(0x7f0000000340)=""/101, 0x65}, {&(0x7f00000002c0)=""/57, 0x39}, {&(0x7f0000000400)=""/173, 0xad}, {&(0x7f00000004c0)=""/190, 0xbe}, {&(0x7f0000000580)=""/162, 0xa2}, {&(0x7f0000000940)=""/4096, 0x1000}, {&(0x7f00000006c0)=""/234, 0xea}], 0x8, &(0x7f0000001940)=""/211, 0xd3}, 0x20141) r6 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000880)='NLBL_UNLBL\x00') sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r5, &(0x7f0000001ac0)={&(0x7f0000000840)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000001a80)={&(0x7f0000001a40)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r6, @ANYBLOB="000027bd7000fedbdf2506d520000800050000000000"], 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x40080) mknod(&(0x7f0000000100)='./bus\x00', 0x0, 0x4) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:21:26 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sysvipc/sem\x00', 0x0, 0x0) ioctl$UI_SET_KEYBIT(r2, 0x40045565, 0x26) sendfile(r0, r1, 0x0, 0x8400fffffffa) mknod(0x0, 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0) r3 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r4 = dup2(r3, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) getsockname$ax25(r4, &(0x7f0000000140)={{0x3, @rose}, [@netrom, @remote, @bcast, @remote, @null, @default, @rose, @null]}, &(0x7f00000001c0)=0x48) [ 1100.870746][T28238] loop3: detected capacity change from 264192 to 0 [ 1100.892951][T28238] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:26 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r0, 0x0, 0x2) sendfile(r0, 0xffffffffffffffff, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:21:26 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x1c00000000000000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1101.020739][T28258] loop4: detected capacity change from 264192 to 0 [ 1101.129421][T28266] loop2: detected capacity change from 264192 to 0 [ 1101.154416][T28270] loop3: detected capacity change from 264192 to 0 [ 1101.170031][T28270] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:26 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x1d00000000000000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1101.198012][T28264] binder: 28256:28264 unknown command 0 05:21:26 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) ioctl$TUNSETOFFLOAD(r0, 0x400454d0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r1, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:21:26 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x0, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1101.250314][T28264] binder: 28256:28264 ioctl c0306201 20000200 returned -22 05:21:26 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1900000000000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:21:26 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x1e00000000000000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1101.423041][T28282] loop2: detected capacity change from 264192 to 0 [ 1101.445297][T28286] loop3: detected capacity change from 264192 to 0 [ 1101.527027][T28286] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1101.536133][T28295] loop5: detected capacity change from 264192 to 0 [ 1101.664283][T28286] loop3: detected capacity change from 264192 to 0 [ 1101.715620][T28286] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:27 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x1f00000000000000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:21:27 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x21c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000000400)={{{@in6=@mcast1, @in=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{}, 0x0, @in6=@mcast2}}, &(0x7f00000001c0)=0xe8) r4 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000280)='/dev/cachefiles\x00', 0x622800, 0x0) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000500)=@bpf_ext={0x1c, 0x6, &(0x7f0000000140)=@raw=[@call={0x85, 0x0, 0x0, 0x14}, @jmp={0x5, 0x1, 0x0, 0x3, 0x6, 0xffffffffffffffe0, 0xffffffffffffffff}, @generic={0x4, 0xc, 0x6, 0x5, 0x200}, @generic={0x1, 0x8, 0x6, 0xae00, 0xfff}, @btf_id={0x18, 0x6, 0x3, 0x0, 0x3}], &(0x7f0000000180)='GPL\x00', 0x520, 0x0, 0x0, 0x6bb37ee8c79f8c5e, 0x2, [], r3, 0x0, r4, 0x8, &(0x7f00000002c0)={0x1, 0x1}, 0x8, 0x10, &(0x7f0000000340)={0x5, 0xc, 0x4, 0x1}, 0x10, 0x2ed7c, r2}, 0x78) mknod(0x0, 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0) ioctl$int_in(r1, 0x5452, &(0x7f0000000100)=0x4) 05:21:27 executing program 1: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000006c0)={{{@in6=@loopback, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@remote}, 0x0, @in=@empty}}, &(0x7f0000000100)=0xe8) ioctl$SIOCAX25GETUID(r0, 0x89e0, &(0x7f00000001c0)={0x3, @null, r1}) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) sendmsg$DEVLINK_CMD_SB_OCC_MAX_CLEAR(r2, &(0x7f0000000480)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x611a0c62e92bb390}, 0xc, &(0x7f0000000400)={&(0x7f0000000940)={0x150, 0x0, 0x8, 0x70bd29, 0x25dfdbfd, {}, [{@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x3}}, {@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x6}}, {@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0xfffffffc}}, {@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x7}}, {@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x3}}, {@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x5}}, {@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0xff}}, {@pci={{0x8, 0x1, 'pci\x00'}, {0x11, 0x2, '0000:00:10.0\x00'}}, {0x8, 0xb, 0x6}}]}, 0x150}, 0x1, 0x0, 0x0, 0x2000f001}, 0x411) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1102.063445][T28313] loop3: detected capacity change from 264192 to 0 [ 1102.118764][T28313] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1102.134074][T28320] loop4: detected capacity change from 264192 to 0 [ 1102.166866][T28323] loop1: detected capacity change from 264192 to 0 [ 1102.248847][T28313] loop3: detected capacity change from 264192 to 0 05:21:27 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x0, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1102.325059][T28313] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:27 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r1, 0x0, 0x8400fffffffa) fcntl$getownex(r0, 0x10, &(0x7f0000000140)={0x0, 0x0}) r3 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) r4 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r5 = dup2(r4, r3) ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000180)={&(0x7f0000000400)={0xb0, 0x0, 0x400, 0x70bd26, 0x25dfdbfd, {}, [{@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, r2}}, {@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8, 0x1, 'pci\x00'}, {0x11, 0x2, '0000:00:10.0\x00'}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r5}}]}, 0xb0}, 0x1, 0x0, 0x0, 0x4000800}, 0x4) mknod(0x0, 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0) 05:21:27 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) r2 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) r3 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r4 = dup2(r3, r2) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) setsockopt$inet6_udp_int(r4, 0x11, 0x67, &(0x7f0000000100)=0x10000, 0x4) sendfile(r0, r1, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:21:27 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1a00000000000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:21:28 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x2000000000000000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1102.554463][T28339] loop5: detected capacity change from 264192 to 0 [ 1102.583834][ T35] kauditd_printk_skb: 19 callbacks suppressed [ 1102.583844][ T35] audit: type=1800 audit(1609478488.041:2002): pid=28345 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=15969 res=0 errno=0 [ 1102.722486][T28350] loop4: detected capacity change from 264192 to 0 [ 1102.780404][ T35] audit: type=1800 audit(1609478488.231:2003): pid=28323 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="loop1" ino=1532 res=0 errno=0 05:21:28 executing program 1: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) getpeername$packet(r0, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=@bridge_newneigh={0x30, 0x1c, 0x1, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@NDA_LLADDR={0xa, 0x2, @multicast}, @NDA_VLAN={0x6}]}, 0x30}}, 0x0) r3 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r3, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000480)=ANY=[@ANYBLOB="0000002b849a9f84831ab3f95511d600060100010000000000eb5ea0ac20d6bc95a0fb5dacb74261828759863c1954087999748f", @ANYRES32=r3, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r3, 0x0, 0x2) r4 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r3, r4, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r5 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1102.817803][ T35] audit: type=1800 audit(1609478488.271:2004): pid=28356 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=16369 res=0 errno=0 [ 1102.854660][T28359] loop3: detected capacity change from 264192 to 0 [ 1102.876459][T28350] binder: 28349:28350 unknown command 0 [ 1102.882025][T28350] binder: 28349:28350 ioctl c0306201 20000200 returned -22 [ 1102.934398][T28358] loop2: detected capacity change from 264192 to 0 [ 1102.959692][ T35] audit: type=1800 audit(1609478488.411:2005): pid=28364 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=16378 res=0 errno=0 [ 1102.966264][T28364] binder: 28353:28364 unknown command 0 [ 1102.986445][T28364] binder: 28353:28364 ioctl c0306201 20000200 returned -22 [ 1103.016060][T28359] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:28 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x2010000000000000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1103.204899][T28369] loop1: detected capacity change from 264192 to 0 05:21:28 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x0, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1103.345212][ T35] audit: type=1800 audit(1609478488.801:2006): pid=28369 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="loop1" ino=1535 res=0 errno=0 05:21:28 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1b00000000000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1103.415601][T28378] loop3: detected capacity change from 264192 to 0 [ 1103.474510][T28378] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1103.490642][T28379] loop5: detected capacity change from 264192 to 0 [ 1103.535760][ T35] audit: type=1800 audit(1609478488.991:2007): pid=28363 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=16369 res=0 errno=0 05:21:29 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) r1 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) r2 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r3 = dup2(r2, r1) syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f0000000140)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) ioctl$RAW_CHAR_CTRL_GETBIND(r3, 0xac01, &(0x7f0000000100)={0x1, 0x7, 0x0}) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r0, 0x0, 0x2) r4 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r4, 0x0, 0x8400fffffffa) mknod(0x0, 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0) [ 1103.582561][ T35] audit: type=1800 audit(1609478489.011:2008): pid=28379 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="loop5" ino=1537 res=0 errno=0 05:21:29 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x2100000000000000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1103.752633][T28392] loop4: detected capacity change from 264192 to 0 [ 1103.816400][T28401] loop3: detected capacity change from 264192 to 0 [ 1103.824884][ T35] audit: type=1800 audit(1609478489.281:2009): pid=28395 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=16378 res=0 errno=0 [ 1103.825740][T28358] binder: 28353:28358 unknown command 0 [ 1103.848411][T28400] binder: 28391:28400 unknown command 0 [ 1103.855689][T28400] binder: 28391:28400 ioctl c0306201 20000200 returned -22 [ 1103.876949][T28400] binder: 28391:28400 ioctl ac01 20000100 returned -22 [ 1103.905834][T28401] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1103.942715][T28358] binder: 28353:28358 ioctl c0306201 20000200 returned -22 05:21:29 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r1, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1103.978556][ T35] audit: type=1800 audit(1609478489.351:2010): pid=28400 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=16368 res=0 errno=0 [ 1104.132211][T28401] loop3: detected capacity change from 264192 to 0 [ 1104.143895][ T35] audit: type=1800 audit(1609478489.601:2011): pid=28408 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="loop1" ino=1535 res=0 errno=0 05:21:29 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x2200000000000000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1104.182153][T28401] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1104.217142][T28412] loop2: detected capacity change from 264192 to 0 05:21:29 executing program 1: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x22, &(0x7f0000000180)=""/34, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x2, 0x1, 0x0, 0xffffffff}, 0x5, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r1, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r2 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vsock\x00', 0x0, 0x0) getsockopt$inet_sctp_SCTP_CONTEXT(r2, 0x84, 0x11, &(0x7f00000001c0)={0x0, 0x10001}, &(0x7f0000000380)=0x8) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:21:29 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1104.472284][T28420] loop3: detected capacity change from 264192 to 0 [ 1104.502374][T28420] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:30 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x2300000000000000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:21:30 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1c00000000000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1104.559507][T28427] binder: 28391:28427 ioctl ac01 20000100 returned -22 [ 1104.595912][T28428] loop5: detected capacity change from 264192 to 0 [ 1104.619849][T28429] loop1: detected capacity change from 264192 to 0 05:21:30 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) r0 = syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r1 = creat(&(0x7f0000000240)='./bus\x00', 0x0) ftruncate(r1, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r1, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r1, r3, 0x0, 0x8400fffffffa) mknod(0x0, 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0) r4 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) setsockopt$inet_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f00000001c0)='tls\x00', 0x4) r5 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r6 = dup2(r5, r4) ioctl$BINDER_WRITE_READ(r6, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) sendmsg$NL80211_CMD_SET_COALESCE(r6, &(0x7f0000000180)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000140)={&(0x7f0000001600)=ANY=[@ANYBLOB="6c110000", @ANYRES16=r0, @ANYBLOB="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"], 0x112c}, 0x1, 0x0, 0x0, 0xc000}, 0x4) 05:21:30 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x2400000000000000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1104.789931][T28443] loop3: detected capacity change from 264192 to 0 [ 1104.824196][T28447] loop4: detected capacity change from 264192 to 0 [ 1104.864437][T28443] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1104.968102][T28451] binder: 28445:28451 unknown command 0 05:21:30 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x2500000000000000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1105.013721][T28451] binder: 28445:28451 ioctl c0306201 20000200 returned -22 [ 1105.133148][T28458] loop3: detected capacity change from 264192 to 0 [ 1105.190662][T28458] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:30 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:21:30 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) r1 = syz_mount_image$affs(&(0x7f0000000100)='affs\x00', &(0x7f0000000140)='\x00', 0x73, 0x5, &(0x7f0000000340)=[{&(0x7f0000000180)="a0d06f4874f26679eaebe859dcb6892dfaf3bec3b488309c2ac9dd3afcd2327767c9d9db361249fbf2a9c1c6c3169d16bcadf2af01385e64737c51baa98cb8884c425fe5158bbec9231bc4596391f74bd0be32e0030433d7eacf52d3fc9bccd9f71dd5249a5875f968d7747259dd0399dc7c9f4402949df4ab6c6641094c", 0x7e, 0x4}, {&(0x7f0000000480)="d16911d06585c767492cdc75b91a6be42a925897265c9e228183fcb0a72211bbd25d9c9ac20407c357a49f2e3e5d7f29ecdf2585134eb991a0f2629b1e8364ec994be1793136af15d1738d2ab4e22b1533b410a8e9e71319ab410d1c506093201e548048ebb914634c0bc6b45979cbc91444a7a5e2d0bd6a115aa3ae6fa5a92b31f4e35674816ee555e9257345be", 0x8e, 0x1ff}, {&(0x7f0000000280)="13c9a828", 0x4, 0x40}, {&(0x7f00000002c0)="cbd9543850c72cc82d980293f5078882edcbc2a04f300c", 0x17, 0x8}, {&(0x7f0000000540)="d5cd006d2ae8281aa9529b285fea2e1dd2c88f9d4602ebe3ad43b230c340b0e834cfffe9fdd3dc3d06d45602e34018ad09417a76658efd5be0f1492725dd2bb35ab17a10734715739bac9654bd5f8775ef558a6681aefdb5821cdbc263beecf870807bb2210def76236519be38f297b83e7cb0f6bfcd77f11375b4f637d36038ca18bed9f20e", 0x86, 0x6}], 0x200018, &(0x7f0000000400)=ANY=[@ANYBLOB="6d73646f73002c272a24247d26405c7d2c6861735de5c230682c7063723d303030303000000080303030303030303030"]) fspick(r1, &(0x7f0000000600)='./file1\x00', 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x7ffb, 0x7) sendto$inet(0xffffffffffffffff, &(0x7f00003cef9f)='7', 0x1, 0x0, &(0x7f0000618000)={0x2, 0x4e20, @loopback}, 0x10) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000025e000)={0x2, [0x0, 0x0]}, &(0x7f0000a8a000)=0xc) getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000000)=@sack_info={r3}, &(0x7f0000000080)=0xc) getsockopt$inet_sctp6_SCTP_STATUS(r2, 0x84, 0xe, &(0x7f00000006c0)={r3, 0x20, 0xffff, 0x7, 0x81, 0x19b, 0x54e5, 0x5, {0x0, @in6={{0xa, 0x4e20, 0x0, @local, 0x81}}, 0x3, 0x3, 0x20, 0x4, 0x7}}, &(0x7f0000000640)=0xb0) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:21:30 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x2600000000000000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:21:30 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) r2 = fsmount(r1, 0x0, 0x70) sendmsg$IPSET_CMD_GET_BYNAME(r2, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x28, 0xe, 0x6, 0x801, 0x0, 0x0, {0x5, 0x0, 0x4}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x4010}, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r0, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r3, 0x0, 0x8400fffffffa) mknod(0x0, 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0) [ 1105.536600][T28476] loop5: detected capacity change from 264192 to 0 05:21:31 executing program 1: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) r1 = syz_io_uring_complete(0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x18, 0x2038, &(0x7f0000000540)=ANY=[], &(0x7f0000000140)='syzkaller\x00', 0xfff7f0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x9, [], 0x0, 0x1c, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff, r1}, 0xfd74) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) ioctl$VIDIOC_G_PRIORITY(r2, 0x80045643, 0x3) [ 1105.593599][T28475] loop2: detected capacity change from 264192 to 0 [ 1105.606978][T28479] loop3: detected capacity change from 264192 to 0 05:21:31 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1d00000000000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1105.674430][T28475] FAT-fs (loop2): Unrecognized mount option "€" or missing value [ 1105.674492][T28479] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:31 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x2700000000000000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:21:31 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1105.943497][T28502] loop3: detected capacity change from 264192 to 0 [ 1105.964267][T28502] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1106.115154][T28502] loop3: detected capacity change from 264192 to 0 [ 1106.128634][T28502] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:31 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x2800000000000000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1106.224973][T28513] loop5: detected capacity change from 264192 to 0 [ 1106.295654][T28517] loop3: detected capacity change from 264192 to 0 [ 1106.341933][T28487] loop4: detected capacity change from 264192 to 0 [ 1106.407854][T28475] loop2: detected capacity change from 264192 to 0 [ 1106.442568][T28475] FAT-fs (loop2): Unrecognized mount option "€" or missing value [ 1106.444409][T28517] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:32 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) socket$inet6(0xa, 0x6, 0x100) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r1, 0x0, 0x8400fffffffa) mknod(0x0, 0x8000, 0x7) r2 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self\x00', 0x181000, 0x0) fallocate(r2, 0x1c, 0x6, 0x9) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0) 05:21:32 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r1, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r2 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) r3 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r4 = dup2(r3, r2) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) openat$cgroup_devices(r4, &(0x7f0000000100)='devices.deny\x00', 0x2, 0x0) [ 1106.620729][T28496] loop1: detected capacity change from 264192 to 0 [ 1106.701887][T28496] FAT-fs (loop1): Unrecognized mount option "" or missing value [ 1106.740756][T28535] loop2: detected capacity change from 264192 to 0 05:21:32 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1e00000000000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:21:32 executing program 1: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f00000001c0)={0x8, 0x0}, 0x8) bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000380)=r1, 0x4) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="0000000058081dd7a300"/20], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) ioctl$KVM_PPC_GET_SMMU_INFO(0xffffffffffffffff, 0x8250aea6, &(0x7f00000006c0)=""/197) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) write$P9_RCREATE(0xffffffffffffffff, &(0x7f0000000100)={0x18, 0x73, 0x1, {{0x80, 0x1, 0x3}, 0xbb6}}, 0x18) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1106.794150][T28535] binder: 28534:28535 unknown command 0 [ 1106.814868][T28517] loop3: detected capacity change from 264192 to 0 [ 1106.826978][T28535] binder: 28534:28535 ioctl c0306201 20000200 returned -22 [ 1106.889871][T28517] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1106.903438][T28560] loop1: detected capacity change from 264192 to 0 [ 1106.913455][T28554] loop4: detected capacity change from 264192 to 0 05:21:32 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x3f00000000000000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:21:32 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, 0x0, 0x0, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1107.233429][T28574] loop3: detected capacity change from 264192 to 0 [ 1107.243169][T28574] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1107.305738][T28574] loop3: detected capacity change from 264192 to 0 [ 1107.315040][T28574] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:32 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x4000000000000000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1107.420119][T28580] loop5: detected capacity change from 264192 to 0 [ 1107.470796][T28588] loop3: detected capacity change from 264192 to 0 05:21:32 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r1, 0x0, 0x8400fffffffa) syz_genetlink_get_family_id$nbd(&(0x7f0000000100)='nbd\x00') mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1107.598869][T28588] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1107.674972][ T35] kauditd_printk_skb: 19 callbacks suppressed [ 1107.674985][ T35] audit: type=1800 audit(1609478493.132:2031): pid=28569 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="loop1" ino=1550 res=0 errno=0 05:21:33 executing program 1: r0 = syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') ioctl$BTRFS_IOC_DEV_REPLACE(r0, 0xca289435, &(0x7f0000000940)={0x1, 0x1, @status={[0x0, 0xfffffffffffffff7, 0x2211, 0x7fff, 0x0, 0x4]}, [0x7f, 0x6, 0x74dd26ff, 0xfffffffffffffff8, 0x8, 0x9, 0x3, 0xfbb, 0x1, 0x6, 0x100000000000000, 0x9, 0x40, 0x4, 0x1ff, 0xfff, 0x9, 0x5, 0x7, 0x7ff, 0x7, 0x40, 0x20, 0x80, 0x0, 0x8, 0x5, 0x3, 0x7fffffff, 0xfffffffffffffffa, 0x2, 0x400, 0x4, 0x6, 0x1, 0xffff, 0x7aef, 0xecd, 0x7, 0x9, 0x29fe, 0x81, 0xfffffffffffffffd, 0x7ff, 0x1, 0x3, 0x7ff, 0x8d, 0x4, 0x1ff, 0x6d22, 0x4, 0x3, 0x61, 0xffffffff, 0x7, 0x2, 0x0, 0x6, 0xaf, 0x81, 0x6, 0xffffffff, 0x4]}) r1 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r1, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r1, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r1, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r1, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) ioctl$sock_x25_SIOCADDRT(r1, 0x890b, &(0x7f00000006c0)={@remote={[], 0x1}, 0xb, 'wg2\x00'}) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1107.792375][T28588] loop3: detected capacity change from 264192 to 0 [ 1107.808117][ T35] audit: type=1800 audit(1609478493.222:2032): pid=28565 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="loop4" ino=1551 res=0 errno=0 05:21:33 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1f00000000000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:21:33 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./bus\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="040005090000000066617400e903090a0200027600f801", 0x17}], 0x200000, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r0, 0x0, 0x2) ioctl$sock_SIOCSIFVLAN_GET_VLAN_REALDEV_NAME_CMD(r0, 0x8983, &(0x7f0000000340)={0x8, 'veth1_virt_wifi\x00', {'vlan1\x00'}, 0x3f}) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x0, 0x0) ioctl$RTC_UIE_ON(r2, 0x7003) ioctl$RTC_SET_TIME(r2, 0x4024700a, &(0x7f0000000040)={0x1b, 0x0, 0x0, 0x9, 0x0, 0x7f}) fadvise64(r2, 0x5, 0xe2, 0x0) ioctl$INCFS_IOC_FILL_BLOCKS(r2, 0x80106720, &(0x7f00000002c0)={0x1, &(0x7f0000000280)=[{0xd68, 0xdf, &(0x7f0000000100)="49bc839ffa3a51605abbcd71f181a00da15563aef46caf1fd657b27c045e15d0adde2617c79e137f1cf10f13e905c267bb7cfdd0947389f1b14f74fa651b0b61fe2c4b2de7beb569fb0fa585177b845247498e80deaed1aec15be524cea2e22e60a1f1cebcc0a9021742bb658ca0bf359b092a70e9ff2edd3236e7c880628c91c8975801c83132e4341a4d8f117995d5798a27b991882fde0d942d7adc78d4db7b5edb7dfff40e0b5fc56a9fb10d7c813da325bea3268c8914c7376f546f6a222274c2c26b14aa7ec86c15ef8714ec880a5122702afda9884430ab0c1f22bd", 0x1, 0x1}]}) sendfile(r0, r1, 0x0, 0x8400fffffffa) mknod(0x0, 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0) 05:21:33 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x4800000000000000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1107.888931][ T35] audit: type=1800 audit(1609478493.342:2033): pid=28607 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=15810 res=0 errno=0 [ 1107.914381][T28601] loop2: detected capacity change from 264192 to 0 [ 1107.983544][T28615] loop1: detected capacity change from 264192 to 0 [ 1108.046756][ T35] audit: type=1800 audit(1609478493.502:2034): pid=28615 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="loop1" ino=1555 res=0 errno=0 [ 1108.093685][T28621] loop4: detected capacity change from 264192 to 0 05:21:33 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, 0x0, 0x0, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1108.154871][T28620] loop3: detected capacity change from 264192 to 0 [ 1108.170220][T28621] FAT-fs (loop4): bogus logical sector size 59648 [ 1108.179601][T28621] FAT-fs (loop4): Can't find a valid FAT filesystem [ 1108.220947][T28620] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1108.261470][T28621] loop4: detected capacity change from 264192 to 0 05:21:33 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x4c00000000000000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1108.311835][T28621] FAT-fs (loop4): Unrecognized mount option "" or missing value [ 1108.334452][T28635] loop5: detected capacity change from 264192 to 0 [ 1108.381573][ T35] audit: type=1800 audit(1609478493.832:2035): pid=28641 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=16368 res=0 errno=0 05:21:33 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x5c00000000000000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:21:33 executing program 4: r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000100)='/dev/full\x00', 0x80003, 0x0) waitid$P_PIDFD(0x3, r0, &(0x7f0000000140), 0x40000009, &(0x7f0000000400)) syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r1 = creat(&(0x7f0000000240)='./bus\x00', 0x0) ftruncate(r1, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r1, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r1, r2, 0x0, 0x8400fffffffa) mknod(0x0, 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0) [ 1108.599437][T28649] loop3: detected capacity change from 264192 to 0 05:21:34 executing program 2: syz_mount_image$msdos(&(0x7f0000000140)='msdos\x00', &(0x7f00000003c0)='./bus\x00', 0xf7ffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000180)='/dev/dlm-monitor\x00', 0x280001, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) r3 = signalfd4(r1, &(0x7f0000000100)={[0x5]}, 0x8, 0x80000) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0}) [ 1108.651510][ T35] audit: type=1800 audit(1609478494.102:2036): pid=28612 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="loop2" ino=1557 res=0 errno=0 [ 1108.671929][T28650] loop4: detected capacity change from 264192 to 0 [ 1108.688466][T28649] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1108.731455][ T35] audit: type=1800 audit(1609478494.182:2037): pid=28650 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=16370 res=0 errno=0 [ 1108.869586][T28649] loop3: detected capacity change from 264192 to 0 [ 1108.899449][ T35] audit: type=1800 audit(1609478494.352:2038): pid=28615 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="loop1" ino=1555 res=0 errno=0 [ 1108.901219][T28649] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:34 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2000000000000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:21:34 executing program 1: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41100, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r1, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) socket$key(0xf, 0x3, 0x2) r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) perf_event_open(0x0, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0) r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000440)='mptcp_pm\x00') sendmsg$MPTCP_PM_CMD_DEL_ADDR(0xffffffffffffffff, &(0x7f0000000f80)={&(0x7f0000000400), 0xc, &(0x7f0000000f40)={&(0x7f0000000480)=ANY=[@ANYBLOB="d56c9d2a", @ANYRES16=r3, @ANYBLOB="100025bd7000ffdbdf25020000000800020002000000"], 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x81) sendmsg$MPTCP_PM_CMD_SET_LIMITS(r0, &(0x7f0000000380)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000001c0)={&(0x7f0000000480)={0x54, r3, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@MPTCP_PM_ATTR_ADDR={0x40, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x4040}, 0x4000) [ 1109.041066][T28665] loop2: detected capacity change from 264192 to 0 05:21:34 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x6000000000000000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:21:34 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, 0x0, 0x0, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1109.229869][T28674] loop1: detected capacity change from 264192 to 0 05:21:34 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000100)=ANY=[@ANYRES32]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x2) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r0, 0x0, 0x2) open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x0, 0x0) ioctl$RTC_UIE_ON(r2, 0x7003) ioctl$RTC_SET_TIME(r2, 0x4024700a, &(0x7f0000000040)={0x1b, 0x1d, 0x0, 0x9, 0x6, 0x7f}) fadvise64(r2, 0x5, 0xe2, 0x0) r3 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x0, 0x0) ioctl$RTC_UIE_ON(r3, 0x7003) sendfile(r3, r1, 0x0, 0xfffffffffffffff7) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1109.327167][ T35] audit: type=1800 audit(1609478494.782:2039): pid=28682 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=16365 res=0 errno=0 [ 1109.375498][T28683] loop3: detected capacity change from 264192 to 0 [ 1109.421961][T28683] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1109.436439][T28691] loop5: detected capacity change from 264192 to 0 05:21:34 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./bus\x00', 0xffffffff, 0x4, &(0x7f0000000180)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}, {&(0x7f0000000400)="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", 0xfffffffffffffe04, 0x7}, {&(0x7f0000000100)="5670a6acedb0e2999c6cde11e4c3eb46dcfd71628ca4365a6906", 0x1a, 0x3}, {&(0x7f0000000140)="975402ec3ce404ac01a6fe3cd078012b120b274a098f318d3bec5f3f77ee9d8c11b497", 0x23, 0x100000000}], 0x140802, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r1, 0x0, 0x8400fffffffa) mknod(0x0, 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0) [ 1109.464424][ T35] audit: type=1800 audit(1609478494.922:2040): pid=28696 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=16370 res=0 errno=0 [ 1109.494696][T28693] loop2: detected capacity change from 264192 to 0 [ 1109.516383][T28683] loop3: detected capacity change from 264192 to 0 [ 1109.573638][T28693] FAT-fs (loop2): Unrecognized mount option "ÿÿÿÿ" or missing value [ 1109.581749][T28683] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:35 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x6800000000000000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1109.718446][T28693] loop2: detected capacity change from 264192 to 0 [ 1109.729627][T28693] FAT-fs (loop2): Unrecognized mount option "ÿÿÿÿ" or missing value [ 1109.776162][T28714] loop3: detected capacity change from 264192 to 0 [ 1109.788157][T28714] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:35 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x6c00000000000000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1109.845090][T28714] loop3: detected capacity change from 264192 to 0 [ 1109.852902][T28714] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:35 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17, 0x3}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ioctl$KVM_IRQFD(r0, 0x4020ae76, &(0x7f0000000100)={r0, 0x863d, 0x7}) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r0, 0x0, 0x2) r1 = syz_usbip_server_init(0x7) ioctl$BTRFS_IOC_WAIT_SYNC(r1, 0x40089416, &(0x7f0000000140)) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:21:35 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2010000000000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1109.995922][T28727] loop3: detected capacity change from 264192 to 0 [ 1110.049587][T28731] loop2: detected capacity change from 264192 to 0 [ 1110.058674][T28727] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1110.094029][T28731] FAT-fs (loop2): invalid media value (0x02) [ 1110.130154][T28731] FAT-fs (loop2): Can't find a valid FAT filesystem 05:21:35 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x0, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:21:35 executing program 1: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r1, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$EVIOCGLED(r1, 0x80404519, &(0x7f0000000100)=""/6) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(r3, 0x408c5333, &(0x7f0000000480)={0x10000, 0x1ff, 0x0, 'queue0\x00'}) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1110.156570][T28740] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN [ 1110.166930][T28709] loop4: detected capacity change from 264192 to 0 [ 1110.184459][T28727] loop3: detected capacity change from 264192 to 0 [ 1110.311973][T28727] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:35 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x7400000000000000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1110.460475][T28754] loop5: detected capacity change from 264192 to 0 [ 1110.515974][T28755] loop1: detected capacity change from 264192 to 0 [ 1110.558666][T28764] loop3: detected capacity change from 264192 to 0 [ 1110.606002][T28764] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1110.731741][T28764] loop3: detected capacity change from 264192 to 0 [ 1110.786706][T28764] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:36 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x7a00000000000000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:21:36 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./file0\x00', 0x4c702, 0x0) r2 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000140)) r3 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000180)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r4 = dup2(r3, r2) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) ioctl$SIOCPNDELRESOURCE(r4, 0x89ef, &(0x7f0000000100)=0x7) sendfile(r0, r1, 0x0, 0x8400fffffffa) mknod(0x0, 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0) 05:21:36 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2100000000000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1111.083813][T28779] loop4: detected capacity change from 264192 to 0 [ 1111.182328][T28779] binder: 28777:28779 unknown command 0 [ 1111.188161][T28782] loop3: detected capacity change from 264192 to 0 [ 1111.190118][T28779] binder: 28777:28779 ioctl c0306201 20000180 returned -22 05:21:36 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x0, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1111.238629][T28782] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1111.268429][T28788] binder: 28777:28788 ioctl 89ef 20000100 returned -22 [ 1111.326791][T28779] binder: 28777:28779 unknown command 0 [ 1111.334834][T28779] binder: 28777:28779 ioctl c0306201 20000180 returned -22 [ 1111.350886][T28793] binder: 28777:28793 ioctl 89ef 20000100 returned -22 [ 1111.358047][T28782] loop3: detected capacity change from 264192 to 0 [ 1111.473877][T28800] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN [ 1111.485769][T28731] loop2: detected capacity change from 264192 to 0 05:21:37 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) getsockopt$bt_hci(0xffffffffffffffff, 0x0, 0x3, &(0x7f0000000400)=""/4096, &(0x7f0000000100)=0x1000) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r1, 0x0, 0x8400fffffffa) mknod(0x0, 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0) 05:21:37 executing program 1: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) r0 = syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r1 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r1, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_REGISTER_FRAME(r1, &(0x7f0000000380)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000940)={0x370, r0, 0x10, 0x70bd2a, 0x25dfdbfc, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_FRAME_MATCH={0x83, 0x5b, "27113c6db2c6672bbf17c9c3b54549570359c32c0cb3df23df09ca70cca5a326a851fcddb169c451c70694bc052899eae42a6e0d51c58d5a900f50e626ee9a936c5e3aa6bd5df6c5cd3313490b98bc5eeebe51bbd53945c707e09ebe2d5ed499c9f4a6f72bd824c9be4e503ee2942739f3771dd050dd4fcd8ba369685048e0"}, @NL80211_ATTR_FRAME_MATCH={0xc0, 0x5b, "4ef6485d197450655ffe01499ddaead8ac7b03d7f5f83f0264a267b18603c6306696fcf8c29e29637f64f62dc7276aec0573428ab863e2a059e2b215b33e9e5732f1d0a76afb6d278819c4f040551733dff0423bc99c164f66e42710e9067e22a26c7ada3868fc958d1b3e4febc30c915d52f43bd8c08c6d04ca7cfe2110df1adaff815237f7f81e107116a9cc93ab2c95331853089fb2ff8eed2b8476ecf9e7f1a6045a52a2bd84681d64281947931f3f5a1363bd6b68008a3dfdc5"}, @NL80211_ATTR_FRAME_MATCH={0x4b, 0x5b, "34b549f96e1dc8464bb17a53a937c9aa7fbaeb2af5f7d6b98f8cc101e6375020ee8fad4907702271a4645354cdd0942bb9ff2f411f6c9d407aefe282bbc715073907a8268d8c08"}, @NL80211_ATTR_FRAME_MATCH={0xa0, 0x5b, "bd70569f0e305944459429712f224be8d4119c5172c03028733d7b077c9c3fc42f130c89e899c3141caab00f2597b3c81ef76c62323db91b6471dfd5ea8c21016225b2a0716ebc1a014cdaa90789d7bb518efd1f989cba2e50f57eda59e19656e09ea539620b76713bfd5c675a50aacf44e36551f9ab85ded597dd8d993c439916d99e08b2fe1904ab9c0cd6a75f577ea33f89db59ffb66fa326f979"}, @NL80211_ATTR_FRAME_MATCH={0xa7, 0x5b, "5a57e504e665af0fe8863e6904f7d74eb1d8298bb145ba1a57663515e871996c1fddb6c002d03b8a476e5cede806709ef56a9683aee03b402ebce94fed0e9a167400f8591d15ad14481af56130063694e6f2c094eb4647058725a45defd48054709848578f4c7c269cf062634c5ef9b43624d3227a65dc02f3182f80dd21211ad9a331117f5e8747d644fb23936a9d54ddcad838d8a6a843e3a386426703a56ec5f805"}, @NL80211_ATTR_FRAME_TYPE={0x6, 0x65, 0x8}, @NL80211_ATTR_FRAME_MATCH={0x71, 0x5b, "10b9e5be217a004e2346e173af68cc92d51590dcbc93f35c2f605ca7c7bd779b9dfb0134d9f19ff4892f82ba97d4b825ef095d8d2637b84af240d7da9bcc08a94672ad6b418dc560fd16fc768b5e9481c4a4f61605d5884d096300e7b911791e34904d017cf2ca4e3771027595"}]}, 0x370}, 0x1, 0x0, 0x0, 0x40040}, 0x0) r2 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r1, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000480)='nl80211\x00') ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000004c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_DEL_NAN_FUNCTION(r2, &(0x7f0000000640)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000500)={&(0x7f00000005c0)={0x64, r3, 0x200, 0x70bd2a, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r4}, @val={0xc, 0x99, {0x8, 0x45}}}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x3a}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x21}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x2}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0xe}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x12}]}, 0x64}, 0x1, 0x0, 0x0, 0x200440d1}, 0x4000000) lseek(r1, 0x0, 0x2) r5 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r1, r5, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r6 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r6, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1111.531341][T28806] loop5: detected capacity change from 264192 to 0 05:21:37 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x8cffffff00000000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:21:37 executing program 2: r0 = syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000180)='./bus\x00') r1 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r1, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="b8008c00", @ANYRES16=r0, @ANYBLOB="00022cbd7000fbdbdf25390000000c009900030000002800000098005a80280002801c000100066000013030015816010418301b0524052460166c03096005000100030000006c000180140003000200000001800800000006000900020014000300020002000080080008000001000101000400010014000300000001e40000d70004000000008067001400030008000700da00000006000008b40b0104140003009fde7f0001000500020009001c0a0100"], 0xb8}, 0x1, 0x0, 0x0, 0x480c1}, 0x40410d0) r2 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r3 = openat$ocfs2_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_SET_PATH_EMPTY(r2, 0x4, &(0x7f0000000100)='msdos\x00', &(0x7f0000000140)='./bus\x00', r3) lseek(r1, 0x0, 0x2) r4 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r1, r4, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1111.760307][T28817] loop4: detected capacity change from 264192 to 0 05:21:37 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x9498160000000000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1111.960947][T28826] loop1: detected capacity change from 264192 to 0 [ 1112.108244][T28836] loop3: detected capacity change from 264192 to 0 [ 1112.119844][T28836] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:37 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2200000000000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:21:37 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x0, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:21:37 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0xf6ffffff00000000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1112.452441][T28843] loop3: detected capacity change from 264192 to 0 05:21:38 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000000c0)='./file1\x00', 0xffffffff, 0x4, &(0x7f00000004c0)=[{&(0x7f0000000100)="040005090000000066615a000404090a0200027400f801ef66bfc8ab1769d674e0a32a77e1c68d9d69481732e20a67aab6ee3e201d6236857f5f1b86404a83472b928640ccea7a105805ae5b00e804cb93a331359a54312cb90a9fef969d6a0eff051b7d1356c629590d7c33ea8ccaa2ec1935c0dbff2d664c72a1944d4d7dbfbb694a9cd16db55b9050c47f7ec3d227953c", 0x92, 0x7d}, {&(0x7f0000000280)="3a4fb1457a02d41aa3326aa59f62577ff0f010e2eb6796d01384d62968f9ba235f9449c0eda359f5a00625e4cd5b6fc8f9bb1b30a5bc8cf112375b18d60ea480f1232556df407eb68694bf9a6bda8ac744101e6e858a361759cb64fc9a4f59e1a088a330", 0x64, 0xd1f}, {&(0x7f0000000340)="f56095d50b94efe29c0d7d905815246c61e39913f3ec61444637c91fcb50269f4ed2da62ea93179cb77f097f4b58e90466492772c1bcfd08339f1defa1d3efc9f346bfff6e70d2b3dcd4a03afa441a47548ef3ce9c6a6f6b6e571cb75f25324ab563ce51caf7f594582bdc8b0cd74e51b5ba0d4e04ec1973c8362fefb46a593799f52801d5a4d390896ca2f5605a57eb73b0e3945be12e772d13f334296b3b194d116a35c9f116179349552baa4a32c436561ec4b552754d712087b04c481b67b6d020ea12f723", 0xc7, 0x8}, {&(0x7f0000000440)="5f2ed2d9ede1a4aca21f6594a980db5d143c46e97b5ab283cc95ad822eb460d3e9a6a17443de0d7dfb8fc47b5d673b8930919064d66da99367d9d86117860f8453df7c4dfe9bad864866b0d5bca24678e6cafad0da3394b968c722cea992b961b63b769b1322a50f66b78e7b065b", 0x6e, 0x800}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r1, 0x0, 0x8400fffffffa) mknod(0x0, 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0) [ 1112.520066][T28846] loop5: detected capacity change from 264192 to 0 [ 1112.530035][T28843] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1112.674029][T28843] loop3: detected capacity change from 264192 to 0 [ 1112.699288][T28843] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1112.754553][ T35] kauditd_printk_skb: 17 callbacks suppressed [ 1112.754563][ T35] audit: type=1800 audit(1609478498.212:2058): pid=28860 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=16371 res=0 errno=0 05:21:38 executing program 1: getsockopt$inet_sctp6_SCTP_RECVNXTINFO(0xffffffffffffffff, 0x84, 0x21, &(0x7f00000001c0), &(0x7f0000000380)=0x4) syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0x3, r0, 0x8) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff80001819daa8000000000000000000", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r1, 0x0, 0x8400fffffffa) truncate(&(0x7f0000000100)='./bus\x00', 0x9) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r2 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000400)='/dev/vcsu\x00', 0x0, 0x0) ioctl$sock_SIOCSIFVLAN_SET_VLAN_NAME_TYPE_CMD(r2, 0x8983, &(0x7f0000000480)={0x6, 'team_slave_1\x00', {}, 0x1}) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:21:38 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0xf9fdffff00000000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:21:38 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x0, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1112.868966][T28866] loop4: