program: r0 = socket$netlink(0x10, 0x3, 0x14) unshare(0x22020600) syz_mount_image$nilfs2(&(0x7f0000005980), &(0x7f0000000300)='./file1\x00', 0x0, &(0x7f00000002c0)=ANY=[], 0x1, 0xaca, &(0x7f0000000e00)="$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") r1 = creat(&(0x7f0000000100)='./file1\x00', 0x2) r2 = syz_open_dev$loop(&(0x7f0000000640), 0x0, 0x22540) ioctl$LOOP_SET_STATUS(r2, 0x4c02, &(0x7f00000000c0)={0x0, {}, 0x0, {}, 0x40010001, 0x2, 0xa, 0x1d, "9e959f16b6787b08aa26e66c4056a51695284854c382ec6bcfeef4fb0efcc1d8a6078ed98e203fd5f0643902dd8f6fac274de9d940bba5e51e92bbd4ce85450d", "f625c1076e4c36c800def96015e0fb7e904d865c2fdc458ec58d347f41be5a08", [0x4, 0x7]}) ioctl$FS_IOC_FIEMAP(r1, 0xc020660b, 0x0) r3 = syz_open_procfs$namespace(0x0, &(0x7f0000000140)='ns/mnt\x00') unlink(&(0x7f0000000580)='./file1\x00') setns(r3, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) [ 70.040350][ T5096] Bluetooth: hci0: command tx timeout [ 71.176399][ T5111] loop0: detected capacity change from 0 to 2048 [ 71.232073][ T5113] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 71.288478][ T5111] loop0: detected capacity change from 2048 to 0 [ 71.299135][ T5111] syz.0.0: attempt to access beyond end of device [ 71.299135][ T5111] loop0: rw=0, sector=102, nr_sectors = 2 limit=0 [ 71.317739][ T5111] NILFS (loop0): I/O error reading b-tree node block (ino=3, blocknr=51) [ 71.321551][ T5111] ------------[ cut here ]------------ [ 71.323734][ T5111] kernel BUG at fs/nilfs2/dir.c:544! [ 71.336363][ T5111] Oops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN NOPTI [ 71.339044][ T5111] CPU: 0 UID: 0 PID: 5111 Comm: syz.0.0 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 71.342585][ T5111] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 71.346432][ T5111] RIP: 0010:nilfs_delete_entry+0x359/0x360 [ 71.348595][ T5111] Code: e8 dc d9 88 fe eb b9 44 89 f9 80 e1 07 fe c1 38 c1 0f 8c 10 ff ff ff 4c 89 ff e8 92 d9 88 fe e9 03 ff ff ff e8 08 26 1f fe 90 <0f> 0b 0f 1f 44 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 [ 71.355136][ T5111] RSP: 0018:ffffc90002d8fb18 EFLAGS: 00010287 [ 71.357481][ T5111] RAX: ffffffff8375c018 RBX: 0000000000000068 RCX: 0000000000040000 [ 71.360322][ T5111] RDX: ffffc9000b5e2000 RSI: 0000000000001502 RDI: 0000000000001503 [ 71.363343][ T5111] RBP: 00000000fffffffb R08: ffffffff8375bede R09: 1ffff110039a7a1d [ 71.366247][ T5111] R10: dffffc0000000000 R11: ffffed10039a7a1e R12: ffffea000128f7c0 [ 71.369096][ T5111] R13: ffff88804a3df050 R14: 0000000000000038 R15: ffff88804a3df038 [ 71.372035][ T5111] FS: 00007fb6bbf306c0(0000) GS:ffff88801fc00000(0000) knlGS:0000000000000000 [ 71.375264][ T5111] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 71.377764][ T5111] CR2: 0000000000000000 CR3: 000000003f4d6000 CR4: 0000000000352ef0 [ 71.380627][ T5111] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 71.383476][ T5111] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 71.386338][ T5111] Call Trace: [ 71.387621][ T5111] [ 71.388728][ T5111] ? __die_body+0x5f/0xb0 [ 71.390297][ T5111] ? die+0x9e/0xc0 [ 71.391678][ T5111] ? do_trap+0x15a/0x3a0 [ 71.393210][ T5111] ? nilfs_delete_entry+0x359/0x360 [ 71.395096][ T5111] ? do_error_trap+0x1dc/0x2c0 [ 71.396881][ T5111] ? nilfs_delete_entry+0x359/0x360 [ 71.398742][ T5111] ? __pfx_do_error_trap+0x10/0x10 [ 71.400705][ T5111] ? handle_invalid_op+0x34/0x40 [ 71.402577][ T5111] ? nilfs_delete_entry+0x359/0x360 [ 71.404504][ T5111] ? exc_invalid_op+0x38/0x50 [ 71.406283][ T5111] ? asm_exc_invalid_op+0x1a/0x20 [ 71.408138][ T5111] ? nilfs_delete_entry+0x21e/0x360 [ 71.410077][ T5111] ? nilfs_delete_entry+0x358/0x360 [ 71.411941][ T5111] ? nilfs_delete_entry+0x359/0x360 [ 71.413894][ T5111] ? nilfs_delete_entry+0x358/0x360 [ 71.415845][ T5111] nilfs_do_unlink+0x205/0x430 [ 71.417650][ T5111] ? __pfx_nilfs_do_unlink+0x10/0x10 [ 71.419602][ T5111] ? nilfs_transaction_begin+0x4fd/0x6e0 [ 71.421651][ T5111] nilfs_unlink+0xed/0x1d0 [ 71.423326][ T5111] ? __pfx_nilfs_unlink+0x10/0x10 [ 71.425190][ T5111] ? down_write+0x18c/0x220 [ 71.426859][ T5111] ? bpf_lsm_inode_unlink+0x9/0x10 [ 71.428846][ T5111] ? security_inode_unlink+0xd9/0x340 [ 71.430788][ T5111] vfs_unlink+0x365/0x650 [ 71.432262][ T5111] do_unlinkat+0x4ae/0x830 [ 71.433886][ T5111] ? __pfx_do_unlinkat+0x10/0x10 [ 71.435625][ T5111] ? __might_fault+0xaa/0x120 [ 71.437421][ T5111] ? __might_fault+0xc6/0x120 [ 71.439171][ T5111] ? strncpy_from_user+0x131/0x250 [ 71.441135][ T5111] ? getname_flags+0x1e3/0x540 [ 71.442915][ T5111] __x64_sys_unlink+0x47/0x50 [ 71.444609][ T5111] do_syscall_64+0xf3/0x230 [ 71.446292][ T5111] ? clear_bhb_loop+0x35/0x90 [ 71.448082][ T5111] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 71.450251][ T5111] RIP: 0033:0x7fb6bb17dff9 [ 71.451898][ T5111] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 71.458478][ T5111] RSP: 002b:00007fb6bbf30038 EFLAGS: 00000246 ORIG_RAX: 0000000000000057 [ 71.461534][ T5111] RAX: ffffffffffffffda RBX: 00007fb6bb335f80 RCX: 00007fb6bb17dff9 [ 71.464508][ T5111] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000580 [ 71.467396][ T5111] RBP: 00007fb6bb1f0296 R08: 0000000000000000 R09: 0000000000000000 [ 71.470241][ T5111] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 71.473040][ T5111] R13: 0000000000000000 R14: 00007fb6bb335f80 R15: 00007ffe31f8e078 [ 71.475744][ T5111] [ 71.476818][ T5111] Modules linked in: [ 71.478736][ T5111] ---[ end trace 0000000000000000 ]--- [ 71.634296][ T5111] RIP: 0010:nilfs_delete_entry+0x359/0x360 [ 71.637850][ T5111] Code: e8 dc d9 88 fe eb b9 44 89 f9 80 e1 07 fe c1 38 c1 0f 8c 10 ff ff ff 4c 89 ff e8 92 d9 88 fe e9 03 ff ff ff e8 08 26 1f fe 90 <0f> 0b 0f 1f 44 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 [ 71.654489][ T5111] RSP: 0018:ffffc90002d8fb18 EFLAGS: 00010287 [ 71.660296][ T5111] RAX: ffffffff8375c018 RBX: 0000000000000068 RCX: 0000000000040000 [ 71.666622][ T5111] RDX: ffffc9000b5e2000 RSI: 0000000000001502 RDI: 0000000000001503 [ 71.673328][ T5111] RBP: 00000000fffffffb R08: ffffffff8375bede R09: 1ffff110039a7a1d [ 71.679689][ T5111] R10: dffffc0000000000 R11: ffffed10039a7a1e R12: ffffea000128f7c0 [ 71.685923][ T5111] R13: ffff88804a3df050 R14: 0000000000000038 R15: ffff88804a3df038 [ 71.692485][ T5111] FS: 00007fb6bbf306c0(0000) GS:ffff88801fc00000(0000) knlGS:0000000000000000 [ 71.699031][ T5111] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 71.703958][ T5111] CR2: 000055e816d2ff48 CR3: 000000003f4d6000 CR4: 0000000000352ef0 [ 71.711691][ T5111] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 71.719340][ T5111] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 71.724488][ T5111] Kernel panic - not syncing: Fatal exception [ 71.726890][ T5111] Kernel Offset: disabled [ 71.728433][ T5111] Rebooting in 86400 seconds..