detected capacity change from 264192 to 0 [ 1112.911695][ T35] audit: type=1800 audit(1609478498.292:2059): pid=28863 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="loop1" ino=1566 res=0 errno=0 [ 1112.952993][ T35] audit: type=1800 audit(1609478498.413:2060): pid=28870 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=15810 res=0 errno=0 [ 1113.050295][T28866] FAT-fs (loop4): Unrecognized mount option "õ`•Õ ”ïâœ}X$laã™óìaDF7ÉËP&ŸNÒÚbê“œ· KXéfI'rÁ¼ý3Ÿï¡ÓïÉóF¿ÿnpÒ³ÜÔ :úDGTŽóÎœjoknW·_%2JµcÎQÊ÷õ”X+Ü‹ ×NQµºNìsÈ6/ï´jY7™õ(Õ¤Ó‰l¢õ`ZWës°ã”[á.w-ó4)k;Mj5Éñ“IU+ªJ2Ä6VĵRuMq ‡°LHg¶Ð ê÷#" or missing value [ 1113.107513][T28874] loop2: detected capacity change from 264192 to 0 05:21:38 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2300000000000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:21:38 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x0, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1113.221866][T28881] loop3: detected capacity change from 264192 to 0 [ 1113.228475][ T35] audit: type=1800 audit(1609478498.683:2061): pid=28879 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="loop2" ino=1568 res=0 errno=0 [ 1113.290556][T28885] loop1: detected capacity change from 264192 to 0 [ 1113.319565][T28881] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:38 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0xfdfdffff00000000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1113.405983][ T35] audit: type=1800 audit(1609478498.843:2062): pid=28894 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=16357 res=0 errno=0 [ 1113.491417][T28898] loop5: detected capacity change from 264192 to 0 [ 1113.505116][ T35] audit: type=1800 audit(1609478498.963:2063): pid=28898 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="loop5" ino=1570 res=0 errno=0 [ 1113.667136][T28866] loop4: detected capacity change from 264192 to 0 [ 1113.698283][T28905] loop3: detected capacity change from 264192 to 0 05:21:39 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0xffffff7f00000000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1113.718324][T28905] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1113.727738][T28866] FAT-fs (loop4): Unrecognized mount option "õ`•Õ ”ïâœ}X$laã™óìaDF7ÉËP&ŸNÒÚbê“œ· KXéfI'rÁ¼ý3Ÿï¡ÓïÉóF¿ÿnpÒ³ÜÔ :úDGTŽóÎœjoknW·_%2JµcÎQÊ÷õ”X+Ü‹ ×NQµºNìsÈ6/ï´jY7™õ(Õ¤Ó‰l¢õ`ZWës°ã”[á.w-ó4)k;Mj5Éñ“IU+ªJ2Ä6VĵRuMq ‡°LHg¶Ð ê÷#" or missing value [ 1113.796095][ T35] audit: type=1800 audit(1609478499.253:2064): pid=28873 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=16308 res=0 errno=0 05:21:39 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r1, 0x0, 0x8400fffffffa) write$FUSE_WRITE(0xffffffffffffffff, &(0x7f0000000180)={0x18, 0xfffffffffffffff5, 0x0, {0x8}}, 0x18) mknod(0x0, 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0) r2 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) r3 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r4 = dup2(r3, r2) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) ioctl$EVIOCGABS0(r4, 0x80184540, &(0x7f0000000400)=""/4096) [ 1113.957367][T28917] loop3: detected capacity change from 264192 to 0 05:21:39 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x0, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:21:39 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x0, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1114.041002][T28917] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1114.068923][ T35] audit: type=1800 audit(1609478499.523:2065): pid=28885 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=16357 res=0 errno=0 05:21:39 executing program 1: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r1, 0x0, 0x8400fffffffa) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vcs\x00', 0x31ea80, 0x0) setsockopt$RXRPC_UPGRADEABLE_SERVICE(r2, 0x110, 0x5, &(0x7f0000000980)=[0x2, 0x20], 0x2) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1114.226254][T28927] loop4: detected capacity change from 264192 to 0 [ 1114.313836][T28917] loop3: detected capacity change from 264192 to 0 [ 1114.343794][ T35] audit: type=1800 audit(1609478499.803:2066): pid=28927 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=16164 res=0 errno=0 05:21:39 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2400000000000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1114.371733][T28936] loop2: detected capacity change from 264192 to 0 [ 1114.396355][T28935] binder: 28926:28935 unknown command 0 [ 1114.403156][T28935] binder: 28926:28935 ioctl c0306201 20000200 returned -22 05:21:39 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0xffffffff00000000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1114.425327][T28935] binder: 28926:28935 ioctl 80184540 20000400 returned -22 [ 1114.425759][ T35] audit: type=1800 audit(1609478499.883:2067): pid=28942 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=16365 res=0 errno=0 [ 1114.513749][T28944] loop5: detected capacity change from 264192 to 0 [ 1114.530311][T28943] loop1: detected capacity change from 264192 to 0 [ 1114.593787][T28952] loop3: detected capacity change from 264192 to 0 [ 1114.620892][T28952] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1114.664990][T28952] loop3: detected capacity change from 264192 to 0 [ 1114.674739][T28952] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:40 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0xffffffffffffff0f, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1114.929281][T28967] loop3: detected capacity change from 264192 to 0 [ 1114.950758][T28967] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1115.054144][T28967] loop3: detected capacity change from 264192 to 0 [ 1115.068185][T28967] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1115.090416][T28977] binder: 28926:28977 unknown command 0 05:21:40 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1115.114916][T28977] binder: 28926:28977 ioctl c0306201 20000200 returned -22 05:21:40 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r1, 0x0, 0x8400fffffffa) mknod(0x0, 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0) getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(r0, 0x84, 0x1a, &(0x7f0000000100)={0x0, 0x6f, "c1b4f5bd7f9e3095379fcf71fd3372eeed19775cbc7930a03ba0d88292c8a569baee490a15659b86dbcfd41af0d289fe54abe2c973488ea520adae9f2991d2da0077bb3d69ff6ca477173eac3b800a483a85463941ce59abe7b430c93e24a25be6f3bcd62f9207edfe664a0cb5f639"}, &(0x7f0000000180)=0x77) getsockopt$inet_sctp_SCTP_DELAYED_SACK(r1, 0x84, 0x10, &(0x7f00000001c0)=@sack_info={r2, 0x8, 0x1}, &(0x7f0000000280)=0xc) [ 1115.300828][T28981] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:40 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x0, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:21:40 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x0, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:21:40 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2500000000000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:21:40 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x3, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1115.424158][T28987] loop4: detected capacity change from 264192 to 0 [ 1115.649293][T29003] loop5: detected capacity change from 264192 to 0 [ 1115.680797][T29005] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1115.709635][T29015] loop2: detected capacity change from 264192 to 0 05:21:41 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x4, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:21:41 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1115.949258][T29021] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1116.004565][T29021] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:41 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x5, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1116.095671][T29029] loop5: detected capacity change from 264192 to 0 05:21:41 executing program 4: r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x0, 0x0) ioctl$RTC_UIE_ON(r0, 0x7003) ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000040)={0x1b, 0x0, 0x0, 0x9, 0x0, 0x7f}) fadvise64(r0, 0x5, 0xe2, 0x0) r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x0, 0x0) ioctl$RTC_UIE_ON(r1, 0x7003) ioctl$RTC_SET_TIME(r1, 0x4024700a, &(0x7f0000000040)={0x1b, 0x0, 0x0, 0x9, 0x0, 0x7f}) syz_mount_image$msdos(&(0x7f0000000100)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0x100000001, 0x1, &(0x7f0000000080)=[{&(0x7f0000000040)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x2000000, &(0x7f00000000c0)=ANY=[@ANYRESDEC=r1, @ANYRES32, @ANYRES64=0x0, @ANYRES16, @ANYRESOCT=r0]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) mknod(0x0, 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0) [ 1116.306037][T29036] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1116.369901][T29036] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:41 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x6, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1116.444201][T29045] loop4: detected capacity change from 264192 to 0 [ 1116.480411][T29045] FAT-fs (loop4): Unrecognized mount option "18446744073709551615ÿÿÿÿ" or missing value 05:21:42 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r1, 0x0, 0x8400fffffffa) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vcs\x00', 0x31ea80, 0x0) setsockopt$RXRPC_UPGRADEABLE_SERVICE(r2, 0x110, 0x5, &(0x7f0000000980)=[0x2, 0x20], 0x2) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:21:42 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2600000000000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1116.558982][T29053] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:42 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1116.730438][T29053] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:42 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x7, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1116.814914][T29068] loop2: detected capacity change from 264192 to 0 [ 1116.941936][T29079] loop5: detected capacity change from 264192 to 0 [ 1116.961885][T29078] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1117.073693][T29078] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1117.242112][T29045] loop4: detected capacity change from 264192 to 0 05:21:42 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x0, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:21:42 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x8, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1117.466927][T29097] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:43 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x9, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1117.608472][T29102] loop4: detected capacity change from 264192 to 0 05:21:43 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:21:43 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2700000000000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1117.688980][T29107] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:43 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x0, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1117.883912][T29107] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1117.915846][T29122] loop5: detected capacity change from 264192 to 0 [ 1117.934466][ T35] kauditd_printk_skb: 14 callbacks suppressed [ 1117.934477][ T35] audit: type=1800 audit(1609478503.393:2082): pid=29120 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=16019 res=0 errno=0 05:21:43 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0xa, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1118.081623][ T35] audit: type=1800 audit(1609478503.483:2083): pid=29122 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="loop5" ino=1583 res=0 errno=0 [ 1118.142443][T29131] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1118.225070][T29131] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:43 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0xb, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1118.398196][T29140] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1118.461322][T29140] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:43 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r1, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$EVIOCGLED(r1, 0x80404519, &(0x7f0000000100)=""/6) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(r3, 0x408c5333, &(0x7f0000000480)={0x10000, 0x1ff, 0x0, 'queue0\x00'}) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:21:44 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0xc, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:21:44 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:21:44 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0xd, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1118.651360][T29151] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:44 executing program 2: r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000100)='/dev/full\x00', 0x80003, 0x0) waitid$P_PIDFD(0x3, r0, &(0x7f0000000140), 0x40000009, &(0x7f0000000400)) syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r1 = creat(&(0x7f0000000240)='./bus\x00', 0x0) ftruncate(r1, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r1, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r1, r2, 0x0, 0x8400fffffffa) mknod(0x0, 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0) [ 1118.732223][T29158] loop4: detected capacity change from 264192 to 0 [ 1118.765766][T29161] loop5: detected capacity change from 264192 to 0 05:21:44 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2800000000000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1118.788309][T29163] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1118.815760][ T35] audit: type=1800 audit(1609478504.273:2084): pid=29171 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="loop4" ino=1585 res=0 errno=0 [ 1118.852516][T29163] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:44 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0xe, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1118.922120][T29177] loop2: detected capacity change from 264192 to 0 [ 1118.932676][ T35] audit: type=1800 audit(1609478504.313:2085): pid=29173 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=16003 res=0 errno=0 [ 1119.082872][T29183] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1119.175856][ T35] audit: type=1800 audit(1609478504.453:2086): pid=29177 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="loop2" ino=1587 res=0 errno=0 [ 1119.223317][T29183] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:44 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0xf, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1119.438959][T29193] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:45 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x10, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:21:45 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:21:45 executing program 4: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1e00000000000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1119.719290][T29199] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:45 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) r1 = syz_io_uring_complete(0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x18, 0x2038, &(0x7f0000000540)=ANY=[], &(0x7f0000000140)='syzkaller\x00', 0xfff7f0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x9, [], 0x0, 0x1c, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff, r1}, 0xfd74) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) ioctl$VIDIOC_G_PRIORITY(r2, 0x80045643, 0x3) [ 1119.789362][T29208] loop5: detected capacity change from 264192 to 0 05:21:45 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x3f00000000000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1119.860586][ T35] audit: type=1800 audit(1609478505.323:2087): pid=29213 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=15988 res=0 errno=0 05:21:45 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x11, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1119.904021][T29208] FAT-fs (loop5): Unrecognized mount option "" or missing value [ 1120.033007][T29220] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:45 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x12, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1120.121123][T29226] loop2: detected capacity change from 264192 to 0 [ 1120.169322][ T35] audit: type=1800 audit(1609478505.623:2088): pid=29226 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="loop2" ino=1588 res=0 errno=0 [ 1120.268016][T29229] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1120.335303][T29229] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:45 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x13, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1120.535209][T29241] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:46 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1120.631797][T29241] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:46 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1120.728917][T29248] loop4: detected capacity change from 264192 to 0 [ 1120.768928][ T35] audit: type=1800 audit(1609478506.223:2089): pid=29248 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="loop4" ino=1590 res=0 errno=0 05:21:46 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x14, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:21:46 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x4000000000000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1120.884947][T29254] loop5: detected capacity change from 264192 to 0 [ 1120.906293][ T35] audit: type=1800 audit(1609478506.363:2090): pid=29254 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="loop5" ino=1592 res=0 errno=0 [ 1121.014674][T29259] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:46 executing program 2: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1b00000000000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1121.190586][T29259] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:46 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x15, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1121.414986][T29276] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:46 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(0xffffffffffffffff, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:21:47 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x16, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:21:47 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1121.634572][T29283] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1121.657041][T29288] loop5: detected capacity change from 264192 to 0 [ 1121.685540][ T35] audit: type=1800 audit(1609478507.144:2091): pid=29288 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="loop5" ino=1594 res=0 errno=0 05:21:47 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(0xffffffffffffffff, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1121.793122][T29283] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1121.818466][T29298] loop4: detected capacity change from 264192 to 0 [ 1121.917486][T29306] loop5: detected capacity change from 264192 to 0 05:21:47 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x17, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:21:47 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(0xffffffffffffffff, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:21:47 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x4000080000000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1122.101504][T29313] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1122.193702][T29318] loop5: detected capacity change from 264192 to 0 [ 1122.223503][T29313] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:47 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x0) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:21:47 executing program 2: syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000500)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8596eee78f9c6908506d1de851566d6a77b986d556d4aa30000000100000000bd5e11870a966c2cc4595d7fdc176a09508ce77dfa0a7c77c5f900ff7507f42778e0d367514106f3194a8d484265504c48455a8541699f9826711484570e5a610cc536e443cd28ea69eb03b0493e3a45ea29296be4dcd5bb6c29ad9646d7142fd6a98a3f40b12da8ac8db1c9ba0785168ac4d4771c2842e6c78bf5647c373726d14ff826023ae4fc8d64fc4072c4a6329d23df87fe23f1f19336ea7ea7212b76904d812f", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885c836f702f63672c777594a159e6e20706608586c23d38cee39f1005000000000000007487b76c137941c5e68f1a0051005f06c8b90cb24fb81320fb29d62501126ea75477a742590010ad568d2235330de3f2", @ANYRESDEC, @ANYBLOB="00365fb4a3000000000009000000000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41100, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x7, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r1, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000080)={0x0, 0x0}, &(0x7f00000000c0)=0xc) r3 = socket$netlink(0x10, 0x3, 0x0) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) fchown(0xffffffffffffffff, r2, r4) chown(&(0x7f0000000040)='./file1\x00', 0xee00, r4) r5 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) listxattr(&(0x7f0000000100)='./bus\x00', &(0x7f0000000480)=""/124, 0x7c) 05:21:47 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x18, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1122.393497][T29332] loop5: detected capacity change from 264192 to 0 [ 1122.454440][T29337] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:48 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x0) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1122.534449][T29337] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:48 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x19, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1122.688515][T29347] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1122.739090][T29350] loop5: detected capacity change from 264192 to 0 05:21:48 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:21:48 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1a, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:21:48 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x0) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1123.029670][T29359] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:48 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1b, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1123.137114][T29366] loop4: detected capacity change from 264192 to 0 [ 1123.184115][T29368] loop5: detected capacity change from 264192 to 0 [ 1123.204016][ T35] kauditd_printk_skb: 6 callbacks suppressed [ 1123.204026][ T35] audit: type=1800 audit(1609478508.664:2098): pid=29375 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=16193 res=0 errno=0 05:21:48 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x4800000000000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1123.232663][ T35] audit: type=1800 audit(1609478508.664:2099): pid=29371 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=15794 res=0 errno=0 [ 1123.300750][T29376] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:48 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sysvipc/sem\x00', 0x0, 0x0) ioctl$UI_SET_KEYBIT(r2, 0x40045565, 0x26) sendfile(r0, r1, 0x0, 0x8400fffffffa) mknod(0x0, 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0) r3 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r4 = dup2(r3, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) getsockname$ax25(r4, &(0x7f0000000140)={{0x3, @rose}, [@netrom, @remote, @bcast, @remote, @null, @default, @rose, @null]}, &(0x7f00000001c0)=0x48) 05:21:48 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(0x0, 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1123.440971][T29376] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:49 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1c, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1123.541439][T29389] loop2: detected capacity change from 264192 to 0 [ 1123.575977][ T35] audit: type=1800 audit(1609478509.034:2100): pid=29394 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=15810 res=0 errno=0 [ 1123.648791][T29392] loop5: detected capacity change from 264192 to 0 [ 1123.664249][T29389] binder: 29385:29389 unknown command 0 [ 1123.672736][T29392] FAT-fs (loop5): Unrecognized mount option "" or missing value [ 1123.680637][T29389] binder: 29385:29389 ioctl c0306201 20000200 returned -22 05:21:49 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(0x0, 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1123.762809][T29401] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1123.871900][T29409] loop5: detected capacity change from 264192 to 0 [ 1123.889821][T29401] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:49 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1d, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:21:49 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(0x0, 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:21:49 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r0, 0x0, 0x2) sendfile(r0, 0xffffffffffffffff, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1124.109458][T29416] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:49 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1e, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:21:49 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x4c00000000000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1124.309767][T29424] loop5: detected capacity change from 264192 to 0 05:21:49 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f00000006c0)=ANY=[@ANYBLOB="18000000feff0000002838f4a2339a99aa30b0b4a8", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000004000000002a1d936da08c2f8aa830012ea5ee4679ec68ef7416ba8c31abb18f801725e574c2de0a5f87099f846d0993520f3015940d6f7eaa236ed297c165689523a982e128757955653f7ab316b2a0d6718fd84c273c16ddcfd1b33143fddd"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r1 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r2 = dup2(r1, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r2, 0xc00c642d, &(0x7f0000000100)={0x0, 0x80000}) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x20, 0x1000) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:21:49 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x0, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1124.366603][T29428] loop4: detected capacity change from 264192 to 0 [ 1124.484014][T29432] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:50 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f00000006c0)=ANY=[@ANYBLOB="18000000feff0000002838f4a2339a99aa30b0b4a8", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000004000000002a1d936da08c2f8aa830012ea5ee4679ec68ef7416ba8c31abb18f801725e574c2de0a5f87099f846d0993520f3015940d6f7eaa236ed297c165689523a982e128757955653f7ab316b2a0d6718fd84c273c16ddcfd1b33143fddd"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r1 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r2 = dup2(r1, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r2, 0xc00c642d, &(0x7f0000000100)={0x0, 0x80000}) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x20, 0x1000) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1124.606427][T29444] loop2: detected capacity change from 264192 to 0 [ 1124.625435][T29444] binder: 29443:29444 unknown command 0 [ 1124.631763][T29444] binder: 29443:29444 ioctl c0306201 20000200 returned -22 [ 1124.633760][ T35] audit: type=1804 audit(1609478510.094:2101): pid=29442 uid=0 auid=0 ses=4 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.5" name="/root/syzkaller-testdir540428732/syzkaller.xTW1PP/772/bus" dev="sda1" ino=15843 res=1 errno=0 05:21:50 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x21, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1124.719893][ T35] audit: type=1800 audit(1609478510.094:2102): pid=29444 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="loop2" ino=1610 res=0 errno=0 [ 1124.876229][T29454] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1124.941543][T29459] loop4: detected capacity change from 264192 to 0 [ 1124.981199][T29463] binder: 29456:29463 unknown command 0 [ 1124.983244][T29459] FAT-fs (loop4): Unrecognized mount option "" or missing value [ 1124.994644][T29463] binder: 29456:29463 ioctl c0306201 20000200 returned -22 [ 1125.021055][ T35] audit: type=1800 audit(1609478510.484:2103): pid=29463 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=16376 res=0 errno=0 05:21:50 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0xffffffffffffffff, 0xfffffffffffffffc, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r1, 0x0, 0x8400fffffffa) mknod(0x0, 0x8000, 0x7) getsockopt$inet_sctp_SCTP_STATUS(r1, 0x84, 0xe, &(0x7f00000004c0)={0x0, 0x401, 0x7, 0x7, 0x8, 0xf001, 0x401, 0x38, {0x0, @in={{0x2, 0x4e24, @initdev={0xac, 0x1e, 0x1, 0x0}}}, 0xb5d, 0xfffffff8, 0x7, 0x7ae2d918, 0x5}}, &(0x7f00000001c0)=0xb0) getsockopt$inet_sctp6_SCTP_STATUS(r0, 0x84, 0xe, &(0x7f0000000400)={0x0, 0x7, 0x21e, 0x9958, 0x3, 0x0, 0x40, 0x7, {r2, @in6={{0xa, 0x4e21, 0x800, @loopback, 0x1}}, 0x6, 0x40, 0x8, 0x9, 0x1}}, &(0x7f0000000280)=0xb0) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0) [ 1125.176437][T29454] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:50 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x22, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:21:50 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x5c00000000000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1125.344928][T29473] loop2: detected capacity change from 264192 to 0 [ 1125.393486][T29479] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:50 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x0, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1125.436906][ T35] audit: type=1800 audit(1609478510.894:2104): pid=29473 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="loop2" ino=1612 res=0 errno=0 05:21:51 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x23, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1125.643614][T29489] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1125.678182][T29493] loop5: detected capacity change from 264192 to 0 05:21:51 executing program 4: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1500000000000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1125.787719][T29489] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1125.812439][ T35] audit: type=1804 audit(1609478511.274:2105): pid=29493 uid=0 auid=0 ses=4 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.5" name="/root/syzkaller-testdir540428732/syzkaller.xTW1PP/773/file1/bus" dev="loop5" ino=1613 res=1 errno=0 05:21:51 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x24, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1126.119269][T29506] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:51 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x0, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:21:51 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x0, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:21:51 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x25, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1126.354238][T29512] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1126.442674][T29518] loop2: detected capacity change from 264192 to 0 05:21:51 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x6000000000000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1126.506871][T29523] loop5: detected capacity change from 264192 to 0 [ 1126.529767][ T35] audit: type=1804 audit(1609478511.984:2106): pid=29524 uid=0 auid=0 ses=4 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir559000672/syzkaller.HlnQoK/1780/file1/bus" dev="sda1" ino=16376 res=1 errno=0 [ 1126.550862][T29512] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1126.631681][ T35] audit: type=1804 audit(1609478512.034:2107): pid=29523 uid=0 auid=0 ses=4 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.5" name="/root/syzkaller-testdir540428732/syzkaller.xTW1PP/774/file1/bus" dev="loop5" ino=1615 res=1 errno=0 05:21:52 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x26, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1126.777605][T29536] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:52 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r1, 0x0, 0x8400fffffffa) mknod(0x0, 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0) r2 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ubi_ctrl\x00', 0x0, 0x0) r3 = syz_mount_image$minix(&(0x7f00000001c0)='minix\x00', &(0x7f0000000280)='./bus\x00', 0x4, 0x8, &(0x7f0000000980)=[{&(0x7f0000000400)="4e07c54bebfd33385f81fe854958cc8cca314eaa1733c5500836440bf9b876acb64349d0d691e8d4120121a298ffc4c7c51e73c4023a79825aa172c75618967f7d4b53c82de00bd68b0ae4be5fc80814e781f73d7216c0c77fc3f0bb7ca82133c44861f57cedec69f979e051b42f504fc8bde18f7d1321a9c540c7d41e1da6ef46ad2575caa9761a632431e9e103ac9ee355e4877756660011aeb5a5a40804e51d1f7328aebf6f825dd111aba080a0f4ee9b3072f33ad26b577e0dae313d330704bee988", 0xc4, 0x101}, {&(0x7f0000000500)="7bbcf79240be542a8cdec8a2cfd975cda3ba25d70ed9d6de4fb263b180fe0e502a56af56150b48d956fd9ad6b71b17ceed242a8a981d5b507d2c1d507f2caca667ea8d5330a35747d52f085150b32332cddeab18e42ea6c18f11648e379892ac1553043e3e85807188d1acbb71c23efeaf79404f58caea204e32205dd95b058843966a6fbcd9e36154e71a4592b6578a7830068c294643749ab9b749a251524d7e34f6197bbb5bab08436a07a2be806d27ab3b", 0xb3, 0xbd}, {&(0x7f00000002c0)="395817bfcb7094", 0x7, 0x3}, {&(0x7f00000005c0)="a280c8f560f3ca6b6377d975e19d9746a7abd2e5a6b2daa40d97f37a6b97885ee46711b2b413bfd509bf2502dd423918829b661199a9bb3efc9a0032e8d43921a9db1640ae3ef8da16a2ae8b48ac1636f8789c2857bd0f466e7f502c03c9807d3a7c0805ea7452929ba8cd0583ebfb441cbadd78580cfdbaf40aadf6ddf42401c9d1389ed7ee14ba36111f82f253c7120a3db4cf07576de7e696cf18ff8240fe3ce5ca45d6d6ac867037362fcfc2c728d0a8cf06381dcf5f23b4d5448c9a8c76b0a6118789103d07e5723407c5e0948c479b4417ffb05704fb37dbd45e7639ebc2ed8ead4b0ac32aea", 0xe9, 0x8}, {&(0x7f00000006c0)="566b2945578032ee705a2a9d0412dcefe3df7900ae2f554aeedfb1737857a9f574ad64865428fcde53e56f17e8f85d5fc66a9c8d624fd30d6855f9e8f75984f1575d486267e3640f9ec7a0b580f063e3dec2623a30b64faa84a9bf75fd914a5384cd0cff22b2eb97be6b8735029f131747a62d42cc5fc2f5648df379dbc23902da0b8eb4a56a15468136d93ff8bdbe669c9ac88ca9953f05bfb2f335cdb2d457a1523d695152aa0b4d77cf74ac7f3290b5d916299daa1192bef470a6f64f35a4b0bde4d895012d5cdd85437f0925bf61ff88c3e6d42641f9e9bcd130", 0xdc}, {&(0x7f0000000340)="f1fbca5b15168c4f9a109dde974e6749cd8e021ce0668195ee889d79fa852059605ec86828bfe4be1abe4098c72e", 0x2e, 0x7}, {&(0x7f00000007c0)="2514bd5244fd4dbc3b7f89f2c5c0b9abb995d5cd3fc33a0663bc11cc59026b7c2bb28b82b214a968bcefdae083ca27e4115594009deef9f91cc8cf8e8fa0c676c97818ed79a1ea171b79f9fb27e3082ff437131b7aedd34dc26df3ed1e4e0f98e169d29ae6bac2198cd4f4a604cf8d57085f1064211d6aecbe42c764401e05a739b68132d6400202ac613564d43b9fbfe4dc0a07d37e32b893eba84a2dc1aefb021821c2b52a0851026ee7adf17f120e21747076cd6f20b8c3ce4ce894c905aa8ac66b046adc1bdc00", 0xc9, 0x5}, {&(0x7f00000008c0)="b2af25b90b907b00ceabab42ac31db7a9709df16ad1bda926755beb6b47599ecf86604d6ecc58343405cf606e6ceff9e588ea685428ee867cd668513661c26120db2ae49c9f4a45e44c58fc6f9ab33eeb27e766a59865e7e1e636d68d1553a47508a29c56d7401371607f99e0a6e048b30a34228ddf359223e7348017dfffbf013cd8af5dd5c816318caa84f4615c3baa36d8fbc11ef9b", 0x97, 0x6}], 0x0, &(0x7f0000000a40)={[{'/dev/dlm-monitor\x00'}, {'^/'}], [{@context={'context', 0x3d, 'sysadm_u'}}, {@fowner_lt={'fowner<', 0xee01}}, {@measure='measure'}]}) getdents(r3, &(0x7f0000000ac0)=""/116, 0x74) ioctl$EVIOCGEFFECTS(r2, 0x80044584, &(0x7f0000000140)=""/65) 05:21:52 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x0) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1126.881522][T29536] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:52 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x27, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1126.953802][T29544] loop4: detected capacity change from 264192 to 0 [ 1127.044843][T29551] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1127.152265][T29556] loop5: detected capacity change from 264192 to 0 [ 1127.172659][T29551] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:52 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x28, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:21:52 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x0, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1127.483955][T29567] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:53 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x6800000000000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1127.586107][T29567] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:53 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x48, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1127.678546][T29578] loop2: detected capacity change from 264192 to 0 [ 1127.842932][T29587] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:53 executing program 1: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000081c04f3846885f34f4ff060080001819daa8", @ANYRES32=r0, @ANYBLOB="00000000040007ffff100000d0fe55f9e98b89885cbd6f70ef2dde6998c008d6cb3b6c2f63672c777594a159e6e207", @ANYRESDEC, @ANYRES32], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x8, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0x1}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) sendfile(r0, 0xffffffffffffffff, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r2 = dup2(r1, 0xffffffffffffffff) r3 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r4 = dup2(r3, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0xb0, 0x0, &(0x7f00000006c0)=[@transaction={0x40406300, {0x2, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x58, 0x18, &(0x7f00000005c0)={@fd={0x66642a85, 0x0, r0}, @ptr={0x70742a85, 0x1, &(0x7f0000000380)=""/13, 0xd, 0x0, 0x1b}, @fd={0x66642a85, 0x0, r2}}, &(0x7f0000000400)={0x0, 0x18, 0x40}}}, @free_buffer, @enter_looper, @request_death={0x400c630e, 0x3}, @exit_looper, @decrefs={0x40046307, 0x3}, @acquire_done, @increfs={0x40046304, 0x2}, @increfs_done={0x40106308, 0x3}, @clear_death={0x400c630f, 0x3}], 0x0, 0x0, 0x0}) symlinkat(&(0x7f0000000100)='./bus\x00', r4, &(0x7f00000001c0)='./bus\x00') ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40}], 0x0, 0x0, 0x0}) 05:21:53 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x0) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:21:53 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x4c, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:21:53 executing program 4: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x28, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:21:53 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r1, 0x0, 0x8400fffffffa) mknod(0x0, 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r1, 0x54a3) [ 1128.064774][T29592] loop1: detected capacity change from 264192 to 0 [ 1128.155806][T29603] binder: 29591:29603 unknown command 0 [ 1128.161868][T29603] binder: 29591:29603 ioctl c0306201 20000200 returned -22 [ 1128.184718][T29597] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1128.203993][T29598] loop5: detected capacity change from 264192 to 0 [ 1128.235514][ T35] kauditd_printk_skb: 3 callbacks suppressed [ 1128.235525][ T35] audit: type=1800 audit(1609478513.694:2111): pid=29609 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=16372 res=0 errno=0 [ 1128.290430][T29602] XFS (loop4): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1128.373994][T29597] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:53 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x85000, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) accept$netrom(r1, &(0x7f0000000140)={{0x3, @netrom}, [@netrom, @null, @null, @remote, @remote, @rose, @netrom, @null]}, &(0x7f0000000080)=0x48) r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x0, 0x0) ioctl$RTC_UIE_ON(r2, 0x7003) ioctl$RTC_SET_TIME(r2, 0x4024700a, &(0x7f0000000040)={0x1b, 0x0, 0x0, 0x9, 0x0, 0x7f}) fadvise64(r2, 0x5, 0xe2, 0x0) fcntl$getown(r2, 0x9) bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r0, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r3, 0x0, 0x8400fffffffa) mknod(0x0, 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0) 05:21:54 executing program 1: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000940)=ANY=[@ANYRES64, @ANYRES16, @ANYRES64, @ANYBLOB="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", @ANYRES32, @ANYRES64]) r0 = syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r1 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r1, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) r2 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r3 = dup2(r2, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) sendmsg$NL80211_CMD_LEAVE_IBSS(r3, &(0x7f0000000400)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000380)={&(0x7f00000006c0)=ANY=[@ANYBLOB="2e0000d39e73649f04f86128ffb6a7afeb966a59143deafccd76f6d8d2768370f6331a160cc0b1567fc21f6c1b8159bbd893e9993894a8a056106d843aa8acebe28d9b44807cb7b7111f91e1407a6e1973c4bd1fff2aef6a36b3ac34f490364dba3d0fc2479e486ec509a0475c0c70d44e53b3c4b7268da04d94cfd70e76b9a253b0d269b1e2c2b6061276a6f69a21c9c17b61e6df8a5256dbd62cb26d6c0c0d820a345554440e7268060000000001000000fccddc68e42d2061175d063735923f307ced250f587f56897fa2093f880d608331f6f6934d792c8c3eaf420322b9c8c95163d1715b57a39e71c9c0f89cc0ef65a7a9d2040987b569d0bf93ff6d1b4b9e824f880e39b5b60733887e6d891937227354c0a1df68ef6913d3c30b3e00000000", @ANYRES16=r0, @ANYBLOB="00022cbd7000fddbdf252c0000006f909f880c0099009500000065000000"], 0x20}, 0x1, 0x0, 0x0, 0x24040080}, 0x8010) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r1, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r1, 0x0, 0x2) r4 = open(&(0x7f0000000200)='./bus\x00', 0x5c103, 0x168) sendfile(r1, r4, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r5 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1128.486679][T29621] loop2: detected capacity change from 264192 to 0 05:21:54 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x5c, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:21:54 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x6c00000000000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1128.583870][T29627] loop4: detected capacity change from 264192 to 0 [ 1128.590548][ T35] audit: type=1800 audit(1609478514.044:2112): pid=29629 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="loop2" ino=1622 res=0 errno=0 [ 1128.713611][ T35] audit: type=1800 audit(1609478514.144:2113): pid=29627 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=15768 res=0 errno=0 [ 1128.739927][T29638] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1128.815957][T29642] loop1: detected capacity change from 264192 to 0 [ 1128.872054][T29638] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1128.882253][T29642] FAT-fs (loop1): Unrecognized mount option "ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ’{\ðnºÁn~R¶~Þ ×µ×T¯3¥êåògÁCÓ=¬è#î˜öñÚSAt†wÈÁèÍ•‚¨ù?8Œ“hõ;&'y4ej" or missing value 05:21:54 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x0, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1128.933278][T29642] binder: 29639:29642 unknown command 0 [ 1128.938923][T29642] binder: 29639:29642 ioctl c0306201 20000200 returned -22 05:21:54 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x60, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:21:54 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x0) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1128.979139][T29642] loop1: detected capacity change from 264192 to 0 [ 1129.039315][T29642] FAT-fs (loop1): Unrecognized mount option "ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ’{\ðnºÁn~R¶~Þ ×µ×T¯3¥êåògÁCÓ=¬è#î˜öñÚSAt†wÈÁèÍ•‚¨ù?8Œ“hõ;&'y4ej" or missing value [ 1129.071219][T29647] binder: 29639:29647 unknown command 0 [ 1129.077158][T29647] binder: 29639:29647 ioctl c0306201 20000200 returned -22 [ 1129.147996][T29662] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:54 executing program 1: r0 = syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r1 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r1, 0x1000) r2 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) r4 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x0, 0x0) ioctl$RTC_UIE_ON(r4, 0x7003) ioctl$RTC_SET_TIME(r4, 0x4024700a, &(0x7f0000000040)={0x1b, 0x0, 0x0, 0x9, 0x0, 0x7f}) fadvise64(r4, 0x5, 0xe2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x1c, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000093feff000000284cf4ff060080001819daa8659ea8ed407473e45507e0a6519be28107e71c1f06bcc9704d55603e41841197da6d9234ae6df102d77684c708b0e8721ac335", @ANYRES32=r1, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRES64=r0, @ANYRESHEX=r2], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x40fff, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000100)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r1, 0x0, 0x2) r5 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r1, r5, 0x0, 0x8400fffffffa) ioctl$sock_kcm_SIOCKCMATTACH(r5, 0x89e0, &(0x7f00000001c0)={r3}) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1129.295609][ T35] audit: type=1800 audit(1609478514.754:2114): pid=29671 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=16322 res=0 errno=0 [ 1129.316556][ T35] audit: type=1800 audit(1609478514.764:2115): pid=29672 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=16366 res=0 errno=0 [ 1129.352700][T29668] loop5: detected capacity change from 264192 to 0 [ 1129.402214][T29667] loop2: detected capacity change from 264192 to 0 [ 1129.428351][T29668] FAT-fs (loop5): Unrecognized mount option "" or missing value 05:21:54 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x0) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:21:54 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x68, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1129.453664][T29667] FAT-fs (loop2): Unrecognized mount option "" or missing value [ 1129.585090][T29684] loop1: detected capacity change from 264192 to 0 05:21:55 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x7400000000000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1129.645060][T29689] loop4: detected capacity change from 264192 to 0 [ 1129.653458][ T35] audit: type=1800 audit(1609478515.114:2116): pid=29691 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=16374 res=0 errno=0 [ 1129.697613][T29694] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1129.716712][T29689] FAT-fs (loop4): Unrecognized mount option "" or missing value [ 1129.742727][ T35] audit: type=1800 audit(1609478515.154:2117): pid=29695 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=15777 res=0 errno=0 [ 1129.865888][T29694] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:55 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x6c, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:21:55 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x74, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1129.965382][T29710] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:55 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(0xffffffffffffffff, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:21:55 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x0, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1130.067648][T29715] loop5: detected capacity change from 264192 to 0 [ 1130.122298][ T35] audit: type=1800 audit(1609478515.585:2118): pid=29715 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="loop5" ino=1623 res=0 errno=0 [ 1130.129913][T29718] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:55 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(0xffffffffffffffff, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1130.189183][T29723] loop2: detected capacity change from 264192 to 0 05:21:55 executing program 1: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000180)=ANY=[], &(0x7f0000000140)='syzkaller\x00', 0xbffff0db, 0x24, &(0x7f0000000100)=""/36, 0x41000, 0x3, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x6, 0xffff8a6b, 0x402}, 0x10}, 0x78) lseek(r0, 0x0, 0x2) open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r1, r1, 0x0, 0x8480fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1130.320206][T29718] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1130.336323][ T35] audit: type=1800 audit(1609478515.795:2119): pid=29728 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=16373 res=0 errno=0 [ 1130.405745][ T35] audit: type=1800 audit(1609478515.815:2120): pid=29733 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=16374 res=0 errno=0 05:21:55 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x7a, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:21:55 executing program 4: r0 = syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r1 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r1, 0x1000) r2 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) r4 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x0, 0x0) ioctl$RTC_UIE_ON(r4, 0x7003) ioctl$RTC_SET_TIME(r4, 0x4024700a, &(0x7f0000000040)={0x1b, 0x0, 0x0, 0x9, 0x0, 0x7f}) fadvise64(r4, 0x5, 0xe2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x1c, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000093feff000000284cf4ff060080001819daa8659ea8ed407473e45507e0a6519be28107e71c1f06bcc9704d55603e41841197da6d9234ae6df102d77684c708b0e8721ac335", @ANYRES32=r1, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRES64=r0, @ANYRESHEX=r2], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x40fff, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000100)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r1, 0x0, 0x2) r5 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r1, r5, 0x0, 0x8400fffffffa) ioctl$sock_kcm_SIOCKCMATTACH(r5, 0x89e0, &(0x7f00000001c0)={r3}) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1130.493509][T29736] loop5: detected capacity change from 264192 to 0 [ 1130.531604][T29739] loop1: detected capacity change from 264192 to 0 05:21:56 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(0xffffffffffffffff, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:21:56 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x6c00000000000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:21:56 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x7a00000000000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1130.670246][T29755] loop4: detected capacity change from 264192 to 0 [ 1130.702292][T29757] loop5: detected capacity change from 264192 to 0 [ 1130.723471][T29754] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:56 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, 0xffffffffffffffff, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:21:56 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x300, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1130.984273][T29771] loop5: detected capacity change from 264192 to 0 05:21:56 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x0, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:21:56 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, 0xffffffffffffffff, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1131.086089][T29779] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1131.254936][T29789] loop2: detected capacity change from 264192 to 0 [ 1131.273536][T29779] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:56 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x500, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1131.383062][T29795] loop5: detected capacity change from 264192 to 0 05:21:57 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x0, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:21:57 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, 0xffffffffffffffff, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:21:57 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x0, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:21:57 executing program 1: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0x76, 0x0, &(0x7f0000000080), 0x0, &(0x7f0000000100)=ANY=[@ANYRESDEC=0x0, @ANYRES32]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r1, 0x0, 0x8400fffffffa) mknod(0x0, 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0) [ 1131.709341][T29802] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1131.723246][T29806] loop5: detected capacity change from 264192 to 0 05:21:57 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x8cffffff00000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1131.807582][T29821] loop4: detected capacity change from 264192 to 0 [ 1131.828921][T29812] FAT-fs (loop1): Unrecognized mount option "00000000000000000000ÿÿÿÿ" or missing value 05:21:57 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x0) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1131.897748][T29833] loop2: detected capacity change from 264192 to 0 [ 1131.908956][T29802] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:57 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x600, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:21:57 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x0) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1132.047051][T29845] loop5: detected capacity change from 264192 to 0 [ 1132.063285][T29846] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:57 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x700, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:21:57 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x0) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1132.116783][T29846] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1132.258225][T29860] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1132.337674][T29864] loop5: detected capacity change from 264192 to 0 [ 1132.438881][T29860] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:58 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(0x0, 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:21:58 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x900, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:21:58 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x4000000000000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:21:58 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x0, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:21:58 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:21:58 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x97ffffff00000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1132.919481][T29881] loop5: detected capacity change from 264192 to 0 [ 1132.944439][T29879] loop1: detected capacity change from 264192 to 0 [ 1132.975081][T29880] loop4: detected capacity change from 264192 to 0 [ 1133.000442][T29875] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1133.012253][T29879] XFS (loop1): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1133.022581][T29880] FAT-fs (loop4): Unrecognized mount option "" or missing value 05:21:58 executing program 1: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r0, 0x0, 0x2) write$binfmt_script(r2, &(0x7f0000000940)={'#! ', './file0', [{0x20, '&:}@:'}, {}, {}, {0x20, '{[\xcf'}, {0x20, ':+('}], 0xa, "ddd58d303e9244f373134ac2901d522f1607529748b318a054d804096aea363d31fd52f6dd3d583b3b4b309b3e95df6b64b8987d0fed2afeb685b8e5ff4a5d83af3fd388c2cb632ebad87408287338e4b4faf5fa8c8f86c9cf47bbcce6eb43e88754e97ef8a6f6924fa31e23ffb988509cdea2d5aa6ac3a6fb8255b22a221f32212474dfbbd1345f4df550b498aca85eb8f68845eb351f16c4de8c035189d11f452ac5166cbe4ea2424f23f92c233d41846e2202208f008e5135f27e15addcf57ef1134e3ad0cb2bd1ed16e95162ee5fc1e110580d4703b62dd776de9da22eacda204c1ff5020af8864b9c2149c6b270ece1301cf884905ed3aae86d715be7002096c20278dc1263c0ee913820ac20e2a19f6352f0f2e217ed80b3875ea0bcf4ee870ce0b991834087b0bafeb65625e0188d60c86ce0aeaaf772b5388f1e7e481347db1d3bf201d19150f2e17b79327277cdcb88a2b892f63f9f3822ceefcd74773d60115c95eefca4a2d5a0a298ef6d816b8d40137eea2c74e1e5fc037a7302968393750e16c615dba7be9133fb886660a2fffd8c5d15a142fa8baf9474767800480c22f5db2656ee806634e08733e9e3292525557de8088367cbf2a38012f6a8416422c3e7eaf9175a3345778b4319d95e08f16e10b142cf0ee198803911885de22c7575e0c331caa2678ffe91dc005b2ef4985c0c288da513e073bfc24d65ae27794f1ee78297ed84ef1ae00783923eb0912168eb64d943361110c96f3236f4d9b7582099caf9cef2c9254c8e8ab30af9499dee87485cb8082a45f7cd9d210438b0f7cfff68dc5ab6bc72ff9aed9d8e3932bb19124dbddc5440dd006ea2104805fe0a1ae7ac05098961c83f201fe47cc9d4a9c4743542d5a8ac3f8ad9d6206bd4626a7d6cb92577a57d2392e3e5d8bb2f00a26239157c9b938cbddb907e38a5332ac2c9f08cd079b602b422cc592b73f64398b17ba5f69daa4d4d1f236fba3dcca81ecc4b0f37aca18acaac2cd1aed44b160f8c878de67b6c0c5e6797be653e4d3dc3c3a270fe3720c379452998c97ee62817aa95f7880f56a5b819d0b0222b20446057aaae6bdcc90c0d96fc03d1d4d12a99de1e76d3cde00305c8bcfd028452ffccf2331636c7591f6273b7cef4180432c5a0234ff7d045d066c77b3b64d356183f9ff97fcea75529730ca93e89033454a87c605e3b8642242dcee69a0e34503baa982c750eab6e8d608a205044b0ac57eefcfdfe9986bc10c069fb150e6b88aa8e3a48b4bcf28fa76296b0baeeadcc9dce4a2b16b1982ddd0c42112bf920974c3c94640ba7cd8d7508360e03f60571bccd7a5ce6cc6fb2d8d0a4f041d169d4079f2ea0784998724af0e60f91f126cb0cbb9cb6778319919e8e441f2f673168c12426539c688d39fd4059f0fd1e073d4bca21d843b2f8c3cf58eebca299128b081df3d1ebe608768a853f4cb9944b514699dd40b331d2a7bbb08ea9f3ac1339f3ed81c9178d2e01257b910cd6d6618c446ddda376e645a8f1a09b84402cd7447aa7a56454199a38d5cff8a37c9692c7ef744bc88625e188c8e936590eedb17c837290fff74bc0765d04355179d9bec672a395fc06b844bc7f56d0bc56451e67057788c7f6cd8c4fe25d4ff3ae1f07b425991583a46cc51dd59e3033d2be275ec36ccdb3087067549fdca72faeba325252664ee121e7fb0e6b7576d91e4bfb047bd6b42762ef56d17b18f1c4d4bd9a3e7dcc1364e24df245b2d5c9bc2ffcc688358a2855dcef2896b530712af7eb96310a235e3cd038fc1af7d9d0d828a35232ff14bbaea8bd69fb78f22548e7158f5523b99899c7889056c3aaa9af07f760f46f12e5ed785fd35d7167dd5f57c8f8294880740eaf93fa3a5f8c124f7114249f5007104da2ae06082137ca344ebf12ff5c253c9cec63703ff0eea0a9c5a7b7d728471ef93363eeee955fe5392ae3bedb16629007d2c52bc47b26c13354fe2bbd9264d7ac32cd12641ef20e9eb16f4a502ca59ad7bfc6125db6aad98a5882761ff3c59295514cc2ef91e1476fbdd5f37b0740cc2bef8fb38b816dc3413de30b6efdea92c4efcd55886ef596c71dcef752f277d3b2c1e8ac6791e41306d23f4645ccb815c820d5dd99a7488684abddc8635780b53f06741d06a2f7419d231882e36e9e8869e39dc572222de7d4ce2e140eff7a71a27a187042cc1ce2661951ea97f4525910e360fadb46a9b93ba12dc36db00bc85c7091f071ecb6870cc78830b94e6fd311773dcdf87bb87c106d78526f6a72e054009a71d66010f36ccd604a1a1c4ff62883f5d9fac5303a5a3d11f8fd700687d12b060baa9f2308d9e63e1cb2c9972ba89500c6503f0c32970ab68b6f2b6f074e9378760304ba774eca88b3c5f7d209eff159fee72cae4e5520eb4a66943f8e19ba33d48ad8c73b565c6e5276ed973fc477af051190b7bf3d1bfca97d1293e7997d348ad5df3fb2ed0d3b36fcca7b3fca804d388ec5e1d8c226daf46cdee13bba35e6f3b337d87c5843d23c8cd02434beaf6ec8bce24a27f058556ad549bc80aa50dfac30e79907051fc93290e5b3a1d392d0e9ec5abde0b624b48f676308b63c5ed5a5adb01066e83767b5f9f7d861a44c9927a6a25ee07ff85dba3addadaba3497358c4d14c90a5b4c0aa5184252089116996e9c88658db825cb56ed4b5e9beb0134b9da46fe041519e06680f55f3ff30ff647c117c835fa1de6865323da6da3c8f3b25dd525ca4ac2e55db773bbda9fc9a80973bceefc50edd8710ea346ff6536198efd6cc5714fdd7c272adb239c27ca9226aeabe0166391a4968d87e9f1289a273813751eb143b46b93ce1e93f1a668f98a8c7eddd635c578b63a26552fe9193aaee399e6b31449cfae83171768c06f7d584947f47392e364d43cd9c50234d63fa4a2aa68c64d463c367c0db817077a6681b267e6124d4171c2508b96662bb3e387bd16ec4b3f66af95b2078d0d7123c6e4df5379411c600cb0c7aad176818699fca9de4fc03977b4128d965168e410fe57bf2b8205ed4c9cea9cbf5c79ba182ac6206abec712c6cf3aac02dc6cc1fabee91475eaa816f140bb674d8b264902170503398884ae8d197b7d4054f1d180988b6dd5a62ca1cfe9dc04d578fbd446e71e1a82e3bbc2559f7a460e15cf2eb2c5b5e2011279525f6d53379348464c88753c18df397e7a456cc12000426341350f3b38d6ae9f5cac6b6e4abe937d392dc939d633e3ca8ec101c8336ac544357907bd79c87f48c1d8f028e27bf8b31c0db82ad4cd0d6a3a780ad3bdb0d61c7d252758a01e9e3a7617ee1d5fba775fea4017b475ad86b6e600b14e7a04783e6b0f3cdfd5ca931ea8debd6d83d5b3305bd05efa6257190d8e4028d9b31ae6bc7d7e1268214c4d4545901508ae5590f676ded40cd14f9be40280759b45d6dc85a6c8a6e0720e6621125bbd457b2776a25a2c4589fa1ad46e2e9240d038fd57dfffdb8c712af131781a8a30b75647fa9989170ce59026e00168ac74f21e66ee1a127da583a670009bd19dbc7cb5a49a00d0637ca00cd005378332c5ee4896c34b4642d04653d105338c50cbbfe50a6df63c44e75d105ea0e952420a22d206893336d1274ce6b53044b85742007b7a6a2a7a4f07f51a4f49bf264e001af41608108dae2456c6b4d3610bef1e986ba7a1fea6a46d3acdcedfd1fee1abac2bf3bc1db8d3daa4335373cc7c6eb6fb74cf346147a5ae2069bc7db758787d30849b3e839fd938a84266caabe0e32465a3782d1b82bd12b5029a029a9b81c69106666ca870dd508664b761e9358442d626dc3cf8498a4054075e599587b1e16f4d0834e7d6111124ed636bf0de2b43187b0a63e96699d8365f7ab17affce9cbe5da7a0eeaa876ebc11222ccd4e059711b17ae0a8223d33d5ee55471352a0d8688f92016bfb8f4c8115e7781c28d3fe2d2bc3cd1c5d6d57e38fec65b3b095dc38f049fc4f76d4c05532b67b42b93c1e0f085af26d8a2def41cfca71029a47d1880e814998ed4004ea062cb89c1e839137be4c5c54a902ea3d35f0334da668a04e98ae1af323b5ef96116c5e2c8e6a4ff66acf70e53b821da0e8272e028d7e26fa563a1379da5f5317e8e9054f8058916fbc8d4e5a8157f41d754fd10523fbc6e21689849a40ba05c2d390d488a2799f264b8db646f88891d623eb6e57e9f6c2bcda9f1aa7f7866a162eaa7cf274352f6544f03890c8250b838bf660ea310704f63361b6e15778f209829cbff70b04c73b13eeae17bd8e84400bbd063f5db390dce89df08760d92db5e44476597f0fe6538ff6445b88411946abfa5596ae79b4271a83a3ccf7d9ee72d4b164703df15d2270fad3855683ba607c12b7e3ef2e3e3c65f66514db2fa195c1d06652a056c4972ca89219fc59f011ca0b644bded461d9de8187a29779494e0e3b33bfae62289559069447481b02fff4b255a07e989d220cf3f2b7c662def466186bd669df8ea274c0648dc8e2547d5732982b8d80639575c4addc08b5becad248a0dce432842289c8783b4ebde4d381a372c36a5e25cb19f79b7f2ac32cd529a7b7eab6a0e2478c1ef0624da5a6d3d29c51c56ae175b4008373d869f0dd4dea46a251dd656ca87e508d499e7a2df49395375b88c1a5dd9170871ef51e04e9077d964bb39089b7b925964a01b13d35043dea0e1b507f335bc4ee1a6c9965f6ba07fb33c1f1923f218e6d0a56c0103dfd862c543ecabfaada21d98e1cc54fdb82a8e005e9864fffa7569e97520f058feb08e3b8f378bf54393e048d9948eb160932178d1fcd019dadab9de50fef5cd92a73eee4557aab28ef55461b1c186045b670050eec8ca7958cff517cd5b5b4aeced71b061e4b679d23be5941dddddc5a9a0fdea6af1ec821e1c21946dee2e2e4cb0596474584812cd094cbabe12e54064fefd0013dba54808a9aecd6f13864050c47ba4568ed9b48819f88dab190cd9fbcd7dbd22e0c5122315ede05205e0e428dcb5bc64da447832202facdf3a43cf195781dd9c517f7f15b57c77fa796e438d475c58032865d6456c3cd9dc07bd75bdf71305e434ac5b4339455a64f781ce1ed2af23c3ac6e7c590e86fc47348d992daad8d27690605c3998849970c91055b8898d83dc98a63388da7de0f607fb4f9d4616262c8e9dc4f4a8d898cceb28f87006ed8c5f6d3f41c11416885beee62218a9ee42cd5a2ad2c13b2daacaed678ec586e53f43d2ac91d9bf2042cac774b767f2539bb6ce2d29435c5c8559bcdef9655fe5bad7b10f8a6a37964b0c02830f12ffeb544b97e29da3374ec03c6f42e48c895904e99caec51747d42a349c03cda2d681e1414e7800008e62d41cd060e24c244f3696281a1c6e6df2ad6badf28d09b2ea83008d1c6c14baa4e498bd877ce95183b8837ead311f8f6c6f242c46c1de08c507c2114cdd98357360b33774fa9e82146ab4fc8fed637a76cbf972cb607389f7cdf91a77f66261e220e4e914d7d28020905f91ee3a74420973eb5117a1cc92ee48bde53421c5e13e1dfb09da4c937ce7f8dc3482d28043897f62624a9399efb92aac7991315aa8e4bbf55df2c6fb7b6e322e7855d774ded30e761eea20b9548744d7a7d1a70642a89563bb207268f62ee2d342c371bc23a43619e76d3f8d87d8b6b7a8caea642315e74a02cf16b651ee30abf5497092f898ff82c3739d4b8cd947cdb31507940d5fa1868fe7efbb1487e3c5f7c74b3ce6237fb1f9950a82490fb92882ab383990025f9c9adc3e3d63175fdc499f"}, 0x101b) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1133.088535][T29899] loop2: detected capacity change from 264192 to 0 05:21:58 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0xa00, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1133.317028][T29909] loop1: detected capacity change from 264192 to 0 [ 1133.335373][ T35] kauditd_printk_skb: 18 callbacks suppressed [ 1133.335457][ T35] audit: type=1800 audit(1609478518.795:2139): pid=29912 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=15753 res=0 errno=0 [ 1133.461883][T29916] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1133.614582][T29916] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:59 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0xb00, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:21:59 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(0x0, 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:21:59 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x0, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1133.884402][T29928] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:21:59 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x991f000000000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:21:59 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], 0x0, 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1133.959695][T29934] loop5: detected capacity change from 264192 to 0 05:21:59 executing program 1: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r0, 0x0, 0x2) write$binfmt_script(r2, &(0x7f0000000940)={'#! ', './file0', [{0x20, '&:}@:'}, {}, {}, {0x20, '{[\xcf'}, {0x20, ':+('}], 0xa, "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"}, 0x101b) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1134.051671][ T35] audit: type=1800 audit(1609478519.515:2140): pid=29939 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=16368 res=0 errno=0 [ 1134.088690][T29938] loop4: detected capacity change from 264192 to 0 05:21:59 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0xc00, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1134.183429][ T35] audit: type=1800 audit(1609478519.645:2141): pid=29938 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="loop4" ino=1639 res=0 errno=0 [ 1134.239553][T29950] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1134.293903][T29952] loop2: detected capacity change from 264192 to 0 [ 1134.359988][ T35] audit: type=1800 audit(1609478519.825:2142): pid=29958 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=16372 res=0 errno=0 [ 1134.400347][T29950] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1134.422474][T29960] loop1: detected capacity change from 264192 to 0 05:21:59 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0xd00, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1134.498108][ T35] audit: type=1800 audit(1609478519.955:2143): pid=29960 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="loop1" ino=1641 res=0 errno=0 [ 1134.739863][T29969] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:00 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(0x0, 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:00 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r1, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:00 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0xe00, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:22:00 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0xf6ffffff00000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:00 executing program 2: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x991f000000000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1135.145632][T29988] loop5: detected capacity change from 264192 to 0 [ 1135.163489][T29986] loop4: detected capacity change from 264192 to 0 [ 1135.174626][T29982] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1135.180173][ T35] audit: type=1800 audit(1609478520.635:2144): pid=29986 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="loop4" ino=1643 res=0 errno=0 05:22:00 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x7a000000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1135.246629][ T35] audit: type=1800 audit(1609478520.705:2145): pid=29996 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=16384 res=0 errno=0 05:22:00 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0xf00, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1135.515558][T30009] loop1: detected capacity change from 264192 to 0 [ 1135.542987][T30009] XFS (loop1): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:01 executing program 1: r0 = syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r1 = creat(&(0x7f0000000240)='./bus\x00', 0x0) ftruncate(r1, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x4842, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r1, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) syz_mount_image$fuse(&(0x7f00000001c0)='fuse\x00', &(0x7f0000000280)='./bus\x00', 0x0, 0x0, 0x0, 0x1000, &(0x7f0000000400)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0xa000}, 0x2c, {'user_id'}, 0x2c, {'group_id', 0x3d, 0xffffffffffffffff}, 0x2c, {[{@max_read={'max_read', 0x3d, 0x4}}, {@allow_other='allow_other'}, {@blksize={'blksize', 0x3d, 0x1000}}, {@default_permissions='default_permissions'}, {@max_read={'max_read', 0x3d, 0x7}}, {@max_read={'max_read'}}], [{@fsname={'fsname', 0x3d, 'msdos\x00'}}, {@euid_lt={'euid<'}}, {@uid_lt={'uid<', 0xee00}}, {@fsuuid={'fsuuid', 0x3d, {[0x35, 0x35, 0x63, 0x0, 0x30, 0x0, 0x35, 0x66], 0x2d, [0x0, 0x37, 0x62, 0x33], 0x2d, [0x37, 0x66, 0x38, 0x62], 0x2d, [0x33, 0x64, 0x32, 0x37], 0x2d, [0x62, 0x33, 0x64, 0x63, 0x36, 0x30, 0x66, 0x34]}}}, {@subj_type={'subj_type', 0x3d, 'msdos\x00'}}, {@smackfstransmute={'smackfstransmute', 0x3d, 'msdos\x00'}}, {@smackfsfloor={'smackfsfloor', 0x3d, '-/{}'}}, {@measure='measure'}]}}) r3 = syz_mount_image$efs(&(0x7f0000000100)='efs\x00', &(0x7f0000000140)='./bus\x00', 0x0, 0x1, &(0x7f0000000180)=[{&(0x7f00000005c0)="7a370c0c4047b99a975c65a2f2eddd2e46030c8d20af6726619053c6c085118595cc37458b7eebef3eda9d92bcb298dc2493ea59e4e3be64c7ded7924e7edbe39524caf239d84360d9b359a27abd6c1c885481fa0fe71195e2d0d61c921d55c242ef083dae6ab79114389081bb5fe9bfa6afdc72769998283b626aa76e919897a653e33d03dfc54802634350e4eeb6b48b24139e286e666c820a77e0ff", 0x9d, 0x8}], 0x2, &(0x7f0000000680)={[{'r&]&%}[$):,'}, {'euid<'}, {'rootmode'}, {'smackfsfloor'}], [{@audit='audit'}, {@smackfstransmute={'smackfstransmute', 0x3d, 'uid<'}}, {@fsmagic={'fsmagic', 0x3d, 0x7fae}}, {@hash='hash'}, {@smackfstransmute={'smackfstransmute', 0x3d, 'fuse\x00'}}, {@euid_eq={'euid', 0x3d, 0xee01}}]}) sendfile(r0, r3, 0x0, 0x1) fadvise64(0xffffffffffffffff, 0x5, 0xe2, 0x0) r4 = syz_mount_image$sysv(&(0x7f00000002c0)='sysv\x00', &(0x7f0000000340)='./file1/file0\x00', 0x1, 0x4, &(0x7f0000000980)=[{&(0x7f0000000740)="3112157d34af2e431a87dac4bfd2a257577bd9222df126f5eab222737681b7a5f299352f25e0be9b54638ebe53b1e80ff79e8e50afdf3442a9bf3e7faf6b64136661dcd1e5e6942ee324786c2e6feb1a59b0e4fb461f353194506926337dd5f1fd16fbf9da897df0259625ba198f079ab2fddc3de69a", 0x76, 0x2}, {&(0x7f00000007c0)="8bc6ae87e63c1834193fef4c060732d2447db11f9628a2a90a959cea8e668a9f165d84557bc06e65dfdefa26a478248064751428c35711fbfc839005fe494e8c52a7a86a32e4443774ad51b1ea3f6f8cf7a838bd10ab12bc88b9e5888f7aed8fd5ad6c7e4e874ad1fe1c801edbef396d18e63f7d0ab76d0d5335a17b92bbe5698711a194082dd2581985b7143ec48a9f15c49b71471e3ac19eb54c313c36c21965be5da9c73fccb8a791771a52b0e4e3d632f5104e9f5826d46d8f7632a84bd72d768ac3cb8563f77a6f5d391edb7d0eb8af4a22414883f28f4ac23a91bc01f1a4647861ab37b676d38f583c7e1f293e8c97", 0xf2, 0x5}, {&(0x7f0000000380)="ff16f4323991761ecd378858380d3d405922d63480aac97689285c58dc3084c705c8", 0x22, 0x15e6}, {&(0x7f00000008c0)="442d1ba034562c1d9b555a5828387d54bcb4f63f8343d3ed1d5d709ded1c159a3b89a86d51ee395bde86c123412c1df93d68e34e0932f592569e7771caa4c90a6ac27c1fe4b24ee88ac7149031a97f0f59a5116f01676f7f1c7b83711958c669f7c94c1adb886ab5391d0c15d69d02f017255e5ea882cecc9ba75b23a9bf3b261f1bc9a4c45d3eacf988", 0x8a, 0x7fff}], 0x100000, &(0x7f0000000a00)={[{'@'}], [{@uid_lt={'uid<', 0xffffffffffffffff}}, {@smackfshat={'smackfshat', 0x3d, '\\)\x02*%'}}, {@smackfstransmute={'smackfstransmute', 0x3d, 'default_permissions'}}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@euid_lt={'euid<', 0xee01}}]}) r5 = syz_open_dev$tty20(0xc, 0x4, 0x1) r6 = syz_mount_image$udf(&(0x7f0000000b40)='udf\x00', &(0x7f0000000b80)='./file0\x00', 0x7, 0x1, &(0x7f0000000cc0)=[{&(0x7f0000000bc0)="1ad1cb6a14a44e6a4c70aa2868362d56a8d29b103927659a1b289160cc6bb37458180a7219d887a02599e5ac69ee7438840b96a5df930080f19899ddb0d764f44cdd1fd9d1b8428bc5b580088146278bd3af0f92c13e59924f93e0ba6b4ee3a7d5ae2d54d82b3bcf3573d56a1aa856f0af08d898f595d759489bf87ea29ac0b231bd6cf41e15fb3e6d5c236a89ec3bf41b8f16fe0032db9ee5c7a1287b72811be96d05a180d86fe192f1a6843207860d3914e3ccbb43d46bddea42d86fc404c92110348522cfc8bab8e9f1915b7aa0625ccfbc21bd", 0xd5, 0x5}], 0x0, &(0x7f0000000d00)=ANY=[@ANYBLOB='novrs,shortad,v000000000000009,uid=forget,gid=ignore,nostrict,seclabel,defcontext=system_u,fsuuid=29c4208e-3c\x008-0d4d-2f15-d83e\x00'/143]) poll(&(0x7f0000000dc0)=[{0xffffffffffffffff, 0x2026}, {r4, 0x1020}, {r5, 0x202}, {r3, 0x8028}, {r2, 0x6001}, {r6, 0x410}], 0x6, 0x8e) mknod(0x0, 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0) [ 1135.630555][T30010] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1135.772334][T30019] loop1: detected capacity change from 264192 to 0 [ 1135.798537][T30010] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1135.840366][ T35] audit: type=1800 audit(1609478521.305:2146): pid=30019 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="loop1" ino=1645 res=0 errno=0 05:22:01 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1020, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:22:01 executing program 4: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x6c000000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:22:01 executing program 1: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0) sendfile(r0, r1, 0x0, 0x8400fffffffa) ioctl$CHAR_RAW_SECTGET(r0, 0x1267, &(0x7f0000000100)) mknod(0x0, 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0) lsetxattr$trusted_overlay_redirect(&(0x7f0000000140)='./file1\x00', &(0x7f0000000180)='trusted.overlay.redirect\x00', &(0x7f00000001c0)='./file1/file0\x00', 0xe, 0x1) 05:22:01 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:01 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0xf9fdffff00000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1136.169943][T30031] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:01 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f7594a159e6e20706608586c23d38cee35efa000000000000", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x10, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x4, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r1, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1136.225059][T30039] loop4: detected capacity change from 264192 to 0 [ 1136.234828][T30041] loop1: detected capacity change from 264192 to 0 [ 1136.261563][T30043] loop5: detected capacity change from 264192 to 0 [ 1136.272909][ T35] audit: type=1800 audit(1609478521.735:2147): pid=30053 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=16375 res=0 errno=0 [ 1136.278123][T30043] FAT-fs (loop5): Unrecognized mount option "" or missing value [ 1136.292759][T30039] XFS (loop4): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:01 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1100, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1136.356726][T30060] loop2: detected capacity change from 264192 to 0 [ 1136.498644][ T35] audit: type=1800 audit(1609478521.785:2148): pid=30041 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="loop1" ino=1646 res=0 errno=0 05:22:02 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r1, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1136.594987][T30065] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1136.734166][T30065] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1136.792499][T30077] loop4: detected capacity change from 264192 to 0 05:22:02 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1200, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:22:02 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1137.116514][T30083] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:02 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x1b000000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:22:02 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0xfdfdffff00000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:02 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1137.202745][T30089] loop5: detected capacity change from 264192 to 0 05:22:02 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1300, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1137.465808][T30105] loop1: detected capacity change from 264192 to 0 [ 1137.483066][T30105] XFS (loop1): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:03 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r0, 0x0, 0x2) r1 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000100)='/dev/mixer\x00', 0x101, 0x0) syncfs(r1) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(0x0, 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0) [ 1137.566950][T30109] loop2: detected capacity change from 264192 to 0 05:22:03 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x80000000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1137.617534][T30102] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1137.806835][T30121] loop4: detected capacity change from 264192 to 0 05:22:03 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1400, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:22:03 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1137.997445][T30127] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1138.194491][T30127] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:03 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0xfdffffff00000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:03 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1500, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1138.416136][T30139] loop5: detected capacity change from 264192 to 0 05:22:03 executing program 2: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0xb000000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1138.482242][ T35] kauditd_printk_skb: 5 callbacks suppressed [ 1138.482253][ T35] audit: type=1800 audit(1609478523.945:2154): pid=30147 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=16379 res=0 errno=0 [ 1138.572763][T30143] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:04 executing program 1: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r1, 0x0, 0x8400fffffffa) mknod(0x0, 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0) recvfrom(r1, &(0x7f0000000100)=""/155, 0x9b, 0x40000040, &(0x7f0000000280)=@generic={0x29, "22b9659dcc87bd634a74623920895342bdecec63c8297f33230032e97671c8fe08aca52a2523684555b1c54d88e61cfe9ff5e16e4cf4354eef6ef18e827b0ace74b81f781d9b2bf62f0633eab45646e6fbf4676be7bc546f7cbc7259829b157c32a11f1fae0728100dbedd0a7126710efe49c5a4cd86bc2010b2eddb314f"}, 0x80) 05:22:04 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:04 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1600, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1138.710864][T30155] loop2: detected capacity change from 264192 to 0 [ 1138.734766][T30155] XFS (loop2): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:04 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040)='nl80211\x00') ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000180)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_NEW_INTERFACE(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)={0x24, r3, 0x1, 0x0, 0x0, {{0x6}, {@void, @val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x8}]}, 0x24}}, 0x0) sendmsg$NL80211_CMD_STOP_SCHED_SCAN(r1, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x4c, r3, 0x100, 0x70bd25, 0x25dfdbfc, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x70}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x6c}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0xa}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x74}]}, 0x4c}, 0x1, 0x0, 0x0, 0x80}, 0x20000000) sendfile(r0, r1, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1138.831437][T30162] loop1: detected capacity change from 264192 to 0 [ 1138.852716][T30166] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1138.909803][T30170] loop4: detected capacity change from 264192 to 0 [ 1138.916493][ T35] audit: type=1800 audit(1609478524.376:2155): pid=30171 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="loop1" ino=1651 res=0 errno=0 [ 1139.046119][T30178] loop2: detected capacity change from 264192 to 0 05:22:04 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1700, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1139.123857][ T35] audit: type=1800 audit(1609478524.496:2156): pid=30170 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="loop4" ino=1652 res=0 errno=0 05:22:04 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x0) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1139.279082][ T35] audit: type=1800 audit(1609478524.576:2157): pid=30181 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=16378 res=0 errno=0 05:22:04 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0xffffff7f00000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1139.348553][T30184] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1139.450974][T30193] loop5: detected capacity change from 264192 to 0 05:22:05 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1800, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1139.562387][ T35] audit: type=1800 audit(1609478525.026:2158): pid=30198 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=16379 res=0 errno=0 05:22:05 executing program 1: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x1) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x5e97ac884cafc5ca) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r1, 0x0, 0x8400fffffffa) mknod(0x0, 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0) 05:22:05 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1139.790841][T30200] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:05 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) syz_init_net_socket$nfc_raw(0x27, 0x5, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io$hid(0xffffffffffffffff, &(0x7f0000001440)={0x24, 0x0, 0x0, &(0x7f00000013c0)={0x0, 0x22, 0x1, {[@local]}}, 0x0}, 0x0) syz_usb_control_io(0xffffffffffffffff, &(0x7f0000000400)={0x2c, &(0x7f0000000480)={0x20, 0x10, 0x53, {0x53, 0x10, "df06153abf2034a4e1c23c536764384870d460d7f77f983123ccf3df4f9bbed30efef4660bb5ee72943e44e6d043b55f0d5e72840c067eee28ab5f7c01982c9ddba9b47032187d659c8a542be217738a67"}}, &(0x7f00000005c0)={0x0, 0x3, 0x53, @string={0x53, 0x3, "87d86bbfe709ff524e03c95d3f34faf08b08e64d166e956a774975829b2041159de1fec53ee6148ffe51c3cbd33d4e09090e591af5efb35138d1a961ffbd5cc733b545a30bbe197f02da8a788d2c766f46"}}, &(0x7f00000006c0)={0x0, 0xf, 0x139, {0x5, 0xf, 0x139, 0x6, [@generic={0x72, 0x10, 0x1, "2e63d21203904f77c5eec999614b68af2acaf26bcea88a0be2fddde486b4c6a0f260111c0e734dbb5dcbe905b28347145145ed5d0821088c55b2927c3752389dbff4577aed1d6923da2ec3e909f26ae3807b10e73e5055a1ac8f6f12af8426f3991f0a9af74c15236a1ffdab22f5c6"}, @ss_container_id={0x14, 0x10, 0x4, 0x80, "2f91846f04f2904112053dde4bdb0b45"}, @ssp_cap={0x10, 0x10, 0xa, 0x6, 0x1, 0xa0, 0x0, 0x0, [0xc0]}, @generic={0x73, 0x10, 0x3, "d825cd9bed01e808dc3f682eba0b0cb142d8172144adced9969859cb5f78ed807e22aff91a1953475aa15d6d19ba95ee7d60fb71daf6a9ccbb06b7a71e52c7224f11460cbc7c2bd9b7649c0540dac34108bb06ab901a4b3d1f58e08099bb8190d2dacd271ec8075fd0aef0128990055e"}, @ssp_cap={0x20, 0x10, 0xa, 0x0, 0x5, 0x7fffff9, 0xf, 0x1, [0x0, 0xf, 0xff017f, 0xc0, 0xff00c0]}, @wireless={0xb, 0x10, 0x1, 0xc, 0x64, 0x7f, 0x9, 0x7f51, 0x26}]}}, &(0x7f00000001c0)={0x20, 0x29, 0xf, {0xf, 0x29, 0xbb, 0x10, 0x0, 0x7, "dd0da8a5", "5d150cc2"}}, &(0x7f0000000380)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x9, 0x3, 0x20, 0x3, 0x6, 0x7, 0x9}}}, &(0x7f0000000c00)={0x84, &(0x7f0000000500)={0x20, 0x31, 0x36, "8c984d83ab1afed3841c44a8a7f3056684d073cfb7269a00ec7570ffc1cd405a090a74ee597f3710e3e866e6d2ef253c52179da06427"}, &(0x7f0000000640)={0x0, 0xa, 0x1, 0x7}, &(0x7f0000000800)={0x0, 0x8, 0x1, 0x7f}, &(0x7f0000000840)={0x20, 0x0, 0x4, {0x2, 0x3}}, &(0x7f0000000880)={0x20, 0x0, 0x4, {0x1c00, 0x40}}, &(0x7f0000000940)={0x40, 0x7, 0x2, 0x7ff}, &(0x7f0000000980)={0x40, 0x9, 0x1, 0x6}, &(0x7f00000009c0)={0x40, 0xb, 0x2, "b2a7"}, &(0x7f0000000a00)={0x40, 0xf, 0x2, 0x8}, &(0x7f0000000a40)={0x40, 0x13, 0x6, @random="85524a4832e7"}, &(0x7f0000000a80)={0x40, 0x17, 0x6, @dev={[], 0xd}}, &(0x7f0000000ac0)={0x40, 0x19, 0x2, '8_'}, &(0x7f0000000b00)={0x40, 0x1a, 0x2, 0x1}, &(0x7f0000000b40)={0x40, 0x1c, 0x1, 0x15}, &(0x7f0000000b80)={0x40, 0x1e, 0x1, 0x1}, &(0x7f0000000bc0)={0x40, 0x21, 0x1, 0xff}}) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r1, 0x0, 0x8400fffffffa) ioctl$sock_TIOCOUTQ(r1, 0x5411, &(0x7f0000000100)) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1139.948428][T30206] loop1: detected capacity change from 264192 to 0 05:22:05 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1900, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1139.998018][T30200] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1140.028434][ T35] audit: type=1800 audit(1609478525.496:2159): pid=30206 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=16358 res=0 errno=0 05:22:05 executing program 1: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') openat$full(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/full\x00', 0x100, 0x0) r0 = creat(&(0x7f0000000280)='./file1\x00', 0x78) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r1, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) setxattr$incfs_size(&(0x7f0000000100)='./file1\x00', &(0x7f0000000140)='user.incfs.size\x00', &(0x7f0000000180)=0x6, 0x8, 0x1) [ 1140.131950][T30220] loop4: detected capacity change from 264192 to 0 [ 1140.146699][T30221] loop2: detected capacity change from 264192 to 0 [ 1140.163934][ T35] audit: type=1800 audit(1609478525.626:2160): pid=30221 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="loop2" ino=1654 res=0 errno=0 [ 1140.245695][ T35] audit: type=1800 audit(1609478525.666:2161): pid=30220 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="loop4" ino=1655 res=0 errno=0 05:22:05 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x0) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:05 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0xffffffff00000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1140.410626][T30232] loop1: detected capacity change from 264192 to 0 [ 1140.435421][T30230] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:05 executing program 1: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r1, 0x0, 0x8400fffffffa) sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f0000000400)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000380)={&(0x7f00000001c0)={0x34, 0x2, 0x1, 0x3, 0x0, 0x0, {0x7}, [@CTA_MARK={0x8, 0x8, 0x1, 0x0, 0x2}, @CTA_ID={0x8}, @CTA_TUPLE_REPLY={0x10, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x88}}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x8001}, 0x44004) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:06 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r1, 0x0, 0x8400fffffffa) sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f0000000400)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000380)={&(0x7f00000001c0)={0x34, 0x2, 0x1, 0x3, 0x0, 0x0, {0x7}, [@CTA_MARK={0x8, 0x8, 0x1, 0x0, 0x2}, @CTA_ID={0x8}, @CTA_TUPLE_REPLY={0x10, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x88}}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x8001}, 0x44004) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1140.565328][T30248] loop5: detected capacity change from 264192 to 0 [ 1140.605322][ T35] audit: type=1800 audit(1609478526.066:2162): pid=30248 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="loop5" ino=1658 res=0 errno=0 [ 1140.661880][T30254] loop1: detected capacity change from 264192 to 0 05:22:06 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1a00, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1140.728139][ T35] audit: type=1800 audit(1609478526.156:2163): pid=30254 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="loop1" ino=1659 res=0 errno=0 [ 1140.793139][T30256] loop4: detected capacity change from 264192 to 0 [ 1140.836867][T30256] FAT-fs (loop4): Unrecognized mount option "" or missing value [ 1140.974493][T30267] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:06 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x0) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:06 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1b00, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1141.280632][T30277] loop5: detected capacity change from 264192 to 0 05:22:06 executing program 1: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='autogroup\x00') bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r0, @ANYBLOB="00001000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c747594a15966e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f00000001c0)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff, r1}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:06 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f00000001c0)={'wg0\x00', 0x0}) sendmsg$FOU_CMD_GET(r0, &(0x7f0000000400)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x100800}, 0xc, &(0x7f0000000380)={&(0x7f00000006c0)={0x54, 0x0, 0x10, 0x70bd26, 0x25dfdbfd, {}, [@FOU_ATTR_REMCSUM_NOPARTIAL={0x4}, @FOU_ATTR_TYPE={0x5, 0x4, 0x1}, @FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_LOCAL_V6={0x14, 0x7, @ipv4={[], [], @multicast1}}, @FOU_ATTR_PEER_V4={0x8, 0x8, @local}, @FOU_ATTR_PORT={0x6, 0x1, 0x4e24}, @FOU_ATTR_PORT={0x6, 0x1, 0x4e21}]}, 0x54}, 0x1, 0x0, 0x0, 0x4810}, 0x64000015) ftruncate(r0, 0x1000) ioctl$SNDCTL_DSP_SETFMT(0xffffffffffffffff, 0xc0045005, &(0x7f00000004c0)=0xfffffffe) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0d7, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) r2 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000500)='/dev/ocfs2_control\x00', 0x2040, 0x0) ioctl$sock_ipv6_tunnel_SIOCGETPRL(r2, 0x89f4, &(0x7f0000000480)={'ip6tnl0\x00', &(0x7f00000005c0)={'syztnl2\x00', r1, 0x2f, 0x20, 0x60, 0x2, 0x1, @private2={0xfc, 0x2, [], 0x1}, @ipv4={[], [], @multicast2}, 0xa2, 0x40, 0xa5f4, 0x9}}) lseek(r0, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:06 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0xffffffffffffff0f, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1141.503760][T30279] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1141.518161][T30286] loop1: detected capacity change from 264192 to 0 05:22:07 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0x8, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r1, 0x0, 0x8400fffffffa) mknod(0x0, 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0) 05:22:07 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1c00, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1141.635386][T30299] loop2: detected capacity change from 264192 to 0 [ 1141.833662][T30307] loop4: detected capacity change from 264192 to 0 05:22:07 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0) [ 1141.897634][T30305] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:07 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1d00, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1142.187902][T30320] loop5: detected capacity change from 264192 to 0 [ 1142.341772][T30324] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:07 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1e00, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:22:07 executing program 1: r0 = syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') ioctl$SG_SET_FORCE_PACK_ID(0xffffffffffffffff, 0x227b, &(0x7f0000000100)=0x1) r1 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) r2 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x200}], 0x0, 0x0, 0x0}) mount$9p_fd(0x0, &(0x7f0000000140)='./file1\x00', &(0x7f0000000180)='9p\x00', 0x0, &(0x7f00000006c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@aname={'aname', 0x3d, '@!},:'}}, {@aname={'aname', 0x3d, 'smackfsroot'}}], [{@pcr={'pcr', 0x3d, 0x4}}, {@subj_user={'subj_user', 0x3d, ':\x8c\b}^,\xab@+'}}, {@obj_type={'obj_type'}}, {@smackfsroot={'smackfsroot', 0x3d, 'msdos\x00'}}, {@appraise_type='appraise_type=imasig'}, {@mask={'mask', 0x3d, 'MAY_APPEND'}}]}}) ftruncate(r1, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r1, 0x0, 0x2) r4 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r1, r4, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:08 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0xffffffffffffffff, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:08 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r0, 0x0, 0x2) open(&(0x7f0000000100)='./file1\x00', 0x4c102, 0x168) sendfile(r0, r1, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000140)='./file1\x00', 0xc000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:08 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./bus\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ioctl$RTC_UIE_ON(0xffffffffffffffff, 0x7003) ioctl$RTC_SET_TIME(0xffffffffffffffff, 0x4024700a, &(0x7f0000000040)={0x1b, 0x0, 0x0, 0x9, 0x0, 0x7f}) sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000006c0)=ANY=[@ANYBLOB="52f1311ea58aa80100000000000000fa800000000000000012be4b6246d24c8505000000000000006a3e94a8f4ce56561d74f78039c9533d377b1c927b8f19d738513757a1cebe7bf3170837a12dda56fb2e6e9951ac6da3277bb7eb5fcb8e644e414ebb55d89b1e1daf914f91f0f12c967070943457a12932deab71f0d626776de6fd4d6e513967b93ddc47b52439ce24ba0c5cc314870d6dc8f5591d6577bb01563ecea429dbb02879e0c5cc9aceb9bf40f7c22921a9a1890700a6dd175391879974ad61b88f7ce45df02a38e003ad2d61db01cf7e673619b5b3dbce072154a9c76ea08ac1b81d35ac417a0d06", @ANYRES16=0x0, @ANYBLOB="05000000000000000000060000000800050002000000"], 0x1c}}, 0x0) sendmsg$NL80211_CMD_REQ_SET_REG(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000100), 0xc, &(0x7f0000000140)={&(0x7f0000000480)={0xe8, 0x0, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x1}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_REG_RULES={0xb0, 0x22, 0x0, 0x1, [{0x1c, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x1}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x3}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x3f}]}, {0x44, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x3}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x1000}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x4}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0xafc}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x7f}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x237f169a}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x9}]}, {0x24, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_END={0x8}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0xd255}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x5}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x2}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x2}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0xfffffffa}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x3f}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8}]}]}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x1f}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x12}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x2c}]}, 0xe8}, 0x1, 0x0, 0x0, 0x48084}, 0x80) fadvise64(0xffffffffffffffff, 0x5, 0xe2, 0x0) ftruncate(0xffffffffffffffff, 0xfffffffffffffffc) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x101a04, 0x163) sendfile(r0, r1, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1142.732770][T30334] loop1: detected capacity change from 264192 to 0 [ 1142.763311][T30330] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1142.775762][T30343] binder: 30333:30343 unknown command 0 [ 1142.818613][T30343] binder: 30333:30343 ioctl c0306201 20000200 returned -22 [ 1142.852620][T30343] 9pnet: Insufficient options for proto=fd [ 1142.885757][T30348] loop4: detected capacity change from 264192 to 0 [ 1142.895417][T30345] loop2: detected capacity change from 264192 to 0 05:22:08 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0) 05:22:08 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1f00, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:22:08 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./file1\x00', 0x1d3) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r1, 0xc01864c6, &(0x7f0000000140)={&(0x7f0000000100)=[0xffff], 0x1, 0x800, 0x0, 0xffffffffffffffff}) getpeername$netrom(r2, &(0x7f0000000180)={{0x3, @rose}, [@remote, @default, @null, @remote, @netrom, @default, @netrom, @bcast]}, &(0x7f0000000280)=0x48) bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r0, 0x0, 0x2) setsockopt$CAN_RAW_ERR_FILTER(0xffffffffffffffff, 0x65, 0x2, &(0x7f0000000340)=0x6, 0x4) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r3, 0x0, 0x8400fffffffa) ioctl$RTC_SET_TIME(0xffffffffffffffff, 0x4024700a, &(0x7f00000002c0)={0x5, 0x19, 0x17, 0x15, 0xa, 0xfffffffd, 0x2, 0xe2}) mknod(0x0, 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0) 05:22:08 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./file1\x00', 0x1d3) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r1, 0xc01864c6, &(0x7f0000000140)={&(0x7f0000000100)=[0xffff], 0x1, 0x800, 0x0, 0xffffffffffffffff}) getpeername$netrom(r2, &(0x7f0000000180)={{0x3, @rose}, [@remote, @default, @null, @remote, @netrom, @default, @netrom, @bcast]}, &(0x7f0000000280)=0x48) bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r0, 0x0, 0x2) setsockopt$CAN_RAW_ERR_FILTER(0xffffffffffffffff, 0x65, 0x2, &(0x7f0000000340)=0x6, 0x4) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r3, 0x0, 0x8400fffffffa) ioctl$RTC_SET_TIME(0xffffffffffffffff, 0x4024700a, &(0x7f00000002c0)={0x5, 0x19, 0x17, 0x15, 0xa, 0xfffffffd, 0x2, 0xe2}) mknod(0x0, 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0) [ 1143.182190][T30358] loop5: detected capacity change from 264192 to 0 [ 1143.312388][T30368] loop2: detected capacity change from 264192 to 0 [ 1143.365899][T30367] loop4: detected capacity change from 264192 to 0 [ 1143.377664][T30366] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:08 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:22:09 executing program 4: syz_mount_image$msdos(&(0x7f0000000200)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0x3, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000180)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x58, 0x0, &(0x7f0000000100)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, @dead_binder_done], 0x0, 0x0, 0x0}) r3 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x0, 0x0) ioctl$RTC_UIE_ON(r3, 0x7003) ioctl$RTC_SET_TIME(r3, 0x4024700a, &(0x7f0000000040)={0x1b, 0x0, 0x0, 0x9, 0x0, 0x7f}) fadvise64(r3, 0x5, 0xe2, 0x0) r4 = ioctl$TIOCGPTPEER(r1, 0x5441, 0x9) io_submit(0x0, 0x4, &(0x7f0000000400)=[&(0x7f00000001c0)={0x0, 0x0, 0x0, 0x6, 0x1, 0xffffffffffffffff, &(0x7f0000000480)="29c6d1f998cef6183227caf5f7e4f32e8d8c06ddebe6aa00f25d2d32a0e3b45935b4a572bf84b4e63d7eab6afc88fe24f29453c1243a19654afbbe0b47284cf38436e3efefbd69cbb8c735daa7d72e1e357ac1e7614eb2e89b64b9f981b5d9040aded9b467bfe67ba24027edcb916676c30595f3fab96390b749b62cade1e116587926b7a34fdc5000d842c786210b9b5a707e691d295bb1f312d02aa1b0d45cc62be9c1", 0xa4, 0x4, 0x0, 0x1, r2}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x6, 0x9, 0xffffffffffffffff, &(0x7f0000000540)="09fe89486b5bab77d8bbb494929d21366721f91870bebbe75eb3593f2c52283ab6617c55094517f1ac02cfeb39a9692575037dcc53d5edb1d85e42570074daf8b26b919aea236f023694e5f9a0623cb6bf0358fec529b3f21700a80ac5500b1f93b561544860efa7fbb1d7cb2ab5ce5b7e60b9db1abb6dac1e600c0a96031d8e290f1c9c87062143bd3310fcccfdd72ccb35834960545347b884f4ffeca267e65a7a852ca89e77d10a568b7771aa4efa037c0355901a12da4afdfc", 0xbb, 0xd4a, 0x0, 0x3}, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x7, 0xdf4, r3, &(0x7f00000006c0)="64c1b2a68c2d834c1c20099a09856b46611789be77f15be207e9c821319121bbc0051d8ffaeef866aa5bbaec5eabb7c203712d68a8e7dccb2035a5c2ad24ffc3c1121dfd4ab5714915dd7bc358c04ec667608560a69cd42dad844754ca81af14faca3786fdded0c2864a8bfb2c579766957fee8599b3a291c46ab328ad2a41bfbb895a04c30436c81a48a431ce30cb909298ed46269c2b508e8b3902fd79555244a1a3e955796373ca299461ecde69c18caad5e5386a066138f4e9fc20d04c410427b27b254467a12c7ae7e5596a2835b1c71aa9d4c9dce87c74263d4a2e3d", 0xdf, 0x800, 0x0, 0x2, r0}, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x7, 0x5c7, r4, &(0x7f0000000340)="750fff2fa7a3882fbabcdb3cc2623aa2e6be45944abefa0343b7486cc62f5deec8e2810d93bda5375a341666e24cddb8337a6c3bd330", 0x36, 0x10001, 0x0, 0x1}]) 05:22:09 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r0, @ANYBLOB, @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:09 executing program 1: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r0, @ANYBLOB, @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:09 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x2, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1143.756036][T30389] loop2: detected capacity change from 264192 to 0 [ 1143.774318][T30387] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1143.802144][ T35] kauditd_printk_skb: 9 callbacks suppressed [ 1143.802155][ T35] audit: type=1800 audit(1609478529.256:2173): pid=30402 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=16375 res=0 errno=0 [ 1143.833328][ T35] audit: type=1800 audit(1609478529.286:2174): pid=30401 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=16372 res=0 errno=0 [ 1143.837553][T30388] FAT-fs (loop4): bogus number of reserved sectors [ 1143.863743][T30382] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1143.888419][T30387] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:09 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0) [ 1143.943520][T30409] loop1: detected capacity change from 264192 to 0 [ 1143.952658][T30388] FAT-fs (loop4): Can't find a valid FAT filesystem 05:22:09 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2010, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1144.005676][ T35] audit: type=1800 audit(1609478529.456:2175): pid=30415 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=16351 res=0 errno=0 05:22:09 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x3, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1144.222954][T30425] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1144.234377][T30426] loop5: detected capacity change from 264192 to 0 [ 1144.316249][ T35] audit: type=1800 audit(1609478529.766:2176): pid=30434 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="loop5" ino=1671 res=0 errno=0 [ 1144.347510][T30423] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1144.454433][T30423] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1144.462518][T30425] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:10 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x4, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:10 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2100, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:22:10 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r1, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000100), 0x0, 0x0, 0x0}) fcntl$setflags(0xffffffffffffffff, 0x2, 0x0) 05:22:10 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r0, @ANYBLOB, @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1144.658834][T30447] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1144.768778][T30453] loop4: detected capacity change from 264192 to 0 [ 1144.798935][ T35] audit: type=1800 audit(1609478530.256:2177): pid=30458 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=16366 res=0 errno=0 05:22:10 executing program 1: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r0, @ANYBLOB, @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1144.839703][T30447] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1144.890206][T30454] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1144.903702][T30464] loop2: detected capacity change from 264192 to 0 05:22:10 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x5, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:10 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) [ 1144.985626][ T35] audit: type=1800 audit(1609478530.436:2178): pid=30469 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=15746 res=0 errno=0 05:22:10 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2200, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1145.133262][T30476] loop1: detected capacity change from 264192 to 0 [ 1145.207187][T30482] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1145.223200][ T35] audit: type=1800 audit(1609478530.676:2179): pid=30476 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="loop1" ino=1673 res=0 errno=0 [ 1145.319643][T30490] loop5: detected capacity change from 264192 to 0 [ 1145.364170][T30482] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:10 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x6, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1145.402030][ T35] audit: type=1800 audit(1609478530.856:2180): pid=30497 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=16376 res=0 errno=0 [ 1145.407526][T30490] FAT-fs (loop5): Unrecognized mount option "" or missing value [ 1145.504894][T30489] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1145.597880][T30503] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:11 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x7, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:11 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r1, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:11 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x8, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:11 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x9, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:11 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2300, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:22:11 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r0, @ANYBLOB, @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1145.872752][T30516] loop4: detected capacity change from 264192 to 0 [ 1145.897348][T30515] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:11 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0xa, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1145.970089][ T35] audit: type=1800 audit(1609478531.426:2181): pid=30516 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=15826 res=0 errno=0 05:22:11 executing program 1: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r0, @ANYBLOB, @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:11 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) [ 1146.094338][T30532] loop2: detected capacity change from 264192 to 0 [ 1146.153381][T30531] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1146.185648][T30529] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1146.215025][ T35] audit: type=1800 audit(1609478531.666:2182): pid=30532 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="loop2" ino=1675 res=0 errno=0 [ 1146.322558][T30547] loop1: detected capacity change from 264192 to 0 [ 1146.399631][T30546] loop5: detected capacity change from 264192 to 0 [ 1146.452895][T30531] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1146.487593][T30546] FAT-fs (loop5): Unrecognized mount option "" or missing value 05:22:12 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0xb, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:12 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r1, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:12 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2400, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1146.786756][T30564] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1146.886169][T30567] loop4: detected capacity change from 264192 to 0 [ 1146.911721][T30567] FAT-fs (loop4): Unrecognized mount option "" or missing value [ 1146.945875][T30564] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:12 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0xc, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:12 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) 05:22:12 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) 05:22:12 executing program 1: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r1, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1147.196211][T30573] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1147.207497][T30586] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:12 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2500, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1147.423528][T30592] loop2: detected capacity change from 264192 to 0 [ 1147.442736][T30599] loop5: detected capacity change from 264192 to 0 05:22:12 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0xd, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1147.478386][T30595] loop1: detected capacity change from 264192 to 0 [ 1147.494032][T30592] FAT-fs (loop2): Unrecognized mount option "" or missing value [ 1147.494471][T30595] FAT-fs (loop1): Unrecognized mount option "" or missing value [ 1147.502325][T30599] FAT-fs (loop5): Unrecognized mount option "" or missing value 05:22:13 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r1, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1147.707369][T30619] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1147.742435][T30620] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:13 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0xe, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:13 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2600, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1147.902043][T30634] loop4: detected capacity change from 264192 to 0 [ 1147.957290][T30629] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1148.045160][T30629] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:13 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0xf, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1148.105195][T30639] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:13 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r1, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0)='nl80211\x00') sendmsg$NL80211_CMD_DEL_KEY(r3, &(0x7f0000000480)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000400)={&(0x7f00000005c0)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010007005d928dc8be0000ffdbdf250c000000080003001f08be92050701ae959241bdd5ca44565d061141b6cac0162b3f6a10014056f0a6b34d2d157c84c96640f66d6d4864ff84b72dd6059c10489f268ab7ccf54049287d71dfe5aa96f62fdc2dc52c819e0b73b369cfde25898920f92b94", @ANYRES32=0x0, @ANYBLOB="040028000800090005ac0f00110007008790812d16cd19a655c3062b2600000004002800"], 0x40}, 0x1, 0x0, 0x0, 0x4814}, 0x40) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:13 executing program 1: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r1, 0x0, 0x8400fffffffa) mknod(0x0, 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0) fcntl$getflags(r1, 0x401) [ 1148.174935][T30649] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:13 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x0, 0x0, &(0x7f00000008c0), 0x0, 0x0, 0x0}) 05:22:13 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2700, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1148.239684][T30649] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:13 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x10, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1148.370773][T30662] loop5: detected capacity change from 264192 to 0 [ 1148.380784][T30663] loop2: detected capacity change from 264192 to 0 [ 1148.398526][T30661] loop1: detected capacity change from 264192 to 0 [ 1148.440914][T30673] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1148.450610][T30660] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:14 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x11, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:14 executing program 4: r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/dlm-control\x00', 0x20100, 0x0) sendmsg$RDMA_NLDEV_CMD_SET(r0, &(0x7f0000000340)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x3c, 0x1402, 0x4, 0x70bd25, 0x25dfdbfc, "", [@RDMA_NLDEV_NET_NS_FD={0x8, 0x44, r0}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x2}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x2}, @RDMA_NLDEV_ATTR_DEV_NAME={0x9, 0x2, 'syz1\x00'}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x2}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4004000}, 0x4) syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r1 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r1, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) syz_80211_join_ibss(&(0x7f0000000100)='wlan1\x00', &(0x7f0000000140)=@random="c52084", 0x3, 0x1) lseek(r1, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r1, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) r3 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000380)='/dev/fb0\x00', 0x2000, 0x0) ioctl$BTRFS_IOC_SCRUB_PROGRESS(r3, 0xc400941d, &(0x7f0000000940)={0x0, 0x1, 0x2}) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:14 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2800, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1148.776384][T30690] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1148.880315][T30697] loop4: detected capacity change from 264192 to 0 [ 1148.898482][T30690] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1148.930795][T30694] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1148.953259][T30697] FAT-fs (loop4): Unrecognized mount option "À" or missing value 05:22:14 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x12, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:14 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x0, 0x0, &(0x7f00000008c0), 0x0, 0x0, 0x0}) 05:22:14 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x3f00, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1149.118552][ T35] kauditd_printk_skb: 10 callbacks suppressed [ 1149.118563][ T35] audit: type=1800 audit(1609478534.577:2193): pid=30697 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=16289 res=0 errno=0 05:22:14 executing program 1: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) bind$netrom(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, 0x3}, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @bcast]}, 0x48) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r1, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) fchmodat(0xffffffffffffff9c, &(0x7f0000000100)='\x00', 0x10) 05:22:14 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="0000000058080000950000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1149.416958][T30712] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1149.501496][T30719] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1149.522337][T30712] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1149.591988][T30732] loop2: detected capacity change from 264192 to 0 05:22:15 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x13, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1149.634127][ T35] audit: type=1800 audit(1609478535.087:2194): pid=30732 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="loop2" ino=1684 res=0 errno=0 [ 1149.653863][T30736] loop1: detected capacity change from 264192 to 0 [ 1149.719931][ T35] audit: type=1800 audit(1609478535.177:2195): pid=30740 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=15842 res=0 errno=0 05:22:15 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x4000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:22:15 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1149.759080][ T35] audit: type=1800 audit(1609478535.197:2196): pid=30736 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="loop1" ino=1685 res=0 errno=0 [ 1149.781933][T30734] loop5: detected capacity change from 264192 to 0 [ 1149.884428][T30734] FAT-fs (loop5): Unrecognized mount option "" or missing value [ 1149.971382][T30753] loop4: detected capacity change from 264192 to 0 [ 1149.981731][T30752] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1150.023823][T30753] binder: 30749:30753 unknown command 0 [ 1150.058719][T30753] binder: 30749:30753 ioctl c0306201 20000200 returned -22 [ 1150.094945][ T35] audit: type=1800 audit(1609478535.547:2197): pid=30761 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="loop4" ino=1688 res=0 errno=0 [ 1150.137868][T30752] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:15 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:15 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) r1 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000100), 0x4) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, r1, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:15 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x14, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:15 executing program 1: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1150.377516][T30754] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1150.411182][T30776] binder: 30770:30776 unknown command 0 [ 1150.416876][T30776] binder: 30770:30776 ioctl c0306201 20000200 returned -22 [ 1150.429823][ T35] audit: type=1800 audit(1609478535.887:2198): pid=30776 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=16257 res=0 errno=0 [ 1150.470368][T30774] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1150.493928][T30771] loop4: detected capacity change from 264192 to 0 05:22:16 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x15, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1150.546384][ T35] audit: type=1800 audit(1609478535.997:2199): pid=30784 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=16373 res=0 errno=0 [ 1150.567456][T30771] FAT-fs (loop4): Unrecognized mount option "" or missing value 05:22:16 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x0, 0x0, &(0x7f00000008c0), 0x0, 0x0, 0x0}) 05:22:16 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x4800, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1150.707434][T30787] loop2: detected capacity change from 264192 to 0 [ 1150.768272][ T35] audit: type=1800 audit(1609478536.227:2200): pid=30787 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="loop2" ino=1690 res=0 errno=0 [ 1150.788795][T30794] loop5: detected capacity change from 264192 to 0 [ 1150.836640][T30801] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1150.865069][ T35] audit: type=1800 audit(1609478536.287:2201): pid=30794 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=16370 res=0 errno=0 [ 1150.986898][T30801] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:16 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x16, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1151.048877][T30795] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:16 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r1, 0x0, 0x8400fffffffa) ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000100)={0x2a, 0x4, 0xc, 0x9, 0x0, 0x3, 0x0, 0x6a, 0x1}) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) syz_genetlink_get_family_id$l2tp(&(0x7f0000000140)='l2tp\x00') [ 1151.219578][T30815] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:16 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:16 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x4c00, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:22:16 executing program 1: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x14) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$MAP_CREATE(0xd00000000000000, &(0x7f0000000000)={0x6, 0x4, 0x20000000007ffd, 0x100, 0x508, 0x1, 0x0, [0x0, 0x0, 0x0, 0x400100]}, 0x40) r1 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002dc0)={0x18, 0x1, &(0x7f0000000040)=@raw=[@alu={0x0, 0x0, 0x5, 0x0, 0x1, 0x0, 0xc}], 0x0, 0xbb, 0x1000, &(0x7f0000000180)=""/4096, 0x41100, 0x0, [], 0x0, 0x0, r1, 0x8, 0x0, 0x0, 0x10, &(0x7f0000002d80)={0x2002, 0x0, 0xffffffa9, 0x4}, 0x10}, 0x78) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000001180)=ANY=[@ANYBLOB="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", @ANYRES32=r0, @ANYRES32, @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000380)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r3 = openat$mice(0xffffffffffffff9c, &(0x7f0000000100)='/dev/input/mice\x00', 0x4100) write$P9_RLERRORu(r3, &(0x7f00000001c0)={0xf, 0x7, 0x1, {{0x2, '#%'}, 0x3}}, 0xf) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1151.387145][T30815] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1151.470949][T30829] loop1: detected capacity change from 264192 to 0 [ 1151.495522][T30827] loop4: detected capacity change from 264192 to 0 [ 1151.506707][ T8] wlan1: Trigger new scan to find an IBSS to join 05:22:16 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x17, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1151.523013][T30834] loop2: detected capacity change from 264192 to 0 [ 1151.544213][T30825] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1151.552333][ T35] audit: type=1800 audit(1609478536.997:2202): pid=30829 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="loop1" ino=1692 res=0 errno=0 05:22:17 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1151.585907][T30827] binder: 30824:30827 unknown command 0 [ 1151.616719][T30827] binder: 30824:30827 ioctl c0306201 20000200 returned -22 [ 1151.717075][T30843] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:17 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x5c00, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1151.790510][T30843] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1151.861042][T30857] loop5: detected capacity change from 264192 to 0 05:22:17 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x18, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:17 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) dup2(0xffffffffffffffff, 0xffffffffffffffff) [ 1152.160646][T30866] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1152.296652][T30866] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1152.367873][T30859] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:17 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0xa, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:22:17 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x19, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:17 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:17 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x6000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1152.477916][T30877] loop4: detected capacity change from 264192 to 0 [ 1152.519388][T30883] binder: 30876:30883 unknown command 0 [ 1152.524994][T30883] binder: 30876:30883 ioctl c0306201 20000200 returned -22 [ 1152.584060][T30886] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:18 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1152.680954][T30893] XFS (loop1): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1152.696293][T30886] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1152.713473][T30895] loop2: detected capacity change from 264192 to 0 05:22:18 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x1a, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:18 executing program 1: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1152.956987][T30891] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1153.048082][T30915] loop5: detected capacity change from 264192 to 0 [ 1153.077758][T30918] loop1: detected capacity change from 264192 to 0 05:22:18 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x6800, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1153.154443][T30919] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:18 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) dup2(0xffffffffffffffff, 0xffffffffffffffff) [ 1153.288407][T30919] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:18 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x1b, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1153.493911][T30931] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1153.530279][T30944] loop4: detected capacity change from 264192 to 0 05:22:19 executing program 1 (fault-call:0 fault-nth:0): syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) 05:22:19 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1153.540913][T30941] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1153.628218][T30944] binder: 30940:30944 unknown command 0 [ 1153.633784][T30944] binder: 30940:30944 ioctl c0306201 20000200 returned -22 05:22:19 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x6c00, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1153.773852][T30960] loop2: detected capacity change from 264192 to 0 [ 1153.783729][T30941] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:19 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:19 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x1c, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1153.908577][T30965] FAULT_INJECTION: forcing a failure. [ 1153.908577][T30965] name failslab, interval 1, probability 0, space 0, times 0 [ 1153.921492][T30965] CPU: 1 PID: 30965 Comm: syz-executor.1 Not tainted 5.11.0-rc1-syzkaller #0 [ 1153.930249][T30965] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1153.940317][T30965] Call Trace: [ 1153.943591][T30965] dump_stack+0x116/0x15d [ 1153.947968][T30965] should_fail+0x231/0x240 [ 1153.952540][T30965] __should_failslab+0x81/0x90 [ 1153.957304][T30965] ? __se_sys_memfd_create+0xfb/0x370 [ 1153.962676][T30965] should_failslab+0x5/0x20 [ 1153.967186][T30965] __kmalloc+0x59/0x360 [ 1153.971372][T30965] ? strnlen_user+0x137/0x1c0 [ 1153.976044][T30965] __se_sys_memfd_create+0xfb/0x370 [ 1153.981357][T30965] __x64_sys_memfd_create+0x2d/0x40 [ 1153.986728][T30965] do_syscall_64+0x39/0x80 [ 1153.991135][T30965] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1153.997028][T30965] RIP: 0033:0x45e219 [ 1154.000910][T30965] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1154.020504][T30965] RSP: 002b:00007f1ce1a19a18 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1154.028961][T30965] RAX: ffffffffffffffda RBX: 0000000020000280 RCX: 000000000045e219 [ 1154.036927][T30965] RDX: 00007f1ce1a19ad0 RSI: 0000000000000000 RDI: 00000000004c2c87 [ 1154.044932][T30965] RBP: 0000000000000000 R08: 00007f1ce1a19ac8 R09: 0000000000000000 05:22:19 executing program 1 (fault-call:0 fault-nth:1): syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) [ 1154.052894][T30965] R10: 00007f1ce1a19acc R11: 0000000000000246 R12: 0000000000000000 [ 1154.060942][T30965] R13: 0000000020000100 R14: 0000000020000280 R15: 0000000020000140 [ 1154.160919][T30970] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1154.181931][T30958] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1154.212429][T30976] FAULT_INJECTION: forcing a failure. [ 1154.212429][T30976] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1154.258062][T30976] CPU: 1 PID: 30976 Comm: syz-executor.1 Not tainted 5.11.0-rc1-syzkaller #0 [ 1154.266925][T30976] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1154.276977][T30976] Call Trace: [ 1154.280302][T30976] dump_stack+0x116/0x15d [ 1154.284634][T30976] should_fail+0x231/0x240 [ 1154.289089][T30976] should_fail_usercopy+0x16/0x20 [ 1154.295416][T30976] _copy_from_user+0x1c/0xd0 [ 1154.300093][T30976] __se_sys_memfd_create+0x137/0x370 05:22:19 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) dup2(0xffffffffffffffff, 0xffffffffffffffff) 05:22:19 executing program 2: r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) openat$cgroup_devices(r0, &(0x7f0000000000)='devices.deny\x00', 0x2, 0x0) ioctl$PPPIOCDISCONN(r0, 0x7439) r1 = openat2(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x24c0, 0x1a0, 0xc}, 0x18) r2 = fcntl$dupfd(r0, 0x80c, r1) r3 = accept$phonet_pipe(r2, 0x0, &(0x7f00000000c0)) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r0, 0x40605346, &(0x7f0000000100)={0x8, 0x2, {0x2, 0x1, 0x20, 0x0, 0x6}, 0x4}) prctl$PR_SET_FPEMU(0xa, 0x1) setsockopt$packet_buf(r1, 0x107, 0x1, &(0x7f0000000180)="e98e0c98dbc972f2", 0x8) ioctl$sock_SIOCSIFVLAN_SET_VLAN_EGRESS_PRIORITY_CMD(r2, 0x8983, &(0x7f00000001c0)={0x3, 'wg0\x00', {0xfffffffe}, 0x8}) socketpair(0x5, 0x2, 0x7, &(0x7f0000000200)) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000340)={r1, 0x10, &(0x7f0000000300)={&(0x7f0000000240)=""/186, 0xba}}, 0x10) r4 = openat$full(0xffffffffffffff9c, &(0x7f0000000380)='/dev/full\x00', 0x800, 0x0) ioctl$USBDEVFS_DISCARDURB(r4, 0x550b, &(0x7f00000003c0)=0x1) socketpair(0x15, 0x2, 0x2, &(0x7f0000000400)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r6, 0x89f0, &(0x7f00000004c0)={'sit0\x00', &(0x7f0000000440)={'ip6gre0\x00', 0x0, 0x29, 0x0, 0x0, 0x4, 0xa, @private2, @loopback, 0x1, 0x20, 0x7ff, 0x80000001}}) r7 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000500)='/dev/autofs\x00', 0x32400, 0x0) ioctl$TIOCSCTTY(r7, 0x540e, 0x8) ioctl$FS_IOC_MEASURE_VERITY(r3, 0xc0046686, &(0x7f0000000540)={0x4, 0x15, "04f3edbff7c8756650e56233cb8180742fb53c8ae5"}) io_uring_register$IORING_REGISTER_FILES_UPDATE(r4, 0x6, &(0x7f0000001940)={0x1, 0x0, &(0x7f0000001900)=[0xffffffffffffffff, 0xffffffffffffffff, r2, r5, r6, r0, r6, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x9) [ 1154.305378][T30976] __x64_sys_memfd_create+0x2d/0x40 [ 1154.310639][T30976] do_syscall_64+0x39/0x80 [ 1154.316556][T30976] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1154.322468][T30976] RIP: 0033:0x45e219 [ 1154.326387][T30976] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1154.345984][T30976] RSP: 002b:00007f1ce1a19a18 EFLAGS: 00000246 ORIG_RAX: 000000000000013f 05:22:19 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x7400, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:22:19 executing program 1 (fault-call:0 fault-nth:2): syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) [ 1154.354387][T30976] RAX: ffffffffffffffda RBX: 0000000020000280 RCX: 000000000045e219 [ 1154.362822][T30976] RDX: 00007f1ce1a19ad0 RSI: 0000000000000000 RDI: 00000000004c2c87 [ 1154.370791][T30976] RBP: 0000000000000000 R08: 00007f1ce1a19ac8 R09: 0000000000000000 [ 1154.378939][T30976] R10: 00007f1ce1a19acc R11: 0000000000000246 R12: 0000000000000000 [ 1154.388155][T30976] R13: 0000000020000100 R14: 0000000020000280 R15: 0000000020000140 [ 1154.433973][T30970] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1154.532025][T30985] loop5: detected capacity change from 264192 to 0 05:22:20 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x1d, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1154.593235][T30993] FAULT_INJECTION: forcing a failure. [ 1154.593235][T30993] name failslab, interval 1, probability 0, space 0, times 0 [ 1154.605965][ T35] kauditd_printk_skb: 9 callbacks suppressed [ 1154.605975][ T35] audit: type=1800 audit(1609478540.047:2212): pid=30992 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=16361 res=0 errno=0 [ 1154.631698][T30993] CPU: 0 PID: 30993 Comm: syz-executor.1 Not tainted 5.11.0-rc1-syzkaller #0 [ 1154.641227][T30993] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1154.651283][T30993] Call Trace: [ 1154.654562][T30993] dump_stack+0x116/0x15d [ 1154.659316][T30993] should_fail+0x231/0x240 [ 1154.663789][T30993] ? shmem_alloc_inode+0x22/0x30 [ 1154.670092][T30993] __should_failslab+0x81/0x90 [ 1154.674912][T30993] ? shmem_match+0xa0/0xa0 [ 1154.683069][T30993] should_failslab+0x5/0x20 [ 1154.688540][T30993] kmem_cache_alloc+0x36/0x2e0 [ 1154.693383][T30993] ? shmem_match+0xa0/0xa0 [ 1154.697983][T30993] shmem_alloc_inode+0x22/0x30 [ 1154.703326][T30993] new_inode_pseudo+0x38/0x1a0 [ 1154.709185][T30993] new_inode+0x21/0x100 [ 1154.713341][T30993] shmem_get_inode+0xa1/0x430 [ 1154.718064][T30993] __shmem_file_setup+0xef/0x1c0 [ 1154.723002][T30993] shmem_file_setup+0x37/0x40 [ 1154.727682][T30993] __se_sys_memfd_create+0x1eb/0x370 [ 1154.733023][T30993] __x64_sys_memfd_create+0x2d/0x40 [ 1154.738339][T30993] do_syscall_64+0x39/0x80 [ 1154.743447][T30993] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1154.749345][T30993] RIP: 0033:0x45e219 [ 1154.754947][T30993] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1154.774612][T30993] RSP: 002b:00007f1ce1a19a18 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1154.783216][T30993] RAX: ffffffffffffffda RBX: 0000000020000280 RCX: 000000000045e219 05:22:20 executing program 1 (fault-call:0 fault-nth:3): syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) [ 1154.791291][T30993] RDX: 00007f1ce1a19ad0 RSI: 0000000000000000 RDI: 00000000004c2c87 [ 1154.799275][T30993] RBP: 0000000000000000 R08: 00007f1ce1a19ac8 R09: 0000000000000000 [ 1154.807244][T30993] R10: 00007f1ce1a19acc R11: 0000000000000246 R12: 0000000000000000 [ 1154.815737][T30993] R13: 0000000020000100 R14: 0000000020000280 R15: 0000000020000140 [ 1154.909285][T30984] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1154.951732][T31001] loop4: detected capacity change from 264192 to 0 [ 1154.965024][T31008] FAULT_INJECTION: forcing a failure. [ 1154.965024][T31008] name failslab, interval 1, probability 0, space 0, times 0 [ 1154.984579][T31001] binder: 30999:31001 unknown command 0 [ 1154.995021][T31001] binder: 30999:31001 ioctl c0306201 20000200 returned -22 [ 1155.006525][T31008] CPU: 1 PID: 31008 Comm: syz-executor.1 Not tainted 5.11.0-rc1-syzkaller #0 [ 1155.015341][T31008] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1155.025503][T31008] Call Trace: [ 1155.028768][T31008] dump_stack+0x116/0x15d [ 1155.033098][T31008] should_fail+0x231/0x240 [ 1155.037515][T31008] ? security_inode_alloc+0x2e/0x170 [ 1155.042859][T31008] __should_failslab+0x81/0x90 [ 1155.047732][T31008] should_failslab+0x5/0x20 [ 1155.053839][T31008] kmem_cache_alloc+0x36/0x2e0 [ 1155.059092][T31008] security_inode_alloc+0x2e/0x170 [ 1155.064244][T31008] inode_init_always+0x211/0x430 [ 1155.069176][T31008] ? shmem_match+0xa0/0xa0 [ 1155.073646][T31008] new_inode_pseudo+0x6f/0x1a0 [ 1155.078512][T31008] new_inode+0x21/0x100 [ 1155.080216][T31010] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1155.082738][T31008] shmem_get_inode+0xa1/0x430 [ 1155.095350][T31008] __shmem_file_setup+0xef/0x1c0 [ 1155.100285][T31008] shmem_file_setup+0x37/0x40 05:22:20 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x7a00, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1155.105000][T31008] __se_sys_memfd_create+0x1eb/0x370 [ 1155.110318][T31008] __x64_sys_memfd_create+0x2d/0x40 [ 1155.115522][T31008] do_syscall_64+0x39/0x80 [ 1155.119954][T31008] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1155.125843][T31008] RIP: 0033:0x45e219 [ 1155.129797][T31008] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1155.149400][T31008] RSP: 002b:00007f1ce1a19a18 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1155.157804][T31008] RAX: ffffffffffffffda RBX: 0000000020000280 RCX: 000000000045e219 [ 1155.165765][T31008] RDX: 00007f1ce1a19ad0 RSI: 0000000000000000 RDI: 00000000004c2c87 [ 1155.173733][T31008] RBP: 0000000000000000 R08: 00007f1ce1a19ac8 R09: 0000000000000000 [ 1155.174640][ T35] audit: type=1800 audit(1609478540.627:2213): pid=31017 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="loop4" ino=1702 res=0 errno=0 05:22:20 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1155.181685][T31008] R10: 00007f1ce1a19acc R11: 0000000000000246 R12: 0000000000000000 [ 1155.181697][T31008] R13: 0000000020000100 R14: 0000000020000280 R15: 0000000020000140 05:22:20 executing program 2: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000001240)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f00000010c0)=ANY=[], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x28011, r0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000001280)='hugetlb.2MB.limit_in_bytes\x00', 0xb00000000065808, 0x0) r2 = socket$inet6(0xa, 0x1, 0x84) bind$inet6(r2, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) connect$inet6(r2, &(0x7f0000000080)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) getsockopt$bt_hci(r2, 0x84, 0x25, &(0x7f00000000c0)=""/4093, &(0x7f0000001140)=0xffd) sendmsg$nl_generic(r0, &(0x7f0000001100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000010c0)={&(0x7f0000001180)={0x94, 0x22, 0x20, 0x70bd2a, 0x25dfdbff, {0x20}, [@typed={0x14, 0x8a, 0x0, 0x0, @ipv6=@local}, @generic="435033da799ad31b6fa5f03f190c5f85514a4cc97544ed946d585d1cffa1ed909a9570bd127db6cd7ee062b308d24c5d755815011681fe2eff66afc1aca56e72da22a1ca1087c344808f69365945cf4e69fa789af39de15e6b296e511c1707d19c1179a75565fc0fafae"]}, 0x94}, 0x1, 0x0, 0x0, 0x40000}, 0x0) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$EVIOCSABS2F(r1, 0x401845ef, &(0x7f00000012c0)={0x2, 0x1, 0x0, 0x9d13, 0x28, 0x80000000}) sendfile(r3, r1, 0x0, 0x100000001) 05:22:20 executing program 1 (fault-call:0 fault-nth:4): syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) 05:22:20 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x1e, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:20 executing program 5 (fault-call:11 fault-nth:0): syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1155.372684][T31029] FAULT_INJECTION: forcing a failure. [ 1155.372684][T31029] name failslab, interval 1, probability 0, space 0, times 0 [ 1155.388189][T31027] loop4: detected capacity change from 264192 to 0 [ 1155.409948][T31027] binder: 31023:31027 unknown command 0 [ 1155.415613][T31027] binder: 31023:31027 ioctl c0306201 20000200 returned -22 [ 1155.426055][ T35] audit: type=1800 audit(1609478540.887:2214): pid=31027 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="loop4" ino=1704 res=0 errno=0 [ 1155.497736][T31029] CPU: 0 PID: 31029 Comm: syz-executor.1 Not tainted 5.11.0-rc1-syzkaller #0 [ 1155.505192][T31032] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1155.506527][T31029] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1155.524570][T31029] Call Trace: [ 1155.529162][T31029] dump_stack+0x116/0x15d [ 1155.533764][T31029] should_fail+0x231/0x240 [ 1155.538182][T31029] ? __d_alloc+0x36/0x370 [ 1155.542508][T31029] __should_failslab+0x81/0x90 [ 1155.547500][T31029] should_failslab+0x5/0x20 [ 1155.553752][T31029] kmem_cache_alloc+0x36/0x2e0 [ 1155.560232][T31029] ? security_inode_alloc+0x127/0x170 [ 1155.566860][T31029] ? __init_rwsem+0x59/0x70 [ 1155.571364][T31029] __d_alloc+0x36/0x370 [ 1155.577280][T31029] ? current_time+0xdb/0x190 [ 1155.581873][T31029] d_alloc_pseudo+0x1a/0x50 [ 1155.586365][T31029] alloc_file_pseudo+0x63/0x130 [ 1155.592401][T31029] __shmem_file_setup+0x13a/0x1c0 [ 1155.598721][T31029] shmem_file_setup+0x37/0x40 [ 1155.604012][T31029] __se_sys_memfd_create+0x1eb/0x370 [ 1155.609297][T31029] __x64_sys_memfd_create+0x2d/0x40 [ 1155.614539][T31029] do_syscall_64+0x39/0x80 [ 1155.620884][T31029] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1155.627528][T31029] RIP: 0033:0x45e219 [ 1155.631410][T31029] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1155.651014][T31029] RSP: 002b:00007f1ce1a19a18 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1155.659765][T31029] RAX: ffffffffffffffda RBX: 0000000020000280 RCX: 000000000045e219 [ 1155.668549][T31029] RDX: 00007f1ce1a19ad0 RSI: 0000000000000000 RDI: 00000000004c2c87 [ 1155.677253][T31029] RBP: 0000000000000000 R08: 00007f1ce1a19ac8 R09: 0000000000000000 [ 1155.685216][T31029] R10: 00007f1ce1a19acc R11: 0000000000000246 R12: 0000000000000000 [ 1155.693345][T31029] R13: 0000000020000100 R14: 0000000020000280 R15: 0000000020000140 05:22:21 executing program 2: r0 = getpid() r1 = perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x97, 0x6}, r0, 0xd, 0xffffffffffffffff, 0x2) write$cgroup_int(0xffffffffffffffff, &(0x7f0000000040)=0x49db, 0x12) perf_event_open(&(0x7f00000003c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x48, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, @perf_config_ext}, 0x0, 0xfffffffffffffffd, 0xffffffffffffffff, 0x0) unshare(0x2c060000) semget$private(0x0, 0x4007, 0x0) semtimedop(0x0, &(0x7f0000000000)=[{}], 0x185, 0x0) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write$RDMA_USER_CM_CMD_NOTIFY(0xffffffffffffffff, &(0x7f00000005c0)={0xf, 0x8, 0xfa00, {0xffffffffffffffff, 0x5}}, 0x10) ioctl$sock_inet6_tcp_SIOCOUTQ(0xffffffffffffffff, 0x5411, 0x0) execve(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000300)=[&(0x7f0000000100)='/\\%-{\xdb-*]]@\x00', &(0x7f0000000140)='&\x00', &(0x7f0000000180)='$:{\x00', &(0x7f00000001c0)='[\x00', 0x0, 0x0, &(0x7f0000000280)='&-,{\')]:\x00', &(0x7f00000002c0)='\x00'], &(0x7f0000000440)=[&(0x7f0000000340)='\x00', &(0x7f0000000380)='\xd8\\}\x00']) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000540)={'filter\x00'}, &(0x7f0000000200)=0x44) ioctl$RTC_IRQP_READ(r1, 0x8008700b, 0x0) fsetxattr$trusted_overlay_redirect(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) fcntl$setown(0xffffffffffffffff, 0x8, 0xffffffffffffffff) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000000)) r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) fchmodat(0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', 0x0) ioctl$EVIOCGBITKEY(r2, 0x80404521, &(0x7f0000000600)=""/237) 05:22:21 executing program 1 (fault-call:0 fault-nth:5): syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) [ 1155.806236][T31019] XFS (loop3): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1155.816759][T31032] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1155.857194][T31045] loop5: detected capacity change from 264192 to 0 [ 1155.885436][T31052] FAULT_INJECTION: forcing a failure. [ 1155.885436][T31052] name failslab, interval 1, probability 0, space 0, times 0 [ 1155.898340][T31052] CPU: 1 PID: 31052 Comm: syz-executor.1 Not tainted 5.11.0-rc1-syzkaller #0 [ 1155.907174][T31052] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1155.916083][T31051] FAULT_INJECTION: forcing a failure. [ 1155.916083][T31051] name failslab, interval 1, probability 0, space 0, times 0 [ 1155.917213][T31052] Call Trace: [ 1155.917221][T31052] dump_stack+0x116/0x15d [ 1155.917245][T31052] should_fail+0x231/0x240 [ 1155.917262][T31052] ? __alloc_file+0x2e/0x1a0 [ 1155.917280][T31052] __should_failslab+0x81/0x90 [ 1155.936216][ T35] audit: type=1800 audit(1609478541.367:2215): pid=31051 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=16372 res=0 errno=0 [ 1155.939052][T31052] should_failslab+0x5/0x20 [ 1155.978394][T31052] kmem_cache_alloc+0x36/0x2e0 [ 1155.983190][T31052] ? __d_alloc+0x36/0x370 [ 1155.989093][T31052] __alloc_file+0x2e/0x1a0 [ 1155.993513][T31052] alloc_empty_file+0xcd/0x1c0 [ 1155.998329][T31052] alloc_file+0x3a/0x280 [ 1156.002620][T31052] alloc_file_pseudo+0xe2/0x130 [ 1156.007473][T31052] __shmem_file_setup+0x13a/0x1c0 [ 1156.012491][T31052] shmem_file_setup+0x37/0x40 [ 1156.017219][T31052] __se_sys_memfd_create+0x1eb/0x370 [ 1156.022931][T31052] __x64_sys_memfd_create+0x2d/0x40 [ 1156.028155][T31052] do_syscall_64+0x39/0x80 [ 1156.033554][T31052] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1156.039469][T31052] RIP: 0033:0x45e219 [ 1156.043348][T31052] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1156.063065][T31052] RSP: 002b:00007f1ce1a19a18 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1156.071486][T31052] RAX: ffffffffffffffda RBX: 0000000020000280 RCX: 000000000045e219 [ 1156.079443][T31052] RDX: 00007f1ce1a19ad0 RSI: 0000000000000000 RDI: 00000000004c2c87 [ 1156.087402][T31052] RBP: 0000000000000000 R08: 00007f1ce1a19ac8 R09: 0000000000000000 [ 1156.095886][T31052] R10: 00007f1ce1a19acc R11: 0000000000000246 R12: 0000000000000000 [ 1156.104888][T31052] R13: 0000000020000100 R14: 0000000020000280 R15: 0000000020000140 [ 1156.117483][T31051] CPU: 1 PID: 31051 Comm: syz-executor.5 Not tainted 5.11.0-rc1-syzkaller #0 [ 1156.126601][T31051] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1156.136667][T31051] Call Trace: [ 1156.140013][T31051] dump_stack+0x116/0x15d [ 1156.144342][T31051] should_fail+0x231/0x240 [ 1156.148751][T31051] __should_failslab+0x81/0x90 [ 1156.153510][T31051] ? alloc_pipe_info+0xac/0x350 [ 1156.158399][T31051] should_failslab+0x5/0x20 [ 1156.162898][T31051] kmem_cache_alloc_trace+0x39/0x320 [ 1156.168238][T31051] alloc_pipe_info+0xac/0x350 [ 1156.172917][T31051] splice_direct_to_actor+0x5f7/0x650 [ 1156.178326][T31051] ? do_splice_direct+0x170/0x170 [ 1156.183339][T31051] ? security_file_permission+0x87/0xa0 [ 1156.188881][T31051] ? rw_verify_area+0x136/0x250 [ 1156.193732][T31051] do_splice_direct+0xf5/0x170 [ 1156.198498][T31051] do_sendfile+0x5db/0xca0 [ 1156.202925][T31051] __x64_sys_sendfile64+0xf2/0x130 05:22:21 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0xedc0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1156.209812][T31051] do_syscall_64+0x39/0x80 [ 1156.215672][T31051] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1156.221622][T31051] RIP: 0033:0x45e219 [ 1156.226006][T31051] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1156.245908][T31051] RSP: 002b:00007f23a30ecc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 05:22:21 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x21, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:21 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$inet_udp(0x2, 0x2, 0x0) socket$packet(0x11, 0x3, 0x300) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000140)='wlan0\x00', 0x10) connect$inet(r0, &(0x7f0000000180)={0x2, 0x0, @multicast2}, 0x10) sendmmsg(r0, &(0x7f0000007fc0), 0x400000000000070, 0x0) r1 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) r2 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r3 = dup2(r2, r1) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r3, 0x89f0, &(0x7f00000001c0)={'syztnl2\x00', &(0x7f00000000c0)={'syztnl2\x00', 0x0, 0x2f, 0xd0, 0x7f, 0x1, 0x2c, @private2={0xfc, 0x2, [], 0x1}, @mcast2, 0x7, 0x10, 0x80000000, 0x7}}) r4 = syz_open_procfs(0x0, &(0x7f0000000080)='fd\x00') readlinkat(r4, &(0x7f0000000040)='./file0\x00', &(0x7f0000019280)=""/102390, 0x192d4) ioctl$sock_inet_tcp_SIOCOUTQ(r4, 0x5411, &(0x7f0000000000)) r5 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000200)='nl80211\x00') ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000700)={'wlan1\x00'}) 05:22:21 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:21 executing program 1 (fault-call:0 fault-nth:6): syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) [ 1156.254658][T31051] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000000045e219 [ 1156.263745][T31051] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000006 [ 1156.272471][T31051] RBP: 00007f23a30ecca0 R08: 0000000000000000 R09: 0000000000000000 [ 1156.280854][T31051] R10: 00008400fffffffa R11: 0000000000000246 R12: 0000000000000000 [ 1156.289191][T31051] R13: 00007ffd24387f1f R14: 00007f23a30ed9c0 R15: 000000000119c034 [ 1156.397513][T31045] FAT-fs (loop5): Unrecognized mount option "" or missing value [ 1156.430505][T31065] FAULT_INJECTION: forcing a failure. [ 1156.430505][T31065] name failslab, interval 1, probability 0, space 0, times 0 [ 1156.466504][ T8] wlan1: Trigger new scan to find an IBSS to join 05:22:22 executing program 5 (fault-call:11 fault-nth:1): syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1156.575906][T31068] binder: 31066:31068 unknown command 0 [ 1156.588156][T31068] binder: 31066:31068 ioctl c0306201 20000200 returned -22 [ 1156.595276][T31065] CPU: 0 PID: 31065 Comm: syz-executor.1 Not tainted 5.11.0-rc1-syzkaller #0 [ 1156.604173][T31065] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1156.615105][T31065] Call Trace: [ 1156.616926][T31068] binder: 31066:31068 ioctl 89f0 200001c0 returned -22 [ 1156.618381][T31065] dump_stack+0x116/0x15d [ 1156.618408][T31065] should_fail+0x231/0x240 [ 1156.633931][T31065] ? security_file_alloc+0x2e/0x190 [ 1156.640028][T31065] __should_failslab+0x81/0x90 [ 1156.647650][T31065] should_failslab+0x5/0x20 [ 1156.653706][T31065] kmem_cache_alloc+0x36/0x2e0 [ 1156.659896][T31065] ? __alloc_file+0x2e/0x1a0 [ 1156.664753][T31065] security_file_alloc+0x2e/0x190 [ 1156.670782][T31065] __alloc_file+0x83/0x1a0 [ 1156.676777][T31065] alloc_empty_file+0xcd/0x1c0 [ 1156.683279][T31065] alloc_file+0x3a/0x280 [ 1156.687601][T31065] alloc_file_pseudo+0xe2/0x130 [ 1156.692477][T31065] __shmem_file_setup+0x13a/0x1c0 [ 1156.697639][T31065] shmem_file_setup+0x37/0x40 [ 1156.702395][T31065] __se_sys_memfd_create+0x1eb/0x370 [ 1156.707686][T31065] __x64_sys_memfd_create+0x2d/0x40 [ 1156.712913][T31065] do_syscall_64+0x39/0x80 [ 1156.717409][T31065] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1156.723309][T31065] RIP: 0033:0x45e219 [ 1156.727198][T31065] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1156.746794][T31065] RSP: 002b:00007f1ce1a19a18 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1156.755204][T31065] RAX: ffffffffffffffda RBX: 0000000020000280 RCX: 000000000045e219 [ 1156.763242][T31065] RDX: 00007f1ce1a19ad0 RSI: 0000000000000000 RDI: 00000000004c2c87 [ 1156.771277][T31065] RBP: 0000000000000000 R08: 00007f1ce1a19ac8 R09: 0000000000000000 [ 1156.779241][T31065] R10: 00007f1ce1a19acc R11: 0000000000000246 R12: 0000000000000000 [ 1156.787209][T31065] R13: 0000000020000100 R14: 0000000020000280 R15: 0000000020000140 [ 1156.822397][ T35] audit: type=1800 audit(1609478542.277:2216): pid=31080 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=16369 res=0 errno=0 [ 1156.826562][T31086] binder: 31073:31086 unknown command 0 [ 1156.849442][T31087] binder: 31066:31087 unknown command 0 [ 1156.856017][T31080] FAULT_INJECTION: forcing a failure. [ 1156.856017][T31080] name failslab, interval 1, probability 0, space 0, times 0 [ 1156.872851][T31068] binder: 31066:31068 ioctl 89f0 200001c0 returned -22 [ 1156.877190][T31087] binder: 31066:31087 ioctl c0306201 20000200 returned -22 [ 1156.881031][T31086] binder: 31073:31086 ioctl c0306201 20000200 returned -22 [ 1156.900219][T31077] loop4: detected capacity change from 264192 to 0 [ 1156.901659][T31080] CPU: 0 PID: 31080 Comm: syz-executor.5 Not tainted 5.11.0-rc1-syzkaller #0 [ 1156.913176][ T35] audit: type=1800 audit(1609478542.357:2217): pid=31079 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=16368 res=0 errno=0 [ 1156.915482][T31080] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1156.915495][T31080] Call Trace: [ 1156.915504][T31080] dump_stack+0x116/0x15d [ 1156.915529][T31080] should_fail+0x231/0x240 [ 1156.959501][T31080] __should_failslab+0x81/0x90 [ 1156.965847][T31080] ? kcalloc+0x32/0x40 [ 1156.970414][T31080] should_failslab+0x5/0x20 [ 1156.975237][T31080] __kmalloc+0x59/0x360 [ 1156.979864][T31080] ? kmem_cache_alloc_trace+0x1a1/0x320 [ 1156.986494][T31080] ? alloc_pipe_info+0xac/0x350 [ 1156.991437][T31080] kcalloc+0x32/0x40 [ 1156.995637][T31080] alloc_pipe_info+0x1be/0x350 [ 1157.000395][T31080] splice_direct_to_actor+0x5f7/0x650 [ 1157.006993][T31080] ? do_splice_direct+0x170/0x170 [ 1157.013676][T31080] ? security_file_permission+0x87/0xa0 [ 1157.020857][T31080] ? rw_verify_area+0x136/0x250 [ 1157.027230][T31080] do_splice_direct+0xf5/0x170 [ 1157.031995][T31080] do_sendfile+0x5db/0xca0 [ 1157.036449][T31080] __x64_sys_sendfile64+0xf2/0x130 [ 1157.042657][T31080] do_syscall_64+0x39/0x80 [ 1157.047196][T31080] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1157.054124][T31080] RIP: 0033:0x45e219 [ 1157.058590][T31080] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1157.079685][T31080] RSP: 002b:00007f23a30ecc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1157.089220][T31080] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000000045e219 [ 1157.098589][T31080] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000006 [ 1157.107743][T31080] RBP: 00007f23a30ecca0 R08: 0000000000000000 R09: 0000000000000000 [ 1157.117264][T31080] R10: 00008400fffffffa R11: 0000000000000246 R12: 0000000000000001 [ 1157.125234][T31080] R13: 00007ffd24387f1f R14: 00007f23a30ed9c0 R15: 000000000119c034 [ 1157.153958][T31078] loop5: detected capacity change from 264192 to 0 [ 1157.194117][T31077] FAT-fs (loop4): Unrecognized mount option "" or missing value 05:22:22 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x22, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:22 executing program 1 (fault-call:0 fault-nth:7): syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) [ 1157.247249][T31078] FAT-fs (loop5): Unrecognized mount option "" or missing value [ 1157.307049][T31097] FAULT_INJECTION: forcing a failure. [ 1157.307049][T31097] name failslab, interval 1, probability 0, space 0, times 0 [ 1157.319753][T31097] CPU: 0 PID: 31097 Comm: syz-executor.1 Not tainted 5.11.0-rc1-syzkaller #0 [ 1157.328505][T31097] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1157.338555][T31097] Call Trace: [ 1157.341826][T31097] dump_stack+0x116/0x15d [ 1157.346178][T31097] should_fail+0x231/0x240 [ 1157.350645][T31097] __should_failslab+0x81/0x90 [ 1157.355424][T31097] ? tomoyo_realpath_from_path+0x98/0x3b0 [ 1157.361146][T31097] should_failslab+0x5/0x20 [ 1157.365625][T31097] __kmalloc+0x59/0x360 [ 1157.369757][T31097] tomoyo_realpath_from_path+0x98/0x3b0 [ 1157.375296][T31097] tomoyo_path_perm+0xc6/0x330 [ 1157.380044][T31097] tomoyo_path_truncate+0x18/0x20 [ 1157.385050][T31097] security_path_truncate+0x7f/0xd0 [ 1157.390229][T31097] do_sys_ftruncate+0x38d/0x530 [ 1157.395066][T31097] ? fpregs_assert_state_consistent+0x7d/0x90 [ 1157.401242][T31097] __x64_sys_ftruncate+0x2f/0x40 [ 1157.406164][T31097] do_syscall_64+0x39/0x80 [ 1157.410577][T31097] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1157.416478][T31097] RIP: 0033:0x45e1e7 [ 1157.420353][T31097] Code: 24 29 d7 48 69 ff e8 03 00 00 48 89 7c 24 08 48 89 e7 e8 dc e4 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 b8 4d 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1157.440048][T31097] RSP: 002b:00007f1ce1a19a18 EFLAGS: 00000217 ORIG_RAX: 000000000000004d [ 1157.448437][T31097] RAX: ffffffffffffffda RBX: 0000000020000280 RCX: 000000000045e1e7 [ 1157.456387][T31097] RDX: 00007f1ce1a19ad0 RSI: 0000000000000000 RDI: 0000000000000004 [ 1157.464337][T31097] RBP: 0000000000000000 R08: 00007f1ce1a19ac8 R09: 0000000000000000 [ 1157.472385][T31097] R10: 00007f1ce1a19acc R11: 0000000000000217 R12: 0000000000000000 [ 1157.480338][T31097] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000140 [ 1157.494068][T31097] ERROR: Out of memory at tomoyo_realpath_from_path. 05:22:23 executing program 5 (fault-call:11 fault-nth:2): syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:23 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1157.569516][T31097] XFS (loop1): Invalid superblock magic number 05:22:23 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x40000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:22:23 executing program 1 (fault-call:0 fault-nth:8): syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) [ 1157.809929][T31121] loop4: detected capacity change from 264192 to 0 [ 1157.825899][T31129] FAULT_INJECTION: forcing a failure. [ 1157.825899][T31129] name failslab, interval 1, probability 0, space 0, times 0 [ 1157.843992][T31123] loop5: detected capacity change from 264192 to 0 05:22:23 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x23, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1157.869440][T31121] binder: 31118:31121 unknown command 0 [ 1157.875063][T31121] binder: 31118:31121 ioctl c0306201 20000200 returned -22 [ 1157.905649][ T35] audit: type=1800 audit(1609478543.358:2218): pid=31123 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="loop5" ino=1706 res=0 errno=0 [ 1157.907326][T31123] FAULT_INJECTION: forcing a failure. [ 1157.907326][T31123] name failslab, interval 1, probability 0, space 0, times 0 [ 1157.925345][T31129] CPU: 1 PID: 31129 Comm: syz-executor.1 Not tainted 5.11.0-rc1-syzkaller #0 [ 1157.946474][T31129] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1157.956871][T31129] Call Trace: [ 1157.960147][T31129] dump_stack+0x116/0x15d [ 1157.964478][T31129] should_fail+0x231/0x240 [ 1157.968894][T31129] __should_failslab+0x81/0x90 [ 1157.973658][T31129] ? tomoyo_encode2+0x1d3/0x350 [ 1157.976460][ T1477] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1157.978504][T31129] should_failslab+0x5/0x20 [ 1157.978522][T31129] __kmalloc+0x59/0x360 [ 1157.986872][T31055] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 1157.990271][T31129] tomoyo_encode2+0x1d3/0x350 [ 1158.006237][T31129] ? dynamic_dname+0xf0/0xf0 [ 1158.010823][T31129] tomoyo_realpath_from_path+0x35e/0x3b0 [ 1158.016451][T31129] tomoyo_path_perm+0xc6/0x330 [ 1158.022235][T31129] tomoyo_path_truncate+0x18/0x20 [ 1158.027278][T31129] security_path_truncate+0x7f/0xd0 [ 1158.033313][T31129] do_sys_ftruncate+0x38d/0x530 [ 1158.038163][T31129] ? fpregs_assert_state_consistent+0x7d/0x90 [ 1158.044238][T31129] __x64_sys_ftruncate+0x2f/0x40 [ 1158.049183][T31129] do_syscall_64+0x39/0x80 [ 1158.053592][T31129] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1158.059493][T31129] RIP: 0033:0x45e1e7 [ 1158.063380][T31129] Code: 24 29 d7 48 69 ff e8 03 00 00 48 89 7c 24 08 48 89 e7 e8 dc e4 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 b8 4d 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1158.083123][T31129] RSP: 002b:00007f1ce1a19a18 EFLAGS: 00000217 ORIG_RAX: 000000000000004d [ 1158.091566][T31129] RAX: ffffffffffffffda RBX: 0000000020000280 RCX: 000000000045e1e7 [ 1158.099532][T31129] RDX: 00007f1ce1a19ad0 RSI: 0000000000000000 RDI: 0000000000000004 [ 1158.107520][T31129] RBP: 0000000000000000 R08: 00007f1ce1a19ac8 R09: 0000000000000000 [ 1158.115542][T31129] R10: 00007f1ce1a19acc R11: 0000000000000217 R12: 0000000000000000 [ 1158.123521][T31129] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000140 [ 1158.131711][ T35] audit: type=1800 audit(1609478543.548:2219): pid=31121 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="loop4" ino=1707 res=0 errno=0 [ 1158.132089][T31129] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1158.163017][T31123] CPU: 1 PID: 31123 Comm: syz-executor.5 Not tainted 5.11.0-rc1-syzkaller #0 [ 1158.171780][T31123] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1158.181817][T31123] Call Trace: [ 1158.185076][T31123] dump_stack+0x116/0x15d [ 1158.189389][T31123] should_fail+0x231/0x240 [ 1158.193783][T31123] ? mempool_alloc_slab+0x16/0x20 [ 1158.198788][T31123] __should_failslab+0x81/0x90 [ 1158.203533][T31123] should_failslab+0x5/0x20 [ 1158.208018][T31123] kmem_cache_alloc+0x36/0x2e0 [ 1158.212758][T31123] ? __rcu_read_unlock+0x51/0x250 [ 1158.217763][T31123] mempool_alloc_slab+0x16/0x20 [ 1158.222599][T31123] ? mempool_free+0x130/0x130 [ 1158.227255][T31123] mempool_alloc+0x64/0x320 [ 1158.231750][T31123] bio_alloc_bioset+0x138/0x3a0 [ 1158.236619][T31123] ? bdev_write_page+0x92/0x160 [ 1158.241506][T31123] __mpage_writepage+0xaab/0x1160 [ 1158.246509][T31123] ? __rcu_read_unlock+0x51/0x250 [ 1158.251582][T31123] ? percpu_counter_add_batch+0xe1/0x100 [ 1158.257195][T31123] write_cache_pages+0x4bc/0x7f0 [ 1158.262118][T31123] ? mpage_writepages+0x120/0x120 [ 1158.267118][T31123] ? build_sched_domains+0xbb1/0x1020 [ 1158.272469][T31123] ? ima_get_action+0x58/0x70 [ 1158.277126][T31123] ? fat_readpage+0x20/0x20 [ 1158.281676][T31123] ? fat_block_truncate_page+0x30/0x30 [ 1158.287116][T31123] mpage_writepages+0x6d/0x120 [ 1158.291856][T31123] ? fat_block_truncate_page+0x30/0x30 [ 1158.297296][T31123] fat_writepages+0x20/0x30 [ 1158.301780][T31123] do_writepages+0x7b/0x150 [ 1158.306327][T31123] ? _raw_spin_unlock+0x22/0x40 [ 1158.311185][T31123] __filemap_fdatawrite_range+0x19d/0x1d0 [ 1158.316899][T31123] filemap_write_and_wait_range+0x8b/0x2a0 [ 1158.322683][T31123] generic_file_read_iter+0x11e/0x3d0 [ 1158.328110][T31123] ? mntput+0x45/0x70 [ 1158.332089][T31123] generic_file_splice_read+0x22a/0x310 [ 1158.337617][T31123] ? splice_shrink_spd+0x60/0x60 [ 1158.342534][T31123] splice_direct_to_actor+0x2aa/0x650 [ 1158.347884][T31123] ? do_splice_direct+0x170/0x170 [ 1158.353015][T31123] do_splice_direct+0xf5/0x170 [ 1158.357759][T31123] do_sendfile+0x5db/0xca0 [ 1158.362154][T31123] __x64_sys_sendfile64+0xf2/0x130 [ 1158.367323][T31123] do_syscall_64+0x39/0x80 [ 1158.371738][T31123] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1158.377611][T31123] RIP: 0033:0x45e219 [ 1158.381484][T31123] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1158.401071][T31123] RSP: 002b:00007f23a310dc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1158.409473][T31123] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 000000000045e219 [ 1158.417538][T31123] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000004 [ 1158.425486][T31123] RBP: 00007f23a310dca0 R08: 0000000000000000 R09: 0000000000000000 [ 1158.433434][T31123] R10: 00008400fffffffa R11: 0000000000000246 R12: 0000000000000002 [ 1158.441382][T31123] R13: 00007ffd24387f1f R14: 00007f23a310e9c0 R15: 000000000119bf8c 05:22:24 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:24 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x24, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1158.552270][T31129] XFS (loop1): Invalid superblock magic number 05:22:24 executing program 1 (fault-call:0 fault-nth:9): syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) [ 1158.685277][T31160] FAULT_INJECTION: forcing a failure. [ 1158.685277][T31160] name failslab, interval 1, probability 0, space 0, times 0 05:22:24 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x25, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1158.763188][T31160] CPU: 1 PID: 31160 Comm: syz-executor.1 Not tainted 5.11.0-rc1-syzkaller #0 [ 1158.771979][T31160] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1158.782026][T31160] Call Trace: [ 1158.785358][T31160] dump_stack+0x116/0x15d [ 1158.789692][T31160] should_fail+0x231/0x240 [ 1158.794107][T31160] ? getname_flags+0x84/0x3d0 [ 1158.798784][T31160] __should_failslab+0x81/0x90 [ 1158.803547][T31160] should_failslab+0x5/0x20 [ 1158.808059][T31160] kmem_cache_alloc+0x36/0x2e0 [ 1158.812826][T31160] ? notify_change+0xa1f/0xa50 [ 1158.817598][T31160] getname_flags+0x84/0x3d0 [ 1158.822186][T31160] ? fput+0x2d/0x130 [ 1158.826077][T31160] getname+0x15/0x20 [ 1158.829969][T31160] do_sys_openat2+0x5b/0x240 [ 1158.834563][T31160] __x64_sys_open+0xe2/0x110 [ 1158.839202][T31160] do_syscall_64+0x39/0x80 [ 1158.843672][T31160] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1158.849561][T31160] RIP: 0033:0x417d11 [ 1158.853512][T31160] Code: 75 14 b8 02 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 04 19 00 00 c3 48 83 ec 08 e8 6a fa ff ff 48 89 04 24 b8 02 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 b3 fa ff ff 48 89 d0 48 83 c4 08 48 3d 01 [ 1158.873117][T31160] RSP: 002b:00007f1ce1a19a10 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 1158.881531][T31160] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000417d11 [ 1158.889505][T31160] RDX: 00007f1ce1a19ad0 RSI: 0000000000000002 RDI: 00007f1ce1a19ad0 [ 1158.897514][T31160] RBP: 0000000000000000 R08: 00007f1ce1a19ac8 R09: 0000000000000000 [ 1158.905886][T31160] R10: 00007f1ce1a19acc R11: 0000000000000293 R12: 0000000000000000 05:22:24 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1158.913851][T31160] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000290 05:22:24 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x169894, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1159.063431][T31174] loop4: detected capacity change from 264192 to 0 [ 1159.128044][T31182] loop5: detected capacity change from 264192 to 0 [ 1159.147963][T31186] binder: 31171:31186 unknown command 0 05:22:24 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x26, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1159.201358][ T35] audit: type=1800 audit(1609478544.658:2220): pid=31174 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="loop4" ino=1710 res=0 errno=0 [ 1159.265250][T31186] binder: 31171:31186 ioctl c0306201 20000200 returned -22 05:22:24 executing program 1 (fault-call:0 fault-nth:10): syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) [ 1159.325913][ T35] audit: type=1800 audit(1609478544.768:2221): pid=31182 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="loop5" ino=1711 res=0 errno=0 [ 1159.437023][T31196] FAULT_INJECTION: forcing a failure. [ 1159.437023][T31196] name fail_usercopy, interval 1, probability 0, space 0, times 0 05:22:25 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x27, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1159.525645][T31196] CPU: 0 PID: 31196 Comm: syz-executor.1 Not tainted 5.11.0-rc1-syzkaller #0 [ 1159.534534][T31196] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1159.544613][T31196] Call Trace: [ 1159.547907][T31196] dump_stack+0x116/0x15d [ 1159.552321][T31196] should_fail+0x231/0x240 [ 1159.556744][T31196] should_fail_usercopy+0x16/0x20 [ 1159.561842][T31196] strncpy_from_user+0x21/0x250 [ 1159.566770][T31196] getname_flags+0xb8/0x3d0 [ 1159.571325][T31196] ? fput+0x2d/0x130 [ 1159.575215][T31196] getname+0x15/0x20 [ 1159.580344][T31196] do_sys_openat2+0x5b/0x240 [ 1159.584943][T31196] __x64_sys_open+0xe2/0x110 [ 1159.589654][T31196] do_syscall_64+0x39/0x80 [ 1159.594097][T31196] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1159.600063][T31196] RIP: 0033:0x417d11 [ 1159.604049][T31196] Code: 75 14 b8 02 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 04 19 00 00 c3 48 83 ec 08 e8 6a fa ff ff 48 89 04 24 b8 02 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 b3 fa ff ff 48 89 d0 48 83 c4 08 48 3d 01 [ 1159.623700][T31196] RSP: 002b:00007f1ce1a19a10 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 1159.632217][T31196] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000417d11 [ 1159.640271][T31196] RDX: 00007f1ce1a19ad0 RSI: 0000000000000002 RDI: 00007f1ce1a19ad0 [ 1159.648239][T31196] RBP: 0000000000000000 R08: 00007f1ce1a19ac8 R09: 0000000000000000 [ 1159.656206][T31196] R10: 00007f1ce1a19acc R11: 0000000000000293 R12: 0000000000000000 [ 1159.664188][T31196] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000290 05:22:25 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:25 executing program 1 (fault-call:0 fault-nth:11): syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) 05:22:25 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x28, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1159.950110][T31208] loop4: detected capacity change from 264192 to 0 [ 1159.982501][T31213] FAULT_INJECTION: forcing a failure. [ 1159.982501][T31213] name failslab, interval 1, probability 0, space 0, times 0 [ 1160.013255][T31216] binder: 31207:31216 unknown command 0 [ 1160.054619][T31216] binder: 31207:31216 ioctl c0306201 20000200 returned -22 [ 1160.068578][ T35] audit: type=1800 audit(1609478545.528:2222): pid=31208 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=16360 res=0 errno=0 05:22:25 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x7ffff000) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:25 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x400000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1160.108430][T31213] CPU: 0 PID: 31213 Comm: syz-executor.1 Not tainted 5.11.0-rc1-syzkaller #0 [ 1160.117208][T31213] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1160.127267][T31213] Call Trace: [ 1160.130547][T31213] dump_stack+0x116/0x15d [ 1160.134890][T31213] should_fail+0x231/0x240 [ 1160.139336][T31213] ? __alloc_file+0x2e/0x1a0 [ 1160.143988][T31213] __should_failslab+0x81/0x90 [ 1160.148756][T31213] should_failslab+0x5/0x20 [ 1160.153341][T31213] kmem_cache_alloc+0x36/0x2e0 [ 1160.158150][T31213] __alloc_file+0x2e/0x1a0 [ 1160.162592][T31213] alloc_empty_file+0xcd/0x1c0 [ 1160.167358][T31213] path_openat+0x6a/0x20a0 [ 1160.171781][T31213] ? __srcu_read_unlock+0x1f/0x40 [ 1160.176830][T31213] ? tomoyo_path_perm+0x2d9/0x330 [ 1160.181855][T31213] ? fsnotify+0x1167/0x1190 [ 1160.186455][T31213] do_filp_open+0xbd/0x1d0 [ 1160.190872][T31213] ? expand_files+0x55/0x500 [ 1160.195540][T31213] ? __virt_addr_valid+0x15a/0x1a0 [ 1160.200756][T31213] ? __check_object_size+0x253/0x310 [ 1160.206091][T31213] ? _raw_spin_unlock+0x22/0x40 [ 1160.210944][T31213] ? alloc_fd+0x35d/0x3b0 [ 1160.215283][T31213] do_sys_openat2+0xa3/0x240 [ 1160.219924][T31213] __x64_sys_open+0xe2/0x110 [ 1160.224517][T31213] do_syscall_64+0x39/0x80 [ 1160.228945][T31213] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1160.234837][T31213] RIP: 0033:0x417d11 [ 1160.238722][T31213] Code: 75 14 b8 02 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 04 19 00 00 c3 48 83 ec 08 e8 6a fa ff ff 48 89 04 24 b8 02 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 b3 fa ff ff 48 89 d0 48 83 c4 08 48 3d 01 [ 1160.258698][T31213] RSP: 002b:00007f1ce1a19a10 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 1160.267144][T31213] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000417d11 [ 1160.275121][T31213] RDX: 00007f1ce1a19ad0 RSI: 0000000000000002 RDI: 00007f1ce1a19ad0 [ 1160.283090][T31213] RBP: 0000000000000000 R08: 00007f1ce1a19ac8 R09: 0000000000000000 [ 1160.291121][T31213] R10: 00007f1ce1a19acc R11: 0000000000000293 R12: 0000000000000000 [ 1160.299166][T31213] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000290 05:22:25 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x48, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1160.504580][T31232] loop5: detected capacity change from 264192 to 0 [ 1160.541574][ T35] audit: type=1800 audit(1609478545.998:2223): pid=31232 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="loop5" ino=1713 res=0 errno=0 [ 1160.594469][T31236] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:26 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x4c, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:26 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1160.892344][T31242] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1160.917522][T31247] loop4: detected capacity change from 264192 to 0 05:22:26 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) [ 1160.990922][T31242] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1160.992244][T31247] binder: 31244:31247 unknown command 0 [ 1161.009746][T31247] binder: 31244:31247 ioctl c0306201 20000200 returned -22 [ 1161.022022][ T35] audit: type=1800 audit(1609478546.478:2224): pid=31247 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="loop4" ino=1715 res=0 errno=0 [ 1161.080761][ T35] audit: type=1800 audit(1609478546.518:2225): pid=31239 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="loop5" ino=1713 res=0 errno=0 05:22:26 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x5c, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:26 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffff9) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1161.253376][T31257] XFS (loop1): Invalid superblock magic number [ 1161.317360][T31264] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:26 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) [ 1161.405708][T31264] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:26 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x60, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:27 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1161.479772][T31279] loop5: detected capacity change from 264192 to 0 [ 1161.561951][ T35] audit: type=1800 audit(1609478547.018:2226): pid=31279 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="loop5" ino=1716 res=0 errno=0 [ 1161.582632][T31282] XFS (loop1): Invalid superblock magic number 05:22:27 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x68, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:27 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) sendfile(r2, 0xffffffffffffffff, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:27 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x3, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) 05:22:27 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x6c, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:27 executing program 2: r0 = creat(&(0x7f0000000140)='./bus\x00', 0x0) fcntl$setstatus(r0, 0x4, 0x46802) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) r1 = socket$inet6_icmp(0xa, 0x2, 0x3a) openat$adsp1(0xffffffffffffff9c, &(0x7f0000000600)='/dev/adsp1\x00', 0x40000, 0x0) getsockopt$inet6_buf(r1, 0x29, 0x22, &(0x7f0000000680)=""/42, &(0x7f00000006c0)=0x2a) syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000002c40)='NLBL_CIPSOv4\x00') r2 = memfd_create(&(0x7f0000000940)='Y\xff\xff\x00\x00\x00\x00\x00K\xb2\x02\x80B\xe9\xe8\xcc\xde\x06\x00l\xa8\x1aJ\xaf\xb2M\xba\xb8_\x05U\xcd<|>\x9e\xec^\x0e\xbe\x18+-\x9b\x893\x02\x00\xa6\x1f+\xb3\xc5\x90z5\xe0\xdfi\xb7\x9f\xb4QUw!j\x91\x0eW\xc9\xc9\x92\x03\t\x00\x00\x00\x00\x00\xb2\x0f\xee\xbe\f8\xcc\x7f\x00\x00\x00Z\x81\x00\x00\x00\x00\x18I\x13\xf1\xa2x\x04\x81R\xd45R\xae\x84_M^dQ:\xbc\xafq\x88\x19nSF|;]\xe1\xb04A\x8c\x8a\x98\xd7|\xdcLF\r\xb1\xfd\xbf\x8b\xc7u\xccP\xdd\x13~\x89\xcf\x85\xca\xa0%\xc6\xc7\x11\x00\x00\x00\x00\x00\x00\x00?M9\\\av~\'\xd9\xb0\xacdya]8\x9d\xb7\v\xf39\xc5{\x9c\x83\xe7\ng\x87\xd930x0) io_submit(r3, 0x1b, &(0x7f0000000540)=[&(0x7f00000000c0)={0xffffff7f, 0x79000000, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x1a31e3fd987a7d49}]) r4 = pidfd_open(0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_WRITE_CHECKPOINT(r4, 0xf507, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000002b40)=[{{&(0x7f0000000180)=@can, 0x80, &(0x7f0000003fc0)=[{&(0x7f0000000780)=""/83, 0x53}, {&(0x7f0000000280)=""/175, 0xaf}, {&(0x7f0000000340)=""/82, 0x52}, {&(0x7f0000000080)=""/40, 0x28}, {&(0x7f0000004080)=""/228, 0xe4}, {&(0x7f0000000700)=""/68, 0x44}, {&(0x7f0000002e00)=""/45, 0x2d}, {&(0x7f0000002e40)=""/117, 0x75}, {&(0x7f0000002ec0)=""/225, 0xe1}, {&(0x7f0000002fc0)=""/4096, 0x1000}], 0xa}, 0x9e}, {{&(0x7f0000000200)=@alg, 0x80, &(0x7f0000001080)=[{&(0x7f0000000800)=""/236, 0xec}, {&(0x7f0000000d00)=""/110, 0x6e}, {&(0x7f0000000d80)=""/99, 0x63}, {&(0x7f0000000e00)=""/153, 0x99}, {&(0x7f00000003c0)=""/61, 0x3d}, {&(0x7f0000000ec0)=""/217, 0xd9}, {&(0x7f0000000fc0)=""/130, 0x82}], 0x7, &(0x7f0000001100)=""/4096, 0x1000}, 0x2}, {{0x0, 0x0, &(0x7f0000002380)=[{&(0x7f0000002100)=""/211, 0xd3}, {&(0x7f0000002200)=""/87, 0x57}, {&(0x7f0000000900)=""/54, 0x36}, {&(0x7f0000002280)=""/192, 0xc0}, {&(0x7f0000002340)=""/59, 0x3b}], 0x5, &(0x7f0000002400)=""/81, 0x51}, 0x10001}, {{&(0x7f0000002480)=@nl=@proc, 0x80, &(0x7f0000002a00)=[{&(0x7f0000002500)=""/162, 0xa2}, {&(0x7f00000025c0)=""/40, 0x28}, {&(0x7f0000002600)=""/252, 0xfc}, {&(0x7f0000002700)=""/249, 0xf9}, {&(0x7f0000002800)=""/160, 0xa0}, {&(0x7f00000028c0)=""/115, 0x73}, {&(0x7f0000002940)=""/147, 0x93}], 0x7, &(0x7f0000002a80)=""/177, 0xb1}, 0x101}], 0x4, 0x40000080, &(0x7f0000000640)) [ 1162.099358][T31321] loop4: detected capacity change from 264192 to 0 [ 1162.124639][T31321] binder: 31319:31321 unknown command 0 05:22:27 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffb) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1162.138725][ T35] audit: type=1800 audit(1609478547.598:2227): pid=31289 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="loop5" ino=1716 res=0 errno=0 [ 1162.171181][T31321] binder: 31319:31321 ioctl c0306201 20000200 returned -22 [ 1162.182605][T31320] XFS (loop1): Invalid superblock magic number 05:22:27 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) sendfile(r2, 0xffffffffffffffff, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:27 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:27 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x74, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1162.405786][T31347] loop5: detected capacity change from 264192 to 0 [ 1162.419678][ T35] audit: type=1800 audit(1609478547.878:2228): pid=31353 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=16356 res=0 errno=0 [ 1162.509693][T31358] loop2: detected capacity change from 264192 to 0 [ 1162.519273][T31366] loop4: detected capacity change from 264192 to 0 [ 1162.545861][T31320] XFS (loop1): Invalid superblock magic number 05:22:28 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1162.582618][T31358] binder: 31356:31358 unknown command 0 [ 1162.588878][T31358] binder: 31356:31358 ioctl c0306201 20000200 returned -22 [ 1162.606745][ T35] audit: type=1800 audit(1609478548.068:2229): pid=31358 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="loop2" ino=1720 res=0 errno=0 [ 1162.610892][T31378] binder: 31361:31378 unknown command 0 [ 1162.658020][T31378] binder: 31361:31378 ioctl c0306201 20000200 returned -22 05:22:28 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) sendfile(r2, 0xffffffffffffffff, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:28 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x4, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) 05:22:28 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x7a, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1162.914566][T31392] loop4: detected capacity change from 264192 to 0 05:22:28 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x300, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:28 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1163.017657][T31392] binder: 31388:31392 unknown command 0 [ 1163.027213][T31392] binder: 31388:31392 ioctl c0306201 20000200 returned -22 [ 1163.048921][T31393] XFS (loop1): Invalid superblock magic number [ 1163.180192][T31414] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1163.206968][T31422] loop4: detected capacity change from 264192 to 0 05:22:28 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:28 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x5, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) [ 1163.257170][ T35] audit: type=1800 audit(1609478548.718:2230): pid=31427 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="loop5" ino=1725 res=0 errno=0 05:22:28 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0xffffffffffffffff) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1163.357771][T31422] binder: 31421:31422 unknown command 0 [ 1163.363716][T31422] binder: 31421:31422 ioctl c0306201 20000200 returned -22 05:22:28 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1163.389816][ T35] audit: type=1800 audit(1609478548.848:2231): pid=31422 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="loop4" ino=1727 res=0 errno=0 [ 1163.549263][T31414] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1163.560940][T31439] loop5: detected capacity change from 264192 to 0 05:22:29 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x3000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:22:29 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x500, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1163.625676][T31438] XFS (loop1): Invalid superblock magic number [ 1163.645751][T31449] loop2: detected capacity change from 264192 to 0 [ 1163.652679][T31439] FAT-fs (loop5): Unrecognized mount option "" or missing value [ 1163.675740][T31461] binder: 31447:31461 unknown command 0 [ 1163.681293][T31461] binder: 31447:31461 ioctl c0306201 20000200 returned -22 05:22:29 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x600, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1163.730675][T31458] loop4: detected capacity change from 264192 to 0 [ 1163.767049][T31466] binder: 31452:31466 unknown command 0 [ 1163.780502][T31466] binder: 31452:31466 ioctl c0306201 20000200 returned -22 05:22:29 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:29 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) setreuid(0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000380)='ext2\x00', &(0x7f0000000400)='./file1\x00', 0x5, 0x1, &(0x7f0000000480)=[{&(0x7f00000006c0)="eca9148328d711d5cbbf7a83dbc3250e05d4363c55c71ab23171af4a61a7adb80b49cb6972a0527473a9d42ce9f3953a6344c0a4f517c6066a5049632c303269017ae3751bab735d85623b6fe8208f92e8c25fa7613c55d060c82a1fa326edabf77a07e3fe9eac5d2eddd4b4068ffa455ea835ad0991bf78d7a980e9519c9dad9dde7c2564702c4317587ad065c1b06513035ac0e51fb82ae83d5b120c7bc68f746d0204ab5f53ee00938219ba28cafa8b6dcde145e76008a74bc0f46682e30fdbc07cf616aa2f9f609448ae8f675cd6e80babd12b8b0e0c6707987e94f1c1d6ee76c23e1148c0ffc2bb9ecfaa3581ce", 0xf0, 0x1}], 0x840002, &(0x7f00000005c0)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x4}}, {@noquota='noquota'}, {@mblk_io_submit='mblk_io_submit'}, {@nogrpid='nogrpid'}, {@prjquota='prjquota'}], [{@euid_lt={'euid<'}}, {@pcr={'pcr', 0x3d, 0x3a}}, {@appraise='appraise'}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="0035d9005208000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r3 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r4 = dup2(r3, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r4, 0x84, 0x1d, &(0x7f0000000100)={0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}, &(0x7f0000000180)=0x18) [ 1163.821299][T31438] XFS (loop1): Invalid superblock magic number [ 1163.905765][T31482] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:29 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x6, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) [ 1163.970571][T31489] loop5: detected capacity change from 264192 to 0 [ 1163.995876][T31482] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:29 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x700, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1164.090717][T31489] binder: 31484:31489 unknown command 0 [ 1164.103868][T31499] loop4: detected capacity change from 264192 to 0 [ 1164.112111][T31489] binder: 31484:31489 ioctl c0306201 20000200 returned -22 [ 1164.194061][T31502] XFS (loop1): Invalid superblock magic number [ 1164.203198][T31504] binder: 31497:31504 unknown command 0 [ 1164.233979][T31504] binder: 31497:31504 ioctl c0306201 20000200 returned -22 05:22:29 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1164.303171][T31515] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1164.356946][T31502] XFS (loop1): Invalid superblock magic number 05:22:29 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:29 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x7, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) [ 1164.487805][T31515] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:30 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x900, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1164.668493][T31538] binder: 31531:31538 unknown command 0 [ 1164.675331][T31532] loop4: detected capacity change from 264192 to 0 [ 1164.715277][T31538] binder: 31531:31538 ioctl c0306201 20000200 returned -22 [ 1164.748725][T31549] binder: 31534:31549 unknown command 0 [ 1164.754489][T31537] loop2: detected capacity change from 264192 to 0 05:22:30 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x4000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1164.754690][T31549] binder: 31534:31549 ioctl c0306201 20000200 returned -22 05:22:30 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x4, &(0x7f0000000100)=[{0x4, 0x18, 0xc0, 0xd4}, {0x0, 0x0, 0x4, 0x7}, {0x1f, 0x4, 0x1, 0x6}, {0x203, 0x2, 0x2, 0x10002}]}) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1164.806260][T31551] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1164.878684][T31543] XFS (loop1): Invalid superblock magic number [ 1164.920937][T31551] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:30 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0xa00, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:30 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x8, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) [ 1165.100647][T31574] loop5: detected capacity change from 264192 to 0 [ 1165.132176][T31577] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1165.136553][ T35] kauditd_printk_skb: 9 callbacks suppressed [ 1165.136563][ T35] audit: type=1800 audit(1609478550.598:2241): pid=31574 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="loop5" ino=1729 res=0 errno=0 [ 1165.216089][T31577] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1165.235839][T31582] XFS (loop1): Invalid superblock magic number 05:22:30 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0xb00, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1165.329166][T31582] XFS (loop1): Invalid superblock magic number 05:22:30 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x9, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) [ 1165.400135][T31605] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:30 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:30 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0xc00, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:31 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) dup2(0xffffffffffffffff, 0xffffffffffffffff) [ 1165.531494][T31611] XFS (loop1): Invalid superblock magic number [ 1165.707722][ T35] audit: type=1800 audit(1609478551.168:2242): pid=31574 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="loop5" ino=1729 res=0 errno=0 [ 1165.728421][T31632] loop4: detected capacity change from 264192 to 0 05:22:31 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket$netlink(0x10, 0x3, 0x0) r5 = socket(0x10, 0x2, 0x0) sendmsg$NBD_CMD_DISCONNECT(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r6, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="38000000240007050000004007a2a30005000000", @ANYRES32=r6, @ANYBLOB="00000000ffffffff00000000090001006866736300000000080002"], 0x38}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000005c0)=@newtfilter={0x5c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {}, {0xfff1}}, [@filter_kind_options=@f_basic={{0xa, 0x1, 'basic\x00'}, {0x2c, 0x2, [@TCA_BASIC_EMATCHES={0x28, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x1}}, @TCA_EMATCH_TREE_LIST={0x1c, 0x2, 0x0, 0x1, [@TCF_EM_META={0x18, 0x1, 0x0, 0x0, {{}, [@TCA_EM_META_HDR={0xc, 0x1, {{}, {0x5}}}]}}]}]}]}}]}, 0x5c}}, 0x0) lseek(r0, 0x0, 0x2) open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) 05:22:31 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x5000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1165.757941][T31611] XFS (loop1): Invalid superblock magic number [ 1165.760109][T31636] loop2: detected capacity change from 264192 to 0 [ 1165.795160][T31631] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1165.840411][T31632] binder: 31626:31632 unknown command 0 [ 1165.856653][T31636] binder: 31633:31636 unknown command 0 [ 1165.864900][T31649] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.5'. 05:22:31 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0xa, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) 05:22:31 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0xd00, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1165.894016][T31632] binder: 31626:31632 ioctl c0306201 20000200 returned -22 [ 1165.896057][ T35] audit: type=1800 audit(1609478551.348:2243): pid=31649 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=16370 res=0 errno=0 [ 1165.906519][T31636] binder: 31633:31636 ioctl c0306201 20000200 returned -22 [ 1165.971007][ T35] audit: type=1800 audit(1609478551.398:2244): pid=31647 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="loop2" ino=1731 res=0 errno=0 [ 1166.038224][T31661] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.5'. [ 1166.052061][T31649] loop5: detected capacity change from 264192 to 0 [ 1166.078067][ T35] audit: type=1800 audit(1609478551.408:2245): pid=31653 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="loop4" ino=1732 res=0 errno=0 [ 1166.122663][ T35] audit: type=1800 audit(1609478551.538:2246): pid=31662 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=16370 res=0 errno=0 05:22:31 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000100)='/dev/hwrng\x00', 0x410002, 0x0) ioctl$TUNSETPERSIST(r1, 0x400454cb, 0x1) r2 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00008000000007ffff1000d880228c00d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38", @ANYRES64=r2, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0x5, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff, r1}, 0x78) lseek(r0, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1166.215423][T31669] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1166.267184][ T35] audit: type=1800 audit(1609478551.728:2247): pid=31678 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=16370 res=0 errno=0 [ 1166.329861][T31670] XFS (loop1): Invalid superblock magic number 05:22:31 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0xe00, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1166.515001][T31693] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:32 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) dup2(0xffffffffffffffff, 0xffffffffffffffff) 05:22:32 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1166.568236][T31670] XFS (loop1): Invalid superblock magic number [ 1166.593033][T31693] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:32 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0xb, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) 05:22:32 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0xf00, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:32 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x6000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1166.904203][T31712] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1166.909687][T31715] loop4: detected capacity change from 264192 to 0 [ 1166.930957][T31711] XFS (loop1): Invalid superblock magic number [ 1166.965290][T31726] loop2: detected capacity change from 264192 to 0 [ 1166.995805][T31726] binder: 31720:31726 unknown command 0 [ 1167.000725][T31715] binder: 31713:31715 unknown command 0 [ 1167.001418][T31726] binder: 31720:31726 ioctl c0306201 20000200 returned -22 05:22:32 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x1020, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1167.010557][T31715] binder: 31713:31715 ioctl c0306201 20000200 returned -22 [ 1167.042560][ T35] audit: type=1800 audit(1609478552.499:2248): pid=31715 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="loop4" ino=1734 res=0 errno=0 [ 1167.076412][ T35] audit: type=1800 audit(1609478552.539:2249): pid=31726 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="loop2" ino=1735 res=0 errno=0 [ 1167.139391][T31682] loop5: detected capacity change from 264192 to 0 05:22:32 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0xc, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) [ 1167.181792][T31682] FAT-fs (loop5): Unrecognized mount option "" or missing value 05:22:32 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x1100, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1167.279711][ T35] audit: type=1800 audit(1609478552.739:2250): pid=31757 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=16370 res=0 errno=0 [ 1167.354095][T31760] XFS (loop1): Invalid superblock magic number 05:22:32 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dlm-monitor\x00', 0x511800, 0x0) sendmsg$NLBL_UNLABEL_C_LIST(r2, &(0x7f0000000400)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000380)={&(0x7f0000000480)={0x74, 0x0, 0x0, 0x70bd2c, 0x25dfdbfd, {}, [@NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @dev={0xac, 0x14, 0x14, 0x13}}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @empty}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @mcast2}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @remote}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @private0}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @dev={0xfe, 0x80, [], 0x1a}}]}, 0x74}, 0x1, 0x0, 0x0, 0x80}, 0x2000c001) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) r4 = syz_genetlink_get_family_id$tipc(&(0x7f00000005c0)='TIPC\x00') sendmsg$TIPC_CMD_GET_NODES(r2, &(0x7f00000006c0)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000640)={&(0x7f0000000600)={0x1c, r4, 0x10, 0x70bd25, 0x25dfdbfe, {}, ["", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4008000}, 0x84) sendfile(r0, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:32 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0xd, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) 05:22:33 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x1200, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:33 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) dup2(0xffffffffffffffff, 0xffffffffffffffff) 05:22:33 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1167.599956][T31782] loop5: detected capacity change from 264192 to 0 [ 1167.629237][T31780] XFS (loop1): Invalid superblock magic number 05:22:33 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x1300, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:33 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x7000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1167.862129][T31780] XFS (loop1): Invalid superblock magic number [ 1167.868535][T31811] loop2: detected capacity change from 264192 to 0 [ 1167.897392][T31812] loop4: detected capacity change from 264192 to 0 05:22:33 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0xe, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) [ 1167.957793][T31821] binder: 31807:31821 unknown command 0 05:22:33 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) sendmsg$NL80211_CMD_DEL_MPATH(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000380)={&(0x7f0000000180)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="30f92abd7000fddbdf251800000008000300", @ANYRES32=0x0, @ANYBLOB="86b4725afbe162258200"], 0x34}, 0x1, 0x0, 0x0, 0x4044008}, 0x4000) r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x0, 0x0) ioctl$RTC_UIE_ON(r2, 0x7003) ioctl$RTC_SET_TIME(r2, 0x4024700a, &(0x7f0000000040)={0x1b, 0x0, 0x0, 0x9, 0x0, 0x7f}) fadvise64(r2, 0x5, 0xe2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYRES64=r2, @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRES32=r0, @ANYRES16], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41100, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x10, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff, r1}, 0x78) lseek(r0, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1168.008708][T31822] binder: 31808:31822 unknown command 0 [ 1168.014306][T31822] binder: 31808:31822 ioctl c0306201 20000200 returned -22 [ 1168.024927][T31821] binder: 31807:31821 ioctl c0306201 20000200 returned -22 05:22:33 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x1400, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1168.290526][T31836] XFS (loop1): Invalid superblock magic number [ 1168.369824][T31849] loop5: detected capacity change from 264192 to 0 [ 1168.457951][T31836] XFS (loop1): Invalid superblock magic number 05:22:34 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x1500, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:34 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0xf, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) 05:22:34 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:34 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:34 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x1600, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1168.791912][T31875] XFS (loop1): Invalid superblock magic number [ 1168.891290][T31888] loop4: detected capacity change from 264192 to 0 [ 1168.943676][T31900] binder: 31884:31900 unknown command 0 [ 1168.978969][T31900] binder: 31884:31900 ioctl c0306201 20000200 returned -22 05:22:34 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x8000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:22:34 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x1700, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1168.993970][T31912] loop2: detected capacity change from 264192 to 0 [ 1169.000527][T31875] XFS (loop1): Invalid superblock magic number [ 1169.011749][T31912] binder: 31907:31912 unknown command 0 [ 1169.018891][T31912] binder: 31907:31912 ioctl c0306201 20000200 returned -22 05:22:34 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x10, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) 05:22:34 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000180)='./file1\x00', 0x12) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f00000007c0)=ANY=[@ANYBLOB="18006a00feff0000002838f4ff0600800018195a2d930e510a269671dc24cd117e78fe7281db450d0da22d", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="0c00001a5990ffb037be0781aff182693327005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x5, 0x6}, 0x8, 0x10, &(0x7f0000000240)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) r3 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) r4 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r5 = dup2(r4, r3) ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) ioctl$sock_x25_SIOCADDRT(r5, 0x890b, &(0x7f00000006c0)={@null=' \x00', 0x1, 'bridge0\x00'}) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:34 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x1800, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:34 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1169.429698][T31935] XFS (loop1): Invalid superblock magic number 05:22:35 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1169.678100][T31935] XFS (loop1): Invalid superblock magic number [ 1169.785700][T31960] loop5: detected capacity change from 264192 to 0 [ 1169.794129][T31963] loop2: detected capacity change from 264192 to 0 [ 1169.814012][T31969] binder: 31951:31969 unknown command 0 [ 1169.826684][T31969] binder: 31951:31969 ioctl c0306201 20000200 returned -22 [ 1169.836925][T31972] binder: 31961:31972 unknown command 0 [ 1169.842558][T31972] binder: 31961:31972 ioctl c0306201 20000200 returned -22 [ 1169.850402][T31969] binder: 31951:31969 ioctl 890b 200006c0 returned -22 05:22:35 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x11, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) [ 1169.889666][T31973] loop4: detected capacity change from 264192 to 0 [ 1169.938956][T31980] binder: 31971:31980 unknown command 0 [ 1169.945295][T31980] binder: 31971:31980 ioctl c0306201 20000200 returned -22 05:22:35 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x1900, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:35 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x0, 0x0) ioctl$RTC_UIE_ON(r2, 0x7003) ioctl$RTC_SET_TIME(r2, 0x4024700a, &(0x7f0000000040)={0x1b, 0x0, 0x0, 0x9, 0x0, 0x7f}) fadvise64(r2, 0x5, 0xe2, 0x0) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:35 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x9000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1170.196201][T31988] XFS (loop1): Invalid superblock magic number [ 1170.243789][T32002] loop5: detected capacity change from 264192 to 0 [ 1170.358370][ T35] kauditd_printk_skb: 10 callbacks suppressed [ 1170.358382][ T35] audit: type=1800 audit(1609478555.819:2261): pid=32002 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="loop5" ino=1742 res=0 errno=0 05:22:35 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x1a00, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:35 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f00000006c0)=ANY=[@ANYBLOB="18000000feff0000002838f4ff06008000181908e0ce797e679ea169ecdf7dfd45aea4b98c860180a85570b39ee0532b31aeeb178e138339325de88b7ce36959af259d39fa9ce99b01abff5c2b79456609576e7fa9b8dcc571dd957831385433a014257bfefefdf06417af12612989f9ce1ebe650769447dec500cab69cb5db08363e6a994044f1eb27cf720d4f2c5186a65cf4b3ff339", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:35 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x12, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) [ 1170.483439][ T35] audit: type=1800 audit(1609478555.899:2262): pid=32018 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="loop5" ino=1742 res=0 errno=0 05:22:36 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:36 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1170.725355][T32035] loop5: detected capacity change from 264192 to 0 [ 1170.769671][T32037] loop2: detected capacity change from 264192 to 0 [ 1170.798531][ T35] audit: type=1800 audit(1609478556.259:2263): pid=32044 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=16353 res=0 errno=0 [ 1170.805591][T32050] binder: 32033:32050 unknown command 0 [ 1170.828882][T32031] XFS (loop1): Invalid superblock magic number [ 1170.861750][T32050] binder: 32033:32050 ioctl c0306201 20000200 returned -22 [ 1170.876482][ T35] audit: type=1800 audit(1609478556.339:2264): pid=32056 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=16384 res=0 errno=0 05:22:36 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x1b00, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1170.966031][T32063] binder: 32055:32063 unknown command 0 [ 1170.974671][T32057] loop4: detected capacity change from 264192 to 0 [ 1170.978306][T32063] binder: 32055:32063 ioctl c0306201 20000200 returned -22 [ 1171.009038][ T35] audit: type=1800 audit(1609478556.469:2265): pid=32063 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=16370 res=0 errno=0 [ 1171.033698][T32057] FAT-fs (loop4): Unrecognized mount option "" or missing value 05:22:36 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x13, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) 05:22:36 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0xa000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:22:36 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x1c00, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1171.363295][T32085] XFS (loop1): Invalid superblock magic number 05:22:37 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x14, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) 05:22:37 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) sendfile(r2, 0xffffffffffffffff, 0x0, 0x8400fffffffa) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:37 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x1d00, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1171.569717][ T35] audit: type=1800 audit(1609478557.029:2266): pid=32110 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=16353 res=0 errno=0 05:22:37 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) ioctl$EVIOCGKEY(0xffffffffffffffff, 0x80404518, &(0x7f0000000100)=""/51) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) clock_getres(0x7, &(0x7f0000000200)) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x200401, 0x0) r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x0, 0x0) ioctl$RTC_UIE_ON(r2, 0x7003) ioctl$RTC_SET_TIME(0xffffffffffffffff, 0x4024700a, &(0x7f0000000040)={0x1c, 0x0, 0x8, 0x9, 0x7, 0x7f, 0x4, 0xfffffffd}) fadvise64(r2, 0x5, 0xe2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32, @ANYRES64=r0, @ANYRES32=r1, @ANYRESHEX=r2], &(0x7f0000000140)='GPL\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x2000001, 0xfffffffe}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r3 = open(&(0x7f0000000180)='./file1\x00', 0x40903, 0x99) sendfile(r0, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:37 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1171.840565][T32123] loop4: detected capacity change from 264192 to 0 [ 1171.861235][T32123] binder: 32119:32123 unknown command 0 [ 1171.868657][T32123] binder: 32119:32123 ioctl c0306201 20000200 returned -22 [ 1171.894126][ T35] audit: type=1800 audit(1609478557.349:2267): pid=32123 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="loop4" ino=1744 res=0 errno=0 [ 1171.919323][T32116] XFS (loop1): Invalid superblock magic number [ 1171.931502][T32135] loop2: detected capacity change from 264192 to 0 [ 1171.950004][T32137] loop5: detected capacity change from 264192 to 0 [ 1171.997593][T32147] binder: 32128:32147 unknown command 0 [ 1172.018441][T32147] binder: 32128:32147 ioctl c0306201 20000200 returned -22 05:22:37 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x1e00, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:37 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:37 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) sendfile(r2, 0xffffffffffffffff, 0x0, 0x8400fffffffa) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1172.162902][T32116] XFS (loop1): Invalid superblock magic number 05:22:37 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) r3 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000180)={0x44, 0x0, &(0x7f0000000180), 0xfffffffffffffe32, 0x0, 0x0}) r4 = dup2(r3, r2) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) ioctl$EVIOCGABS0(r4, 0x80184540, &(0x7f00000006c0)=""/211) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB='\x00\x00\b\x00'], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r5 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r5, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:37 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0xb000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:22:37 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x15, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) 05:22:37 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x1f00, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1172.475033][T32180] loop2: detected capacity change from 264192 to 0 [ 1172.496882][T32182] loop5: detected capacity change from 264192 to 0 [ 1172.514489][T32179] loop4: detected capacity change from 264192 to 0 [ 1172.529701][T32180] binder: 32172:32180 unknown command 0 [ 1172.555436][T32182] binder: 32170:32182 unknown command 68 [ 1172.595618][T32193] binder: 32175:32193 unknown command 0 [ 1172.601447][T32180] binder: 32172:32180 ioctl c0306201 20000200 returned -22 [ 1172.604311][T32197] binder: 32170:32197 ioctl 80184540 200006c0 returned -22 [ 1172.629227][T32181] XFS (loop1): Invalid superblock magic number [ 1172.635721][ T35] audit: type=1800 audit(1609478558.089:2268): pid=32197 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="loop5" ino=1746 res=0 errno=0 [ 1172.685262][T32182] binder: 32170:32182 ioctl c0306201 20000180 returned -22 05:22:38 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) sendfile(r2, 0xffffffffffffffff, 0x0, 0x8400fffffffa) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1172.702090][T32193] binder: 32175:32193 ioctl c0306201 20000200 returned -22 [ 1172.725283][ T35] audit: type=1800 audit(1609478558.149:2269): pid=32179 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=16375 res=0 errno=0 [ 1172.803220][T32181] XFS (loop1): Invalid superblock magic number 05:22:38 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x16, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) 05:22:38 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:38 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x1f99, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1172.936914][T32221] loop2: detected capacity change from 264192 to 0 [ 1172.949485][T32221] binder: 32219:32221 unknown command 0 [ 1172.955320][T32221] binder: 32219:32221 ioctl c0306201 20000200 returned -22 05:22:38 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) setsockopt$inet_tcp_buf(r2, 0x6, 0xd, &(0x7f0000000480)="70aa0e6d2300a5ca6734e7a22f4d410e12f6e711ef7d4c8ab77090d1f8aca2394f0829d2802bb7f8d212cf3775e082361c6ac1e2637c2bd672420dfc9ec4dd4d796a69781a9d5cd6517ba734028f20ff49e7d4e43f575ef458ad330fa894", 0x5e) [ 1173.094830][T32182] binder: 32170:32182 unknown command 68 [ 1173.100483][T32182] binder: 32170:32182 ioctl c0306201 20000180 returned -22 [ 1173.108358][T32202] binder: 32170:32202 ioctl 80184540 200006c0 returned -22 [ 1173.123222][ T35] audit: type=1800 audit(1609478558.579:2270): pid=32202 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="loop5" ino=1746 res=0 errno=0 [ 1173.160445][T32227] XFS (loop1): Invalid superblock magic number [ 1173.187600][T32240] loop2: detected capacity change from 264192 to 0 05:22:38 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1173.265914][T32256] binder: 32229:32256 unknown command 0 [ 1173.271577][T32256] binder: 32229:32256 ioctl c0306201 20000200 returned -22 [ 1173.285240][T32227] XFS (loop1): Invalid superblock magic number 05:22:38 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:38 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0xc000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:22:38 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x2000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1173.359372][T32254] loop5: detected capacity change from 264192 to 0 05:22:38 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x17, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) [ 1173.474550][T32254] FAT-fs (loop5): Unrecognized mount option "" or missing value [ 1173.626951][T32276] loop2: detected capacity change from 264192 to 0 [ 1173.672430][T32289] binder: 32274:32289 unknown command 0 [ 1173.679263][T32284] loop4: detected capacity change from 264192 to 0 [ 1173.690644][T32289] binder: 32274:32289 ioctl c0306201 20000200 returned -22 [ 1173.695781][T32284] binder: 32280:32284 unknown command 0 [ 1173.732256][T32284] binder: 32280:32284 ioctl c0306201 20000200 returned -22 05:22:39 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:39 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1173.778410][T32283] XFS (loop1): Invalid superblock magic number 05:22:39 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x2010, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1173.959465][T32310] loop4: detected capacity change from 264192 to 0 [ 1173.973319][T32317] loop2: detected capacity change from 264192 to 0 [ 1173.981449][T32283] XFS (loop1): Invalid superblock magic number 05:22:39 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x18, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) [ 1174.034859][T32329] binder: 32307:32329 unknown command 0 [ 1174.049445][T32331] binder: 32315:32331 unknown command 0 [ 1174.058709][T32329] binder: 32307:32329 ioctl c0306201 20000200 returned -22 05:22:39 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x2100, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:39 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1174.107268][T32331] binder: 32315:32331 ioctl c0306201 20000200 returned -22 [ 1174.114925][T32254] loop5: detected capacity change from 264192 to 0 [ 1174.210100][T32254] FAT-fs (loop5): Unrecognized mount option "" or missing value [ 1174.382018][T32355] binder: 32345:32355 unknown command 0 [ 1174.396015][T32355] binder: 32345:32355 ioctl c0306201 20000200 returned -22 05:22:39 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r3 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000100)='/dev/bsg\x00', 0x410200, 0x0) ioctl$IOCTL_VMCI_QUEUEPAIR_SETVA(r3, 0x7a4, &(0x7f0000000180)={{@hyper}, 0x4, 0x4, 0x70ec, 0x2}) 05:22:39 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:39 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0xd000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1174.431309][T32348] loop4: detected capacity change from 264192 to 0 [ 1174.460049][T32348] FAT-fs (loop4): Unrecognized mount option "" or missing value [ 1174.484394][T32347] XFS (loop1): Invalid superblock magic number 05:22:40 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x2200, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1174.591428][T32372] binder: 32366:32372 unknown command 0 [ 1174.597121][T32372] binder: 32366:32372 ioctl c0306201 20000200 returned -22 [ 1174.633732][T32367] loop2: detected capacity change from 264192 to 0 05:22:40 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1174.737593][T32380] loop5: detected capacity change from 264192 to 0 [ 1174.809216][T32347] XFS (loop1): Invalid superblock magic number [ 1174.824544][T32389] loop4: detected capacity change from 264192 to 0 [ 1174.857076][T32402] binder: 32385:32402 unknown command 0 [ 1174.862818][T32402] binder: 32385:32402 ioctl c0306201 20000200 returned -22 05:22:40 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x19, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) 05:22:40 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x2300, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:40 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x2400, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:40 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1175.319389][T32412] XFS (loop1): Invalid superblock magic number 05:22:41 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x1a, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) 05:22:41 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x2500, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:41 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1175.579917][ T35] kauditd_printk_skb: 11 callbacks suppressed [ 1175.579928][ T35] audit: type=1800 audit(1609478561.039:2282): pid=32436 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="loop5" ino=1753 res=0 errno=0 05:22:41 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) r2 = syz_open_dev$loop(&(0x7f0000000100)='/dev/loop#\x00', 0x100000001, 0x10000) ioctl$LOOP_CHANGE_FD(r2, 0x4c06, r1) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) ioctl$KVM_SET_PIT(r3, 0x8048ae66, &(0x7f0000000480)={[{0x4, 0x5de8, 0x2, 0x9, 0x7f, 0x8, 0x15, 0x5, 0x6, 0x6, 0x73, 0xf, 0x8}, {0x5a0, 0x714, 0x1f, 0x6, 0x0, 0x5, 0x7f, 0x8, 0x1f, 0x5, 0x20, 0x9e, 0x9}, {0x5, 0x8, 0x0, 0x9, 0x4, 0x3, 0x40, 0x7f, 0x40, 0x1, 0x8, 0x3f, 0x1ff}], 0x100}) lseek(r0, 0x0, 0x2) r4 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r4, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:41 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0xe000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1175.706139][T32440] XFS (loop1): Invalid superblock magic number [ 1175.768501][T32460] binder: 32443:32460 unknown command 0 [ 1175.774119][T32460] binder: 32443:32460 ioctl c0306201 20000200 returned -22 [ 1175.791289][ T35] audit: type=1800 audit(1609478561.249:2283): pid=32460 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=16373 res=0 errno=0 [ 1175.812165][T32446] loop2: detected capacity change from 264192 to 0 [ 1175.843269][T32464] binder: 32457:32464 unknown command 0 [ 1175.856676][T32464] binder: 32457:32464 ioctl c0306201 20000200 returned -22 [ 1175.893376][ T35] audit: type=1800 audit(1609478561.350:2284): pid=32464 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=16379 res=0 errno=0 [ 1175.901122][T32458] loop4: detected capacity change from 264192 to 0 05:22:41 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x1b, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) 05:22:41 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x2600, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1176.014779][T32458] FAT-fs (loop4): Unrecognized mount option "" or missing value [ 1176.088317][T32480] loop5: detected capacity change from 264192 to 0 [ 1176.119399][ T35] audit: type=1800 audit(1609478561.580:2285): pid=32480 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="loop5" ino=1755 res=0 errno=0 [ 1176.202302][T32481] XFS (loop1): Invalid superblock magic number 05:22:41 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x2700, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:41 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x2800, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:41 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x1c, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) 05:22:42 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:42 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:42 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x3f00, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1176.702340][ T35] audit: type=1800 audit(1609478562.160:2286): pid=32524 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="loop5" ino=1755 res=0 errno=0 05:22:42 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./bus\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="040006000200027400f801", 0xb}], 0xc, &(0x7f0000000180)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[], &(0x7f0000000140)='syzkaller\x00', 0xfffff0d9, 0x0, 0x0, 0x41000, 0x0, [], 0x0, 0x3, 0xffffffffffffffff, 0x8, &(0x7f0000000180)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r1, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r2 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) r3 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r4 = dup2(r3, r2) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f00000006c0)={{0xd000, 0x13000, 0x10, 0x7, 0x1, 0x2, 0x8, 0x7f, 0x8, 0x7, 0x1f, 0xff}, {0x4000, 0x1, 0x4, 0x1f, 0x3d, 0x0, 0x5, 0x4, 0x1, 0x81, 0x1, 0x2}, {0x6000, 0xd000, 0xf, 0x7, 0x8, 0x1, 0x0, 0x9, 0x2, 0xf0, 0x9, 0x38}, {0x3000, 0x1d000, 0xf, 0x0, 0x2c, 0x20, 0x30, 0x3, 0x1, 0xda, 0x2, 0x8}, {0x1, 0x0, 0x4, 0x7f, 0x8, 0xba, 0xed, 0x40, 0xfc, 0x80, 0x2, 0x40}, {0x2000, 0x10000, 0x9, 0x8d, 0x7, 0xff, 0x9, 0x1f, 0x8, 0x9, 0x1, 0x3}, {0x4000, 0x2000, 0xc, 0x5, 0x4, 0x1, 0x6, 0x7, 0xd7, 0x3f, 0x80, 0x44}, {0x10001, 0x1, 0x9, 0x9, 0x81, 0x9, 0x9, 0x7, 0x81, 0x9, 0x9, 0x5}, {0x0, 0x3}, {0x1}, 0x60000015, 0x0, 0x6000, 0x100000, 0x6, 0x400, 0x6000, [0x6, 0x80000000, 0x5, 0x10001]}) [ 1176.764145][T32525] XFS (loop1): Invalid superblock magic number 05:22:42 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0xf000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1176.810569][T32530] loop4: detected capacity change from 264192 to 0 [ 1176.831418][T32542] binder: 32523:32542 unknown command 0 [ 1176.837186][T32542] binder: 32523:32542 ioctl c0306201 20000200 returned -22 [ 1176.848919][ T35] audit: type=1800 audit(1609478562.310:2287): pid=32542 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=15954 res=0 errno=0 [ 1176.857924][T32537] loop2: detected capacity change from 264192 to 0 [ 1176.927520][T32537] binder: 32536:32537 unknown command 0 [ 1176.949663][T32537] binder: 32536:32537 ioctl c0306201 20000200 returned -22 [ 1176.972172][ T35] audit: type=1800 audit(1609478562.430:2288): pid=32537 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="loop2" ino=1757 res=0 errno=0 [ 1176.993684][T32525] XFS (loop1): Invalid superblock magic number 05:22:42 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x1d, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) 05:22:42 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x4000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1177.124128][T32567] loop5: detected capacity change from 264192 to 0 [ 1177.205980][T32567] FAT-fs (loop5): bogus number of reserved sectors [ 1177.249950][T32567] FAT-fs (loop5): Can't find a valid FAT filesystem 05:22:42 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x1e, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) [ 1177.297341][T32576] XFS (loop1): Invalid superblock magic number [ 1177.341960][T32573] binder: 32566:32573 unknown command 0 [ 1177.392678][T32582] binder: 32566:32582 ioctl 4138ae84 200006c0 returned -22 [ 1177.427884][T32573] binder: 32566:32573 ioctl c0306201 20000200 returned -22 [ 1177.461494][T32586] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1177.490533][T32567] loop5: detected capacity change from 264192 to 0 [ 1177.503614][T32593] XFS (loop1): Invalid superblock magic number [ 1177.564029][T32567] FAT-fs (loop5): Unrecognized mount option "" or missing value [ 1177.575562][T32586] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:43 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) syslog(0x0, 0x0, 0x0) ftruncate(0xffffffffffffffff, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(0xffffffffffffffff, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(0xffffffffffffffff, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:43 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:43 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x21, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) 05:22:43 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x4800, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:43 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xa, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ff0a110000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1177.880103][T32618] loop4: detected capacity change from 264192 to 0 [ 1177.895057][T32613] loop5: detected capacity change from 264192 to 0 [ 1177.912683][T32618] binder: 32617:32618 unknown command 0 [ 1177.918552][T32618] binder: 32617:32618 ioctl c0306201 20000200 returned -22 05:22:43 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x10000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1177.928020][ T35] audit: type=1800 audit(1609478563.390:2289): pid=32626 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=16049 res=0 errno=0 [ 1177.957765][T32625] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1177.969094][T32631] loop2: detected capacity change from 264192 to 0 05:22:43 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) syslog(0x0, 0x0, 0x0) ftruncate(0xffffffffffffffff, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(0xffffffffffffffff, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(0xffffffffffffffff, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1177.987042][T32614] XFS (loop1): Invalid superblock magic number [ 1178.010505][T32642] binder: 32622:32642 unknown command 0 [ 1178.016931][T32642] binder: 32622:32642 ioctl c0306201 20000200 returned -22 [ 1178.028729][ T35] audit: type=1800 audit(1609478563.490:2290): pid=32642 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="loop2" ino=1759 res=0 errno=0 [ 1178.205682][T32654] loop4: detected capacity change from 264192 to 0 [ 1178.228129][T32625] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:43 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x22, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) [ 1178.316019][T32658] binder: 32652:32658 unknown command 0 05:22:43 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x4c00, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1178.358130][T32658] binder: 32652:32658 ioctl c0306201 20000200 returned -22 05:22:44 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) syslog(0x0, 0x0, 0x0) ftruncate(0xffffffffffffffff, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(0xffffffffffffffff, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(0xffffffffffffffff, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1178.601893][T32666] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1178.638854][T32662] XFS (loop1): Invalid superblock magic number 05:22:44 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1178.707841][T32679] binder: 32672:32679 unknown command 0 [ 1178.720003][T32679] binder: 32672:32679 ioctl c0306201 20000200 returned -22 [ 1178.743122][ T35] audit: type=1800 audit(1609478564.200:2291): pid=32680 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="loop5" ino=1761 res=0 errno=0 [ 1178.743621][T32675] loop4: detected capacity change from 264192 to 0 [ 1178.871186][T32675] FAT-fs (loop4): Unrecognized mount option "" or missing value [ 1178.922584][T32666] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:44 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x11000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:22:44 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x5c00, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1178.973231][T32662] XFS (loop1): Invalid superblock magic number 05:22:44 executing program 5: r0 = syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000004c0)={0xffffffffffffffff, 0xc0, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)=0x80000000, 0x0, 0x0, 0x0, &(0x7f0000000180)={0x4, 0x4}, 0x0, 0x0, &(0x7f0000000380)={0x5, 0xd, 0x9, 0x8001}, &(0x7f0000000400)=0x10000, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000480)=0x100000000}}, 0x10) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x13, 0x2038, &(0x7f0000000a80)=ANY=[@ANYBLOB="18000000fef275b4c82838f4020f0000001819", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r3, @ANYRESOCT=r2, @ANYBLOB="b94e19532451262ae7860559ef2110f11c0c127f8ee13e0485ab482eaed058b9d75e03714b6f747c957d5a285328d0e8566935a3199d8ca67377a133f2f62721cdd8f32fa24bd1477cce1a1885ae2703c122d15a1737c61018e24ae2756538d54deb1ac2ec91ba23c918d79b006b2d8ddf01c1eee8c459e8a281cc98620d563b69e7f3e4478e7129079b41297e8d507ab4dfaf5b212d0b47fece5a2e7ac6e33bc0a4f7ca1e1e4d67f545d7090fb4b81a7d50b56bb9bb261bfe5e2689ac6ce306efb9ef99003e", @ANYRES16=r0], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, r1}, 0x78) lseek(r2, 0x0, 0x2) r5 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r5, 0x0, 0x8400fffffffa) r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000340)='memory.events\x00', 0x7a05, 0x1700) bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000040)={0x3, 0x0}, 0x8) bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x14, 0xc, &(0x7f0000001480)=ANY=[@ANYBLOB="3889e9cc6a5c2e02b9d99b77f82a258f77dc2a399e40753b731084df536923ca6b445ecfd9ac69bf15dcc115994aceaf2717faa60df7b29b213156a2fb2191e261a8ac3fc66e42b6f2e4eaa519fced663914940807319f8887ec88c6fa5af49eb415b48362276c21edb50b74d549beecb590ff1619ae85bf67c1c40068c0370f6a1ad98508af277efd36576b43618e69f5f7d4e84d06ac53f0d36b9b8b2689c10a9b291e7b90edf00c906e23e8f746e657ddd6dfe1e67bbcfe55e837fe906554312a14241cd25f771f8d595112f5a01eb8efdd826e50", @ANYRES32=r6, @ANYBLOB="000000000000000085000000750000007a60fefff0ffffff180000000900000000000000ff0000002a3813001000000018000000a800000000000000ff00000095000100"], &(0x7f0000000540)='GPL\x00', 0x0, 0xc7, &(0x7f0000000580)=""/199, 0x41000, 0xa, [], 0x0, 0x14, 0xffffffffffffffff, 0x8, &(0x7f00000006c0)={0x8, 0x3}, 0x8, 0x10, &(0x7f0000000700)={0x2, 0x3, 0x87, 0x76121794}, 0x10, r7}, 0x78) bpf$PROG_LOAD(0x5, &(0x7f000000fa80)={0x2, 0x5, &(0x7f0000001180)=@raw=[@map_val={0x18, 0x8, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x4d}, @map_val={0x18, 0x5}], 0x0, 0x1ff, 0xd2, &(0x7f0000001200)=""/210, 0x41100, 0xf, [], 0x0, 0x17, 0xffffffffffffffff, 0x8, &(0x7f000000fa00)={0xa, 0x2}, 0x8, 0x10, &(0x7f000000fa40)={0x2, 0x5, 0xcb6, 0x9}, 0x10, r7}, 0x78) bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x7, 0x3, &(0x7f0000000500)=@raw=[@call={0x85, 0x0, 0x0, 0x4b}, @generic={0x7f, 0xe, 0xd, 0x0, 0x9}, @exit], &(0x7f00000006c0)='syzkaller\x00', 0x4040, 0x55, &(0x7f0000000700)=""/85, 0x41100, 0x1c, [], 0x0, 0x22, 0xffffffffffffffff, 0x8, &(0x7f0000000780)={0x8, 0x4}, 0x8, 0x10, &(0x7f00000007c0)={0x5, 0x0, 0x400, 0x9}, 0x10, r7, r4}, 0x78) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:44 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x23, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) 05:22:44 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1179.075017][T32701] loop2: detected capacity change from 264192 to 0 [ 1179.106054][T32709] binder: 32700:32709 unknown command 0 [ 1179.112688][T32709] binder: 32700:32709 ioctl c0306201 20000200 returned -22 [ 1179.148024][T32705] loop5: detected capacity change from 264192 to 0 [ 1179.212067][T32716] loop4: detected capacity change from 264192 to 0 05:22:44 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x6000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1179.375184][T32726] binder: 32714:32726 unknown command 0 [ 1179.380964][T32726] binder: 32714:32726 ioctl c0306201 20000200 returned -22 [ 1179.439103][T32723] XFS (loop1): Invalid superblock magic number 05:22:45 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x6800, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:45 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x24, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) 05:22:45 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x6c00, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:45 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:45 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x12000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1179.955721][T32762] XFS (loop1): Invalid superblock magic number 05:22:45 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) r3 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) r4 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r5 = dup2(r4, r3) ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) sendmsg$NLBL_MGMT_C_PROTOCOLS(r5, &(0x7f0000000380)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000180)={0xfffffffffffffffe}, 0x1, 0x0, 0x0, 0x4000000}, 0xc1) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:45 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1180.066529][ T307] loop2: detected capacity change from 264192 to 0 [ 1180.144747][ T317] binder: 306:317 unknown command 0 [ 1180.149968][ T317] binder: 306:317 ioctl c0306201 20000200 returned -22 [ 1180.221512][ T324] loop5: detected capacity change from 264192 to 0 [ 1180.239368][T32762] XFS (loop1): Invalid superblock magic number [ 1180.260362][ T336] loop4: detected capacity change from 264192 to 0 [ 1180.297419][ T336] binder: 329:336 unknown command 0 [ 1180.358790][ T324] binder: 323:324 unknown command 0 [ 1180.365903][ T336] binder: 329:336 ioctl c0306201 20000200 returned -22 05:22:45 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x7400, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:45 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x25, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) [ 1180.422451][ T324] binder: 323:324 ioctl c0306201 20000200 returned -22 05:22:46 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x7a00, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1180.711224][ T349] XFS (loop1): Invalid superblock magic number [ 1180.881870][ T349] XFS (loop1): Invalid superblock magic number 05:22:46 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:46 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:46 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x991f, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:46 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x13000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1181.062359][ T35] kauditd_printk_skb: 7 callbacks suppressed [ 1181.062370][ T35] audit: type=1800 audit(1609478566.520:2299): pid=346 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="loop5" ino=1767 res=0 errno=0 [ 1181.091365][ T324] binder: 323:324 unknown command 0 05:22:46 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x26, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) 05:22:46 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0xedc0, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1181.108924][ T324] binder: 323:324 ioctl c0306201 20000200 returned -22 05:22:46 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1181.165788][ T398] binder: 388:398 unknown command 0 [ 1181.175435][ T390] loop2: detected capacity change from 264192 to 0 [ 1181.201431][ T398] binder: 388:398 ioctl c0306201 20000200 returned -22 [ 1181.226398][ T394] loop4: detected capacity change from 264192 to 0 [ 1181.233216][ T35] audit: type=1800 audit(1609478566.690:2300): pid=398 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=15985 res=0 errno=0 [ 1181.255637][ T405] binder: 391:405 unknown command 0 [ 1181.280844][ T405] binder: 391:405 ioctl c0306201 20000200 returned -22 [ 1181.311435][ T35] audit: type=1800 audit(1609478566.770:2301): pid=405 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=16065 res=0 errno=0 [ 1181.465183][ T400] XFS (loop1): Invalid superblock magic number [ 1181.547213][ T422] loop5: detected capacity change from 264192 to 0 [ 1181.626985][ T35] audit: type=1800 audit(1609478567.090:2302): pid=430 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=16226 res=0 errno=0 05:22:47 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x27, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) 05:22:47 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x20000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:47 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) r1 = socket$netlink(0x10, 0x3, 0x4) getsockname(r1, &(0x7f00000005c0)=@in6={0xa, 0x0, 0x0, @private0}, &(0x7f0000000500)=0x80) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r2 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r2, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) r4 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000180)='NLBL_CALIPSO\x00') sendmsg$NLBL_CALIPSO_C_LIST(r0, &(0x7f0000000400)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f00000006c0)=ANY=[@ANYBLOB='d\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="015f0ebd700005000000030000000800020002000000080001000200000008000100000000000800020002000000080002000200000008000200020000000800010003000000080001000000000008000100020000000800010003000000a0d29d05d9b6a91fc486aa2f1e65347a9bb068bd1be77a3138b87ecd4a0430099c27e70d1cee9653aefd07d443b9a9f43374661cdcc420e2f66beb2d7348082f"], 0x64}, 0x1, 0x0, 0x0, 0x20000000}, 0x40) write$9p(r3, &(0x7f0000000940)="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", 0x1000) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1181.807959][ T35] audit: type=1800 audit(1609478567.270:2303): pid=430 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=16226 res=0 errno=0 [ 1181.855522][ T439] XFS (loop1): Invalid superblock magic number 05:22:47 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:47 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:47 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x14000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1182.027243][ T439] XFS (loop1): Invalid superblock magic number [ 1182.111395][ T35] audit: type=1800 audit(1609478567.570:2304): pid=469 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=15811 res=0 errno=0 [ 1182.137628][ T470] binder: 464:470 unknown command 0 05:22:47 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x28, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) [ 1182.156354][ T459] loop5: detected capacity change from 264192 to 0 [ 1182.180990][ T466] loop2: detected capacity change from 264192 to 0 [ 1182.182902][ T470] binder: 464:470 ioctl c0306201 20000200 returned -22 05:22:47 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x40000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1182.215526][ T35] audit: type=1800 audit(1609478567.680:2305): pid=466 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=15745 res=0 errno=0 [ 1182.244025][ T459] FAT-fs (loop5): Unrecognized mount option "" or missing value 05:22:47 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1182.374591][ T485] binder: 481:485 unknown command 0 [ 1182.380105][ T485] binder: 481:485 ioctl c0306201 20000200 returned -22 [ 1182.400509][ T35] audit: type=1800 audit(1609478567.860:2306): pid=485 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=15954 res=0 errno=0 [ 1182.419920][ T482] loop4: detected capacity change from 264192 to 0 [ 1182.563464][ T482] FAT-fs (loop4): Unrecognized mount option "" or missing value [ 1182.634425][ T495] loop2: detected capacity change from 264192 to 0 [ 1182.713034][ T506] binder: 492:506 unknown command 0 [ 1182.718670][ T506] binder: 492:506 ioctl c0306201 20000200 returned -22 [ 1182.736451][ T35] audit: type=1800 audit(1609478568.200:2307): pid=506 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="loop2" ino=1771 res=0 errno=0 05:22:48 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1182.798191][ T499] XFS (loop1): Invalid superblock magic number [ 1182.849986][ T517] binder: 516:517 unknown command 0 [ 1182.855225][ T517] binder: 516:517 ioctl c0306201 20000200 returned -22 [ 1182.913655][ T35] audit: type=1800 audit(1609478568.380:2308): pid=519 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=16384 res=0 errno=0 05:22:48 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x80000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:48 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1182.956600][ T459] loop5: detected capacity change from 264192 to 0 [ 1182.982151][ T459] FAT-fs (loop5): Unrecognized mount option "" or missing value [ 1183.054037][ T499] XFS (loop1): Invalid superblock magic number 05:22:48 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:48 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x15000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1183.174959][ T539] loop2: detected capacity change from 264192 to 0 [ 1183.214605][ T545] binder: 527:545 unknown command 0 [ 1183.229536][ T545] binder: 527:545 ioctl c0306201 20000200 returned -22 05:22:48 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) epoll_pwait(0xffffffffffffffff, &(0x7f0000000380)=[{}, {}], 0x2, 0x3, &(0x7f0000000400)={[0x5]}, 0x8) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) readlink(&(0x7f0000000100)='./file1/../file0\x00', &(0x7f0000000180)=""/54, 0x36) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:48 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x48, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) [ 1183.316812][ T550] loop4: detected capacity change from 264192 to 0 [ 1183.335485][ T556] binder: 547:556 unknown command 0 [ 1183.340795][ T556] binder: 547:556 ioctl c0306201 20000200 returned -22 05:22:48 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x80040, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1183.399244][ T560] loop5: detected capacity change from 264192 to 0 [ 1183.521268][ T564] XFS (loop1): Invalid superblock magic number [ 1183.589745][ T564] XFS (loop1): Invalid superblock magic number 05:22:49 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x4a, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) 05:22:49 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x400000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:49 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0xe0ffff, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:49 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:49 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x1000000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1184.035547][ T600] XFS (loop1): Invalid superblock magic number 05:22:49 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:49 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x4c, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) 05:22:49 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x16000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1184.228060][ T623] loop2: detected capacity change from 264192 to 0 [ 1184.234945][ T621] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1184.307490][ T637] binder: 622:637 unknown command 0 05:22:49 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x2000000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:49 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0xbf, 0x4) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1184.395416][ T631] XFS (loop1): Invalid superblock magic number [ 1184.417353][ T637] binder: 622:637 ioctl c0306201 20000200 returned -22 [ 1184.498061][ T649] loop4: detected capacity change from 264192 to 0 [ 1184.521415][ T651] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1184.532794][ T649] binder: 638:649 unknown command 0 [ 1184.538251][ T649] binder: 638:649 ioctl c0306201 20000200 returned -22 05:22:50 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x4e, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) 05:22:50 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x3000000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1184.727698][ T670] loop5: detected capacity change from 264192 to 0 [ 1184.770367][ T675] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1184.828061][ T671] XFS (loop1): Invalid superblock magic number 05:22:50 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1184.884615][ T675] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:50 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x5c, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) 05:22:50 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x4000000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:50 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x17000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1185.164976][ T693] XFS (loop1): Invalid superblock magic number [ 1185.219221][ T707] loop2: detected capacity change from 264192 to 0 05:22:50 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp, 0x1}, 0x20) r1 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r1, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r1, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r1, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r1, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1185.263737][ T708] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1185.272775][ T707] binder: 706:707 unknown command 0 [ 1185.285810][ T707] binder: 706:707 ioctl c0306201 20000200 returned -22 [ 1185.340769][ T693] XFS (loop1): Invalid superblock magic number 05:22:50 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) ioctl$DRM_IOCTL_IRQ_BUSID(r0, 0xc0106403, &(0x7f0000000100)={0x40, 0x7}) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000500)=ANY=[@ANYBLOB="3c5f7f1316000000000000", @ANYRES64, @ANYBLOB="00000000000007ff232926deef88ebda990d070000008c62ff10fb3b0ac555f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f", @ANYRESDEC=r1, @ANYRES32], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f0000000180)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:50 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) syslog(0x0, 0x0, 0x0) ftruncate(0xffffffffffffffff, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(0xffffffffffffffff, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(0xffffffffffffffff, r2, 0x0, 0x8400fffffffa) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1185.453510][ T708] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:51 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x60, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) 05:22:51 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x5000000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1185.596474][ T733] loop4: detected capacity change from 264192 to 0 [ 1185.607999][ T737] binder: 732:737 unknown command 0 [ 1185.627350][ T737] binder: 732:737 ioctl c0306201 20000200 returned -22 [ 1185.756301][ T746] loop5: detected capacity change from 264192 to 0 [ 1185.788790][ T748] loop2: detected capacity change from 264192 to 0 [ 1185.822889][ T762] binder: 747:762 unknown command 0 [ 1185.835063][ T740] XFS (loop1): Invalid superblock magic number [ 1185.837230][ T763] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1185.851549][ T762] binder: 747:762 ioctl c0306201 20000200 returned -22 05:22:51 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) syslog(0x0, 0x0, 0x0) ftruncate(0xffffffffffffffff, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(0xffffffffffffffff, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(0xffffffffffffffff, r2, 0x0, 0x8400fffffffa) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:51 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x68, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) [ 1186.024563][ T763] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:51 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x6000000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:51 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) syslog(0x0, 0x0, 0x0) ftruncate(0xffffffffffffffff, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(0xffffffffffffffff, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(0xffffffffffffffff, r2, 0x0, 0x8400fffffffa) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1186.173193][ T776] loop2: detected capacity change from 264192 to 0 [ 1186.187599][ T783] binder: 775:783 unknown command 0 [ 1186.192800][ T783] binder: 775:783 ioctl c0306201 20000200 returned -22 05:22:51 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x18000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1186.268567][ T778] XFS (loop1): Invalid superblock magic number 05:22:51 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp, 0x1}, 0x20) r1 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r1, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r1, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r1, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r1, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1186.343393][ T794] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1186.413071][ T801] loop2: detected capacity change from 264192 to 0 [ 1186.426262][ T808] binder: 796:808 unknown command 0 [ 1186.432257][ T808] binder: 796:808 ioctl c0306201 20000200 returned -22 05:22:51 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x6c, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) [ 1186.494600][ T794] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:52 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:52 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x7000000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:52 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff00000028a453a36763c268eb03", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r3 = dup2(r0, r2) ioctl$SIOCAX25DELFWD(r3, 0x89eb, &(0x7f0000000100)={@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}}) [ 1186.543074][ T35] kauditd_printk_skb: 12 callbacks suppressed [ 1186.543084][ T35] audit: type=1800 audit(1609478572.011:2321): pid=815 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=16036 res=0 errno=0 [ 1186.671534][ T820] loop4: detected capacity change from 264192 to 0 [ 1186.719292][ T814] XFS (loop1): Invalid superblock magic number [ 1186.724830][ T835] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1186.728073][ T820] binder: 818:820 unknown command 0 [ 1186.747696][ T820] binder: 818:820 ioctl c0306201 20000200 returned -22 [ 1186.779546][ T35] audit: type=1800 audit(1609478572.241:2322): pid=820 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="loop4" ino=1778 res=0 errno=0 [ 1186.847802][ T845] binder: 834:845 unknown command 0 [ 1186.861028][ T839] loop2: detected capacity change from 264192 to 0 [ 1186.871134][ T845] binder: 834:845 ioctl c0306201 20000200 returned -22 [ 1186.875849][ T35] audit: type=1800 audit(1609478572.331:2323): pid=848 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=16373 res=0 errno=0 [ 1186.878131][ T840] loop5: detected capacity change from 264192 to 0 [ 1186.901789][ T35] audit: type=1800 audit(1609478572.361:2324): pid=845 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=16371 res=0 errno=0 [ 1186.925836][ T835] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1186.939022][ T840] FAT-fs (loop5): Unrecognized mount option "" or missing value 05:22:52 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x8000000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1187.008673][ T814] XFS (loop1): Invalid superblock magic number 05:22:52 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x74, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) 05:22:52 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x19000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1187.278708][ T865] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:52 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp, 0x1}, 0x20) r1 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r1, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r1, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r1, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r1, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1187.318883][ T870] XFS (loop1): Invalid superblock magic number [ 1187.332125][ T865] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:53 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x8abc3a6, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:53 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x7a, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) 05:22:53 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1187.573201][ T892] loop4: detected capacity change from 264192 to 0 [ 1187.603701][ T892] binder: 890:892 unknown command 0 [ 1187.608977][ T892] binder: 890:892 ioctl c0306201 20000200 returned -22 [ 1187.627742][ T840] loop5: detected capacity change from 264192 to 0 [ 1187.641304][ T35] audit: type=1800 audit(1609478573.101:2325): pid=892 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="loop4" ino=1780 res=0 errno=0 [ 1187.709463][ T35] audit: type=1800 audit(1609478573.171:2326): pid=904 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=16033 res=0 errno=0 [ 1187.745219][ T840] FAT-fs (loop5): Unrecognized mount option "" or missing value 05:22:53 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:53 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) sendmsg$IPCTNL_MSG_TIMEOUT_GET(r0, &(0x7f0000000380)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000480)={0x80, 0x1, 0x8, 0x201, 0x0, 0x0, {0x2, 0x0, 0x4}, [@CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x7168}, @CTA_TIMEOUT_DATA={0x14, 0x4, 0x0, 0x1, @icmp=[@CTA_TIMEOUT_ICMP_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0xff}, @CTA_TIMEOUT_ICMP_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x8}]}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x1a}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x6}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}, @CTA_TIMEOUT_DATA={0x14, 0x4, 0x0, 0x1, @fccp=[@CTA_TIMEOUT_DCCP_PARTOPEN={0x8, 0x3, 0x1, 0x0, 0x5}, @CTA_TIMEOUT_DCCP_CLOSING={0x8, 0x6, 0x1, 0x0, 0x1f}]}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x84}]}, 0x80}, 0x1, 0x0, 0x0, 0x40000}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b898856bdffff0000672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1187.909651][ T909] XFS (loop1): Invalid superblock magic number [ 1187.984693][ T918] loop2: detected capacity change from 264192 to 0 [ 1187.999130][ T926] binder: 910:926 unknown command 0 [ 1188.004435][ T926] binder: 910:926 ioctl c0306201 20000200 returned -22 [ 1188.022591][ T35] audit: type=1800 audit(1609478573.481:2327): pid=926 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=16036 res=0 errno=0 05:22:53 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x9000000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1188.178653][ T935] loop5: detected capacity change from 264192 to 0 [ 1188.190183][ T909] XFS (loop1): Invalid superblock magic number [ 1188.230787][ T937] loop4: detected capacity change from 264192 to 0 [ 1188.278669][ T35] audit: type=1800 audit(1609478573.741:2328): pid=948 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=16376 res=0 errno=0 [ 1188.304564][ T947] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1188.327614][ T35] audit: type=1800 audit(1609478573.781:2329): pid=937 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="loop4" ino=1782 res=0 errno=0 05:22:53 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1a000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:22:53 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x9e, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) [ 1188.446089][ T947] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:54 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0xa000000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1188.604488][ T962] XFS (loop1): Invalid superblock magic number [ 1188.694660][ T971] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:54 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0xb000000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:54 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:54 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:54 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0xc6, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) [ 1188.982785][ T981] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:54 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x18, 0x2038, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586e23d38cee39f107ba112f80fadec7a595a9f2cb40b801d166e790557", @ANYRESDEC=r1, @ANYBLOB="000200005808000095000000000000"], &(0x7f0000000100)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1189.075722][ T35] audit: type=1800 audit(1609478574.541:2330): pid=990 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=16376 res=0 errno=0 [ 1189.100377][ T989] XFS (loop1): Invalid superblock magic number [ 1189.132808][ T999] loop4: detected capacity change from 264192 to 0 [ 1189.139633][ T981] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1189.139703][ T1001] loop2: detected capacity change from 264192 to 0 [ 1189.209145][ T1014] binder: 997:1014 unknown command 0 [ 1189.214756][ T1014] binder: 997:1014 ioctl c0306201 20000200 returned -22 05:22:54 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0xc000000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:54 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0xe2, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) [ 1189.435920][ T1030] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1189.454949][ T1023] loop5: detected capacity change from 264192 to 0 05:22:54 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1b000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1189.593418][ T1023] FAT-fs (loop5): Unrecognized mount option "" or missing value 05:22:55 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0xd000000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1189.768782][ T1050] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1189.790408][ T1042] XFS (loop1): Invalid superblock magic number 05:22:55 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0xe000000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:22:55 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x102, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) [ 1189.869833][ T1050] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:55 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:55 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1190.172720][ T1023] loop5: detected capacity change from 264192 to 0 [ 1190.192716][ T1064] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1190.207957][ T1063] XFS (loop1): Invalid superblock magic number [ 1190.257458][ T1023] FAT-fs (loop5): Unrecognized mount option "" or missing value [ 1190.326352][ T1084] loop4: detected capacity change from 264192 to 0 [ 1190.355528][ T1085] loop2: detected capacity change from 264192 to 0 05:22:55 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r1, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) r2 = syz_open_dev$rtc(&(0x7f0000000180)='/dev/rtc#\x00', 0x1f, 0x4000) write(r2, &(0x7f0000000540)="ade7f854dc82ed1ff54ccb51a47399919d3e46471fec57f5a6a94d93e212095488ed48cf10feaa85346f29afcb1b76da6098350b1b1e7d774bb15115217fa5b43ed209df9b321c75904cd83b108ad1d85b7a76a92842ee823bc01045a72c2ab8f518b11ebec3e0749cee97c3eeb6104a62016e2d33fe29f2a2ef3f5b562eb3eb0e956314bcf8681b1d73161e99e10457422a814c2ed4fc5ac9ecb5756e066425d420a6dd1c32ce5a909ae3e9469718159c2b8f7e46cf1d817b1291e006c0888247e664d7fa6ab270dc38e69ed1d7af207377daf52e87b58e0774c5c71023daeb21", 0xe1) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000100)='/dev/btrfs-control\x00', 0x20400, 0x0) ioctl$VIDIOC_SUBDEV_QUERY_DV_TIMINGS(r3, 0x80845663, &(0x7f0000000480)) [ 1190.398042][ T1092] binder: 1083:1092 unknown command 0 [ 1190.416528][ T1064] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1190.419497][ T1092] binder: 1083:1092 ioctl c0306201 20000200 returned -22 05:22:56 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0xf000000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1190.486937][ T1063] XFS (loop1): Invalid superblock magic number 05:22:56 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x16d, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) 05:22:56 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1c000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1190.623029][ T1477] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge) [ 1190.661656][ T1107] loop5: detected capacity change from 264192 to 0 [ 1190.768953][ T1117] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1190.817082][ T1117] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1190.847135][ T1114] XFS (loop1): Invalid superblock magic number 05:22:56 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x10000000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1191.019960][ T1114] XFS (loop1): Invalid superblock magic number 05:22:56 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x1b5, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) 05:22:56 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x11000000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1191.122015][ T1142] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:56 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:56 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r0, 0x1}, 0x20) r1 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r1, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r1, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r1, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r1, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1191.348746][ T1149] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1191.433978][ T1162] binder: 1152:1162 unknown command 0 [ 1191.448983][ T1162] binder: 1152:1162 ioctl c0306201 20000200 returned -22 05:22:56 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x12000000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1191.489001][ T1154] loop2: detected capacity change from 264192 to 0 [ 1191.510343][ T1148] XFS (loop1): Invalid superblock magic number [ 1191.529652][ T1153] loop4: detected capacity change from 264192 to 0 05:22:57 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) r1 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r2 = dup2(r1, r0) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) symlinkat(&(0x7f0000000100)='./file1\x00', r2, &(0x7f0000000180)='./file1/file0\x00') r3 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r3, 0x1000) r4 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r3, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r4, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r3, 0x0, 0x2) r5 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r3, r5, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1191.537564][ T1154] FAT-fs (loop2): Unrecognized mount option "" or missing value [ 1191.606429][ T1153] FAT-fs (loop4): Unrecognized mount option "" or missing value 05:22:57 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1d000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1191.812466][ T1182] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:57 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x1bc, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) 05:22:57 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x13000000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1192.006772][ T1197] loop5: detected capacity change from 264192 to 0 [ 1192.050776][ T1203] binder: 1195:1203 unknown command 0 [ 1192.106660][ T1203] binder: 1195:1203 ioctl c0306201 20000200 returned -22 [ 1192.133700][ T1208] XFS (loop1): Invalid superblock magic number [ 1192.141095][ T35] kauditd_printk_skb: 10 callbacks suppressed [ 1192.141108][ T35] audit: type=1800 audit(1609478577.601:2341): pid=1197 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=16379 res=0 errno=0 [ 1192.145581][ T1205] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:22:57 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:57 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r0, 0x1}, 0x20) r1 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r1, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r1, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r1, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r1, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1192.261741][ T1208] XFS (loop1): Invalid superblock magic number 05:22:57 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x1d8, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) [ 1192.335695][ T1228] loop2: detected capacity change from 264192 to 0 [ 1192.391070][ T1229] loop4: detected capacity change from 264192 to 0 [ 1192.399612][ T1236] binder: 1226:1236 unknown command 0 [ 1192.414643][ T1236] binder: 1226:1236 ioctl c0306201 20000200 returned -22 [ 1192.424598][ T35] audit: type=1800 audit(1609478577.891:2342): pid=1236 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=16370 res=0 errno=0 [ 1192.434436][ T1205] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1192.448565][ T35] audit: type=1800 audit(1609478577.911:2343): pid=1240 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=16371 res=0 errno=0 05:22:58 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x14000000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1192.631921][ T1242] XFS (loop1): Invalid superblock magic number [ 1192.701112][ T1253] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1192.744294][ T1242] XFS (loop1): Invalid superblock magic number [ 1192.777992][ T1253] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1192.788433][ T1203] binder: 1195:1203 unknown command 0 05:22:58 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x1e4, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) 05:22:58 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x15000000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1192.822398][ T1203] binder: 1195:1203 ioctl c0306201 20000200 returned -22 05:22:58 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1e000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:22:58 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="00000000580800009500c943000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1192.938079][ T1274] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1193.107958][ T1274] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1193.142138][ T1279] XFS (loop1): Invalid superblock magic number 05:22:58 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp, 0x1}, 0x20) r1 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r1, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r1, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r1, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r1, r2, 0x0, 0x8400fffffffa) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:58 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r0, 0x1}, 0x20) r1 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r1, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r1, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r1, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r1, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:58 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x16000000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1193.174703][ T1291] loop5: detected capacity change from 264192 to 0 [ 1193.245242][ T35] audit: type=1800 audit(1609478578.711:2344): pid=1299 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=15954 res=0 errno=0 05:22:58 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x201, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) [ 1193.337573][ T1302] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1193.546002][ T1317] binder: 1310:1317 unknown command 0 [ 1193.551468][ T1317] binder: 1310:1317 ioctl c0306201 20000200 returned -22 [ 1193.562535][ T1312] loop2: detected capacity change from 264192 to 0 [ 1193.577413][ T35] audit: type=1800 audit(1609478579.041:2345): pid=1317 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=16384 res=0 errno=0 [ 1193.582313][ T1315] loop4: detected capacity change from 264192 to 0 [ 1193.622832][ T1302] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1193.638141][ T35] audit: type=1800 audit(1609478579.101:2346): pid=1315 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="loop4" ino=1787 res=0 errno=0 [ 1193.678085][ T1312] FAT-fs (loop2): Unrecognized mount option "" or missing value 05:22:59 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x17000000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1193.865455][ T1332] loop1: detected capacity change from 1 to 0 05:22:59 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1f000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1193.947997][ T1334] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1193.979443][ T1332] XFS (loop1): Invalid superblock magic number [ 1194.062715][ T1334] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1194.070410][ T35] audit: type=1800 audit(1609478579.531:2347): pid=1346 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=15954 res=0 errno=0 [ 1194.090935][ T1332] loop1: detected capacity change from 1 to 0 05:22:59 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f00000021c0)=[{{&(0x7f0000000100)={0xa, 0x4e24, 0x4, @remote}, 0x1c, &(0x7f0000000400)=[{&(0x7f0000000180)="5ab19685f12a601886f56d4177e0", 0xe}, {&(0x7f00000005c0)="3256dcc740619f29a9297c3bc40c38df317abbf76718833bf2ffce366ec71972f8d79631356f8874a751a03c5d9085777c5df5336d9baa60bf972ac59910eb66a06c47d3eff618845230e872cba9eb8f4b248002ebfc4f086c93cfa07585ac82b726d53b33006680a69c124a777d3aeb158d5e512ccf43afda17b53dc95ae1000b96162a6a23", 0x86}, {&(0x7f00000006c0)="b3e21d49f15b300a79d91c0873bbce9cd4797812e32225ce7bd858ec593494bdf0cfa6851d20e66962c9de47cfaafcd66d4f8f338e63ec2f95c01c59d02ecdc44c8d3b78fe4f6e6f4d1118eb50483b46d47c0523df768e471f6115068e0c4223229bb3c98f562fe106b0f9c39948284e6edff789ff92c3b8a75322f3dc43900d4e581272aa82525d8746d39a2dfacc70ade7911e5cb29841936aa500eff27cfd2e5d18029dc92fedf37e1f8619b8df7d2b5ec163e6c4547c529316d310afb324aae3c5c2c8ba9be2c316cf5ca88b123b2f", 0xd1}, {&(0x7f0000000380)="20f4623d6acdb0b34e902d36ab733ef23b8eebad3a", 0x15}], 0x4, &(0x7f0000000940)=[@rthdr_2292={{0x68, 0x29, 0x39, {0x2f, 0xa, 0x2, 0x8, 0x0, [@mcast2, @local, @remote, @local, @private0={0xfc, 0x0, [], 0x1}]}}}, @hopopts={{0x1040, 0x29, 0x36, {0x2b, 0x204, [], [@calipso={0x7, 0x10, {0x1, 0x2, 0x4, 0x3, [0x2]}}, @generic={0x3, 0x1000, "d7afc934add42a461319bfe71a4972562e6397c9717d9e1e637272f4920916a5b11828a0543455a1343dc0a52367d48475fd4959078c1d92853500a0a30602dfbd94c1739e993eda3d2e0d8a7560c578c4c9bb1832a9373ad66da5674d388916a70034c67d13a0f172abab95c77c78a857e57069bc3f3f1a1657e0fefa13c7e684a7407722c2ed2b0d57c900f42b1ad1be11e9a7ba8a63aded88724075eb0244be77eb97a4206522c43c1f4fedf2be8a5631fcd1353bb86ad01e4dff26ddf96234c8378a832c04e2e2060bad86c3436c2820959b2c716cd36dcc15efeb3b8407c00ac89d2cb0aacba877ce8640fd46c18a43d5c236395d66a0e6690b751f3c146cb9f4e99d528e8a3b6d9cbaffcd813000d81549da4ae674be9053abfca8a8c382fea647a38933dce8be5472002820400fd484ad72071773eb2699f0af9d40f18de8b918f6dc0696a46857266e1ede5bcb16c856318e68e5605b4ff3f3d729a4c09473b7eea0f8c76e64d09196e2f9a570772f028bc9a1db6971fa1a04148d9193a82dabaf90bb443ef6cd6f451a75ddec12b3829b455da0f59daef9e2fadc1494575912f6296a5b36ec1a35f91d3f24379aba7ca5f37877946fbe72ad74399225842bc842e22349892dd0e540b9479e6224bbb387b18a1de47fd03a9b7a4162f241d8741857d02d3754906a6c3ece9bdbd1ba7cc1d7946f8d71316a680413161e33cfe7fe65456e7bc0dbcc49e0edecc7bb49221f48c6cd7c76fb88673ac0313c275c3515725a22043600313ad0fb17e2bf6bbfc7a9989ac0085de572eec46dfd4eb98d2266dc55f2674f94adc11ffd966e1879d8e0a1ee86dcb1fed162eab50a944a762a5bd57cfe1f426a3d662d5807585de5358dbe5b3ae059629bac87aabe99178337e16bd5192a161e81d999038fdd013438cc2241793f96707548f93271ae85521bd9209bce03272359a873a1dd4f708cbb2d6340c8dc53686e8234e6246c61389045e4eb223f0485ee251c907795ede70781fd3aa0692bcbf9089fcc46a29bdd7674dd9875ae80c566b54b0074dce993ff7c04bdb6aa9506556e828c12c6685e9c26f958acadc01e5c268f6a471a040423b6d0168cc9bf01a9424222b5fe45cc4e242aa9d48824824baaa6e852d1c288a68246c8ee1a25ec6cbfd8bc21aa5c986f717441128e8e9ee2b9b04fb1d311efc77fcd7d3b5b73c5b4ead58cb68b57b5cc676add5b2396b1cb5393ea8d1fde25c011d0930d52ca3f12e629b056ae9f006e6969a7198e53598bbced977f4247898b4e5556fbb31bc5bbc2cb26ec49f6f8113e63c7aad065058e53a3c5483904b6e184bf80f61ef71bfa834c343551075f2cb4f5d2a5986ee94b6728a45d536eed0231214e5c1d59099a7cb7b038a4419c78c3c53c316ed871e56ee58bdefa253623d414d33523a863c043c9e058ceeedfbc6ad73aa9d0df8e239492ba27cd430d52159e8dc86a1f6d9395b8b4ee73e346e747ff59435dae00baf1e0a54670b2cc7ed8410f28a4c3bffc8d0d992a2a46dbdf76b07e1d7f84922a3b5bb38ddb261e6f04e102b244f9f7a2f6d0cf8280bb0f550dee483d1727bca6a1d79d4700ad77fe9234e75356acfdeb8b84cf12e954f4981b33d5c90d8305100efd0c70c26d66a9070329b07773c5484f2aeae638d069f067a347bd4b48c987dbbf619405c2ced8b32ceaa35bce37687909ae5a93b02f12b601bda03988348128db538c92363deceb0f2fb2fefb0a96d211e63e75d7a5ce6d073b79733cdbe2347f468d3ad97a699a043e7cc7de4ebadea0563a644c41104370e3d65d46010b33e4a72fc85aa90d20aba017fc394d11577bb7268905d4533701c1cdccf00d93af26304adc5aeac7e581a0c36f28a8095abd2747e14e29415b71b6bda9692975478d817513bd4657e3336728b285da01adc86e7af63ac345695d8daf7263551d326118e98685dfc525237b11fd18d0fee8c38d9c8cccfc9b293b086f78d9f7a89274d7a1d471fa77dee422efeff9efc4e9ca1eb6cd5bddd81e4816b83e16567ef99edcbdf72897e9bde5dfa23111fcb35d6776edecba8f354290880d3a0c9a8afb6496cd38b97140e34a0e0f6a799a1aabd932022b93a5a6569229be065886c6836a912985ff62f424c302ee9439f79dae5a6b908432eab9cc62ae0fe1cd6da15ea4e9903e1b2ec5cfc46601cd784185576719f83727865d03f2503985e684b53afcd90b9476070674855edf27d58b894a5f5fd48c79d2ad8d22b30e9be00d17eee59c216d1872fd562ea6d9650c2a6d3e27e64f63f37ab12e1edd370841a86f9467f03bbe038cd8e4f725f8cedff6ebd6e6508bcdcd6d26c57f67d8c0fed3c2df8e09fe4e594bd5dd3964ad3237d585b52b9f01e8af5171275c02a17482242b209c57faddebcbe2ba20fa5ab135b94d4fc8215c79067da4d80623f6caedb79d8bfaae779b64b9216a2ae4dfba38f8260fca7680222c518d74b8141b936f8aa917b74af570923dacaa8042a132cba1d6f16e50c9faeef0ca976b814e365dc0d35d0fef7053530a9de6b6060ade1935e6aa0cfe7d406d2ee4c68d64a08a02f96a61aaf3ac2e7514716d33a54f348f7d57c7213a4ee23a45740dafffd11b03b8bf0991ed99ae06e26db2cc9e7aedea9becb74520006dae29b56d3905032067175d51e557aea90c019a5ccf35da71565200ea4b8d79419256c3daa5c4f1e8dc72a51106312ce5b79552a86542d60169082d7f06d5eb4d779ba74693f60d175cac1d1336a0b2bf2e0734a58e85b5274e83d1f38e174d35a031343f48d06dbd0753ebae67b2a8e258cca3c85317210f9beca06118963b4397ffe35d73995cb8b2e08a9ae66c4bf21da3307196a8041582347373366d17514e6b5bf4c03981b8894a9a74cd2b48f291d8adaf770eb25f33111e3ad4fddc2be2894d2e6ec4401779a3304b41da3736b1ae112fd59dce19251ca44394ad1f3fd41c6b0497f1aba7ba5600c1584abf4e452e6938109e930a13a16619752171cc99bfafd061dc80485a8bf990a1d55e1b9b73f97ad43bd27b62ed6ec56bdd8fd6306a048cac08bbc0f50b8dfcc35722ef4898cb493885ecc67365bd0470dbbea5b86523755b74deb70e80f7131c274204bf75f1d6ed6d5c1a41c9eb45f98504a63ae0365382c68df6d0be1839e3c9d551c179152b64409e4db3f329d2fef27f75507e91222f2cd81fe35dcb2e6b16e5958f6ddc1cc220cc948e3796b63ae854fb438ecb8d74381d8639ae5410ca314b031c30257cef1aebb771d69963962aa44e7036b0b3d36dd9a016d19c19e84b9840e504f377124d7e790f9fb3fbc1c2fc63873e22ca43f0303ea3ce345b8d891db17c80c6ec473823774890486e122245ae3e10c5d5b95ed5f0cbe6fe7609e574c5d636a566d66cbb997d4136058f1e16cc49803a86de74c5d474cc4e19b9180c04eba2d73731fc3c4a3e4cd2ae37123a5c34bda67b480aa0ef7f336f4ef20a8ac4882618ef13d661c853fb383c331c95f12d75e32bdbf08ec4319f1bd19da72f11a7d43c05885d37e349d0a964c75c0a67a78554bbf056297bc0580430032bd8370ba327f765062d412810ddd10457635d3036b37013d0382941ac4acd57eda8830278345a12295f6c0a0ba1e3271866ec34506f6d4c5cd7f30a5c8501153e0dfc1b13fe04cbf47d748cb632b4b0248f303fc86267116e06315a9a3a99680db51907b8b0b8734705b37316416bc9a5da6b1cd8758725c9f0acc2e305159a5b14d687ecc03ce36cbe0801e920d373e511564e2464142a1783343dae8c78e0c655c87b5baf0f24ad8eeaf11910e2c6d857e02056a66e28dda3f7a13e0e2bf9f7617f8a9ef5b619dc14b490e54ce46f63d6238438f67acb931ebc544c8bd9129238306427efb867ad6cf0b19f6487af2c7e5f7bac61e90d431d2defd6cd6cbbe94c530073cf8c40dd1d9de07d5d750cc1d1909d2e18826c43be3cc11f24f9f9475b22d3220ca1dd6fea79f32df143525b93e26338cbb7219f202f2a224584adfc6928664a7cd4aeeba98be6342e84f395b45d7bad362e30a41360d157e59dcb95b91e9d1ce42487de039568f0517482bc08f8a8d34525f190ce3f61c8270c9d14a9f79b425465a2118062835c469b403fa9840d37a093aabc0cd5d99e02091e0c25f65a429c7762a99092d4f0aa4e3adc29dd079d26f30054ec31b925749e6ce48ad461e743eea74c54ec87e9ad214d3ea6a0905073af15efcde09a8f5b56cae428ad592a9ecce6872c9cfe8a521af8295f82b19faece2c2d82e1bd00b91ea0bb31690153e393e54a8e5c79c185057ff5468110a7ee1797e1cd9cd050cb4f7f968659b7b51d2b59cd0c1137f95c58158e388997b64de7916c341c180ffe8eeb816d3bb6a03e5414598369ffd3860ce1b86411aeba056d2ad8666ae3ea6532afcbcdbf00a3a49b355ee63c71ae29e9f42ef3e954518df7f5bf074441b2bda8612a3f0b71dc2d574e50fcd84a03ab4e240300dd470bb0a1c27a048bbe085d5cda4d3cc5980b3b6c872731998c0c52b22dae3c65bfbca9ade568daeb2d0e8a125ceff53195b856993b06085f48fa913d44474fa7acd76f69b798f817d08dff477c61152d8c508d571bd4f8cfc9bb62cf3bdb3a77d1be3ec9e469bb694b8b0232e04df1dadd61afd27bba1873facde380f6f79c52c0a8c20c708941309a88ec7efce175d01f065e08f4ab955e811d343bb355b90a91ad2fe9bf788a605ec3d36eeb4ebf9db0876eb595fd5ce6bc7d96adbb69e1e8e717894c9832867240cd4042f62d0b65847d47454a477547e7416071f3815c6aed182610dff39ba75b95a822305051c60b60f26b67df39fa7233f61004f50ca3443d934ff76e7f26fb8f87584b8d2c6728c4df5f8c6c05eac0ed8c50f28eaab772cf3a6c109b8702f071aa1d48e6ccda82a3e1308be9fe43dc7e830cce65e89e05dadd472909456a276f062e52ed3feae9013c117a37fb7b7316293f8726e622642de4371328a9d26dccc581db61d295b96d35a07274fb8f5af5d93d0e0a2af9770454af2768ecd1996e6b506481ccfe3a03966a58c575c91948a93abda281062192b573f8c18c30eddd73fe20dc021334307a1570eb1488eab0decb984ad0703c5e559be217de19e7759b3669edd3e23ccbaa6f96278eff34c5d2c0383cae1c0c7395de2717e34697b391e0087adb131f0b447fdeeb05d2a1b7eebdb168d9e97d594884d79bfc510970c2e1927130c3438292a7a87bd87ffa829c6910b09fda212d310937f3d6e9d5251f3c1cbf4daa5b166a6fcbf7d7f8b11a5a9f4c3bd0212b0f9bd6f0922e40f69926e4360e705a7a33322c9726e1906dd2be2a3253cb87f69aa2ff8b7fc3b984d073038cc3eb7e2ea0996b5f44c135debf7ff22f17c69152621a1b094d60299ee407362d043cbfb1ce9d8fb62fc735cb2aacaf98b32978d5a96d4d0351dc45571890269cd2cf0e57aee9d148f09056ec50acafda5b53d4d273f95e7e2c555f13ede3be198a24aed1ec31d156fa8ad9e6caf5922e063f948afed71bf8d85728882144cfa1ad0dcd226a7c898abc756463ccef4435c1856dc04ff503f7694c63967526da0c70058a70ec0edd823382b8cea01e7e4b735a18dacdce2ad92eed184c3ac492961c15245868737b50ad3abd2a369713bd78293bc281274a63669e338e593d8bef9d02dc821e7a02b62a8da073ecaa2bd942b2b5970e822a9a174ddd20f42b09b85ebaf34bd5f92f6b906a83a61121659236"}, @ra={0x5, 0x2, 0x5}, @padn={0x1, 0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}, @enc_lim={0x4, 0x1, 0x80}]}}}, @dontfrag={{0x14, 0x29, 0x3e, 0x6}}, @hopopts={{0x1d0, 0x29, 0x36, {0x2b, 0x36, [], [@enc_lim={0x4, 0x1, 0x7}, @calipso={0x7, 0x40, {0x3, 0xe, 0x1, 0x9, [0xea3, 0x2, 0x18, 0x68, 0xa000000000000, 0x8061, 0xf17b]}}, @ra={0x5, 0x2, 0x5}, @jumbo={0xc2, 0x4, 0xfff}, @jumbo={0xc2, 0x4, 0x7fffffff}, @ra={0x5, 0x2, 0x400}, @generic={0x3, 0x5b, "017123b32e60d8de744a16ed6342d7ca0f2038d4b99d3b6466ef0cf137147441be24dde042e9c688f1f4614d692d69d7886b1f5597e3853d6552672e21de1ffafcce45382297ee469a9334f3d270bb169f8d988b48470700063668"}, @pad1, @generic={0x2, 0xc9, "867f35caa2529eb27b961136ce3c9d0a05f63729b52aa57296475fbc5e3bb95839db207cde302242793fa8c64d3d24dfe1d674b8d7d8a1dee0f9cc01282903aa1d1d58d00a8439334787d5ce0626e50c6f1d74cdbbaded7a8c06c164fc8a52685e94ad1c12456648b75120d084e3da380122d4d5a74542bb26a1bda2a4029fd73f436f5c231cb933a35a945d2358f70504356b50b551880178974ef402b30d3d73da23056f6c81bdb4f9890158f7d341310adc49a92665da6cd9b4ee87a56a740da62c9699e392456c"}, @calipso={0x7, 0x30, {0x2, 0xa, 0x72, 0xda3, [0x5, 0x10001, 0xb19, 0x9, 0x7f]}}]}}}, @rthdrdstopts={{0xd0, 0x29, 0x37, {0x67, 0x16, [], [@calipso={0x7, 0x18, {0x2, 0x4, 0x57, 0x3, [0x0, 0x7]}}, @enc_lim={0x4, 0x1, 0x3}, @generic={0x81, 0x92, "8be381244ff557cf7c924493f82fde5dffa47640d90bb54e1ba3579c033b3e40126f52098c18c705869f3cd3d2c1aec6d3bb7480f9df6997c1062bf7f756c53a57acfbed6db5e90c5baa6aa64b7dd6d0cb5e624235161a56954f8be180ae2d8a6ecd2a9a6a7efe91217477020328234a6f4b7b8434bf6d9a479ec581174e4d21f01e69a7f29f8bac50ededddecf46a4e0c11"}, @pad1, @pad1]}}}, @dontfrag={{0x14, 0x29, 0x3e, 0x8}}], 0x1378}}, {{&(0x7f0000000500)={0xa, 0x4e20, 0x1, @private0={0xfc, 0x0, [], 0x1}, 0x8}, 0x1c, &(0x7f0000001cc0)=[{&(0x7f00000007c0)="3ed8ca73d221b8a381864f7d0f0193244b01ffea81a5df1a02e89e2360bf5e0a73326b89c2e7446cdb2e696f218435cca387fca2f90561b9e144f6d07c013e3c3ebdf4369c85d38a98b40eb81f3a058f0566016ba6f787b469027c211e3a90f114808b2e8b63d13070608cdf67a4419762ab58a33aa47881fdec6af780e24d85bc6ade2671732a5ce5f143bc97ea6f8ef930e1219cc85b82b7695928270d23e87c2748d76ebf50107424b07f5af6fb2c0a0863b9228d0d833bce53c46d281caf794481863c5b6bd2451981ab19cbddb7bb6c802f04c9d928b28266314508e940fd0aff23533d", 0xe6}], 0x1, &(0x7f0000001d00)=ANY=[@ANYBLOB="380000000000000029000000360000003b03000000000000010300000007100000000202fb0100000000000000"], 0x38}}, {{&(0x7f0000001d40)={0xa, 0x4e24, 0xffffffff, @loopback, 0x1}, 0x1c, &(0x7f0000001ec0)=[{&(0x7f0000001d80)="716b6b3e59d8a4034096f6a1f069e7bddc92ee9d531d21c9b60fd99592dcf93921e0353f7266ded9775119c68df06a5956d3221bbf07bebcb01446caede626c00737a850883df78bf118cbfa4eeb7f28", 0x50}, {&(0x7f0000001e00)="94fd28cfd060d8407aaa8e2f9fb55112bd7048360e448e567a3645f2011103ac92de749315a55d6c8f0c5052ff84717a2f533f03dbb94e80f78ab52d101f78b6cbbff486b4febc35a9119f84a70c9ef8639f7cd5455b6b8b73afbceb4d174234022f2646c5136115b18de4e3b263d6f43f2186249ff01c1b526394aba4557df9240981026f", 0x85}], 0x2, &(0x7f0000001f00)=[@dstopts={{0x38, 0x29, 0x37, {0x21, 0x3, [], [@hao={0xc9, 0x10, @empty}, @ra={0x5, 0x2, 0x800}, @pad1]}}}, @hoplimit_2292={{0x14, 0x29, 0x8, 0x8}}, @tclass={{0x14, 0x29, 0x43, 0x1f}}, @flowinfo={{0x14, 0x29, 0xb, 0x5}}, @hoplimit={{0x14, 0x29, 0x34, 0xd9f4}}, @flowinfo={{0x14, 0x29, 0xb, 0x5}}, @rthdr_2292={{0x58, 0x29, 0x39, {0x88, 0x8, 0x2, 0x9, 0x0, [@private0, @local, @private0={0xfc, 0x0, [], 0x1}, @mcast1]}}}], 0x108}}, {{&(0x7f0000002040)={0xa, 0x4e24, 0x4b08, @loopback, 0x10000}, 0x1c, &(0x7f0000002140)=[{&(0x7f0000002080)="15daef39e825ab88dc876b8a2696af51d72a04c21eeab2ba43c901d857383f815d76474d162c41af567476528c2ddec18f94b67503e637ae897f1c7729a2cdc597721f12b6536b2b6802e4bd4180fcd78911e99e35b83eabdc87fb3054139465607740744adc4a464271e49c69403ddb4dd9f96c26ca7389b65f5f15188982aa4b843f8614c5d4009f50c1d8f07dc818293e3adfbbf37cc33d49357da6b3ef720ada777dd5d9e6e729439709da47f408d6a5560a4b9779ea56ebd95567a6b9", 0xbf}], 0x1, &(0x7f0000002180)=[@hoplimit={{0x14, 0x29, 0x34, 0x3}}, @hoplimit={{0x14, 0x29, 0x34, 0x409}}], 0x30}}], 0x4, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bind$netlink(r3, &(0x7f00000022c0)={0x10, 0x0, 0x25dfdbfe, 0x10000}, 0xc) ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(r0, 0xc058534f, &(0x7f0000000480)={{0x2d, 0x40}, 0x0, 0x7, 0x1, {0x8, 0x8}, 0x4, 0x1}) lseek(r0, 0x0, 0x2) r4 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r4, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:59 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x18000000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1194.177128][ T1332] XFS (loop1): Invalid superblock magic number 05:22:59 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x202, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) 05:22:59 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp, 0x1}, 0x20) r1 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r1, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r1, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r1, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r1, r2, 0x0, 0x8400fffffffa) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:22:59 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1194.360290][ T1364] loop5: detected capacity change from 264192 to 0 [ 1194.449868][ T35] audit: type=1800 audit(1609478579.911:2348): pid=1374 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="loop5" ino=1789 res=0 errno=0 [ 1194.472265][ T1366] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1194.525089][ T1375] loop1: detected capacity change from 1 to 0 [ 1194.551804][ T1385] binder: 1372:1385 unknown command 0 [ 1194.557321][ T1376] loop2: detected capacity change from 264192 to 0 [ 1194.572104][ T1366] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1194.594590][ T1375] XFS (loop1): Invalid superblock magic number [ 1194.607401][ T1385] binder: 1372:1385 ioctl c0306201 20000200 returned -22 [ 1194.627113][ T35] audit: type=1800 audit(1609478580.091:2349): pid=1376 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=16372 res=0 errno=0 [ 1194.652302][ T1388] loop4: detected capacity change from 264192 to 0 [ 1194.671163][ T1399] binder: 1383:1399 unknown command 0 05:23:00 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x19000000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1194.741761][ T1399] binder: 1383:1399 ioctl c0306201 20000200 returned -22 [ 1194.767403][ T1375] loop1: detected capacity change from 1 to 0 [ 1194.838045][ T35] audit: type=1800 audit(1609478580.211:2350): pid=1401 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=15859 res=0 errno=0 [ 1194.839848][ T1405] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:23:00 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x240, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) [ 1195.068087][ T1416] loop1: detected capacity change from 1 to 0 [ 1195.075007][ T1405] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1195.134852][ T1416] XFS (loop1): Invalid superblock magic number 05:23:00 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x20000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) 05:23:00 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x1a000000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:23:00 executing program 5: r0 = syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r1 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r1, 0x1000) r2 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000180)='/dev/dlm-monitor\x00', 0x54c81, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x209b, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r1, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r2, @ANYRESHEX=r0], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) ioctl$F2FS_IOC_SET_PIN_FILE(r2, 0x4004f50d, &(0x7f0000000100)) lseek(r1, 0x0, 0x2) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) ioctl$RNDCLEARPOOL(r3, 0x5206, &(0x7f0000000040)=0x7) r4 = open(&(0x7f0000000200)='./bus\x00', 0x4c902, 0x168) sendfile(r1, r4, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r5 = dup(r2) ioctl$KVM_SET_FPU(r5, 0x41a0ae8d, &(0x7f00000006c0)={[], 0x8001, 0x8, 0x11, 0x0, 0x863b, 0xf005, 0x1, [], 0x115a}) 05:23:00 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x24a, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) 05:23:00 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp, 0x1}, 0x20) r1 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r1, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r1, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r1, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r1, r2, 0x0, 0x8400fffffffa) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1195.384081][ T1430] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:23:00 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1195.487219][ T1441] loop1: detected capacity change from 1 to 0 [ 1195.560628][ T1448] loop2: detected capacity change from 264192 to 0 05:23:01 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x1b000000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1195.601931][ T1458] binder: 1446:1458 unknown command 0 [ 1195.609505][ T1441] XFS (loop1): Invalid superblock magic number [ 1195.617630][ T1454] binder: 1451:1454 unknown command 0 [ 1195.627867][ T1454] binder: 1451:1454 ioctl c0306201 20000200 returned -22 [ 1195.692571][ T1458] binder: 1446:1458 ioctl c0306201 20000200 returned -22 [ 1195.742881][ T1441] loop1: detected capacity change from 1 to 0 [ 1195.751471][ T1464] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:23:01 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x280, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) [ 1195.802211][ T1441] XFS (loop1): Invalid superblock magic number [ 1195.828667][ T1464] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:23:01 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x1c000000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1196.049839][ T1484] loop1: detected capacity change from 1 to 0 05:23:01 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x1d000000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1196.126940][ T1489] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1196.163072][ T1484] XFS (loop1): Invalid superblock magic number 05:23:01 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) r0 = syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r1 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r1, 0x1000) r2 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r1, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r2, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r1, 0x0, 0x2) arch_prctl$ARCH_GET_GS(0x1004, &(0x7f0000000100)) r4 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r1, r4, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4, 0x0, &(0x7f00000008c0)=[@register_looper], 0x0, 0x0, 0x0}) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000004c0), 0x0, 0x0, 0x0}) r5 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) sendmsg$NL80211_CMD_STOP_NAN(r5, &(0x7f00000004c0)={&(0x7f0000000380), 0xc, &(0x7f0000000480)={&(0x7f00000005c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r0, @ANYBLOB="00082bbd70036bdbdf25740000004a801e69d33504f7e31f32b384b8ff9781fbf04926326911ea21937a34a8d7bb0e0611aef6cfd9da7a41993d0fb78f0000008000000000fb314a9fd00299cc656bbdb4b324f1a49375ba3f86a4394b08b8ceb0"], 0x14}, 0x1, 0x0, 0x0, 0x4c041}, 0x4004000) write$USERIO_CMD_SET_PORT_TYPE(r3, &(0x7f0000000180)={0x1, 0x7}, 0x2) 05:23:01 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x20100000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1196.247591][ T1484] loop1: detected capacity change from 1 to 0 [ 1196.307176][ T1484] XFS (loop1): Invalid superblock magic number 05:23:01 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:23:01 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x292, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) 05:23:01 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1196.382492][ T1511] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1196.407799][ T1517] loop5: detected capacity change from 264192 to 0 05:23:02 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x1e000000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1196.652213][ T1530] binder: 1523:1530 unknown command 0 [ 1196.657727][ T1525] loop4: detected capacity change from 264192 to 0 [ 1196.666805][ T1530] binder: 1523:1530 ioctl c0306201 20000200 returned -22 [ 1196.693812][ T1531] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1196.714185][ T1538] loop1: detected capacity change from 1 to 0 05:23:02 executing program 5: r0 = syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r1 = creat(&(0x7f0000000400)='./file1\x00', 0xde) syslog(0x0, 0x0, 0x0) ftruncate(r1, 0x1000) ioctl$TCSBRKP(0xffffffffffffffff, 0x5425, 0x100) r2 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000580)=ANY=[@ANYBLOB="769299f3e4eefa0f000000ffffff0000000000", @ANYRESHEX=r0, @ANYRES32, @ANYRESDEC=r2, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0x9, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x5}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r1, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) r4 = openat$mice(0xffffffffffffff9c, &(0x7f0000000100)='/dev/input/mice\x00', 0x40) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f0000000180)={'batadv0\x00'}) sendfile(r1, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) setsockopt$ax25_SO_BINDTODEVICE(0xffffffffffffffff, 0x101, 0x19, &(0x7f0000000380)=@netrom={'nr', 0x0}, 0x10) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1196.756035][ T1531] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1196.773101][ T1545] loop2: detected capacity change from 264192 to 0 [ 1196.808639][ T1538] XFS (loop1): Invalid superblock magic number 05:23:02 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x1f000000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1196.930624][ T1538] loop1: detected capacity change from 1 to 0 [ 1196.982554][ T1538] XFS (loop1): Invalid superblock magic number 05:23:02 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x2e1, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) [ 1197.065805][ T1569] loop5: detected capacity change from 264192 to 0 [ 1197.090207][ T1568] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:23:02 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) openat$mixer(0xffffffffffffff9c, &(0x7f0000000180)='/dev/mixer\x00', 0x40102, 0x0) chdir(&(0x7f0000000000)='./file1\x00') open$dir(&(0x7f0000000100)='./bus\x00', 0x200800, 0x18e) r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x0, 0x0) ioctl$RTC_UIE_ON(r2, 0x7003) ioctl$RTC_SET_TIME(r2, 0x4024700a, &(0x7f0000000040)={0x1b, 0x0, 0x0, 0x9, 0x0, 0x7f}) fadvise64(r2, 0x5, 0xe2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES16=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1197.153556][ T1578] loop1: detected capacity change from 1 to 0 [ 1197.173919][ T1568] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1197.210901][ T1578] XFS (loop1): Invalid superblock magic number 05:23:02 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x20000000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1197.303204][ T1592] loop5: detected capacity change from 264192 to 0 [ 1197.334338][ T1578] loop1: detected capacity change from 1 to 0 [ 1197.347501][ T35] kauditd_printk_skb: 9 callbacks suppressed 05:23:02 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x21000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1197.347512][ T35] audit: type=1800 audit(1609478582.812:2360): pid=1599 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=15745 res=0 errno=0 05:23:02 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1197.406411][ T1603] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:23:02 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x300, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) 05:23:03 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1197.657276][ T1603] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:23:03 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x20100000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1197.719381][ T1619] loop1: detected capacity change from 1 to 0 [ 1197.738412][ T1620] loop4: detected capacity change from 264192 to 0 [ 1197.758624][ T1626] loop2: detected capacity change from 264192 to 0 [ 1197.772107][ T1620] binder: 1618:1620 unknown command 0 [ 1197.788640][ T1620] binder: 1618:1620 ioctl c0306201 20000200 returned -22 [ 1197.817136][ T35] audit: type=1800 audit(1609478583.282:2361): pid=1626 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="loop2" ino=1795 res=0 errno=0 [ 1197.884172][ T1619] XFS (loop1): Invalid superblock magic number [ 1197.920765][ T35] audit: type=1800 audit(1609478583.322:2362): pid=1620 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="loop4" ino=1796 res=0 errno=0 [ 1197.996588][ T1619] loop1: detected capacity change from 1 to 0 05:23:03 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x21000000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:23:03 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x30e, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) [ 1198.139495][ T35] audit: type=1800 audit(1609478583.602:2363): pid=1604 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="loop5" ino=1798 res=0 errno=0 05:23:03 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) r0 = syz_genetlink_get_family_id$nl80211(0x0) socket$bt_bnep(0x1f, 0x3, 0x4) chdir(&(0x7f0000000000)='./file1\x00') r1 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r1, 0x1000) r2 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r1, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r2, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) openat$apparmor_thread_current(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/attr/current\x00', 0x2, 0x0) r3 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/qrtr-tun\x00', 0x0) lseek(r3, 0x80, 0x4) r4 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) ioctl$VIDIOC_ENUM_FREQ_BANDS(0xffffffffffffffff, 0xc0405665, &(0x7f0000000480)={0x0, 0x4, 0x0, 0x800, 0x0, 0x1, 0x8}) sendmsg$NL80211_CMD_GET_KEY(r1, &(0x7f0000000400)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000380)={&(0x7f00000004c0)={0x44, r0, 0x2, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_KEY_IDX={0x5, 0x8, 0x2}, @NL80211_ATTR_KEY_DEFAULT_MGMT={0x4}, @NL80211_ATTR_KEY_DATA_WEP40={0x9, 0x7, "e6abdfd84e"}, @NL80211_ATTR_KEY_IDX={0x5, 0x8, 0x5}, @NL80211_ATTR_KEY_SEQ={0x10, 0xa, "ca184e5bb7a8cb3fecb77bbc"}]}, 0x44}, 0x1, 0x0, 0x0, 0x900}, 0x8010) sendfile(r1, r4, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000600)='./bus\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1198.228730][ T1663] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1198.265425][ T1668] loop1: detected capacity change from 1 to 0 05:23:03 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x22000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1198.470920][ T1663] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:23:04 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:23:04 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1198.511923][ T1668] XFS (loop1): Invalid superblock magic number 05:23:04 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x22000000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1198.634624][ T1668] loop1: detected capacity change from 1 to 0 [ 1198.670916][ T1690] binder: 1685:1690 unknown command 0 [ 1198.677249][ T1690] binder: 1685:1690 ioctl c0306201 20000200 returned -22 [ 1198.688438][ T35] audit: type=1800 audit(1609478584.152:2364): pid=1690 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=16355 res=0 errno=0 [ 1198.725265][ T1692] loop5: detected capacity change from 264192 to 0 05:23:04 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x36e, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) [ 1198.779017][ T35] audit: type=1800 audit(1609478584.242:2365): pid=1692 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="loop5" ino=1800 res=0 errno=0 [ 1198.878496][ T1703] loop2: detected capacity change from 264192 to 0 [ 1198.884008][ T35] audit: type=1800 audit(1609478584.342:2366): pid=1711 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=16373 res=0 errno=0 [ 1198.891513][ T1701] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1198.909292][ T35] audit: type=1800 audit(1609478584.372:2367): pid=1716 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="loop5" ino=1800 res=0 errno=0 [ 1198.927189][ T1703] FAT-fs (loop2): Unrecognized mount option "" or missing value 05:23:04 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) r3 = mmap$binder(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x1, 0x11, r0, 0x1) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0xc0, 0x0, &(0x7f0000001980)=[@free_buffer={0x40086303, r3}, @clear_death={0x400c630f, 0x1}, @transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x58, 0x18, &(0x7f0000001900)={@fd, @fd={0x66642a85, 0x0, r0}, @ptr={0x70742a85, 0x0, &(0x7f0000000900)=""/4088, 0x993, 0x0, 0x2c}}, &(0x7f0000000380)={0x0, 0x18, 0x30}}, 0x40}, @reply={0x40406301, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x68, 0x18, &(0x7f00000005c0)={@ptr={0x70742a85, 0x1, &(0x7f00000007c0)=""/200, 0xc8, 0x0, 0x33}, @ptr={0x70742a85, 0x0, &(0x7f0000001a80)=""/4096, 0x0, 0x1, 0xf}, @fd={0x66642a85, 0x0, r2}}, &(0x7f0000000180)={0x0, 0x28, 0x50}}}, @free_buffer, @request_death={0x400c630e, 0xfffffffe}], 0x0, 0x0, 0x0}) [ 1198.980807][ T1720] loop1: detected capacity change from 1 to 0 [ 1199.116341][ T1720] XFS (loop1): Invalid superblock magic number [ 1199.118498][ T1725] loop5: detected capacity change from 264192 to 0 [ 1199.150527][ T1701] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:23:04 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x37e, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) [ 1199.212587][ T35] audit: type=1800 audit(1609478584.682:2368): pid=1738 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=16351 res=0 errno=0 05:23:04 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x23000000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1199.439094][ T1744] loop1: detected capacity change from 1 to 0 [ 1199.467104][ T1744] XFS (loop1): Invalid superblock magic number 05:23:05 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1199.580855][ T1744] loop1: detected capacity change from 1 to 0 05:23:05 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r0, 0x1}, 0x20) r1 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r1, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r1, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r1, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r1, r2, 0x0, 0x8400fffffffa) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1199.644056][ T1755] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:23:05 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x380, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) 05:23:05 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x23000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1199.725935][ T1761] loop4: detected capacity change from 264192 to 0 [ 1199.771229][ T1766] binder: 1759:1766 unknown command 0 [ 1199.779093][ T1766] binder: 1759:1766 ioctl c0306201 20000200 returned -22 05:23:05 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x24000000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1199.828469][ T35] audit: type=1800 audit(1609478585.292:2369): pid=1761 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="loop4" ino=1801 res=0 errno=0 05:23:05 executing program 5: ioctl$SG_GET_ACCESS_COUNT(0xffffffffffffffff, 0x2289, &(0x7f0000000100)) syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1199.935004][ T1776] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1199.956095][ T1781] loop2: detected capacity change from 264192 to 0 [ 1199.973586][ T1783] loop1: detected capacity change from 1 to 0 [ 1200.066786][ T1776] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1200.096134][ T1783] XFS (loop1): Invalid superblock magic number 05:23:05 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x25000000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1200.165142][ T1801] loop5: detected capacity change from 264192 to 0 [ 1200.179915][ T1783] loop1: detected capacity change from 1 to 0 [ 1200.213954][ T1809] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1200.248160][ T1783] XFS (loop1): Invalid superblock magic number [ 1200.331659][ T1809] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:23:05 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x392, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) 05:23:05 executing program 4: syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:23:06 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x26000000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:23:06 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r0, 0x1}, 0x20) r1 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r1, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r1, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r1, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r1, r2, 0x0, 0x8400fffffffa) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:23:06 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x27000000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:23:06 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x24000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1200.747678][ T1828] loop1: detected capacity change from 1 to 0 [ 1200.761288][ T1831] binder: 1829:1831 unknown command 0 [ 1200.785500][ T1831] binder: 1829:1831 ioctl c0306201 20000200 returned -22 05:23:06 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000feff0000002838f4ff06008000181964a0ae585029b16c6db88057e69444e90303587598187cbaed203d604c4c7720d417d01970c4903b9e977e97bcf9765c8198b129bbd642d9fe603d2900714d637a0caa", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1200.899548][ T1836] loop2: detected capacity change from 264192 to 0 [ 1200.959260][ T1828] XFS (loop1): Invalid superblock magic number [ 1200.982659][ T1847] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1201.043318][ T1857] loop5: detected capacity change from 264192 to 0 [ 1201.092182][ T1828] loop1: detected capacity change from 1 to 0 [ 1201.116113][ T1847] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:23:06 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x28000000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:23:06 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x3b1, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) 05:23:07 executing program 4: syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1201.569849][ T1881] loop1: detected capacity change from 1 to 0 05:23:07 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r0, 0x1}, 0x20) r1 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r1, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r1, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r1, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r1, r2, 0x0, 0x8400fffffffa) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1201.633010][ T1880] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1201.706881][ T1881] XFS (loop1): Invalid superblock magic number [ 1201.721977][ T1893] binder: 1892:1893 unknown command 0 [ 1201.727738][ T1893] binder: 1892:1893 ioctl c0306201 20000200 returned -22 05:23:07 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x3f000000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1201.840017][ T1897] loop2: detected capacity change from 264192 to 0 [ 1201.860760][ T1881] loop1: detected capacity change from 1 to 0 05:23:07 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x25000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1201.933556][ T1881] XFS (loop1): Invalid superblock magic number [ 1201.940246][ T1913] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:23:07 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x3c0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) 05:23:07 executing program 5: r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x0, 0x0) ioctl$RTC_UIE_ON(r0, 0x7003) ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000040)={0x1b, 0x0, 0x0, 0x9, 0x0, 0x7f}) fadvise64(r0, 0x5, 0xe2, 0x0) r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x0, 0x0) ioctl$RTC_UIE_ON(r1, 0x7003) syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./bus\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000500)=ANY=[@ANYRES64=0x0, @ANYRES32=r0, @ANYRES64, @ANYRES64=r0, @ANYRES32, @ANYRESHEX=r0, @ANYRESOCT=r0, @ANYRESDEC=r0, @ANYRESDEC=r1]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r2, @ANYBLOB="02000000000007ffff100000d0fe55f9e98b899f5cbd6f5d2f63672c777594a159e6e207066085a3b73d38cee39f10", @ANYRESDEC=r3, @ANYBLOB="0000000058e2050800154800950000000055f047f5adcf8977a22269bef9a6"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r4 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r4, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4b, 0x0, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0}) [ 1202.140936][ T1913] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:23:07 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x40000000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1202.231915][ T1930] loop5: detected capacity change from 264192 to 0 [ 1202.251187][ T1931] loop1: detected capacity change from 1 to 0 05:23:07 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x0, 0x0) ioctl$RTC_UIE_ON(r1, 0x7003) ioctl$RTC_SET_TIME(r1, 0x4024700a, &(0x7f0000000040)={0x1b, 0x0, 0x0, 0x9, 0x0, 0x7f}) fadvise64(r1, 0x5, 0xe2, 0x0) ioctl$FS_IOC_GETFSLABEL(r1, 0x81009431, &(0x7f00000006c0)) r2 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r2, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1202.446353][ T1931] XFS (loop1): Invalid superblock magic number [ 1202.543884][ T1947] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1202.588600][ T1931] loop1: detected capacity change from 1 to 0 05:23:08 executing program 4: syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:23:08 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x40000800, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:23:08 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1202.649789][ T1955] loop5: detected capacity change from 264192 to 0 05:23:08 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x3e6, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) [ 1202.763797][ T1968] binder: 1964:1968 unknown command 0 [ 1202.769478][ T35] kauditd_printk_skb: 10 callbacks suppressed [ 1202.769488][ T35] audit: type=1800 audit(1609478588.232:2380): pid=1965 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="loop5" ino=1809 res=0 errno=0 [ 1202.821854][ T1966] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1202.853367][ T1968] binder: 1964:1968 ioctl c0306201 20000200 returned -22 05:23:08 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r1, @ANYBLOB="000000005808000095000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) ioctl$sock_inet_udp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000100)) sendfile(r0, r2, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:23:08 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x26000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1202.877577][ T35] audit: type=1800 audit(1609478588.302:2381): pid=1955 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="loop5" ino=1809 res=0 errno=0 [ 1202.900063][ T35] audit: type=1800 audit(1609478588.312:2382): pid=1972 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=16353 res=0 errno=0 [ 1202.976303][ T1978] loop2: detected capacity change from 264192 to 0 [ 1203.018486][ T1966] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1203.030757][ T35] audit: type=1800 audit(1609478588.492:2383): pid=1983 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=16371 res=0 errno=0 [ 1203.030905][ T1978] binder: 1977:1978 unknown command 0 05:23:08 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x48000000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1203.143660][ T35] audit: type=1800 audit(1609478588.612:2384): pid=1985 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=16354 res=0 errno=0 [ 1203.155512][ T1978] binder: 1977:1978 ioctl c0306201 20000200 returned -22 [ 1203.201821][ T1991] loop1: detected capacity change from 1 to 0 [ 1203.291352][ T1998] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:23:08 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x4c000000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1203.345968][ T1991] XFS (loop1): Invalid superblock magic number [ 1203.395248][ T1991] loop1: detected capacity change from 1 to 0 05:23:08 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x3e7, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) [ 1203.574958][ T2021] loop1: detected capacity change from 1 to 0 [ 1203.587460][ T2017] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:23:09 executing program 4: syz_mount_image$msdos(0x0, &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1203.693139][ T2021] XFS (loop1): Invalid superblock magic number [ 1203.703660][ T2017] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:23:09 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x5c000000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:23:09 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1203.855124][ T2021] loop1: detected capacity change from 1 to 0 [ 1203.880196][ T2040] loop4: detected capacity change from 264192 to 0 [ 1203.897601][ T2040] binder: 2036:2040 unknown command 0 [ 1203.907386][ T2040] binder: 2036:2040 ioctl c0306201 20000200 returned -22 [ 1203.908147][ T1988] loop5: detected capacity change from 264192 to 0 [ 1203.925503][ T35] audit: type=1800 audit(1609478589.392:2385): pid=2040 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=16374 res=0 errno=0 [ 1203.975679][ T35] audit: type=1800 audit(1609478589.442:2386): pid=2059 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=16371 res=0 errno=0 [ 1203.996649][ T1988] FAT-fs (loop5): Unrecognized mount option "" or missing value [ 1204.004464][ T2041] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:23:09 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x60000000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:23:09 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x500, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) 05:23:09 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x68000000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) 05:23:09 executing program 5: syz_mount_image$msdos(&(0x7f0000000100)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x3000006, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000180)='TIPCv2\x00') sendmsg$TIPC_NL_MON_GET(r0, &(0x7f0000000400)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000380)={&(0x7f0000000940)={0x156c, r1, 0x108, 0x70bd2d, 0x25dfdbfb, {}, [@TIPC_NLA_SOCK={0x48, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_CON={0x34, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x3}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x7fff}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x600}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x8}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x81}]}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x6}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}, @TIPC_NLA_LINK={0x24, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xff}]}]}, @TIPC_NLA_LINK={0xb0, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}]}, @TIPC_NLA_LINK_PROP={0x3c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfffffff8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1c}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x69b}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}]}, @TIPC_NLA_LINK_PROP={0x3c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x400}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1f}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x200}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7035}]}]}, @TIPC_NLA_NODE={0x1210, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ID={0xb4, 0x3, "b76e17c3871aebc46cd23fc045225725d8f968cec2c5173c6b6dd4aec25660ccacc7b2d24e0781789a33075b3bb3ecc9ecf87bb49751e6d5e9bc2a23c7ffb1db605c0130739dcc8c9d11162fc9110aa286ab4a440ea33a3c118115cdd99770587b0a548d65476953800e913e82360477b23d8951f76616b8f567a75305120370284c7b9698f15983bfb4d377640587f1046453ca452bd00f0a7a83c2d5845fad86f004d4e7d68d01c138d5a8ef74c7f5"}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0xe4b}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ID={0xa8, 0x3, "73cf72fc49c0aeb39f80947245f0c40d1b57b689fac6b2fc5d94a7c7cf73c3a00797f70de4c3f27b2f569dde317daa8899ec1808ab5c53fc3c26f8279d2eac498bad5db4bfd979e50eb1084fda1e3b68a80c6829ad3eb67c9d424c928902f71b32494e62bae97acb5e36f2985ff4fc6cbf27e3cfa1a8563ca485c04678f8713edade035191bdb7bb0f9cb8dcea85f839ddec5ff4e217d2690c06383879be8ca197a59284"}, @TIPC_NLA_NODE_ID={0x44, 0x3, "05f2d45b7585ad439f0d7a5c4d7eee63e495496d3a463260c5451da7c41a4137308ff603635526e3d4acadb6ea0b38cb4785157f13c4f26a86c46b91140111f2"}, @TIPC_NLA_NODE_ID={0x1004, 0x3, "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"}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x80}, @TIPC_NLA_NODE_KEY={0x4a, 0x4, {'gcm(aes)\x00', 0x22, "875f420546f28fd6c918e445fe6140beb54399a30f235785b4d1b529b88b57812685"}}]}, @TIPC_NLA_BEARER={0xf4, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1b}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x5}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x84}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x10000}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8001}]}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x81}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e22, @loopback}}, {0x20, 0x2, @in6={0xa, 0x4e21, 0xf6, @private0, 0x4}}}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x8001}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e23, 0x0, @remote, 0x4588}}, {0x14, 0x2, @in={0x2, 0x4e23, @private=0xa010102}}}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x2}, @TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e24, @rand_addr=0x64010102}}, {0x14, 0x2, @in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0xd}}}}}]}, @TIPC_NLA_BEARER={0x12c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xd738}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7fffffff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xffffffc1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}]}, @TIPC_NLA_BEARER_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x20}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1233}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xc5a9}]}, @TIPC_NLA_BEARER_NAME={0xf, 0x1, @l2={'ib', 0x3a, 'geneve1\x00'}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e22, 0xa4e, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x2}}, {0x14, 0x2, @in={0x2, 0x4e21, @private=0xa010100}}}}, @TIPC_NLA_BEARER_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0xf708}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}]}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e20, @local}}, {0x20, 0x2, @in6={0xa, 0x4e21, 0xda2d, @ipv4={[], [], @remote}, 0x297ce961}}}}, @TIPC_NLA_BEARER_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xc0000000}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xb}]}]}, @TIPC_NLA_MON={0xc, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0xfff}]}]}, 0x156c}, 0x1, 0x0, 0x0, 0x1}, 0x24004005) lseek(r0, 0x0, 0x2) r2 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r2, 0x0, 0x8400fffffffa) getdents64(r0, &(0x7f0000000280)=""/112, 0x70) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x0, 0x0, &(0x7f00000008c0), 0x0, 0x0, 0x0}) 05:23:09 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x27000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1204.230604][ T2071] binder: 2064:2071 unknown command 0 [ 1204.236103][ T2071] binder: 2064:2071 ioctl c0306201 20000200 returned -22 [ 1204.237302][ T2068] loop2: detected capacity change from 264192 to 0 [ 1204.256448][ T35] audit: type=1800 audit(1609478589.722:2387): pid=2071 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=16356 res=0 errno=0 [ 1204.431235][ T2085] loop1: detected capacity change from 2 to 0 [ 1204.452810][ T2083] loop5: detected capacity change from 264192 to 0 [ 1204.460766][ T2084] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1204.578740][ T35] audit: type=1800 audit(1609478590.042:2388): pid=2094 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=16260 res=0 errno=0 05:23:10 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x6c000000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1204.623501][ T2085] XFS (loop1): Invalid superblock magic number [ 1204.711434][ T2085] loop1: detected capacity change from 2 to 0 05:23:10 executing program 4: syz_mount_image$msdos(0x0, &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x0, 0x7) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:23:10 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x600, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) 05:23:10 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) syz_genetlink_get_family_id$nl80211(0x0) r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r1 = dup2(r0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000480)="33c10291b811c56af144ef95039ca36b7757913aed197e3c8e7361507819ee2737033292188626f0ccee0efc9888c49d6a6f0fc8b823c13c4243377c0f34e9b1f02357a0abafc73f341d767e1185893c1a8aae31131a68617710180b1f7e89dbceebd17eda90ba54ce7d66df87525d72d52ddaabe95aae07d39f2cf94102d9bd11607032ea510bc67a7c5e32c96e1982ffef79", &(0x7f0000000100)=@udp=r1, 0x1}, 0x20) r2 = creat(&(0x7f0000000240)='./bus\x00', 0x0) syslog(0x0, 0x0, 0x0) ftruncate(r2, 0x1000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819daa8", @ANYRES32=r2, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC, @ANYBLOB="000000005808000095000000000000002a1dd7a3"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x24, &(0x7f0000000180)=""/36, 0x41000, 0x0, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x0, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r2, 0x0, 0x2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r2, r3, 0x0, 0x8400fffffffa) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 1204.943811][ T2108] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1205.015850][ T2114] loop4: detected capacity change from 264192 to 0 [ 1205.039572][ T2114] binder: 2112:2114 unknown command 0 [ 1205.051766][ T2114] binder: 2112:2114 ioctl c0306201 20000200 returned -22 [ 1205.106752][ T35] audit: type=1800 audit(1609478590.572:2389): pid=2114 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=15954 res=0 errno=0 [ 1205.118685][ T2108] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1205.134840][ T2121] loop1: detected capacity change from 3 to 0 05:23:10 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x74000000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1205.163269][ T2121] XFS (loop1): Invalid superblock magic number [ 1205.256871][ T2121] loop1: detected capacity change from 3 to 0 [ 1205.268413][ T2138] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:23:10 executing program 5: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0x3, 0x0, &(0x7f0000000080), 0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="e4be1b3dfd25cd4ff0a8d088cd3ac67ec1f7af2a2373142482782cfd48a6912903fa95f909e257f06dae24ef790400148c02cd8d68b0e0662f4e9f3146ab7a50cf89fb1a07fedde6ad261de8b9d163b1f04a52798185bc84c72ba065cf7563fea9d6d79c25b93a975c44f8c9a160003abf3a20179072f687539494e8abfc9f5e55a2fd1b7b6f3a88b3ed", @ANYRES64, @ANYRESOCT, @ANYRES16]) syz_genetlink_get_family_id$nl80211(0x0) chdir(&(0x7f0000000000)='./file1\x00') r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) r1 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) r2 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000200)={0x44, 0x0, &(0x7f00000004c0)=[@transaction={0x40046305, {0x0, 0x400c630e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r3 = dup2(r2, r1) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) ioctl$sock_inet_SIOCSIFFLAGS(r3, 0x8914, &(0x7f0000000100)={'batadv_slave_1\x00'}) syslog(0x0, 0x0, 0x0) ftruncate(r0, 0x1000) r4 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0x2038, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000feff0000002838f4ff060080001819", @ANYRES32=r0, @ANYBLOB="00000000000007ffff100000d0fe55f9e98b89885cbd6f702f63672c777594a159e6e20706608586c23d38cee39f10", @ANYRESDEC=r4, @ANYBLOB="00080000a0c5a3ddbe51f91fd9000000000000"], &(0x7f0000000140)='syzkaller\x00', 0xfffff0db, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x6}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x1, 0x1, 0xffffffff}, 0x10, 0xffffffffffffffff}, 0x78) lseek(r0, 0x0, 0x2) r5 = open(&(0x7f0000000200)='./bus\x00', 0x4c102, 0x168) sendfile(r0, r5, 0x0, 0x8400fffffffa) mknod(&(0x7f0000000440)='./file1\x00', 0x8000, 0x7) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f00000008c0)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 05:23:10 executing program 3: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x28000000, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@logbsize={'logbsize', 0x3d, [0x31]}}, {@usrquota='usrquota'}]}) [ 1205.313340][ T2141] loop2: detected capacity change from 264192 to 0 [ 1205.335733][ T2121] XFS (loop1): Invalid superblock magic number [ 1205.357461][ T2154] binder: 2136:2154 unknown command 0 [ 1205.363095][ T2154] binder: 2136:2154 ioctl c0306201 20000200 returned -22 [ 1205.414480][ T2138] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] 05:23:10 executing program 1: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x700, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@logbufs={'logbufs', 0x3d, 0x7}}, {@usrquota='usrquota'}]}) 05:23:10 executing program 0: syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x7a000000, &(0x7f0000000140)={[{@logbufs={'logbufs'}}, {@logbsize={'logbsize', 0x3d, [0x31]}}]}) [ 1205.523362][ T2162] FAT-fs (loop5): Unrecognized mount option "ä¾=ý%ÍOð¨ÐˆÍ:Æ~Á÷¯*#s$‚x" or missing value [ 1205.591987][ T2168] binder: 2161:2168 unknown command 0 [ 1205.597382][ T2168] binder: 2161:2168 ioctl c0306201 20000200 returned -22 [ 1205.632123][ T2162] binder: 2161:2162 ioctl 8914 20000100 returned -22 [ 1205.654221][ T2174] loop1: detected capacity change from 3 to 0 [ 1205.671176][ C1] ================================================================== [ 1205.681196][ C1] BUG: KCSAN: data-race in blk_stat_add / blk_stat_timer_fn [ 1205.688490][ C1] [ 1205.690804][ C1] write to 0xffffe8ffffd35c50 of 8 bytes by interrupt on cpu 0: [ 1205.698419][ C1] blk_stat_timer_fn+0x313/0x410 [ 1205.703362][ C1] call_timer_fn+0x2e/0x240 [ 1205.707864][ C1] expire_timers+0x116/0x260 [ 1205.712440][ C1] __run_timers+0x338/0x3d0 [ 1205.716941][ C1] run_timer_softirq+0x19/0x30 [ 1205.721691][ C1] __do_softirq+0x13c/0x2c3 [ 1205.726186][ C1] asm_call_irq_on_stack+0xf/0x20 [ 1205.731202][ C1] do_softirq_own_stack+0x32/0x40 [ 1205.736224][ C1] __irq_exit_rcu+0xb4/0xc0 [ 1205.740707][ C1] sysvec_apic_timer_interrupt+0x74/0x90 [ 1205.746331][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1205.752302][ C1] kcsan_setup_watchpoint+0x1fc/0x4e0 [ 1205.757664][ C1] __rcu_read_unlock+0x3a/0x250 [ 1205.762518][ C1] aa_file_perm+0x132/0xdb0 [ 1205.767047][ C1] apparmor_file_permission+0x108/0x270 [ 1205.772578][ C1] security_file_permission+0x42/0xa0 [ 1205.777958][ C1] rw_verify_area+0x136/0x250 [ 1205.782636][ C1] vfs_write+0xe2/0x7c0 [ 1205.786799][ C1] __x64_sys_pwrite64+0xf5/0x150 [ 1205.791734][ C1] do_syscall_64+0x39/0x80 [ 1205.796141][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1205.802017][ C1] [ 1205.804333][ C1] read to 0xffffe8ffffd35c50 of 8 bytes by interrupt on cpu 1: [ 1205.811855][ C1] blk_stat_add+0x10c/0x230 [ 1205.816363][ C1] __blk_mq_end_request+0x142/0x230 [ 1205.821585][ C1] scsi_end_request+0x2a6/0x470 [ 1205.826430][ C1] scsi_io_completion+0x104/0xfb0 [ 1205.831453][ C1] scsi_finish_command+0x263/0x2b0 [ 1205.836561][ C1] scsi_softirq_done+0xdf/0x440 [ 1205.841408][ C1] blk_done_softirq+0x145/0x190 [ 1205.846256][ C1] __do_softirq+0x13c/0x2c3 [ 1205.850746][ C1] asm_call_irq_on_stack+0xf/0x20 [ 1205.855771][ C1] do_softirq_own_stack+0x32/0x40 [ 1205.860791][ C1] __irq_exit_rcu+0xb4/0xc0 [ 1205.865280][ C1] common_interrupt+0xb5/0x130 [ 1205.870049][ C1] asm_common_interrupt+0x1e/0x40 [ 1205.875072][ C1] __sanitizer_cov_trace_pc+0x4/0x60 [ 1205.880350][ C1] __inode_add_bytes+0xa3/0xb0 [ 1205.885114][ C1] dquot_claim_space_nodirty+0x1de/0x520 [ 1205.890735][ C1] ext4_da_update_reserve_space+0x121/0x2e0 [ 1205.896624][ C1] ext4_ext_map_blocks+0x1858/0x1fc0 [ 1205.901913][ C1] ext4_map_blocks+0x700/0xfc0 [ 1205.906664][ C1] mpage_map_one_extent+0x10d/0x390 [ 1205.911849][ C1] ext4_writepages+0xa51/0x1e50 [ 1205.916680][ C1] do_writepages+0x7b/0x150 [ 1205.921190][ C1] __filemap_fdatawrite_range+0x19d/0x1d0 [ 1205.926907][ C1] filemap_write_and_wait_range+0x8b/0x2a0 [ 1205.932718][ C1] __iomap_dio_rw+0x38c/0x9b0 [ 1205.937393][ C1] iomap_dio_rw+0x30/0x70 [ 1205.941709][ C1] ext4_file_read_iter+0x3bd/0x420 [ 1205.946805][ C1] generic_file_splice_read+0x22a/0x310 [ 1205.952351][ C1] splice_direct_to_actor+0x2aa/0x650 [ 1205.957719][ C1] do_splice_direct+0xf5/0x170 [ 1205.962481][ C1] do_sendfile+0x5db/0xca0 [ 1205.966884][ C1] __x64_sys_sendfile64+0xf2/0x130 [ 1205.971977][ C1] do_syscall_64+0x39/0x80 [ 1205.976379][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1205.982287][ C1] [ 1205.984601][ C1] Reported by Kernel Concurrency Sanitizer on: [ 1205.990730][ C1] CPU: 1 PID: 2154 Comm: syz-executor.2 Not tainted 5.11.0-rc1-syzkaller #0 [ 1205.999398][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1206.009441][ C1] ================================================================== [ 1206.017499][ C1] Kernel panic - not syncing: panic_on_warn set ... [ 1206.024072][ C1] CPU: 1 PID: 2154 Comm: syz-executor.2 Not tainted 5.11.0-rc1-syzkaller #0 [ 1206.032743][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1206.042782][ C1] Call Trace: [ 1206.043258][ T2173] XFS (loop0): invalid logbufsize: 1 [not 16k,32k,64k,128k or 256k] [ 1206.046047][ C1] [ 1206.046055][ C1] dump_stack+0x116/0x15d [ 1206.061144][ C1] panic+0x1e7/0x5fa [ 1206.065024][ C1] ? vprintk_emit+0x2e2/0x360 [ 1206.069696][ C1] kcsan_report+0x67b/0x680 [ 1206.075337][ C1] ? __rcu_read_unlock+0x3a/0x250 [ 1206.081230][ C1] ? kcsan_setup_watchpoint+0x47b/0x4e0 [ 1206.088232][ C1] ? blk_stat_add+0x10c/0x230 [ 1206.092917][ C1] ? __blk_mq_end_request+0x142/0x230 [ 1206.099546][ C1] ? scsi_end_request+0x2a6/0x470 [ 1206.104569][ C1] ? scsi_io_completion+0x104/0xfb0 [ 1206.109760][ C1] ? scsi_finish_command+0x263/0x2b0 [ 1206.116140][ C1] ? scsi_softirq_done+0xdf/0x440 [ 1206.121160][ C1] ? blk_done_softirq+0x145/0x190 [ 1206.127514][ C1] ? __do_softirq+0x13c/0x2c3 [ 1206.132199][ C1] ? asm_call_irq_on_stack+0xf/0x20 [ 1206.137400][ C1] ? do_softirq_own_stack+0x32/0x40 [ 1206.142601][ C1] ? __irq_exit_rcu+0xb4/0xc0 [ 1206.148957][ C1] ? common_interrupt+0xb5/0x130 [ 1206.153905][ C1] ? asm_common_interrupt+0x1e/0x40 [ 1206.160533][ C1] ? __sanitizer_cov_trace_pc+0x4/0x60 [ 1206.165990][ C1] ? __inode_add_bytes+0xa3/0xb0 [ 1206.170939][ C1] ? dquot_claim_space_nodirty+0x1de/0x520 [ 1206.176944][ C1] ? ext4_da_update_reserve_space+0x121/0x2e0 [ 1206.183010][ C1] ? ext4_ext_map_blocks+0x1858/0x1fc0 [ 1206.189447][ C1] ? ext4_map_blocks+0x700/0xfc0 [ 1206.194378][ C1] ? mpage_map_one_extent+0x10d/0x390 [ 1206.200450][ C1] ? ext4_writepages+0xa51/0x1e50 [ 1206.205478][ C1] ? do_writepages+0x7b/0x150 [ 1206.210168][ C1] ? __filemap_fdatawrite_range+0x19d/0x1d0 [ 1206.216061][ C1] ? filemap_write_and_wait_range+0x8b/0x2a0 [ 1206.222043][ C1] ? __iomap_dio_rw+0x38c/0x9b0 [ 1206.226886][ C1] ? iomap_dio_rw+0x30/0x70 [ 1206.231864][ C1] ? ext4_file_read_iter+0x3bd/0x420 [ 1206.238224][ C1] ? generic_file_splice_read+0x22a/0x310 [ 1206.245665][ C1] ? splice_direct_to_actor+0x2aa/0x650 [ 1206.251217][ C1] ? do_splice_direct+0xf5/0x170 [ 1206.256304][ C1] ? do_sendfile+0x5db/0xca0 [ 1206.262581][ C1] ? __x64_sys_sendfile64+0xf2/0x130 [ 1206.267868][ C1] ? do_syscall_64+0x39/0x80 [ 1206.273861][ C1] ? entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1206.280637][ C1] ? ext4_put_io_end_defer+0x1b9/0x1d0 [ 1206.286114][ C1] kcsan_setup_watchpoint+0x47b/0x4e0 [ 1206.291480][ C1] blk_stat_add+0x10c/0x230 [ 1206.297746][ C1] __blk_mq_end_request+0x142/0x230 [ 1206.302934][ C1] scsi_end_request+0x2a6/0x470 [ 1206.307780][ C1] scsi_io_completion+0x104/0xfb0 [ 1206.313953][ C1] scsi_finish_command+0x263/0x2b0 [ 1206.319102][ C1] scsi_softirq_done+0xdf/0x440 [ 1206.323953][ C1] blk_done_softirq+0x145/0x190 [ 1206.328801][ C1] __do_softirq+0x13c/0x2c3 [ 1206.333847][ C1] asm_call_irq_on_stack+0xf/0x20 [ 1206.338881][ C1] [ 1206.342275][ C1] do_softirq_own_stack+0x32/0x40 [ 1206.347303][ C1] __irq_exit_rcu+0xb4/0xc0 [ 1206.353477][ C1] common_interrupt+0xb5/0x130 [ 1206.358254][ C1] asm_common_interrupt+0x1e/0x40 [ 1206.363269][ C1] RIP: 0010:__sanitizer_cov_trace_pc+0x4/0x60 [ 1206.370140][ C1] Code: b6 05 48 89 de e8 dc 75 26 00 5b c3 66 2e 0f 1f 84 00 00 00 00 00 e9 eb 97 10 00 cc cc cc cc cc cc cc cc cc cc cc 48 8b 04 24 <65> 48 8b 0c 25 00 6d 01 00 65 8b 15 f8 b7 bb 7e f7 c2 00 01 ff 00 [ 1206.391020][ C1] RSP: 0018:ffffc90005893450 EFLAGS: 00000293 [ 1206.397807][ C1] RAX: ffffffff817321c3 RBX: 0000000000000000 RCX: 0000000000000205 [ 1206.406809][ C1] RDX: ffff88803ba95000 RSI: 0000000000000000 RDI: 00000000000001ff [ 1206.414776][ C1] RBP: 0000000000000000 R08: ffffffff8173218e R09: 000188810d9127ad [ 1206.422869][ C1] R10: 0001ffffffffffff R11: ffff88803ba95000 R12: 0000000000000000 [ 1206.431082][ C1] R13: 0000000000000578 R14: ffff88810d9127ac R15: ffff88810d9127b0 [ 1206.439676][ C1] ? __inode_add_bytes+0x6e/0xb0 [ 1206.444620][ C1] ? __inode_add_bytes+0xa3/0xb0 [ 1206.450588][ C1] __inode_add_bytes+0xa3/0xb0 [ 1206.455933][ C1] dquot_claim_space_nodirty+0x1de/0x520 [ 1206.461582][ C1] ? percpu_counter_add_batch+0xe1/0x100 [ 1206.466335][ T2184] binder: 2161:2184 unknown command 0 [ 1206.467204][ C1] ext4_da_update_reserve_space+0x121/0x2e0 [ 1206.479770][ C1] ext4_ext_map_blocks+0x1858/0x1fc0 [ 1206.484998][ T2184] binder: 2161:2184 ioctl c0306201 20000200 returned -22 [ 1206.485050][ C1] ? ext4_es_lookup_extent+0x221/0x500 [ 1206.497488][ C1] ext4_map_blocks+0x700/0xfc0 [ 1206.502239][ C1] ? ext4_alloc_io_end_vec+0x2e/0xd0 [ 1206.509783][ C1] mpage_map_one_extent+0x10d/0x390 [ 1206.510328][ T2183] binder: 2161:2183 ioctl 8914 20000100 returned -22 [ 1206.514979][ C1] ext4_writepages+0xa51/0x1e50 [ 1206.515001][ C1] ? balance_dirty_pages_ratelimited+0x6bf/0x8b0 [ 1206.534330][ C1] ? up_write+0x27/0xc0 [ 1206.538486][ C1] ? ext4_fc_stop_update+0x4e/0xd0 [ 1206.543588][ C1] ? ext4_buffered_write_iter+0x360/0x3d0 [ 1206.549310][ C1] ? ext4_readpage+0x180/0x180 [ 1206.554067][ C1] do_writepages+0x7b/0x150 [ 1206.558583][ C1] ? _raw_spin_unlock+0x22/0x40 [ 1206.565248][ C1] __filemap_fdatawrite_range+0x19d/0x1d0 [ 1206.570973][ C1] filemap_write_and_wait_range+0x8b/0x2a0 [ 1206.578167][ C1] __iomap_dio_rw+0x38c/0x9b0 [ 1206.582881][ C1] ? aa_file_perm+0x132/0xdb0 [ 1206.587575][ C1] iomap_dio_rw+0x30/0x70 [ 1206.591899][ C1] ext4_file_read_iter+0x3bd/0x420 [ 1206.596999][ C1] generic_file_splice_read+0x22a/0x310 [ 1206.603156][ C1] ? splice_shrink_spd+0x60/0x60 [ 1206.608101][ C1] splice_direct_to_actor+0x2aa/0x650 [ 1206.613467][ C1] ? do_splice_direct+0x170/0x170 [ 1206.620089][ C1] do_splice_direct+0xf5/0x170 [ 1206.624859][ C1] do_sendfile+0x5db/0xca0 [ 1206.629272][ C1] __x64_sys_sendfile64+0xf2/0x130 [ 1206.634381][ C1] do_syscall_64+0x39/0x80 [ 1206.638793][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1206.645250][ C1] RIP: 0033:0x45e219 [ 1206.649454][ C1] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1206.669514][ C1] RSP: 002b:00007efe351bac68 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1206.677927][ C1] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000045e219 [ 1206.685901][ C1] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000007 [ 1206.694097][ C1] RBP: 000000000119c070 R08: 0000000000000000 R09: 0000000000000000 [ 1206.702294][ C1] R10: 00008400fffffffa R11: 0000000000000246 R12: 000000000119c034 [ 1206.711648][ C1] R13: 00007ffdc922e5cf R14: 00007efe351bb9c0 R15: 000000000119c034 [ 1206.720547][ C1] Kernel Offset: disabled [ 1206.724975][ C1] Rebooting in 86400 seconds..